Spywarefri Forum | Jeg kan ikke åbne joblisten og regedit

Jeg kan ikke åbne joblisten og regedit

[ Ignorer ] hlj123
08.04.2012 12:40:38 Antal indlæg: 8	Hej. Jeg kan ikke åbne joblisten og registreringsdatabasen , så jeg har en mistanke om computeren har fået en virusinfektion. Er der nogle som kan hjælpe mig med at rense den?
[ Ignorer ] [ # 1 ] Magic Spyhunter
08.04.2012 13:18:39 Administrator Supporter Emeritus Antal indlæg: 32215	Hej og velkommen Vi kan lige tjekke. Download random´s system information tool (RSIT) her http://images.malwareremoval.com/random/RSIT.exe og gem det på skrivebordet. Dobbeltklik på RSIT.exe at køre RSIT. Klik på Fortsæt. Når den er færdig, vil to log filer åbne. Venligst kopier indholdet af både log.txt (<< vil blive maksimeret) og info.txt (<< vil blive minimeret) Da de er forholdsvis lange, kan du blive nødt til at sende dem i flere indlæg. Signatur Sund Computer fornuft
[ Ignorer ] [ # 2 ] hlj123
08.04.2012 13:32:19 Antal indlæg: 8	Her er min log: info.txt logfile of random’s system information tool 1.09 2012-04-08 13:28:02 ======Uninstall list====== —>MsiExec /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF} —>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\WINDOWS\INF\PCHealth.inf 184833.zip—>E:\Programmer\themexp.org\184833\uninstall.exe Adobe AIR—>E:\Programmer\Fælles filer\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall Adobe AIR—>MsiExec.exe /I{FE23D063-934D-4829-A0D8-00634CE79B4A} Adobe Flash Player 11 ActiveX—>MsiExec.exe /X{8DB09D25-8E79-4F23-854D-02B95062A5B2} Adobe Reader X (10.1.2) - Dansk—>MsiExec.exe /I{AC76BA86-7AD7-1030-7B44-AA1000000001} Akamai NetSession Interface Service—>E:\Programmer\Fælles filer\Akamai\uninstall.exe Apple Application Support—>MsiExec.exe /I{A83279FD-CA4B-4206-9535-90974DE76654} Apple Software Update—>MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} Autodesk Design Review 2012—>C:\autodesk\Autodesk Design Review 2012\Setup\Setup.exe /P {A49BDCBE-590E-43A6-AB77-7C40E499B7C1} /M ADR /language en-US Autodesk Inventor Content Center Libraries 2012 (Desktop Content)—>MsiExec.exe /X{B46DECD1-1632-4EF1-0000-22D71E81877C} Autodesk Inventor Fusion 2012 Language Pack—>MsiExec.exe /X{FFF7F80F-929E-497F-A112-B070DE816128} Autodesk Inventor Fusion 2012—>C:\autodesk\Inventor Fusion 2012\Setup\Setup.exe /P {FFF5619F-6669-4EC5-A85E-9994F70A9E5D} /M INVENTORFUSION /LANG en-US Autodesk Inventor Fusion 2012—>MsiExec.exe /X{FFF5619F-6669-4EC5-A85E-9994F70A9E5D} Autodesk Inventor Fusion for Inventor 2012 Add-in Language Pack—>MsiExec.exe /I{4E1A54A9-FFB3-4BE6-B59B-3CC94C3B31D2} Autodesk Inventor Fusion for Inventor 2012 Add-in—>C:\autodesk\Inventor 2012\Bin\FUSION4INVADDINSSetup\Setup\Setup.exe /P {4E3B47F2-21EB-4F20-87C8-5A0E4D5F3858} /M FUSION4INVADDINS /LANG en-US Autodesk Inventor Fusion for Inventor 2012 Add-in—>MsiExec.exe /I{4E3B47F2-21EB-4F20-87C8-5A0E4D5F3858} Autodesk Inventor Professional 2012 English Language Pack—>MsiExec.exe /I{7F4DD591-1632-0409-0001-7107D70F3DB4} Autodesk Inventor Professional 2012 English—>C:\autodesk\Inventor 2012\Setup\Setup.exe /P {7F4DD591-1632-0409-0000-7107D70F3DB4} /M INVENTOR /LANG en-US Autodesk Inventor Professional 2012—>MsiExec.exe /I{7F4DD591-1632-0409-0000-7107D70F3DB4} Autodesk Material Library 2012—>MsiExec.exe /I{8F0837C2-EE09-4903-88F3-1976FE7FFF4E} Autodesk Material Library Base Resolution Image Library 2012—>MsiExec.exe /I{65420DC9-306E-4371-905F-F4DC3B418E52} Autodesk Material Library Low Resolution Image Library 2012—>MsiExec.exe /I{24FF088D-CDCF-480C-8A4B-98F14A54CAA8} Autodesk Vault 2012 (Client) English Language Pack—>MsiExec.exe /I{266597A9-1632-0000-0100-DCBF2B69166B} Autodesk Vault 2012 (Client)—>C:\autodesk\Vault 2012\Setup\setup.exe /P {CF526A26-1632-0000-0000-02E95019B628} /M VAULT /language en-US Autodesk Vault 2012 (Client)—>MsiExec.exe /X{CF526A26-1632-0000-0000-02E95019B628} AVS Update Manager 1.0—>“E:\Programmer\AVS4YOU\AVSUpdateManager\unins000.exe” AW IP Locator—>“C:\ip\AWIPLoc\unins000.exe” CCleaner—>“E:\Programmer\CCleaner\uninst.exe” CDDRV_Installer—>MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A} DOC to Image Converter 4.00—>“E:\Programmer\pdf-convert\doc2img\unins000.exe” DriverNavigator 1.5.3—>“E:\Programmer\Easeware\DriverNavigator\unins000.exe” DWG TrueView 2012—>E:\Programmer\Autodesk\DWG TrueView 2012\Setup\Setup.exe /P {5783F2D7-A028-0409-0000-0060B0CE6BBA} /M AOEM /language en-US Dwg2Img—>RunDll32 E:\PROGRA~1\FLLESF~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “E:\Programmer\InstallShield Installation Information\{BFCD5069-52AC-4B3F-902A-CDC5CD5D21DA}\Setup.exe” Eco Materials Adviser—>MsiExec.exe /X{207780D5-A515-4E79-B7C2-E4D32F8A6CA1} erLT—>MsiExec.exe /I{A498D9EB-927B-459B-85D6-DD6EF8C2C564} Free PS Convert driver 8.15—>“E:\Programmer\psconvert\unins000.exe” Google Toolbar for Internet Explorer—>“E:\Programmer\Google\Google Toolbar\Component\GoogleToolbarManager_F91D44FAA5479127.exe” /uninstall Google Toolbar for Internet Explorer—>MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} Google Update Helper—>MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Heimdal—>E:\Programmer\heimdal\uninstaller.exe High Definition Audio Driver Package - KB888111—>“E:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe” HiJackThis—>MsiExec.exe /X{45A66726-69BC-466B-A7A4-12FCBA4883D7} Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)—>E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=”“ Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)—>E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=”“ Hotfix til Windows XP (KB2570791)—>“E:\WINDOWS\$NtUninstallKB2570791$\spuninst\spuninst.exe” Hotfix til Windows XP (KB2633952)—>“E:\WINDOWS\$NtUninstallKB2633952$\spuninst\spuninst.exe” Hotfix til Windows XP (KB942288-v3)—>“E:\WINDOWS\$NtUninstallKB942288-v3$\spuninst\spuninst.exe” Hotfix til Windows XP (KB952287)—>“E:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe” Hotfix til Windows XP (KB961118)—>“E:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe” Hotfix til Windows XP (KB981793)—>“E:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe” Java(TM) 6 Update 31—>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216031FF} KhalInstallWrapper—>MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355} Kompatibilitetspakke til Office 2007-systemet—>MsiExec.exe /X{90120000-0020-0406-0000-0000000FF1CE} Logitech SetPoint—>“E:\Programmer\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe” -runfromtemp -l1030 -removeonly Microsoft .NET Framework 2.0 Service Pack 2—>MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2—>MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 SP1—>E:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1—>MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft .NET Framework 4 Client Profile—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client Microsoft .NET Framework 4 Client Profile—>MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6} Microsoft .NET Framework 4 Extended—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended Microsoft .NET Framework 4 Extended—>MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702} Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)—>MsiExec.exe /X{41785C66-90F2-40CE-8CB5-1C94BFC97280} Microsoft Kernel-Mode Driver Framework Feature Pack 1.5—>“E:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe” Microsoft Office Standard Edition 2003—>MsiExec.exe /I{91120406-6000-11D3-8CFE-0150048383C9} Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2} Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17—>MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148—>MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319—>MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E} Microsoft WSE 3.0 Runtime—>MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13} MSXML 4.0 SP2 (KB954430)—>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)—>MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} MSXML 6.0 Parser (KB933579)—>MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E} NVIDIA Grafikdriver 280.26—>“E:\WINDOWS\system32\RunDll32.EXE” “E:\Programmer\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL”,UninstallPackage Display.Driver NVIDIA PhysX—>MsiExec.exe /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF} Opdatering til Windows Internet Explorer 8 (KB976662)—>“E:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe” Opdatering til Windows XP (KB2345886)—>“E:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe” Opdatering til Windows XP (KB2541763)—>“E:\WINDOWS\$NtUninstallKB2541763$\spuninst\spuninst.exe” Opdatering til Windows XP (KB2616676-v2)—>“E:\WINDOWS\$NtUninstallKB2616676-v2$\spuninst\spuninst.exe” Opdatering til Windows XP (KB2641690)—>“E:\WINDOWS\$NtUninstallKB2641690$\spuninst\spuninst.exe” Opdatering til Windows XP (KB951978)—>“E:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe” Opdatering til Windows XP (KB955759)—>“E:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe” Opdatering til Windows XP (KB967715)—>“E:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe” Opdatering til Windows XP (KB968389)—>“E:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe” Opdatering til Windows XP (KB971029)—>“E:\WINDOWS\$NtUninstallKB971029$\spuninst\spuninst.exe” Opdatering til Windows XP (KB971737)—>“E:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe” Opdatering til Windows XP (KB973687)—>“E:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe” Opdatering til Windows XP (KB973815)—>“E:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe” PDFConverter Printer Driver version 2.00—>“E:\WINDOWS\system32\pdfconverter\unins000.exe” QuestBasic 1.0 build 115—>E:\Programmer\QuestBasic\uninstall.exe _?=E:\Programmer\QuestBasic Quick Uninstall Tool for Autodesk Inventor 2012—>MsiExec.exe /X{D25FF5C1-1632-469A-9794-69309387C193} QuickTime—>MsiExec.exe /I{7BE15435-2D3E-4B58-867F-9C75BED0208C} Realtek High Definition Audio Driver—>RunDll32 E:\PROGRA~1\FLLESF~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup “E:\Programmer\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe” -l0x6 -removeonly Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)—>E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {F6F5AC31-9833-3E77-AC8E-8E910CAB39AE} /qb+ REBOOTPROMPT=”“ Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client Security Update for Microsoft .NET Framework 4 Extended (KB2416472)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {7A2C18A1-D2A2-3177-82F1-5FE9CC08ECB0} /parameterfolder Extended Security Update for Microsoft .NET Framework 4 Extended (KB2487367)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {42A3562E-8B4E-39A4-B82D-CC12F82889E3} /parameterfolder Extended Security Update for Microsoft .NET Framework 4 Extended (KB2656351)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Extended Security Update for Windows Internet Explorer 8 (KB2183461)—>“E:\WINDOWS\ie8updates\KB2183461-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Microsoft Windows (KB2564958)—>“E:\WINDOWS\$NtUninstallKB2564958$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB2510531)—>“E:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB2544521)—>“E:\WINDOWS\ie8updates\KB2544521-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB2559049)—>“E:\WINDOWS\ie8updates\KB2559049-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB2586448)—>“E:\WINDOWS\ie8updates\KB2586448-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB2618444)—>“E:\WINDOWS\ie8updates\KB2618444-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB2647516)—>“E:\WINDOWS\ie8updates\KB2647516-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB971961)—>“E:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB981332)—>“E:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Internet Explorer 8 (KB982381)—>“E:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB2378111)—>“E:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB952069)—>“E:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB954155)—>“E:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB973540)—>“E:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB973540)—>“E:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB975558)—>“E:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB978695)—>“E:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows Media Player (KB979402)—>“E:\WINDOWS\$NtUninstallKB979402_WM9L$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2079403)—>“E:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2115168)—>“E:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2229593)—>“E:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2296011)—>“E:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2347290)—>“E:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2360937)—>“E:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2387149)—>“E:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2393802)—>“E:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2412687)—>“E:\WINDOWS\$NtUninstallKB2412687$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2419632)—>“E:\WINDOWS\$NtUninstallKB2419632$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2423089)—>“E:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2440591)—>“E:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2443105)—>“E:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2476490)—>“E:\WINDOWS\$NtUninstallKB2476490$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2478960)—>“E:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2478971)—>“E:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2479943)—>“E:\WINDOWS\$NtUninstallKB2479943$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2481109)—>“E:\WINDOWS\$NtUninstallKB2481109$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2483185)—>“E:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2485663)—>“E:\WINDOWS\$NtUninstallKB2485663$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2503665)—>“E:\WINDOWS\$NtUninstallKB2503665$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2506212)—>“E:\WINDOWS\$NtUninstallKB2506212$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2507618)—>“E:\WINDOWS\$NtUninstallKB2507618$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2507938)—>“E:\WINDOWS\$NtUninstallKB2507938$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2508272)—>“E:\WINDOWS\$NtUninstallKB2508272$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2508429)—>“E:\WINDOWS\$NtUninstallKB2508429$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2509553)—>“E:\WINDOWS\$NtUninstallKB2509553$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2535512)—>“E:\WINDOWS\$NtUninstallKB2535512$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2536276-v2)—>“E:\WINDOWS\$NtUninstallKB2536276-v2$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2544893)—>“E:\WINDOWS\$NtUninstallKB2544893$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2544893-v2)—>“E:\WINDOWS\$NtUninstallKB2544893-v2$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2555917)—>“E:\WINDOWS\$NtUninstallKB2555917$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2562937)—>“E:\WINDOWS\$NtUninstallKB2562937$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2566454)—>“E:\WINDOWS\$NtUninstallKB2566454$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2567053)—>“E:\WINDOWS\$NtUninstallKB2567053$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2567680)—>“E:\WINDOWS\$NtUninstallKB2567680$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2570222)—>“E:\WINDOWS\$NtUninstallKB2570222$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2570947)—>“E:\WINDOWS\$NtUninstallKB2570947$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2584146)—>“E:\WINDOWS\$NtUninstallKB2584146$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2585542)—>“E:\WINDOWS\$NtUninstallKB2585542$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2592799)—>“E:\WINDOWS\$NtUninstallKB2592799$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2598479)—>“E:\WINDOWS\$NtUninstallKB2598479$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2603381)—>“E:\WINDOWS\$NtUninstallKB2603381$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2618451)—>“E:\WINDOWS\$NtUninstallKB2618451$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2619339)—>“E:\WINDOWS\$NtUninstallKB2619339$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2620712)—>“E:\WINDOWS\$NtUninstallKB2620712$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2621440)—>“E:\WINDOWS\$NtUninstallKB2621440$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2624667)—>“E:\WINDOWS\$NtUninstallKB2624667$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2631813)—>“E:\WINDOWS\$NtUninstallKB2631813$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2633171)—>“E:\WINDOWS\$NtUninstallKB2633171$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2639417)—>“E:\WINDOWS\$NtUninstallKB2639417$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2641653)—>“E:\WINDOWS\$NtUninstallKB2641653$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2646524)—>“E:\WINDOWS\$NtUninstallKB2646524$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2647518)—>“E:\WINDOWS\$NtUninstallKB2647518$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2660465)—>“E:\WINDOWS\$NtUninstallKB2660465$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB2661637)—>“E:\WINDOWS\$NtUninstallKB2661637$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB923561)—>“E:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB923789)—>E:\WINDOWS\system32\MacroMed\Flash\genuinst.exe E:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Sikkerhedsopdatering til Windows XP (KB946648)—>“E:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB950762)—>“E:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB950974)—>“E:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB951376-v2)—>“E:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB951748)—>“E:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB952004)—>“E:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB952954)—>“E:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB955069)—>“E:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB956572)—>“E:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB956744)—>“E:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB956802)—>“E:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB956803)—>“E:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB956844)—>“E:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB958644)—>“E:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB958869)—>“E:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB959426)—>“E:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB960225)—>“E:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB960803)—>“E:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB960859)—>“E:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB961501)—>“E:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB969059)—>“E:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB970238)—>“E:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB970430)—>“E:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB971468)—>“E:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB971657)—>“E:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB972270)—>“E:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB973507)—>“E:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB973869)—>“E:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB973904)—>“E:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB974112)—>“E:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB974318)—>“E:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB974392)—>“E:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB974571)—>“E:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB975025)—>“E:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB975467)—>“E:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB975560)—>“E:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB975561)—>“E:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB975562)—>“E:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB975713)—>“E:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB977816)—>“E:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB977914)—>“E:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB978037)—>“E:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB978338)—>“E:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB978542)—>“E:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB978601)—>“E:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB978706)—>“E:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB979309)—>“E:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB979482)—>“E:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB979559)—>“E:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB979683)—>“E:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB979687)—>“E:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB980195)—>“E:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB980218)—>“E:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB980232)—>“E:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB980436)—>“E:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB981322)—>“E:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB981997)—>“E:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB982132)—>“E:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe” Sikkerhedsopdatering til Windows XP (KB982665)—>“E:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe” SpyHunter—>MsiExec.exe /X{41EBC322-660F-4D16-A0DF-53147210CBDB} System Requirements Lab—>E:\Programmer\SystemRequirementsLab\Uninstall.exe tochpc.inc 1.00—>E:\Programmer\toch\tochpc.inc\Uninstall.exe TweakNow RegCleaner—>“E:\Programmer\TweakNow RegCleaner\unins000.exe” Update for Microsoft .NET Framework 3.5 SP1 (KB963707)—>E:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=”“ Update for Microsoft .NET Framework 4 Client Profile (KB2473228)—>E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD988F49-E1C8-3C84-9683-0448B6BB8E20} /parameterfolder Client VLC media player 1.1.9—>E:\Programmer\VideoLAN\VLC\uninstall.exe Windows iLivid Toolbar—>E:\Programmer\Windows iLivid Toolbar\uninstall.exe Windows Imaging Component—>“E:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe” Windows XP Service Pack 3—>“E:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe” WinRAR arkivering—>C:\winrar\uninstall.exe ======Hosts File====== 127.0.0.1 local ======Security center information====== AV: avast! Antivirus ======System event log====== Computer Name: DK-23537FAC6172 Event Code: 7036 Message: Tjenesten SSDP-genkendelsestjeneste skiftede tilstand til kører. Record Number: 11327 Source Name: Service Control Manager Time Written: 20120321172624.000000+060 Event Type: oplysninger User: Computer Name: DK-23537FAC6172 Event Code: 7035 Message: Tjenesten SSDP-genkendelsestjeneste modtog en start-kontrol. Record Number: 11326 Source Name: Service Control Manager Time Written: 20120321172624.000000+060 Event Type: oplysninger User: NT AUTHORITY\SYSTEM Computer Name: DK-23537FAC6172 Event Code: 7036 Message: Tjenesten COM-tjenesten IMAPI cd-skrivning skiftede tilstand til kører. Record Number: 11325 Source Name: Service Control Manager Time Written: 20120321172623.000000+060 Event Type: oplysninger User: Computer Name: DK-23537FAC6172 Event Code: 7036 Message: Tjenesten NLA (Network Location Awareness) skiftede tilstand til kører. Record Number: 11324 Source Name: Service Control Manager Time Written: 20120321172623.000000+060 Event Type: oplysninger User: Computer Name: DK-23537FAC6172 Event Code: 7035 Message: Tjenesten NLA (Network Location Awareness) modtog en start-kontrol. Record Number: 11323 Source Name: Service Control Manager Time Written: 20120321172623.000000+060 Event Type: oplysninger User: NT AUTHORITY\SYSTEM =====Application event log===== Computer Name: DK-23537FAC6172 Event Code: 0 Message: Record Number: 1926 Source Name: gupdatem Time Written: 20111210103702.000000+060 Event Type: oplysninger User: Computer Name: DK-23537FAC6172 Event Code: 0 Message: Record Number: 1925 Source Name: gupdatem Time Written: 20111210103702.000000+060 Event Type: oplysninger User: Computer Name: DK-23537FAC6172 Event Code: 0 Message: Record Number: 1924 Source Name: gusvc Time Written: 20111210103702.000000+060 Event Type: oplysninger User: Computer Name: DK-23537FAC6172 Event Code: 1800 Message: Tjenesten Windows Sikkerhedscenter er startet. Record Number: 1923 Source Name: SecurityCenter Time Written: 20111210103103.000000+060 Event Type: oplysninger User: Computer Name: DK-23537FAC6172 Event Code: 0 Message: Record Number: 1922 Source Name: gupdate Time Written: 20111210103059.000000+060 Event Type: oplysninger User: ======Environment variables====== “ComSpec”=%SystemRoot%\system32\cmd.exe “Path”=E:\Programmer\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;E:\Programmer\QuickTime\QTSystem\ “windir”=%SystemRoot% “FP_NO_HOST_CHECK”=NO “OS”=Windows_NT “PROCESSOR_ARCHITECTURE”=x86 “PROCESSOR_LEVEL”=15 “PROCESSOR_IDENTIFIER”=x86 Family 15 Model 6 Stepping 4, GenuineIntel “PROCESSOR_REVISION”=0604 “NUMBER_OF_PROCESSORS”=2 “PATHEXT”=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH “TEMP”=%SystemRoot%\TEMP “TMP”=%SystemRoot%\TEMP “CM2012DIR”=E:\Programmer\Fælles filer\Autodesk Shared\Materials\ “ILBDIR”=E:\Programmer\Fælles filer\Autodesk Shared\Materials\ “ILLDIR”=E:\Programmer\Fælles filer\Autodesk Shared\Materials\ “OMP_NUM_THREADS”=2 “CLASSPATH”=.;E:\Programmer\Java\jre6\lib\ext\QTJava.zip “QTJAVA”=E:\Programmer\Java\jre6\lib\ext\QTJava.zip ————————-EOF————————-
[ Ignorer ] [ # 3 ] hlj123
08.04.2012 13:36:01 Antal indlæg: 8	ogfile of random’s system information tool 1.09 (written by random/random) Run by Henrik Jensen at 2012-04-08 13:27:58 Microsoft Windows XP Home Edition Service Pack 3 System drive E: has 180 GB (93%) free of 194 GB Total RAM: 2046 MB (79% free) HijackThis download failed ======Scheduled tasks folder====== E:\WINDOWS\tasks\Adobe Flash Player Updater.job E:\WINDOWS\tasks\AppleSoftwareUpdate.job E:\WINDOWS\tasks\DriverNavigator Scheduled Scan.job E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job E:\WINDOWS\tasks\User_Feed_Synchronization-{BEA0F2E9-A640-416D-897D-DDED9BA695E4}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - E:\Programmer\Fælles filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - E:\Programmer\Java\jre6\bin\ssv.dll [2012-02-22 325408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! WebRep - C:\avast\aswWebRepIE.dll [2011-11-28 809040] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}] Searchqu Toolbar - E:\PROGRA~1\WINDOW~4\Datamngr\ToolBar\searchqudtx.dll [2011-10-31 88976] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - E:\Programmer\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-18 192112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - E:\Programmer\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll [2012-03-02 1003576] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - E:\Programmer\Java\jre6\bin\jp2ssv.dll [2012-02-22 42272] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - E:\Programmer\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-02-22 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\avast\aswWebRepIE.dll [2011-11-28 809040] {99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - E:\PROGRA~1\WINDOW~4\Datamngr\ToolBar\searchqudtx.dll [2011-10-31 88976] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - E:\Programmer\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-18 192112] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] “NvMediaCenter”=E:\WINDOWS\system32\NvMcTray.dll [2011-08-03 111208] “NvCplDaemon”=E:\WINDOWS\system32\NvCpl.dll [2011-08-03 13892200] “avast”=C:\avast\avastUI.exe [2011-11-28 3744552] “High Definition Audio Property Page Shortcut”=E:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952] “KernelFaultCheck”=E:\WINDOWS\system32\dumprep 0 -k [] “Kernel and Hardware Abstraction Layer”=E:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824] “SunJavaUpdateSched”=E:\Programmer\Fælles filer\Java\Java Update\jusched.exe [2012-01-18 254696] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] “Akamai NetSession Interface”=E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Akamai\netsession_win.exe [2012-03-13 3331872] “swg”=E:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2011-09-26 39408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] E:\Programmer\Fælles filer\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] E:\Programmer\Fælles filer\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] E:\Programmer\Messenger\msmsgs.exe [2008-04-14 1695232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] E:\Programmer\QuickTime\qttask.exe [2012-03-04 421888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyHunter Security Suite] E:\Programmer\Enigma Software Group\SpyHunter\SpyHunter4.exe [2011-04-10 4098904] E:\Documents and Settings\All Users\Menuen Start\Programmer\Start Logitech SetPoint.lnk - E:\Programmer\Logitech\SetPoint\SetPoint.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] “AppInit_DLLs”=” “ [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] e:\programmer\fælles filer\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RelevantKnowledge] [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] “dontdisplaylastusername”=0 “legalnoticecaption”= “legalnoticetext”= “shutdownwithoutlogon”=1 “undockwithoutlogon”=1 “EnableLUA”=0 “ConsentPromptBehaviorAdmin”=0 “ConsentPromptBehaviorUser”=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] “NoDriveTypeAutoRun”=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] “HonorAutoRunSetting”=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] “%windir%\system32\sessmgr.exe”=”%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019” “%windir%\Network Diagnostic\xpnetdiag.exe”=”%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000” “C:\bit\BitTorrent-7.2.1.exe”=“C:\bit\BitTorrent-7.2.1.exe::Enabled:BitTorrent” “C:\autodesk\Inventor 2012\Moldflow\bin\mitsi.exe”=“C:\autodesk\Inventor 2012\Moldflow\bin\mitsi.exe::Enabled:Autodesk Moldflow MITSI” “E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Akamai\netsession_win.exe”=“E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Akamai\netsession_win.exe::Enabled:Akamai NetSession Interface” “E:\Programmer\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe”=“E:\Programmer\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe::Enabled:DTX broker” “E:\Programmer\Fælles filer\Apple\Apple Application Support\WebKit2WebProcess.exe”=“E:\Programmer\Fælles filer\Apple\Apple Application Support\WebKit2WebProcess.exe::Enabled:WebKit” “E:\WINDOWS\system32\usmt\migwiz.exe”=“E:\WINDOWS\system32\usmt\migwiz.exe::Enabled:Guiden Overførsel af filer og indstillinger” “e:\programmer\relevantknowledge\rlvknlg.exe”=“e:\programmer\relevantknowledge\rlvknlg.exe::Enabled:rlvknlg.exe” “E:\WINDOWS\system32\mmc.exe”=“E:\WINDOWS\system32\mmc.exe::Enabled:Microsoft Management Console” [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] “%windir%\system32\sessmgr.exe”=”%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019” “%windir%\Network Diagnostic\xpnetdiag.exe”=”%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000” [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\a.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aAvgApi.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AAWTray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\About.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ackwin32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Ad-Aware.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\adaware.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\advxdwin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AdwarePrj.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\agent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\agentsvr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\agentw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\alertsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\alevir.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\alogserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AlphaAV] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AlphaAV.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AluSchedulerSvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\amon9x.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\anti-trojan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Anti-Virus Professional.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntispywarXP2009.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\antivirus.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusPlus] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusPlus.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusPro_2010.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusXP] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusXP.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\antivirusxppro2009.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntiVirus_Pro.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ants.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\apimonitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aplica32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\apvxdwin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\arr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashAvast.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashBug.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashChest.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashCnsnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashDisp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashLogV.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashMaiSv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashPopWz.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashQuick.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashServ.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSimp2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSimpl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSkPcc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSkPck.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashUpd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashWebSv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswChLic.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswRegSvr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswRunDll.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswUpdSv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atcon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atguard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atro55en.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atupdater.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atwatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\au.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aupdate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\auto-protect.nav80try.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\autodown.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\autotrace.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\autoupdate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\av360.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avadmin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avastSvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avastUI.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AVCare.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avcenter.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avciman.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avconfig.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avconsol.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ave32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AVENGINE.EXE] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgcc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgchk.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgcmgr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgcsrvx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgctrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgdumpx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgemc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgiproxy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgnsx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgrsx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgscanx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgserv9.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgsrmax.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgtray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avguard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgupd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgwdsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkpop.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkservice.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkwctl9.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avltmain.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avmailc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avmcdlg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avnotify.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avp32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpcc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpdos32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avptc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpupd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avsched32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avshadow.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avsynmgr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avupgsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AVWEBGRD.EXE] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwin95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwinnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwsc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwupd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwupd32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwupsrv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avxmonitor9x.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avxmonitornt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avxquar.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\b.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\backweb.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bargains.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bdfvcl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bdfvwiz.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\BDInProcPatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bdmcon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\BDMsnScan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\BDSurvey.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bd_professional.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\beagle.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\belt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bidef.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bidserver.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bipcp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bipcpevalsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bisp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blackd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blackice.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blink.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blss.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bootconf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bootwarn.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\borg2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bpc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\brasil.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\brastk.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\brw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bs120.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bspatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bundle.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bvt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\c.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cavscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccapp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccevtmgr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccpxysvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccSvcHst.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cdp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfgwiz.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfiadmin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfiaudit.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfinet.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfinet32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfpconfg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfplogvw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfpupdat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\claw95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\claw95cf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\clean.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleaner.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleaner3.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleanIELow.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleanpc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\click.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmd32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmdagent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmesys.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmgrdian.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmon016.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\connectionmonitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\control] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cpd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cpf9x206.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cpfnt206.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\crashrep.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\csc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cssconfg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cssupdat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cssurf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ctrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cwnb181.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cwntdwmo.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\d.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\datemanager.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dcomx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\defalert.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\defscangui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\defwatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\deloeminfs.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\deputy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\divx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dllcache.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dllreg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\doors.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dop.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dpf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dpfsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dpps2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\driverctrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\drwatson.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\drweb32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\drwebupw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dssagent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dvp95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dvp95_0.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ecengine.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\efpeadm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\emsw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\esafe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\escanhnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\escanv95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\espwatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ethereal.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\etrustcipe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\evpn.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\exantivirus-cnet.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\exe.avxw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\expert.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\explore.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-agnt95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-prot.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-prot95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-stopw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fact.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fameh32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fast.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fch32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fih32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\findviru.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\firewall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fixcfg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fixfp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fnrb32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fp-win.exe] “Debugger=“svchost.exe
[ Ignorer ] [ # 4 ] hlj123
08.04.2012 13:59:13 Antal indlæg: 8	Det er ikke hele min regedit file , så du får lige en ny kopi af den.
[ Ignorer ] [ # 5 ] hlj123
08.04.2012 14:05:00 Antal indlæg: 8	Logfile of random’s system information tool 1.09 (written by random/random) Run by Henrik Jensen at 2012-04-08 13:27:58 Microsoft Windows XP Home Edition Service Pack 3 System drive E: has 180 GB (93%) free of 194 GB Total RAM: 2046 MB (79% free) HijackThis download failed ======Scheduled tasks folder====== E:\WINDOWS\tasks\Adobe Flash Player Updater.job E:\WINDOWS\tasks\AppleSoftwareUpdate.job E:\WINDOWS\tasks\DriverNavigator Scheduled Scan.job E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job E:\WINDOWS\tasks\User_Feed_Synchronization-{BEA0F2E9-A640-416D-897D-DDED9BA695E4}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - E:\Programmer\Fælles filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - E:\Programmer\Java\jre6\bin\ssv.dll [2012-02-22 325408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! WebRep - C:\avast\aswWebRepIE.dll [2011-11-28 809040] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}] Searchqu Toolbar - E:\PROGRA~1\WINDOW~4\Datamngr\ToolBar\searchqudtx.dll [2011-10-31 88976] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - E:\Programmer\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-18 192112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - E:\Programmer\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll [2012-03-02 1003576] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - E:\Programmer\Java\jre6\bin\jp2ssv.dll [2012-02-22 42272] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - E:\Programmer\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-02-22 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\avast\aswWebRepIE.dll [2011-11-28 809040] {99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - E:\PROGRA~1\WINDOW~4\Datamngr\ToolBar\searchqudtx.dll [2011-10-31 88976] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - E:\Programmer\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-18 192112] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] “NvMediaCenter”=E:\WINDOWS\system32\NvMcTray.dll [2011-08-03 111208] “NvCplDaemon”=E:\WINDOWS\system32\NvCpl.dll [2011-08-03 13892200] “avast”=C:\avast\avastUI.exe [2011-11-28 3744552] “High Definition Audio Property Page Shortcut”=E:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952] “KernelFaultCheck”=E:\WINDOWS\system32\dumprep 0 -k [] “Kernel and Hardware Abstraction Layer”=E:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824] “SunJavaUpdateSched”=E:\Programmer\Fælles filer\Java\Java Update\jusched.exe [2012-01-18 254696] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] “Akamai NetSession Interface”=E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Akamai\netsession_win.exe [2012-03-13 3331872] “swg”=E:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2011-09-26 39408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] E:\Programmer\Fælles filer\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] E:\Programmer\Fælles filer\Apple\Apple Application Support\APSDaemon.exe [2011-09-27 59240] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] E:\Programmer\Messenger\msmsgs.exe [2008-04-14 1695232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] E:\Programmer\QuickTime\qttask.exe [2012-03-04 421888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyHunter Security Suite] E:\Programmer\Enigma Software Group\SpyHunter\SpyHunter4.exe [2011-04-10 4098904] E:\Documents and Settings\All Users\Menuen Start\Programmer\Start Logitech SetPoint.lnk - E:\Programmer\Logitech\SetPoint\SetPoint.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] “AppInit_DLLs”=” “ [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] e:\programmer\fælles filer\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RelevantKnowledge] [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] “dontdisplaylastusername”=0 “legalnoticecaption”= “legalnoticetext”= “shutdownwithoutlogon”=1 “undockwithoutlogon”=1 “EnableLUA”=0 “ConsentPromptBehaviorAdmin”=0 “ConsentPromptBehaviorUser”=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] “NoDriveTypeAutoRun”=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] “HonorAutoRunSetting”=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] “%windir%\system32\sessmgr.exe”=”%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019” “%windir%\Network Diagnostic\xpnetdiag.exe”=”%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000” “C:\bit\BitTorrent-7.2.1.exe”=“C:\bit\BitTorrent-7.2.1.exe::Enabled:BitTorrent” “C:\autodesk\Inventor 2012\Moldflow\bin\mitsi.exe”=“C:\autodesk\Inventor 2012\Moldflow\bin\mitsi.exe::Enabled:Autodesk Moldflow MITSI” “E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Akamai\netsession_win.exe”=“E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Akamai\netsession_win.exe::Enabled:Akamai NetSession Interface” “E:\Programmer\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe”=“E:\Programmer\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe::Enabled:DTX broker” “E:\Programmer\Fælles filer\Apple\Apple Application Support\WebKit2WebProcess.exe”=“E:\Programmer\Fælles filer\Apple\Apple Application Support\WebKit2WebProcess.exe::Enabled:WebKit” “E:\WINDOWS\system32\usmt\migwiz.exe”=“E:\WINDOWS\system32\usmt\migwiz.exe::Enabled:Guiden Overførsel af filer og indstillinger” “e:\programmer\relevantknowledge\rlvknlg.exe”=“e:\programmer\relevantknowledge\rlvknlg.exe::Enabled:rlvknlg.exe” “E:\WINDOWS\system32\mmc.exe”=“E:\WINDOWS\system32\mmc.exe::Enabled:Microsoft Management Console” [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] “%windir%\system32\sessmgr.exe”=”%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019” “%windir%\Network Diagnostic\xpnetdiag.exe”=”%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000” [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\a.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aAvgApi.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AAWTray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\About.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ackwin32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Ad-Aware.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\adaware.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\advxdwin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AdwarePrj.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\agent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\agentsvr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\agentw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\alertsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\alevir.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\alogserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AlphaAV] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AlphaAV.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AluSchedulerSvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\amon9x.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\anti-trojan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Anti-Virus Professional.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntispywarXP2009.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\antivirus.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusPlus] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusPlus.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusPro_2010.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusXP] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntivirusXP.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\antivirusxppro2009.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AntiVirus_Pro.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ants.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\apimonitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aplica32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\apvxdwin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\arr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashAvast.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashBug.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashChest.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashCnsnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashDisp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashLogV.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashMaiSv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashPopWz.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashQuick.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashServ.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSimp2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSimpl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSkPcc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashSkPck.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashUpd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ashWebSv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswChLic.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswRegSvr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswRunDll.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aswUpdSv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atcon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atguard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atro55en.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atupdater.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\atwatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\au.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\aupdate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\auto-protect.nav80try.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\autodown.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\autotrace.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\autoupdate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\av360.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avadmin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avastSvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avastUI.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AVCare.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avcenter.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avciman.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avconfig.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avconsol.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ave32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AVENGINE.EXE] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgcc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgchk.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgcmgr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgcsrvx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgctrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgdumpx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgemc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgiproxy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgnsx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgrsx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgscanx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgserv9.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgsrmax.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgtray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avguard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgupd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avgwdsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkpop.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkservice.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avkwctl9.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avltmain.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avmailc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avmcdlg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avnotify.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avp32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpcc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpdos32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avptc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avpupd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avsched32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avshadow.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avsynmgr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avupgsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\AVWEBGRD.EXE] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwin95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwinnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwsc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwupd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwupd32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avwupsrv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avxmonitor9x.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avxmonitornt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\avxquar.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\b.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\backweb.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bargains.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bdfvcl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bdfvwiz.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\BDInProcPatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bdmcon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\BDMsnScan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\BDSurvey.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bd_professional.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\beagle.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\belt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bidef.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bidserver.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bipcp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bipcpevalsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bisp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blackd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blackice.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blink.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\blss.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bootconf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bootwarn.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\borg2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bpc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\brasil.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\brastk.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\brw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bs120.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bspatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bundle.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\bvt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\c.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cavscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccapp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccevtmgr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccpxysvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ccSvcHst.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cdp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfgwiz.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfiadmin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfiaudit.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfinet.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfinet32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfpconfg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfplogvw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cfpupdat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\claw95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\claw95cf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\clean.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleaner.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleaner3.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleanIELow.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cleanpc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\click.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmd32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmdagent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmesys.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmgrdian.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cmon016.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\connectionmonitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\control] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cpd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cpf9x206.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cpfnt206.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\crashrep.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\csc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cssconfg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cssupdat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cssurf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ctrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cwnb181.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\cwntdwmo.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\d.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\datemanager.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dcomx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\defalert.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\defscangui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\defwatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\deloeminfs.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\deputy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\divx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dllcache.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dllreg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\doors.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dop.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dpf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dpfsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dpps2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\driverctrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\drwatson.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\drweb32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\drwebupw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dssagent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dvp95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\dvp95_0.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ecengine.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\efpeadm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\emsw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\esafe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\escanhnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\escanv95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\espwatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ethereal.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\etrustcipe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\evpn.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\exantivirus-cnet.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\exe.avxw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\expert.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\explore.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-agnt95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-prot.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-prot95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\f-stopw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fact.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fameh32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fast.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fch32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fih32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\findviru.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\firewall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fixcfg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fixfp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fnrb32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fp-win.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fp-win_trial.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fprot.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\frmwrk32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\frw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsaa.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsav.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsav32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsav530stbyb.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsav530wtbyb.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsav95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsgk32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsm32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsma32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\fsmb32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\gator.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\gav.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\gbmenu.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\gbn976rl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\gbpoll.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\generics.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\gmt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\guard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\guarddog.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\guardgui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hacktracersetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hbinst.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hbsrv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\History.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\homeav2010.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hotactio.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hotpatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\htlog.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\htpatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hwpe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hxdl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\hxiul.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\iamapp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\iamserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\iamstats.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ibmasn.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ibmavsp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\icload95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\icloadnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\icmon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\icsupp95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\icsuppnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Identity.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\idle.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\iedll.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\iedriver.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\IEShow.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\iface.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ifw2000.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\inetlnfo.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\infus.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\infwin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\init.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\init32.exe ] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\install[1].exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\install[2].exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\install[3].exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\install[4].exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\install[5].exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\intdel.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\intren.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\iomon98.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\istsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\jammer.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\jdbgmrg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\jedi.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\JsRcGen.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\kavlite40eng.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\kavpers40eng.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\kavpf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\kazza.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\keenvalue.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\kerio-pf-213-en-win.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\kerio-wrl-421-en-win.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\kerio-wrp-421-en-win.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\killprocesssetup161.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ldnetmon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ldpro.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ldpromenu.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ldscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\licmgr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\lnetinfo.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\loader.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\localnet.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\lockdown.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\lockdown2000.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\lookout.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\lordpe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\lsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\luall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\luau.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\lucomserver.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\luinit.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\luspt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\MalwareRemoval.exe] “Debugger=“svchost.exe
[ Ignorer ] [ # 6 ] hlj123
08.04.2012 14:06:09 Antal indlæg: 8	[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mapisvc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcagent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcmnhdlr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcmpeng.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcmscsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcnasvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcproxy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\McSACore.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcshell.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcshield.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcsysmon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mctool.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcupdate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcvsrte.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mcvsshld.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\md.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mfin32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mfw2en.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mfweng3.02d30.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mgavrtcl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mgavrte.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mghtml.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mgui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\minilog.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mmod.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\monitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\moolive.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mostat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mpfagent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mpfservice.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\MPFSrv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mpftray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mrflux.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mrt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msa.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msapp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\MSASCui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msbb.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msblast.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mscache.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msccn32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mscman.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msconfig] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msdm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msdos.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msiexec16.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mslaugh.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msmgt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msmsgri32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msseces.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mssmmc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mssys.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\msvxd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mu0311ad.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\mwatch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\n32scanw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nav.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navap.navapsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navapsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navapw32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navdx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navlu32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navstub.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navw32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\navwnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nc2000.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ncinst4.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ndd32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\neomonitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\neowatchlog.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\netarmor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\netd32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\netinfo.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\netmon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\netscanpro.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\netspyhunter-1.2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\netutils.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nisserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nisum.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nmain.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nod32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\normist.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\norton_internet_secu_3.0_407.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\notstart.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\npf40_tw_98_nt_me_2k.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\npfmessenger.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nprotect.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\npscheck.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\npssvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nsched32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nssys32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nstask32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nsupdate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ntrtscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ntvdm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ntxconfig.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nupgrade.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nvarch16.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nvc95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nvsvc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nwinst4.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nwservice.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\nwtool16.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\OAcat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\OAhlp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\OAReg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\oasrv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\oaui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\oaview.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ODSW.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ollydbg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\onsrvr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\optimize.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ostronet.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\otfix.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\outpost.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\outpostinstall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\outpostproinstall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ozn695m5.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\padmin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\panixk.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\patch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pav.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pavcl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PavFnSvr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pavproxy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pavprsrv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pavsched.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pavsrv51.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pavw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pccwin98.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pcfwallicon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pcip10117_0.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pcscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pctsAuxs.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pctsGui.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pctsSvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pctsTray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PC_Antispyware2010.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pdfndr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pdsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PerAvir.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\periscope.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\persfw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\personalguard] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\personalguard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\perswf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pf2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pfwadmin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pgmonitr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pingscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\platin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pop3trap.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\poproxy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\popscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\portdetective.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\portmonitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\powerscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ppinupdt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pptbc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ppvstop.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\prizesurfer.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\prmt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\prmvr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\procdump.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\processmonitor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\procexplorerv1.0.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\programauditor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\proport.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\protector.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\protectx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PSANCU.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PSANHost.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PSANToManager.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PsCtrls.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PsImSvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PskSvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\pspf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\PSUNMain.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\purge.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\qconsole.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\qh.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\qserver.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Quick Heal.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\QuickHealCleaner.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rapapp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rav7.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rav7win.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rav8win32eng.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rb32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rcsync.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\realmon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\reged.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\regedit.exe] “Debugger=” [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\regedt32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rescue.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rescue32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rrguard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rscdwld.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rshell.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rtvscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rtvscn95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rulaunch.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rwg] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\rwg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\SafetyKeeper.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\safeweb.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sahagent.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Save.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\SaveArmor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\SaveDefense.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\SaveKeep.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\savenow.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sbserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\scam32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\scan32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\scan95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\scanpm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\scrscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Secure Veteran.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\secureveteran.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\Security Center.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\SecurityFighter.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\securitysoldier.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\serv95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\setloadorder.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\setupvameeval.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\setup_flowprotector_us.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sgssfw32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sh.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\shellspyinstall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\shield.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\shn.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\showbehind.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\signcheck.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\smart.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\smartprotector.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\smc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\smrtdefp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sms.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\smss32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\snetcfg.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\soap.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sofi.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\SoftSafeness.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sperm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\spf.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sphinx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\spoler.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\spoolcv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\spoolsv32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\spywarexpguard.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\spyxx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\srexe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\srng.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ss3edit.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ssgrate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\ssg_4104.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\st2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\start.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\stcloader.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\supftrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\support.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\supporter5.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\svc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\svchostc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\svchosts.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\svshost.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sweep95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sweepnet.sweepsrv.sys.swnetsup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\symlcsvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\symproxysvc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\symtray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\system.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\system32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\sysupd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tapinstall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\taskmgr.exe] “Debugger=” [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\taumon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tbscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tca.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tcm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tds-3.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tds2-98.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tds2-nt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\teekids.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tfak.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tfak5.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tgbob.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\titanin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\titaninxp.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\TPSrv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\trickler.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\trjscan.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\trjsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\trojantrap3.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\TrustWarrior.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tsadbot.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tsc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tvmd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\tvtmd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\undoboot.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\updat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\upgrad.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\utpost.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vbcmserv.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vbcons.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vbust.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vbwin9x.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vbwinntw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vcsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vet32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vet95.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vettray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vfsetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vir-help.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\virusmdpersonalfirewall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\VisthAux.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\VisthLic.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\VisthUpd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vnlan300.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vnpc3000.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vpc32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vpc42.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vpfw30s.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vptray.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vscan40.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vscenu6.02d30.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vsched.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vsecomr.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vshwin32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vsisetup.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vsmain.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vsmon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vsstat.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vswin9xe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vswinntse.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\vswinperse.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\w32dsm89.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\W3asbas.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\w9x.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\watchdog.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\webdav.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\WebProxy.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\webscanx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\webtrap.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wfindv32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\whoswatchingme.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wimmun32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\win-bugsfix.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\win32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\win32us.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winactive.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winav.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\windll32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\window.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\windows Police Pro.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\windows.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wininetd.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wininitx.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winlogin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winmain.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winppr32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winrecon.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winservn.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winssk32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winstart.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winstart001.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wintsk32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\winupdate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wkufind.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wnad.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wnt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wradmin.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wrctrl.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wsbgate.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wscfxas.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wscfxav.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wscfxfw.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wsctool.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wupdater.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wupdt.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\wyvernworksfirewall.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\xpdeluxe.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\xpf202en.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\xp_antispyware.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\zapro.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\zapsetup3001.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\zatutor.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\zonalm2601.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\zonealarm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\_avp32.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\_avpcc.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\_avpm.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\~1.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Image File Execution Options\\~2.exe] “Debugger=“svchost.exe [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Drivers32] “midimapper”=midimap.dll “msacm.imaadpcm”=imaadp32.acm “msacm.msadpcm”=msadp32.acm “msacm.msg711”=msg711.acm “msacm.msgsm610”=msgsm32.acm “msacm.trspch”=tssoft32.acm “vidc.cvid”=iccvid.dll “vidc.I420”=msh263.drv “vidc.iv31”=ir32_32.dll “vidc.iv32”=ir32_32.dll “vidc.iv41”=ir41_32.ax “vidc.iyuv”=iyuv_32.dll “vidc.mrle”=msrle32.dll “vidc.msvc”=msvidc32.dll “vidc.uyvy”=msyuv.dll “vidc.yuy2”=msyuv.dll “vidc.yvu9”=tsbyuv.dll “vidc.yvyu”=msyuv.dll “wavemapper”=msacm32.drv “msacm.msg723”=msg723.acm “vidc.M263”=msh263.drv “vidc.M261”=msh261.drv “msacm.msaudio1”=msaud32.acm “msacm.sl_anet”=sl_anet.acm “msacm.iac2”=E:\WINDOWS\system32\iac25_32.ax “vidc.iv50”=ir50_32.dll “msacm.l3acm”=E:\WINDOWS\system32\l3codeca.acm “wave”=wdmaud.drv “midi”=wdmaud.drv “mixer”=wdmaud.drv “aux”=wdmaud.drv ======File associations====== .scr - open - E:\WINDOWS\system32\notepad.exe “%1” .scr - install - .scr - config - ======List of files/folders created in the last 1 month====== 2012-04-08 13:27:58——D——E:\rsit 2012-04-03 11:57:36——D——E:\Programmer\TweakNow RegCleaner 2012-04-03 11:57:36——D——E:\Documents and Settings\Henrik Jensen\Application Data\TweakNow RegCleaner 2012-04-01 18:34:20——D——E:\spyhunter 2012-04-01 18:03:50——A——E:\WINDOWS\system32\sh4native.exe 2012-04-01 17:51:17——D——E:\sh4ldr 2012-04-01 17:51:02——D——E:\WINDOWS\41EBC322660F4D16A0DF53147210CBDB.TMP 2012-04-01 15:58:22——D——E:\WINDOWS\4FC9DA9DF608454E8191D7EFFDCC5726.TMP 2012-04-01 15:27:09——A——E:\autoexec.bat 2012-04-01 15:26:54——D——E:\Programmer\Enigma Software Group 2012-04-01 15:26:36——D——E:\WINDOWS\95431C66CF9A4913BFFF6050785AFB65.TMP 2012-04-01 15:26:33——D——E:\Programmer\Fælles filer\Wise Installation Wizard 2012-04-01 14:39:42——A——E:\WINDOWS\system32\tmp.txt 2012-04-01 14:39:31——A——E:\rapport.txt 2012-04-01 13:02:57——D——E:\Programmer\Trend Micro 2012-03-31 22:34:24——D——E:\Preventon 2012-03-31 09:31:01——D——E:\Documents and Settings\All Users\Application Data\clp 2012-03-31 09:30:44——D——E:\Documents and Settings\Henrik Jensen\Application Data\Fighters 2012-03-31 09:30:26——D——E:\Documents and Settings\All Users\Application Data\Common Toolkit Suite 2012-03-31 09:29:38——D——E:\Documents and Settings\All Users\Application Data\Fighters 2012-03-30 10:36:41——A——E:\WINDOWS\system32\FlashPlayerApp.exe 2012-03-30 10:29:44——A——E:\Documents and Settings\Henrik Jensen\Application Data\result.db 2012-03-15 21:41:54——HDC——E:\WINDOWS\$NtUninstallKB2641653$ 2012-03-15 21:40:01——HDC——E:\WINDOWS\$NtUninstallKB2621440$ 2012-03-15 21:39:50——HDC——E:\WINDOWS\$NtUninstallKB2647518$ ======List of files/folders modified in the last 1 month====== 2012-04-08 13:14:42——D——E:\WINDOWS\Temp 2012-04-08 10:42:23——D——E:\WINDOWS\Prefetch 2012-04-08 10:14:20——D——E:\Programmer\Fælles filer\Akamai 2012-04-07 11:53:18——A——E:\WINDOWS\SchedLgU.Txt 2012-04-05 09:29:21——D——E:\WINDOWS 2012-04-03 11:57:36——RD——E:\Programmer 2012-04-02 19:17:03——D——E:\WINDOWS\system32\CatRoot2 2012-04-02 16:34:47——SD——E:\WINDOWS\Downloaded Program Files 2012-04-02 11:22:53——SHD——E:\System Volume Information 2012-04-02 11:22:53——D——E:\WINDOWS\system32\Restore 2012-04-02 11:21:12——D——E:\Documents and Settings\Henrik Jensen\Application Data\BitTorrent 2012-04-02 11:21:11——D——E:\WINDOWS\Minidump 2012-04-02 11:19:17——D——E:\Programmer\CCleaner 2012-04-02 11:02:43——D——E:\WINDOWS\Registration 2012-04-01 18:42:02——A——E:\WINDOWS\win.ini 2012-04-01 18:42:02——A——E:\WINDOWS\system.ini 2012-04-01 18:09:56——SHD——E:\WINDOWS\Installer 2012-04-01 18:09:07——D——E:\Programmer\Fælles filer 2012-04-01 18:08:42——D——E:\WINDOWS\system32\drivers 2012-04-01 18:05:29——D——E:\Documents and Settings\All Users\Application Data\QuestBasic 2012-04-01 18:05:27——D——E:\Programmer\QuestBasic 2012-04-01 18:03:50——D——E:\WINDOWS\system32 2012-03-31 09:30:48——HD——E:\WINDOWS\inf 2012-03-30 10:36:42——SD——E:\WINDOWS\Tasks 2012-03-26 17:58:14——SD——E:\Documents and Settings\Henrik Jensen\Application Data\Microsoft 2012-03-25 11:07:26——A——E:\WINDOWS\system32\PerfStringBackup.INI 2012-03-16 19:20:55——D——E:\WINDOWS\Debug 2012-03-15 21:41:56——RSHDC——E:\WINDOWS\system32\dllcache 2012-03-15 21:41:51——HD——E:\WINDOWS\$hf_mig$ 2012-03-15 21:40:14——A——E:\WINDOWS\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 uagp35;Microsoft AGPv3.5-filter; E:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672] R1 aswRdr;aswRdr; E:\WINDOWS\system32\drivers\aswRdr.sys [2011-11-28 34392] R1 aswSnx;aswSnx; E:\WINDOWS\system32\drivers\aswSnx.sys [2011-11-28 435032] R1 aswSP;aswSP; E:\WINDOWS\system32\drivers\aswSP.sys [2011-11-28 314456] R1 aswTdi;avast! Network Shield Support; E:\WINDOWS\system32\drivers\aswTdi.sys [2011-11-28 52952] R1 intelppm;Driver til Intel-processor; E:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192] R1 kbdhid;HID-tastaturdriver; E:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R1 Aavmker4;avast! Asynchronous Virus Monitor; E:\WINDOWS\system32\drivers\Aavmker4.sys [2011-11-28 30808] R2 aswFsBlk;aswFsBlk; E:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-11-28 20568] R2 aswMon2;avast! Standard Shield Support; E:\WINDOWS\system32\drivers\aswMon2.sys [2011-11-28 111320] R2 LBeepKE;LBeepKE; E:\WINDOWS\System32\Drivers\LBeepKE.sys [2009-06-17 10384] R3 FETNDIS;NT-driver til VIA PCI 10/100Mb Fast Ethernet-netværkskort; E:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165] R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; E:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920] R3 HDAudBus;Microsoft UAA-busdriver til High Definition Audio; E:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Microsoft HID-klassedriver; E:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; E:\WINDOWS\System32\Drivers\LEqdUsb.Sys [2009-06-17 40720] R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; E:\WINDOWS\System32\Drivers\LHidEqd.Sys [2009-06-17 10384] R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; E:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472] R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; E:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392] R3 mouhid;HID-driver til mus; E:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-27 12160] R3 nv;nv; E:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592] R3 usbccgp;Overordnet Microsoft USB-standarddriver; E:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbuhci;Microsoft USB-universel værtscontroller miniportdriver; E:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 Wdf01000;Wdf01000; E:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] S3 AVFSFilter;AVFSFilter; E:\WINDOWS\system32\DRIVERS\avfsfilter.sys [] S3 esgiguard;esgiguard; \??\E:\Programmer\Enigma Software Group\SpyHunter\esgiguard.sys [] S3 USBSTOR;Driver til USB-lagerenhed; E:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Akamai;Akamai NetSession Interface; E:\WINDOWS\System32\svchost.exe [2008-04-14 14336] R2 HeimdalSecureDNS;Heimdal Secure DNS Service; E:\Programmer\heimdal\HeimdalSecureDNS\DnsService.exe [2011-11-24 79976] R2 HeimdalService;Heimdal Service; E:\Programmer\heimdal\Service\HeimdalAgentService.exe [2011-11-24 106088] R2 JavaQuickStarterService;Java Quick Starter; E:\Programmer\Java\jre6\bin\jqs.exe [2012-02-22 153376] R2 mitsijm2012;Autodesk Moldflow Inventor Tool Suite Integration 2012 Job Manager; C:\autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [2010-12-07 579384] R2 SpyHunter 4 Service;SpyHunter 4 Service; E:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [2010-11-05 327000] S2 avast! Antivirus;avast! Antivirus; C:\avast\AvastSvc.exe [2011-11-28 44768] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Google Update Tjeneste (gupdate); E:\Programmer\Google\Update\GoogleUpdate.exe [2011-09-26 136176] S2 NVSvc;NVIDIA Driver Helper Service; E:\WINDOWS\system32\nvsvc32.exe [2011-08-03 146024] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 253600] S3 aspnet_state;ASP.NET State Service; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; E:\Programmer\Fælles filer\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-10-06 1044816] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 gupdatem;Google Update Tjeneste (gupdatem); E:\Programmer\Google\Update\GoogleUpdate.exe [2011-09-26 136176] S3 gusvc;Google Software Updater; E:\Programmer\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-09-26 182768] S3 idsvc;Windows CardSpace; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 LBTServ;Logitech Bluetooth Service; E:\Programmer\Fælles filer\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360] S3 ose;Office Source Engine; E:\Programmer\Fælles filer\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] ————————-EOF————————-
[ Ignorer ] [ # 7 ] hlj123
08.04.2012 14:08:53 Antal indlæg: 8	indlæg 3 skal du ignorere , det er indlæg 5 og 6 det er min regedit.
[ Ignorer ] [ # 8 ] Magic Spyhunter
08.04.2012 17:09:19 Administrator Supporter Emeritus Antal indlæg: 32215	Fint Der er nogen ting i logfilen der ikke bør være der, så næste skridt…..... Hent Combofix, og gem den på dit skrivebord: Her NB -> Deaktiver dit antivirus/antispyware program. Da det/de kan ”forstyrre” og konflikte med combofix, eller fjerne vigtige combofix filer, hvilket kan få computeren til fryse. Kør så combofix.exe, og følg anvisningerne. Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse. Når combofix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: combofix.txt Indholdet af denne fil må du gerne lægge herind. Den kan også findes her - > C: combofix txt Signatur Sund Computer fornuft
[ Ignorer ] [ # 9 ] hlj123
08.04.2012 19:42:20 Antal indlæg: 8	ComboFix 12-04-07.04 - Henrik Jensen 08-04-2012 19:20:57.1.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.45.1030.18.2046.1672 [GMT 2:00] Kører fra: E:\Documents and Settings\Henrik Jensen\Skrivebord\ComboFix.exe AV: avast! Antivirus Enabled/Updated {7591DB91-41F0-48A3-B128-1A293FD8233D} advarsel -DENNE MASKINE HAR IKKE GENOPRETTELSESKONSOL INSTALLERET !! ((((((((((((((((((((((((((((((((((((((( Andet, der er slettet ))))))))))))))))))))))))))))))))))))))))))))))))) E:\Documents and Settings\All Users\Application Data\QuestBasic E:\Documents and Settings\All Users\Menuen Start\Programmer\RelevantKnowledge E:\Documents and Settings\All Users\Menuen Start\Programmer\RelevantKnowledge\About RelevantKnowledge.lnk E:\Documents and Settings\All Users\Menuen Start\Programmer\RelevantKnowledge\Privacy Policy and User License Agreement.lnk E:\Documents and Settings\All Users\Menuen Start\Programmer\RelevantKnowledge\Support.lnk E:\Documents and Settings\All Users\Menuen Start\Programmer\RelevantKnowledge\Uninstall Instructions.lnk E:\Documents and Settings\Henrik Jensen\Application Data\PriceGong E:\Documents and Settings\Henrik Jensen\Application Data\PriceGong\Data\mru.xml E:\Documents and Settings\Henrik Jensen\Application Data\result.db E:\Programmer\QuestBasic E:\Programmer\QuestBasic\uninstall.exe E:\WINDOWS\$NtUninstallKB6562$ E:\WINDOWS\$NtUninstallKB6562$\228687339 E:\WINDOWS\Downloaded Program Files\IDropPTB.dll E:\WINDOWS\system32\dllcache\dlimport.exe E:\WINDOWS\system32\tmp.reg ((((((((((((((((((((((((((((( Filer skabt fra 2012-03-08 til 2012-04-08 ))))))))))))))))))))))))))))))))))) 2012-04-08 11:27:58 . 2012-04-08 11:28:02 ———— d——-w- E:\rsit 2012-04-03 09:57:36 . 2012-04-03 10:02:56 ———— d——-w- E:\Programmer\TweakNow RegCleaner 2012-04-03 09:57:36 . 2012-04-03 09:57:36 ———— d——-w- E:\Documents and Settings\Henrik Jensen\Application Data\TweakNow RegCleaner 2012-04-01 16:34:20 . 2012-04-01 16:34:49 ———— d——-w- E:\spyhunter 2012-04-01 16:03:50 . 2010-05-13 15:34:58 14232 ——a-w- E:\WINDOWS\system32\sh4native.exe 2012-04-01 15:51:19 . 2012-04-01 15:51:19 110080 ——a-r- E:\Documents and Settings\Henrik Jensen\Application Data\Microsoft\Installer\{41EBC322-660F-4D16-A0DF-53147210CBDB}\IconF7A21AF7.exe 2012-04-01 15:51:19 . 2012-04-01 15:51:19 110080 ——a-r- E:\Documents and Settings\Henrik Jensen\Application Data\Microsoft\Installer\{41EBC322-660F-4D16-A0DF-53147210CBDB}\IconD7F16134.exe 2012-04-01 15:51:17 . 2012-04-01 15:51:18 ———— d——-w- E:\sh4ldr 2012-04-01 15:51:02 . 2012-04-01 15:51:20 ———— d——-w- E:\WINDOWS\41EBC322660F4D16A0DF53147210CBDB.TMP 2012-04-01 13:58:22 . 2012-04-01 15:50:01 ———— d——-w- E:\WINDOWS\4FC9DA9DF608454E8191D7EFFDCC5726.TMP 2012-04-01 13:26:54 . 2012-04-01 13:26:54 ———— d——-w- E:\Programmer\Enigma Software Group 2012-04-01 13:26:36 . 2012-04-01 13:54:57 ———— d——-w- E:\WINDOWS\95431C66CF9A4913BFFF6050785AFB65.TMP 2012-04-01 13:26:33 . 2012-04-01 15:51:00 ———— d——-w- E:\Programmer\Fælles filer\Wise Installation Wizard 2012-04-01 11:02:58 . 2012-04-01 11:02:58 388096 ——a-r- E:\Documents and Settings\Henrik Jensen\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-04-01 11:02:57 . 2012-04-08 11:27:58 ———— d——-w- E:\Programmer\Trend Micro 2012-03-31 20:34:24 . 2012-03-31 20:34:24 ———— d——-w- E:\Preventon 2012-03-31 07:41:16 . 2012-03-31 07:41:16 ———— d——-w- E:\Documents and Settings\NetworkService\Application Data\Fighters 2012-03-31 07:31:01 . 2012-04-01 11:05:21 ———— d——-w- E:\Documents and Settings\All Users\Application Data\clp 2012-03-31 07:30:56 . 2012-03-31 07:30:56 ———— d——-w- E:\Documents and Settings\LocalService\Application Data\Fighters 2012-03-31 07:30:44 . 2012-03-31 07:31:05 ———— d——-w- E:\Documents and Settings\Henrik Jensen\Application Data\Fighters 2012-03-31 07:30:26 . 2012-03-31 07:30:27 ———— d——-w- E:\Documents and Settings\All Users\Application Data\Common Toolkit Suite 2012-03-31 07:29:38 . 2012-04-01 16:09:41 ———— d——-w- E:\Documents and Settings\All Users\Application Data\Fighters 2012-03-30 08:36:41 . 2012-03-30 08:36:41 418464 ——a-w- E:\WINDOWS\system32\FlashPlayerApp.exe 2012-03-26 15:58:14 . 2012-03-26 15:58:14 ———— d——-w- E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Identities . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) 2012-03-30 08:36:41 . 2011-09-26 20:16:39 70304 ——a-w- E:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2012-02-21 22:22:00 . 2012-02-21 22:22:17 73728 ——a-w- E:\WINDOWS\system32\javacpl.cpl 2012-02-21 22:22:00 . 2011-09-29 16:12:55 472808 ——a-w- E:\WINDOWS\system32\deployJava1.dll 2012-02-03 09:57:30 . 2004-08-27 12:00:00 1860096 ——a-w- E:\WINDOWS\system32\win32k.sys 2012-01-11 19:07:11 . 2012-02-16 16:37:03 3072 ———w- E:\WINDOWS\system32\iacenc.dll ((((((((((((((((((((((((((((((((((( Start steder i reg.basen )))))))))))))))))))))))))))))))))))))))))))))))) Bemærk tomme linier & lovlige standard linier vises ikke REGEDIT4 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @=”{472083B0-C522-11CF-8763-00608CC02F24}” [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-11-28 18:01:17 122512 -c—a-w- C:\avast\ashShell.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “Akamai NetSession Interface”=“E:\Documents and Settings\Henrik Jensen\Lokale indstillinger\Application Data\Akamai\netsession_win.exe” [2012-03-13 04:37:52 3331872] “swg”=“E:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe” [2011-09-26 16:02:08 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] “NvMediaCenter”=“E:\WINDOWS\system32\NvMcTray.dll” [2011-08-03 11:49:00 111208] “NvCplDaemon”=“E:\WINDOWS\system32\NvCpl.dll” [2011-08-03 11:49:00 13892200] “avast”=“C:\avast\avastUI.exe” [2011-11-28 18:01:24 3744552] “High Definition Audio Property Page Shortcut”=“HDAShCut.exe” [2005-01-07 15:07:16 61952] “Kernel and Hardware Abstraction Layer”=“KHALMNPR.EXE” [2009-06-17 16:55:10 55824] “SunJavaUpdateSched”=“E:\Programmer\Fælles filer\Java\Java Update\jusched.exe” [2012-01-18 13:02:04 254696] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] “CTFMON.EXE”=“E:\WINDOWS\system32\CTFMON.EXE” [2008-04-14 16:05:45 15360] E:\Documents and Settings\All Users\Menuen Start\Programmer\Start\ Logitech SetPoint.lnk - E:\Programmer\Logitech\SetPoint\SetPoint.exe [2012-1-30 813584] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] “ConsentPromptBehaviorAdmin”= 0 (0x0) “ConsentPromptBehaviorUser”= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2009-07-20 11:28:42 72208 ——a-w- e:\Programmer\Fælles filer\Logishrd\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\avastSvc.exe] “Debugger”=svchost.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\avastUI.exe] “Debugger”=svchost.exe [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @=”“ [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2012-01-03 07:37:53 843712 ——a-w- E:\Programmer\Fælles filer\Adobe\ARM\1.0\AdobeARM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] 2011-09-27 06:22:28 59240 ——a-w- E:\Programmer\Fælles filer\Apple\Apple Application Support\APSDaemon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 16:05:55 1695232 ———w- E:\Programmer\Messenger\msmsgs.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2012-03-04 14:15:46 421888 ——a-w- E:\Programmer\QuickTime\qttask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyHunter Security Suite] 2011-04-10 12:25:44 4098904 ——a-w- E:\Programmer\Enigma Software Group\SpyHunter\SpyHunter4.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] “EnableFirewall”= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] “%windir%\\system32\\sessmgr.exe”= “%windir%\\Network Diagnostic\\xpnetdiag.exe”= “C:\\bit\\BitTorrent-7.2.1.exe”= “C:\\autodesk\\Inventor 2012\\Moldflow\\bin\\mitsi.exe”= “E:\\Documents and Settings\\Henrik Jensen\\Lokale indstillinger\\Application Data\\Akamai\\netsession_win.exe”= “E:\\Programmer\\Windows iLivid Toolbar\\Datamngr\\ToolBar\\dtUser.exe”= “E:\\Programmer\\Fælles filer\\Apple\\Apple Application Support\\WebKit2WebProcess.exe”= “E:\\WINDOWS\\system32\\usmt\\migwiz.exe”= “E:\\WINDOWS\\system32\\mmc.exe”= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] “1040:TCP”= 1040:TCP:Akamai NetSession Interface “5000:UDP”= 5000:UDP:Akamai NetSession Interface R1 aswSnx;aswSnx;E:\WINDOWS\system32\drivers\aswSnx.sys [26-09-2011 16:55:32 435032] R1 aswSP;aswSP;E:\WINDOWS\system32\drivers\aswSP.sys [26-09-2011 16:55:35 314456] R2 Akamai;Akamai NetSession Interface;E:\WINDOWS\System32\svchost.exe -k Akamai [27-08-2004 14:00:00 14336] R2 aswFsBlk;aswFsBlk;E:\WINDOWS\system32\drivers\aswFsBlk.sys [26-09-2011 16:55:36 20568] R2 HeimdalSecureDNS;Heimdal Secure DNS Service;E:\Programmer\heimdal\HeimdalSecureDNS\DNSService.exe [24-11-2011 12:06:24 79976] R2 HeimdalService;Heimdal Service;E:\Programmer\heimdal\Service\HeimdalAgentService.exe [24-11-2011 12:05:48 106088] R2 LBeepKE;LBeepKE;E:\WINDOWS\system32\drivers\LBeepKE.sys [30-01-2012 21:31:51 10384] R2 mitsijm2012;Autodesk Moldflow Inventor Tool Suite Integration 2012 Job Manager;C:\autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [07-12-2010 17:28:06 579384] R2 SpyHunter 4 Service;SpyHunter 4 Service;E:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [05-11-2010 17:53:56 327000] R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;E:\WINDOWS\system32\drivers\LEqdUsb.sys [17-06-2009 18:55:50 40720] R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;E:\WINDOWS\system32\drivers\LHidEqd.sys [17-06-2009 18:55:58 10384] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18-03-2010 13:16:28 130384] S2 gupdate;Google Update Tjeneste (gupdate);E:\Programmer\Google\Update\GoogleUpdate.exe [26-09-2011 18:00:55 136176] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [30-03-2012 10:36:41 253600] S3 AVFSFilter;AVFSFilter;E:\WINDOWS\system32\DRIVERS\avfsfilter.sys—> E:\WINDOWS\system32\DRIVERS\avfsfilter.sys [?] S3 esgiguard;esgiguard;E:\Programmer\Enigma Software Group\SpyHunter\esgiguard.sys [27-01-2010 17:10:44 5248] S3 gupdatem;Google Update Tjeneste (gupdatem);E:\Programmer\Google\Update\GoogleUpdate.exe [26-09-2011 18:00:55 136176] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18-03-2010 13:16:28 753504] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] Akamai REG_MULTI_SZ Akamai Indhold af mappen ‘Planlagte Opgaver’ 2012-04-08 E:\WINDOWS\Tasks\Adobe Flash Player Updater.job - E:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 08:36:41 . 2012-03-30 08:36:41] 2012-03-04 E:\WINDOWS\Tasks\AppleSoftwareUpdate.job - E:\Programmer\Apple Software Update\SoftwareUpdate.exe [2011-06-01 16:57:16 . 2011-06-01 16:57:16] 2011-09-26 E:\WINDOWS\Tasks\DriverNavigator Scheduled Scan.job - E:\Programmer\Easeware\DriverNavigator\DriverNavigator.exe [2011-09-26 15:43:02 . 2011-03-03 09:49:00] 2012-04-08 E:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job - E:\Programmer\Google\Update\GoogleUpdate.exe [2011-09-26 16:00:55 . 2011-09-26 16:00:42] 2012-04-08 E:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job - E:\Programmer\Google\Update\GoogleUpdate.exe [2011-09-26 16:00:55 . 2011-09-26 16:00:42] 2012-04-08 E:\WINDOWS\Tasks\User_Feed_Synchronization-{BEA0F2E9-A640-416D-897D-DDED9BA695E4}.job - E:\WINDOWS\system32\msfeedssync.exe [2009-03-08 02:31:54 . 2009-03-08 02:31:54] ———- Yderligere scanning———- uStart Page = hxxp://www.signon.stofanet.dk/ uInternet Settings,ProxyOverride = 127.0.0.1:9421;<local> TCP: DhcpNameServer = 212.10.10.5 212.10.10.4 ———- Fil Associationer———- .scr=DWGTrueViewScriptFile - - - - TOMME GENVEJE FJERNET - - - - Toolbar-10 - (no file) AddRemove-QuestBasic - E:\Programmer\QuestBasic\uninstall.exe ************************************************************************ catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2012-04-08 19:33:47 Windows 5.1.2600 Service Pack 3 NTFS scanner skjulte processer ... scanner skjulte autostarter ... scanner skjulte filer ... scanning gennemført med succes skjulte filer: 0 ********************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai] “ServiceDll”=“e:\programmer\fælles filer\akamai/netsession_win_6c825ce.dll” ——————————- DLLs startet under kørende Processer——————————- - - - - - - - > ‘winlogon.exe’(664) e:\programmer\fælles filer\logishrd\bluetooth\LBTWlgn.dll e:\programmer\fælles filer\logishrd\bluetooth\LBTServ.dll - - - - - - - > ‘explorer.exe’(1516) E:\Programmer\Logitech\SetPoint\lgscroll.dll E:\WINDOWS\system32\msi.dll E:\WINDOWS\system32\AcSignIcon.dll C:\autodesk\Inventor Fusion 2012\AcSignCore16.dll E:\WINDOWS\system32\webcheck.dll ————————————Andre kørende processer———————————— E:\Programmer\Java\jre6\bin\jqs.exe E:\WINDOWS\system32\RUNDLL32.EXE E:\Programmer\Fælles filer\Logishrd\KHAL2\KHALMNPR.EXE E:\WINDOWS\system32\nvsvc32.exe E:\Programmer\heimdal\Client\HeimdalAgent.exe E:\WINDOWS\system32\wscntfy.exe ************************************************************************ Gennemført tid: 2012-04-08 19:39:13 - maskinen blev genstartet ComboFix-quarantined-files.txt 2012-04-08 17:39:09
[ Ignorer ] [ # 10 ] Magic Spyhunter
09.04.2012 23:24:11 Administrator Supporter Emeritus Antal indlæg: 32215	Hvordan opfører computeren sig nu ? Signatur Sund Computer fornuft