CIO Tech Eksperten IT-JOB IT-Kurser Events Podcast Søg
Cookie ikon
Avatar billede mijaysen Praktikant
11. oktober 2009 - 15:30 Der er 18 kommentarer og
1 løsning

Virus/Spyware inficeret computer

Hej eksperter. Jeg tror jeg har lidt snavs på min pc, da jeg nogle gange når jeg er tilsluttet til nettet, begynder den at spille en engelsk reklmae/radio eller lign. om et skyde-spil og noget musik samt en engelsk speaker. Jeg har derfor været inde på guides, her på eksperten, og fulgt denne guide for fjernelse af snavs: http://www.eksperten.dk/guide/1232
Jeg var nød til at springe combofix over da, jeg fik meddedlsen: "Windows kan ikke finde "NircmdB,exe". Kontroller, at du har skrevet navnet korrekt, og forsøg igen." Har prøvet at downloade den fra en anden server og gemt den med et andet navn, med samme resultat som før.

Men her er loggen fra Malwarebytes og HijacThis:

Malwarebytes' Anti-Malware 1.41
Database version: 2941
Windows 6.1.7600

11-10-2009 14:26:56
mbam-log-2009-10-11 (14-26-56).txt

Skan type: Fuldstændig skanning (C:\|E:\|)
Objekter skannet: 160756
Tid tilbagelagt: 23 minute(s), 12 second(s)

Inficerede Hukommelses Processer: 0
Inficerede Hukommelses Moduler: 1
Inficerede Registeringsdatabase Nøgler: 8
Inficerede Registeringsdatabase Værdier: 0
Inficerede Registeringsdatabase Filer: 0
Inficerede Mapper: 0
Inficerede Filer: 1

Inficerede Hukommelses Processer:
(Ingen mistænkelige filer fundet)

Inficerede Hukommelses Moduler:
C:\Windows\System32\xwr38547.dll (Trojan.BHO) -> Delete on reboot.

Inficerede Registeringsdatabase Nøgler:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bc2471d2-b720-38d6-9a61-c780efc93a81} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bc2471d2-b720-38d6-9a61-c780efc93a81} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{efe9f12e-e2fb-3a6c-8853-90df38887c02} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{97d38353-55fb-3955-9be4-5949ce60a846} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{bc2471d2-b720-38d6-9a61-c780efc93a81} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\D (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\D.1 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe (Security.Hijack) -> Quarantined and deleted successfully.

Inficerede Registeringsdatabase Værdier:
(Ingen mistænkelige filer fundet)

Inficerede Registeringsdatabase Filer:
(Ingen mistænkelige filer fundet)

Inficerede Mapper:
(Ingen mistænkelige filer fundet)

Inficerede Filer:
C:\Windows\System32\xwr38547.dll (Trojan.Vundo.H) -> Delete on reboot.

----------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:14:15, on 11-10-2009
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe
O13 - Gopher Prefix:
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\Windows\system32\ibmpmsvc.exe

--
End of file - 4324 bytes
Avatar billede Computer Hjælp (Gratis) Mester
11. oktober 2009 - 15:58 #1
Er det WIN7 ?

---

Du er jo selv ude om det ved at 'lege' med aktivt kørende
[uTorrent] !!!

Afinstall det!!!

--

MalwareBytes har jo 'nappet' en del; hvordan er status så nu ?
Avatar billede mijaysen Praktikant
11. oktober 2009 - 16:07 #2
Ja køre en test version af windows 7

Og ja utorrent er kørende men bruges ikke til ulovligt p2p. Jeg arbejder hos et firma der hedder norstat hvor vi deler opgaver, reultater, samt film der bruges. Men har dog nu lukket utorrent. Skal jeg køre malwarebytes igen?
Avatar billede mijaysen Praktikant
11. oktober 2009 - 16:52 #3
Her er en ny logfil fra malwarebytes:

Malwarebytes' Anti-Malware 1.41
Database version: 2941
Windows 6.1.7600

11-10-2009 16:51:56
mbam-log-2009-10-11 (16-51-56).txt

Skan type: Fuldstændig skanning (C:\|E:\|)
Objekter skannet: 163016
Tid tilbagelagt: 34 minute(s), 48 second(s)

Inficerede Hukommelses Processer: 0
Inficerede Hukommelses Moduler: 0
Inficerede Registeringsdatabase Nøgler: 0
Inficerede Registeringsdatabase Værdier: 0
Inficerede Registeringsdatabase Filer: 0
Inficerede Mapper: 0
Inficerede Filer: 0

Inficerede Hukommelses Processer:
(Ingen mistænkelige filer fundet)

Inficerede Hukommelses Moduler:
(Ingen mistænkelige filer fundet)

Inficerede Registeringsdatabase Nøgler:
(Ingen mistænkelige filer fundet)

Inficerede Registeringsdatabase Værdier:
(Ingen mistænkelige filer fundet)

Inficerede Registeringsdatabase Filer:
(Ingen mistænkelige filer fundet)

Inficerede Mapper:
(Ingen mistænkelige filer fundet)

Inficerede Filer:
(Ingen mistænkelige filer fundet)
Avatar billede Computer Hjælp (Gratis) Mester
11. oktober 2009 - 16:58 #4
-- Hent Combofix fra et af disse links, og gem den på dit skrivebord:

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

NB: Du må ikke gemme og døbe den Combofix.exe, men eksempelvis BANAN.exe

-- Kør så combofix.exe (BANAN.exe), som du hentede tidligere, og følg anvisningerne.

Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når combofix er færdig, og efter det har genstartet, skulle der gerne åbnes en logfil: combofix.txt
Indholdet af denne fil må du gerne lægge herind.
Avatar billede mijaysen Praktikant
11. oktober 2009 - 17:23 #5
Som skrevet tidligere var det ikke muligt for mig at køre combofix da jeg får fejlen  "Windows kan ikke finde "NircmdB,exe". Kontroller, at du har skrevet navnet korrekt, og forsøg igen." har også forsøgt at gøre som du beskriver men det virker ikke. Har lige prøvet for sjov igen. Klikke på det link du satte ind, downloaded som banan.exe og så kørt det. Virker ikk...
Avatar billede mijaysen Praktikant
11. oktober 2009 - 17:23 #6
Altså samme fejl
Avatar billede Computer Hjælp (Gratis) Mester
11. oktober 2009 - 17:29 #7
(Hmmm... Andre i denne tråd ?)
Avatar billede mijaysen Praktikant
12. oktober 2009 - 15:32 #8
Ingen andre der har forstand på sådan noget her på eksperten.dk?
Avatar billede Computer Hjælp (Gratis) Mester
12. oktober 2009 - 20:13 #9
Stand-By...
Avatar billede f-arn Guru
12. oktober 2009 - 22:45 #10
Hent OldTimer's OTS herfra, gem den på skrivebordet.
http://oldtimer.geekstogo.com/OTS.exe

Dobbeltklik på OTS, Klik på Extras,Skib Micrsoft files og klik Run Scan
der vil nu åbne en logfil, kopier teksten herind.
Avatar billede mijaysen Praktikant
13. oktober 2009 - 23:43 #11
Er gjordt. Og hold da op en lang log. Men her er den:

[code]
OTS logfile created on: 13-10-2009 23:40:32 - Run 1
OTS by OldTimer - Version 3.0.21.0    Folder = C:\Users\Mijay\Desktop
Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

1,95 Gb Total Physical Memory | 1,06 Gb Available Physical Memory | 54,30% Memory free
3,89 Gb Paging File | 2,72 Gb Available in Paging File | 70,03% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74,53 Gb Total Space | 14,22 Gb Free Space | 19,08% Space Free | Partition Type: NTFS
Drive D: | 7,17 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MIJAY-PC
Current User Name: Mijay
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days

[Processes - Safe List]
ashdisp.exe -> C:\Program Files\Alwil Software\Avast4\ashDisp.exe -> [2009-09-15 12:56:48 | 00,081,000 | ---- | M] (ALWIL Software)
ashmaisv.exe -> C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -> [2009-09-15 12:56:28 | 00,254,040 | ---- | M] (ALWIL Software)
ashserv.exe -> C:\Program Files\Alwil Software\Avast4\ashServ.exe -> [2009-09-15 12:56:43 | 00,138,680 | ---- | M] (ALWIL Software)
ashwebsv.exe -> C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -> [2009-09-15 12:54:13 | 00,352,920 | ---- | M] (ALWIL Software)
aswupdsv.exe -> C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -> [2009-09-15 12:49:40 | 00,018,752 | ---- | M] (ALWIL Software)
daemon.exe -> C:\Program Files\DAEMON Tools Lite\daemon.exe -> [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd)
explorer.exe -> C:\Windows\Explorer.EXE -> [2009-07-14 03:14:20 | 02,613,248 | ---- | M] (Microsoft Corporation)
flashutil10c.exe -> C:\Windows\System32\Macromed\Flash\FlashUtil10c.exe -> [2009-07-18 05:12:12 | 00,257,440 | R--- | M] (Adobe Systems, Inc.)
hkcmd.exe -> C:\Windows\System32\hkcmd.exe -> [2009-08-13 21:16:18 | 00,167,424 | ---- | M] (Intel Corporation)
hpqphotocrm.exe -> C:\Program Files\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe -> [2008-08-20 10:54:00 | 00,544,768 | ---- | M] (Hewlett-Packard Development Co. L.P.)
hpqphotocrm.exe -> C:\Program Files\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe -> [2008-08-20 10:54:00 | 00,544,768 | ---- | M] (Hewlett-Packard Development Co. L.P.)
hpqsrmon.exe -> C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe -> [2008-08-20 10:54:08 | 00,150,016 | ---- | M] (Hewlett-Packard)
ibmpmsvc.exe -> C:\Windows\System32\ibmpmsvc.exe -> [2007-06-01 02:02:06 | 00,036,400 | ---- | M] (Lenovo)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
igfxpers.exe -> C:\Windows\System32\igfxpers.exe -> [2009-08-13 21:15:48 | 00,144,384 | ---- | M] (Intel Corporation)
igfxsrvc.exe -> C:\Windows\System32\igfxsrvc.exe -> [2009-08-13 21:15:36 | 00,246,272 | ---- | M] (Intel Corporation)
igfxtray.exe -> C:\Windows\System32\igfxtray.exe -> [2009-08-13 21:16:18 | 00,135,168 | ---- | M] (Intel Corporation)
ots.exe -> C:\Users\Mijay\Desktop\OTS.exe -> [2009-10-13 23:39:33 | 00,520,192 | ---- | M] (OldTimer Tools)
taskhost.exe -> C:\Windows\System32\taskhost.exe -> [2009-07-14 03:14:42 | 00,049,152 | ---- | M] (Microsoft Corporation)
taskhost.exe -> C:\Windows\System32\taskhost.exe -> [2009-07-14 03:14:42 | 00,049,152 | ---- | M] (Microsoft Corporation)
utorrent.exe -> C:\Program Files\uTorrent\uTorrent.exe -> [2009-10-01 18:54:25 | 00,289,072 | ---- | M] (BitTorrent, Inc.)
wmpnetwk.exe -> C:\Program Files\Windows Media Player\wmpnetwk.exe -> [2009-07-14 03:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation)

[Win32 Services - Safe List]
(AppIDSvc) Program-id [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\appidsvc.dll -> [2009-07-14 03:14:53 | 00,027,648 | ---- | M] (Microsoft Corporation)
(aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -> [2009-09-15 12:49:40 | 00,018,752 | ---- | M] (ALWIL Software)
(avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> C:\Program Files\Alwil Software\Avast4\ashServ.exe -> [2009-09-15 12:56:43 | 00,138,680 | ---- | M] (ALWIL Software)
(avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -> [2009-09-15 12:56:28 | 00,254,040 | ---- | M] (ALWIL Software)
(avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -> [2009-09-15 12:54:13 | 00,352,920 | ---- | M] (ALWIL Software)
(AxInstSV) ActiveX-installationsprogram (AxInstSV) [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\AxInstSV.dll -> [2009-07-14 03:14:58 | 00,088,064 | ---- | M] (Microsoft Corporation)
(BDESVC) Tjenesten BitLocker-drevkryptering [Win32_Shared | Unknown | Stopped] -> C:\Windows\System32\bdesvc.dll -> [2009-07-14 03:14:59 | 00,076,800 | ---- | M] (Microsoft Corporation)
(clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2009-06-10 23:23:09 | 00,066,384 | ---- | M] (Microsoft Corporation)
(defragsvc) Diskdefragmentering [Win32_Own | On_Demand | Stopped] -> C:\Windows\System32\defragsvc.dll -> [2009-07-14 03:15:10 | 00,218,624 | ---- | M] (Microsoft Corporation)
(Dhcp) DHCP-klientprogram [Win32_Shared | Auto | Running] -> C:\Windows\System32\dhcpcore.dll -> [2009-07-14 03:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation)
(ehRecvr) Windows Media Center-modtagertjeneste [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehRecvr.exe -> [2009-07-14 03:14:19 | 00,557,056 | ---- | M] (Microsoft Corporation)
(ehSched) Tjenesten Windows Media Center-planlægning [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehsched.exe -> [2009-07-14 03:14:19 | 00,094,720 | ---- | M] (Microsoft Corporation)
(eventlog) Windows-hændelseslog [Win32_Shared | Auto | Running] -> C:\Windows\System32\wevtsvc.dll -> [2009-07-14 03:16:18 | 01,086,464 | ---- | M] (Microsoft Corporation)
(FontCache) Tjenesten Windows-skrifttypecache [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\FntCache.dll -> [2009-07-14 03:15:21 | 00,797,696 | ---- | M] (Microsoft Corporation)
(FontCache3.0.0.0) Windows Presentation Foundation Font Cache 3.0.0.0 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -> [2009-06-10 23:14:51 | 00,042,856 | ---- | M] (Microsoft Corporation)
(HomeGroupListener) Lyttefunktion til hjemmegruppe [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\ListSvc.dll -> [2009-07-14 03:15:36 | 00,194,560 | ---- | M] (Microsoft Corporation)
(HomeGroupProvider) Udbyder af hjemmegruppe [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\provsvc.dll -> [2009-07-14 03:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation)
(IBMPMSVC) ThinkPad PM Service [Win32_Own | Auto | Running] -> C:\Windows\System32\ibmpmsvc.exe -> [2007-06-01 02:02:06 | 00,036,400 | ---- | M] (Lenovo)
(idsvc) Windows CardSpace [Win32_Shared | Unknown | Stopped] -> C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -> [2009-06-10 23:14:02 | 00,878,416 | ---- | M] (Microsoft Corporation)
(NetTcpPortSharing) Net.Tcp-portdelingstjeneste [Win32_Shared | Disabled | Stopped] -> C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -> [2009-06-10 23:14:05 | 00,128,848 | ---- | M] (Microsoft Corporation)
(p2pimsvc) Identitetsstyring for peer-netværk [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\pnrpsvc.dll -> [2009-07-14 03:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation)
(PeerDistSvc) BranchCache [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\peerdistsvc.dll -> [2009-07-14 03:16:12 | 01,004,544 | ---- | M] (Microsoft Corporation)
(PNRPAutoReg) PNRP - Tjeneste til udgivelse af computernavn [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\pnrpauto.dll -> [2009-07-14 03:16:12 | 00,020,480 | ---- | M] (Microsoft Corporation)
(PNRPsvc) PNRP (Peer Name Resolution Protocol) [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\pnrpsvc.dll -> [2009-07-14 03:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation)
(Power) Strøm [Win32_Shared | Auto | Running] -> C:\Windows\System32\umpo.dll -> [2009-07-14 03:16:17 | 00,119,808 | ---- | M] (Microsoft Corporation)
(RpcEptMapper) RPC-slutpunktsafbildning [Win32_Shared | Unknown | Running] -> C:\Windows\System32\RpcEpMap.dll -> [2009-07-14 03:16:13 | 00,043,520 | ---- | M] (Microsoft Corporation)
(SensrSvc) Tilpasset lysstyrke [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\sensrsvc.dll -> [2009-07-14 03:16:13 | 00,025,088 | ---- | M] (Microsoft Corporation)
(sppsvc) Softwarebeskyttelse [Win32_Own | Auto | Stopped] -> C:\Windows\System32\sppsvc.exe -> [2009-07-14 03:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation)
(sppuinotify) SPP-meddelelsestjeneste [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\sppuinotify.dll -> [2009-07-14 03:16:15 | 00,053,760 | ---- | M] (Microsoft Corporation)
(Themes) Temaer [Win32_Shared | Auto | Running] -> C:\Windows\System32\themeservice.dll -> [2009-07-14 03:16:16 | 00,037,376 | ---- | M] (Microsoft Corporation)
(WbioSrvc) Tjenesten Windows Biometri [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\wbiosrvc.dll -> [2009-07-14 03:16:17 | 00,151,552 | ---- | M] (Microsoft Corporation)
(WinDefend) Windows Defender [Win32_Shared | Auto | Running] -> C:\Program Files\Windows Defender\mpsvc.dll -> [2009-07-14 03:15:41 | 00,680,960 | ---- | M] (Microsoft Corporation)
(WMPNetworkSvc) Windows Media Player Network Sharing Service [Win32_Own | Auto | Running] -> C:\Program Files\Windows Media Player\wmpnetwk.exe -> [2009-07-14 03:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation)
(WwanSvc) WWAN AutoConfig [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\wwansvc.dll -> [2009-07-14 03:16:21 | 00,185,856 | ---- | M] (Microsoft Corporation)
(getPlusHelper) getPlus(R) Helper [Win32_Own | On_Demand | Stopped] -> C:\Program Files\NOS\bin\getPlus_Helper.dll -> [2009-09-23 16:37:30 | 00,051,168 | ---- | M] (NOS Microsystems Ltd.)

[Driver Services - Safe List]
(1394ohci) 1394 OHCI Compliant Host Controller [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\1394ohci.sys -> [2009-07-14 01:52:00 | 00,163,328 | ---- | M] (Microsoft Corporation)
(AcpiPmi) ACPI Power Meter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\acpipmi.sys -> [2009-07-14 01:16:36 | 00,009,728 | ---- | M] (Microsoft Corporation)
(adp94xx) adp94xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adp94xx.sys -> [2009-07-14 03:26:15 | 00,422,976 | ---- | M] (Adaptec, Inc.)
(adpahci) adpahci [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adpahci.sys -> [2009-07-14 03:26:17 | 00,297,552 | ---- | M] (Adaptec, Inc.)
(adpu320) adpu320 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adpu320.sys -> [2009-07-14 03:26:15 | 00,146,512 | ---- | M] (Adaptec, Inc.)
(aic78xx) aic78xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\djsvs.sys -> [2009-07-14 03:20:28 | 00,070,720 | ---- | M] (Adaptec, Inc.)
(aliide) aliide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\aliide.sys -> [2009-07-14 03:26:15 | 00,014,400 | ---- | M] (Acer Laboratories Inc.)
(AmdPPM) AMD Processor Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdppm.sys -> [2009-07-14 01:11:04 | 00,052,736 | ---- | M] (Microsoft Corporation)
(amdsata) amdsata [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdsata.sys -> [2009-07-14 03:26:15 | 00,079,952 | ---- | M] (Advanced Micro Devices)
(amdsbs) amdsbs [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdsbs.sys -> [2009-07-14 03:26:15 | 00,159,312 | ---- | M] (AMD Technologies Inc.)
(amdxata) amdxata [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\amdxata.sys -> [2009-07-14 03:26:15 | 00,023,616 | ---- | M] (Advanced Micro Devices)
(AppID) AppID-driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\drivers\appid.sys -> [2009-07-14 01:36:52 | 00,050,176 | ---- | M] (Microsoft Corporation)
(arc) arc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\arc.sys -> [2009-07-14 03:26:15 | 00,076,368 | ---- | M] (Adaptec, Inc.)
(arcsas) arcsas [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\arcsas.sys -> [2009-07-14 03:26:15 | 00,086,608 | ---- | M] (Adaptec, Inc.)
(aswFsBlk) aswFsBlk [File_System | Auto | Running] -> C:\Windows\System32\DRIVERS\aswFsBlk.sys -> [2009-09-15 12:55:19 | 00,020,560 | ---- | M] (ALWIL Software)
(aswMonFlt) aswMonFlt [File_System | Auto | Running] -> C:\Windows\System32\DRIVERS\aswMonFlt.sys -> [2009-09-15 12:55:09 | 00,053,328 | ---- | M] (ALWIL Software)
(aswRdr) aswRdr [Kernel | System | Running] -> C:\Windows\System32\drivers\aswRdr.sys -> [2009-09-15 12:54:21 | 00,023,152 | ---- | M] (ALWIL Software)
(aswSP) avast! Self Protection [Kernel | System | Running] -> C:\Windows\System32\drivers\aswSP.sys -> [2009-09-15 12:55:30 | 00,114,768 | ---- | M] (ALWIL Software)
(aswTdi) avast! Network Shield Support [Kernel | System | Running] -> C:\Windows\System32\drivers\aswTdi.sys -> [2009-09-15 12:54:30 | 00,052,368 | ---- | M] (ALWIL Software)
(atksgt) atksgt [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\atksgt.sys -> [2009-10-11 17:25:44 | 00,281,760 | ---- | M] ()
(b06bdrv) Broadcom NetXtreme II VBD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\bxvbdx.sys -> [2009-07-14 00:02:48 | 00,430,080 | ---- | M] (Broadcom Corporation)
(b57nd60x) Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\b57nd60x.sys -> [2009-07-14 00:02:49 | 00,229,888 | ---- | M] (Broadcom Corporation)
(BrFiltLo) Brother USB Mass-Storage Lower Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\BrFiltLo.sys -> [2009-07-14 00:53:28 | 00,013,568 | ---- | M] (Brother Industries, Ltd.)
(BrFiltUp) Brother USB Mass-Storage Upper Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\BrFiltUp.sys -> [2009-07-14 00:53:28 | 00,005,248 | ---- | M] (Brother Industries, Ltd.)
(Brserid) Brother MFC Serial Port Interface Driver (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\Brserid.sys -> [2009-07-14 02:57:25 | 00,272,128 | ---- | M] (Brother Industries Ltd.)
(BrSerWdm) Brother WDM Serial driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrSerWdm.sys -> [2009-07-14 00:53:32 | 00,062,336 | ---- | M] (Brother Industries Ltd.)
(BrUsbMdm) Brother MFC USB Fax Only Modem [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrUsbMdm.sys -> [2009-07-14 00:53:33 | 00,012,160 | ---- | M] (Brother Industries Ltd.)
(BrUsbSer) Brother MFC USB Serial WDM Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrUsbSer.sys -> [2009-07-14 00:53:33 | 00,011,904 | ---- | M] (Brother Industries Ltd.)
(cmdide) cmdide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\cmdide.sys -> [2009-07-14 03:26:21 | 00,015,952 | ---- | M] (CMD Technology, Inc.)
(CNG) CNG [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\cng.sys -> [2009-07-14 03:17:54 | 00,369,568 | ---- | M] (Microsoft Corporation)
(CompositeBus) Composite Bus Enumerator Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\CompositeBus.sys -> [2009-07-14 01:45:26 | 00,031,232 | ---- | M] (Microsoft Corporation)
(discache) System Attribute Cache [Kernel | System | Running] -> C:\Windows\System32\drivers\discache.sys -> [2009-07-14 01:24:05 | 00,032,256 | ---- | M] (Microsoft Corporation)
(ebdrv) Broadcom NetXtreme II 10 GigE VBD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\evbdx.sys -> [2009-07-14 00:02:48 | 03,100,160 | ---- | M] (Broadcom Corporation)
(elxstor) elxstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\elxstor.sys -> [2009-07-14 03:20:28 | 00,453,712 | ---- | M] (Emulex)
(FsDepends) File System Dependency Minifilter [File_System | On_Demand | Stopped] -> C:\Windows\System32\drivers\FsDepends.sys -> [2009-07-14 03:20:28 | 00,046,160 | ---- | M] (Microsoft Corporation)
(hcw85cir) Hauppauge Consumer Infrared Receiver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\drivers\hcw85cir.sys -> [2009-07-14 00:54:14 | 00,026,624 | ---- | M] (Hauppauge Computer Works, Inc.)
(HidBatt) HID UPS Battery Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\HidBatt.sys -> [2009-07-14 01:19:21 | 00,021,504 | ---- | M] (Microsoft Corporation)
(HpSAMD) HpSAMD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\HpSAMD.sys -> [2009-07-14 03:20:28 | 00,067,152 | ---- | M] (Hewlett-Packard Company)
(hwdatacard) Huawei DataCard USB Modem and USB Serial [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ewusbmdm.sys -> [2009-06-22 19:38:24 | 00,102,912 | ---- | M] (Huawei Technologies Co., Ltd.)
(hwpolicy) Hardware Policy Driver [Kernel | Boot | Running] -> C:\Windows\System32\drivers\hwpolicy.sys -> [2009-07-14 03:20:36 | 00,013,904 | ---- | M] (Microsoft Corporation)
(hwusbdev) Huawei DataCard USB PNP Device [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ewusbdev.sys -> [2009-06-22 19:26:06 | 00,100,736 | ---- | M] (Huawei Technologies Co., Ltd.)
(iaStorV) iaStorV [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\iaStorV.sys -> [2009-07-14 03:20:36 | 00,332,352 | ---- | M] (Intel Corporation)
(IBMPMDRV) IBMPMDRV [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\ibmpmdrv.sys -> [2007-06-01 02:01:30 | 00,021,424 | ---- | M] (Lenovo.)
(igfx) igfx [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\igdkmd32.sys -> [2009-08-13 21:48:00 | 05,946,368 | ---- | M] (Intel Corporation)
(iirsp) iirsp [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\iirsp.sys -> [2009-07-14 03:20:36 | 00,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH)
(KSecPkg) KSecPkg [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\ksecpkg.sys -> [2009-07-14 03:20:36 | 00,133,200 | ---- | M] (Microsoft Corporation)
(lirsgt) lirsgt [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\lirsgt.sys -> [2009-10-11 17:25:44 | 00,025,888 | ---- | M] ()
(LSI_FC) LSI_FC [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_fc.sys -> [2009-07-14 03:20:36 | 00,095,824 | ---- | M] (LSI Corporation)
(LSI_SAS) LSI_SAS [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_sas.sys -> [2009-07-14 03:20:37 | 00,089,168 | ---- | M] (LSI Corporation)
(LSI_SAS2) LSI_SAS2 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_sas2.sys -> [2009-07-14 03:20:36 | 00,054,864 | ---- | M] (LSI Corporation)
(LSI_SCSI) LSI_SCSI [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_scsi.sys -> [2009-07-14 03:20:36 | 00,096,848 | ---- | M] (LSI Corporation)
(megasas) megasas [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\megasas.sys -> [2009-07-14 03:20:36 | 00,030,800 | ---- | M] (LSI Corporation)
(MegaSR) MegaSR [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\MegaSR.sys -> [2009-07-14 03:20:36 | 00,235,584 | ---- | M] (LSI Corporation, Inc.)
(mshidkmdf) Pass-through HID to KMDF Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\mshidkmdf.sys -> [2009-07-14 01:51:08 | 00,004,096 | ---- | M] (Microsoft Corporation)
(MTConfig) Microsoft Input Configuration Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\MTConfig.sys -> [2009-07-14 01:46:55 | 00,012,288 | ---- | M] (Microsoft Corporation)
(NdisCap) NDIS Capture LightWeight Filter [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ndiscap.sys -> [2009-07-14 01:52:44 | 00,027,136 | ---- | M] (Microsoft Corporation)
(netw5v32) Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\netw5v32.sys -> [2009-07-14 00:02:51 | 04,231,168 | ---- | M] (Intel Corporation)
(nfrd960) nfrd960 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nfrd960.sys -> [2009-07-14 03:20:44 | 00,044,624 | ---- | M] (IBM Corporation)
(NSNDIS5) NSNDIS5 NDIS Protocol Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\NSNDIS5.SYS -> [2004-03-24 04:12:34 | 00,017,280 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA))
(nvraid) nvraid [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nvraid.sys -> [2009-07-14 03:20:44 | 00,117,312 | ---- | M] (NVIDIA Corporation)
(nvstor) nvstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nvstor.sys -> [2009-07-14 03:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation)
(pcw) Performance Counters for Windows Driver [Kernel | Boot | Running] -> C:\Windows\System32\drivers\pcw.sys -> [2009-07-14 03:19:04 | 00,043,088 | ---- | M] (Microsoft Corporation)
(ql2300) ql2300 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\ql2300.sys -> [2009-07-14 03:19:04 | 01,383,488 | ---- | M] (QLogic Corporation)
(ql40xx) ql40xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\ql40xx.sys -> [2009-07-14 03:19:04 | 00,106,064 | ---- | M] (QLogic Corporation)
(RasAgileVpn) WAN Miniport (IKEv2) [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\AgileVpn.sys -> [2009-07-14 01:55:00 | 00,049,152 | ---- | M] (Microsoft Corporation)
(rdpbus) Remote Desktop Device Redirector Bus Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rdpbus.sys -> [2009-07-14 02:02:41 | 00,018,944 | ---- | M] (Microsoft Corporation)
(RDPREFMP) Reflector Display Driver used to gain access to graphics data [Kernel | System | Running] -> C:\Windows\System32\drivers\rdprefmp.sys -> [2009-07-14 02:01:41 | 00,007,168 | ---- | M] (Microsoft Corporation)
(rdyboost) ReadyBoost [Kernel | Boot | Running] -> C:\Windows\System32\drivers\rdyboost.sys -> [2009-07-14 03:19:04 | 00,173,648 | ---- | M] (Microsoft Corporation)
(rimmptsk) rimmptsk [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rimmptsk.sys -> [2005-11-16 20:28:32 | 00,028,928 | ---- | M] (REDC)
(rimsptsk) rimsptsk [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rimsptsk.sys -> [2005-12-22 17:02:22 | 00,051,840 | ---- | M] (REDC)
(rismxdp) Ricoh xD-Picture Card Driver [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\rixdptsk.sys -> [2006-11-14 17:35:20 | 00,037,376 | ---- | M] (REDC)
(s3cap) s3cap [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vms3cap.sys -> [2009-07-14 01:28:47 | 00,005,632 | ---- | M] (Microsoft Corporation)
(scfilter) Filterdriver til PnP for chipkort [Kernel | Unknown | Stopped] -> C:\Windows\System32\DRIVERS\scfilter.sys -> [2009-07-14 01:33:50 | 00,026,624 | ---- | M] (Microsoft Corporation)
(secdrv) Security Driver [Kernel | Auto | Running] -> C:\Windows\System32\drivers\secdrv.sys -> [2009-07-13 22:50:20 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
(SiSRaid2) SiSRaid2 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\SiSRaid2.sys -> [2009-07-14 03:19:04 | 00,040,016 | ---- | M] (Silicon Integrated Systems Corp.)
(SiSRaid4) SiSRaid4 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\sisraid4.sys -> [2009-07-14 03:19:04 | 00,077,888 | ---- | M] (Silicon Integrated Systems)
(sptd) sptd [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\sptd.sys -> [2009-10-02 14:31:01 | 00,721,904 | ---- | M] ()
(SrvHsfHDA) SrvHsfHDA [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTAZL3.SYS -> [2009-07-14 00:13:45 | 00,207,360 | ---- | M] (Conexant Systems, Inc.)
(SrvHsfV92) SrvHsfV92 [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTDPV3.SYS -> [2009-07-14 00:13:46 | 00,980,992 | ---- | M] (Conexant Systems, Inc.)
(SrvHsfWinac) SrvHsfWinac [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTCNXT3.SYS -> [2009-07-14 00:13:45 | 00,661,504 | ---- | M] (Conexant Systems, Inc.)
(stexstor) stexstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\stexstor.sys -> [2009-07-14 03:19:04 | 00,021,072 | ---- | M] (Promise Technology)
(storflt) Disk Virtual Machine Bus Acceleration Filter Driver [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vmstorfl.sys -> [2009-07-14 03:19:10 | 00,040,896 | ---- | M] (Microsoft Corporation)
(storvsc) storvsc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\storvsc.sys -> [2009-07-14 03:19:10 | 00,028,224 | ---- | M] (Microsoft Corporation)
(TPM) TPM [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\tpm.sys -> [2009-07-14 01:12:52 | 00,030,720 | ---- | M] (Microsoft Corporation)
(UmPass) Microsoft UMPass Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\umpass.sys -> [2009-07-14 01:51:35 | 00,008,192 | ---- | M] (Microsoft Corporation)
(vdrvroot) Microsoft Virtual Drive Enumerator Driver [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vdrvroot.sys -> [2009-07-14 03:19:10 | 00,032,832 | ---- | M] (Microsoft Corporation)
(vhdmp) vhdmp [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vhdmp.sys -> [2009-07-14 03:19:10 | 00,159,824 | ---- | M] (Microsoft Corporation)
(viaide) viaide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\viaide.sys -> [2009-07-14 03:19:10 | 00,016,976 | ---- | M] (VIA Technologies, Inc.)
(vmbus) Virtual Machine Bus [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vmbus.sys -> [2009-07-14 03:19:10 | 00,175,824 | ---- | M] (Microsoft Corporation)
(VMBusHID) VMBusHID [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\VMBusHID.sys -> [2009-07-14 01:28:45 | 00,017,920 | ---- | M] (Microsoft Corporation)
(vsmraid) vsmraid [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vsmraid.sys -> [2009-07-14 03:19:11 | 00,141,904 | ---- | M] (VIA Technologies Inc.,Ltd)
(vwifibus) Driver til virtual WiFi-bus [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\vwifibus.sys -> [2009-07-14 01:52:02 | 00,019,968 | ---- | M] (Microsoft Corporation)
(WfpLwf) WFP Lightweight Filter [Kernel | System | Running] -> C:\Windows\System32\DRIVERS\wfplwf.sys -> [2009-07-14 01:53:51 | 00,009,728 | ---- | M] (Microsoft Corporation)
(WIMMount) WIMMount [File_System | On_Demand | Stopped] -> C:\Windows\System32\drivers\wimmount.sys -> [2009-07-14 03:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation)
(SASKUTIL) SASKUTIL [Kernel | System | Running] -> C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys -> [2009-09-15 11:42:44 | 00,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASDIFSV) SASDIFSV [Kernel | System | Running] -> C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -> [2009-09-15 11:42:46 | 00,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASENUM) SASENUM [Kernel | On_Demand | Running] -> C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -> [2009-09-15 11:42:48 | 00,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com)

[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" ->  [binary data] ->
HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\System32\blank.htm ->
HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk ->
HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> ->
HKEY_CURRENT_USER\: Main\\"Local Page" -> C:\Windows\system32\blank.htm ->
HKEY_CURRENT_USER\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_CURRENT_USER\: Main\\"Start Page" -> http://www.google.dk/ ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache" -> http://dk.msn.com/?ocid=iehp ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache AcceptLangs" -> da ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache_TIMESTAMP" -> 3F 5F B1 BA 5C 43 CA 01  [binary data] ->
HKEY_CURRENT_USER\: "ProxyEnable" -> 0 ->
< FireFox Settings [Prefs.js] > -> C:\Users\Mijay\AppData\Roaming\Mozilla\FireFox\Profiles\mdcicim5.default\prefs.js ->
browser.startup.homepage -> "http://www.google.dk/" ->
extensions.enabledItems -> {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1 ->
extensions.enabledItems -> 6 ->
extensions.enabledItems -> 2 ->
extensions.enabledItems -> 48 ->
extensions.enabledItems -> {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions ->  ->
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components -> C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins -> C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2009-10-12 15:50:04 | 00,000,000 | ---D | M]
< FireFox Extensions [User Folders] > ->
-> C:\Users\Mijay\AppData\Roaming\mozilla\Extensions -> [2009-10-12 14:50:36 | 00,000,000 | ---D | M]
-> C:\Users\Mijay\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} -> [2009-10-12 14:50:36 | 00,000,000 | ---D | M]
-> C:\Users\Mijay\AppData\Roaming\mozilla\Firefox\Profiles\mdcicim5.default\extensions -> [2009-10-12 15:29:37 | 00,101,826 | ---- | M] ()
-> C:\Users\Mijay\AppData\Roaming\mozilla\Firefox\Profiles\mdcicim5.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} -> [2009-10-12 15:29:37 | 00,101,826 | ---- | M] ()
< FireFox Extensions [Program Folders] > ->
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
< FireFox Components [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\components\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\components -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
browserdirprovider.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\browserdirprovider.dll -> [2009-08-24 22:17:23 | 00,023,544 | ---- | M] (Mozilla Foundation)
brwsrcmp.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\brwsrcmp.dll -> [2009-08-24 22:17:23 | 00,137,208 | ---- | M] (Mozilla Foundation)
< FireFox Plugins [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins -> [2009-10-12 15:50:04 | 00,000,000 | ---D | M]
npdeploytk.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npdeploytk.dll -> [2009-10-12 15:49:55 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.)
npnul32.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npnul32.dll -> [2009-08-24 22:17:23 | 00,065,016 | ---- | M] (mozilla.org)
npqtplugin.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin.dll -> [2009-10-12 15:04:41 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin2.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin2.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin3.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin3.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin4.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin4.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin5.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin5.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin6.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin6.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin7.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin7.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
np_gp.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\np_gp.dll -> [2009-09-23 16:37:30 | 00,032,448 | ---- | M] (NOS Microsystems Ltd.)
QuickTimePlugin.class -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\QuickTimePlugin.cla -> [2009-10-12 15:04:41 | 00,004,208 | ---- | M] ()
< FireFox SearchPlugins [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins -> [2009-10-12 14:50:29 | 00,000,000 | ---D | M]
amazon-co-uk.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\amazon-co-uk.xml -> [2009-08-24 21:26:29 | 00,001,525 | ---- | M] ()
answers.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\answers.xml -> [2009-08-24 21:26:29 | 00,002,193 | ---- | M] ()
creativecommons.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\creativecommons.xml -> [2009-08-24 21:26:29 | 00,001,534 | ---- | M] ()
eBay.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\eBay.xml -> [2009-08-24 21:26:29 | 00,002,344 | ---- | M] ()
google.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\google.xml -> [2009-08-24 21:26:29 | 00,002,371 | ---- | M] ()
wikipedia-da.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\wikipedia-da.xml -> [2009-08-24 21:26:29 | 00,001,178 | ---- | M] ()
yahoo-dk.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\yahoo-dk.xml -> [2009-08-24 21:26:29 | 00,000,799 | ---- | M] ()
< HOSTS File > (824 bytes and 21 lines) -> C:\Windows\System32\drivers\etc\Hosts ->
Reset Hosts
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe PDF Link Helper] -> [2009-02-27 12:07:26 | 00,075,128 | ---- | M] (Adobe Systems Incorporated)
{DBC80044-A445-435b-BC74-9C25C1C588A9} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [Java(tm) Plug-In 2 SSV Helper] -> [2009-10-12 15:49:55 | 00,041,760 | ---- | M] (Sun Microsystems, Inc.)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
"{32099AAC-C132-4136-9E9A-4E364A424E17}" [HKLM] -> C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [DAEMON Tools Toolbar] -> [2009-04-23 15:15:24 | 00,937,416 | ---- | M] ()
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ->
WebBrowser\\"{32099AAC-C132-4136-9E9A-4E364A424E17}" [HKLM] -> C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [DAEMON Tools Toolbar] -> [2009-04-23 15:15:24 | 00,937,416 | ---- | M] ()
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"avast!" -> C:\Program Files\Alwil Software\Avast4\ashDisp.exe ["C:\Program Files\Alwil Software\Avast4\ashDisp.exe"] -> [2009-09-15 12:56:48 | 00,081,000 | ---- | M] (ALWIL Software)
"HotKeysCmds" -> C:\Windows\System32\hkcmd.exe [C:\Windows\system32\hkcmd.exe] -> [2009-08-13 21:16:18 | 00,167,424 | ---- | M] (Intel Corporation)
"hpqSRMon" -> C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe] -> [2008-08-20 10:54:08 | 00,150,016 | ---- | M] (Hewlett-Packard)
"IgfxTray" -> C:\Windows\System32\igfxtray.exe [C:\Windows\system32\igfxtray.exe] -> [2009-08-13 21:16:18 | 00,135,168 | ---- | M] (Intel Corporation)
"Malwarebytes Anti-Malware (reboot)" -> C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe ["C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript] -> [2009-09-10 14:53:56 | 01,312,080 | ---- | M] (Malwarebytes Corporation)
"Persistence" -> C:\Windows\System32\igfxpers.exe [C:\Windows\system32\igfxpers.exe] -> [2009-08-13 21:15:48 | 00,144,384 | ---- | M] (Intel Corporation)
"QuickTime Task" -> C:\Program Files\QuickTime\QTTask.exe ["C:\Program Files\QuickTime\QTTask.exe" -atboottime] -> [2009-09-05 01:54:42 | 00,417,792 | ---- | M] (Apple Inc.)
"SunJavaUpdateSched" -> C:\Program Files\Java\jre6\bin\jusched.exe ["C:\Program Files\Java\jre6\bin\jusched.exe"] -> [2009-10-12 15:49:55 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.)
< RunOnce [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce ->
"Uninstall Adobe Download Manager" ->  ["C:\Windows\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1noarp] -> File not found
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"DAEMON Tools Lite" -> C:\Program Files\DAEMON Tools Lite\daemon.exe ["C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun] -> [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd)
"SUPERAntiSpyware" -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe] -> [2009-09-15 11:42:42 | 01,998,576 | ---- | M] (SUPERAntiSpyware.com)
"uTorrent" -> C:\Program Files\uTorrent\uTorrent.exe ["C:\Program Files\uTorrent\uTorrent.exe"] -> [2009-10-01 18:54:25 | 00,289,072 | ---- | M] (BitTorrent, Inc.)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"ConsentPromptBehaviorAdmin" ->  [5] -> File not found
\\"ConsentPromptBehaviorUser" ->  [3] -> File not found
\\"EnableInstallerDetection" ->  [1] -> File not found
\\"EnableLUA" ->  [1] -> File not found
\\"EnableSecureUIAPaths" ->  [1] -> File not found
\\"EnableUIADesktopToggle" ->  [0] -> File not found
\\"EnableVirtualization" ->  [1] -> File not found
\\"PromptOnSecureDesktop" ->  [1] -> File not found
\\"ValidateAdminCodeSignatures" ->  [0] -> File not found
\\"dontdisplaylastusername" ->  [0] -> File not found
\\"legalnoticecaption" ->  [] -> File not found
\\"legalnoticetext" ->  [] -> File not found
\\"scforceoption" ->  [0] -> File not found
\\"shutdownwithoutlogon" ->  [1] -> File not found
\\"undockwithoutlogon" ->  [1] -> File not found
\\"FilterAdministratorToken" ->  [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
\UIPI\Clipboard\ExceptionFormats\\"CF_TEXT" ->  [1] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_BITMAP" ->  [2] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_OEMTEXT" ->  [7] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIB" ->  [8] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_PALETTE" ->  [9] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_UNICODETEXT" ->  [13] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIBV5" ->  [17] -> File not found
< CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
< CurrentVersion Policy Settings - System [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"DisableRegistryTools" ->  [0] -> File not found
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}:Exec [HKLM] -> C:\Programs\PartyGaming\PartyPoker\RunApp.exe [Button: PartyPoker.com] -> [2009-08-24 11:45:52 | 00,110,592 | ---- | M] ()
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}:Exec [HKLM] -> C:\Programs\PartyGaming\PartyPoker\RunApp.exe [Menu: PartyPoker.com] -> [2009-08-24 11:45:52 | 00,110,592 | ---- | M] ()
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ ->
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"ButtonText" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"CLSID" [HKLM] ->  [{0000031A-0000-0000-C000-000000000046}] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Default Visible" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Exec" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"HotIcon" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Icon" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"MenuStatusBar" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"MenuText" [HKLM] ->  [Reg Error: Key error.] -> File not found
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
PluginsPageFriendlyName -> Microsoft ActiveX Gallery ->
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s ->
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->
{166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab [Shockwave ActiveX Control] ->
{3860DD98-0549-4D50-AA72-5D17D200EE10} [HKLM] -> http://cdn.scan.onecare.live.com/resource/download/scanner/da-DK/wlscctrl2.cab [Windows Live OneCare safety scanner control] ->
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] ->
{E2883E8F-472F-4FB0-9522-AC9BF37916A7} [HKLM] -> http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab [get_atlcom Class] ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4 ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{33B53B06-9330-4FFA-B7D0-2454C2FAF651}\\DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4  (Intel(R) WiFi Link 5100 AGN) ->
{47ADA274-9F3A-494E-A574-57C39A9D0973}\\DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4  (Broadcom NetLink (TM) Gigabit Ethernet) ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\explorer.exe -> [2009-07-14 03:14:20 | 02,613,248 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet ->
SystemPropertiesPerformance.exe -> C:\Windows\System32\SystemPropertiesPerformance.exe -> [2009-07-14 03:14:42 | 00,081,920 | ---- | M] (Microsoft Corporation)
/pagefile ->  -> File not found
*MultiFile Done* -> ->
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->
!SASWinLogon -> C:\Program Files\SUPERAntiSpyware\SASWINLO.dll -> [2009-09-03 15:21:42 | 00,548,352 | ---- | M] (SUPERAntiSpyware.com)
igfxcui -> C:\Windows\System32\igfxdev.dll -> [2009-08-13 21:15:04 | 00,217,088 | ---- | M] (Intel Corporation)
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad ->
"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks ->
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}" [HKLM] -> C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [] -> [2008-05-13 10:13:36 | 00,077,824 | ---- | M] (SuperAdBlocker.com)
< LSA Security Packages [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages ->
*LSA Security Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages ->
pku2u -> C:\Windows\System32\pku2u.dll -> [2009-07-14 03:16:12 | 00,186,880 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot ->
"AlternateShell" -> cmd.exe ->
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 ->
"DisplayName" -> CD-ROM Driver ->
"ImagePath" ->  [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > ->  ->
C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2009-06-10 23:42:20 | 00,000,024 | ---- | M] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 ->
\{3a20d862-b58e-11de-a48a-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3a20d862-b58e-11de-a48a-4c805820f7ba}\shell
\{3a20d862-b58e-11de-a48a-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{8f367d6e-b414-11de-a782-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8f367d6e-b414-11de-a782-4c805820f7ba}\shell
\{8f367d6e-b414-11de-a782-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{8f367d7d-b414-11de-a782-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8f367d7d-b414-11de-a782-4c805820f7ba}\shell
\{8f367d7d-b414-11de-a782-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{914b3602-af4f-11de-802d-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{914b3602-af4f-11de-802d-4c805820f7ba}\shell
\{914b3602-af4f-11de-802d-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command ->
comfile [open] -> "%1" %* -> File not found
exefile [open] -> "%1" %* -> File not found

[Registry - Additional Scans - Safe List]
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ ->
.bat [@ = batfile] -> "%1" %* ->
.chm [@ = chm.file] -> C:\Windows\hh.exe -> [2009-07-14 03:14:21 | 00,015,360 | ---- | M] (Microsoft Corporation)
.cmd [@ = cmdfile] -> "%1" %* ->
.com [@ = comfile] -> "%1" %* ->
.cpl [@ = cplfile] -> C:\Windows\System32\control.exe -> [2009-07-14 03:14:15 | 00,113,152 | ---- | M] (Microsoft Corporation)
.exe [@ = exefile] -> "%1" %* ->
.hlp [@ = hlpfile] -> C:\Windows\winhlp32.exe -> [2009-07-14 03:14:45 | 00,009,728 | ---- | M] (Microsoft Corporation)
.html [@ = htmlfile] -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
.pif [@ = piffile] -> "%1" %* ->
.scr [@ = scrfile] -> "%1" /S ->
< File Associations - Select to Repair > -> HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>\ ->
.html [@ = FirefoxHTML] -> C:\Program Files\Mozilla Firefox\firefox.exe -> [2009-08-24 22:17:23 | 00,908,280 | ---- | M] (Mozilla Corporation)
< Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
\\"cval" ->  [1] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
\Svc\\"VistaSp1" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found
\Svc\\"AntiVirusOverride" ->  [0] -> File not found
\Svc\\"AntiSpywareOverride" ->  [0] -> File not found
\Svc\\"FirewallOverride" ->  [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
\\"DisableNotifications" ->  [0] -> File not found
\\"EnableFirewall" ->  [1] -> File not found
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> ->
< Winsock2 Catalogs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\ ->
NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\napinsp.dll,-1000] -> C:\Windows\System32\napinsp.dll -> [2009-07-14 03:16:02 | 00,052,224 | ---- | M] (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000005 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] -> C:\Windows\System32\pnrpnsp.dll -> [2009-07-14 03:16:12 | 00,065,024 | ---- | M] (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000006 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] -> C:\Windows\System32\pnrpnsp.dll -> [2009-07-14 03:16:12 | 00,065,024 | ---- | M] (Microsoft Corporation)
< Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
ldap -> 4 = Restricted sites (Not a Default Protocol) ->
news -> 4 = Restricted sites (Not a Default Protocol) ->
nntp -> 4 = Restricted sites (Not a Default Protocol) ->
oecmd -> 4 = Restricted sites (Not a Default Protocol) ->
snews -> 4 = Restricted sites (Not a Default Protocol) ->
< Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
{0C34B801-6AEC-4667-B053-03A67E2D0415} -> Apple Application Support
{26A24AE4-039D-4CA4-87B4-2F83216016FF} -> Java(TM) 6 Update 16
{5DB65884-C963-4454-AABA-4CA3089281FA} -> NVIDIA PhysX
{681B698F-C997-42C3-B184-B489C6CA24C9} -> HPPhotoSmartDiscLabelContent1
{6956856F-B6B3-4BE0-BA0B-8F495BE32033} -> Apple Software Update
{A429C2AE-EBF1-4F81-A221-1C115CAADDAD} -> QuickTime
{A49F249F-0C91-497F-86DF-B2585E8E76B7} -> Microsoft Visual C++ 2005 Redistributable
{AC76BA86-7AD7-1030-7B44-A91000000001} -> Adobe Reader 9.1 - Dansk
{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} -> SUPERAntiSpyware Free Edition
{D3F80A98-05AB-4D8C-9272-766CCFA6A48D} -> THE SETTLERS - Rise of an Empire
{D79113E7-274C-470B-BD46-01B10219DF6A} -> HPPhotosmartEssential
{E2883E8F-472F-4fb0-9522-AC9BF37916A7} -> Adobe Download Manager
{FE0646A7-19D0-41B4-A2BB-2C35D644270D} -> Windows Live OneCare safety scanner
Adobe Flash Player ActiveX -> Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin -> Adobe Flash Player 10 Plugin
Adobe Shockwave Player -> Adobe Shockwave Player 11.5
avast! -> avast! Antivirus
AVI Splitter_is1 -> AVI Splitter
CCleaner -> CCleaner (remove only)
Cheat Engine 5.5_is1 -> Cheat Engine 5.5
DAEMON Tools Toolbar -> DAEMON Tools Toolbar
eToro -> eToro
Free Create-Burn ISO Image_is1 -> Free Create-Burn ISO Image v2.0
HackerEvolutionUntold -> Hacker Evolution: Untold (2.01.033)(remove only)
HDMI -> Intel(R) Graphics Media Accelerator Driver
HijackThis -> HijackThis 2.0.2
HP Photosmart Essential -> HP Photosmart Essential 3.5
ImgBurn -> ImgBurn
KLiteCodecPack_is1 -> K-Lite Codec Pack 5.1.0 (Full)
Magic ISO Maker v5.5 (build 0276) -> Magic ISO Maker v5.5 (build 0276)
Malwarebytes' Anti-Malware_is1 -> Malwarebytes' Anti-Malware
Mobile Partner -> Mobile Partner
Mozilla Firefox (3.5.3) -> Mozilla Firefox (3.5.3)
Network Stumbler -> Network Stumbler 0.4.0 (remove only)
PartyPoker -> PartyPoker
Power Management Driver -> ThinkPad Power Management Driver
SMAC 2.0 -> SMAC 2.0
SubtitleWorkshop -> Subtitle Workshop 2.51
TVWiz -> Intel(R) TV Wizard
uTorrent -> µTorrent
Windows Live OneCare safety scanner -> Windows Live OneCare safety scanner
WinRAR archiver -> WinRAR arkivering
< Uninstall List [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
Absolute Poker -> Absolute Poker
< EventViewer Logs - Last 10 Errors > -> Event Information -> Description
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

[Files/Folders - Created Within 30 Days]
ProgramData -> C:\ProgramData -> [2009-10-13 14:44:25 | 00,000,000 | -H-D | M]
Adobe -> C:\ProgramData\Adobe -> [2009-10-03 19:41:05 | 00,000,000 | ---D | M]
Apple -> C:\ProgramData\Apple -> [2009-10-12 15:03:21 | 00,000,000 | ---D | M]
Apple Computer -> C:\ProgramData\Apple Computer -> [2009-10-12 15:04:27 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\ProgramData\DAEMON Tools Lite -> [2009-10-02 14:33:14 | 00,000,000 | ---D | M]
Hewlett-Packard -> C:\ProgramData\Hewlett-Packard -> [2009-10-13 14:41:13 | 00,000,000 | ---D | M]
HP -> C:\ProgramData\HP -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
Malwarebytes -> C:\ProgramData\Malwarebytes -> [2009-10-11 13:59:37 | 00,000,000 | ---D | M]
Media Center Programs -> C:\ProgramData\Media Center Programs -> [2009-10-02 16:22:32 | 00,000,000 | ---D | M]
Microsoft -> C:\ProgramData\Microsoft -> [2009-10-12 18:04:46 | 00,000,000 | --SD | M]
NOS -> C:\ProgramData\NOS -> [2009-10-12 15:28:31 | 00,000,000 | ---D | M]
SUPERAntiSpyware.com -> C:\ProgramData\SUPERAntiSpyware.com -> [2009-10-12 15:46:53 | 00,000,000 | ---D | M]
Roaming -> C:\Users\Mijay\AppData\Roaming -> [2009-10-12 17:25:54 | 00,000,000 | ---D | M]
Absolute Poker -> C:\Users\Mijay\AppData\Roaming\Absolute Poker -> [2009-10-11 17:31:21 | 00,000,000 | ---D | M]
Adobe -> C:\Users\Mijay\AppData\Roaming\Adobe -> [2009-10-03 19:41:33 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\Users\Mijay\AppData\Roaming\DAEMON Tools Lite -> [2009-10-02 16:14:26 | 00,000,000 | ---D | M]
Identities -> C:\Users\Mijay\AppData\Roaming\Identities -> [2009-10-01 18:05:59 | 00,000,000 | ---D | M]
ImgBurn -> C:\Users\Mijay\AppData\Roaming\ImgBurn -> [2009-10-12 17:37:46 | 00,000,000 | ---D | M]
Macromedia -> C:\Users\Mijay\AppData\Roaming\Macromedia -> [2009-10-01 19:07:12 | 00,000,000 | ---D | M]
Malwarebytes -> C:\Users\Mijay\AppData\Roaming\Malwarebytes -> [2009-10-11 13:59:42 | 00,000,000 | ---D | M]
Microsoft -> C:\Users\Mijay\AppData\Roaming\Microsoft -> [2009-10-11 15:54:38 | 00,000,000 | --SD | M]
Mozilla -> C:\Users\Mijay\AppData\Roaming\Mozilla -> [2009-10-12 14:50:46 | 00,000,000 | ---D | M]
SUPERAntiSpyware.com -> C:\Users\Mijay\AppData\Roaming\SUPERAntiSpyware.com -> [2009-10-12 15:46:31 | 00,000,000 | ---D | M]
uTorrent -> C:\Users\Mijay\AppData\Roaming\uTorrent -> [2009-10-13 23:42:02 | 00,000,000 | ---D | M]
WinRAR -> C:\Users\Mijay\AppData\Roaming\WinRAR -> [2009-10-01 20:09:00 | 00,000,000 | ---D | M]
Local -> C:\Users\Mijay\AppData\Local -> [2009-10-13 14:45:31 | 00,000,000 | ---D | M]
Adobe -> C:\Users\Mijay\AppData\Local\Adobe -> [2009-10-03 19:42:02 | 00,000,000 | ---D | M]
Apple -> C:\Users\Mijay\AppData\Local\Apple -> [2009-10-12 15:03:23 | 00,000,000 | ---D | M]
Application Data -> C:\Users\Mijay\AppData\Local\Application Data -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
Diagnostics -> C:\Users\Mijay\AppData\Local\Diagnostics -> [2009-10-08 16:08:29 | 00,000,000 | ---D | M]
ElevatedDiagnostics -> C:\Users\Mijay\AppData\Local\ElevatedDiagnostics -> [2009-10-12 18:49:16 | 00,000,000 | ---D | M]
History -> C:\Users\Mijay\AppData\Local\History -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
HP -> C:\Users\Mijay\AppData\Local\HP -> [2009-10-13 14:45:31 | 00,000,000 | ---D | M]
Microsoft -> C:\Users\Mijay\AppData\Local\Microsoft -> [2009-10-11 17:12:22 | 00,000,000 | ---D | M]
Microsoft Games -> C:\Users\Mijay\AppData\Local\Microsoft Games -> [2009-10-09 17:00:39 | 00,000,000 | ---D | M]
Mozilla -> C:\Users\Mijay\AppData\Local\Mozilla -> [2009-10-12 14:50:35 | 00,000,000 | ---D | M]
Temp -> C:\Users\Mijay\AppData\Local\Temp -> [2009-10-13 23:39:17 | 00,000,000 | ---D | M]
Temporary Internet Files -> C:\Users\Mijay\AppData\Local\Temporary Internet Files -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
VirtualStore -> C:\Users\Mijay\AppData\Local\VirtualStore -> [2009-10-03 01:00:18 | 00,000,000 | ---D | M]
Common Files -> C:\Program Files\Common Files -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
Adobe -> C:\Program Files\Common Files\Adobe -> [2009-10-03 19:40:53 | 00,000,000 | ---D | M]
Apple -> C:\Program Files\Common Files\Apple -> [2009-10-12 15:03:29 | 00,000,000 | ---D | M]
HP -> C:\Program Files\Common Files\HP -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
microsoft shared -> C:\Program Files\Common Files\microsoft shared -> [2009-10-08 19:45:57 | 00,000,000 | ---D | M]
System -> C:\Program Files\Common Files\System -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Wise Installation Wizard -> C:\Program Files\Common Files\Wise Installation Wizard -> [2009-10-12 15:46:11 | 00,000,000 | ---D | M]
Program Files -> C:\Program Files -> [2009-10-13 14:44:47 | 00,000,000 | R--D | M]
Adobe -> C:\Program Files\Adobe -> [2009-10-03 19:40:39 | 00,000,000 | ---D | M]
AGEIA Technologies -> C:\Program Files\AGEIA Technologies -> [2009-10-08 19:40:59 | 00,000,000 | ---D | M]
Alwil Software -> C:\Program Files\Alwil Software -> [2009-10-11 14:31:19 | 00,000,000 | ---D | M]
Apple Software Update -> C:\Program Files\Apple Software Update -> [2009-10-12 15:03:22 | 00,000,000 | ---D | M]
avisplit -> C:\Program Files\avisplit -> [2009-10-01 20:33:25 | 00,000,000 | ---D | M]
CCleaner -> C:\Program Files\CCleaner -> [2009-10-11 13:57:07 | 00,000,000 | ---D | M]
Cheat Engine -> C:\Program Files\Cheat Engine -> [2009-10-09 17:00:08 | 00,000,000 | ---D | M]
Common Files -> C:\Program Files\Common Files -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\Program Files\DAEMON Tools Lite -> [2009-10-02 14:33:11 | 00,000,000 | ---D | M]
DAEMON Tools Toolbar -> C:\Program Files\DAEMON Tools Toolbar -> [2009-10-02 14:33:11 | 00,000,000 | ---D | M]
DVD Maker -> C:\Program Files\DVD Maker -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Electronic Arts -> C:\Program Files\Electronic Arts -> [2009-10-08 19:47:45 | 00,000,000 | ---D | M]
eToro -> C:\Program Files\eToro -> [2009-10-03 16:39:14 | 00,000,000 | ---D | M]
Free Create-Burn ISO Image -> C:\Program Files\Free Create-Burn ISO Image -> [2009-10-12 16:54:24 | 00,000,000 | ---D | M]
Hacker Evolution Untold -> C:\Program Files\Hacker Evolution Untold -> [2009-10-03 18:50:17 | 00,000,000 | ---D | M]
HP -> C:\Program Files\HP -> [2009-10-13 14:45:17 | 00,000,000 | ---D | M]
ImgBurn -> C:\Program Files\ImgBurn -> [2009-10-12 17:08:40 | 00,000,000 | ---D | M]
InstallShield Installation Information -> C:\Program Files\InstallShield Installation Information -> [2009-10-02 16:14:45 | 00,000,000 | -H-D | M]
Intel -> C:\Program Files\Intel -> [2009-10-03 15:24:44 | 00,000,000 | ---D | M]
Internet Explorer -> C:\Program Files\Internet Explorer -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
Java -> C:\Program Files\Java -> [2009-10-12 15:49:49 | 00,000,000 | ---D | M]
KLC -> C:\Program Files\KLC -> [2009-10-01 18:24:42 | 00,000,000 | ---D | M]
K-Lite Codec Pack -> C:\Program Files\K-Lite Codec Pack -> [2009-10-01 20:13:43 | 00,000,000 | ---D | M]
MagicISO -> C:\Program Files\MagicISO -> [2009-10-12 17:04:25 | 00,000,000 | ---D | M]
Malwarebytes' Anti-Malware -> C:\Program Files\Malwarebytes' Anti-Malware -> [2009-10-11 13:59:41 | 00,000,000 | ---D | M]
Mobile Partner -> C:\Program Files\Mobile Partner -> [2009-10-08 16:22:16 | 00,000,000 | ---D | M]
Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2009-10-12 14:50:29 | 00,000,000 | ---D | M]
Network Stumbler -> C:\Program Files\Network Stumbler -> [2009-10-11 15:54:36 | 00,000,000 | ---D | M]
NOS -> C:\Program Files\NOS -> [2009-10-12 15:27:49 | 00,000,000 | ---D | M]
QuickTime -> C:\Program Files\QuickTime -> [2009-10-12 15:04:41 | 00,000,000 | ---D | M]
SUPERAntiSpyware -> C:\Program Files\SUPERAntiSpyware -> [2009-10-12 15:46:32 | 00,000,000 | ---D | M]
Trend Micro -> C:\Program Files\Trend Micro -> [2009-10-11 15:13:14 | 00,000,000 | ---D | M]
Ubisoft -> C:\Program Files\Ubisoft -> [2009-10-02 16:14:46 | 00,000,000 | ---D | M]
URUSoft -> C:\Program Files\URUSoft -> [2009-10-01 22:38:33 | 00,000,000 | ---D | M]
uTorrent -> C:\Program Files\uTorrent -> [2009-10-01 18:54:25 | 00,000,000 | ---D | M]
Windows Defender -> C:\Program Files\Windows Defender -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Journal -> C:\Program Files\Windows Journal -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Live Safety Center -> C:\Program Files\Windows Live Safety Center -> [2009-10-11 15:42:31 | 00,000,000 | ---D | M]
Windows Mail -> C:\Program Files\Windows Mail -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Media Player -> C:\Program Files\Windows Media Player -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Photo Viewer -> C:\Program Files\Windows Photo Viewer -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Sidebar -> C:\Program Files\Windows Sidebar -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
WinRAR -> C:\Program Files\WinRAR -> [2009-10-01 20:08:07 | 00,000,000 | ---D | M]
OTS.exe -> C:\Users\Mijay\Desktop\OTS.exe -> [2009-10-13 23:39:23 | 00,520,192 | ---- | C] (OldTimer Tools)
HP -> C:\ProgramData\HP -> [2009-10-13 14:44:24 | 00,000,000 | ---D | C]
Hewlett-Packard -> C:\ProgramData\Hewlett-Packard -> [2009-10-13 14:41:13 | 00,000,000 | ---D | C]
WNASPI32.DLL -> C:\Windows\System32\WNASPI32.DLL -> [2009-10-12 16:54:24 | 00,045,056 | ---- | C] (Adaptec)
ASPI32.SYS -> C:\Windows\System32\drivers\ASPI32.SYS -> [2009-10-12 16:54:24 | 00,016,877 | ---- | C] (Adaptec)
SUPERAntiSpyware.com -> C:\ProgramData\SUPERAntiSpyware.com -> [2009-10-12 15:46:53 | 00,000,000 | ---D | C]
NOS -> C:\ProgramData\NOS -> [2009-10-12 15:27:49 | 00,000,000 | ---D | C]
Apple Computer -> C:\ProgramData\Apple Computer -> [2009-10-12 15:04:27 | 00,000,000 | ---D | C]
Apple -> C:\ProgramDa
Avatar billede f-arn Guru
14. oktober 2009 - 13:57 #12
Du har ikke fået hele loggen med!
Avatar billede mijaysen Praktikant
14. oktober 2009 - 14:05 #13
hmmm.. Okay laver lige en ny så
Avatar billede mijaysen Praktikant
14. oktober 2009 - 14:11 #14
Her er den nye. Håber jeg har fået Alt med denne gang:
[code]
OTS logfile created on: 14-10-2009 14:06:25 - Run 2
OTS by OldTimer - Version 3.0.21.0    Folder = C:\Users\Mijay\Desktop
Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

1,95 Gb Total Physical Memory | 1,04 Gb Available Physical Memory | 53,65% Memory free
3,89 Gb Paging File | 2,61 Gb Available in Paging File | 67,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74,53 Gb Total Space | 9,43 Gb Free Space | 12,66% Space Free | Partition Type: NTFS
Drive D: | 7,17 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MIJAY-PC
Current User Name: Mijay
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days

[Processes - Safe List]
ashdisp.exe -> C:\Program Files\Alwil Software\Avast4\ashDisp.exe -> [2009-09-15 12:56:48 | 00,081,000 | ---- | M] (ALWIL Software)
ashmaisv.exe -> C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -> [2009-09-15 12:56:28 | 00,254,040 | ---- | M] (ALWIL Software)
ashserv.exe -> C:\Program Files\Alwil Software\Avast4\ashServ.exe -> [2009-09-15 12:56:43 | 00,138,680 | ---- | M] (ALWIL Software)
ashwebsv.exe -> C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -> [2009-09-15 12:54:13 | 00,352,920 | ---- | M] (ALWIL Software)
aswupdsv.exe -> C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -> [2009-09-15 12:49:40 | 00,018,752 | ---- | M] (ALWIL Software)
daemon.exe -> C:\Program Files\DAEMON Tools Lite\daemon.exe -> [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd)
explorer.exe -> C:\Windows\Explorer.EXE -> [2009-07-14 03:14:20 | 02,613,248 | ---- | M] (Microsoft Corporation)
flashutil10c.exe -> C:\Windows\System32\Macromed\Flash\FlashUtil10c.exe -> [2009-07-18 05:12:12 | 00,257,440 | R--- | M] (Adobe Systems, Inc.)
hkcmd.exe -> C:\Windows\System32\hkcmd.exe -> [2009-08-13 21:16:18 | 00,167,424 | ---- | M] (Intel Corporation)
hpqsrmon.exe -> C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe -> [2008-08-20 10:54:08 | 00,150,016 | ---- | M] (Hewlett-Packard)
ibmpmsvc.exe -> C:\Windows\System32\ibmpmsvc.exe -> [2007-06-01 02:02:06 | 00,036,400 | ---- | M] (Lenovo)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
igfxpers.exe -> C:\Windows\System32\igfxpers.exe -> [2009-08-13 21:15:48 | 00,144,384 | ---- | M] (Intel Corporation)
igfxsrvc.exe -> C:\Windows\System32\igfxsrvc.exe -> [2009-08-13 21:15:36 | 00,246,272 | ---- | M] (Intel Corporation)
igfxtray.exe -> C:\Windows\System32\igfxtray.exe -> [2009-08-13 21:16:18 | 00,135,168 | ---- | M] (Intel Corporation)
jusched.exe -> C:\Program Files\Java\jre6\bin\jusched.exe -> [2009-10-12 15:49:55 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.)
ots.exe -> C:\Users\Mijay\Desktop\OTS.exe -> [2009-10-13 23:39:33 | 00,520,192 | ---- | M] (OldTimer Tools)
superantispyware.exe -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe -> [2009-09-15 11:42:42 | 01,998,576 | ---- | M] (SUPERAntiSpyware.com)
taskhost.exe -> C:\Windows\System32\taskhost.exe -> [2009-07-14 03:14:42 | 00,049,152 | ---- | M] (Microsoft Corporation)
wmplayer.exe -> C:\Program Files\Windows Media Player\wmplayer.exe -> [2009-07-14 03:14:47 | 00,164,864 | ---- | M] (Microsoft Corporation)
wmpnetwk.exe -> C:\Program Files\Windows Media Player\wmpnetwk.exe -> [2009-07-14 03:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation)

[Win32 Services - Safe List]
(AppIDSvc) Program-id [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\appidsvc.dll -> [2009-07-14 03:14:53 | 00,027,648 | ---- | M] (Microsoft Corporation)
(aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -> [2009-09-15 12:49:40 | 00,018,752 | ---- | M] (ALWIL Software)
(avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> C:\Program Files\Alwil Software\Avast4\ashServ.exe -> [2009-09-15 12:56:43 | 00,138,680 | ---- | M] (ALWIL Software)
(avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -> [2009-09-15 12:56:28 | 00,254,040 | ---- | M] (ALWIL Software)
(avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -> [2009-09-15 12:54:13 | 00,352,920 | ---- | M] (ALWIL Software)
(AxInstSV) ActiveX-installationsprogram (AxInstSV) [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\AxInstSV.dll -> [2009-07-14 03:14:58 | 00,088,064 | ---- | M] (Microsoft Corporation)
(BDESVC) Tjenesten BitLocker-drevkryptering [Win32_Shared | Unknown | Stopped] -> C:\Windows\System32\bdesvc.dll -> [2009-07-14 03:14:59 | 00,076,800 | ---- | M] (Microsoft Corporation)
(clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2009-06-10 23:23:09 | 00,066,384 | ---- | M] (Microsoft Corporation)
(defragsvc) Diskdefragmentering [Win32_Own | On_Demand | Stopped] -> C:\Windows\System32\defragsvc.dll -> [2009-07-14 03:15:10 | 00,218,624 | ---- | M] (Microsoft Corporation)
(Dhcp) DHCP-klientprogram [Win32_Shared | Auto | Running] -> C:\Windows\System32\dhcpcore.dll -> [2009-07-14 03:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation)
(ehRecvr) Windows Media Center-modtagertjeneste [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehRecvr.exe -> [2009-07-14 03:14:19 | 00,557,056 | ---- | M] (Microsoft Corporation)
(ehSched) Tjenesten Windows Media Center-planlægning [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehsched.exe -> [2009-07-14 03:14:19 | 00,094,720 | ---- | M] (Microsoft Corporation)
(eventlog) Windows-hændelseslog [Win32_Shared | Auto | Running] -> C:\Windows\System32\wevtsvc.dll -> [2009-07-14 03:16:18 | 01,086,464 | ---- | M] (Microsoft Corporation)
(FontCache) Tjenesten Windows-skrifttypecache [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\FntCache.dll -> [2009-07-14 03:15:21 | 00,797,696 | ---- | M] (Microsoft Corporation)
(FontCache3.0.0.0) Windows Presentation Foundation Font Cache 3.0.0.0 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -> [2009-06-10 23:14:51 | 00,042,856 | ---- | M] (Microsoft Corporation)
(HomeGroupListener) Lyttefunktion til hjemmegruppe [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\ListSvc.dll -> [2009-07-14 03:15:36 | 00,194,560 | ---- | M] (Microsoft Corporation)
(HomeGroupProvider) Udbyder af hjemmegruppe [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\provsvc.dll -> [2009-07-14 03:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation)
(IBMPMSVC) ThinkPad PM Service [Win32_Own | Auto | Running] -> C:\Windows\System32\ibmpmsvc.exe -> [2007-06-01 02:02:06 | 00,036,400 | ---- | M] (Lenovo)
(idsvc) Windows CardSpace [Win32_Shared | Unknown | Stopped] -> C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -> [2009-06-10 23:14:02 | 00,878,416 | ---- | M] (Microsoft Corporation)
(NetTcpPortSharing) Net.Tcp-portdelingstjeneste [Win32_Shared | Disabled | Stopped] -> C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -> [2009-06-10 23:14:05 | 00,128,848 | ---- | M] (Microsoft Corporation)
(p2pimsvc) Identitetsstyring for peer-netværk [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\pnrpsvc.dll -> [2009-07-14 03:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation)
(PeerDistSvc) BranchCache [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\peerdistsvc.dll -> [2009-07-14 03:16:12 | 01,004,544 | ---- | M] (Microsoft Corporation)
(PNRPAutoReg) PNRP - Tjeneste til udgivelse af computernavn [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\pnrpauto.dll -> [2009-07-14 03:16:12 | 00,020,480 | ---- | M] (Microsoft Corporation)
(PNRPsvc) PNRP (Peer Name Resolution Protocol) [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\pnrpsvc.dll -> [2009-07-14 03:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation)
(Power) Strøm [Win32_Shared | Auto | Running] -> C:\Windows\System32\umpo.dll -> [2009-07-14 03:16:17 | 00,119,808 | ---- | M] (Microsoft Corporation)
(RpcEptMapper) RPC-slutpunktsafbildning [Win32_Shared | Unknown | Running] -> C:\Windows\System32\RpcEpMap.dll -> [2009-07-14 03:16:13 | 00,043,520 | ---- | M] (Microsoft Corporation)
(SensrSvc) Tilpasset lysstyrke [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\sensrsvc.dll -> [2009-07-14 03:16:13 | 00,025,088 | ---- | M] (Microsoft Corporation)
(sppsvc) Softwarebeskyttelse [Win32_Own | Auto | Stopped] -> C:\Windows\System32\sppsvc.exe -> [2009-07-14 03:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation)
(sppuinotify) SPP-meddelelsestjeneste [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\sppuinotify.dll -> [2009-07-14 03:16:15 | 00,053,760 | ---- | M] (Microsoft Corporation)
(Themes) Temaer [Win32_Shared | Auto | Running] -> C:\Windows\System32\themeservice.dll -> [2009-07-14 03:16:16 | 00,037,376 | ---- | M] (Microsoft Corporation)
(WbioSrvc) Tjenesten Windows Biometri [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\wbiosrvc.dll -> [2009-07-14 03:16:17 | 00,151,552 | ---- | M] (Microsoft Corporation)
(WinDefend) Windows Defender [Win32_Shared | Auto | Running] -> C:\Program Files\Windows Defender\mpsvc.dll -> [2009-07-14 03:15:41 | 00,680,960 | ---- | M] (Microsoft Corporation)
(WMPNetworkSvc) Windows Media Player Network Sharing Service [Win32_Own | Auto | Running] -> C:\Program Files\Windows Media Player\wmpnetwk.exe -> [2009-07-14 03:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation)
(WwanSvc) WWAN AutoConfig [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\wwansvc.dll -> [2009-07-14 03:16:21 | 00,185,856 | ---- | M] (Microsoft Corporation)

[Driver Services - Safe List]
(1394ohci) 1394 OHCI Compliant Host Controller [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\1394ohci.sys -> [2009-07-14 01:52:00 | 00,163,328 | ---- | M] (Microsoft Corporation)
(AcpiPmi) ACPI Power Meter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\acpipmi.sys -> [2009-07-14 01:16:36 | 00,009,728 | ---- | M] (Microsoft Corporation)
(adp94xx) adp94xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adp94xx.sys -> [2009-07-14 03:26:15 | 00,422,976 | ---- | M] (Adaptec, Inc.)
(adpahci) adpahci [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adpahci.sys -> [2009-07-14 03:26:17 | 00,297,552 | ---- | M] (Adaptec, Inc.)
(adpu320) adpu320 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adpu320.sys -> [2009-07-14 03:26:15 | 00,146,512 | ---- | M] (Adaptec, Inc.)
(aic78xx) aic78xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\djsvs.sys -> [2009-07-14 03:20:28 | 00,070,720 | ---- | M] (Adaptec, Inc.)
(aliide) aliide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\aliide.sys -> [2009-07-14 03:26:15 | 00,014,400 | ---- | M] (Acer Laboratories Inc.)
(AmdPPM) AMD Processor Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdppm.sys -> [2009-07-14 01:11:04 | 00,052,736 | ---- | M] (Microsoft Corporation)
(amdsata) amdsata [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdsata.sys -> [2009-07-14 03:26:15 | 00,079,952 | ---- | M] (Advanced Micro Devices)
(amdsbs) amdsbs [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdsbs.sys -> [2009-07-14 03:26:15 | 00,159,312 | ---- | M] (AMD Technologies Inc.)
(amdxata) amdxata [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\amdxata.sys -> [2009-07-14 03:26:15 | 00,023,616 | ---- | M] (Advanced Micro Devices)
(AppID) AppID-driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\drivers\appid.sys -> [2009-07-14 01:36:52 | 00,050,176 | ---- | M] (Microsoft Corporation)
(arc) arc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\arc.sys -> [2009-07-14 03:26:15 | 00,076,368 | ---- | M] (Adaptec, Inc.)
(arcsas) arcsas [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\arcsas.sys -> [2009-07-14 03:26:15 | 00,086,608 | ---- | M] (Adaptec, Inc.)
(Aspi32) Aspi32 [Kernel | Auto | Running] -> C:\Windows\System32\drivers\aspi32.sys -> [2002-07-17 08:53:02 | 00,016,877 | ---- | M] (Adaptec)
(aswFsBlk) aswFsBlk [File_System | Auto | Running] -> C:\Windows\System32\DRIVERS\aswFsBlk.sys -> [2009-09-15 12:55:19 | 00,020,560 | ---- | M] (ALWIL Software)
(aswMonFlt) aswMonFlt [File_System | Auto | Running] -> C:\Windows\System32\DRIVERS\aswMonFlt.sys -> [2009-09-15 12:55:09 | 00,053,328 | ---- | M] (ALWIL Software)
(aswRdr) aswRdr [Kernel | System | Running] -> C:\Windows\System32\drivers\aswRdr.sys -> [2009-09-15 12:54:21 | 00,023,152 | ---- | M] (ALWIL Software)
(aswSP) avast! Self Protection [Kernel | System | Running] -> C:\Windows\System32\drivers\aswSP.sys -> [2009-09-15 12:55:30 | 00,114,768 | ---- | M] (ALWIL Software)
(aswTdi) avast! Network Shield Support [Kernel | System | Running] -> C:\Windows\System32\drivers\aswTdi.sys -> [2009-09-15 12:54:30 | 00,052,368 | ---- | M] (ALWIL Software)
(atksgt) atksgt [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\atksgt.sys -> [2009-10-11 17:25:44 | 00,281,760 | ---- | M] ()
(b06bdrv) Broadcom NetXtreme II VBD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\bxvbdx.sys -> [2009-07-14 00:02:48 | 00,430,080 | ---- | M] (Broadcom Corporation)
(b57nd60x) Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\b57nd60x.sys -> [2009-07-14 00:02:49 | 00,229,888 | ---- | M] (Broadcom Corporation)
(BrFiltLo) Brother USB Mass-Storage Lower Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\BrFiltLo.sys -> [2009-07-14 00:53:28 | 00,013,568 | ---- | M] (Brother Industries, Ltd.)
(BrFiltUp) Brother USB Mass-Storage Upper Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\BrFiltUp.sys -> [2009-07-14 00:53:28 | 00,005,248 | ---- | M] (Brother Industries, Ltd.)
(Brserid) Brother MFC Serial Port Interface Driver (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\Brserid.sys -> [2009-07-14 02:57:25 | 00,272,128 | ---- | M] (Brother Industries Ltd.)
(BrSerWdm) Brother WDM Serial driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrSerWdm.sys -> [2009-07-14 00:53:32 | 00,062,336 | ---- | M] (Brother Industries Ltd.)
(BrUsbMdm) Brother MFC USB Fax Only Modem [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrUsbMdm.sys -> [2009-07-14 00:53:33 | 00,012,160 | ---- | M] (Brother Industries Ltd.)
(BrUsbSer) Brother MFC USB Serial WDM Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrUsbSer.sys -> [2009-07-14 00:53:33 | 00,011,904 | ---- | M] (Brother Industries Ltd.)
(cmdide) cmdide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\cmdide.sys -> [2009-07-14 03:26:21 | 00,015,952 | ---- | M] (CMD Technology, Inc.)
(CNG) CNG [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\cng.sys -> [2009-07-14 03:17:54 | 00,369,568 | ---- | M] (Microsoft Corporation)
(CompositeBus) Composite Bus Enumerator Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\CompositeBus.sys -> [2009-07-14 01:45:26 | 00,031,232 | ---- | M] (Microsoft Corporation)
(discache) System Attribute Cache [Kernel | System | Running] -> C:\Windows\System32\drivers\discache.sys -> [2009-07-14 01:24:05 | 00,032,256 | ---- | M] (Microsoft Corporation)
(ebdrv) Broadcom NetXtreme II 10 GigE VBD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\evbdx.sys -> [2009-07-14 00:02:48 | 03,100,160 | ---- | M] (Broadcom Corporation)
(elxstor) elxstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\elxstor.sys -> [2009-07-14 03:20:28 | 00,453,712 | ---- | M] (Emulex)
(FsDepends) File System Dependency Minifilter [File_System | On_Demand | Stopped] -> C:\Windows\System32\drivers\FsDepends.sys -> [2009-07-14 03:20:28 | 00,046,160 | ---- | M] (Microsoft Corporation)
(hcw85cir) Hauppauge Consumer Infrared Receiver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\drivers\hcw85cir.sys -> [2009-07-14 00:54:14 | 00,026,624 | ---- | M] (Hauppauge Computer Works, Inc.)
(HidBatt) HID UPS Battery Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\HidBatt.sys -> [2009-07-14 01:19:21 | 00,021,504 | ---- | M] (Microsoft Corporation)
(HpSAMD) HpSAMD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\HpSAMD.sys -> [2009-07-14 03:20:28 | 00,067,152 | ---- | M] (Hewlett-Packard Company)
(hwdatacard) Huawei DataCard USB Modem and USB Serial [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ewusbmdm.sys -> [2009-06-22 19:38:24 | 00,102,912 | ---- | M] (Huawei Technologies Co., Ltd.)
(hwpolicy) Hardware Policy Driver [Kernel | Boot | Running] -> C:\Windows\System32\drivers\hwpolicy.sys -> [2009-07-14 03:20:36 | 00,013,904 | ---- | M] (Microsoft Corporation)
(hwusbdev) Huawei DataCard USB PNP Device [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ewusbdev.sys -> [2009-06-22 19:26:06 | 00,100,736 | ---- | M] (Huawei Technologies Co., Ltd.)
(iaStorV) iaStorV [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\iaStorV.sys -> [2009-07-14 03:20:36 | 00,332,352 | ---- | M] (Intel Corporation)
(IBMPMDRV) IBMPMDRV [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\ibmpmdrv.sys -> [2007-06-01 02:01:30 | 00,021,424 | ---- | M] (Lenovo.)
(igfx) igfx [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\igdkmd32.sys -> [2009-08-13 21:48:00 | 05,946,368 | ---- | M] (Intel Corporation)
(iirsp) iirsp [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\iirsp.sys -> [2009-07-14 03:20:36 | 00,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH)
(KSecPkg) KSecPkg [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\ksecpkg.sys -> [2009-07-14 03:20:36 | 00,133,200 | ---- | M] (Microsoft Corporation)
(lirsgt) lirsgt [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\lirsgt.sys -> [2009-10-11 17:25:44 | 00,025,888 | ---- | M] ()
(LSI_FC) LSI_FC [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_fc.sys -> [2009-07-14 03:20:36 | 00,095,824 | ---- | M] (LSI Corporation)
(LSI_SAS) LSI_SAS [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_sas.sys -> [2009-07-14 03:20:37 | 00,089,168 | ---- | M] (LSI Corporation)
(LSI_SAS2) LSI_SAS2 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_sas2.sys -> [2009-07-14 03:20:36 | 00,054,864 | ---- | M] (LSI Corporation)
(LSI_SCSI) LSI_SCSI [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_scsi.sys -> [2009-07-14 03:20:36 | 00,096,848 | ---- | M] (LSI Corporation)
(megasas) megasas [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\megasas.sys -> [2009-07-14 03:20:36 | 00,030,800 | ---- | M] (LSI Corporation)
(MegaSR) MegaSR [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\MegaSR.sys -> [2009-07-14 03:20:36 | 00,235,584 | ---- | M] (LSI Corporation, Inc.)
(mshidkmdf) Pass-through HID to KMDF Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\mshidkmdf.sys -> [2009-07-14 01:51:08 | 00,004,096 | ---- | M] (Microsoft Corporation)
(MTConfig) Microsoft Input Configuration Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\MTConfig.sys -> [2009-07-14 01:46:55 | 00,012,288 | ---- | M] (Microsoft Corporation)
(NdisCap) NDIS Capture LightWeight Filter [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ndiscap.sys -> [2009-07-14 01:52:44 | 00,027,136 | ---- | M] (Microsoft Corporation)
(netw5v32) Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\netw5v32.sys -> [2009-07-14 00:02:51 | 04,231,168 | ---- | M] (Intel Corporation)
(nfrd960) nfrd960 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nfrd960.sys -> [2009-07-14 03:20:44 | 00,044,624 | ---- | M] (IBM Corporation)
(NSNDIS5) NSNDIS5 NDIS Protocol Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\NSNDIS5.SYS -> [2004-03-24 04:12:34 | 00,017,280 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA))
(nvraid) nvraid [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nvraid.sys -> [2009-07-14 03:20:44 | 00,117,312 | ---- | M] (NVIDIA Corporation)
(nvstor) nvstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nvstor.sys -> [2009-07-14 03:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation)
(pcw) Performance Counters for Windows Driver [Kernel | Boot | Running] -> C:\Windows\System32\drivers\pcw.sys -> [2009-07-14 03:19:04 | 00,043,088 | ---- | M] (Microsoft Corporation)
(ql2300) ql2300 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\ql2300.sys -> [2009-07-14 03:19:04 | 01,383,488 | ---- | M] (QLogic Corporation)
(ql40xx) ql40xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\ql40xx.sys -> [2009-07-14 03:19:04 | 00,106,064 | ---- | M] (QLogic Corporation)
(RasAgileVpn) WAN Miniport (IKEv2) [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\AgileVpn.sys -> [2009-07-14 01:55:00 | 00,049,152 | ---- | M] (Microsoft Corporation)
(rdpbus) Remote Desktop Device Redirector Bus Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rdpbus.sys -> [2009-07-14 02:02:41 | 00,018,944 | ---- | M] (Microsoft Corporation)
(RDPREFMP) Reflector Display Driver used to gain access to graphics data [Kernel | System | Running] -> C:\Windows\System32\drivers\rdprefmp.sys -> [2009-07-14 02:01:41 | 00,007,168 | ---- | M] (Microsoft Corporation)
(rdyboost) ReadyBoost [Kernel | Boot | Running] -> C:\Windows\System32\drivers\rdyboost.sys -> [2009-07-14 03:19:04 | 00,173,648 | ---- | M] (Microsoft Corporation)
(rimmptsk) rimmptsk [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rimmptsk.sys -> [2005-11-16 20:28:32 | 00,028,928 | ---- | M] (REDC)
(rimsptsk) rimsptsk [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rimsptsk.sys -> [2005-12-22 17:02:22 | 00,051,840 | ---- | M] (REDC)
(rismxdp) Ricoh xD-Picture Card Driver [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\rixdptsk.sys -> [2006-11-14 17:35:20 | 00,037,376 | ---- | M] (REDC)
(s3cap) s3cap [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vms3cap.sys -> [2009-07-14 01:28:47 | 00,005,632 | ---- | M] (Microsoft Corporation)
(SASDIFSV) SASDIFSV [Kernel | System | Running] -> C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -> [2009-09-15 11:42:46 | 00,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASENUM) SASENUM [Kernel | On_Demand | Stopped] -> C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -> [2009-09-15 11:42:48 | 00,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASKUTIL) SASKUTIL [Kernel | System | Running] -> C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys -> [2009-09-15 11:42:44 | 00,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(scfilter) Filterdriver til PnP for chipkort [Kernel | Unknown | Stopped] -> C:\Windows\System32\DRIVERS\scfilter.sys -> [2009-07-14 01:33:50 | 00,026,624 | ---- | M] (Microsoft Corporation)
(secdrv) Security Driver [Kernel | Auto | Running] -> C:\Windows\System32\drivers\secdrv.sys -> [2009-07-13 22:50:20 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
(SiSRaid2) SiSRaid2 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\SiSRaid2.sys -> [2009-07-14 03:19:04 | 00,040,016 | ---- | M] (Silicon Integrated Systems Corp.)
(SiSRaid4) SiSRaid4 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\sisraid4.sys -> [2009-07-14 03:19:04 | 00,077,888 | ---- | M] (Silicon Integrated Systems)
(sptd) sptd [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\sptd.sys -> [2009-10-02 14:31:01 | 00,721,904 | ---- | M] ()
(SrvHsfHDA) SrvHsfHDA [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTAZL3.SYS -> [2009-07-14 00:13:45 | 00,207,360 | ---- | M] (Conexant Systems, Inc.)
(SrvHsfV92) SrvHsfV92 [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTDPV3.SYS -> [2009-07-14 00:13:46 | 00,980,992 | ---- | M] (Conexant Systems, Inc.)
(SrvHsfWinac) SrvHsfWinac [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTCNXT3.SYS -> [2009-07-14 00:13:45 | 00,661,504 | ---- | M] (Conexant Systems, Inc.)
(stexstor) stexstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\stexstor.sys -> [2009-07-14 03:19:04 | 00,021,072 | ---- | M] (Promise Technology)
(storflt) Disk Virtual Machine Bus Acceleration Filter Driver [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vmstorfl.sys -> [2009-07-14 03:19:10 | 00,040,896 | ---- | M] (Microsoft Corporation)
(storvsc) storvsc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\storvsc.sys -> [2009-07-14 03:19:10 | 00,028,224 | ---- | M] (Microsoft Corporation)
(TPM) TPM [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\tpm.sys -> [2009-07-14 01:12:52 | 00,030,720 | ---- | M] (Microsoft Corporation)
(UmPass) Microsoft UMPass Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\umpass.sys -> [2009-07-14 01:51:35 | 00,008,192 | ---- | M] (Microsoft Corporation)
(vdrvroot) Microsoft Virtual Drive Enumerator Driver [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vdrvroot.sys -> [2009-07-14 03:19:10 | 00,032,832 | ---- | M] (Microsoft Corporation)
(vhdmp) vhdmp [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vhdmp.sys -> [2009-07-14 03:19:10 | 00,159,824 | ---- | M] (Microsoft Corporation)
(viaide) viaide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\viaide.sys -> [2009-07-14 03:19:10 | 00,016,976 | ---- | M] (VIA Technologies, Inc.)
(vmbus) Virtual Machine Bus [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vmbus.sys -> [2009-07-14 03:19:10 | 00,175,824 | ---- | M] (Microsoft Corporation)
(VMBusHID) VMBusHID [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\VMBusHID.sys -> [2009-07-14 01:28:45 | 00,017,920 | ---- | M] (Microsoft Corporation)
(vsmraid) vsmraid [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vsmraid.sys -> [2009-07-14 03:19:11 | 00,141,904 | ---- | M] (VIA Technologies Inc.,Ltd)
(vwifibus) Driver til virtual WiFi-bus [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\vwifibus.sys -> [2009-07-14 01:52:02 | 00,019,968 | ---- | M] (Microsoft Corporation)
(WfpLwf) WFP Lightweight Filter [Kernel | System | Running] -> C:\Windows\System32\DRIVERS\wfplwf.sys -> [2009-07-14 01:53:51 | 00,009,728 | ---- | M] (Microsoft Corporation)
(WIMMount) WIMMount [File_System | On_Demand | Stopped] -> C:\Windows\System32\drivers\wimmount.sys -> [2009-07-14 03:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation)

[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" ->  [binary data] ->
HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\System32\blank.htm ->
HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk ->
HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> ->
HKEY_CURRENT_USER\: Main\\"Local Page" -> C:\Windows\system32\blank.htm ->
HKEY_CURRENT_USER\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_CURRENT_USER\: Main\\"Start Page" -> http://www.google.dk/ ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache" -> http://dk.msn.com/?ocid=iehp ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache AcceptLangs" -> da ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache_TIMESTAMP" -> 3F 5F B1 BA 5C 43 CA 01  [binary data] ->
HKEY_CURRENT_USER\: "ProxyEnable" -> 0 ->
< FireFox Settings [Prefs.js] > -> C:\Users\Mijay\AppData\Roaming\Mozilla\FireFox\Profiles\mdcicim5.default\prefs.js ->
browser.startup.homepage -> "http://www.google.dk/" ->
extensions.enabledItems -> {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1 ->
extensions.enabledItems -> 6 ->
extensions.enabledItems -> 2 ->
extensions.enabledItems -> 48 ->
extensions.enabledItems -> {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions ->  ->
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components -> C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins -> C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2009-10-14 12:37:32 | 00,000,000 | ---D | M]
< FireFox Extensions [User Folders] > ->
-> C:\Users\Mijay\AppData\Roaming\mozilla\Extensions -> [2009-10-12 14:50:36 | 00,000,000 | ---D | M]
-> C:\Users\Mijay\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} -> [2009-10-12 14:50:36 | 00,000,000 | ---D | M]
-> C:\Users\Mijay\AppData\Roaming\mozilla\Firefox\Profiles\mdcicim5.default\extensions -> [2009-10-12 15:29:37 | 00,101,826 | ---- | M] ()
< FireFox Extensions [Program Folders] > ->
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
< FireFox Components [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\components\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\components -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
browserdirprovider.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\browserdirprovider.dll -> [2009-08-24 22:17:23 | 00,023,544 | ---- | M] (Mozilla Foundation)
brwsrcmp.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\brwsrcmp.dll -> [2009-08-24 22:17:23 | 00,137,208 | ---- | M] (Mozilla Foundation)
< FireFox Plugins [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins -> [2009-10-14 12:37:32 | 00,000,000 | ---D | M]
npdeploytk.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npdeploytk.dll -> [2009-10-12 15:49:55 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.)
npnul32.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npnul32.dll -> [2009-08-24 22:17:23 | 00,065,016 | ---- | M] (mozilla.org)
npqtplugin.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin.dll -> [2009-10-12 15:04:41 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin2.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin2.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin3.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin3.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin4.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin4.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin5.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin5.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin6.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin6.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin7.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin7.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
QuickTimePlugin.class -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\QuickTimePlugin.cla -> [2009-10-12 15:04:41 | 00,004,208 | ---- | M] ()
< FireFox SearchPlugins [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins -> [2009-10-12 14:50:29 | 00,000,000 | ---D | M]
amazon-co-uk.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\amazon-co-uk.xml -> [2009-08-24 21:26:29 | 00,001,525 | ---- | M] ()
answers.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\answers.xml -> [2009-08-24 21:26:29 | 00,002,193 | ---- | M] ()
creativecommons.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\creativecommons.xml -> [2009-08-24 21:26:29 | 00,001,534 | ---- | M] ()
eBay.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\eBay.xml -> [2009-08-24 21:26:29 | 00,002,344 | ---- | M] ()
google.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\google.xml -> [2009-08-24 21:26:29 | 00,002,371 | ---- | M] ()
wikipedia-da.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\wikipedia-da.xml -> [2009-08-24 21:26:29 | 00,001,178 | ---- | M] ()
yahoo-dk.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\yahoo-dk.xml -> [2009-08-24 21:26:29 | 00,000,799 | ---- | M] ()
< HOSTS File > (824 bytes and 21 lines) -> C:\Windows\System32\drivers\etc\Hosts ->
Reset Hosts
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe PDF Link Helper] -> [2009-02-27 12:07:26 | 00,075,128 | ---- | M] (Adobe Systems Incorporated)
{DBC80044-A445-435b-BC74-9C25C1C588A9} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [Java(tm) Plug-In 2 SSV Helper] -> [2009-10-12 15:49:55 | 00,041,760 | ---- | M] (Sun Microsystems, Inc.)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
"{32099AAC-C132-4136-9E9A-4E364A424E17}" [HKLM] -> C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [DAEMON Tools Toolbar] -> [2009-04-23 15:15:24 | 00,937,416 | ---- | M] ()
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ->
WebBrowser\\"{32099AAC-C132-4136-9E9A-4E364A424E17}" [HKLM] -> C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [DAEMON Tools Toolbar] -> [2009-04-23 15:15:24 | 00,937,416 | ---- | M] ()
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"avast!" -> C:\Program Files\Alwil Software\Avast4\ashDisp.exe ["C:\Program Files\Alwil Software\Avast4\ashDisp.exe"] -> [2009-09-15 12:56:48 | 00,081,000 | ---- | M] (ALWIL Software)
"HotKeysCmds" -> C:\Windows\System32\hkcmd.exe [C:\Windows\system32\hkcmd.exe] -> [2009-08-13 21:16:18 | 00,167,424 | ---- | M] (Intel Corporation)
"hpqSRMon" -> C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe] -> [2008-08-20 10:54:08 | 00,150,016 | ---- | M] (Hewlett-Packard)
"IgfxTray" -> C:\Windows\System32\igfxtray.exe [C:\Windows\system32\igfxtray.exe] -> [2009-08-13 21:16:18 | 00,135,168 | ---- | M] (Intel Corporation)
"Malwarebytes Anti-Malware (reboot)" -> C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe ["C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript] -> [2009-09-10 14:53:56 | 01,312,080 | ---- | M] (Malwarebytes Corporation)
"Persistence" -> C:\Windows\System32\igfxpers.exe [C:\Windows\system32\igfxpers.exe] -> [2009-08-13 21:15:48 | 00,144,384 | ---- | M] (Intel Corporation)
"QuickTime Task" -> C:\Program Files\QuickTime\QTTask.exe ["C:\Program Files\QuickTime\QTTask.exe" -atboottime] -> [2009-09-05 01:54:42 | 00,417,792 | ---- | M] (Apple Inc.)
"SunJavaUpdateSched" -> C:\Program Files\Java\jre6\bin\jusched.exe ["C:\Program Files\Java\jre6\bin\jusched.exe"] -> [2009-10-12 15:49:55 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.)
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"DAEMON Tools Lite" -> C:\Program Files\DAEMON Tools Lite\daemon.exe ["C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun] -> [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd)
"SUPERAntiSpyware" -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe] -> [2009-09-15 11:42:42 | 01,998,576 | ---- | M] (SUPERAntiSpyware.com)
"uTorrent" -> C:\Program Files\uTorrent\uTorrent.exe ["C:\Program Files\uTorrent\uTorrent.exe"] -> [2009-10-01 18:54:25 | 00,289,072 | ---- | M] (BitTorrent, Inc.)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"ConsentPromptBehaviorAdmin" ->  [5] -> File not found
\\"ConsentPromptBehaviorUser" ->  [3] -> File not found
\\"EnableInstallerDetection" ->  [1] -> File not found
\\"EnableLUA" ->  [1] -> File not found
\\"EnableSecureUIAPaths" ->  [1] -> File not found
\\"EnableUIADesktopToggle" ->  [0] -> File not found
\\"EnableVirtualization" ->  [1] -> File not found
\\"PromptOnSecureDesktop" ->  [1] -> File not found
\\"ValidateAdminCodeSignatures" ->  [0] -> File not found
\\"dontdisplaylastusername" ->  [0] -> File not found
\\"legalnoticecaption" ->  [] -> File not found
\\"legalnoticetext" ->  [] -> File not found
\\"scforceoption" ->  [0] -> File not found
\\"shutdownwithoutlogon" ->  [1] -> File not found
\\"undockwithoutlogon" ->  [1] -> File not found
\\"FilterAdministratorToken" ->  [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
\UIPI\Clipboard\ExceptionFormats\\"CF_TEXT" ->  [1] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_BITMAP" ->  [2] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_OEMTEXT" ->  [7] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIB" ->  [8] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_PALETTE" ->  [9] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_UNICODETEXT" ->  [13] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIBV5" ->  [17] -> File not found
< CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
< CurrentVersion Policy Settings - System [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"DisableRegistryTools" ->  [0] -> File not found
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}:Exec [HKLM] -> C:\Programs\PartyGaming\PartyPoker\RunApp.exe [Button: PartyPoker.com] -> [2009-08-24 11:45:52 | 00,110,592 | ---- | M] ()
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}:Exec [HKLM] -> C:\Programs\PartyGaming\PartyPoker\RunApp.exe [Menu: PartyPoker.com] -> [2009-08-24 11:45:52 | 00,110,592 | ---- | M] ()
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ ->
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"ButtonText" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"CLSID" [HKLM] ->  [{0000031A-0000-0000-C000-000000000046}] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Default Visible" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Exec" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"HotIcon" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Icon" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"MenuStatusBar" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"MenuText" [HKLM] ->  [Reg Error: Key error.] -> File not found
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
PluginsPageFriendlyName -> Microsoft ActiveX Gallery ->
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s ->
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->
{166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab [Shockwave ActiveX Control] ->
{3860DD98-0549-4D50-AA72-5D17D200EE10} [HKLM] -> http://cdn.scan.onecare.live.com/resource/download/scanner/da-DK/wlscctrl2.cab [Windows Live OneCare safety scanner control] ->
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] ->
{E2883E8F-472F-4FB0-9522-AC9BF37916A7} [HKLM] -> http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab [Reg Error: Key error.] ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4 ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{33B53B06-9330-4FFA-B7D0-2454C2FAF651}\\DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4  (Intel(R) WiFi Link 5100 AGN) ->
{47ADA274-9F3A-494E-A574-57C39A9D0973}\\DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4  (Broadcom NetLink (TM) Gigabit Ethernet) ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\explorer.exe -> [2009-07-14 03:14:20 | 02,613,248 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet ->
SystemPropertiesPerformance.exe -> C:\Windows\System32\SystemPropertiesPerformance.exe -> [2009-07-14 03:14:42 | 00,081,920 | ---- | M] (Microsoft Corporation)
/pagefile ->  -> File not found
*MultiFile Done* -> ->
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->
!SASWinLogon -> C:\Program Files\SUPERAntiSpyware\SASWINLO.dll -> [2009-09-03 15:21:42 | 00,548,352 | ---- | M] (SUPERAntiSpyware.com)
igfxcui -> C:\Windows\System32\igfxdev.dll -> [2009-08-13 21:15:04 | 00,217,088 | ---- | M] (Intel Corporation)
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad ->
"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks ->
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}" [HKLM] -> C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [] -> [2008-05-13 10:13:36 | 00,077,824 | ---- | M] (SuperAdBlocker.com)
< LSA Security Packages [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages ->
*LSA Security Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages ->
pku2u -> C:\Windows\System32\pku2u.dll -> [2009-07-14 03:16:12 | 00,186,880 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot ->
"AlternateShell" -> cmd.exe ->
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 ->
"DisplayName" -> CD-ROM Driver ->
"ImagePath" ->  [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > ->  ->
C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2009-06-10 23:42:20 | 00,000,024 | ---- | M] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 ->
\{3a20d862-b58e-11de-a48a-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3a20d862-b58e-11de-a48a-4c805820f7ba}\shell
\{3a20d862-b58e-11de-a48a-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{8f367d6e-b414-11de-a782-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8f367d6e-b414-11de-a782-4c805820f7ba}\shell
\{8f367d6e-b414-11de-a782-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{8f367d7d-b414-11de-a782-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8f367d7d-b414-11de-a782-4c805820f7ba}\shell
\{8f367d7d-b414-11de-a782-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{914b3602-af4f-11de-802d-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{914b3602-af4f-11de-802d-4c805820f7ba}\shell
\{914b3602-af4f-11de-802d-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command ->
comfile [open] -> "%1" %* -> File not found
exefile [open] -> "%1" %* -> File not found

[Registry - Additional Scans - Safe List]
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ ->
.bat [@ = batfile] -> "%1" %* ->
.chm [@ = chm.file] -> C:\Windows\hh.exe -> [2009-07-14 03:14:21 | 00,015,360 | ---- | M] (Microsoft Corporation)
.cmd [@ = cmdfile] -> "%1" %* ->
.com [@ = comfile] -> "%1" %* ->
.cpl [@ = cplfile] -> C:\Windows\System32\control.exe -> [2009-07-14 03:14:15 | 00,113,152 | ---- | M] (Microsoft Corporation)
.exe [@ = exefile] -> "%1" %* ->
.hlp [@ = hlpfile] -> C:\Windows\winhlp32.exe -> [2009-07-14 03:14:45 | 00,009,728 | ---- | M] (Microsoft Corporation)
.html [@ = htmlfile] -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
.pif [@ = piffile] -> "%1" %* ->
.scr [@ = scrfile] -> "%1" /S ->
< File Associations - Select to Repair > -> HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>\ ->
.html [@ = FirefoxHTML] -> C:\Program Files\Mozilla Firefox\firefox.exe -> [2009-08-24 22:17:23 | 00,908,280 | ---- | M] (Mozilla Corporation)
< Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
\\"cval" ->  [1] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
\Svc\\"VistaSp1" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found
\Svc\\"AntiVirusOverride" ->  [0] -> File not found
\Svc\\"AntiSpywareOverride" ->  [0] -> File not found
\Svc\\"FirewallOverride" ->  [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
\\"DisableNotifications" ->  [0] -> File not found
\\"EnableFirewall" ->  [1] -> File not found
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> ->
< Winsock2 Catalogs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\ ->
NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\napinsp.dll,-1000] -> C:\Windows\System32\napinsp.dll -> [2009-07-14 03:16:02 | 00,052,224 | ---- | M] (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000005 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] -> C:\Windows\System32\pnrpnsp.dll -> [2009-07-14 03:16:12 | 00,065,024 | ---- | M] (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000006 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] -> C:\Windows\System32\pnrpnsp.dll -> [2009-07-14 03:16:12 | 00,065,024 | ---- | M] (Microsoft Corporation)
< Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
ldap -> 4 = Restricted sites (Not a Default Protocol) ->
news -> 4 = Restricted sites (Not a Default Protocol) ->
nntp -> 4 = Restricted sites (Not a Default Protocol) ->
oecmd -> 4 = Restricted sites (Not a Default Protocol) ->
snews -> 4 = Restricted sites (Not a Default Protocol) ->
< Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
{0C34B801-6AEC-4667-B053-03A67E2D0415} -> Apple Application Support
{26A24AE4-039D-4CA4-87B4-2F83216016FF} -> Java(TM) 6 Update 16
{5DB65884-C963-4454-AABA-4CA3089281FA} -> NVIDIA PhysX
{681B698F-C997-42C3-B184-B489C6CA24C9} -> HPPhotoSmartDiscLabelContent1
{6956856F-B6B3-4BE0-BA0B-8F495BE32033} -> Apple Software Update
{A429C2AE-EBF1-4F81-A221-1C115CAADDAD} -> QuickTime
{A49F249F-0C91-497F-86DF-B2585E8E76B7} -> Microsoft Visual C++ 2005 Redistributable
{AC76BA86-7AD7-1030-7B44-A91000000001} -> Adobe Reader 9.1 - Dansk
{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} -> SUPERAntiSpyware Free Edition
{D3F80A98-05AB-4D8C-9272-766CCFA6A48D} -> THE SETTLERS - Rise of an Empire
{D79113E7-274C-470B-BD46-01B10219DF6A} -> HPPhotosmartEssential
{FE0646A7-19D0-41B4-A2BB-2C35D644270D} -> Windows Live OneCare safety scanner
Adobe Flash Player ActiveX -> Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin -> Adobe Flash Player 10 Plugin
Adobe Shockwave Player -> Adobe Shockwave Player 11.5
avast! -> avast! Antivirus
AVI Splitter_is1 -> AVI Splitter
CCleaner -> CCleaner (remove only)
Cheat Engine 5.5_is1 -> Cheat Engine 5.5
DAEMON Tools Toolbar -> DAEMON Tools Toolbar
eToro -> eToro
Fiesta Online(EU_English) -> Fiesta Online(EU_English) 1.02.026
Free Create-Burn ISO Image_is1 -> Free Create-Burn ISO Image v2.0
HackerEvolutionUntold -> Hacker Evolution: Untold (2.01.033)(remove only)
HDMI -> Intel(R) Graphics Media Accelerator Driver
HijackThis -> HijackThis 2.0.2
HP Photosmart Essential -> HP Photosmart Essential 3.5
ImgBurn -> ImgBurn
KLiteCodecPack_is1 -> K-Lite Codec Pack 5.1.0 (Full)
Magic ISO Maker v5.5 (build 0276) -> Magic ISO Maker v5.5 (build 0276)
Malwarebytes' Anti-Malware_is1 -> Malwarebytes' Anti-Malware
Mobile Partner -> Mobile Partner
Mozilla Firefox (3.5.3) -> Mozilla Firefox (3.5.3)
Network Stumbler -> Network Stumbler 0.4.0 (remove only)
PartyPoker -> PartyPoker
Power Management Driver -> ThinkPad Power Management Driver
SMAC 2.0 -> SMAC 2.0
SubtitleWorkshop -> Subtitle Workshop 2.51
TVWiz -> Intel(R) TV Wizard
uTorrent -> µTorrent
Windows Live OneCare safety scanner -> Windows Live OneCare safety scanner
WinRAR archiver -> WinRAR arkivering
< Uninstall List [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
Absolute Poker -> Absolute Poker
< EventViewer Logs - Last 10 Errors > -> Event Information -> Description
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

[Files/Folders - Created Within 30 Days]
ProgramData -> C:\ProgramData -> [2009-10-14 12:37:34 | 00,000,000 | -H-D | M]
Adobe -> C:\ProgramData\Adobe -> [2009-10-03 19:41:05 | 00,000,000 | ---D | M]
Apple -> C:\ProgramData\Apple -> [2009-10-12 15:03:21 | 00,000,000 | ---D | M]
Apple Computer -> C:\ProgramData\Apple Computer -> [2009-10-12 15:04:27 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\ProgramData\DAEMON Tools Lite -> [2009-10-02 14:33:14 | 00,000,000 | ---D | M]
Hewlett-Packard -> C:\ProgramData\Hewlett-Packard -> [2009-10-13 14:41:13 | 00,000,000 | ---D | M]
HP -> C:\ProgramData\HP -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
Malwarebytes -> C:\ProgramData\Malwarebytes -> [2009-10-11 13:59:37 | 00,000,000 | ---D | M]
Media Center Programs -> C:\ProgramData\Media Center Programs -> [2009-10-02 16:22:32 | 00,000,000 | ---D | M]
Microsoft -> C:\ProgramData\Microsoft -> [2009-10-12 18:04:46 | 00,000,000 | --SD | M]
SUPERAntiSpyware.com -> C:\ProgramData\SUPERAntiSpyware.com -> [2009-10-12 15:46:53 | 00,000,000 | ---D | M]
Roaming -> C:\Users\Mijay\AppData\Roaming -> [2009-10-12 17:25:54 | 00,000,000 | ---D | M]
Absolute Poker -> C:\Users\Mijay\AppData\Roaming\Absolute Poker -> [2009-10-11 17:31:21 | 00,000,000 | ---D | M]
Adobe -> C:\Users\Mijay\AppData\Roaming\Adobe -> [2009-10-03 19:41:33 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\Users\Mijay\AppData\Roaming\DAEMON Tools Lite -> [2009-10-02 16:14:26 | 00,000,000 | ---D | M]
Identities -> C:\Users\Mijay\AppData\Roaming\Identities -> [2009-10-01 18:05:59 | 00,000,000 | ---D | M]
ImgBurn -> C:\Users\Mijay\AppData\Roaming\ImgBurn -> [2009-10-12 17:37:46 | 00,000,000 | ---D | M]
Macromedia -> C:\Users\Mijay\AppData\Roaming\Macromedia -> [2009-10-01 19:07:12 | 00,000,000 | ---D | M]
Malwarebytes -> C:\Users\Mijay\AppData\Roaming\Malwarebytes -> [2009-10-11 13:59:42 | 00,000,000 | ---D | M]
Microsoft -> C:\Users\Mijay\AppData\Roaming\Microsoft -> [2009-10-11 15:54:38 | 00,000,000 | --SD | M]
Mozilla -> C:\Users\Mijay\AppData\Roaming\Mozilla -> [2009-10-12 14:50:46 | 00,000,000 | ---D | M]
SUPERAntiSpyware.com -> C:\Users\Mijay\AppData\Roaming\SUPERAntiSpyware.com -> [2009-10-12 15:46:31 | 00,000,000 | ---D | M]
uTorrent -> C:\Users\Mijay\AppData\Roaming\uTorrent -> [2009-10-14 14:06:06 | 00,000,000 | ---D | M]
WinRAR -> C:\Users\Mijay\AppData\Roaming\WinRAR -> [2009-10-01 20:09:00 | 00,000,000 | ---D | M]
Local -> C:\Users\Mijay\AppData\Local -> [2009-10-13 14:45:31 | 00,000,000 | ---D | M]
Adobe -> C:\Users\Mijay\AppData\Local\Adobe -> [2009-10-03 19:42:02 | 00,000,000 | ---D | M]
Apple -> C:\Users\Mijay\AppData\Local\Apple -> [2009-10-12 15:03:23 | 00,000,000 | ---D | M]
Application Data -> C:\Users\Mijay\AppData\Local\Application Data -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
Diagnostics -> C:\Users\Mijay\AppData\Local\Diagnostics -> [2009-10-08 16:08:29 | 00,000,000 | ---D | M]
ElevatedDiagnostics -> C:\Users\Mijay\AppData\Local\ElevatedDiagnostics -> [2009-10-12 18:49:16 | 00,000,000 | ---D | M]
History -> C:\Users\Mijay\AppData\Local\History -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
HP -> C:\Users\Mijay\AppData\Local\HP -> [2009-10-13 14:45:31 | 00,000,000 | ---D | M]
Microsoft -> C:\Users\Mijay\AppData\Local\Microsoft -> [2009-10-11 17:12:22 | 00,000,000 | ---D | M]
Microsoft Games -> C:\Users\Mijay\AppData\Local\Microsoft Games -> [2009-10-09 17:00:39 | 00,000,000 | ---D | M]
Mozilla -> C:\Users\Mijay\AppData\Local\Mozilla -> [2009-10-12 14:50:35 | 00,000,000 | ---D | M]
Temp -> C:\Users\Mijay\AppData\Local\Temp -> [2009-10-14 14:04:53 | 00,000,000 | ---D | M]
Temporary Internet Files -> C:\Users\Mijay\AppData\Local\Temporary Internet Files -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
VirtualStore -> C:\Users\Mijay\AppData\Local\VirtualStore -> [2009-10-03 01:00:18 | 00,000,000 | ---D | M]
Common Files -> C:\Program Files\Common Files -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
Adobe -> C:\Program Files\Common Files\Adobe -> [2009-10-03 19:40:53 | 00,000,000 | ---D | M]
Apple -> C:\Program Files\Common Files\Apple -> [2009-10-12 15:03:29 | 00,000,000 | ---D | M]
HP -> C:\Program Files\Common Files\HP -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
microsoft shared -> C:\Program Files\Common Files\microsoft shared -> [2009-10-08 19:45:57 | 00,000,000 | ---D | M]
System -> C:\Program Files\Common Files\System -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Wise Installation Wizard -> C:\Program Files\Common Files\Wise Installation Wizard -> [2009-10-12 15:46:11 | 00,000,000 | ---D | M]
Program Files -> C:\Program Files -> [2009-10-14 12:37:34 | 00,000,000 | R--D | M]
Adobe -> C:\Program Files\Adobe -> [2009-10-03 19:40:39 | 00,000,000 | ---D | M]
AGEIA Technologies -> C:\Program Files\AGEIA Technologies -> [2009-10-08 19:40:59 | 00,000,000 | ---D | M]
Alwil Software -> C:\Program Files\Alwil Software -> [2009-10-11 14:31:19 | 00,000,000 | ---D | M]
Apple Software Update -> C:\Program Files\Apple Software Update -> [2009-10-12 15:03:22 | 00,000,000 | ---D | M]
avisplit -> C:\Program Files\avisplit -> [2009-10-01 20:33:25 | 00,000,000 | ---D | M]
CCleaner -> C:\Program Files\CCleaner -> [2009-10-11 13:57:07 | 00,000,000 | ---D | M]
Cheat Engine -> C:\Program Files\Cheat Engine -> [2009-10-09 17:00:08 | 00,000,000 | ---D | M]
Common Files -> C:\Program Files\Common Files -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\Program Files\DAEMON Tools Lite -> [2009-10-02 14:33:11 | 00,000,000 | ---D | M]
DAEMON Tools Toolbar -> C:\Program Files\DAEMON Tools Toolbar -> [2009-10-02 14:33:11 | 00,000,000 | ---D | M]
DVD Maker -> C:\Program Files\DVD Maker -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Electronic Arts -> C:\Program Files\Electronic Arts -> [2009-10-08 19:47:45 | 00,000,000 | ---D | M]
eToro -> C:\Program Files\eToro -> [2009-10-03 16:39:14 | 00,000,000 | ---D | M]
Free Create-Burn ISO Image -> C:\Program Files\Free Create-Burn ISO Image -> [2009-10-12 16:54:24 | 00,000,000 | ---D | M]
Gamigo Games -> C:\Program Files\Gamigo Games -> [2009-10-14 00:33:51 | 00,000,000 | ---D | M]
Hacker Evolution Untold -> C:\Program Files\Hacker Evolution Untold -> [2009-10-03 18:50:17 | 00,000,000 | ---D | M]
HP -> C:\Program Files\HP -> [2009-10-13 14:45:17 | 00,000,000 | ---D | M]
ImgBurn -> C:\Program Files\ImgBurn -> [2009-10-12 17:08:40 | 00,000,000 | ---D | M]
InstallShield Installation Information -> C:\Program Files\InstallShield Installation Information -> [2009-10-02 16:14:45 | 00,000,000 | -H-D | M]
Intel -> C:\Program Files\Intel -> [2009-10-03 15:24:44 | 00,000,000 | ---D | M]
Internet Explorer -> C:\Program Files\Internet Explorer -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
Java -> C:\Program Files\Java -> [2009-10-12 15:49:49 | 00,000,000 | ---D | M]
KLC -> C:\Program Files\KLC -> [2009-10-01 18:24:42 | 00,000,000 | ---D | M]
K-Lite Codec Pack -> C:\Program Files\K-Lite Codec Pack -> [2009-10-01 20:13:43 | 00,000,000 | ---D | M]
MagicISO -> C:\Program Files\MagicISO -> [2009-10-12 17:04:25 | 00,000,000 | ---D | M]
Malwarebytes' Anti-Malware -> C:\Program Files\Malwarebytes' Anti-Malware -> [2009-10-11 13:59:41 | 00,000,000 | ---D | M]
Mobile Partner -> C:\Program Files\Mobile Partner -> [2009-10-08 16:22:16 | 00,000,000 | ---D | M]
Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2009-10-12 14:50:29 | 00,000,000 | ---D | M]
Network Stumbler -> C:\Program Files\Network Stumbler -> [2009-10-11 15:54:36 | 00,000,000 | ---D | M]
QuickTime -> C:\Program Files\QuickTime -> [2009-10-12 15:04:41 | 00,000,000 | ---D | M]
SUPERAntiSpyware -> C:\Program Files\SUPERAntiSpyware -> [2009-10-12 15:46:32 | 00,000,000 | ---D | M]
Trend Micro -> C:\Program Files\Trend Micro -> [2009-10-11 15:13:14 | 00,000,000 | ---D | M]
Ubisoft -> C:\Program Files\Ubisoft -> [2009-10-02 16:14:46 | 00,000,000 | ---D | M]
URUSoft -> C:\Program Files\URUSoft -> [2009-10-01 22:38:33 | 00,000,000 | ---D | M]
uTorrent -> C:\Program Files\uTorrent -> [2009-10-01 18:54:25 | 00,000,000 | ---D | M]
Windows Defender -> C:\Program Files\Windows Defender -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Journal -> C:\Program Files\Windows Journal -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Live Safety Center -> C:\Program Files\Windows Live Safety Center -> [2009-10-11 15:42:31 | 00,000,000 | ---D | M]
Windows Mail -> C:\Program Files\Windows Mail -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Media Player -> C:\Program Files\Windows Media Player -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Photo Viewer -> C:\Program Files\Windows Photo Viewer -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Sidebar -> C:\Program Files\Windows Sidebar -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
WinRAR -> C:\Program Files\WinRAR -> [2009-10-01 20:08:07 | 00,000,000 | ---D | M]
OTS.exe -> C:\Users\Mijay\Desktop\OTS.exe -> [2009-10-13 23:39:23 | 00,520,192 | ---- | C] (OldTimer Tools)
HP -> C:\ProgramData\HP -> [2009-10-13 14:44:24 | 00,000,000 | ---D | C]
Hewlett-Packard -> C:\ProgramData\Hewlett-Packard -> [2009-10-13 14:41:13 | 00,000,000 | ---D | C]
WNASPI32.DLL -> C:\Windows\System32\WNASPI32.DLL -> [2009-10-12 16:54:24 | 00,045,056 | ---- | C] (Adaptec)
ASPI32.SYS -> C:\Windows\System32\drivers\ASPI32.SYS -> [2009-10-12 16:54:24 | 00,016,877 | ---- | C] (Adaptec)
SUPERAntiSpyware.com -> C:\ProgramData\SUPERAntiSpyware.com -> [2009-10-12 15:46:53 | 00,000,000 | ---D | C]
Apple Computer -> C:\ProgramData\Apple Computer -> [2009-10-12 15:04:27 | 00,000,000 | ---D | C]
Apple -> C:\ProgramData\Apple -> [2009-10-12 15:03:21 | 00,000,000 | ---D | C]
Poker Application -> C:\Poker Application -> [2009-10-11 17:28:56 | 00,000,000 | ---D | C]
32788R22FWJFW -> C:\32788R22FWJFW -> [2009-10-11 17:24:01 | 00,000,000 | ---D | C]
aswTdi.sys -> C:\Windows\System32\drivers\aswTdi.sys -> [2009-10-11 14:31:47 | 00,052,368 | ---- | C] (ALWIL Software)
aswRdr.sys -> C:\Windows\System32\drivers\aswRdr.sys -> [2009-10-11 14:31:47 | 00,023,152 | ---- | C] (ALWIL Software)
aswSP.sys -> C:\Windows\System32\drivers\aswSP.sys -> [2009-10-11 14:31:45 | 00,114,768 | ---- | C] (ALWIL Software)
AvastSS.scr -> C:\Windows\System32\AvastSS.scr -> [2009-10-11 14:31:45 | 00,097,480 | ---- | C] (ALWIL Software)
aswFsBlk.sys -> C:\Windows\System32\drivers\aswFsBlk.sys -> [2009-10-11 14:31:45 | 00,020,560 | ---- | C] (ALWIL Software)
aswBoot.exe -
Avatar billede mijaysen Praktikant
14. oktober 2009 - 14:25 #15
[code]
OTS logfile created on: 14-10-2009 14:06:25 - Run 2
OTS by OldTimer - Version 3.0.21.0    Folder = C:\Users\Mijay\Desktop
Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

1,95 Gb Total Physical Memory | 1,04 Gb Available Physical Memory | 53,65% Memory free
3,89 Gb Paging File | 2,61 Gb Available in Paging File | 67,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74,53 Gb Total Space | 9,43 Gb Free Space | 12,66% Space Free | Partition Type: NTFS
Drive D: | 7,17 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MIJAY-PC
Current User Name: Mijay
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days

[Processes - Safe List]
ashdisp.exe -> C:\Program Files\Alwil Software\Avast4\ashDisp.exe -> [2009-09-15 12:56:48 | 00,081,000 | ---- | M] (ALWIL Software)
ashmaisv.exe -> C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -> [2009-09-15 12:56:28 | 00,254,040 | ---- | M] (ALWIL Software)
ashserv.exe -> C:\Program Files\Alwil Software\Avast4\ashServ.exe -> [2009-09-15 12:56:43 | 00,138,680 | ---- | M] (ALWIL Software)
ashwebsv.exe -> C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -> [2009-09-15 12:54:13 | 00,352,920 | ---- | M] (ALWIL Software)
aswupdsv.exe -> C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -> [2009-09-15 12:49:40 | 00,018,752 | ---- | M] (ALWIL Software)
daemon.exe -> C:\Program Files\DAEMON Tools Lite\daemon.exe -> [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd)
explorer.exe -> C:\Windows\Explorer.EXE -> [2009-07-14 03:14:20 | 02,613,248 | ---- | M] (Microsoft Corporation)
flashutil10c.exe -> C:\Windows\System32\Macromed\Flash\FlashUtil10c.exe -> [2009-07-18 05:12:12 | 00,257,440 | R--- | M] (Adobe Systems, Inc.)
hkcmd.exe -> C:\Windows\System32\hkcmd.exe -> [2009-08-13 21:16:18 | 00,167,424 | ---- | M] (Intel Corporation)
hpqsrmon.exe -> C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe -> [2008-08-20 10:54:08 | 00,150,016 | ---- | M] (Hewlett-Packard)
ibmpmsvc.exe -> C:\Windows\System32\ibmpmsvc.exe -> [2007-06-01 02:02:06 | 00,036,400 | ---- | M] (Lenovo)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
iexplore.exe -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
igfxpers.exe -> C:\Windows\System32\igfxpers.exe -> [2009-08-13 21:15:48 | 00,144,384 | ---- | M] (Intel Corporation)
igfxsrvc.exe -> C:\Windows\System32\igfxsrvc.exe -> [2009-08-13 21:15:36 | 00,246,272 | ---- | M] (Intel Corporation)
igfxtray.exe -> C:\Windows\System32\igfxtray.exe -> [2009-08-13 21:16:18 | 00,135,168 | ---- | M] (Intel Corporation)
jusched.exe -> C:\Program Files\Java\jre6\bin\jusched.exe -> [2009-10-12 15:49:55 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.)
ots.exe -> C:\Users\Mijay\Desktop\OTS.exe -> [2009-10-13 23:39:33 | 00,520,192 | ---- | M] (OldTimer Tools)
superantispyware.exe -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe -> [2009-09-15 11:42:42 | 01,998,576 | ---- | M] (SUPERAntiSpyware.com)
taskhost.exe -> C:\Windows\System32\taskhost.exe -> [2009-07-14 03:14:42 | 00,049,152 | ---- | M] (Microsoft Corporation)
wmplayer.exe -> C:\Program Files\Windows Media Player\wmplayer.exe -> [2009-07-14 03:14:47 | 00,164,864 | ---- | M] (Microsoft Corporation)
wmpnetwk.exe -> C:\Program Files\Windows Media Player\wmpnetwk.exe -> [2009-07-14 03:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation)

[Win32 Services - Safe List]
(AppIDSvc) Program-id [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\appidsvc.dll -> [2009-07-14 03:14:53 | 00,027,648 | ---- | M] (Microsoft Corporation)
(aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -> [2009-09-15 12:49:40 | 00,018,752 | ---- | M] (ALWIL Software)
(avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> C:\Program Files\Alwil Software\Avast4\ashServ.exe -> [2009-09-15 12:56:43 | 00,138,680 | ---- | M] (ALWIL Software)
(avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -> [2009-09-15 12:56:28 | 00,254,040 | ---- | M] (ALWIL Software)
(avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -> [2009-09-15 12:54:13 | 00,352,920 | ---- | M] (ALWIL Software)
(AxInstSV) ActiveX-installationsprogram (AxInstSV) [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\AxInstSV.dll -> [2009-07-14 03:14:58 | 00,088,064 | ---- | M] (Microsoft Corporation)
(BDESVC) Tjenesten BitLocker-drevkryptering [Win32_Shared | Unknown | Stopped] -> C:\Windows\System32\bdesvc.dll -> [2009-07-14 03:14:59 | 00,076,800 | ---- | M] (Microsoft Corporation)
(clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2009-06-10 23:23:09 | 00,066,384 | ---- | M] (Microsoft Corporation)
(defragsvc) Diskdefragmentering [Win32_Own | On_Demand | Stopped] -> C:\Windows\System32\defragsvc.dll -> [2009-07-14 03:15:10 | 00,218,624 | ---- | M] (Microsoft Corporation)
(Dhcp) DHCP-klientprogram [Win32_Shared | Auto | Running] -> C:\Windows\System32\dhcpcore.dll -> [2009-07-14 03:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation)
(ehRecvr) Windows Media Center-modtagertjeneste [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehRecvr.exe -> [2009-07-14 03:14:19 | 00,557,056 | ---- | M] (Microsoft Corporation)
(ehSched) Tjenesten Windows Media Center-planlægning [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehsched.exe -> [2009-07-14 03:14:19 | 00,094,720 | ---- | M] (Microsoft Corporation)
(eventlog) Windows-hændelseslog [Win32_Shared | Auto | Running] -> C:\Windows\System32\wevtsvc.dll -> [2009-07-14 03:16:18 | 01,086,464 | ---- | M] (Microsoft Corporation)
(FontCache) Tjenesten Windows-skrifttypecache [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\FntCache.dll -> [2009-07-14 03:15:21 | 00,797,696 | ---- | M] (Microsoft Corporation)
(FontCache3.0.0.0) Windows Presentation Foundation Font Cache 3.0.0.0 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -> [2009-06-10 23:14:51 | 00,042,856 | ---- | M] (Microsoft Corporation)
(HomeGroupListener) Lyttefunktion til hjemmegruppe [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\ListSvc.dll -> [2009-07-14 03:15:36 | 00,194,560 | ---- | M] (Microsoft Corporation)
(HomeGroupProvider) Udbyder af hjemmegruppe [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\provsvc.dll -> [2009-07-14 03:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation)
(IBMPMSVC) ThinkPad PM Service [Win32_Own | Auto | Running] -> C:\Windows\System32\ibmpmsvc.exe -> [2007-06-01 02:02:06 | 00,036,400 | ---- | M] (Lenovo)
(idsvc) Windows CardSpace [Win32_Shared | Unknown | Stopped] -> C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -> [2009-06-10 23:14:02 | 00,878,416 | ---- | M] (Microsoft Corporation)
(NetTcpPortSharing) Net.Tcp-portdelingstjeneste [Win32_Shared | Disabled | Stopped] -> C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -> [2009-06-10 23:14:05 | 00,128,848 | ---- | M] (Microsoft Corporation)
(p2pimsvc) Identitetsstyring for peer-netværk [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\pnrpsvc.dll -> [2009-07-14 03:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation)
(PeerDistSvc) BranchCache [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\peerdistsvc.dll -> [2009-07-14 03:16:12 | 01,004,544 | ---- | M] (Microsoft Corporation)
(PNRPAutoReg) PNRP - Tjeneste til udgivelse af computernavn [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\pnrpauto.dll -> [2009-07-14 03:16:12 | 00,020,480 | ---- | M] (Microsoft Corporation)
(PNRPsvc) PNRP (Peer Name Resolution Protocol) [Win32_Shared | On_Demand | Running] -> C:\Windows\System32\pnrpsvc.dll -> [2009-07-14 03:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation)
(Power) Strøm [Win32_Shared | Auto | Running] -> C:\Windows\System32\umpo.dll -> [2009-07-14 03:16:17 | 00,119,808 | ---- | M] (Microsoft Corporation)
(RpcEptMapper) RPC-slutpunktsafbildning [Win32_Shared | Unknown | Running] -> C:\Windows\System32\RpcEpMap.dll -> [2009-07-14 03:16:13 | 00,043,520 | ---- | M] (Microsoft Corporation)
(SensrSvc) Tilpasset lysstyrke [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\sensrsvc.dll -> [2009-07-14 03:16:13 | 00,025,088 | ---- | M] (Microsoft Corporation)
(sppsvc) Softwarebeskyttelse [Win32_Own | Auto | Stopped] -> C:\Windows\System32\sppsvc.exe -> [2009-07-14 03:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation)
(sppuinotify) SPP-meddelelsestjeneste [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\sppuinotify.dll -> [2009-07-14 03:16:15 | 00,053,760 | ---- | M] (Microsoft Corporation)
(Themes) Temaer [Win32_Shared | Auto | Running] -> C:\Windows\System32\themeservice.dll -> [2009-07-14 03:16:16 | 00,037,376 | ---- | M] (Microsoft Corporation)
(WbioSrvc) Tjenesten Windows Biometri [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\wbiosrvc.dll -> [2009-07-14 03:16:17 | 00,151,552 | ---- | M] (Microsoft Corporation)
(WinDefend) Windows Defender [Win32_Shared | Auto | Running] -> C:\Program Files\Windows Defender\mpsvc.dll -> [2009-07-14 03:15:41 | 00,680,960 | ---- | M] (Microsoft Corporation)
(WMPNetworkSvc) Windows Media Player Network Sharing Service [Win32_Own | Auto | Running] -> C:\Program Files\Windows Media Player\wmpnetwk.exe -> [2009-07-14 03:14:47 | 01,121,280 | ---- | M] (Microsoft Corporation)
(WwanSvc) WWAN AutoConfig [Win32_Shared | On_Demand | Stopped] -> C:\Windows\System32\wwansvc.dll -> [2009-07-14 03:16:21 | 00,185,856 | ---- | M] (Microsoft Corporation)

[Driver Services - Safe List]
(1394ohci) 1394 OHCI Compliant Host Controller [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\1394ohci.sys -> [2009-07-14 01:52:00 | 00,163,328 | ---- | M] (Microsoft Corporation)
(AcpiPmi) ACPI Power Meter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\acpipmi.sys -> [2009-07-14 01:16:36 | 00,009,728 | ---- | M] (Microsoft Corporation)
(adp94xx) adp94xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adp94xx.sys -> [2009-07-14 03:26:15 | 00,422,976 | ---- | M] (Adaptec, Inc.)
(adpahci) adpahci [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adpahci.sys -> [2009-07-14 03:26:17 | 00,297,552 | ---- | M] (Adaptec, Inc.)
(adpu320) adpu320 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\adpu320.sys -> [2009-07-14 03:26:15 | 00,146,512 | ---- | M] (Adaptec, Inc.)
(aic78xx) aic78xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\djsvs.sys -> [2009-07-14 03:20:28 | 00,070,720 | ---- | M] (Adaptec, Inc.)
(aliide) aliide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\aliide.sys -> [2009-07-14 03:26:15 | 00,014,400 | ---- | M] (Acer Laboratories Inc.)
(AmdPPM) AMD Processor Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdppm.sys -> [2009-07-14 01:11:04 | 00,052,736 | ---- | M] (Microsoft Corporation)
(amdsata) amdsata [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdsata.sys -> [2009-07-14 03:26:15 | 00,079,952 | ---- | M] (Advanced Micro Devices)
(amdsbs) amdsbs [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\amdsbs.sys -> [2009-07-14 03:26:15 | 00,159,312 | ---- | M] (AMD Technologies Inc.)
(amdxata) amdxata [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\amdxata.sys -> [2009-07-14 03:26:15 | 00,023,616 | ---- | M] (Advanced Micro Devices)
(AppID) AppID-driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\drivers\appid.sys -> [2009-07-14 01:36:52 | 00,050,176 | ---- | M] (Microsoft Corporation)
(arc) arc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\arc.sys -> [2009-07-14 03:26:15 | 00,076,368 | ---- | M] (Adaptec, Inc.)
(arcsas) arcsas [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\arcsas.sys -> [2009-07-14 03:26:15 | 00,086,608 | ---- | M] (Adaptec, Inc.)
(Aspi32) Aspi32 [Kernel | Auto | Running] -> C:\Windows\System32\drivers\aspi32.sys -> [2002-07-17 08:53:02 | 00,016,877 | ---- | M] (Adaptec)
(aswFsBlk) aswFsBlk [File_System | Auto | Running] -> C:\Windows\System32\DRIVERS\aswFsBlk.sys -> [2009-09-15 12:55:19 | 00,020,560 | ---- | M] (ALWIL Software)
(aswMonFlt) aswMonFlt [File_System | Auto | Running] -> C:\Windows\System32\DRIVERS\aswMonFlt.sys -> [2009-09-15 12:55:09 | 00,053,328 | ---- | M] (ALWIL Software)
(aswRdr) aswRdr [Kernel | System | Running] -> C:\Windows\System32\drivers\aswRdr.sys -> [2009-09-15 12:54:21 | 00,023,152 | ---- | M] (ALWIL Software)
(aswSP) avast! Self Protection [Kernel | System | Running] -> C:\Windows\System32\drivers\aswSP.sys -> [2009-09-15 12:55:30 | 00,114,768 | ---- | M] (ALWIL Software)
(aswTdi) avast! Network Shield Support [Kernel | System | Running] -> C:\Windows\System32\drivers\aswTdi.sys -> [2009-09-15 12:54:30 | 00,052,368 | ---- | M] (ALWIL Software)
(atksgt) atksgt [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\atksgt.sys -> [2009-10-11 17:25:44 | 00,281,760 | ---- | M] ()
(b06bdrv) Broadcom NetXtreme II VBD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\bxvbdx.sys -> [2009-07-14 00:02:48 | 00,430,080 | ---- | M] (Broadcom Corporation)
(b57nd60x) Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\b57nd60x.sys -> [2009-07-14 00:02:49 | 00,229,888 | ---- | M] (Broadcom Corporation)
(BrFiltLo) Brother USB Mass-Storage Lower Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\BrFiltLo.sys -> [2009-07-14 00:53:28 | 00,013,568 | ---- | M] (Brother Industries, Ltd.)
(BrFiltUp) Brother USB Mass-Storage Upper Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\BrFiltUp.sys -> [2009-07-14 00:53:28 | 00,005,248 | ---- | M] (Brother Industries, Ltd.)
(Brserid) Brother MFC Serial Port Interface Driver (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\Brserid.sys -> [2009-07-14 02:57:25 | 00,272,128 | ---- | M] (Brother Industries Ltd.)
(BrSerWdm) Brother WDM Serial driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrSerWdm.sys -> [2009-07-14 00:53:32 | 00,062,336 | ---- | M] (Brother Industries Ltd.)
(BrUsbMdm) Brother MFC USB Fax Only Modem [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrUsbMdm.sys -> [2009-07-14 00:53:33 | 00,012,160 | ---- | M] (Brother Industries Ltd.)
(BrUsbSer) Brother MFC USB Serial WDM Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\Drivers\BrUsbSer.sys -> [2009-07-14 00:53:33 | 00,011,904 | ---- | M] (Brother Industries Ltd.)
(cmdide) cmdide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\cmdide.sys -> [2009-07-14 03:26:21 | 00,015,952 | ---- | M] (CMD Technology, Inc.)
(CNG) CNG [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\cng.sys -> [2009-07-14 03:17:54 | 00,369,568 | ---- | M] (Microsoft Corporation)
(CompositeBus) Composite Bus Enumerator Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\CompositeBus.sys -> [2009-07-14 01:45:26 | 00,031,232 | ---- | M] (Microsoft Corporation)
(discache) System Attribute Cache [Kernel | System | Running] -> C:\Windows\System32\drivers\discache.sys -> [2009-07-14 01:24:05 | 00,032,256 | ---- | M] (Microsoft Corporation)
(ebdrv) Broadcom NetXtreme II 10 GigE VBD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\evbdx.sys -> [2009-07-14 00:02:48 | 03,100,160 | ---- | M] (Broadcom Corporation)
(elxstor) elxstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\elxstor.sys -> [2009-07-14 03:20:28 | 00,453,712 | ---- | M] (Emulex)
(FsDepends) File System Dependency Minifilter [File_System | On_Demand | Stopped] -> C:\Windows\System32\drivers\FsDepends.sys -> [2009-07-14 03:20:28 | 00,046,160 | ---- | M] (Microsoft Corporation)
(hcw85cir) Hauppauge Consumer Infrared Receiver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\drivers\hcw85cir.sys -> [2009-07-14 00:54:14 | 00,026,624 | ---- | M] (Hauppauge Computer Works, Inc.)
(HidBatt) HID UPS Battery Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\HidBatt.sys -> [2009-07-14 01:19:21 | 00,021,504 | ---- | M] (Microsoft Corporation)
(HpSAMD) HpSAMD [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\HpSAMD.sys -> [2009-07-14 03:20:28 | 00,067,152 | ---- | M] (Hewlett-Packard Company)
(hwdatacard) Huawei DataCard USB Modem and USB Serial [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ewusbmdm.sys -> [2009-06-22 19:38:24 | 00,102,912 | ---- | M] (Huawei Technologies Co., Ltd.)
(hwpolicy) Hardware Policy Driver [Kernel | Boot | Running] -> C:\Windows\System32\drivers\hwpolicy.sys -> [2009-07-14 03:20:36 | 00,013,904 | ---- | M] (Microsoft Corporation)
(hwusbdev) Huawei DataCard USB PNP Device [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ewusbdev.sys -> [2009-06-22 19:26:06 | 00,100,736 | ---- | M] (Huawei Technologies Co., Ltd.)
(iaStorV) iaStorV [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\iaStorV.sys -> [2009-07-14 03:20:36 | 00,332,352 | ---- | M] (Intel Corporation)
(IBMPMDRV) IBMPMDRV [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\ibmpmdrv.sys -> [2007-06-01 02:01:30 | 00,021,424 | ---- | M] (Lenovo.)
(igfx) igfx [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\igdkmd32.sys -> [2009-08-13 21:48:00 | 05,946,368 | ---- | M] (Intel Corporation)
(iirsp) iirsp [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\iirsp.sys -> [2009-07-14 03:20:36 | 00,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH)
(KSecPkg) KSecPkg [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\ksecpkg.sys -> [2009-07-14 03:20:36 | 00,133,200 | ---- | M] (Microsoft Corporation)
(lirsgt) lirsgt [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\lirsgt.sys -> [2009-10-11 17:25:44 | 00,025,888 | ---- | M] ()
(LSI_FC) LSI_FC [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_fc.sys -> [2009-07-14 03:20:36 | 00,095,824 | ---- | M] (LSI Corporation)
(LSI_SAS) LSI_SAS [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_sas.sys -> [2009-07-14 03:20:37 | 00,089,168 | ---- | M] (LSI Corporation)
(LSI_SAS2) LSI_SAS2 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_sas2.sys -> [2009-07-14 03:20:36 | 00,054,864 | ---- | M] (LSI Corporation)
(LSI_SCSI) LSI_SCSI [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\lsi_scsi.sys -> [2009-07-14 03:20:36 | 00,096,848 | ---- | M] (LSI Corporation)
(megasas) megasas [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\megasas.sys -> [2009-07-14 03:20:36 | 00,030,800 | ---- | M] (LSI Corporation)
(MegaSR) MegaSR [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\MegaSR.sys -> [2009-07-14 03:20:36 | 00,235,584 | ---- | M] (LSI Corporation, Inc.)
(mshidkmdf) Pass-through HID to KMDF Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\mshidkmdf.sys -> [2009-07-14 01:51:08 | 00,004,096 | ---- | M] (Microsoft Corporation)
(MTConfig) Microsoft Input Configuration Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\MTConfig.sys -> [2009-07-14 01:46:55 | 00,012,288 | ---- | M] (Microsoft Corporation)
(NdisCap) NDIS Capture LightWeight Filter [Kernel | On_Demand | Stopped] -> C:\Windows\System32\DRIVERS\ndiscap.sys -> [2009-07-14 01:52:44 | 00,027,136 | ---- | M] (Microsoft Corporation)
(netw5v32) Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\netw5v32.sys -> [2009-07-14 00:02:51 | 04,231,168 | ---- | M] (Intel Corporation)
(nfrd960) nfrd960 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nfrd960.sys -> [2009-07-14 03:20:44 | 00,044,624 | ---- | M] (IBM Corporation)
(NSNDIS5) NSNDIS5 NDIS Protocol Driver [Kernel | On_Demand | Stopped] -> C:\Windows\System32\NSNDIS5.SYS -> [2004-03-24 04:12:34 | 00,017,280 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA))
(nvraid) nvraid [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nvraid.sys -> [2009-07-14 03:20:44 | 00,117,312 | ---- | M] (NVIDIA Corporation)
(nvstor) nvstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\nvstor.sys -> [2009-07-14 03:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation)
(pcw) Performance Counters for Windows Driver [Kernel | Boot | Running] -> C:\Windows\System32\drivers\pcw.sys -> [2009-07-14 03:19:04 | 00,043,088 | ---- | M] (Microsoft Corporation)
(ql2300) ql2300 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\ql2300.sys -> [2009-07-14 03:19:04 | 01,383,488 | ---- | M] (QLogic Corporation)
(ql40xx) ql40xx [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\ql40xx.sys -> [2009-07-14 03:19:04 | 00,106,064 | ---- | M] (QLogic Corporation)
(RasAgileVpn) WAN Miniport (IKEv2) [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\AgileVpn.sys -> [2009-07-14 01:55:00 | 00,049,152 | ---- | M] (Microsoft Corporation)
(rdpbus) Remote Desktop Device Redirector Bus Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rdpbus.sys -> [2009-07-14 02:02:41 | 00,018,944 | ---- | M] (Microsoft Corporation)
(RDPREFMP) Reflector Display Driver used to gain access to graphics data [Kernel | System | Running] -> C:\Windows\System32\drivers\rdprefmp.sys -> [2009-07-14 02:01:41 | 00,007,168 | ---- | M] (Microsoft Corporation)
(rdyboost) ReadyBoost [Kernel | Boot | Running] -> C:\Windows\System32\drivers\rdyboost.sys -> [2009-07-14 03:19:04 | 00,173,648 | ---- | M] (Microsoft Corporation)
(rimmptsk) rimmptsk [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rimmptsk.sys -> [2005-11-16 20:28:32 | 00,028,928 | ---- | M] (REDC)
(rimsptsk) rimsptsk [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\rimsptsk.sys -> [2005-12-22 17:02:22 | 00,051,840 | ---- | M] (REDC)
(rismxdp) Ricoh xD-Picture Card Driver [Kernel | Auto | Running] -> C:\Windows\System32\DRIVERS\rixdptsk.sys -> [2006-11-14 17:35:20 | 00,037,376 | ---- | M] (REDC)
(s3cap) s3cap [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vms3cap.sys -> [2009-07-14 01:28:47 | 00,005,632 | ---- | M] (Microsoft Corporation)
(SASDIFSV) SASDIFSV [Kernel | System | Running] -> C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS -> [2009-09-15 11:42:46 | 00,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASENUM) SASENUM [Kernel | On_Demand | Stopped] -> C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -> [2009-09-15 11:42:48 | 00,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASKUTIL) SASKUTIL [Kernel | System | Running] -> C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys -> [2009-09-15 11:42:44 | 00,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(scfilter) Filterdriver til PnP for chipkort [Kernel | Unknown | Stopped] -> C:\Windows\System32\DRIVERS\scfilter.sys -> [2009-07-14 01:33:50 | 00,026,624 | ---- | M] (Microsoft Corporation)
(secdrv) Security Driver [Kernel | Auto | Running] -> C:\Windows\System32\drivers\secdrv.sys -> [2009-07-13 22:50:20 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
(SiSRaid2) SiSRaid2 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\SiSRaid2.sys -> [2009-07-14 03:19:04 | 00,040,016 | ---- | M] (Silicon Integrated Systems Corp.)
(SiSRaid4) SiSRaid4 [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\sisraid4.sys -> [2009-07-14 03:19:04 | 00,077,888 | ---- | M] (Silicon Integrated Systems)
(sptd) sptd [Kernel | Boot | Running] -> C:\Windows\System32\Drivers\sptd.sys -> [2009-10-02 14:31:01 | 00,721,904 | ---- | M] ()
(SrvHsfHDA) SrvHsfHDA [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTAZL3.SYS -> [2009-07-14 00:13:45 | 00,207,360 | ---- | M] (Conexant Systems, Inc.)
(SrvHsfV92) SrvHsfV92 [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTDPV3.SYS -> [2009-07-14 00:13:46 | 00,980,992 | ---- | M] (Conexant Systems, Inc.)
(SrvHsfWinac) SrvHsfWinac [Kernel | On_Demand | Running] -> C:\Windows\System32\DRIVERS\VSTCNXT3.SYS -> [2009-07-14 00:13:45 | 00,661,504 | ---- | M] (Conexant Systems, Inc.)
(stexstor) stexstor [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\stexstor.sys -> [2009-07-14 03:19:04 | 00,021,072 | ---- | M] (Promise Technology)
(storflt) Disk Virtual Machine Bus Acceleration Filter Driver [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vmstorfl.sys -> [2009-07-14 03:19:10 | 00,040,896 | ---- | M] (Microsoft Corporation)
(storvsc) storvsc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\storvsc.sys -> [2009-07-14 03:19:10 | 00,028,224 | ---- | M] (Microsoft Corporation)
(TPM) TPM [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\tpm.sys -> [2009-07-14 01:12:52 | 00,030,720 | ---- | M] (Microsoft Corporation)
(UmPass) Microsoft UMPass Driver [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\umpass.sys -> [2009-07-14 01:51:35 | 00,008,192 | ---- | M] (Microsoft Corporation)
(vdrvroot) Microsoft Virtual Drive Enumerator Driver [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vdrvroot.sys -> [2009-07-14 03:19:10 | 00,032,832 | ---- | M] (Microsoft Corporation)
(vhdmp) vhdmp [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vhdmp.sys -> [2009-07-14 03:19:10 | 00,159,824 | ---- | M] (Microsoft Corporation)
(viaide) viaide [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\viaide.sys -> [2009-07-14 03:19:10 | 00,016,976 | ---- | M] (VIA Technologies, Inc.)
(vmbus) Virtual Machine Bus [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vmbus.sys -> [2009-07-14 03:19:10 | 00,175,824 | ---- | M] (Microsoft Corporation)
(VMBusHID) VMBusHID [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\VMBusHID.sys -> [2009-07-14 01:28:45 | 00,017,920 | ---- | M] (Microsoft Corporation)
(vsmraid) vsmraid [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vsmraid.sys -> [2009-07-14 03:19:11 | 00,141,904 | ---- | M] (VIA Technologies Inc.,Ltd)
(vwifibus) Driver til virtual WiFi-bus [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\vwifibus.sys -> [2009-07-14 01:52:02 | 00,019,968 | ---- | M] (Microsoft Corporation)
(WfpLwf) WFP Lightweight Filter [Kernel | System | Running] -> C:\Windows\System32\DRIVERS\wfplwf.sys -> [2009-07-14 01:53:51 | 00,009,728 | ---- | M] (Microsoft Corporation)
(WIMMount) WIMMount [File_System | On_Demand | Stopped] -> C:\Windows\System32\drivers\wimmount.sys -> [2009-07-14 03:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation)

[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" ->  [binary data] ->
HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\System32\blank.htm ->
HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk ->
HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> ->
HKEY_CURRENT_USER\: Main\\"Local Page" -> C:\Windows\system32\blank.htm ->
HKEY_CURRENT_USER\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_CURRENT_USER\: Main\\"Start Page" -> http://www.google.dk/ ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache" -> http://dk.msn.com/?ocid=iehp ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache AcceptLangs" -> da ->
HKEY_CURRENT_USER\: Main\\"Start Page Redirect Cache_TIMESTAMP" -> 3F 5F B1 BA 5C 43 CA 01  [binary data] ->
HKEY_CURRENT_USER\: "ProxyEnable" -> 0 ->
< FireFox Settings [Prefs.js] > -> C:\Users\Mijay\AppData\Roaming\Mozilla\FireFox\Profiles\mdcicim5.default\prefs.js ->
browser.startup.homepage -> "http://www.google.dk/" ->
extensions.enabledItems -> {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1 ->
extensions.enabledItems -> 6 ->
extensions.enabledItems -> 2 ->
extensions.enabledItems -> 48 ->
extensions.enabledItems -> {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3 ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions ->  ->
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components -> C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins -> C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2009-10-14 12:37:32 | 00,000,000 | ---D | M]
< FireFox Extensions [User Folders] > ->
-> C:\Users\Mijay\AppData\Roaming\mozilla\Extensions -> [2009-10-12 14:50:36 | 00,000,000 | ---D | M]
-> C:\Users\Mijay\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} -> [2009-10-12 14:50:36 | 00,000,000 | ---D | M]
-> C:\Users\Mijay\AppData\Roaming\mozilla\Firefox\Profiles\mdcicim5.default\extensions -> [2009-10-12 15:29:37 | 00,101,826 | ---- | M] ()
< FireFox Extensions [Program Folders] > ->
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES\MOZILLA FIREFOX\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} -> [2009-08-24 22:17:23 | 10,776,568 | ---- | M] (Mozilla Foundation)
< FireFox Components [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\components\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\components -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
browserdirprovider.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\browserdirprovider.dll -> [2009-08-24 22:17:23 | 00,023,544 | ---- | M] (Mozilla Foundation)
brwsrcmp.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\components\brwsrcmp.dll -> [2009-08-24 22:17:23 | 00,137,208 | ---- | M] (Mozilla Foundation)
< FireFox Plugins [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins -> [2009-10-14 12:37:32 | 00,000,000 | ---D | M]
npdeploytk.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npdeploytk.dll -> [2009-10-12 15:49:55 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.)
npnul32.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npnul32.dll -> [2009-08-24 22:17:23 | 00,065,016 | ---- | M] (mozilla.org)
npqtplugin.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin.dll -> [2009-10-12 15:04:41 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin2.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin2.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin3.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin3.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin4.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin4.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin5.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin5.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin6.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin6.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
npqtplugin7.dll -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\npqtplugin7.dll -> [2009-10-12 15:04:42 | 00,159,744 | ---- | M] (Apple Inc.)
QuickTimePlugin.class -> C:\PROGRAM FILES\MOZILLA FIREFOX\plugins\QuickTimePlugin.cla -> [2009-10-12 15:04:41 | 00,004,208 | ---- | M] ()
< FireFox SearchPlugins [Program Folders] > ->
C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\ -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins -> [2009-10-12 14:50:29 | 00,000,000 | ---D | M]
amazon-co-uk.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\amazon-co-uk.xml -> [2009-08-24 21:26:29 | 00,001,525 | ---- | M] ()
answers.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\answers.xml -> [2009-08-24 21:26:29 | 00,002,193 | ---- | M] ()
creativecommons.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\creativecommons.xml -> [2009-08-24 21:26:29 | 00,001,534 | ---- | M] ()
eBay.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\eBay.xml -> [2009-08-24 21:26:29 | 00,002,344 | ---- | M] ()
google.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\google.xml -> [2009-08-24 21:26:29 | 00,002,371 | ---- | M] ()
wikipedia-da.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\wikipedia-da.xml -> [2009-08-24 21:26:29 | 00,001,178 | ---- | M] ()
yahoo-dk.xml -> C:\PROGRAM FILES\MOZILLA FIREFOX\searchplugins\yahoo-dk.xml -> [2009-08-24 21:26:29 | 00,000,799 | ---- | M] ()
< HOSTS File > (824 bytes and 21 lines) -> C:\Windows\System32\drivers\etc\Hosts ->
Reset Hosts
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} [HKLM] -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe PDF Link Helper] -> [2009-02-27 12:07:26 | 00,075,128 | ---- | M] (Adobe Systems Incorporated)
{DBC80044-A445-435b-BC74-9C25C1C588A9} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [Java(tm) Plug-In 2 SSV Helper] -> [2009-10-12 15:49:55 | 00,041,760 | ---- | M] (Sun Microsystems, Inc.)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
"{32099AAC-C132-4136-9E9A-4E364A424E17}" [HKLM] -> C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [DAEMON Tools Toolbar] -> [2009-04-23 15:15:24 | 00,937,416 | ---- | M] ()
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ->
WebBrowser\\"{32099AAC-C132-4136-9E9A-4E364A424E17}" [HKLM] -> C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [DAEMON Tools Toolbar] -> [2009-04-23 15:15:24 | 00,937,416 | ---- | M] ()
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"avast!" -> C:\Program Files\Alwil Software\Avast4\ashDisp.exe ["C:\Program Files\Alwil Software\Avast4\ashDisp.exe"] -> [2009-09-15 12:56:48 | 00,081,000 | ---- | M] (ALWIL Software)
"HotKeysCmds" -> C:\Windows\System32\hkcmd.exe [C:\Windows\system32\hkcmd.exe] -> [2009-08-13 21:16:18 | 00,167,424 | ---- | M] (Intel Corporation)
"hpqSRMon" -> C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe] -> [2008-08-20 10:54:08 | 00,150,016 | ---- | M] (Hewlett-Packard)
"IgfxTray" -> C:\Windows\System32\igfxtray.exe [C:\Windows\system32\igfxtray.exe] -> [2009-08-13 21:16:18 | 00,135,168 | ---- | M] (Intel Corporation)
"Malwarebytes Anti-Malware (reboot)" -> C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe ["C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript] -> [2009-09-10 14:53:56 | 01,312,080 | ---- | M] (Malwarebytes Corporation)
"Persistence" -> C:\Windows\System32\igfxpers.exe [C:\Windows\system32\igfxpers.exe] -> [2009-08-13 21:15:48 | 00,144,384 | ---- | M] (Intel Corporation)
"QuickTime Task" -> C:\Program Files\QuickTime\QTTask.exe ["C:\Program Files\QuickTime\QTTask.exe" -atboottime] -> [2009-09-05 01:54:42 | 00,417,792 | ---- | M] (Apple Inc.)
"SunJavaUpdateSched" -> C:\Program Files\Java\jre6\bin\jusched.exe ["C:\Program Files\Java\jre6\bin\jusched.exe"] -> [2009-10-12 15:49:55 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.)
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"DAEMON Tools Lite" -> C:\Program Files\DAEMON Tools Lite\daemon.exe ["C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun] -> [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd)
"SUPERAntiSpyware" -> C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe] -> [2009-09-15 11:42:42 | 01,998,576 | ---- | M] (SUPERAntiSpyware.com)
"uTorrent" -> C:\Program Files\uTorrent\uTorrent.exe ["C:\Program Files\uTorrent\uTorrent.exe"] -> [2009-10-01 18:54:25 | 00,289,072 | ---- | M] (BitTorrent, Inc.)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"ConsentPromptBehaviorAdmin" ->  [5] -> File not found
\\"ConsentPromptBehaviorUser" ->  [3] -> File not found
\\"EnableInstallerDetection" ->  [1] -> File not found
\\"EnableLUA" ->  [1] -> File not found
\\"EnableSecureUIAPaths" ->  [1] -> File not found
\\"EnableUIADesktopToggle" ->  [0] -> File not found
\\"EnableVirtualization" ->  [1] -> File not found
\\"PromptOnSecureDesktop" ->  [1] -> File not found
\\"ValidateAdminCodeSignatures" ->  [0] -> File not found
\\"dontdisplaylastusername" ->  [0] -> File not found
\\"legalnoticecaption" ->  [] -> File not found
\\"legalnoticetext" ->  [] -> File not found
\\"scforceoption" ->  [0] -> File not found
\\"shutdownwithoutlogon" ->  [1] -> File not found
\\"undockwithoutlogon" ->  [1] -> File not found
\\"FilterAdministratorToken" ->  [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
\UIPI\Clipboard\ExceptionFormats\\"CF_TEXT" ->  [1] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_BITMAP" ->  [2] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_OEMTEXT" ->  [7] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIB" ->  [8] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_PALETTE" ->  [9] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_UNICODETEXT" ->  [13] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIBV5" ->  [17] -> File not found
< CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
< CurrentVersion Policy Settings - System [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"DisableRegistryTools" ->  [0] -> File not found
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}:Exec [HKLM] -> C:\Programs\PartyGaming\PartyPoker\RunApp.exe [Button: PartyPoker.com] -> [2009-08-24 11:45:52 | 00,110,592 | ---- | M] ()
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}:Exec [HKLM] -> C:\Programs\PartyGaming\PartyPoker\RunApp.exe [Menu: PartyPoker.com] -> [2009-08-24 11:45:52 | 00,110,592 | ---- | M] ()
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ ->
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"ButtonText" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"CLSID" [HKLM] ->  [{0000031A-0000-0000-C000-000000000046}] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Default Visible" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Exec" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"HotIcon" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"Icon" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"MenuStatusBar" [HKLM] ->  [Reg Error: Key error.] -> File not found
{1FBA04EE-3024-11d2-8F1F-0000F87ABD16}\\"MenuText" [HKLM] ->  [Reg Error: Key error.] -> File not found
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
PluginsPageFriendlyName -> Microsoft ActiveX Gallery ->
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s ->
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->
{166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab [Shockwave ActiveX Control] ->
{3860DD98-0549-4D50-AA72-5D17D200EE10} [HKLM] -> http://cdn.scan.onecare.live.com/resource/download/scanner/da-DK/wlscctrl2.cab [Windows Live OneCare safety scanner control] ->
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16] ->
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] ->
{E2883E8F-472F-4FB0-9522-AC9BF37916A7} [HKLM] -> http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab [Reg Error: Key error.] ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4 ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{33B53B06-9330-4FFA-B7D0-2454C2FAF651}\\DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4  (Intel(R) WiFi Link 5100 AGN) ->
{47ADA274-9F3A-494E-A574-57C39A9D0973}\\DhcpNameServer -> 212.10.10.5 212.10.239.244 212.10.10.4  (Broadcom NetLink (TM) Gigabit Ethernet) ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\explorer.exe -> [2009-07-14 03:14:20 | 02,613,248 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet ->
SystemPropertiesPerformance.exe -> C:\Windows\System32\SystemPropertiesPerformance.exe -> [2009-07-14 03:14:42 | 00,081,920 | ---- | M] (Microsoft Corporation)
/pagefile ->  -> File not found
*MultiFile Done* -> ->
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->
!SASWinLogon -> C:\Program Files\SUPERAntiSpyware\SASWINLO.dll -> [2009-09-03 15:21:42 | 00,548,352 | ---- | M] (SUPERAntiSpyware.com)
igfxcui -> C:\Windows\System32\igfxdev.dll -> [2009-08-13 21:15:04 | 00,217,088 | ---- | M] (Intel Corporation)
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad ->
"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks ->
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}" [HKLM] -> C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [] -> [2008-05-13 10:13:36 | 00,077,824 | ---- | M] (SuperAdBlocker.com)
< LSA Security Packages [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages ->
*LSA Security Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages ->
pku2u -> C:\Windows\System32\pku2u.dll -> [2009-07-14 03:16:12 | 00,186,880 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot ->
"AlternateShell" -> cmd.exe ->
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 ->
"DisplayName" -> CD-ROM Driver ->
"ImagePath" ->  [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > ->  ->
C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2009-06-10 23:42:20 | 00,000,024 | ---- | M] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 ->
\{3a20d862-b58e-11de-a48a-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3a20d862-b58e-11de-a48a-4c805820f7ba}\shell
\{3a20d862-b58e-11de-a48a-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{8f367d6e-b414-11de-a782-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8f367d6e-b414-11de-a782-4c805820f7ba}\shell
\{8f367d6e-b414-11de-a782-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{8f367d7d-b414-11de-a782-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8f367d7d-b414-11de-a782-4c805820f7ba}\shell
\{8f367d7d-b414-11de-a782-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
\{914b3602-af4f-11de-802d-4c805820f7ba}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{914b3602-af4f-11de-802d-4c805820f7ba}\shell
\{914b3602-af4f-11de-802d-4c805820f7ba}\shell\\"" ->  [AutoRun] -> File not found
< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command ->
comfile [open] -> "%1" %* -> File not found
exefile [open] -> "%1" %* -> File not found

[Registry - Additional Scans - Safe List]
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ ->
.bat [@ = batfile] -> "%1" %* ->
.chm [@ = chm.file] -> C:\Windows\hh.exe -> [2009-07-14 03:14:21 | 00,015,360 | ---- | M] (Microsoft Corporation)
.cmd [@ = cmdfile] -> "%1" %* ->
.com [@ = comfile] -> "%1" %* ->
.cpl [@ = cplfile] -> C:\Windows\System32\control.exe -> [2009-07-14 03:14:15 | 00,113,152 | ---- | M] (Microsoft Corporation)
.exe [@ = exefile] -> "%1" %* ->
.hlp [@ = hlpfile] -> C:\Windows\winhlp32.exe -> [2009-07-14 03:14:45 | 00,009,728 | ---- | M] (Microsoft Corporation)
.html [@ = htmlfile] -> C:\Program Files\Internet Explorer\iexplore.exe -> [2009-07-14 03:17:29 | 00,673,048 | ---- | M] (Microsoft Corporation)
.pif [@ = piffile] -> "%1" %* ->
.scr [@ = scrfile] -> "%1" /S ->
< File Associations - Select to Repair > -> HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>\ ->
.html [@ = FirefoxHTML] -> C:\Program Files\Mozilla Firefox\firefox.exe -> [2009-08-24 22:17:23 | 00,908,280 | ---- | M] (Mozilla Corporation)
< Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
\\"cval" ->  [1] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
\Svc\\"VistaSp1" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found
\Svc\\"AntiVirusOverride" ->  [0] -> File not found
\Svc\\"AntiSpywareOverride" ->  [0] -> File not found
\Svc\\"FirewallOverride" ->  [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> ->

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
\\"DisableNotifications" ->  [0] -> File not found
\\"EnableFirewall" ->  [1] -> File not found
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> ->
< Winsock2 Catalogs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\ ->
NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\napinsp.dll,-1000] -> C:\Windows\System32\napinsp.dll -> [2009-07-14 03:16:02 | 00,052,224 | ---- | M] (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000005 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] -> C:\Windows\System32\pnrpnsp.dll -> [2009-07-14 03:16:12 | 00,065,024 | ---- | M] (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000006 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] -> C:\Windows\System32\pnrpnsp.dll -> [2009-07-14 03:16:12 | 00,065,024 | ---- | M] (Microsoft Corporation)
< Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
ldap -> 4 = Restricted sites (Not a Default Protocol) ->
news -> 4 = Restricted sites (Not a Default Protocol) ->
nntp -> 4 = Restricted sites (Not a Default Protocol) ->
oecmd -> 4 = Restricted sites (Not a Default Protocol) ->
snews -> 4 = Restricted sites (Not a Default Protocol) ->
< Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
{0C34B801-6AEC-4667-B053-03A67E2D0415} -> Apple Application Support
{26A24AE4-039D-4CA4-87B4-2F83216016FF} -> Java(TM) 6 Update 16
{5DB65884-C963-4454-AABA-4CA3089281FA} -> NVIDIA PhysX
{681B698F-C997-42C3-B184-B489C6CA24C9} -> HPPhotoSmartDiscLabelContent1
{6956856F-B6B3-4BE0-BA0B-8F495BE32033} -> Apple Software Update
{A429C2AE-EBF1-4F81-A221-1C115CAADDAD} -> QuickTime
{A49F249F-0C91-497F-86DF-B2585E8E76B7} -> Microsoft Visual C++ 2005 Redistributable
{AC76BA86-7AD7-1030-7B44-A91000000001} -> Adobe Reader 9.1 - Dansk
{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} -> SUPERAntiSpyware Free Edition
{D3F80A98-05AB-4D8C-9272-766CCFA6A48D} -> THE SETTLERS - Rise of an Empire
{D79113E7-274C-470B-BD46-01B10219DF6A} -> HPPhotosmartEssential
{FE0646A7-19D0-41B4-A2BB-2C35D644270D} -> Windows Live OneCare safety scanner
Adobe Flash Player ActiveX -> Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin -> Adobe Flash Player 10 Plugin
Adobe Shockwave Player -> Adobe Shockwave Player 11.5
avast! -> avast! Antivirus
AVI Splitter_is1 -> AVI Splitter
CCleaner -> CCleaner (remove only)
Cheat Engine 5.5_is1 -> Cheat Engine 5.5
DAEMON Tools Toolbar -> DAEMON Tools Toolbar
eToro -> eToro
Fiesta Online(EU_English) -> Fiesta Online(EU_English) 1.02.026
Free Create-Burn ISO Image_is1 -> Free Create-Burn ISO Image v2.0
HackerEvolutionUntold -> Hacker Evolution: Untold (2.01.033)(remove only)
HDMI -> Intel(R) Graphics Media Accelerator Driver
HijackThis -> HijackThis 2.0.2
HP Photosmart Essential -> HP Photosmart Essential 3.5
ImgBurn -> ImgBurn
KLiteCodecPack_is1 -> K-Lite Codec Pack 5.1.0 (Full)
Magic ISO Maker v5.5 (build 0276) -> Magic ISO Maker v5.5 (build 0276)
Malwarebytes' Anti-Malware_is1 -> Malwarebytes' Anti-Malware
Mobile Partner -> Mobile Partner
Mozilla Firefox (3.5.3) -> Mozilla Firefox (3.5.3)
Network Stumbler -> Network Stumbler 0.4.0 (remove only)
PartyPoker -> PartyPoker
Power Management Driver -> ThinkPad Power Management Driver
SMAC 2.0 -> SMAC 2.0
SubtitleWorkshop -> Subtitle Workshop 2.51
TVWiz -> Intel(R) TV Wizard
uTorrent -> µTorrent
Windows Live OneCare safety scanner -> Windows Live OneCare safety scanner
WinRAR archiver -> WinRAR arkivering
< Uninstall List [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
Absolute Poker -> Absolute Poker
< EventViewer Logs - Last 10 Errors > -> Event Information -> Description
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

[Files/Folders - Created Within 30 Days]
ProgramData -> C:\ProgramData -> [2009-10-14 12:37:34 | 00,000,000 | -H-D | M]
Adobe -> C:\ProgramData\Adobe -> [2009-10-03 19:41:05 | 00,000,000 | ---D | M]
Apple -> C:\ProgramData\Apple -> [2009-10-12 15:03:21 | 00,000,000 | ---D | M]
Apple Computer -> C:\ProgramData\Apple Computer -> [2009-10-12 15:04:27 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\ProgramData\DAEMON Tools Lite -> [2009-10-02 14:33:14 | 00,000,000 | ---D | M]
Hewlett-Packard -> C:\ProgramData\Hewlett-Packard -> [2009-10-13 14:41:13 | 00,000,000 | ---D | M]
HP -> C:\ProgramData\HP -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
Malwarebytes -> C:\ProgramData\Malwarebytes -> [2009-10-11 13:59:37 | 00,000,000 | ---D | M]
Media Center Programs -> C:\ProgramData\Media Center Programs -> [2009-10-02 16:22:32 | 00,000,000 | ---D | M]
Microsoft -> C:\ProgramData\Microsoft -> [2009-10-12 18:04:46 | 00,000,000 | --SD | M]
SUPERAntiSpyware.com -> C:\ProgramData\SUPERAntiSpyware.com -> [2009-10-12 15:46:53 | 00,000,000 | ---D | M]
Roaming -> C:\Users\Mijay\AppData\Roaming -> [2009-10-12 17:25:54 | 00,000,000 | ---D | M]
Absolute Poker -> C:\Users\Mijay\AppData\Roaming\Absolute Poker -> [2009-10-11 17:31:21 | 00,000,000 | ---D | M]
Adobe -> C:\Users\Mijay\AppData\Roaming\Adobe -> [2009-10-03 19:41:33 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\Users\Mijay\AppData\Roaming\DAEMON Tools Lite -> [2009-10-02 16:14:26 | 00,000,000 | ---D | M]
Identities -> C:\Users\Mijay\AppData\Roaming\Identities -> [2009-10-01 18:05:59 | 00,000,000 | ---D | M]
ImgBurn -> C:\Users\Mijay\AppData\Roaming\ImgBurn -> [2009-10-12 17:37:46 | 00,000,000 | ---D | M]
Macromedia -> C:\Users\Mijay\AppData\Roaming\Macromedia -> [2009-10-01 19:07:12 | 00,000,000 | ---D | M]
Malwarebytes -> C:\Users\Mijay\AppData\Roaming\Malwarebytes -> [2009-10-11 13:59:42 | 00,000,000 | ---D | M]
Microsoft -> C:\Users\Mijay\AppData\Roaming\Microsoft -> [2009-10-11 15:54:38 | 00,000,000 | --SD | M]
Mozilla -> C:\Users\Mijay\AppData\Roaming\Mozilla -> [2009-10-12 14:50:46 | 00,000,000 | ---D | M]
SUPERAntiSpyware.com -> C:\Users\Mijay\AppData\Roaming\SUPERAntiSpyware.com -> [2009-10-12 15:46:31 | 00,000,000 | ---D | M]
uTorrent -> C:\Users\Mijay\AppData\Roaming\uTorrent -> [2009-10-14 14:06:06 | 00,000,000 | ---D | M]
WinRAR -> C:\Users\Mijay\AppData\Roaming\WinRAR -> [2009-10-01 20:09:00 | 00,000,000 | ---D | M]
Local -> C:\Users\Mijay\AppData\Local -> [2009-10-13 14:45:31 | 00,000,000 | ---D | M]
Adobe -> C:\Users\Mijay\AppData\Local\Adobe -> [2009-10-03 19:42:02 | 00,000,000 | ---D | M]
Apple -> C:\Users\Mijay\AppData\Local\Apple -> [2009-10-12 15:03:23 | 00,000,000 | ---D | M]
Application Data -> C:\Users\Mijay\AppData\Local\Application Data -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
Diagnostics -> C:\Users\Mijay\AppData\Local\Diagnostics -> [2009-10-08 16:08:29 | 00,000,000 | ---D | M]
ElevatedDiagnostics -> C:\Users\Mijay\AppData\Local\ElevatedDiagnostics -> [2009-10-12 18:49:16 | 00,000,000 | ---D | M]
History -> C:\Users\Mijay\AppData\Local\History -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
HP -> C:\Users\Mijay\AppData\Local\HP -> [2009-10-13 14:45:31 | 00,000,000 | ---D | M]
Microsoft -> C:\Users\Mijay\AppData\Local\Microsoft -> [2009-10-11 17:12:22 | 00,000,000 | ---D | M]
Microsoft Games -> C:\Users\Mijay\AppData\Local\Microsoft Games -> [2009-10-09 17:00:39 | 00,000,000 | ---D | M]
Mozilla -> C:\Users\Mijay\AppData\Local\Mozilla -> [2009-10-12 14:50:35 | 00,000,000 | ---D | M]
Temp -> C:\Users\Mijay\AppData\Local\Temp -> [2009-10-14 14:04:53 | 00,000,000 | ---D | M]
Temporary Internet Files -> C:\Users\Mijay\AppData\Local\Temporary Internet Files -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | M]
VirtualStore -> C:\Users\Mijay\AppData\Local\VirtualStore -> [2009-10-03 01:00:18 | 00,000,000 | ---D | M]
Common Files -> C:\Program Files\Common Files -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
Adobe -> C:\Program Files\Common Files\Adobe -> [2009-10-03 19:40:53 | 00,000,000 | ---D | M]
Apple -> C:\Program Files\Common Files\Apple -> [2009-10-12 15:03:29 | 00,000,000 | ---D | M]
HP -> C:\Program Files\Common Files\HP -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
microsoft shared -> C:\Program Files\Common Files\microsoft shared -> [2009-10-08 19:45:57 | 00,000,000 | ---D | M]
System -> C:\Program Files\Common Files\System -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Wise Installation Wizard -> C:\Program Files\Common Files\Wise Installation Wizard -> [2009-10-12 15:46:11 | 00,000,000 | ---D | M]
Program Files -> C:\Program Files -> [2009-10-14 12:37:34 | 00,000,000 | R--D | M]
Adobe -> C:\Program Files\Adobe -> [2009-10-03 19:40:39 | 00,000,000 | ---D | M]
AGEIA Technologies -> C:\Program Files\AGEIA Technologies -> [2009-10-08 19:40:59 | 00,000,000 | ---D | M]
Alwil Software -> C:\Program Files\Alwil Software -> [2009-10-11 14:31:19 | 00,000,000 | ---D | M]
Apple Software Update -> C:\Program Files\Apple Software Update -> [2009-10-12 15:03:22 | 00,000,000 | ---D | M]
avisplit -> C:\Program Files\avisplit -> [2009-10-01 20:33:25 | 00,000,000 | ---D | M]
CCleaner -> C:\Program Files\CCleaner -> [2009-10-11 13:57:07 | 00,000,000 | ---D | M]
Cheat Engine -> C:\Program Files\Cheat Engine -> [2009-10-09 17:00:08 | 00,000,000 | ---D | M]
Common Files -> C:\Program Files\Common Files -> [2009-10-13 14:44:48 | 00,000,000 | ---D | M]
DAEMON Tools Lite -> C:\Program Files\DAEMON Tools Lite -> [2009-10-02 14:33:11 | 00,000,000 | ---D | M]
DAEMON Tools Toolbar -> C:\Program Files\DAEMON Tools Toolbar -> [2009-10-02 14:33:11 | 00,000,000 | ---D | M]
DVD Maker -> C:\Program Files\DVD Maker -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Electronic Arts -> C:\Program Files\Electronic Arts -> [2009-10-08 19:47:45 | 00,000,000 | ---D | M]
eToro -> C:\Program Files\eToro -> [2009-10-03 16:39:14 | 00,000,000 | ---D | M]
Free Create-Burn ISO Image -> C:\Program Files\Free Create-Burn ISO Image -> [2009-10-12 16:54:24 | 00,000,000 | ---D | M]
Gamigo Games -> C:\Program Files\Gamigo Games -> [2009-10-14 00:33:51 | 00,000,000 | ---D | M]
Hacker Evolution Untold -> C:\Program Files\Hacker Evolution Untold -> [2009-10-03 18:50:17 | 00,000,000 | ---D | M]
HP -> C:\Program Files\HP -> [2009-10-13 14:45:17 | 00,000,000 | ---D | M]
ImgBurn -> C:\Program Files\ImgBurn -> [2009-10-12 17:08:40 | 00,000,000 | ---D | M]
InstallShield Installation Information -> C:\Program Files\InstallShield Installation Information -> [2009-10-02 16:14:45 | 00,000,000 | -H-D | M]
Intel -> C:\Program Files\Intel -> [2009-10-03 15:24:44 | 00,000,000 | ---D | M]
Internet Explorer -> C:\Program Files\Internet Explorer -> [2009-10-12 15:04:42 | 00,000,000 | ---D | M]
Java -> C:\Program Files\Java -> [2009-10-12 15:49:49 | 00,000,000 | ---D | M]
KLC -> C:\Program Files\KLC -> [2009-10-01 18:24:42 | 00,000,000 | ---D | M]
K-Lite Codec Pack -> C:\Program Files\K-Lite Codec Pack -> [2009-10-01 20:13:43 | 00,000,000 | ---D | M]
MagicISO -> C:\Program Files\MagicISO -> [2009-10-12 17:04:25 | 00,000,000 | ---D | M]
Malwarebytes' Anti-Malware -> C:\Program Files\Malwarebytes' Anti-Malware -> [2009-10-11 13:59:41 | 00,000,000 | ---D | M]
Mobile Partner -> C:\Program Files\Mobile Partner -> [2009-10-08 16:22:16 | 00,000,000 | ---D | M]
Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2009-10-12 14:50:29 | 00,000,000 | ---D | M]
Network Stumbler -> C:\Program Files\Network Stumbler -> [2009-10-11 15:54:36 | 00,000,000 | ---D | M]
QuickTime -> C:\Program Files\QuickTime -> [2009-10-12 15:04:41 | 00,000,000 | ---D | M]
SUPERAntiSpyware -> C:\Program Files\SUPERAntiSpyware -> [2009-10-12 15:46:32 | 00,000,000 | ---D | M]
Trend Micro -> C:\Program Files\Trend Micro -> [2009-10-11 15:13:14 | 00,000,000 | ---D | M]
Ubisoft -> C:\Program Files\Ubisoft -> [2009-10-02 16:14:46 | 00,000,000 | ---D | M]
URUSoft -> C:\Program Files\URUSoft -> [2009-10-01 22:38:33 | 00,000,000 | ---D | M]
uTorrent -> C:\Program Files\uTorrent -> [2009-10-01 18:54:25 | 00,000,000 | ---D | M]
Windows Defender -> C:\Program Files\Windows Defender -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Journal -> C:\Program Files\Windows Journal -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Live Safety Center -> C:\Program Files\Windows Live Safety Center -> [2009-10-11 15:42:31 | 00,000,000 | ---D | M]
Windows Mail -> C:\Program Files\Windows Mail -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Media Player -> C:\Program Files\Windows Media Player -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Photo Viewer -> C:\Program Files\Windows Photo Viewer -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
Windows Sidebar -> C:\Program Files\Windows Sidebar -> [2009-10-03 15:15:08 | 00,000,000 | ---D | M]
WinRAR -> C:\Program Files\WinRAR -> [2009-10-01 20:08:07 | 00,000,000 | ---D | M]
OTS.exe -> C:\Users\Mijay\Desktop\OTS.exe -> [2009-10-13 23:39:23 | 00,520,192 | ---- | C] (OldTimer Tools)
HP -> C:\ProgramData\HP -> [2009-10-13 14:44:24 | 00,000,000 | ---D | C]
Hewlett-Packard -> C:\ProgramData\Hewlett-Packard -> [2009-10-13 14:41:13 | 00,000,000 | ---D | C]
WNASPI32.DLL -> C:\Windows\System32\WNASPI32.DLL -> [2009-10-12 16:54:24 | 00,045,056 | ---- | C] (Adaptec)
ASPI32.SYS -> C:\Windows\System32\drivers\ASPI32.SYS -> [2009-10-12 16:54:24 | 00,016,877 | ---- | C] (Adaptec)
SUPERAntiSpyware.com -> C:\ProgramData\SUPERAntiSpyware.com -> [2009-10-12 15:46:53 | 00,000,000 | ---D | C]
Apple Computer -> C:\ProgramData\Apple Computer -> [2009-10-12 15:04:27 | 00,000,000 | ---D | C]
Apple -> C:\ProgramData\Apple -> [2009-10-12 15:03:21 | 00,000,000 | ---D | C]
Poker Application -> C:\Poker Application -> [2009-10-11 17:28:56 | 00,000,000 | ---D | C]
32788R22FWJFW -> C:\32788R22FWJFW -> [2009-10-11 17:24:01 | 00,000,000 | ---D | C]
aswTdi.sys -> C:\Windows\System32\drivers\aswTdi.sys -> [2009-10-11 14:31:47 | 00,052,368 | ---- | C] (ALWIL Software)
aswRdr.sys -> C:\Windows\System32\drivers\aswRdr.sys -> [2009-10-11 14:31:47 | 00,023,152 | ---- | C] (ALWIL Software)
aswSP.sys -> C:\Windows\System32\drivers\aswSP.sys -> [2009-10-11 14:31:45 | 00,114,768 | ---- | C] (ALWIL Software)
AvastSS.scr -> C:\Windows\System32\AvastSS.scr -> [2009-10-11 14:31:45 | 00,097,480 | ---- | C] (ALWIL Software)
aswFsBlk.sys -> C:\Windows\System32\drivers\aswFsBlk.sys -> [2009-10-11 14:31:45 | 00,020,560 | ---- | C] (ALWIL Software)
aswBoot.exe -> C:\Windows\System32\aswBoot.exe -> [2009-10-11 14:31:2
Avatar billede mijaysen Praktikant
14. oktober 2009 - 14:29 #16
aswBoot.exe -> C:\Windows\System32\aswBoot.exe -> [2009-10-11 14:31:20 | 01,279,968 | ---- | C] (ALWIL Software)
aswMonFlt.sys -> C:\Windows\System32\drivers\aswMonFlt.sys -> [2009-10-11 14:31:20 | 00,053,328 | ---- | C] (ALWIL Software)
mbamswissarmy.sys -> C:\Windows\System32\drivers\mbamswissarmy.sys -> [2009-10-11 13:59:38 | 00,038,224 | ---- | C] (Malwarebytes Corporation)
mbam.sys -> C:\Windows\System32\drivers\mbam.sys -> [2009-10-11 13:59:37 | 00,019,160 | ---- | C] (Malwarebytes Corporation)
Malwarebytes -> C:\ProgramData\Malwarebytes -> [2009-10-11 13:59:37 | 00,000,000 | ---D | C]
sikkerhed -> C:\Users\Mijay\Desktop\sikkerhed -> [2009-10-11 13:51:40 | 00,000,000 | ---D | C]
pss -> C:\Windows\pss -> [2009-10-09 16:43:22 | 00,000,000 | ---D | C]
AGEIA -> C:\Windows\System32\AGEIA -> [2009-10-08 19:40:56 | 00,000,000 | ---D | C]
Programs -> C:\Programs -> [2009-10-08 18:29:41 | 00,000,000 | ---D | C]
ewusbnet.sys -> C:\Windows\System32\drivers\ewusbnet.sys -> [2009-10-08 16:21:23 | 00,112,128 | ---- | C] (Huawei Technologies Co., Ltd.)
ewusbmdm.sys -> C:\Windows\System32\drivers\ewusbmdm.sys -> [2009-10-08 16:21:23 | 00,102,912 | ---- | C] (Huawei Technologies Co., Ltd.)
ewusbdev.sys -> C:\Windows\System32\drivers\ewusbdev.sys -> [2009-10-08 16:21:23 | 00,100,736 | ---- | C] (Huawei Technologies Co., Ltd.)
ewdcsc.sys -> C:\Windows\System32\drivers\ewdcsc.sys -> [2009-10-08 16:21:23 | 00,023,424 | ---- | C] (Huawei Tech. Co., Ltd.)
Intel -> C:\Intel -> [2009-10-05 14:38:12 | 00,000,000 | ---D | C]
DRIVERS -> C:\DRIVERS -> [2009-10-05 14:37:17 | 00,000,000 | ---D | C]
Adobe -> C:\ProgramData\Adobe -> [2009-10-03 19:40:40 | 00,000,000 | ---D | C]
Installer -> C:\Windows\Installer -> [2009-10-03 19:40:13 | 00,000,000 | -HSD | C]
Adobe 9 Reader Installer -> C:\Users\Public\Desktop\Adobe 9 Reader Installer -> [2009-10-03 19:40:10 | 00,000,000 | ---D | C]
New folder (4) -> C:\Users\Mijay\Desktop\New folder (4) -> [2009-10-03 16:02:43 | 00,000,000 | ---D | C]
Lang -> C:\Windows\System32\Lang -> [2009-10-03 15:24:44 | 00,000,000 | ---D | C]
x64 -> C:\Windows\System32\x64 -> [2009-10-03 15:16:22 | 00,000,000 | ---D | C]
da-DK -> C:\Windows\da-DK -> [2009-10-03 15:15:07 | 00,000,000 | ---D | C]
XPSViewer -> C:\Windows\System32\XPSViewer -> [2009-10-03 15:15:06 | 00,000,000 | ---D | C]
da-DK -> C:\Windows\System32\drivers\da-DK -> [2009-10-03 15:15:06 | 00,000,000 | ---D | C]
da -> C:\Windows\System32\da -> [2009-10-03 15:14:57 | 00,000,000 | ---D | C]
pscr.sys.mui -> C:\Windows\System32\drivers\da-DK\pscr.sys.mui -> [2009-10-03 15:10:38 | 00,003,584 | ---- | C] (SCM Microsystems, Inc.)
yk62x86.sys.mui -> C:\Windows\System32\drivers\da-DK\yk62x86.sys.mui -> [2009-10-03 15:10:36 | 00,033,280 | ---- | C] (Marvell)
BrSerIb.sys.mui -> C:\Windows\System32\drivers\da-DK\BrSerIb.sys.mui -> [2009-10-03 15:10:17 | 00,010,240 | ---- | C] (Brother Industries Ltd.)
ltmdmnt.sys.mui -> C:\Windows\System32\drivers\da-DK\ltmdmnt.sys.mui -> [2009-10-03 15:10:17 | 00,010,240 | ---- | C] (Agere Systems)
BrSerId.sys.mui -> C:\Windows\System32\drivers\da-DK\BrSerId.sys.mui -> [2009-10-03 15:10:16 | 00,010,240 | ---- | C] (Brother Industries Ltd.)
BrParwdm.sys.mui -> C:\Windows\System32\drivers\da-DK\BrParwdm.sys.mui -> [2009-10-03 15:10:16 | 00,002,560 | ---- | C] (Brother Industries Ltd.)
Adobe -> C:\Windows\System32\Adobe -> [2009-10-02 19:09:56 | 00,000,000 | ---D | C]
Music -> C:\Users\Mijay\Desktop\Music -> [2009-10-02 18:23:15 | 00,000,000 | ---D | C]
THE SETTLERS - Rise of an Empire -> C:\Users\Mijay\Documents\THE SETTLERS - Rise of an Empire -> [2009-10-02 16:39:43 | 00,000,000 | ---D | C]
New folder (2) -> C:\Users\Mijay\Desktop\New folder (2) -> [2009-10-02 16:39:05 | 00,000,000 | ---D | C]
Media Center Programs -> C:\ProgramData\Media Center Programs -> [2009-10-02 16:22:32 | 00,000,000 | ---D | C]
DAEMON Tools Lite -> C:\ProgramData\DAEMON Tools Lite -> [2009-10-02 14:33:14 | 00,000,000 | ---D | C]
D3DX81ab.dll -> C:\Windows\System32\D3DX81ab.dll -> [2009-10-02 12:48:02 | 00,679,936 | ---- | C] (Generated by JEDI)
Panther -> C:\Windows\Panther -> [2009-10-02 03:58:35 | 00,000,000 | ---D | C]
Boot -> C:\Boot -> [2009-10-02 03:58:21 | 00,000,000 | -HSD | C]
lameACM.acm -> C:\Windows\System32\lameACM.acm -> [2009-10-01 20:12:05 | 00,839,680 | ---- | C] (http://www.mp3dev.org/)
yv12vfw.dll -> C:\Windows\System32\yv12vfw.dll -> [2009-10-01 20:12:04 | 00,217,088 | ---- | C] (www.helixcommunity.org)
ac3acm.acm -> C:\Windows\System32\ac3acm.acm -> [2009-10-01 20:12:04 | 00,118,784 | ---- | C] (fccHandler)
New folder -> C:\Users\Mijay\Desktop\New folder -> [2009-10-01 20:09:08 | 00,000,000 | ---D | C]
Macromed -> C:\Windows\System32\Macromed -> [2009-10-01 19:07:11 | 00,000,000 | ---D | C]
MacMakeUp.exe -> C:\Users\Mijay\Desktop\MacMakeUp.exe -> [2009-10-01 18:25:34 | 00,560,766 | ---- | C] (H&C Works)
Searches -> C:\Users\Mijay\Searches -> [2009-10-01 18:06:09 | 00,000,000 | R--D | C]
Contacts -> C:\Users\Mijay\Contacts -> [2009-10-01 18:05:56 | 00,000,000 | R--D | C]
Templates -> C:\Users\Mijay\Templates -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
Start Menu -> C:\Users\Mijay\Start Menu -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
SendTo -> C:\Users\Mijay\SendTo -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
Recent -> C:\Users\Mijay\Recent -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
PrintHood -> C:\Users\Mijay\PrintHood -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
NetHood -> C:\Users\Mijay\NetHood -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
My Videos -> C:\Users\Mijay\Documents\My Videos -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
My Pictures -> C:\Users\Mijay\Documents\My Pictures -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
My Music -> C:\Users\Mijay\Documents\My Music -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
My Documents -> C:\Users\Mijay\My Documents -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
Local Settings -> C:\Users\Mijay\Local Settings -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
Cookies -> C:\Users\Mijay\Cookies -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
Application Data -> C:\Users\Mijay\Application Data -> [2009-10-01 18:05:33 | 00,000,000 | -HSD | C]
Videos -> C:\Users\Mijay\Videos -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Saved Games -> C:\Users\Mijay\Saved Games -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Pictures -> C:\Users\Mijay\Pictures -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Music -> C:\Users\Mijay\Music -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Links -> C:\Users\Mijay\Links -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Favorites -> C:\Users\Mijay\Favorites -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Downloads -> C:\Users\Mijay\Downloads -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Documents -> C:\Users\Mijay\Documents -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
Desktop -> C:\Users\Mijay\Desktop -> [2009-10-01 18:05:32 | 00,000,000 | R--D | C]
AppData -> C:\Users\Mijay\AppData -> [2009-10-01 18:05:32 | 00,000,000 | -H-D | C]
Recovery -> C:\Recovery -> [2009-10-01 18:05:21 | 00,000,000 | -HSD | C]
SoftwareDistribution -> C:\Windows\SoftwareDistribution -> [2009-10-01 18:02:19 | 00,000,000 | ---D | C]
Prefetch -> C:\Windows\Prefetch -> [2009-10-01 18:00:12 | 00,000,000 | ---D | C]
System Volume Information -> C:\System Volume Information -> [2009-10-01 17:59:19 | 00,000,000 | -HSD | C]

[Files/Folders - Modified Within 30 Days]
NTUSER.DAT -> C:\Users\Mijay\NTUSER.DAT -> [2009-10-14 14:07:50 | 01,835,008 | -HS- | M] ()
PerfStringBackup.INI -> C:\Windows\System32\PerfStringBackup.INI -> [2009-10-14 13:38:19 | 01,240,086 | ---- | M] ()
perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2009-10-14 13:38:19 | 00,607,190 | ---- | M] ()
perfh006.dat -> C:\Windows\System32\perfh006.dat -> [2009-10-14 13:38:19 | 00,461,294 | ---- | M] ()
perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2009-10-14 13:38:19 | 00,103,568 | ---- | M] ()
perfc006.dat -> C:\Windows\System32\perfc006.dat -> [2009-10-14 13:38:19 | 00,076,754 | ---- | M] ()
bootstat.dat -> C:\Windows\bootstat.dat -> [2009-10-14 13:32:46 | 00,067,584 | --S- | M] ()
7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> [2009-10-14 12:44:27 | 00,014,192 | -H-- | M] ()
7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> [2009-10-14 12:44:27 | 00,014,192 | -H-- | M] ()
SA.DAT -> C:\Windows\tasks\SA.DAT -> [2009-10-14 12:37:22 | 00,000,006 | -H-- | M] ()
hiberfil.sys -> C:\hiberfil.sys -> [2009-10-14 12:37:05 | 15,665,97120 | -HS- | M] ()
IconCache.db -> C:\Users\Mijay\AppData\Local\IconCache.db -> [2009-10-14 02:06:10 | 03,690,590 | -H-- | M] ()
Fiesta Online(EU_English).lnk -> C:\Users\Mijay\Desktop\Fiesta Online(EU_English).lnk -> [2009-10-14 00:33:52 | 00,001,267 | ---- | M] ()
FiestaOnlineSetupen.exe -> C:\Users\Mijay\Desktop\FiestaOnlineSetupen.exe -> [2009-10-14 00:32:51 | 64,160,6678 | ---- | M] ()
OTS.exe -> C:\Users\Mijay\Desktop\OTS.exe -> [2009-10-13 23:39:33 | 00,520,192 | ---- | M] (OldTimer Tools)
hpqins13.dat -> C:\Windows\hpqins13.dat -> [2009-10-13 14:45:29 | 00,019,504 | ---- | M] ()
HP Photosmart Essential 3.5.lnk -> C:\Users\Public\Desktop\HP Photosmart Essential 3.5.lnk -> [2009-10-13 14:44:53 | 00,002,125 | ---- | M] ()
ImgBurn.lnk -> C:\Users\Public\Desktop\ImgBurn.lnk -> [2009-10-12 17:08:36 | 00,001,815 | ---- | M] ()
MagicISO.lnk -> C:\Users\Mijay\Desktop\MagicISO.lnk -> [2009-10-12 17:04:25 | 00,001,773 | ---- | M] ()
Free Create-Burn ISO Image.lnk -> C:\Users\Mijay\Desktop\Free Create-Burn ISO Image.lnk -> [2009-10-12 16:54:24 | 00,001,032 | ---- | M] ()
SUPERAntiSpyware Free Edition.lnk -> C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk -> [2009-10-12 15:46:33 | 00,000,991 | ---- | M] ()
Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2009-10-12 14:50:29 | 00,001,889 | ---- | M] ()
FNTCACHE.DAT -> C:\Windows\System32\FNTCACHE.DAT -> [2009-10-12 03:33:10 | 00,266,560 | ---- | M] ()
Absolute Poker.lnk -> C:\Users\Mijay\Desktop\Absolute Poker.lnk -> [2009-10-11 17:31:36 | 00,000,852 | ---- | M] ()
atksgt.sys -> C:\Windows\System32\drivers\atksgt.sys -> [2009-10-11 17:25:44 | 00,281,760 | ---- | M] ()
lirsgt.sys -> C:\Windows\System32\drivers\lirsgt.sys -> [2009-10-11 17:25:44 | 00,025,888 | ---- | M] ()
banan.exe -> C:\Users\Mijay\Desktop\banan.exe -> [2009-10-11 17:18:40 | 03,329,980 | ---- | M] ()
Network Stumbler.lnk -> C:\Users\Mijay\Desktop\Network Stumbler.lnk -> [2009-10-11 15:54:36 | 00,001,040 | ---- | M] ()
netstumblerinstaller_0_4_0.exe -> C:\Users\Mijay\Desktop\netstumblerinstaller_0_4_0.exe -> [2009-10-11 15:53:51 | 01,324,940 | ---- | M] ()
HijackThis.lnk -> C:\Users\Mijay\Desktop\HijackThis.lnk -> [2009-10-11 15:13:15 | 00,002,043 | ---- | M] ()
alg.exe -> C:\Users\Mijay\Desktop\alg.exe -> [2009-10-11 15:11:49 | 03,329,980 | ---- | M] ()
avast! Antivirus.lnk -> C:\Users\Public\Desktop\avast! Antivirus.lnk -> [2009-10-11 14:31:48 | 00,002,018 | ---- | M] ()
config.nt -> C:\Windows\System32\config.nt -> [2009-10-11 14:31:42 | 00,002,577 | ---- | M] ()
Malwarebytes' Anti-Malware.lnk -> C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk -> [2009-10-11 13:59:41 | 00,000,983 | ---- | M] ()
cc_20091011_135842.reg -> C:\Users\Mijay\Documents\cc_20091011_135842.reg -> [2009-10-11 13:58:54 | 00,012,272 | ---- | M] ()
CCleaner.lnk -> C:\Users\Mijay\Desktop\CCleaner.lnk -> [2009-10-11 13:57:07 | 00,001,835 | ---- | M] ()
3302A5F0-CC9A-44B1-A6E5-CC59FE0DBBA2.Diagnose.0.etl -> C:\Users\Mijay\Desktop\3302A5F0-CC9A-44B1-A6E5-CC59FE0DBBA2.Diagnose.0.etl -> [2009-10-10 13:22:22 | 00,196,608 | ---- | M] ()
PartyPoker.lnk -> C:\Users\Mijay\Desktop\PartyPoker.lnk -> [2009-10-08 18:31:03 | 00,001,695 | ---- | M] ()
Installation af PartyPoker.lnk -> C:\Users\Mijay\Desktop\Installation af PartyPoker.lnk -> [2009-10-08 18:27:33 | 00,000,633 | ---- | M] ()
Mobile Partner.lnk -> C:\Users\Public\Desktop\Mobile Partner.lnk -> [2009-10-08 16:21:26 | 00,001,041 | ---- | M] ()
aircrack-ng-1.0-win.zip -> C:\Users\Mijay\Desktop\aircrack-ng-1.0-win.zip -> [2009-10-05 11:28:28 | 04,315,816 | ---- | M] ()
aircrack-ng-0.9.3-win.zip -> C:\Users\Mijay\Desktop\aircrack-ng-0.9.3-win.zip -> [2009-10-05 11:28:13 | 02,109,635 | ---- | M] ()
Adobe Reader 9.lnk -> C:\Users\Public\Desktop\Adobe Reader 9.lnk -> [2009-10-03 19:40:54 | 00,001,984 | ---- | M] ()
eToro.lnk -> C:\Users\Mijay\Desktop\eToro.lnk -> [2009-10-03 16:39:13 | 00,001,769 | ---- | M] ()
perfi006.dat -> C:\Windows\System32\perfi006.dat -> [2009-10-03 15:14:47 | 00,306,636 | ---- | M] ()
perfd006.dat -> C:\Windows\System32\perfd006.dat -> [2009-10-03 15:14:47 | 00,039,236 | ---- | M] ()
bootsect.lxe.bak -> C:\bootsect.lxe.bak -> [2009-10-03 15:03:08 | 00,008,192 | ---- | M] ()
gdrop -> C:\gdrop -> [2009-10-03 15:03:07 | 00,383,592 | RHS- | M] ()
xeldr -> C:\xeldr -> [2009-10-03 15:03:07 | 00,171,136 | RHS- | M] ()
data.dat -> C:\Users\Mijay\AppData\Roaming\data.dat -> [2009-10-03 15:01:45 | 00,004,507 | ---- | M] ()
Hacker Evolution Untold.lnk -> C:\Users\Public\Desktop\Hacker Evolution Untold.lnk -> [2009-10-03 00:59:55 | 00,000,930 | ---- | M] ()
Msft_User_WpdFs_01_09_00.Wdf -> C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf -> [2009-10-02 18:22:56 | 00,000,000 | -H-- | M] ()
settlers_6_v1.7.1.zip -> C:\Users\Mijay\Desktop\settlers_6_v1.7.1.zip -> [2009-10-02 16:38:08 | 16,923,9426 | ---- | M] ()
Settlers6_EU_(NORMAL_tages_MAXI_image2_by_xKVtor).rar -> C:\Users\Mijay\Desktop\Settlers6_EU_(NORMAL_tages_MAXI_image2_by_xKVtor).rar -> [2009-10-02 16:20:09 | 14,387,390 | ---- | M] ()
DAEMON Tools Lite.lnk -> C:\Users\Public\Desktop\DAEMON Tools Lite.lnk -> [2009-10-02 14:33:03 | 00,001,900 | ---- | M] ()
sptd.sys -> C:\Windows\System32\drivers\sptd.sys -> [2009-10-02 14:31:01 | 00,721,904 | ---- | M] ()
GDIPFONTCACHEV1.DAT -> C:\Users\Mijay\AppData\Local\GDIPFONTCACHEV1.DAT -> [2009-10-02 13:00:56 | 00,057,560 | ---- | M] ()
Cheat Engine.lnk -> C:\Users\Mijay\Desktop\Cheat Engine.lnk -> [2009-10-02 12:48:03 | 00,000,957 | ---- | M] ()
BOOTSECT.BAK -> C:\BOOTSECT.BAK -> [2009-10-02 03:58:23 | 00,008,192 | RHS- | M] ()
Subtitle Workshop.lnk -> C:\Users\Mijay\Desktop\Subtitle Workshop.lnk -> [2009-10-01 22:38:33 | 00,002,122 | ---- | M] ()
Senseless - CD2 (1998).avi -> C:\Senseless - CD2 (1998).avi -> [2009-10-01 20:35:25 | 36,887,9912 | ---- | M] ()
Senseless - CD1 (1998).avi -> C:\Senseless - CD1 (1998).avi -> [2009-10-01 20:34:56 | 36,950,5064 | ---- | M] ()
avisplit.zip -> C:\Users\Mijay\Desktop\avisplit.zip -> [2009-10-01 20:33:15 | 00,550,011 | ---- | M] ()
sw4b4.zip -> C:\Users\Mijay\Desktop\sw4b4.zip -> [2009-10-01 20:08:59 | 01,092,977 | ---- | M] ()
52005.rar -> C:\Users\Mijay\Desktop\52005.rar -> [2009-10-01 20:07:29 | 00,021,981 | ---- | M] ()
Senseless (1998).srt -> C:\Users\Mijay\Desktop\Senseless (1998).srt -> [2009-10-01 19:42:32 | 00,064,091 | ---- | M] ()
µTorrent.lnk -> C:\Users\Public\Desktop\µTorrent.lnk -> [2009-10-01 18:54:25 | 00,000,917 | ---- | M] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms -> C:\Users\Mijay\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms -> [2009-10-01 18:32:47 | 00,524,288 | -HS- | M] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms -> C:\Users\Mijay\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms -> [2009-10-01 18:32:47 | 00,524,288 | -HS- | M] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf -> C:\Users\Mijay\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf -> [2009-10-01 18:32:47 | 00,065,536 | -HS- | M] ()
SMAC 2.0.lnk -> C:\Users\Public\Desktop\SMAC 2.0.lnk -> [2009-10-01 18:24:42 | 00,001,861 | ---- | M] ()
ntuser.ini -> C:\Users\Mijay\ntuser.ini -> [2009-10-01 18:05:33 | 00,000,020 | -HS- | M] ()
license.rtf -> C:\Windows\System32\license.rtf -> [2009-10-01 18:02:53 | 00,040,251 | ---- | M] ()
winsys.exe -> C:\Users\Mijay\AppData\Roaming\winsys.exe -> [2009-09-26 22:46:15 | 00,309,760 | ---- | M] ()
aswBoot.exe -> C:\Windows\System32\aswBoot.exe -> [2009-09-15 12:59:36 | 01,279,968 | ---- | M] (ALWIL Software)
aswSP.sys -> C:\Windows\System32\drivers\aswSP.sys -> [2009-09-15 12:55:30 | 00,114,768 | ---- | M] (ALWIL Software)
aswFsBlk.sys -> C:\Windows\System32\drivers\aswFsBlk.sys -> [2009-09-15 12:55:19 | 00,020,560 | ---- | M] (ALWIL Software)
aswMonFlt.sys -> C:\Windows\System32\drivers\aswMonFlt.sys -> [2009-09-15 12:55:09 | 00,053,328 | ---- | M] (ALWIL Software)
aswTdi.sys -> C:\Windows\System32\drivers\aswTdi.sys -> [2009-09-15 12:54:30 | 00,052,368 | ---- | M] (ALWIL Software)
aswRdr.sys -> C:\Windows\System32\drivers\aswRdr.sys -> [2009-09-15 12:54:21 | 00,023,152 | ---- | M] (ALWIL Software)
AvastSS.scr -> C:\Windows\System32\AvastSS.scr -> [2009-09-15 12:53:01 | 00,097,480 | ---- | M] (ALWIL Software)

[Files - No Company Name]
Fiesta Online(EU_English).lnk -> C:\Users\Mijay\Desktop\Fiesta Online(EU_English).lnk -> [2009-10-14 00:33:52 | 00,001,267 | ---- | C] ()
FiestaOnlineSetupen.exe -> C:\Users\Mijay\Desktop\FiestaOnlineSetupen.exe -> [2009-10-14 00:31:53 | 64,160,6678 | ---- | C] ()
HP Photosmart Essential 3.5.lnk -> C:\Users\Public\Desktop\HP Photosmart Essential 3.5.lnk -> [2009-10-13 14:44:53 | 00,002,125 | ---- | C] ()
hpqins13.dat -> C:\Windows\hpqins13.dat -> [2009-10-13 14:44:25 | 00,019,504 | ---- | C] ()
hpzinstall.log -> C:\ProgramData\hpzinstall.log -> [2009-10-13 14:44:25 | 00,000,360 | ---- | C] ()
2Pac - Message.mp3 -> C:\Users\Mijay\Desktop\2Pac - Message.mp3 -> [2009-10-12 18:59:55 | 01,191,312 | ---- | C] ()
ImgBurn.lnk -> C:\Users\Public\Desktop\ImgBurn.lnk -> [2009-10-12 17:08:36 | 00,001,815 | ---- | C] ()
MagicISO.lnk -> C:\Users\Mijay\Desktop\MagicISO.lnk -> [2009-10-12 17:04:15 | 00,001,773 | ---- | C] ()
Free Create-Burn ISO Image.lnk -> C:\Users\Mijay\Desktop\Free Create-Burn ISO Image.lnk -> [2009-10-12 16:54:24 | 00,001,032 | ---- | C] ()
SUPERAntiSpyware Free Edition.lnk -> C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk -> [2009-10-12 15:46:33 | 00,000,991 | ---- | C] ()
Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2009-10-12 14:50:29 | 00,001,889 | ---- | C] ()
Absolute Poker.lnk -> C:\Users\Mijay\Desktop\Absolute Poker.lnk -> [2009-10-11 17:31:36 | 00,000,852 | ---- | C] ()
banan.exe -> C:\Users\Mijay\Desktop\banan.exe -> [2009-10-11 17:18:29 | 03,329,980 | ---- | C] ()
Network Stumbler.lnk -> C:\Users\Mijay\Desktop\Network Stumbler.lnk -> [2009-10-11 15:54:36 | 00,001,040 | ---- | C] ()
netstumblerinstaller_0_4_0.exe -> C:\Users\Mijay\Desktop\netstumblerinstaller_0_4_0.exe -> [2009-10-11 15:52:00 | 01,324,940 | ---- | C] ()
HijackThis.lnk -> C:\Users\Mijay\Desktop\HijackThis.lnk -> [2009-10-11 15:13:15 | 00,002,043 | ---- | C] ()
alg.exe -> C:\Users\Mijay\Desktop\alg.exe -> [2009-10-11 15:11:49 | 03,329,980 | ---- | C] ()
avast! Antivirus.lnk -> C:\Users\Public\Desktop\avast! Antivirus.lnk -> [2009-10-11 14:31:48 | 00,002,018 | ---- | C] ()
actskin4.ocx -> C:\Windows\System32\actskin4.ocx -> [2009-10-11 14:31:20 | 00,380,928 | ---- | C] ()
Malwarebytes' Anti-Malware.lnk -> C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk -> [2009-10-11 13:59:41 | 00,000,983 | ---- | C] ()
cc_20091011_135842.reg -> C:\Users\Mijay\Documents\cc_20091011_135842.reg -> [2009-10-11 13:58:46 | 00,012,272 | ---- | C] ()
CCleaner.lnk -> C:\Users\Mijay\Desktop\CCleaner.lnk -> [2009-10-11 13:57:07 | 00,001,835 | ---- | C] ()
3302A5F0-CC9A-44B1-A6E5-CC59FE0DBBA2.Diagnose.0.etl -> C:\Users\Mijay\Desktop\3302A5F0-CC9A-44B1-A6E5-CC59FE0DBBA2.Diagnose.0.etl -> [2009-10-10 13:31:59 | 00,196,608 | ---- | C] ()
PartyPoker.lnk -> C:\Users\Mijay\Desktop\PartyPoker.lnk -> [2009-10-08 18:31:03 | 00,001,695 | ---- | C] ()
Installation af PartyPoker.lnk -> C:\Users\Mijay\Desktop\Installation af PartyPoker.lnk -> [2009-10-08 18:27:33 | 00,000,633 | ---- | C] ()
Mobile Partner.lnk -> C:\Users\Public\Desktop\Mobile Partner.lnk -> [2009-10-08 16:21:26 | 00,001,041 | ---- | C] ()
aircrack-ng-1.0-win.zip -> C:\Users\Mijay\Desktop\aircrack-ng-1.0-win.zip -> [2009-10-05 11:28:13 | 04,315,816 | ---- | C] ()
aircrack-ng-0.9.3-win.zip -> C:\Users\Mijay\Desktop\aircrack-ng-0.9.3-win.zip -> [2009-10-05 11:28:06 | 02,109,635 | ---- | C] ()
Adobe Reader 9.lnk -> C:\Users\Public\Desktop\Adobe Reader 9.lnk -> [2009-10-03 19:40:54 | 00,001,984 | ---- | C] ()
eToro.lnk -> C:\Users\Mijay\Desktop\eToro.lnk -> [2009-10-03 16:39:13 | 00,001,769 | ---- | C] ()
IScrNB.bmp -> C:\Windows\System32\IScrNB.bmp -> [2009-10-03 15:24:45 | 00,121,232 | ---- | C] ()
igfxtvcx.dll -> C:\Windows\System32\igfxtvcx.dll -> [2009-10-03 15:24:44 | 00,140,288 | ---- | C] ()
perfh006.dat -> C:\Windows\System32\perfh006.dat -> [2009-10-03 15:15:43 | 00,461,294 | ---- | C] ()
perfi006.dat -> C:\Windows\System32\perfi006.dat -> [2009-10-03 15:15:43 | 00,306,636 | ---- | C] ()
perfc006.dat -> C:\Windows\System32\perfc006.dat -> [2009-10-03 15:15:43 | 00,076,754 | ---- | C] ()
perfd006.dat -> C:\Windows\System32\perfd006.dat -> [2009-10-03 15:15:43 | 00,039,236 | ---- | C] ()
bootsect.lxe.bak -> C:\bootsect.lxe.bak -> [2009-10-03 15:03:08 | 00,008,192 | ---- | C] ()
gdrop -> C:\gdrop -> [2009-10-03 15:03:07 | 00,383,592 | RHS- | C] ()
xeldr -> C:\xeldr -> [2009-10-03 15:03:07 | 00,171,136 | RHS- | C] ()
data.dat -> C:\Users\Mijay\AppData\Roaming\data.dat -> [2009-10-03 14:43:44 | 00,004,507 | ---- | C] ()
winsys.exe -> C:\Users\Mijay\AppData\Roaming\winsys.exe -> [2009-10-03 14:42:30 | 00,309,760 | ---- | C] ()
Hacker Evolution Untold.lnk -> C:\Users\Public\Desktop\Hacker Evolution Untold.lnk -> [2009-10-03 00:59:55 | 00,000,930 | ---- | C] ()
Msft_User_WpdFs_01_09_00.Wdf -> C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf -> [2009-10-02 18:22:56 | 00,000,000 | -H-- | C] ()
settlers_6_v1.7.1.zip -> C:\Users\Mijay\Desktop\settlers_6_v1.7.1.zip -> [2009-10-02 16:37:48 | 16,923,9426 | ---- | C] ()
atksgt.sys -> C:\Windows\System32\drivers\atksgt.sys -> [2009-10-02 16:22:15 | 00,281,760 | ---- | C] ()
lirsgt.sys -> C:\Windows\System32\drivers\lirsgt.sys -> [2009-10-02 16:22:12 | 00,025,888 | ---- | C] ()
Settlers6_EU_(NORMAL_tages_MAXI_image2_by_xKVtor).rar -> C:\Users\Mijay\Desktop\Settlers6_EU_(NORMAL_tages_MAXI_image2_by_xKVtor).rar -> [2009-10-02 16:20:01 | 14,387,390 | ---- | C] ()
DAEMON Tools Lite.lnk -> C:\Users\Public\Desktop\DAEMON Tools Lite.lnk -> [2009-10-02 14:33:03 | 00,001,900 | ---- | C] ()
sptd.sys -> C:\Windows\System32\drivers\sptd.sys -> [2009-10-02 14:31:01 | 00,721,904 | ---- | C] ()
GDIPFONTCACHEV1.DAT -> C:\Users\Mijay\AppData\Local\GDIPFONTCACHEV1.DAT -> [2009-10-02 13:00:56 | 00,057,560 | ---- | C] ()
Cheat Engine.lnk -> C:\Users\Mijay\Desktop\Cheat Engine.lnk -> [2009-10-02 12:48:03 | 00,000,957 | ---- | C] ()
d3dx9.dll -> C:\Windows\System32\d3dx9.dll -> [2009-10-02 12:48:02 | 01,970,176 | ---- | C] ()
BOOTSECT.BAK -> C:\BOOTSECT.BAK -> [2009-10-02 03:58:23 | 00,008,192 | RHS- | C] ()
bootmgr -> C:\bootmgr -> [2009-10-02 03:58:22 | 00,383,562 | RHS- | C] ()
Subtitle Workshop.lnk -> C:\Users\Mijay\Desktop\Subtitle Workshop.lnk -> [2009-10-01 22:38:33 | 00,002,122 | ---- | C] ()
Senseless - CD2 (1998).sub -> C:\Senseless - CD2 (1998).sub -> [2009-10-01 20:35:56 | 00,021,564 | ---- | C] ()
Senseless - CD2 (1998).avi -> C:\Senseless - CD2 (1998).avi -> [2009-10-01 20:34:56 | 36,887,9912 | ---- | C] ()
Senseless - CD1 (1998).avi -> C:\Senseless - CD1 (1998).avi -> [2009-10-01 20:34:31 | 36,950,5064 | ---- | C] ()
avisplit.zip -> C:\Users\Mijay\Desktop\avisplit.zip -> [2009-10-01 20:32:54 | 00,550,011 | ---- | C] ()
unrar.dll -> C:\Windows\System32\unrar.dll -> [2009-10-01 20:12:05 | 00,178,176 | ---- | C] ()
lame_acm.xml -> C:\Windows\System32\lame_acm.xml -> [2009-10-01 20:12:05 | 00,000,414 | ---- | C] ()
avisplitter.ini -> C:\Windows\avisplitter.ini -> [2009-10-01 20:12:05 | 00,000,038 | ---- | C] ()
xvidcore.dll -> C:\Windows\System32\xvidcore.dll -> [2009-10-01 20:12:04 | 00,881,664 | ---- | C] ()
xvidvfw.dll -> C:\Windows\System32\xvidvfw.dll -> [2009-10-01 20:12:04 | 00,205,824 | ---- | C] ()
ff_vfw.dll -> C:\Windows\System32\ff_vfw.dll -> [2009-10-01 20:12:03 | 00,085,504 | ---- | C] ()
ff_vfw.dll.manifest -> C:\Windows\System32\ff_vfw.dll.manifest -> [2009-10-01 20:12:03 | 00,000,547 | ---- | C] ()
sw4b4.zip -> C:\Users\Mijay\Desktop\sw4b4.zip -> [2009-10-01 20:08:55 | 01,092,977 | ---- | C] ()
52005.rar -> C:\Users\Mijay\Desktop\52005.rar -> [2009-10-01 20:07:29 | 00,021,981 | ---- | C] ()
Senseless (1998).srt -> C:\Users\Mijay\Desktop\Senseless (1998).srt -> [2009-10-01 19:42:32 | 00,064,091 | ---- | C] ()
µTorrent.lnk -> C:\Users\Public\Desktop\µTorrent.lnk -> [2009-10-01 18:54:25 | 00,000,917 | ---- | C] ()
IconCache.db -> C:\Users\Mijay\AppData\Local\IconCache.db -> [2009-10-01 18:32:45 | 03,690,590 | -H-- | C] ()
SMAC 2.0.lnk -> C:\Users\Public\Desktop\SMAC 2.0.lnk -> [2009-10-01 18:24:42 | 00,001,861 | ---- | C] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms -> C:\Users\Mijay\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms -> [2009-10-01 18:05:33 | 00,524,288 | -HS- | C] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms -> C:\Users\Mijay\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms -> [2009-10-01 18:05:33 | 00,524,288 | -HS- | C] ()
ntuser.ini -> C:\Users\Mijay\ntuser.ini -> [2009-10-01 18:05:33 | 00,000,020 | -HS- | C] ()
NTUSER.DAT -> C:\Users\Mijay\NTUSER.DAT -> [2009-10-01 18:05:32 | 01,835,008 | -HS- | C] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf -> C:\Users\Mijay\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf -> [2009-10-01 18:05:32 | 00,065,536 | -HS- | C] ()
hiberfil.sys -> C:\hiberfil.sys -> [2009-10-01 17:59:19 | 15,665,97120 | -HS- | C] ()
desktop.ini -> C:\Program Files\desktop.ini -> [2009-07-14 06:41:57 | 00,000,174 | -HS- | C] ()
win.ini -> C:\Windows\win.ini -> [2009-07-14 04:04:23 | 00,000,403 | ---- | C] ()
system.ini -> C:\Windows\system.ini -> [2009-07-14 04:04:23 | 00,000,219 | ---- | C] ()
hpotiop1.dll -> C:\Windows\System32\hpotiop1.dll -> [2009-07-14 02:55:09 | 01,332,736 | ---- | C] ()
BthpanContextHandler.dll -> C:\Windows\System32\BthpanContextHandler.dll -> [2009-07-14 01:51:43 | 00,073,728 | ---- | C] ()
BWContextHandler.dll -> C:\Windows\System32\BWContextHandler.dll -> [2009-07-14 01:42:10 | 00,064,000 | ---- | C] ()
physxcudart_20.dll -> C:\Windows\System32\physxcudart_20.dll -> [2009-06-19 20:06:22 | 00,197,912 | ---- | C] ()
AgCPanelTraditionalChinese.dll -> C:\Windows\System32\AgCPanelTraditionalChinese.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelSwedish.dll -> C:\Windows\System32\AgCPanelSwedish.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelSpanish.dll -> C:\Windows\System32\AgCPanelSpanish.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelSimplifiedChinese.dll -> C:\Windows\System32\AgCPanelSimplifiedChinese.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelPortugese.dll -> C:\Windows\System32\AgCPanelPortugese.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelKorean.dll -> C:\Windows\System32\AgCPanelKorean.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelJapanese.dll -> C:\Windows\System32\AgCPanelJapanese.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelGerman.dll -> C:\Windows\System32\AgCPanelGerman.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
AgCPanelFrench.dll -> C:\Windows\System32\AgCPanelFrench.dll -> [2009-06-19 20:06:22 | 00,058,648 | ---- | C] ()
rixdicon.dll -> C:\Windows\System32\rixdicon.dll -> [2005-05-06 19:06:00 | 00,016,480 | ---- | C] ()
< End of report >
[/code]
Avatar billede mijaysen Praktikant
14. oktober 2009 - 14:30 #17
Kan åbentbart ikke kopiere hele loggen så de sidste 2 kommentare er hele loggen..
Avatar billede mijaysen Praktikant
27. oktober 2009 - 13:27 #18
Ingen der kan hjælpe?
Avatar billede mijaysen Praktikant
20. maj 2015 - 18:10 #19
Gammel tråd uden gyldigt svar, lukker den
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
Se alle it-kurser fra Computerworld Kurser
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel Indlæg Oprettet Seneste aktivitet
pop up black friday Af Malm i Virus 10 22/11/202420:49 I går 10:46
Findes der mon et Antivirus program, som ikke, konstant, reklamerer, for at købe ? Af Ikke-ekspert i Virus 21 22/06/202419:22 23/06/202412:54
Anbefaling af antivirusprogram med firewall Af OnePlusFan i Virus 23 07/05/202421:02 13/05/202419:48
trusler Af gerhardpet i Virus 4 26/01/202410:02 27/01/202408:32
Kan ikke fjerne virus Af mik28 i Virus 16 09/01/202416:37 10/01/202419:59
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester



Alle kategorier på Eksperten
IT-JOB

Capgemini Danmark A/S

Salesforce Senior Technical Consultant

SporingsGruppen ApS

Backend-udvikler

IST ApS

Head of Cloud Services

Cognizant Technology Solutions Denmark ApS

Test Manager

MAN Energy Solutions

Full Stack Developer
Seneste spørgsmål Seneste aktivitet
I dag 18:09 Billedoverførsel Af Laurids i iOS, iPhone & iPad
I dag 13:30 Hvordan ændres UniFi Dream Machine UDM til switch mode Af Kasper4450 i Internetforbindelser
I dag 13:01 Film går i stå midt i afspilningen Af ole falsted i Musik & videoafspillere
I dag 11:40 Fjerne mappe i stifinder Af Peter Olsen i Andet software
I dag 11:27 renteberegning Af Pil i Excel
White papers
Flere white papers »


Premium
Teaser billede
Vil købe tele-løsninger til det offentlige for 370 millioner kroner
Læs mere »
Efterspørgslen på AI-regnekraft er enorm - og det smitter af på priserne: "Vi kan sælge næsten alt, hvad vi får ind"
Nyt værtøj fra Microsoft: Snart kan du reparere nedbrudte Windows-enheder på distancen
Politiet skriver kontrakt på 75 millioner kroner med dansk it-firma: Medarbejdere skal flytte ind hos politiet
Se alle »
Computerworld
Teaser billede
Microsofts nye pc er ekstrem billig – men kan blive ekstrem sikker og fleksibel
Læs mere »
Test: Prøv kun disse B&O-hovedtelefoner, hvis du har råd
Kæmpe datalæk på hospital: 750.000 patienters fortrolige data lækket
Telegigant klar med AI-baseret mormor: Holder telefon-svindlere fast i røret med sniksnak og dumme spørgsmål
Se alle »
CIO
Teaser billede
Konsulenthus vil rulle Microsoft 365 Copilot ud til 200.000 ansatte
Læs mere »
Kæmpe-opgave for Danske Bank har banet vej for fuldautomatiseret migrering til cloud: Nu udbredes metoden i hele AWS
Microsofts store årlige event: De tre vigtigste nøglebudskaber fra Satya Nadella om Microsofts fremtid
Tre vigtige erkendelser, som Computerworld tog med hjem fra Gartners store topmøde i Barcelona
Se alle »
Job & Karriere
Teaser billede
Microsoft klar med ny direktion for den danske forretning: Her er de nye direktører
Læs mere »
Efter skelsættende møde med sportscoach: Stor dansk it-arbejdsplads indfører fredags-fri og isbade i arbejdstiden
Linus Torvalds giver russiske Linux-udviklere sparket: Vil ikke have noget med dem at gøre
Topchef Sara Green mener, at der er brug for et radikalt nyt syn på it-ledelse - særligt én ny trend hader hun som pesten
Se alle »
White paper
Teaser billede
Managed Detection & Response: Forsvar din virksomhed mod cybertrusler døgnet rundt
Læs mere »
Sådan gør du: Elektronisk dokumentudveksling i praksis
Er din cybersikkerhed klar til AI-revolutionen?
Vær proaktiv og prioritér IT-sikkerheden – før det er for sent
Se alle »

Events
Flere events »
White papers
Flere white papers »
IT-Kurser
Se alle vores it-kurser »