Hej

Download OTL af OldTimer og gem den på dit skrivebord.

Start OTL

Vista og Windows 7 - højreklik på filen - Kør som Administrator.

Når vinduet vises, skal du under Output i toppen skifte til “Minimal Output”.

Øverst sætter du flueben i “Scan All Users”

I nederste højre hjørne af det øverste panel, sæt fluben ved “LOP Check” og “Purity Check”.

Luk alle åbne vinduer og klik på “Run Scan” øverst til venstre og lad programmet køre. Scanningen kan tage 5-10 minutter.

Det vil give to logfiler på skrivebordet, OTL.txt og Extras.txt.

Så kopier følgende ind i dit næste indlæg (i rækkefølge):

Indholdet af OTL.txt
Indholdet af Extras.txt

Da de er forholdsvis lange, kan du blive nødt til at sende dem i flere indlæg.

OTL logfile created on: 5/6/2012 3:15:02 PM - Run 1
OTL by OldTimer - Version 3.2.42.2   Folder = C:\Users\Morgan\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

3.95 Gb Total Physical Memory | 2.16 Gb Available Physical Memory | 54.79% Memory free
7.90 Gb Paging File | 5.86 Gb Available in Paging File | 74.25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 681.25 Gb Total Space | 508.48 Gb Free Space | 74.64% Space Free | Partition Type: NTFS
Drive D: | 17.10 Gb Total Space | 1.81 Gb Free Space | 10.58% Space Free | Partition Type: NTFS
Drive F: | 98.87 Mb Total Space | 88.60 Mb Free Space | 89.62% Space Free | Partition Type: FAT32

Computer Name: MORGAN-HP | User Name: Morgan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Morgan\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia)
PRC - C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe (Hewlett-Packard Development Company L.P.)
PRC - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (Hewlett-Packard Company)
PRC - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (CyberLink)
PRC - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
PRC - C:\Program Files (x86)\ZyXEL\NetUSB Share Center\Share Center.exe ()
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)


========== Modules (No Company Name) ==========

MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\00cb077c2bf82c7fe54b6f93af4b6686\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\507b4ca18da9d2fde2e51a1f04593443\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\262285b3d0afafc5059f3fe9be69bff5\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\8177623eac8f15cf95b587625439eac7\System.Drawing.ni.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a1c4a635721f85bef0ea4194b888b871\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\47b9e7f070271ff50f988f75ea68fa3e\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\9866d1f6178e1cde25642f1ac293ff8d\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e620323cacb5b6bfd93fd28d263440e4\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\b40ad47b1338dd50c41d2c5571819a09\IAStorCommon.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_da_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_da_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Program Files (x86)\ZyXEL\NetUSB Share Center\Share Center.exe ()


========== Win32 Services (SafeList) ==========

SRV:64bit: - (NisSrv)—c:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (MsMpSvc)—c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (!SASCORE)—C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SRV:64bit: - (AMD External Events Utility)—C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (STacSV)—C:\Program Files\IDT\WDM\STacSV64.exe (IDT, Inc.)
SRV:64bit: - (wlcrasvc)—C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (HPClientSvc)—C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (Hewlett-Packard Company)
SRV:64bit: - (EPSON_EB_RPCV4_04) EPSON V5 Service4(04)—C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE (SEIKO EPSON CORPORATION)
SRV:64bit: - (EPSON_PM_RPCV4_04) EPSON V3 Service4(04)—C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE (SEIKO EPSON CORPORATION)
SRV:64bit: - (WinDefend)—C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc)—C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (TeamViewer7)—C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (SkypeUpdate)—C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (TomTomHOMEService)—C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (AdobeARMservice)—C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (PnkBstrA)—C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (HPSLPSVC)—C:\Users\Morgan\AppData\Local\Temp\7zS2B90\hpslpsvc64.dll (Hewlett-Packard Co.)
SRV - (Secunia PSI Agent)—C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia)
SRV - (Secunia Update Agent)—C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia)
SRV - (sftvsa)—C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist)—C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (hpCMSrv)—C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe (Hewlett-Packard Development Company L.P.)
SRV - (HPDrvMntSvc.exe)—C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (Hewlett-Packard Company)
SRV - (HP Support Assistant Service)—C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (Hewlett-Packard Company)
SRV - (BBSvc)—C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (SeaPort)—C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (IconMan_R)—C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
SRV - (UNS) Intel(R)—C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) Intel(R)—C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (IAStorDataMgrSvc) Intel(R)—C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (HPWMISVC)—C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
SRV - (GamesAppService)—C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (clr_optimization_v4.0.30319_32)—C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32)—C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (ABBYY.Licensing.FineReader.Sprint.9.0)—C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY)


========== Driver Services (SafeList) ==========

DRV:64bit: - (dtsoftbus01)—C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV:64bit: - (NisDrv)—C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec)—C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (atksgt)—C:\Windows\SysNative\drivers\atksgt.sys ()
DRV:64bit: - (lirsgt)—C:\Windows\SysNative\drivers\lirsgt.sys ()
DRV:64bit: - (Sftvol)—C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay)—C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir)—C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs)—C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (SASDIFSV)—C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV:64bit: - (SASKUTIL)—C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV:64bit: - (RTL8167)—C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek                             )
DRV:64bit: - (amdkmdag)—C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap)—C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (intelkmd)—C:\Windows\SysNative\drivers\igdpmd64.sys (Intel Corporation)
DRV:64bit: - (HPub4DE3) USB Mouse Low Filter Driver_4DE3 (WDF Version)—C:\Windows\SysNative\drivers\HPub4DE3.sys (TPMX Electronics Ltd.)
DRV:64bit: - (amdsata)—C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata)—C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HPMo4DE3) Mouse Suite Driver_4DE3 (WDF Version)—C:\Windows\SysNative\drivers\HPMo4DE3.sys (TPMX Electronics Ltd.)
DRV:64bit: - (RSPCIESTOR)—C:\Windows\SysNative\drivers\RtsPStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (STHDA)—C:\Windows\SysNative\drivers\stwrt64.sys (IDT, Inc.)
DRV:64bit: - (iaStor)—C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (SynTP)—C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (RTL8192su)—C:\Windows\SysNative\drivers\RTL8192su.sys (Realtek Semiconductor Corporation                   )
DRV:64bit: - (TsUsbFlt)—C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (sdbus)—C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD)—C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbGD)—C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (RT80x86)—C:\Windows\SysNative\drivers\rt2860.sys (Ralink Technology, Corp.)
DRV:64bit: - (MEIx64) Intel(R)—C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) Intel(R)—C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
DRV:64bit: - (PSI)—C:\Windows\SysNative\drivers\psi_mf.sys (Secunia)
DRV:64bit: - (clwvd)—C:\Windows\SysNative\drivers\clwvd.sys (CyberLink Corporation)
DRV:64bit: - (amdsbs)—C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2)—C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor)—C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (Dot4Scan)—C:\Windows\SysNative\drivers\Dot4Scan.sys (Microsoft Corporation)
DRV:64bit: - (SrvHsfV92)—C:\Windows\SysNative\drivers\VSTDPV6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (SrvHsfWinac)—C:\Windows\SysNative\drivers\VSTCNXT6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (SrvHsfHDA)—C:\Windows\SysNative\drivers\VSTAZL6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (NVENETFD)—C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation)
DRV:64bit: - (BCM43XX)—C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (ebdrv)—C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv)—C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a)—C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir)—C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (GEARAspiWDM)—C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (WIMMount)—C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (Hardlock)—C:\Windows\SysWOW64\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON/5
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPCON/5
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: “URL” = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: “URL” = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
IE:64bit: - HKLM\..\SearchScopes\{335EC941-356B-44F2-AFA0-6A795081D691}: “URL” = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link;_code=qs&index=aps&field;-keywords={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: “URL” = http://dk.search.yahoo.com/search?p={searchTerms}&ei;={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE:64bit: - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: “URL” = http://da.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON/5
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPCON/5
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: “URL” = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: “URL” = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
IE - HKLM\..\SearchScopes\{335EC941-356B-44F2-AFA0-6A795081D691}: “URL” = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link;_code=qs&index=aps&field;-keywords={searchTerms}
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: “URL” = http://dk.search.yahoo.com/search?p={searchTerms}&ei;={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: “URL” = http://da.wikipedia.org/wiki/Special:Search?search={searchTerms}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0



IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON/5
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\URLSearchHook: {e9df9360-97f8-4690-afe6-996c80790da4} - No CLSID value found
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: “URL” = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: “URL” = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\SearchScopes\{335EC941-356B-44F2-AFA0-6A795081D691}: “URL” = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link;_code=qs&index=aps&field;-keywords={searchTerms}
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: “URL” = http://dk.search.yahoo.com/search?p={searchTerms}&ei;={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: “URL” = http://da.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0
IE - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyOverride” = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: .:1.7.1
FF - prefs.js..extensions.enabledItems: .:1.0.2
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\downloader@freeyoutubetomp3converter.org: C:\Program Files (x86)\FreeYouTubeToMP3TURBOConverter\Firefox [2011/10/31 00:17:06 | 000,000,000 |—-D | M]

[2011/12/31 13:38:55 | 000,000,000 |—-D | M] (No name found)—C:\Users\Morgan\AppData\Roaming\mozilla\Extensions
[2011/12/31 13:38:55 | 000,000,000 |—-D | M] (No name found)—C:\Users\Morgan\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2012/03/15 19:18:43 | 000,000,000 |—-D | M] (No name found)—C:\Users\Morgan\AppData\Roaming\mozilla\Firefox\extensions
[2012/03/15 19:18:43 | 000,000,000 |—-D | M] (uTorrentControl Community Toolbar)—C:\Users\Morgan\AppData\Roaming\mozilla\Firefox\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
[2012/04/10 22:10:47 | 000,000,000 |—-D | M] (Map status indicator)—C:\PROGRAM FILES (X86)\TOMTOM HOME 2\XUL\EXTENSIONS\MAPSHARE-STATUS@TOMTOM.COM

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 |——| M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2:64bit: - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\Toolbar\WebBrowser: (no name) - {E9DF9360-97F8-4690-AFE6-996C80790DA4} - No CLSID value found.
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe (Hewlett-Packard Development Company L.P.)
O4 - HKLM..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [ZyXEL USB Share Center] C:\Program Files (x86)\ZyXEL\NetUSB Share Center\Share Center.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000..\Run: [EPSON SX130 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE /FU “C:\Users\Morgan\AppData\Local\Temp\E_SCA8E.tmp” /EF “HKCU” File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
O7 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Morgan\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Morgan\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra ‘Tools’ menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra Button: Download Video - {B30C9F17-BF16-481e-BAEA-44A86128E1B4} - C:\Program Files (x86)\FreeYouTubeToMP3TURBOConverter\ytmRunner.html ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/production/ieawsdc32.cab (Microsoft Office Template and Media Control)
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} http://kitchenplanner.ikea.com/DK/Core/Player/2020PlayerAX_IKEA_Win32.cab (20-20 3D Viewer for IKEA)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.5.1.0.cab (SysInfo Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9E1771AF-CCC9-4F9A-BA3A-39B89D7C0C94}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open]—“%1” %*
O35:64bit: - HKLM\..exefile [open]—“%1” %*
O35 - HKLM\..comfile [open]—“%1” %*
O35 - HKLM\..exefile [open]—“%1” %*
O37:64bit: - HKLM\...com [@ = comfile]—“%1” %*
O37:64bit: - HKLM\...exe [@ = exefile]—“%1” %*
O37 - HKLM\...com [@ = comfile]—“%1” %*
O37 - HKLM\...exe [@ = exefile]—“%1” %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/05/06 15:12:33 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{CBE607BF-35D6-4C3B-AC18-4E3600E933C6}
[2012/05/06 15:12:23 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{598A74CC-F3AC-4963-AF35-F014B23EDD25}
[2012/05/05 23:04:35 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{5089F7CF-3D48-4226-B511-8164A1DEAF34}
[2012/05/05 23:04:25 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{53B17351-4B2C-452B-AD46-4EA9BDDA7112}
[2012/05/05 11:04:01 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{3699CF1A-ACD9-4BA3-ABA5-A97C1EF52B62}
[2012/05/05 11:03:51 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{23D0E566-DD70-4241-A799-848F9B89D5A0}
[2012/05/05 10:47:35 | 000,000,000 | -HSD | C]—C:\Config.Msi
[2012/05/05 10:45:05 | 000,191,264 |——| C] (Sun Microsystems, Inc.)—C:\Windows\SysNative\javaws.exe
[2012/05/05 10:45:05 | 000,172,320 |——| C] (Sun Microsystems, Inc.)—C:\Windows\SysNative\javaw.exe
[2012/05/05 10:45:05 | 000,172,320 |——| C] (Sun Microsystems, Inc.)—C:\Windows\SysNative\java.exe
[2012/05/05 10:40:52 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\Secunia PSI
[2012/05/05 00:11:30 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Secunia
[2012/05/04 23:55:44 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Roaming\SUPERAntiSpyware.com
[2012/05/04 23:55:22 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2012/05/04 23:55:20 | 000,000,000 |—-D | C]—C:\ProgramData\SUPERAntiSpyware.com
[2012/05/04 23:55:20 | 000,000,000 |—-D | C]—C:\Program Files\SUPERAntiSpyware
[2012/05/04 22:32:37 | 000,000,000 |—-D | C]—C:\Program Files (x86)\ESET
[2012/05/04 22:31:28 | 000,000,000 |—-D | C]—C:\Users\Morgan\Desktop\SWF
[2012/05/04 12:06:41 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{DB9ECC98-5A43-4149-AF1C-7BDB3F09D447}
[2012/05/04 12:06:30 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{4585AC07-6EC4-4263-A13A-8F92D3147132}
[2012/05/03 15:48:27 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{5C041A27-9830-4C1C-A0BB-755A2F7B07EF}
[2012/05/03 15:48:17 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{0055BCD4-FAF0-4E66-B824-01111540F366}
[2012/05/03 15:47:36 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{ED11083F-CF31-47B1-AE3E-75EB4932B621}
[2012/05/02 21:35:29 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Ralink
[2012/05/02 21:13:59 | 002,240,864 |——| C] (Ralink Technology, Corp.)—C:\Windows\SysNative\drivers\rt2860.sys
[2012/05/02 19:58:08 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{BA7DB6FD-06C5-4C9B-A322-1DD9AA968718}
[2012/05/02 19:57:58 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{CAAAC634-5AFD-41E6-9EA1-EF520BAE924F}
[2012/05/01 14:43:53 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{9FC9B034-03EF-48AD-AB32-CE87A63974D0}
[2012/05/01 14:43:43 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{E1F3F10F-0240-465B-B3E2-1793A030E4BE}
[2012/04/30 21:12:56 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{6AD05474-A50C-400A-9EEA-2AE3F8E13739}
[2012/04/30 21:12:46 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{95C0D37E-5F18-417E-B627-5772253D5C49}
[2012/04/30 20:02:18 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{1986AE41-1ECC-4379-AB9F-DE661064859E}
[2012/04/29 20:56:45 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{E8184A4A-7391-4E90-9126-D11281B0153B}
[2012/04/29 20:56:35 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{12B6B5BC-00E2-4263-B897-FD52DAC2BE79}
[2012/04/29 00:02:08 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Roaming\Ytox
[2012/04/29 00:02:08 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Roaming\Egwaeh
[2012/04/28 21:57:28 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{00F7E146-A7BB-4B2D-A59F-BE2917718C7E}
[2012/04/28 21:57:18 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{AEC4917B-02EF-47E1-863A-CDE1C68E992A}
[2012/04/28 11:17:14 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{FD2DE051-83B1-439D-82B1-73BD147382FC}
[2012/04/27 21:24:05 | 000,000,000 |—-D | C]—C:\Windows\SysWow64\20-20 Technologies
[2012/04/27 21:14:15 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{5E543120-5A93-449F-AFF8-A0EBED340555}
[2012/04/27 21:14:05 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{1F77E63F-137C-4C86-B279-FABC7119AF65}
[2012/04/26 14:41:04 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{D70C7F9F-73BD-451C-9981-C14B79BB1DB3}
[2012/04/26 14:40:54 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{589AA9E6-5BEB-432C-A704-036B4711ADFE}
[2012/04/25 20:36:47 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/04/25 20:36:10 | 000,000,000 |—-D | C]—C:\Program Files\iPod
[2012/04/25 20:36:09 | 000,000,000 |—-D | C]—C:\Program Files\iTunes
[2012/04/25 20:34:37 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Roaming\Apple Computer
[2012/04/25 20:34:37 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\Apple Computer
[2012/04/25 20:34:14 | 000,126,312 |——| C] (GEAR Software Inc.)—C:\Windows\SysNative\GEARAspi64.dll
[2012/04/25 20:34:14 | 000,107,368 |——| C] (GEAR Software Inc.)—C:\Windows\SysWow64\GEARAspi.dll
[2012/04/25 20:34:14 | 000,034,152 |——| C] (GEAR Software Inc.)—C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2012/04/25 20:34:14 | 000,000,000 |—-D | C]—C:\Windows\SysNative\DRVSTORE
[2012/04/25 20:33:44 | 000,000,000 |—-D | C]—C:\Program Files (x86)\iTunes
[2012/04/25 20:33:44 | 000,000,000 |—-D | C]—C:\ProgramData\Apple Computer
[2012/04/25 20:33:44 | 000,000,000 |—-D | C]—C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2012/04/25 20:33:23 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\Apple
[2012/04/25 20:33:22 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Apple Software Update
[2012/04/25 20:33:05 | 000,000,000 |—-D | C]—C:\Program Files\Common Files\Apple
[2012/04/25 20:32:53 | 000,000,000 |—-D | C]—C:\Program Files\Bonjour
[2012/04/25 20:32:53 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Bonjour
[2012/04/25 20:32:44 | 000,000,000 |—-D | C]—C:\ProgramData\Apple
[2012/04/25 20:32:44 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Apple
[2012/04/25 15:44:56 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{57007C37-3AB4-476D-AB4D-8C41E94CCCD1}
[2012/04/25 15:44:46 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{821A3E52-B5DC-4908-90FC-B79F2C0E22BB}
[2012/04/25 15:35:13 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{14B00204-4EA6-4FD9-8FD7-F029533FEB68}
[2012/04/25 15:35:03 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{ABFC0AEC-626B-4066-A127-4C29DC5B8F91}
[2012/04/24 14:40:13 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{D34B1909-AB39-4164-A3D6-D468B75DB694}
[2012/04/24 14:40:02 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{30C25BE4-732C-42AC-AF97-24B8815A6BCE}
[2012/04/23 22:03:37 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{3064A5FD-CEAA-4884-B373-B43B3ADCB1C3}
[2012/04/23 22:03:27 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{DDFCE79F-E413-433A-8A90-7FB0F3EAD784}
[2012/04/23 21:33:23 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{2A591349-DFED-4387-99A8-8A965C765A6A}
[2012/04/23 21:33:13 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{149CC3BA-AA5B-4AB3-B428-4BD7130526EC}
[2012/04/23 14:26:49 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{E17F8C0D-98E6-4E20-82F6-724B9E70BCB8}
[2012/04/22 16:48:00 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{3327175C-0858-49EF-ADF3-E8E76B22B961}
[2012/04/22 16:47:50 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{E67F253F-047A-41DB-ABB2-EF27343535BD}
[2012/04/21 22:46:39 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{9255D83E-EFB8-471A-8AF4-AFF83512DAC1}
[2012/04/21 22:46:29 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{CA81A84F-A671-457A-A33B-958303C5462A}
[2012/04/21 18:36:40 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{7B672AB9-595E-4BDE-A25B-A00EB5524531}
[2012/04/21 15:11:42 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{0135B4D7-B3CB-4055-9D1E-5B77149C5D7C}
[2012/04/20 19:17:30 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{2A7A90D5-8817-4CF3-9D8D-1130ED9C2439}
[2012/04/20 19:17:20 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{FECD9621-AFD9-42F3-A349-784865DEAA33}
[2012/04/19 15:52:06 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{A59DC8C5-C0D7-4552-8F90-C3C952138814}
[2012/04/19 15:51:56 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{F8E8CEF9-760B-44FC-8207-1BCB14353F4E}
[2012/04/18 19:07:04 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{D87EC0A5-357D-4E7D-87FA-F9C00E60D8CC}
[2012/04/18 19:06:54 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{8F5634E6-DA82-4759-92E5-959385203C50}
[2012/04/16 22:37:30 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{C5B22872-7F07-440B-83C8-780F21A97579}
[2012/04/16 22:37:20 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{CCFB83AC-BAE9-42D6-B376-A2519B113132}
[2012/04/16 19:24:44 | 000,000,000 |—-D | C]—C:\Windows\da
[2012/04/16 19:21:43 | 000,000,000 |—-D | C]—C:\Windows\pss
[2012/04/16 19:19:38 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{A780B0BF-B2E1-45D4-9B74-E117722F7636}
[2012/04/16 19:19:28 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{C9B0CDB2-72CB-49F7-8356-93A82A0C8889}
[2012/04/14 16:28:12 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{77EC8110-DDBF-4EDC-B4E0-0C58045A0692}
[2012/04/13 21:00:05 | 008,769,696 |——| C] (Adobe Systems Incorporated)—C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/04/13 20:02:24 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{0B444B9F-2628-41FD-8745-01912A196914}
[2012/04/12 18:17:27 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Winamp
[2012/04/12 18:17:27 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Synthesoft
[2012/04/12 18:17:26 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Psychedelic Screen Saver
[2012/04/12 18:17:26 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Psychedelic Screen Saver
[2012/04/12 18:16:57 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Psych
[2012/04/12 18:16:30 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDSpectrum Pro
[2012/04/12 18:16:25 | 000,000,000 |—-D | C]—C:\Program Files (x86)\CDSpectrum Pro
[2012/04/12 18:13:59 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Psychedelix Saver II
[2012/04/12 18:13:58 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Psychedelix Saver II
[2012/04/12 14:38:19 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{54F304BE-3F75-49B1-8B80-5E150FBE9884}
[2012/04/11 21:46:36 | 000,096,256 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\mshtmled.dll
[2012/04/11 21:46:36 | 000,072,704 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\mshtmled.dll
[2012/04/11 21:46:34 | 002,311,168 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\jscript9.dll
[2012/04/11 21:46:34 | 000,716,800 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\jscript.dll
[2012/04/11 21:46:34 | 000,248,320 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\ieui.dll
[2012/04/11 21:46:34 | 000,237,056 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\url.dll
[2012/04/11 21:46:34 | 000,231,936 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\url.dll
[2012/04/11 21:46:34 | 000,176,640 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\ieui.dll
[2012/04/11 21:46:33 | 001,493,504 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\inetcpl.cpl
[2012/04/11 21:46:33 | 001,427,456 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\inetcpl.cpl
[2012/04/11 21:46:33 | 000,818,688 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\jscript.dll
[2012/04/11 21:46:16 | 005,559,152 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\ntoskrnl.exe
[2012/04/11 21:46:16 | 003,968,368 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\ntkrnlpa.exe
[2012/04/11 21:46:16 | 003,913,072 |——| C] (Microsoft Corporation)—C:\Windows\SysWow64\ntoskrnl.exe
[2012/04/11 21:44:27 | 000,081,408 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\imagehlp.dll
[2012/04/11 21:44:27 | 000,023,408 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\drivers\fs_rec.sys
[2012/04/11 21:44:25 | 000,220,672 |——| C] (Microsoft Corporation)—C:\Windows\SysNative\wintrust.dll
[2012/04/11 19:34:20 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{421FC9BA-2B0C-4340-BB03-771DADDF3415}
[2012/04/11 15:04:06 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{D1C2F964-64A9-46FF-A174-83D2F30DCAED}
[2012/04/10 20:51:22 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Roaming\PopSoft
[2012/04/10 20:51:22 | 000,000,000 |—-D | C]—C:\ProgramData\PopSoft
[2012/04/10 20:50:08 | 000,000,000 |—-D | C]—C:\Program Files (x86)\DMXControl
[2012/04/10 14:42:43 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{4EE3BB5E-03A2-4A03-9DCE-569498A73819}
[2012/04/09 12:52:34 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{F79A234D-4F02-4414-8B87-6178DD0317BC}
[2012/04/08 10:41:54 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{2FDF18A9-4957-411D-A9BD-259FC8E3FCFE}
[2012/04/06 15:54:29 | 000,000,000 |—-D | C]—C:\Users\Morgan\AppData\Local\{0F04B131-0A59-4C69-B11C-F3D3FB370FF9}

========== Files - Modified Within 30 Days ==========

[2012/05/06 15:16:01 | 000,032,064 | -H—| M] ()—C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/06 15:16:01 | 000,032,064 | -H—| M] ()—C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/06 15:08:19 | 000,000,404 |——| M] ()—C:\Windows\tasks\FreeFileViewerUpdateChecker.job
[2012/05/06 15:08:17 | 000,067,584 |—S- | M] ()—C:\Windows\bootstat.dat
[2012/05/06 15:08:07 | 3180,220,416 | -HS- | M] ()—C:\hiberfil.sys
[2012/05/06 09:18:29 | 000,000,336 |——| M] ()—C:\Windows\tasks\HPCeeScheduleForMorgan.job
[2012/05/06 00:00:00 | 000,000,830 |——| M] ()—C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/05/05 10:48:33 | 000,000,994 |——| M] ()—C:\Users\Public\Desktop\VLC media player.lnk
[2012/05/05 10:45:01 | 000,525,544 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysNative\deployJava1.dll
[2012/05/05 10:45:01 | 000,191,264 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysNative\javaws.exe
[2012/05/05 10:45:01 | 000,172,320 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysNative\javaw.exe
[2012/05/05 10:45:01 | 000,172,320 |——| M] (Sun Microsystems, Inc.)—C:\Windows\SysNative\java.exe
[2012/05/04 23:55:22 | 000,001,808 |——| M] ()—C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/05/04 23:52:25 | 000,000,198 |——| M] ()—C:\Users\Morgan\Desktop\Spywarefri.dk - Vejledning til analyse logs.url
[2012/05/04 23:00:15 | 000,419,488 |——| M] (Adobe Systems Incorporated)—C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/05/04 23:00:15 | 000,070,304 |——| M] (Adobe Systems Incorporated)—C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/05/04 23:00:07 | 008,769,696 |——| M] (Adobe Systems Incorporated)—C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/05/02 21:48:42 | 001,326,960 |——| M] ()—C:\Windows\SysNative\PerfStringBackup.INI
[2012/05/02 21:48:42 | 000,632,028 |——| M] ()—C:\Windows\SysNative\perfh009.dat
[2012/05/02 21:48:42 | 000,494,444 |——| M] ()—C:\Windows\SysNative\perfh006.dat
[2012/05/02 21:48:42 | 000,116,116 |——| M] ()—C:\Windows\SysNative\perfc009.dat
[2012/05/02 21:48:42 | 000,090,722 |——| M] ()—C:\Windows\SysNative\perfc006.dat
[2012/05/02 20:27:35 | 000,001,109 |——| M] ()—C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/05/02 20:01:18 | 000,001,912 |——| M] ()—C:\Windows\epplauncher.mif
[2012/05/02 20:01:10 | 001,320,502 |——| M] ()—C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/30 21:03:06 | 004,251,923 |——| M] ()—C:\Users\Morgan\Documents\Performer_manual_(841004).pdf
[2012/04/25 20:36:47 | 000,001,783 |——| M] ()—C:\Users\Public\Desktop\iTunes.lnk
[2012/04/12 18:17:27 | 000,001,021 |——| M] ()—C:\Users\Public\Desktop\CD Spectrum Pro.lnk
[2012/04/12 18:17:27 | 000,000,947 |——| M] ()—C:\Users\Morgan\Desktop\Psych SS - Configure.LNK
[2012/04/12 18:14:21 | 000,060,328 |——| M] ()—C:\Windows\Psych_Uninstall.exe
[2012/04/12 14:41:23 | 000,002,019 |——| M] ()—C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012/04/10 21:41:40 | 000,008,884 |——| M] ()—C:\Users\Morgan\Documents\cc_20120410_214137.reg
[2012/04/10 21:40:56 | 000,000,822 |——| M] ()—C:\Users\Public\Desktop\CCleaner.lnk

========== Files Created - No Company Name ==========

[2012/05/05 00:11:31 | 000,001,069 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
[2012/05/04 23:55:22 | 000,001,808 |——| C] ()—C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/05/04 23:52:25 | 000,000,198 |——| C] ()—C:\Users\Morgan\Desktop\Spywarefri.dk - Vejledning til analyse logs.url
[2012/05/02 21:37:31 | 000,014,051 |——| C] ()—C:\Windows\SysWow64\RaCoInst.dat
[2012/05/02 21:37:31 | 000,014,051 |——| C] ()—C:\Windows\SysNative\RaCoInst.dat
[2012/05/02 20:27:35 | 000,001,109 |——| C] ()—C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/05/02 20:01:18 | 000,001,912 |——| C] ()—C:\Windows\epplauncher.mif
[2012/04/30 21:03:06 | 004,251,923 |——| C] ()—C:\Users\Morgan\Documents\Performer_manual_(841004).pdf
[2012/04/25 20:36:47 | 000,001,783 |——| C] ()—C:\Users\Public\Desktop\iTunes.lnk
[2012/04/25 20:33:23 | 000,002,519 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/04/16 19:23:32 | 000,002,514 |——| C] ()—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2012/04/12 18:17:27 | 000,000,947 |——| C] ()—C:\Users\Morgan\Desktop\Psych SS - Configure.LNK
[2012/04/12 18:17:26 | 000,446,464 |——| C] ()—C:\Windows\SysWow64\PSYCH.SCR
[2012/04/12 18:16:31 | 000,001,021 |——| C] ()—C:\Users\Public\Desktop\CD Spectrum Pro.lnk
[2012/04/12 18:16:30 | 000,351,633 |——| C] ()—C:\Windows\Synthhelp.CHM
[2012/04/12 18:16:30 | 000,114,688 |——| C] ()—C:\Windows\PKCRegD.exe
[2012/04/12 18:16:30 | 000,049,152 |——| C] ()—C:\Windows\DelCDSP.exe
[2012/04/12 18:13:58 | 000,060,328 |——| C] ()—C:\Windows\Psych_Uninstall.exe
[2012/04/12 14:41:23 | 000,002,019 |——| C] ()—C:\Users\Public\Desktop\Adobe Reader X.lnk
[2012/04/10 21:41:39 | 000,008,884 |——| C] ()—C:\Users\Morgan\Documents\cc_20120410_214137.reg
[2012/04/10 20:50:11 | 000,001,061 |——| C] ()—C:\Users\Morgan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DMXControl.lnk
[2012/03/15 19:40:09 | 000,000,094 |——| C] ()—C:\Users\Morgan\AppData\Local\fusioncache.dat
[2012/03/14 19:57:49 | 000,000,064 |——| C] ()—C:\Windows\wininit.ini
[2012/03/12 16:34:44 | 000,004,096 |——| C] ()—C:\Windows\d3dx.dat
[2012/01/25 19:04:55 | 000,000,301 |——| C] ()—C:\Windows\SIERRA.INI
[2011/12/03 21:52:46 | 000,066,872 |——| C] ()—C:\Windows\SysWow64\PnkBstrA.exe
[2011/12/03 21:52:38 | 000,183,112 |——| C] ()—C:\Windows\SysWow64\PnkBstrB.exe
[2011/10/31 19:06:32 | 000,007,626 |——| C] ()—C:\Users\Morgan\AppData\Local\Resmon.ResmonCfg
[2011/10/30 17:22:49 | 000,001,134 |——| C] ()—C:\Windows\eReg.dat
[2011/10/28 22:52:12 | 001,320,502 |——| C] ()—C:\Windows\SysWow64\PerfStringBackup.INI
[2011/06/18 10:52:00 | 000,000,000 |——| C] ()—C:\Windows\ativpsrm.bin
[2011/06/18 10:43:33 | 000,003,054 |——| C] ()—C:\Windows\SysWow64\atipblup.dat
[2011/06/18 10:38:43 | 000,000,056 | -H—| C] ()—C:\Windows\SysWow64\ezsidmv.dat
[2011/05/28 22:48:22 | 000,000,068 |——| C] ()—C:\Windows\SysWow64\ezdigsgn.dat
[2011/04/15 11:05:50 | 000,218,304 |——| C] ()—C:\Windows\SysWow64\igfcg600m.bin
[2011/04/15 11:05:48 | 000,963,116 |——| C] ()—C:\Windows\SysWow64\igkrng600.bin
[2011/04/15 10:59:48 | 000,056,832 |——| C] ()—C:\Windows\SysWow64\igdde32.dll
[2011/04/15 10:33:40 | 013,359,616 |——| C] ()—C:\Windows\SysWow64\ig4icd32.dll
[2011/03/04 06:04:58 | 000,007,736 |——| C] ()—C:\Windows\hpDSTRES.DLL
[2011/01/12 22:03:20 | 000,003,155 |——| C] ()—C:\Windows\SysWow64\atipblag.dat
[2011/01/08 03:40:40 | 000,145,804 |——| C] ()—C:\Windows\SysWow64\igcompkrng600.bin
[2010/12/17 04:26:22 | 000,066,856 |——| C] ()—C:\Windows\SysWow64\SynTPEnhPS.dll

========== LOP Check ==========

[2012/05/02 20:19:13 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\DAEMON Tools Lite
[2012/02/27 19:15:23 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\dingogames
[2011/10/31 00:00:08 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\DVDVideoSoft
[2011/10/30 23:34:39 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\DVDVideoSoftIEHelpers
[2012/05/03 15:48:05 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Egwaeh
[2012/03/11 11:31:58 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Epson
[2012/01/19 21:09:11 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Flood Light Games
[2012/01/29 22:27:50 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\FreeFileViewer
[2011/10/31 00:17:26 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\FreeYoutubeToMP3TURBOConverter
[2012/03/02 23:32:45 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Gamelab
[2011/10/31 16:09:23 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\IDT
[2011/12/27 21:36:56 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\ImgBurn
[2012/03/11 12:24:49 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\IronCode
[2011/12/03 21:51:56 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Leadertech
[2011/11/14 22:36:20 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\PlayFirst
[2012/04/10 20:51:22 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\PopSoft
[2012/03/11 18:44:39 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Sierra Entertainment
[2012/04/30 21:56:26 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\SoftGrid Client
[2012/04/06 16:12:54 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Spotify
[2011/10/28 20:33:55 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Synaptics
[2012/05/03 16:10:26 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\TeamViewer
[2011/12/31 13:38:55 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\TomTom
[2011/10/29 21:39:10 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\TP
[2012/04/21 15:56:36 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Ubisoft
[2011/11/08 17:48:36 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Windows Live Writer
[2012/04/29 00:02:08 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\Ytox
[2011/10/29 10:56:27 | 000,000,000 |—-D | M]—C:\Users\Morgan\AppData\Roaming\_MDLogs
[2012/05/06 15:08:19 | 000,000,404 |——| M] ()—C:\Windows\Tasks\FreeFileViewerUpdateChecker.job
[2012/05/05 00:35:06 | 000,032,550 |——| M] ()—C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

OTL Extras logfile created on: 5/6/2012 3:15:02 PM - Run 1
OTL by OldTimer - Version 3.2.42.2   Folder = C:\Users\Morgan\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

3.95 Gb Total Physical Memory | 2.16 Gb Available Physical Memory | 54.79% Memory free
7.90 Gb Paging File | 5.86 Gb Available in Paging File | 74.25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 681.25 Gb Total Space | 508.48 Gb Free Space | 74.64% Space Free | Partition Type: NTFS
Drive D: | 17.10 Gb Total Space | 1.81 Gb Free Space | 10.58% Space Free | Partition Type: NTFS
Drive F: | 98.87 Mb Total Space | 88.60 Mb Free Space | 89.62% Space Free | Partition Type: FAT32

Computer Name: MORGAN-HP | User Name: Morgan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut]—C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile]—C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
htmlfile [edit]—Reg Error: Key error.
htmlfile [print]—rundll32.exe %windir%\system32\mshtml.dll,PrintHTML “%1”
inffile [install]—%SystemRoot%\System32\InfDefaultInstall.exe “%1” (Microsoft Corporation)
InternetShortcut [open]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\ieframe.dll”,OpenURL %l (Microsoft Corporation)
InternetShortcut [print]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\mshtml.dll”,PrintHTML “%1” (Microsoft Corporation)
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—“C:\Program Files (x86)\File Type Assistant\tsassist.exe” “%1” (Trusted Software ApS)
Directory [AddToPlaylistVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—playlist-enqueue “%1” ()
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—no-playlist-enqueue “%1” ()
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
cplfile [cplopen]—%SystemRoot%\System32\control.exe “%1”,%* (Microsoft Corporation)
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
htmlfile [edit]—Reg Error: Key error.
htmlfile [print]—rundll32.exe %windir%\system32\mshtml.dll,PrintHTML “%1”
inffile [install]—%SystemRoot%\System32\InfDefaultInstall.exe “%1” (Microsoft Corporation)
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—“C:\Program Files (x86)\File Type Assistant\tsassist.exe” “%1” (Trusted Software ApS)
Directory [AddToPlaylistVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—playlist-enqueue “%1” ()
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—no-playlist-enqueue “%1” ()
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
“cval” = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
“VistaSp1” = 28 4D B2 76 41 04 CA 01 [binary data]
“AntiVirusOverride” = 0
“AntiSpywareOverride” = 0
“FirewallOverride” = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
“{0B58A931-1AF1-41D6-83D9-CC0923880793}” = lport=7417 | protocol=17 | dir=in | name=netusb share center udp port |
“{1780E014-61E5-4E63-A8E2-E22CF878A886}” = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{1ED7D6B1-8A54-4A4D-AEF8-67B5E9882F92}” = rport=10243 | protocol=6 | dir=out | app=system |
“{204F2497-3FD4-41F9-978B-644E23F5A61A}” = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
“{20663E67-71F2-43C9-9BCC-04FEBEB74331}” = rport=445 | protocol=6 | dir=out | app=system |
“{23ABE683-8821-4DAF-84EC-89D8565BB426}” = rport=137 | protocol=17 | dir=out | app=system |
“{2679BF01-527C-41E7-841C-06D2F5D2AC48}” = rport=139 | protocol=6 | dir=out | app=system |
“{29447076-C84C-4B18-ACD4-E77430B2B35A}” = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
“{3537C6D9-B973-4DA8-968F-691E73BE8D66}” = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
“{3AD418AF-5B28-401E-855E-0AF2B257F35F}” = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{3F58F83E-FF9F-49AF-94B6-B87C01F8211D}” = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
“{47112ABE-D771-478E-8034-8D6B2F0A010B}” = lport=445 | protocol=6 | dir=in | app=system |
“{497EB291-B0EA-414B-AD03-FAA575CA27EF}” = rport=138 | protocol=17 | dir=out | app=system |
“{49A57AAA-7855-4781-ABCC-F8811A9BA1A9}” = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
“{59F333B5-08D1-492F-8073-4E10A97C1251}” = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{5B69DE91-FEF8-4427-AB07-1A76B2400912}” = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
“{61D2E461-F2A0-4C78-BD5C-B38D3774ED32}” = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
“{66802C64-8163-40EC-B6CC-C75F3D72F3E3}” = lport=137 | protocol=17 | dir=in | app=system |
“{70A736D9-9A16-47AC-83EF-27B34D47DE48}” = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
“{841BB3E5-3A55-425D-B2E5-A8CBDF8783B7}” = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
“{89F597D9-AB6C-413B-A218-F2DA89AB0A90}” = lport=5355 | p

Her er resten

OTL Extras logfile created on: 5/6/2012 3:15:02 PM - Run 1
OTL by OldTimer - Version 3.2.42.2   Folder = C:\Users\Morgan\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

3.95 Gb Total Physical Memory | 2.16 Gb Available Physical Memory | 54.79% Memory free
7.90 Gb Paging File | 5.86 Gb Available in Paging File | 74.25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 681.25 Gb Total Space | 508.48 Gb Free Space | 74.64% Space Free | Partition Type: NTFS
Drive D: | 17.10 Gb Total Space | 1.81 Gb Free Space | 10.58% Space Free | Partition Type: NTFS
Drive F: | 98.87 Mb Total Space | 88.60 Mb Free Space | 89.62% Space Free | Partition Type: FAT32

Computer Name: MORGAN-HP | User Name: Morgan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut]—C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile]—C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
htmlfile [edit]—Reg Error: Key error.
htmlfile [print]—rundll32.exe %windir%\system32\mshtml.dll,PrintHTML “%1”
inffile [install]—%SystemRoot%\System32\InfDefaultInstall.exe “%1” (Microsoft Corporation)
InternetShortcut [open]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\ieframe.dll”,OpenURL %l (Microsoft Corporation)
InternetShortcut [print]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\mshtml.dll”,PrintHTML “%1” (Microsoft Corporation)
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—“C:\Program Files (x86)\File Type Assistant\tsassist.exe” “%1” (Trusted Software ApS)
Directory [AddToPlaylistVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—playlist-enqueue “%1” ()
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—no-playlist-enqueue “%1” ()
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
cplfile [cplopen]—%SystemRoot%\System32\control.exe “%1”,%* (Microsoft Corporation)
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
htmlfile [edit]—Reg Error: Key error.
htmlfile [print]—rundll32.exe %windir%\system32\mshtml.dll,PrintHTML “%1”
inffile [install]—%SystemRoot%\System32\InfDefaultInstall.exe “%1” (Microsoft Corporation)
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—“C:\Program Files (x86)\File Type Assistant\tsassist.exe” “%1” (Trusted Software ApS)
Directory [AddToPlaylistVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—playlist-enqueue “%1” ()
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC]—“C:\Program Files (x86)\VideoLAN\VLC\vlc.exe”—started-from-file—no-playlist-enqueue “%1” ()
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
“cval” = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
“VistaSp1” = 28 4D B2 76 41 04 CA 01 [binary data]
“AntiVirusOverride” = 0
“AntiSpywareOverride” = 0
“FirewallOverride” = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
“EnableFirewall” = 1
“DisableNotifications” = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
“{0B58A931-1AF1-41D6-83D9-CC0923880793}” = lport=7417 | protocol=17 | dir=in | name=netusb share center udp port |
“{1780E014-61E5-4E63-A8E2-E22CF878A886}” = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{1ED7D6B1-8A54-4A4D-AEF8-67B5E9882F92}” = rport=10243 | protocol=6 | dir=out | app=system |
“{204F2497-3FD4-41F9-978B-644E23F5A61A}” = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
“{20663E67-71F2-43C9-9BCC-04FEBEB74331}” = rport=445 | protocol=6 | dir=out | app=system |
“{23ABE683-8821-4DAF-84EC-89D8565BB426}” = rport=137 | protocol=17 | dir=out | app=system |
“{2679BF01-527C-41E7-841C-06D2F5D2AC48}” = rport=139 | protocol=6 | dir=out | app=system |
“{29447076-C84C-4B18-ACD4-E77430B2B35A}” = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
“{3537C6D9-B973-4DA8-968F-691E73BE8D66}” = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
“{3AD418AF-5B28-401E-855E-0AF2B257F35F}” = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{3F58F83E-FF9F-49AF-94B6-B87C01F8211D}” = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
“{47112ABE-D771-478E-8034-8D6B2F0A010B}” = lport=445 | protocol=6 | dir=in | app=system |
“{497EB291-B0EA-414B-AD03-FAA575CA27EF}” = rport=138 | protocol=17 | dir=out | app=system |
“{49A57AAA-7855-4781-ABCC-F8811A9BA1A9}” = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
“{59F333B5-08D1-492F-8073-4E10A97C1251}” = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{5B69DE91-FEF8-4427-AB07-1A76B2400912}” = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
“{61D2E461-F2A0-4C78-BD5C-B38D3774ED32}” = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
“{66802C64-8163-40EC-B6CC-C75F3D72F3E3}” = lport=137 | protocol=17 | dir=in | app=system |
“{70A736D9-9A16-47AC-83EF-27B34D47DE48}” = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
“{841BB3E5-3A55-425D-B2E5-A8CBDF8783B7}” = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
“{89F597D9-AB6C-413B-A218-F2DA89AB0A90}” = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{92341B2B-4B8B-4C13-8101-E8CB5F15EE84}” = lport=139 | protocol=6 | dir=in | app=system |
“{AA8825EF-5555-43EB-B7E7-4DBC6D68F0F5}” = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
“{AA9CAED1-B90F-4FA9-8B5E-2F2B58C10493}” = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
“{ABD1A116-EEEF-4EDE-9917-8C410C635897}” = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
“{AE2AF07B-3548-4AEA-8BC0-754CD9FEE0C0}” = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
“{B22CAE18-3089-4D02-A0A0-1F876AC051B7}” = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
“{C155C3D0-805E-4B65-92CE-F775A065E53D}” = lport=138 | protocol=17 | dir=in | app=system |
“{C3E3203C-CB34-4D7D-A091-32DCD9DA5714}” = lport=2869 | protocol=6 | dir=in | app=system |
“{C682635D-144C-4D49-9CC1-243E9E673A62}” = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
“{D34D9EA0-7232-416E-B2A9-12509CD86F03}” = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{F4361063-D9F8-4EE9-BE1E-F9466D42E9FC}” = lport=10243 | protocol=6 | dir=in | app=system |
“{F91CC68E-79D8-41E8-B10D-9EF467C494D1}” = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
“{FC25C033-8AC6-4E3F-A965-E6F870F0A271}” = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
“{06C21AED-402B-4E3D-82AB-0A1F2301460F}” = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\anno4.exe |
“{11EC2AE2-BF8A-496C-9DC7-E463FF2F7737}” = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
“{147AA481-EADE-4398-93CA-FBD321C8EE51}” = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
“{1EDC7443-24F0-4DC6-A32E-7E2B6BEA3DF8}” = protocol=6 | dir=out | app=system |
“{23E554B3-16DF-4FED-884D-1A4EB7F34A18}” = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
“{27271618-318E-40C5-A70D-0EE93A9F4646}” = dir=in | app=c:\windows\system32\ezsharedsvchost.exe |
“{277D09EB-BB42-44FF-96AE-CC028B848769}” = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
“{2AB0FAAB-E402-483D-98CE-EE7C8ECCC699}” = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
“{2E73E6F2-B3F4-44EA-8E94-BEB1C6E30E5A}” = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\the settlers - rise of an empire\base\bin\settlers6.exe |
“{2F155D9C-1206-4B90-827D-D93FDDE9ECC8}” = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
“{321569D3-179C-4B88-AC23-3936CADCF457}” = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
“{33641817-60F2-4689-A696-42C750DC4DF7}” = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
“{345081FA-3EB6-4AC9-B11A-C68F0211881E}” = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
“{3701F857-CF0C-46B6-B403-AC6FB1D405E9}” = protocol=6 | dir=in | app=c:\program files (x86)\zyxel\netusb share center\share center.exe |
“{3A311ED6-9A79-454D-A1A8-3AA2DA5E6C9C}” = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
“{3EF4A5A4-8911-4FF8-83A6-A541E5F6D064}” = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
“{41B14BDE-D834-431F-B641-C97CB0DE2DAA}” = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
“{47207F0C-E334-44A9-91A0-281582F42E93}” = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe |
“{4F24F624-19CA-4F18-B1FF-A9F7BC542764}” = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
“{5948A938-D453-4604-BE34-DF2495BC9394}” = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
“{64D3FB5F-A6A8-4601-AFCF-747EC7C9A870}” = dir=in | app=c:\program files (x86)\freefileviewer\ffvcheckforupdates.exe |
“{7F08BE58-927F-4EEB-9FCE-93805C0A88C3}” = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
“{840848E5-BB9B-4E65-B039-EE6C9E7D791A}” = protocol=17 | dir=in | app=c:\program files (x86)\zyxel\netusb share center\share center.exe |
“{84B74CA5-BF08-426E-8E62-D6436C61CE84}” = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
“{857A3C9B-7D0E-4AA1-B0A7-C74737510F54}” = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
“{86158200-8A52-4626-86BA-1E4E84AE1022}” = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
“{89198CB1-6175-4524-A259-342FFC0234CF}” = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
“{8E5F5166-13FA-4BA7-8BB5-6D830D591C6E}” = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
“{91A3CA91-F9AD-4C81-80CE-0D7EF4D7EBD4}” = dir=in | app=c:\program files (x86)\easybits for kids\ezdesktop.exe |
“{9576704F-33AD-43E9-B09D-E365D58E85EE}” = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
“{98D8BF5E-B472-4425-8355-88CEE0416F47}” = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
“{99C1303E-6139-4833-AF26-2B0C2AB309B2}” = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
“{A56BA8D2-0542-4A2D-904B-13BBCC2BEF3F}” = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
“{AF2E6692-2A08-49EB-82B3-F5C00CF8F559}” = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
“{B6D479CB-53AA-4721-B283-B503635C01F4}” = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
“{B7C9CD70-5422-4F8D-883A-5630D2FBBE2E}” = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
“{B88D0349-4360-4CAB-97CB-537F0022CC09}” = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
“{B8A814D3-F7A5-4FE9-92BA-23E431DEC797}” = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
“{BCBA747B-FB87-464A-81BE-C13EB0AA2DE4}” = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\the settlers - rise of an empire\base\bin\settlers6.exe |
“{C2ECA1D2-9503-43CB-8EE6-8E12295F1A02}” = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\anno4.exe |
“{CDFE8AD1-631C-4A98-B46A-541CCEAA119F}” = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
“{D6870DD8-0931-461C-BA98-F17F8548556E}” = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe |
“{D7666B3F-D614-432D-8D61-5D1F0F76801C}” = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
“{D8AF3572-8715-40BB-BF83-353439C20297}” = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
“{D9529FF5-35B4-4164-96BD-06EE2CF62CAF}” = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
“{DC6F4302-1FC0-442C-9C3F-282FDA2E9C63}” = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
“{E2826890-2BC1-47CD-8126-133A4A1EF303}” = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
“{F1A2A1CB-9856-4009-B583-86DEEA87A3F9}” = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
“{FE34BEC7-DB19-4204-84A2-EBE0FE88A0EC}” = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
“TCP Query User{4C02BFD4-C117-412A-8940-65EA876C3A5C}C:\users\morgan\appdata\roaming\spotify\spotify.exe” = protocol=6 | dir=in | app=c:\users\morgan\appdata\roaming\spotify\spotify.exe |
“TCP Query User{4FD6FF40-C160-448E-917F-894D011777C1}C:\program files (x86)\zyxel\netusb share center\share center.exe” = protocol=6 | dir=in | app=c:\program files (x86)\zyxel\netusb share center\share center.exe |
“TCP Query User{5069EDFA-5CD4-4092-B8A4-3C82DFA3278E}C:\program files (x86)\epson software\event manager\eeventmanager.exe” = protocol=6 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
“TCP Query User{56D04CA1-0F7D-4405-8B90-DF584798EFF1}C:\program files (x86)\epson software\event manager\eeventmanager.exe” = protocol=6 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
“TCP Query User{859C4A03-8970-42E3-BFCC-7BE10A0AC3D8}C:\program files (x86)\ea games\command and conquer generals\patchget.dat” = protocol=6 | dir=in | app=c:\program files (x86)\ea games\command and conquer generals\patchget.dat |
“TCP Query User{A31616DC-49C1-4034-A0D7-03147DBFCF32}C:\program files (x86)\ea games\command & conquer generals zero hour\patchget.dat” = protocol=6 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\patchget.dat |
“TCP Query User{B5DB773D-D997-4848-B68D-E7F86493E38D}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe” = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe |
“TCP Query User{C5391B7E-2BC1-4892-9C69-D853535F3537}C:\users\morgan\appdata\roaming\spotify\spotify.exe” = protocol=6 | dir=in | app=c:\users\morgan\appdata\roaming\spotify\spotify.exe |
“TCP Query User{F05488A6-47BD-4B2D-B7E1-C81FA176589A}C:\program files (x86)\java\jre6\bin\java.exe” = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
“UDP Query User{09C218E0-3CF9-413E-A824-B0EC11FA78B0}C:\program files (x86)\ea games\command and conquer generals\patchget.dat” = protocol=17 | dir=in | app=c:\program files (x86)\ea games\command and conquer generals\patchget.dat |
“UDP Query User{214AC653-3B7D-4B89-8A83-EB5956F6F8D0}C:\program files (x86)\java\jre6\bin\java.exe” = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
“UDP Query User{2B614C12-3163-46F1-860C-32A11622371D}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe” = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe |
“UDP Query User{2C16E90C-D1A5-48BB-BFEE-D1DF57A96286}C:\program files (x86)\zyxel\netusb share center\share center.exe” = protocol=17 | dir=in | app=c:\program files (x86)\zyxel\netusb share center\share center.exe |
“UDP Query User{2F99DDFE-EBA7-4EAA-91FF-CF82F11E02D7}C:\users\morgan\appdata\roaming\spotify\spotify.exe” = protocol=17 | dir=in | app=c:\users\morgan\appdata\roaming\spotify\spotify.exe |
“UDP Query User{7F3CD9D3-8A9D-4B94-856A-95C60F2B4245}C:\program files (x86)\ea games\command & conquer generals zero hour\patchget.dat” = protocol=17 | dir=in | app=c:\program files (x86)\ea games\command & conquer generals zero hour\patchget.dat |
“UDP Query User{BA5733D7-2E10-4AF0-AA4E-D605526BEB3B}C:\users\morgan\appdata\roaming\spotify\spotify.exe” = protocol=17 | dir=in | app=c:\users\morgan\appdata\roaming\spotify\spotify.exe |
“UDP Query User{D8F44727-4886-45B8-A680-318FA6C78FCD}C:\program files (x86)\epson software\event manager\eeventmanager.exe” = protocol=17 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
“UDP Query User{F9AEDB08-EB40-4C03-A6A6-7FBAC27A1B38}C:\program files (x86)\epson software\event manager\eeventmanager.exe” = protocol=17 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“{027E5FAB-1476-4C59-AAB4-32EF28520399}” = Windows Live Language Selector
“{1685AE50-97ED-485B-80F6-145071EE14B0}” = Windows Live Remote Service Resources
“{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}” = Windows Live ID Sign-in Assistant
“{26A24AE4-039D-4CA4-87B4-2F86416031FF}” = Java(TM) 6 Update 31 (64-bit)
“{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}” = HP Client Services
“{2C1A6191-9804-4FDC-AB01-6F9183C91A13}” = Windows Live Remote Client Resources
“{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}” = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
“{4C2E49C0-9276-4324-841D-774CCCE5DB48}” = Windows Live Remote Client Resources
“{4F1190CB-24CC-29DC-3C85-CD8CFDDE045F}” = ccc-utility64
“{57F2BD1C-14A3-4785-8E48-2075B96EB2DF}” = Windows Live Remote Service Resources
“{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}” = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
“{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}” = Windows Live Remote Service Resources
“{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}” = Bonjour
“{7AEC844D-448A-455E-A34E-E1032196BBCD}” = Windows Live Remote Service Resources
“{8220EEFE-38CD-377E-8595-13398D740ACE}” = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
“{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}” = Windows Live Remote Client Resources
“{850B8072-2EA7-4EDC-B930-7FE569495E76}” = Windows Live Remote Client Resources
“{90140000-006D-0406-1000-0000000FF1CE}” = Microsoft Office Klik og kør 2010
“{95120000-00B9-0409-1000-0000000FF1CE}” = Microsoft Application Error Reporting
“{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}” = Microsoft Security Client
“{A060182D-CDBE-4AD6-B9B4-860B435D6CBD}” = Windows Live Remote Client Resources
“{B066BF95-890E-A532-A58F-D13E0805DC04}” = ATI Catalyst Install Manager
“{B8AD779A-82DA-4365-A7D0-AD3DCFC55CFF}” = Apple Mobile Device Support
“{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}” = HP Auto
“{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}” = SUPERAntiSpyware
“{CF8FFD12-602B-422D-AF1D-511B411E7632}” = iTunes
“{DA54F80E-261C-41A2-A855-549A144F2F59}” = Windows Live MIME IFilter
“{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}” = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
“{DC911ADF-7B60-40F2-A112-FB1EB6402D07}” = Microsoft Security Client DA-DK Language Pack
“{DF6D988A-EEA0-4277-AAB8-158E086E439B}” = Windows Live Remote Client
“{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}” = Windows Live Remote Service
“{F27D5AAD-758E-460F-964D-6F2E65964C08}” = Microsoft Antimalware Service DA-DK Language Pack
“{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}” = Microsoft .NET Framework 4 Client Profile
“{F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F}” = Windows Live Remote Service Resources
“{F83E9BF0-B8D8-3D68-9E07-7505290C2202}” = Microsoft .NET Framework 4 Client Profile DAN Language Pack
“Adobe Flash Player ActiveX” = Adobe Flash Player 11 ActiveX 64-bit
“CCleaner” = CCleaner
“EPSON SX130 Series” = EPSON SX130 Series Printer Uninstall
“Microsoft .NET Framework 4 Client Profile” = Microsoft .NET Framework 4 Client Profile
“Microsoft .NET Framework 4 Client Profile DAN Language Pack” = Microsoft .NET Framework 4 Client Profile DAN sprogpakke
“Microsoft Security Client” = Microsoft Security Essentials
“SynTPDeinstKey” = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“{00884F14-05BD-4D8E-90E5-1ABF78948CA4}” = Windows Live Mesh
“{0125DB4D-98A0-4DBF-B68A-23BF08FFA6A3}” = Windows Live Messenger
“{01FB4998-33C4-4431-85ED-079E3EEFE75D}” = CyberLink YouCam
“{03A3841B-038A-ADE1-A06A-158EAFF68A9E}” = Catalyst Control Center Profiles Mobile
“{04A92BE5-E791-E374-01CB-B88CBFC1E8D1}” = PX Profile Update
“{06F80017-8F98-4C94-B868-52358569FC32}” = Command & Conquer Generals
“{07FA4960-B038-49EB-891B-9F95930AA544}” = HP Customer Experience Enhancements
“{09B7C7EB-3140-4B5E-842F-9C79A7137139}” = Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger
“{09CF6AF5-9206-4FD7-9B08-BA6819FB47E3}” = Anno 1404
“{09D5AC17-7B7A-D201-7CA6-3F16D99828FB}” = CCC Help Hungarian
“{0B0F231F-CE6A-483D-AA23-77B364F75917}” = Windows Live Installer
“{0C4C413A-9751-48BE-78DC-80248F8B306F}” = CCC Help Japanese
“{0C975FCC-A06E-4CB6-8F54-A9B52CF37781}” = Windows Liven sähköposti
“{0F68E4AE-E8BA-1E4F-0CCA-B8678477A5CC}” = Catalyst Control Center
“{10186F1A-6A14-43DF-A404-F0105D09BB07}” = Windows Live Mail
“{110668B7-54C6-47C9-BAC4-1CE77F156AF5}” = Windows Live Mesh
“{11417707-1F72-4279-95A3-01E0B898BBF5}” = Windows Live Mesh
“{133D9D67-D475-4407-AC3C-D558087B2453}” = Windows Live Movie Maker
“{19BA08F7-C728-469C-8A35-BFBD3633BE08}” = Windows Live Movie Maker
“{1A72337E-D126-4BAF-AC89-E6122DB71866}” = Windows Liven valokuvavalikoima
“{1CFC5FB4-2ACB-870F-043A-638919624D4E}” = CCC Help English
“{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}” = Bing Bar
“{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
“{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}” = Junk Mail filter update
“{200FEC62-3C34-4D60-9CE8-EC372E01C08F}” = Windows Live SOXE Definitions
“{210A03F5-B2ED-4947-B27E-516F50CBB292}” = HP Setup
“{220C7F8C-929D-4F71-9DC7-F7A6823B38E4}” = Windows Live UX Platform Language Pack
“{24507E82-750C-3658-7C50-D5B7A1E27CCC}” = CCC Help Russian
“{24DF33E0-F924-4D0D-9B96-11F28F0D602D}” = Windows Live UX Platform Language Pack
“{25CD4B12-8CC5-433E-B723-C9CB41FA8C5A}” = Windows Live Writer
“{28448C64-6562-6D8C-2F76-8DF399956955}” = Catalyst Control Center Localization All
“{28B9D2D8-4304-483F-AD71-51890A063A74}” = Windows Live Photo Common
“{2902F983-B4C1-44BA-B85D-5C6D52E2C441}” = Windows Live Mesh ActiveX Control for Remote Connections
“{2942CAF8-0934-96C2-5FC0-2ED331D0530A}” = CCC Help Italian
“{2E50E321-4747-4EB5-9ECB-BBC6C3AC0F31}” = Windows Live Writer Resources
“{2F2CA8CC-814B-67C1-CF19-A8A1A2A503C5}” = CCC Help Korean
“{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App” = Update Installer for WildTangent Games App
“{2FB1A282-D3E3-4DE3-A355-9109E5CF7B3F}_is1” = Airport Mania 2 - Wild Trips Premium Edition version R 593
“{3336F667-9049-4D46-98B6-4C743EEBC5B1}” = Windows Live Photo Gallery
“{33F88EFD-5661-7FA7-C638-FD6496A0BF2E}” = CCC Help Swedish
“{34F4D9A4-42C2-4348-BEF4-E553C84549E7}” = Windows Live Photo Gallery
“{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}” = ActiveX-kontroll för fjärranslutningar för Windows Live Mesh
“{39BDD209-5704-480C-9F4A-B69D0370DDBB}” = Windows Live Messenger
“{39F95B0B-A0B7-4FA7-BB6C-197DA2546468}” = Windows Live Mesh
“{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}” = ANNO 1404
“{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}” = Intel(R) Rapid Storage Technology
“{429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA}” = Windows Live Photo Gallery
“{47A8ED18-BABE-42F7-A387-7F8D48F4EC03}” = Mastercam X
“{4A04DB63-8F81-4EF4-9D09-61A2057EF419}” = Windows Live Essentials
“{4B744C85-DBB1-4038-B989-4721EB22C582}” = Windows Live Messenger
“{4CF6F287-5121-483C-A5A2-07BDE19D8B4E}” = Windows Live Meshin etäyhteyksien ActiveX-komponentti
“{510446D7-2344-B59F-4CA5-66F5381D09FC}” = CCC Help Polish
“{57220148-3B2B-412A-A2E0-82B9DF423696}” = Windows Live Mesh ActiveX-objekt til fjernforbindelser
“{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}” = Windows Live UX Platform Language Pack
“{5C2F5C1B-9732-4F81-8FBF-6711627DC508}” = Windows Live Fotogalleri
“{612C34C7-5E90-47D8-9B5C-0F717DD82726}” = swMSM
“{65153EA5-8B6E-43B6-857B-C6E4FC25798A}” = Intel(R) Management Engine Components
“{682B3E4F-696A-42DE-A41C-4C07EA1678B4}” = Windows Live SOXE
“{6845255F-15CC-4DD1-94D5-D38F370118B3}_is1” = Auslogics Duplicate File Finder
“{69CAC24D-B1DC-4B97-A1BE-FE21843108FE}” = Windows Live Writer Resources
“{6EF2BE2C-3121-48B7-B7A6-C56046B3A588}” = Windows Live Movie Maker
“{6F340107-F9AA-47C6-B54C-C3A19F11553F}” = Hewlett-Packard ACLM.NET v1.1.1.0
“{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp” = WildTangent Games App (HP Games)
“{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}” = Microsoft Visual C++ 2005 Redistributable
“{734104DE-C2BF-412F-BB97-FCCE1EC94229}” = Windows Live Writer Resources
“{73FBB960-1893-0F86-8EC1-DD0527D3ABCA}” = CCC Help Turkish
“{770657D0-A123-3C07-8E44-1C83EC895118}” = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
“{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}” = Apple Software Update
“{7ADFA72D-2A9F-4DEC-80A5-2FAA27E23F0F}” = Windows Live Photo Common
“{7DEE6EB5-8FB2-45FE-9978-144A1E47232D}” = HP Software Framework
“{7F969F54-1D7F-5DA1-A9E2-59FC0A5F0FE0}” = Catalyst Control Center Graphics Previews Common
“{80956555-A512-4190-9CAD-B000C36D6B6B}” = Windows Live Messenger
“{827D3E4A-0186-48B7-9801-7D1E9DD40C07}” = Windows Live Essentials
“{837b34e3-7c30-493c-8f6a-2b0f04e2912c}” = Microsoft Visual C++ 2005 Redistributable
“{83C292B7-38A5-440B-A731-07070E81A64F}” = Windows Live PIMT Platform
“{872B1C80-38EC-4A31-A25C-980820593900}” = HP Power Manager
“{8833FFB6-5B0C-4764-81AA-06DFEED9A476}” = Realtek Ethernet Controller Driver
“{885F1BCD-C344-4758-85BD-09640CF449A5}” = Windows Live Photo Gallery
“{888F1505-C2B3-4FDE-835D-36353EBD4754}” = Ubisoft Game Launcher
“{8909CFA8-97BF-4077-AC0F-6925243FFE08}” = Windows Liven asennustyökalu
“{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}” = Microsoft Silverlight
“{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}” = Epson Event Manager
“{8C6D6116-B724-4810-8F2D-D047E6B7D68E}” = Mesh Runtime
“{8CF5D47D-27B7-49D6-A14F-10550B92749D}” = Windows Live UX Platform Language Pack
“{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}” = MSVCRT
“{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}” = TomTom HOME Visual Studio Merge Modules
“{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}” = Ralink RT2860 Wireless LAN Card
“{90140011-0066-0406-0000-0000000FF1CE}” = Microsoft Office Starter 2010 - dansk
“{909DC555-322F-8A35-2550-6FC2E2EDFA23}” = CCC Help Finnish
“{924B4D82-1B97-48EB-8F1E-55C4353C22DB}” = Windows Live Mail
“{92EA4134-10D1-418A-91E1-5A0453131A38}” = Windows Live Movie Maker
“{943A8D28-80D6-41DC-AE94-81FEB42041BF}” = System Requirements Lab CYRI
“{949D6B51-10E8-4CD4-A81E-064E38240415}” = Catalyst Control Center - Branding
“{94D48CF3-FD0A-EF10-13BE-66BD803A5A16}” = PX Profile Update
“{95140000-0070-0000-0000-0000000FF1CE}” = Microsoft Office 2010
“{95E5798A-9827-92AD-5201-1E9B25819886}” = CCC Help Chinese Traditional
“{99CEB89F-50EC-4979-BDF6-148645D7EB35}” = HP Documentation
“{9A25302D-30C0-39D9-BD6F-21E6EC160475}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
“{9B9B8EE4-2EDB-41C2-AF2E-63E75D37CDDF}” = HP On Screen Display
“{9BE518E6-ECC6-35A9-88E4-87755C07200F}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
“{9CDE574D-5471-24A1-07DC-0B0F06810E11}” = CCC Help Thai
“{9D56775A-93F3-44A3-8092-840E3826DE30}” = Windows Live Mail
“{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}” = Epson Easy Photo Print 2
“{A0C91188-C88F-4E86-93E6-CD7C9A266649}” = Windows Live Mesh
“{A726AE06-AAA3-43D1-87E3-70F510314F04}” = Windows Live Writer
“{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}” = Windows Live Photo Common
“{AAA79CA2-D65D-966B-48C2-D6C16433482C}” = Catalyst Control Center InstallProxy
“{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}” = Windows Live Writer
“{AAF454FC-82CA-4F29-AB31-6A109485E76E}” = Windows Live Writer
“{AC76BA86-7AD7-FFFF-7B44-AA0000000001}” = Adobe Reader X (10.1.3) MUI
“{AE856388-AFAD-4753-81DF-D96B19D0A17C}” = HP Setup Manager
“{B2D55EB8-32C5-4B43-9006-9E97DECBA178}” = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
“{B479B52B-4DE8-23FC-93CA-186D600F4A52}” = CCC Help Norwegian
“{B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}” = HP Connection Manager
“{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}” = Energy Star Digital Logo
“{C1594429-8296-4652-BF54-9DBE4932A44C}” = Realtek PCIE Card Reader
“{C1A2F65D-720B-82A0-10F6-4FEE797880BB}” = CCC Help German
“{C1BF14DC-3A45-8E0B-41C6-30E6D30F9968}” = CCC Help Chinese Standard
“{C66824E4-CBB3-4851-BB3F-E8CFD6350923}” = Windows Live Mail
“{C7861B58-149A-4546-AD1D-798865EF36CF}” = CCC Help Portuguese
“{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226}” = HP Support Assistant
“{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}” = Microsoft .NET Framework 1.1
“{CBA9A6BF-1837-F0A4-79B6-15936EDC68AA}” = CCC Help Spanish
“{CD442136-9115-4236-9C14-278F6A9DCB3F}” = Windows Live Movie Maker
“{CD7CB1E6-267A-408F-877D-B532AD2C882E}” = Windows Live Photo Common
“{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}” = Windows Live UX Platform
“{CF671BFE-6BA3-44E7-98C1-500D9C51D947}” = Windows Live Photo Gallery
“{D0B44725-3666-492D-BEF6-587A14BD9BD9}” = MSVCRT_amd64
“{D2FFFA5E-FEA5-073B-C371-3B3628D9A453}” = CCC Help French
“{D31169F2-CD71-4337-B783-3E53F29F4CAD}” = Windows Live Mail
“{D3F80A98-05AB-4D8C-9272-766CCFA6A48D}” = THE SETTLERS - Rise of an Empire
“{D436F577-1695-4D2F-8B44-AC76C99E0002}” = Windows Live Photo Common
“{D45240D3-B6B3-4FF9-B243-54ECE3E10066}” = Windows Live Communications Platform
“{D453A24E-6979-4A97-AE29-F7E551394370}” = ZyXEL NetUSB Share Center
“{DA29F644-2420-4448-8128-1331BE588999}” = Windows Live Writer
“{DB1208F4-B2FE-44E9-BFE6-8824DBD7891B}” = Windows Live Movie Maker
“{DBCD5E64-7379-4648-9444-8A6558DCB614}” = Recovery Manager
“{DCAB6BA7-6533-44BF-9235-E5BF33B7431C}” = Windows Live Writer
“{DD75B28A-94C3-97C2-C389-EA6BF1C809B7}” = CCC Help Danish
“{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}” = Windows Live Writer Resources
“{DECDCB7C-58CC-4865-91AF-627F9798FE48}” = Windows Live Mesh
“{DFFB2B20-5D76-335C-2C24-CEF3791B30B8}” = CCC Help Dutch
“{E09C4DB7-630C-4F06-A631-8EA7239923AF}” = D3DX10
“{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}” = IDT Audio
“{E5B21F11-6933-4E0B-A25C-7963E3C07D11}” = Windows Live Messenger
“{E5DD4723-FE0B-436E-A815-DC23CF902A0B}” = Windows Live UX Platform Language Pack
“{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}” = Need for Speed™ Undercover
“{E7160D4F-B709-DFE4-9BF2-BB1C38598CF9}” = CCC Help Greek
“{E8524B28-3BBB-4763-AC83-0E83FE31C350}” = Windows Live Writer
“{E96CAA2A-0244-4A2A-8403-0C3C9534778B}” = ESU for Microsoft Windows 7 SP1
“{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}” = Windows Live Writer Resources
“{EB58480C-0721-483C-B354-9D35A147999F}” = HP Quick Launch
“{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}” = Apple Application Support
“{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}” = Skype™ 5.8
“{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}” = Microsoft SQL Server 2005 Compact Edition [ENU]
“{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}” = Intel(R) Display Audio Driver
“{F0F9505B-3ACF-4158-9311-D0285136AA00}” = Windows Live Essentials
“{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}” = Command and ConquerTM Generals Zero Hour
“{F694D1F7-1F12-4550-9B7A-C871273ABAD5}” = Windows Live Messenger
“{F70B153C-55D6-550A-7F50-6E09D99B1D7A}” = CCC Help Czech
“{F761359C-9CED-45AE-9A51-9D6605CD55C4}” = Evernote v. 4.2.2
“{F9000000-0018-0000-0000-074957833700}” = ABBYY FineReader 9.0 Sprint
“{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}” = Windows Live Essentials
“ABBYY FineReader 9.0 Sprint” = ABBYY FineReader 9.0 Sprint
“Adobe Shockwave Player” = Adobe Shockwave Player 11.6
“Airport Mania 1.1.3” = Airport Mania 1.1.3
“amg-diamonjonesdevilscontract” = Diamon Jones - Devil’s Contract
“amg-pahelikasecretlegends” = Pahelika - Secret Legends
“CDCheck” = CDCheck
“CDSpectrum Pro” = CD/Spectrum Pro
“DAEMON Tools Lite” = DAEMON Tools Lite
“DMXControl” = DMXControl 2.11
“Duplicate Music Files Finder_is1” = Duplicate Music Files Finder 1.5.5
“EasyBits Magic Desktop” = Magic Desktop
“EPSON Scanner” = EPSON Scan
“EPSON SX130 Series Useg” = Brugervejledning EPSON SX130 Series
“ESET Online Scanner” = ESET Online Scanner v3
“ExtractNow_is1” = ExtractNow
“Free YouTube to MP3 Converter_is1” = Free YouTube to MP3 Converter version 3.10.5.722
“FreeFileViewer_is1” = Free File Viewer 2011
“FreeYoutubeToMP3TURBOConverter_is1” = Free YouTube to MP3 TURBO Converter 2011
“ImgBurn” = ImgBurn
“InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}” = CyberLink YouCam
“InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}” = Command & Conquer Generals
“InstallShield_{47A8ED18-BABE-42F7-A387-7F8D48F4EC03}” = Mastercam X
“InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}” = Command and ConquerTM Generals Zero Hour
“KaraFun Player_is1” = KaraFun Player
“Malwarebytes’ Anti-Malware_is1” = Malwarebytes Anti-Malware version 1.61.0.1400
“Office14.Click2Run” = Microsoft Office Klik og kør 2010
“Psych” = The Psychedelic Screen Saver
“Roads Of Rome 2 1.00” = Roads Of Rome 2 1.00
“Secunia PSI” = Secunia PSI (2.0.0.4003)
“Shockwave” = Shockwave
“TeamViewer 7” = TeamViewer 7
“TomTom HOME” = TomTom HOME 2.8.3.2499
“Trusted Software Assistant_is1” = File Type Assistant
“uTorrent” = µTorrent
“Virtual DJ - Atomix Productions” = Virtual DJ - Atomix Productions
“Virtual DJ Pro Full - Atomix Productions” = Virtual DJ Pro Full - Atomix Productions
“VLC media player” = VLC media player 2.0.1
“WildTangent hp Master Uninstall” = HP Games
“WinLiveSuite” = Windows Live Essentials
“WT087330” = Bounce Symphony
“WT087335” = Build-a-lot 2
“WT087343” = Dora’s World Adventure
“WT087393” = Mah Jong Medley
“WT087395” = Poker Superstars III
“WT087396” = Polar Bowler
“WT087536” = Diner Dash 2 Restaurant Rescue
“WT089307” = Virtual Villagers 4 - The Tree of Life
“WT089308” = Blasterball 3
“WT089328” = Farm Frenzy
“WT089359” = Cake Mania
“WT089362” = Agatha Christie - Peril at End House
“WT089453” = Bejeweled 2 Deluxe
“WT089454” = Chuzzle Deluxe
“WT089455” = Zuma Deluxe
“WT089457” = Slingo Supreme
“WT089458” = Plants vs. Zombies - Game of the Year
“WT089484” = Namco All-Stars PAC-MAN
“WT089496” = Mystery P.I. - Stolen in San Francisco
“WT089504” = Final Drive Nitro

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3944199279-915822965-3110101284-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“Spotify” = Spotify

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >

Drop fildeling ->
http://www.spywarefri.dk/artikel/farerne-ved-fildeling/
http://www.spywarefri.dk/forum/viewthread/40284/

Afinstaller µTorrent

———

Start OTL

Vista og Windows 7 - højreklik på filen - Kør som Administrator.

Kopier nedenstånde med fed skrift ind i feltet “Custom Scans/Fixes”

:OTL
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: “URL” = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: “URL” = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
[2012/03/15 19:18:43 | 000,000,000 |—-D | M] (uTorrentControl Community Toolbar)—C:\Users\Morgan\AppData\Roaming\mozilla\Firefox\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}
O3 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-3944199279-915822965-3110101284-1000\..\Toolbar\WebBrowser: (no name) - {E9DF9360-97F8-4690-AFE6-996C80790DA4} - No CLSID value found.
O4 - HKLM..\Run: []  File not found

:Commands
[CREATERESTOREPOINT]
[EMPTYFLASH]
[EMPTYJAVA]
[emptytemp]
[Reboot]

Luk alle andre åbne vinduer og klik på “Run Fix”

Efter genstart åbnes en logfil, kopier den tekst herind i denne tråd.

Ellers ligger den her: C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log

PS Deaktiver dine Sikkerheds programmer, mens “Fixet” kører.

Hej
Troede faktisk at Utorrent var fjernet, mappen og .exe filen er slettet.
nå her er loggen:

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.
Folder 12/03/15 19:18:43 | 000,000,000 |—-D | M] (uTorrentControl Community Toolbar)—C:\Users\Morgan\AppData\Roaming\mozilla\Firefox\extensions\{e9df9360-97f8-4690-afe6-996c80790da4}\ not found.
Registry value HKEY_USERS\S-1-5-21-3944199279-915822965-3110101284-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry value HKEY_USERS\S-1-5-21-3944199279-915822965-3110101284-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E9DF9360-97F8-4690-AFE6-996C80790DA4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E9DF9360-97F8-4690-AFE6-996C80790DA4}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
========== FILES ==========
<  ipconfig /flushdns /c >
Windows IP-konfiguration
DNS Resolver Cache blev t›mt.
C:\Users\Morgan\Downloads\cmd.bat deleted successfully.
C:\Users\Morgan\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
Restore point Set: OTL Restore Point

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Morgan
->Flash cache emptied: 4542 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Morgan
->Java cache emptied: 3040479 bytes

User: Public

Total Java Files Cleaned = 3.00 mb


[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Morgan
->Temp folder emptied: 60996248 bytes
->Temporary Internet Files folder emptied: 263638467 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 23033537 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 49621 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 751 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 332.00 mb


OTL by OldTimer - Version 3.2.42.2 log created on 05062012_204210

Files\Folders moved on Reboot…
C:\Users\Morgan\AppData\Local\Temp\7zS2B90\HPSLPSVC64.DLL moved successfully.
C:\Users\Morgan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot…

Hent og gem ComboFix på dit skrivebord. <- Vigtigt

Kør så ComboFix og følg anvisningerne.

Da ComboFix kan konflikte med dine sikkerhedsprogrammer, er det vigtigt at du deaktiverer dem. <- Vigtigt

Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når ComboFix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: ComboFix.txt
Indholdet af denne fil må du gerne lægge herind.

Den kan findes her: C:\ComboFix.txt

ComboFix 12-05-06.03 - Morgan 06-05-2012 21:48:01.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.45.1030.18.4044.2464 [GMT 2:00]
Kører fra: c:\users\Morgan\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((  Andet, der er slettet   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Morgan\AppData\Roaming\Egwaeh
c:\users\Morgan\AppData\Roaming\Egwaeh\cuumo.foz
c:\users\Morgan\AppData\Roaming\Egwaeh\cuumo.tmp
c:\users\Morgan\AppData\Roaming\Ytox
c:\users\Morgan\AppData\Roaming\Ytox\ytpyi.zoa
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
(((((((((((((((((((((((((((((  Filer skabt fra 2012-04-06 til 2012-05-06 )))))))))))))))))))))))))))))))))))
.
.
2012-05-06 19:53 . 2012-05-06 19:53   ————  d——-w-  c:\users\Default\AppData\Local\temp
2012-05-06 18:56 . 2012-04-13 08:46   8917360   ——a-w-  c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2D560EC7-07D5-47F6-B4E8-AB1D04AC8CCB}\mpengine.dll
2012-05-06 18:42 . 2012-05-06 18:42   ————  d——-w-  C:\_OTL
2012-05-05 10:27 . 2012-04-13 08:46   8917360   ——a-w-  c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-05-05 08:40 . 2012-05-05 08:40   ————  d——-w-  c:\users\Morgan\AppData\Local\Secunia PSI
2012-05-04 22:11 . 2012-05-04 22:11   ————  d——-w-  c:\program files (x86)\Secunia
2012-05-04 21:55 . 2012-05-04 21:55   ————  d——-w-  c:\users\Morgan\AppData\Roaming\SUPERAntiSpyware.com
2012-05-04 21:55 . 2012-05-04 21:55   ————  d——-w-  c:\program files\SUPERAntiSpyware
2012-05-04 21:55 . 2012-05-04 21:55   ————  d——-w-  c:\programdata\SUPERAntiSpyware.com
2012-05-04 20:32 . 2012-05-04 20:32   ————  d——-w-  c:\program files (x86)\ESET
2012-05-02 19:35 . 2012-05-02 19:35   ————  d——-w-  c:\program files (x86)\Ralink
2012-05-02 19:13 . 2010-11-02 11:44   2240864   ——a-w-  c:\windows\system32\drivers\rt2860.sys
2012-04-27 19:24 . 2012-04-27 19:24   ————  d——-w-  c:\windows\SysWow64\20-20 Technologies
2012-04-25 18:36 . 2012-04-25 18:36   ————  d——-w-  c:\program files\iPod
2012-04-25 18:36 . 2012-04-25 18:36   ————  d——-w-  c:\program files\iTunes
2012-04-25 18:34 . 2012-04-25 18:34   ————  d——-w-  c:\users\Morgan\AppData\Roaming\Apple Computer
2012-04-25 18:34 . 2012-04-25 18:34   ————  d——-w-  c:\users\Morgan\AppData\Local\Apple Computer
2012-04-25 18:34 . 2012-04-25 18:34   ————  dc——w-  c:\windows\system32\DRVSTORE
2012-04-25 18:34 . 2009-05-18 11:17   34152   ——a-w-  c:\windows\system32\drivers\GEARAspiWDM.sys
2012-04-25 18:34 . 2008-04-17 10:12   126312   ——a-w-  c:\windows\system32\GEARAspi64.dll
2012-04-25 18:34 . 2008-04-17 10:12   107368   ——a-w-  c:\windows\SysWow64\GEARAspi.dll
2012-04-25 18:33 . 2012-04-25 18:36   ————  d——-w-  c:\program files (x86)\iTunes
2012-04-25 18:33 . 2012-04-25 18:36   ————  d——-w-  c:\programdata\Apple Computer
2012-04-25 18:33 . 2012-04-25 18:34   ————  d——-w-  c:\programdata\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-04-25 18:33 . 2012-04-25 18:33   ————  d——-w-  c:\users\Morgan\AppData\Local\Apple
2012-04-25 18:33 . 2012-04-25 18:33   ————  d——-w-  c:\program files (x86)\Apple Software Update
2012-04-25 18:33 . 2012-04-25 18:33   ————  d——-w-  c:\program files\Common Files\Apple
2012-04-25 18:32 . 2012-04-25 18:32   ————  d——-w-  c:\program files\Bonjour
2012-04-25 18:32 . 2012-04-25 18:32   ————  d——-w-  c:\program files (x86)\Bonjour
2012-04-25 18:32 . 2012-04-25 18:36   ————  d——-w-  c:\program files (x86)\Common Files\Apple
2012-04-25 18:32 . 2012-04-25 18:33   ————  d——-w-  c:\programdata\Apple
2012-04-16 17:24 . 2012-04-16 17:24   ————  d——-w-  c:\windows\da
2012-04-16 17:21 . 2012-04-16 17:21   89944   ——a-w-  c:\program files (x86)\Common Files\Windows Live\.cache\4ca5e3e81cd1bf501\DSETUP.dll
2012-04-16 17:21 . 2012-04-16 17:21   537432   ——a-w-  c:\program files (x86)\Common Files\Windows Live\.cache\4ca5e3e81cd1bf501\DXSETUP.exe
2012-04-16 17:21 . 2012-04-16 17:21   1801048   ——a-w-  c:\program files (x86)\Common Files\Windows Live\.cache\4ca5e3e81cd1bf501\dsetup32.dll
2012-04-16 17:21 . 2012-04-16 17:21   15712   ——a-w-  c:\program files (x86)\Common Files\Windows Live\.cache\4cd0bcad1cd1bf502\MeshBetaRemover.exe
2012-04-13 19:00 . 2012-05-04 21:00   8769696   ——a-w-  c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-04-12 16:17 . 2012-04-12 16:17   ————  d——-w-  c:\program files (x86)\Winamp
2012-04-12 16:17 . 2012-04-12 16:17   ————  d——-w-  c:\program files (x86)\Synthesoft
2012-04-12 16:17 . 2006-02-04 14:31   446464   ——a-w-  c:\windows\SysWow64\PSYCH.SCR
2012-04-12 16:16 . 2012-04-12 16:17   ————  d——-w-  c:\program files (x86)\Psych
2012-04-12 16:16 . 2005-12-24 14:49   114688   ——a-w-  c:\windows\PKCRegD.exe
2012-04-12 16:16 . 2002-01-12 09:59   49152   ——a-w-  c:\windows\DelCDSP.exe
2012-04-12 16:16 . 2012-04-12 16:16   ————  d——-w-  c:\program files (x86)\CDSpectrum Pro
2012-04-12 16:13 . 2012-04-12 16:14   60328   ——a-w-  c:\windows\Psych_Uninstall.exe
2012-04-11 19:44 . 2012-03-01 06:46   23408   ——a-w-  c:\windows\system32\drivers\fs_rec.sys
2012-04-11 19:44 . 2012-03-01 06:33   81408   ——a-w-  c:\windows\system32\imagehlp.dll
2012-04-11 19:44 . 2012-03-01 05:37   172544   ——a-w-  c:\windows\SysWow64\wintrust.dll
2012-04-11 19:44 . 2012-03-01 05:33   159232   ——a-w-  c:\windows\SysWow64\imagehlp.dll
2012-04-11 19:44 . 2012-03-01 06:38   220672   ——a-w-  c:\windows\system32\wintrust.dll
2012-04-11 19:44 . 2012-03-01 06:28   5120   ——a-w-  c:\windows\system32\wmi.dll
2012-04-11 19:44 . 2012-03-01 05:29   5120   ——a-w-  c:\windows\SysWow64\wmi.dll
2012-04-10 18:51 . 2012-04-10 18:51   ————  d——-w-  c:\users\Morgan\AppData\Roaming\PopSoft
2012-04-10 18:51 . 2012-04-10 18:51   ————  d——-w-  c:\programdata\PopSoft
2012-04-10 18:50 . 2012-04-10 18:51   ————  d——-w-  c:\program files (x86)\DMXControl
.
.
.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-05 08:45 . 2011-05-28 20:50   525544   ——a-w-  c:\windows\system32\deployJava1.dll
2012-05-04 21:00 . 2012-03-30 14:14   419488   ——a-w-  c:\windows\SysWow64\FlashPlayerApp.exe
2012-05-04 21:00 . 2011-11-05 09:25   70304   ——a-w-  c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-04 13:56 . 2011-11-12 08:54   24904   ——a-w-  c:\windows\system32\drivers\mbam.sys
2012-04-02 18:58 . 2012-04-02 18:58   283200   ——a-w-  c:\windows\system32\drivers\dtsoftbus01.sys
2012-03-20 18:44 . 2011-04-27 13:25   98688   ——a-w-  c:\windows\system32\drivers\NisDrvWFP.sys
2012-03-20 18:44 . 2011-04-18 11:18   203888   ——a-w-  c:\windows\system32\drivers\MpFilter.sys
2012-03-08 16:50 . 2012-03-08 16:50   49016   ——a-w-  c:\windows\SysWow64\sirenacm.dll
2012-03-08 16:37 . 2012-03-08 16:37   302448   ——a-w-  c:\windows\WLXPGSS.SCR
2012-02-17 06:38 . 2012-03-14 16:16   1031680   ——a-w-  c:\windows\system32\rdpcore.dll
2012-02-17 05:34 . 2012-03-14 16:16   826880   ——a-w-  c:\windows\SysWow64\rdpcore.dll
2012-02-17 04:58 . 2012-03-14 16:16   210944   ——a-w-  c:\windows\system32\drivers\rdpwd.sys
2012-02-17 04:57 . 2012-03-14 16:16   23552   ——a-w-  c:\windows\system32\drivers\tdtcp.sys
2012-02-11 21:57 . 2012-02-11 21:57   927800   ———w-  c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6C51E06E-2ABF-44A8-9E2A-E95A36A80DB2}\gapaengine.dll
2012-02-10 06:36 . 2012-03-14 16:16   1544192   ——a-w-  c:\windows\system32\DWrite.dll
2012-02-10 05:38 . 2012-03-14 16:16   1077248   ——a-w-  c:\windows\SysWow64\DWrite.dll
.
.
(((((((((((((((((((((((((((((((((((  Start steder i reg.basen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“Sidebar”=“c:\program files\Windows Sidebar\sidebar.exe” [2010-11-21 1475584]
“Skype”=“c:\program files (x86)\Skype\Phone\Skype.exe” [2012-02-29 17148552]
“DAEMON Tools Lite”=“c:\program files (x86)\DAEMON Tools Lite\DTLite.exe” [2012-02-13 3481408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
“IAStorIcon”=“c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe” [2011-01-13 283160]
“Adobe Reader Speed Launcher”=“c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe” [2012-04-04 35736]
“Adobe ARM”=“c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe” [2012-01-03 843712]
“HPOSD”=“c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe” [2011-01-27 318520]
“StartCCC”=“c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” [2011-05-08 336384]
“ZyXEL USB Share Center”=“c:\program files (x86)\ZyXEL\NetUSB Share Center\Share Center.exe” [2010-07-22 5623808]
“Easybits Recovery”=“c:\program files (x86)\EasyBits For Kids\ezRecover.exe” [2011-03-16 61112]
“HPConnectionManager”=“c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe” [2011-09-13 103992]
“EEventManager”=“c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe” [2010-08-30 979328]
“HP Quick Launch”=“c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe” [2010-11-09 586296]
“APSDaemon”=“c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe” [2012-02-20 59240]
“iTunesHelper”=“c:\program files (x86)\iTunes\iTunesHelper.exe” [2012-03-27 421736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
“HideFastUserSwitching”= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
“EnableShellExecuteHooks”= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages   REG_MULTI_SZ     kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=”“
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@=“Service”
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-01-31 158856]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-04 257696]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-09-13 1098296]
R3 HPMo4DE3;Mouse Suite Driver_4DE3 (WDF Version);c:\windows\system32\DRIVERS\HPMo4DE3.sys [x]
R3 HPub4DE3;USB Mouse Low Filter Driver_4DE3 (WDF Version);c:\windows\system32\Drivers\HPub4DE3.sys [x]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Netværksinspektion;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [x]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [x]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
R3 WatAdminSvc;Tjenesten Windows Aktivering;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 ZyxelUDSTcpBus;ZyxelUDSTcpBus;SysWOW64\Drivers\ZyxelUDSTcpBus.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-08-06 291896]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-09-01 227896]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-13 13336]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-02-18 2372096]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe [2011-10-14 994360]
S2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe [2011-10-14 399416]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-01-23 92592]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x]
S3 IntcDAud;Intel(R) lyd for skærm;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\DRIVERS\RT2860.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 ZyxelUDSMBus;UDS Master Bus of Kernel USB Software Bus by TCP;SysWOW64\Drivers\ZyxelUDSMBus.sys [x]
.
.
—- Andre Services/Drivers i Hukommelsen—-
.
*NewlyCreated* - WS2IFSL
.
Indhold af mappen ‘Planlagte Opgaver’
.
2012-05-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 21:00]
.
2012-05-06 c:\windows\Tasks\FreeFileViewerUpdateChecker.job
- c:\program files (x86)\FreeFileViewer\FFVCheckForUpdates.exe [2012-01-25 13:24]
.
2012-05-06 c:\windows\Tasks\HPCeeScheduleForMorgan.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
————- x86-64—————-
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“SysTrayApp”=“c:\program files\IDT\WDM\sttray64.exe” [2011-01-25 525312]
“IgfxTray”=“c:\windows\system32\igfxtray.exe” [2011-04-15 168216]
“HotKeysCmds”=“c:\windows\system32\hkcmd.exe” [2011-04-15 392472]
“Persistence”=“c:\windows\system32\igfxpers.exe” [2011-04-15 416024]
“MSC”=“c:\program files\Microsoft Security Client\msseces.exe” [2012-03-26 1271168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
“LoadAppInit_DLLs”=0x0
.
———- Yderligere scanning———-
.
uStart Page = https://www.google.dk/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Free YouTube to MP3 Converter - c:\users\Morgan\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
TCP: DhcpNameServer = 192.168.1.1
DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} - hxxp://kitchenplanner.ikea.com/DK/Core/Player/2020PlayerAX_IKEA_Win32.cab
.
- - - - TOMME GENVEJE FJERNET - - - -
.
URLSearchHooks-{e9df9360-97f8-4690-afe6-996c80790da4} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe
AddRemove-Shockwave - c:\windows\System32\Macromed\SHOCKW~1\UNWISE.EXE
AddRemove-uTorrent - c:\program files (x86)\uTorrent\uTorrent.exe
AddRemove-{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226} - c:\program files (x86)\InstallShield Installation Information\{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226}\setup.exe
.
.
.
——————————- LÅSTE REGISTRERINGS NØGLER——————————-
.
[HKEY_USERS\S-1-5-21-3944199279-915822965-3110101284-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
“??”=hex:a2,e0,1d,2e,4a,85,5a,ab,af,66,75,af,a3,31,80,cc,09,4b,04,a6,e6,9f,d2,
  6a,23,4d,46,d9,26,85,9f,d1,48,ed,0a,f7,90,28,e9,23,d8,ca,0d,41,3a,f0,31,85,\
“??”=hex:4e,5b,94,3c,fd,7c,e9,4e,cd,39,69,eb,e3,76,76,ba
.
[HKEY_USERS\S-1-5-21-3944199279-915822965-3110101284-1000\Software\SecuROM\License information*]
“datasecu”=hex:63,b4,eb,3d,1b,e7,06,1a,a2,fe,bd,91,20,74,c5,d5,ab,67,87,4f,f7,
  4d,97,73,62,ac,b1,bb,5b,17,d1,e8,0d,a1,98,08,11,e4,c6,b2,94,c6,f1,7c,81,50,\
“rkeysecu”=hex:cd,9a,18,9b,10,e5,37,7e,e0,49,d3,92,2e,fc,1b,d8
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=”@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
“Enabled”=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@=“0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@=“ShockwaveFlash.ShockwaveFlash.11”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“ShockwaveFlash.ShockwaveFlash”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@=“FlashFactory.FlashFactory.1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“FlashFactory.FlashFactory”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@=”{00020424-0000-0000-C000-000000000046}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
————————————Andre kørende processer————————————
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Gennemført tid: 2012-05-06 21:58:30 - maskinen blev genstartet
ComboFix-quarantined-files.txt 2012-05-06 19:58
.
Pre-Kørsel: 552.029.151.232 byte ledig
Post-Kørsel: 551.481.114.624 byte ledig
.
- - End Of File - - 868C3329C1031CE1A8CD889DE99357AE

Det ser fint ud, men hvordan kører PCen

Hej

Egentlig ok, men den tager lang tid om at komme på det trådløse net, d.v.s det virker som om at netkortet ikke vil “starte op/Tændes”.

Men hvis der ikke er andet, kan jeg jo godt bruge netbank igen, og tråden kan lukkes.

Takker.

La’ os se, om der gemmer sig noget ->

Download Tdsskiller.zip på dit skrivebord og pak den ud i en mappe.

Start TDSSKiller.exe.

Mht.: Vista og Windows 7 - Højreklik på filen - Kør som Administrator.

Under “Change parameters” sætter du flueben ved “Detect TDLFS file system”

Klik på “Start Scan”

Hvis en inficeret fil bliver fundet, vil ”Default action” være Cure, klik på Continue
Hvis den finder TDLFS file system, klikker du på Delete.
Hvis en mistænkelig fil opdages, vil ”Default action” være Skip, klik på Continue
Hvis den ikke spørger om ”Reboot” (genstart) så klik på ”Report”, kopier den tekst herind i tråden.

Genstart hvis den kræver det.

Hvis den genstarter kan du finde logfilen her :
C:\TDSSKiller.[Version]_[Dato]_[Tidspunkt]_log.txt.

Kopier den tekst herind I denne tråd.

———

Hent og gem aswMBR på dit Skrivebord.

Deaktiver Microsoft Security Essentials mens du kører den

Start aswMBR og klik på “Scan”

Mht.: Vista og Windows 7 - Højreklik på filen - Kør som Administrator.

Hvis den spørger efter “Avast virus definitioner” klikker du “Yes”

Når den er færdig med at scanne, klikker du på “SAVE LOG” og sender loggen herind.

———

PS Vil du godt gøre det, i den rækkefølge jeg anfører

Her er først loggen tdsskiller:

21:16:05.0864 7244   TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
21:16:06.0051 7244   ============================================================
21:16:06.0051 7244   Current date / time: 2012/05/07 21:16:06.0051
21:16:06.0051 7244   SystemInfo:
21:16:06.0051 7244  
21:16:06.0051 7244   OS Version: 6.1.7601 ServicePack: 1.0
21:16:06.0051 7244   Product type: Workstation
21:16:06.0051 7244   ComputerName: MORGAN-HP
21:16:06.0051 7244   UserName: Morgan
21:16:06.0051 7244   Windows directory: C:\Windows
21:16:06.0051 7244   System windows directory: C:\Windows
21:16:06.0051 7244   Running under WOW64
21:16:06.0051 7244   Processor architecture: Intel x64
21:16:06.0051 7244   Number of processors: 4
21:16:06.0051 7244   Page size: 0x1000
21:16:06.0051 7244   Boot type: Normal boot
21:16:06.0051 7244   ============================================================
21:16:06.0690 7244   Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type ‘K0’, Flags 0x00000040
21:16:06.0737 7244   ============================================================
21:16:06.0737 7244   \Device\Harddisk0\DR0:
21:16:06.0737 7244   MBR partitions:
21:16:06.0737 7244   \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
21:16:06.0737 7244   \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x5527D800
21:16:06.0737 7244   \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x552E1800, BlocksNum 0x2231000
21:16:06.0737 7244   \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
21:16:06.0737 7244   ============================================================
21:16:06.0753 7244   C: <-> \Device\Harddisk0\DR0\Partition1
21:16:06.0800 7244   D: <-> \Device\Harddisk0\DR0\Partition2
21:16:06.0815 7244   F: <-> \Device\Harddisk0\DR0\Partition3
21:16:06.0815 7244   ============================================================
21:16:06.0815 7244   Initialize success
21:16:06.0815 7244   ============================================================
21:17:13.0349 7516   ============================================================
21:17:13.0349 7516   Scan started
21:17:13.0349 7516   Mode: Manual; TDLFS;
21:17:13.0349 7516   ============================================================
21:17:13.0630 7516   !SASCORE     (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:17:13.0630 7516   !SASCORE - ok
21:17:13.0864 7516   1394ohci     (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:17:13.0864 7516   1394ohci - ok
21:17:14.0036 7516   ABBYY.Licensing.FineReader.Sprint.9.0 (b33cf4de909a5b30f526d82053a63c8e) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
21:17:14.0067 7516   ABBYY.Licensing.FineReader.Sprint.9.0 - ok
21:17:14.0114 7516   ACPI         (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:17:14.0114 7516   ACPI - ok
21:17:14.0145 7516   AcpiPmi       (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:17:14.0145 7516   AcpiPmi - ok
21:17:14.0207 7516   AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:17:14.0207 7516   AdobeARMservice - ok
21:17:14.0379 7516   AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:17:14.0379 7516   AdobeFlashPlayerUpdateSvc - ok
21:17:14.0441 7516   adp94xx       (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
21:17:14.0457 7516   adp94xx - ok
21:17:14.0504 7516   adpahci       (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
21:17:14.0504 7516   adpahci - ok
21:17:14.0551 7516   adpu320       (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
21:17:14.0551 7516   adpu320 - ok
21:17:14.0582 7516   AeLookupSvc   (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:17:14.0582 7516   AeLookupSvc - ok
21:17:14.0629 7516   AFD         (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:17:14.0644 7516   AFD - ok
21:17:14.0675 7516   agp440       (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:17:14.0675 7516   agp440 - ok
21:17:14.0707 7516   ALG         (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:17:14.0707 7516   ALG - ok
21:17:14.0753 7516   aliide       (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:17:14.0753 7516   aliide - ok
21:17:14.0800 7516   AMD External Events Utility (46052887a640397a834cfa61d607bfc5) C:\Windows\system32\atiesrxx.exe
21:17:14.0800 7516   AMD External Events Utility - ok
21:17:14.0816 7516   amdide       (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:17:14.0816 7516   amdide - ok
21:17:14.0878 7516   AmdK8       (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
21:17:14.0878 7516   AmdK8 - ok
21:17:15.0206 7516   amdkmdag     (f419e5cc07decdab85e4e6adab1dbb49) C:\Windows\system32\DRIVERS\atikmdag.sys
21:17:15.0253 7516   amdkmdag - ok
21:17:15.0346 7516   amdkmdap     (a2f3f99349169d53e91a953a6f539635) C:\Windows\system32\DRIVERS\atikmpag.sys
21:17:15.0346 7516   amdkmdap - ok
21:17:15.0377 7516   AmdPPM       (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
21:17:15.0377 7516   AmdPPM - ok
21:17:15.0409 7516   amdsata       (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:17:15.0409 7516   amdsata - ok
21:17:15.0440 7516   amdsbs       (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
21:17:15.0440 7516   amdsbs - ok
21:17:15.0455 7516   amdxata       (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:17:15.0455 7516   amdxata - ok
21:17:15.0502 7516   AppID       (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:17:15.0502 7516   AppID - ok
21:17:15.0518 7516   AppIDSvc     (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:17:15.0518 7516   AppIDSvc - ok
21:17:15.0549 7516   Appinfo       (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:17:15.0549 7516   Appinfo - ok
21:17:15.0705 7516   Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:17:15.0705 7516   Apple Mobile Device - ok
21:17:15.0752 7516   arc         (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
21:17:15.0752 7516   arc - ok
21:17:15.0799 7516   arcsas       (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
21:17:15.0799 7516   arcsas - ok
21:17:15.0830 7516   AsyncMac     (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:17:15.0845 7516   AsyncMac - ok
21:17:15.0861 7516   atapi       (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:17:15.0877 7516   atapi - ok
21:17:15.0939 7516   atksgt       (fc0e8778c000291caf60eb88c011e931) C:\Windows\system32\DRIVERS\atksgt.sys
21:17:15.0939 7516   atksgt - ok
21:17:16.0001 7516   AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:17:16.0017 7516   AudioEndpointBuilder - ok
21:17:16.0017 7516   AudioSrv     (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:17:16.0017 7516   AudioSrv - ok
21:17:16.0064 7516   AxInstSV     (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:17:16.0064 7516   AxInstSV - ok
21:17:16.0111 7516   b06bdrv       (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
21:17:16.0111 7516   b06bdrv - ok
21:17:16.0157 7516   b57nd60a     (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:17:16.0173 7516   b57nd60a - ok
21:17:16.0251 7516   BBSvc       (93ee7d9c35ae7e9ffda148d7805f1421) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
21:17:16.0251 7516   BBSvc - ok
21:17:16.0345 7516   BCM43XX       (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:17:16.0345 7516   BCM43XX - ok
21:17:16.0391 7516   BDESVC       (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:17:16.0391 7516   BDESVC - ok
21:17:16.0454 7516   Beep         (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:17:16.0454 7516   Beep - ok
21:17:16.0563 7516   BFE         (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:17:16.0579 7516   BFE - ok
21:17:16.0641 7516   BITS         (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
21:17:16.0641 7516   BITS - ok
21:17:16.0688 7516   blbdrive     (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
21:17:16.0688 7516   blbdrive - ok
21:17:16.0766 7516   Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:17:16.0781 7516   Bonjour Service - ok
21:17:16.0813 7516   bowser       (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:17:16.0813 7516   bowser - ok
21:17:16.0844 7516   BrFiltLo     (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
21:17:16.0844 7516   BrFiltLo - ok
21:17:16.0875 7516   BrFiltUp     (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
21:17:16.0875 7516   BrFiltUp - ok
21:17:16.0937 7516   BridgeMP     (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:17:16.0953 7516   BridgeMP - ok
21:17:16.0969 7516   Browser       (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:17:16.0984 7516   Browser - ok
21:17:17.0000 7516   Brserid       (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:17:17.0000 7516   Brserid - ok
21:17:17.0015 7516   BrSerWdm     (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:17:17.0015 7516   BrSerWdm - ok
21:17:17.0062 7516   BrUsbMdm     (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:17:17.0062 7516   BrUsbMdm - ok
21:17:17.0078 7516   BrUsbSer     (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:17:17.0078 7516   BrUsbSer - ok
21:17:17.0078 7516   BTHMODEM     (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
21:17:17.0093 7516   BTHMODEM - ok
21:17:17.0109 7516   bthserv       (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:17:17.0109 7516   bthserv - ok
21:17:17.0140 7516   catchme - ok
21:17:17.0171 7516   cdfs         (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:17:17.0187 7516   cdfs - ok
21:17:17.0218 7516   cdrom       (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:17:17.0218 7516   cdrom - ok
21:17:17.0281 7516   CertPropSvc   (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:17:17.0281 7516   CertPropSvc - ok
21:17:17.0312 7516   circlass     (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
21:17:17.0312 7516   circlass - ok
21:17:17.0343 7516   CLFS         (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:17:17.0343 7516   CLFS - ok
21:17:17.0405 7516   clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:17:17.0405 7516   clr_optimization_v2.0.50727_32 - ok
21:17:17.0437 7516   clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:17:17.0437 7516   clr_optimization_v2.0.50727_64 - ok
21:17:17.0515 7516   clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:17:17.0515 7516   clr_optimization_v4.0.30319_32 - ok
21:17:17.0546 7516   clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:17:17.0546 7516   clr_optimization_v4.0.30319_64 - ok
21:17:17.0577 7516   clwvd       (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
21:17:17.0577 7516   clwvd - ok
21:17:17.0608 7516   CmBatt       (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
21:17:17.0608 7516   CmBatt - ok
21:17:17.0639 7516   cmdide       (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:17:17.0639 7516   cmdide - ok
21:17:17.0702 7516   CNG         (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:17:17.0702 7516   CNG - ok
21:17:17.0749 7516   Compbatt     (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
21:17:17.0749 7516   Compbatt - ok
21:17:17.0780 7516   CompositeBus   (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:17:17.0780 7516   CompositeBus - ok
21:17:17.0795 7516   COMSysApp - ok
21:17:17.0811 7516   crcdisk       (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
21:17:17.0811 7516   crcdisk - ok
21:17:17.0858 7516   CryptSvc     (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
21:17:17.0858 7516   CryptSvc - ok
21:17:17.0998 7516   cvhsvc       (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:17:17.0998 7516   cvhsvc - ok
21:17:18.0061 7516   DcomLaunch     (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:17:18.0061 7516   DcomLaunch - ok
21:17:18.0107 7516   defragsvc     (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:17:18.0123 7516   defragsvc - ok
21:17:18.0170 7516   DfsC         (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:17:18.0170 7516   DfsC - ok
21:17:18.0217 7516   Dhcp         (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:17:18.0232 7516   Dhcp - ok
21:17:18.0232 7516   discache     (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:17:18.0232 7516   discache - ok
21:17:18.0279 7516   Disk         (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
21:17:18.0279 7516   Disk - ok
21:17:18.0310 7516   Dnscache     (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:17:18.0326 7516   Dnscache - ok
21:17:18.0357 7516   dot3svc       (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:17:18.0357 7516   dot3svc - ok
21:17:18.0404 7516   dot4         (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
21:17:18.0404 7516   dot4 - ok
21:17:18.0435 7516   Dot4Print     (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:17:18.0435 7516   Dot4Print - ok
21:17:18.0451 7516   Dot4Scan     (488669cd1cd3bdcfdd9a5fda72209069) C:\Windows\system32\DRIVERS\Dot4Scan.sys
21:17:18.0451 7516   Dot4Scan - ok
21:17:18.0466 7516   dot4usb       (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
21:17:18.0466 7516   dot4usb - ok
21:17:18.0482 7516   DPS         (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:17:18.0497 7516   DPS - ok
21:17:18.0529 7516   drmkaud       (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:17:18.0529 7516   drmkaud - ok
21:17:18.0575 7516   dtsoftbus01   (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:17:18.0575 7516   dtsoftbus01 - ok
21:17:18.0622 7516   DXGKrnl       (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:17:18.0638 7516   DXGKrnl - ok
21:17:18.0669 7516   EapHost       (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:17:18.0669 7516   EapHost - ok
21:17:18.0794 7516   ebdrv       (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
21:17:18.0809 7516   ebdrv - ok
21:17:18.0919 7516   EFS         (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:17:18.0919 7516   EFS - ok
21:17:18.0997 7516   ehRecvr       (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:17:19.0028 7516   ehRecvr - ok
21:17:19.0043 7516   ehSched       (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:17:19.0075 7516   ehSched - ok
21:17:19.0121 7516   elxstor       (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
21:17:19.0137 7516   elxstor - ok
21:17:19.0231 7516   EPSON_EB_RPCV4_04 (7db097f4f6786307168c0dddec43a565) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
21:17:19.0309 7516   EPSON_EB_RPCV4_04 - ok
21:17:19.0355 7516   EPSON_PM_RPCV4_04 (258aa65a0862e19b7de6981fda3758ad) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
21:17:19.0387 7516   EPSON_PM_RPCV4_04 - ok
21:17:19.0418 7516   ErrDev       (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:17:19.0418 7516   ErrDev - ok
21:17:19.0465 7516   EventSystem   (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:17:19.0465 7516   EventSystem - ok
21:17:19.0511 7516   exfat       (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:17:19.0511 7516   exfat - ok
21:17:19.0527 7516   ezSharedSvc - ok
21:17:19.0543 7516   fastfat       (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:17:19.0543 7516   fastfat - ok
21:17:19.0621 7516   Fax         (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:17:19.0621 7516   Fax - ok
21:17:19.0667 7516   fdc         (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
21:17:19.0683 7516   fdc - ok
21:17:19.0699 7516   fdPHost       (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:17:19.0699 7516   fdPHost - ok
21:17:19.0730 7516   FDResPub     (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:17:19.0745 7516   FDResPub - ok
21:17:19.0761 7516   FileInfo     (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:17:19.0761 7516   FileInfo - ok
21:17:19.0792 7516   Filetrace     (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:17:19.0792 7516   Filetrace - ok
21:17:19.0808 7516   flpydisk     (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
21:17:19.0808 7516   flpydisk - ok
21:17:19.0839 7516   FltMgr       (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:17:19.0839 7516   FltMgr - ok
21:17:19.0933 7516   FontCache     (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:17:19.0933 7516   FontCache - ok
21:17:19.0995 7516   FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:17:19.0995 7516   FontCache3.0.0.0 - ok
21:17:20.0042 7516   FsDepends     (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:17:20.0042 7516   FsDepends - ok
21:17:20.0073 7516   Fs_Rec       (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:17:20.0073 7516   Fs_Rec - ok
21:17:20.0104 7516   fvevol       (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:17:20.0104 7516   fvevol - ok
21:17:20.0135 7516   gagp30kx     (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
21:17:20.0151 7516   gagp30kx - ok
21:17:20.0260 7516   GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:17:20.0260 7516   GamesAppService - ok
21:17:20.0276 7516   GEARAspiWDM   (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:17:20.0291 7516   GEARAspiWDM - ok
21:17:20.0338 7516   gpsvc       (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:17:20.0338 7516   gpsvc - ok
21:17:20.0354 7516   Hardlock - ok
21:17:20.0385 7516   hcw85cir     (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:17:20.0385 7516   hcw85cir - ok
21:17:20.0432 7516   HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:17:20.0432 7516   HdAudAddService - ok
21:17:20.0463 7516   HDAudBus     (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:17:20.0479 7516   HDAudBus - ok
21:17:20.0479 7516   HidBatt       (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
21:17:20.0479 7516   HidBatt - ok
21:17:20.0510 7516   HidBth       (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
21:17:20.0510 7516   HidBth - ok
21:17:20.0541 7516   HidIr       (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
21:17:20.0541 7516   HidIr - ok
21:17:20.0572 7516   hidserv       (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
21:17:20.0572 7516   hidserv - ok
21:17:20.0619 7516   HidUsb       (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:17:20.0619 7516   HidUsb - ok
21:17:20.0635 7516   hkmsvc       (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:17:20.0650 7516   hkmsvc - ok
21:17:20.0666 7516   HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:17:20.0681 7516   HomeGroupListener - ok
21:17:20.0697 7516   HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:17:20.0713 7516   HomeGroupProvider - ok
21:17:20.0837 7516   HP Support Assistant Service (170233b8d743efe35f462a5d516b93e3) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
21:17:20.0837 7516   HP Support Assistant Service - ok
21:17:20.0915 7516   HPClientSvc   (3dc11a802353401332d49c3cbfbbe5fc) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
21:17:20.0915 7516   HPClientSvc - ok
21:17:20.0993 7516   hpCMSrv       (e07f8e78d08d9269e3365c2a4f637191) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
21:17:20.0993 7516   hpCMSrv - ok
21:17:21.0071 7516   HPDrvMntSvc.exe (b19ff523b533a3f198b9239e1749c940) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
21:17:21.0071 7516   HPDrvMntSvc.exe - ok
21:17:21.0181 7516   HPMo4DE3     (502433044773567f6ce942f8e0a621ca) C:\Windows\system32\DRIVERS\HPMo4DE3.sys
21:17:21.0181 7516   HPMo4DE3 - ok
21:17:21.0274 7516   hpqwmiex     (01091b900e15878b4434f9c726c4541d) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
21:17:21.0290 7516   hpqwmiex - ok
21:17:21.0305 7516   HpSAMD       (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:17:21.0321 7516   HpSAMD - ok
21:17:21.0446 7516   HPSLPSVC - ok
21:17:21.0477 7516   HPub4DE3     (a635ddb3ed98953bb4d42079017b4e30) C:\Windows\system32\Drivers\HPub4DE3.sys
21:17:21.0477 7516   HPub4DE3 - ok
21:17:21.0539 7516   HPWMISVC     (f630dd7564ebb7248a13b1cc774d9ea6) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
21:17:21.0539 7516   HPWMISVC - ok
21:17:21.0586 7516   HTTP         (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:17:21.0602 7516   HTTP - ok
21:17:21.0617 7516   hwpolicy     (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:17:21.0617 7516   hwpolicy - ok
21:17:21.0664 7516   i8042prt     (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
21:17:21.0664 7516   i8042prt - ok
21:17:21.0695 7516   iaStor       (d469b77687e12fe43e344806740b624d) C:\Windows\system32\DRIVERS\iaStor.sys
21:17:21.0711 7516   iaStor - ok
21:17:21.0805 7516   IAStorDataMgrSvc (983fc69644ddf0486c8dfea262948d1a) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:17:21.0805 7516   IAStorDataMgrSvc - ok
21:17:21.0867 7516   iaStorV       (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:17:21.0867 7516   iaStorV - ok
21:17:21.0992 7516   IconMan_R     (d22d82d74fd1b6c77e7556dbdc3ea9d2) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
21:17:22.0007 7516   IconMan_R - ok
21:17:22.0117 7516   IDriverT     (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:17:22.0148 7516   IDriverT - ok
21:17:22.0241 7516   idsvc       (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:17:22.0257 7516   idsvc - ok
21:17:22.0335 7516   iirsp       (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
21:17:22.0335 7516   iirsp - ok
21:17:22.0382 7516   IKEEXT       (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:17:22.0382 7516   IKEEXT - ok
21:17:22.0444 7516   IntcDAud     (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
21:17:22.0444 7516   IntcDAud - ok
21:17:22.0475 7516   intelide     (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:17:22.0475 7516   intelide - ok
21:17:22.0881 7516   intelkmd     (6383899c5f964d71b0f96b81fbe59bb8) C:\Windows\system32\DRIVERS\igdpmd64.sys
21:17:22.0943 7516   intelkmd - ok
21:17:23.0053 7516   intelppm     (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:17:23.0053 7516   intelppm - ok
21:17:23.0084 7516   IPBusEnum     (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:17:23.0099 7516   IPBusEnum - ok
21:17:23.0115 7516   IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:17:23.0115 7516   IpFilterDriver - ok
21:17:23.0162 7516   iphlpsvc     (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:17:23.0177 7516   iphlpsvc - ok
21:17:23.0209 7516   IPMIDRV       (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:17:23.0209 7516   IPMIDRV - ok
21:17:23.0240 7516   IPNAT       (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:17:23.0240 7516   IPNAT - ok
21:17:23.0349 7516   iPod Service   (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
21:17:23.0365 7516   iPod Service - ok
21:17:23.0411 7516   IRENUM       (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:17:23.0411 7516   IRENUM - ok
21:17:23.0427 7516   isapnp       (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:17:23.0427 7516   isapnp - ok
21:17:23.0474 7516   iScsiPrt     (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:17:23.0474 7516   iScsiPrt - ok
21:17:23.0521 7516   kbdclass     (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:17:23.0521 7516   kbdclass - ok
21:17:23.0552 7516   kbdhid       (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:17:23.0552 7516   kbdhid - ok
21:17:23.0583 7516   KeyIso       (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:17:23.0583 7516   KeyIso - ok
21:17:23.0599 7516   KSecDD       (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:17:23.0599 7516   KSecDD - ok
21:17:23.0645 7516   KSecPkg       (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:17:23.0645 7516   KSecPkg - ok
21:17:23.0661 7516   ksthunk       (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:17:23.0661 7516   ksthunk - ok
21:17:23.0692 7516   KtmRm       (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:17:23.0692 7516   KtmRm - ok
21:17:23.0755 7516   LanmanServer   (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
21:17:23.0755 7516   LanmanServer - ok
21:17:23.0786 7516   LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:17:23.0786 7516   LanmanWorkstation - ok
21:17:23.0833 7516   lirsgt       (156ab2e56dc3ca0b582e3362e07cded7) C:\Windows\system32\DRIVERS\lirsgt.sys
21:17:23.0833 7516   lirsgt - ok
21:17:23.0864 7516   lltdio       (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:17:23.0864 7516   lltdio - ok
21:17:23.0911 7516   lltdsvc       (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:17:23.0911 7516   lltdsvc - ok
21:17:23.0942 7516   lmhosts       (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:17:23.0942 7516   lmhosts - ok
21:17:24.0020 7516   LMS         (d75c4b4a8fe6d7fd74a7eecdbaec729f) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:17:24.0020 7516   LMS - ok
21:17:24.0067 7516   LSI_FC       (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
21:17:24.0067 7516   LSI_FC - ok
21:17:24.0098 7516   LSI_SAS       (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
21:17:24.0098 7516   LSI_SAS - ok
21:17:24.0145 7516   LSI_SAS2     (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
21:17:24.0145 7516   LSI_SAS2 - ok
21:17:24.0176 7516   LSI_SCSI     (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
21:17:24.0176 7516   LSI_SCSI - ok
21:17:24.0191 7516   luafv       (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:17:24.0191 7516   luafv - ok
21:17:24.0238 7516   Mcx2Svc       (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:17:24.0238 7516   Mcx2Svc - ok
21:17:24.0269 7516   megasas       (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
21:17:24.0269 7516   megasas - ok
21:17:24.0316 7516   MegaSR       (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
21:17:24.0332 7516   MegaSR - ok
21:17:24.0363 7516   MEIx64       (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
21:17:24.0363 7516   MEIx64 - ok
21:17:24.0394 7516   MMCSS       (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:17:24.0410 7516   MMCSS - ok
21:17:24.0425 7516   Modem       (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:17:24.0425 7516   Modem - ok
21:17:24.0457 7516   monitor       (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:17:24.0457 7516   monitor - ok
21:17:24.0503 7516   mouclass     (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:17:24.0503 7516   mouclass - ok
21:17:24.0535 7516   mouhid       (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:17:24.0535 7516   mouhid - ok
21:17:24.0566 7516   mountmgr     (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:17:24.0566 7516   mountmgr - ok
21:17:24.0644 7516   MpFilter     (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
21:17:24.0644 7516   MpFilter - ok
21:17:24.0675 7516   mpio         (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:17:24.0675 7516   mpio - ok
21:17:24.0706 7516   mpsdrv       (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:17:24.0706 7516   mpsdrv - ok
21:17:24.0753 7516   MpsSvc       (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:17:24.0769 7516   MpsSvc - ok
21:17:24.0784 7516   MRxDAV       (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:17:24.0784 7516   MRxDAV - ok
21:17:24.0815 7516   mrxsmb       (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:17:24.0815 7516   mrxsmb - ok
21:17:24.0831 7516   mrxsmb10     (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:17:24.0831 7516   mrxsmb10 - ok
21:17:24.0831 7516   mrxsmb20     (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:17:24.0831 7516   mrxsmb20 - ok
21:17:24.0862 7516   msahci       (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:17:24.0862 7516   msahci - ok
21:17:24.0893 7516   msdsm       (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:17:24.0893 7516   msdsm - ok
21:17:24.0925 7516   MSDTC       (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:17:24.0925 7516   MSDTC - ok
21:17:24.0956 7516   Msfs         (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:17:24.0956 7516   Msfs - ok
21:17:24.0971 7516   mshidkmdf     (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:17:24.0971 7516   mshidkmdf - ok
21:17:25.0003 7516   msisadrv     (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:17:25.0003 7516   msisadrv - ok
21:17:25.0034 7516   MSiSCSI       (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:17:25.0034 7516   MSiSCSI - ok
21:17:25.0049 7516   msiserver - ok
21:17:25.0081 7516   MSKSSRV       (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:17:25.0081 7516   MSKSSRV - ok
21:17:25.0174 7516   MsMpSvc       (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:17:25.0174 7516   MsMpSvc - ok
21:17:25.0205 7516   MSPCLOCK     (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:17:25.0205 7516   MSPCLOCK - ok
21:17:25.0205 7516   MSPQM       (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:17:25.0221 7516   MSPQM - ok
21:17:25.0237 7516   MsRPC       (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:17:25.0237 7516   MsRPC - ok
21:17:25.0268 7516   mssmbios     (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:17:25.0268 7516   mssmbios - ok
21:17:25.0283 7516   MSTEE       (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:17:25.0283 7516   MSTEE - ok
21:17:25.0299 7516   MTConfig     (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
21:17:25.0299 7516   MTConfig - ok
21:17:25.0315 7516   Mup         (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:17:25.0315 7516   Mup - ok
21:17:25.0361 7516   napagent     (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:17:25.0361 7516   napagent - ok
21:17:25.0424 7516   NativeWifiP   (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:17:25.0424 7516   NativeWifiP - ok
21:17:25.0502 7516   NDIS         (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
21:17:25.0517 7516   NDIS - ok
21:17:25.0549 7516   NdisCap       (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:17:25.0549 7516   NdisCap - ok
21:17:25.0580 7516   NdisTapi     (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:17:25.0580 7516   NdisTapi - ok
21:17:25.0595 7516   Ndisuio       (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:17:25.0595 7516   Ndisuio - ok
21:17:25.0627 7516   NdisWan       (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:17:25.0627 7516   NdisWan - ok
21:17:25.0642 7516   NDProxy       (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:17:25.0642 7516   NDProxy - ok
21:17:25.0689 7516   NetBIOS       (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:17:25.0689 7516   NetBIOS - ok
21:17:25.0705 7516   NetBT       (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:17:25.0705 7516   NetBT - ok
21:17:25.0736 7516   Netlogon     (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:17:25.0736 7516   Netlogon - ok
21:17:25.0783 7516   Netman       (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:17:25.0798 7516   Netman - ok
21:17:25.0814 7516   netprofm     (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:17:25.0829 7516   netprofm - ok
21:17:25.0892 7516   netr28x       (24cf1304d899124336f67f88f3c15e21) C:\Windows\system32\DRIVERS\netr28x.sys
21:17:25.0907 7516   netr28x - ok
21:17:25.0954 7516   NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:17:25.0954 7516   NetTcpPortSharing - ok
21:17:26.0001 7516   nfrd960       (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
21:17:26.0001 7516   nfrd960 - ok
21:17:26.0063 7516   NisDrv       (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:17:26.0079 7516   NisDrv - ok
21:17:26.0188 7516   NisSrv       (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
21:17:26.0188 7516   NisSrv - ok
21:17:26.0235 7516   NlaSvc       (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:17:26.0235 7516   NlaSvc - ok
21:17:26.0266 7516   Npfs         (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:17:26.0266 7516   Npfs - ok
21:17:26.0282 7516   nsi         (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:17:26.0282 7516   nsi - ok
21:17:26.0297 7516   nsiproxy     (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:17:26.0297 7516   nsiproxy - ok
21:17:26.0375 7516   Ntfs         (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:17:26.0391 7516   Ntfs - ok
21:17:26.0500 7516   Null         (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:17:26.0500 7516   Null - ok
21:17:26.0547 7516   NVENETFD     (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
21:17:26.0547 7516   NVENETFD - ok
21:17:26.0594 7516   nvraid       (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:17:26.0609 7516   nvraid - ok
21:17:26.0625 7516   nvstor       (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:17:26.0625 7516   nvstor - ok
21:17:26.0672 7516   nv_agp       (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:17:26.0672 7516   nv_agp - ok
21:17:26.0703 7516   ohci1394     (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:17:26.0703 7516   ohci1394 - ok
21:17:26.0797 7516   ose         (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:17:26.0797 7516   ose - ok
21:17:27.0031 7516   osppsvc       (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:17:27.0077 7516   osppsvc - ok
21:17:27.0171 7516   p2pimsvc     (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:17:27.0187 7516   p2pimsvc - ok
21:17:27.0218 7516   p2psvc       (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:17:27.0218 7516   p2psvc - ok
21:17:27.0265 7516   Parport       (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
21:17:27.0265 7516   Parport - ok
21:17:27.0280 7516   partmgr       (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:17:27.0280 7516   partmgr - ok
21:17:27.0311 7516   PcaSvc       (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:17:27.0327 7516   PcaSvc - ok
21:17:27.0358 7516   pci         (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:17:27.0358 7516   pci - ok
21:17:27.0374 7516   pciide       (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:17:27.0374 7516   pciide - ok
21:17:27.0421 7516   pcmcia       (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
21:17:27.0421 7516   pcmcia - ok
21:17:27.0436 7516   pcw         (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:17:27.0436 7516   pcw - ok
21:17:27.0467 7516   PEAUTH       (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:17:27.0467 7516   PEAUTH - ok
21:17:27.0530 7516   PerfHost     (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:17:27.0530 7516   PerfHost - ok
21:17:27.0655 7516   pla         (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:17:27.0670 7516   pla - ok
21:17:27.0717 7516   PlugPlay     (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:17:27.0717 7516   PlugPlay - ok
21:17:27.0717 7516   PnkBstrA - ok
21:17:27.0748 7516   PNRPAutoReg   (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:17:27.0764 7516   PNRPAutoReg - ok
21:17:27.0779 7516   PNRPsvc       (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:17:27.0779 7516   PNRPsvc - ok
21:17:27.0826 7516   PolicyAgent   (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:17:27.0826 7516   PolicyAgent - ok
21:17:27.0873 7516   Power       (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:17:27.0873 7516   Power - ok
21:17:27.0935 7516   PptpMiniport   (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:17:27.0935 7516   PptpMiniport - ok
21:17:27.0967 7516   Processor     (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
21:17:27.0967 7516   Processor - ok
21:17:27.0998 7516   ProfSvc       (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:17:28.0013 7516   ProfSvc - ok
21:17:28.0029 7516   ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:17:28.0029 7516   ProtectedStorage - ok
21:17:28.0091 7516   Psched       (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:17:28.0091 7516   Psched - ok
21:17:28.0154 7516   PSI         (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
21:17:28.0169 7516   PSI - ok
21:17:28.0247 7516   ql2300       (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
21:17:28.0263 7516   ql2300 - ok
21:17:28.0372 7516   ql40xx       (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
21:17:28.0372 7516   ql40xx - ok
21:17:28.0403 7516   QWAVE       (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:17:28.0403 7516   QWAVE - ok
21:17:28.0435 7516   QWAVEdrv     (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:17:28.0435 7516   QWAVEdrv - ok
21:17:28.0466 7516   RasAcd       (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:17:28.0466 7516   RasAcd - ok
21:17:28.0497 7516   RasAgileVpn   (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:17:28.0497 7516   RasAgileVpn - ok
21:17:28.0528 7516   RasAuto       (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:17:28.0544 7516   RasAuto - ok
21:17:28.0544 7516   Rasl2tp       (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:17:28.0544 7516   Rasl2tp - ok
21:17:28.0591 7516   RasMan       (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:17:28.0591 7516   RasMan - ok
21:17:28.0622 7516   RasPppoe     (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:17:28.0622 7516   RasPppoe - ok
21:17:28.0653 7516   RasSstp       (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:17:28.0653 7516   RasSstp - ok
21:17:28.0669 7516   rdbss       (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:17:28.0669 7516   rdbss - ok
21:17:28.0700 7516   rdpbus       (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
21:17:28.0700 7516   rdpbus - ok
21:17:28.0731 7516   RDPCDD       (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:17:28.0731 7516   RDPCDD - ok
21:17:28.0747 7516   RDPENCDD     (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:17:28.0747 7516   RDPENCDD - ok
21:17:28.0762 7516   RDPREFMP     (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:17:28.0762 7516   RDPREFMP - ok
21:17:28.0793 7516   RDPWD       (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
21:17:28.0793 7516   RDPWD - ok
21:17:28.0825 7516   rdyboost     (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:17:28.0825 7516   rdyboost - ok
21:17:28.0856 7516   RemoteAccess   (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:17:28.0856 7516   RemoteAccess - ok
21:17:28.0903 7516   RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:17:28.0903 7516   RemoteRegistry - ok
21:17:28.0918 7516   RpcEptMapper   (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:17:28.0918 7516   RpcEptMapper - ok
21:17:28.0949 7516   RpcLocator     (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:17:28.0949 7516   RpcLocator - ok
21:17:28.0981 7516   RpcSs       (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:17:28.0981 7516   RpcSs - ok
21:17:29.0043 7516   RSPCIESTOR     (546d7f426776090b90ef5f195b6ae662) C:\Windows\system32\DRIVERS\RtsPStor.sys
21:17:29.0043 7516   RSPCIESTOR - ok
21:17:29.0090 7516   rspndr       (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:17:29.0090 7516   rspndr - ok
21:17:29.0183 7516   RT80x86       (c6d65b5ad3bf4ffafa2047c12c8bd427) C:\Windows\system32\DRIVERS\RT2860.sys
21:17:29.0199 7516   RT80x86 - ok
21:17:29.0324 7516   RTL8167       (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:17:29.0339 7516   RTL8167 - ok
21:17:29.0402 7516   RTL8192su     (b3f36b4b3f192ea87ddc119f3a0b3e45) C:\Windows\system32\DRIVERS\RTL8192su.sys
21:17:29.0417 7516   RTL8192su - ok
21:17:29.0449 7516   SamSs       (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:17:29.0449 7516   SamSs - ok
21:17:29.0527 7516   SASDIFSV     (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:17:29.0527 7516   SASDIFSV - ok
21:17:29.0589 7516   SASKUTIL     (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:17:29.0589 7516   SASKUTIL - ok
21:17:29.0620 7516   sbp2port     (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:17:29.0620 7516   sbp2port - ok
21:17:29.0667 7516   SCardSvr     (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:17:29.0667 7516   SCardSvr - ok
21:17:29.0698 7516   scfilter     (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:17:29.0698 7516   scfilter - ok
21:17:29.0761 7516   Schedule     (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:17:29.0761 7516   Schedule - ok
21:17:29.0792 7516   SCPolicySvc   (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:17:29.0792 7516   SCPolicySvc - ok
21:17:29.0823 7516   sdbus       (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
21:17:29.0823 7516   sdbus - ok
21:17:29.0854 7516   SDRSVC       (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:17:29.0854 7516   SDRSVC - ok
21:17:29.0932 7516   SeaPort       (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
21:17:29.0948 7516   SeaPort - ok
21:17:29.0979 7516   secdrv       (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:17:29.0979 7516   secdrv - ok
21:17:29.0995 7516   seclogon     (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:17:29.0995 7516   seclogon - ok
21:17:30.0182 7516   Secunia PSI Agent (5b66db4877bbac9f7493aa8d84421e49) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
21:17:30.0197 7516   Secunia PSI Agent - ok
21:17:30.0275 7516   Secunia Update Agent (0e88fdf474f2cdd370a4a6ce77d018f0) C:\Program Files (x86)\Secunia\PSI\sua.exe
21:17:30.0275 7516   Secunia Update Agent - ok
21:17:30.0369 7516   SENS         (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
21:17:30.0369 7516   SENS - ok
21:17:30.0400 7516   SensrSvc     (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:17:30.0400 7516   SensrSvc - ok
21:17:30.0447 7516   Serenum       (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
21:17:30.0447 7516   Serenum - ok
21:17:30.0478 7516   Serial       (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
21:17:30.0478 7516   Serial - ok
21:17:30.0525 7516   sermouse     (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
21:17:30.0525 7516   sermouse - ok
21:17:30.0572 7516   SessionEnv     (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:17:30.0572 7516   SessionEnv - ok
21:17:30.0587 7516   sffdisk       (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:17:30.0587 7516   sffdisk - ok
21:17:30.0619 7516   sffp_mmc     (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:17:30.0619 7516   sffp_mmc - ok
21:17:30.0634 7516   sffp_sd       (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:17:30.0634 7516   sffp_sd - ok
21:17:30.0665 7516   sfloppy       (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
21:17:30.0665 7516   sfloppy - ok
21:17:30.0728 7516   Sftfs       (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
21:17:30.0743 7516   Sftfs - ok
21:17:30.0821 7516   sftlist       (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:17:30.0837 7516   sftlist - ok
21:17:30.0868 7516   Sftplay       (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:17:30.0868 7516   Sftplay - ok
21:17:30.0884 7516   Sftredir     (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:17:30.0884 7516   Sftredir - ok
21:17:30.0899 7516   Sftvol       (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
21:17:30.0899 7516   Sftvol - ok
21:17:30.0915 7516   sftvsa       (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:17:30.0915 7516   sftvsa - ok
21:17:30.0962 7516   SharedAccess   (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:17:30.0962 7516   SharedAccess - ok
21:17:31.0009 7516   ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:17:31.0009 7516   ShellHWDetection - ok
21:17:31.0040 7516   SiSRaid2     (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
21:17:31.0040 7516   SiSRaid2 - ok
21:17:31.0055 7516   SiSRaid4     (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
21:17:31.0055 7516   SiSRaid4 - ok
21:17:31.0102 7516   SkypeUpdate   (17eab7852ff9f15fbaab4e95efc0b812) C:\Program Files (x86)\Skype\Updater\Updater.exe
21:17:31.0118 7516   SkypeUpdate - ok
21:17:31.0133 7516   Smb         (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:17:31.0133 7516   Smb - ok
21:17:31.0165 7516   SNMPTRAP     (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:17:31.0180 7516   SNMPTRAP - ok
21:17:31.0180 7516   spldr       (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:17:31.0180 7516   spldr - ok
21:17:31.0211 7516   Spooler       (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:17:31.0211 7516   Spooler - ok
21:17:31.0336 7516   sppsvc       (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:17:31.0367 7516   sppsvc - ok
21:17:31.0445 7516   sppuinotify   (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:17:31.0445 7516   sppuinotify - ok
21:17:31.0508 7516   srv         (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:17:31.0508 7516   srv - ok
21:17:31.0523 7516   srv2         (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:17:31.0539 7516   srv2 - ok
21:17:31.0586 7516   SrvHsfHDA     (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
21:17:31.0586 7516   SrvHsfHDA - ok
21:17:31.0679 7516   SrvHsfV92     (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
21:17:31.0679 7516   SrvHsfV92 - ok
21:17:31.0820 7516   SrvHsfWinac   (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
21:17:31.0820 7516   SrvHsfWinac - ok
21:17:31.0851 7516   srvnet       (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:17:31.0867 7516   srvnet - ok
21:17:31.0929 7516   SSDPSRV       (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:17:31.0929 7516   SSDPSRV - ok
21:17:31.0945 7516   SstpSvc       (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:17:31.0960 7516   SstpSvc - ok
21:17:32.0069 7516   STacSV       (b2d8b364a831427a5741f6c408fa8ae3) C:\Program Files\IDT\WDM\STacSV64.exe
21:17:32.0069 7516   STacSV - ok
21:17:32.0085 7516   stexstor     (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
21:17:32.0085 7516   stexstor - ok
21:17:32.0147 7516   STHDA       (ef5acde92ba3f691bbfef781cb063501) C:\Windows\system32\DRIVERS\stwrt64.sys
21:17:32.0147 7516   STHDA - ok
21:17:32.0194 7516   stisvc       (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:17:32.0194 7516   stisvc - ok
21:17:32.0225 7516   swenum       (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:17:32.0225 7516   swenum - ok
21:17:32.0257 7516   swprv       (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:17:32.0257 7516   swprv - ok
21:17:32.0350 7516   SynTP       (33e6a285daa5134d8ea2247914c86c09) C:\Windows\system32\DRIVERS\SynTP.sys
21:17:32.0366 7516   SynTP - ok
21:17:32.0506 7516   SysMain       (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:17:32.0522 7516   SysMain - ok
21:17:32.0600 7516   TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:17:32.0615 7516   TabletInputService - ok
21:17:32.0631 7516   TapiSrv       (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:17:32.0631 7516   TapiSrv - ok
21:17:32.0647 7516   TBS         (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:17:32.0647 7516   TBS - ok
21:17:32.0771 7516   Tcpip       (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:17:32.0787 7516   Tcpip - ok
21:17:32.0959 7516   TCPIP6       (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:17:32.0959 7516   TCPIP6 - ok
21:17:33.0068 7516   tcpipreg     (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:17:33.0068 7516   tcpipreg - ok
21:17:33.0068 7516   TDPIPE       (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:17:33.0068 7516   TDPIPE - ok
21:17:33.0115 7516   TDTCP       (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:17:33.0115 7516   TDTCP - ok
21:17:33.0130 7516   tdx         (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:17:33.0146 7516   tdx - ok
21:17:33.0317 7516   TeamViewer7   (74fc70ae64a7b7dabec9697ce0a1f4fa) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
21:17:33.0333 7516   TeamViewer7 - ok
21:17:33.0458 7516   TermDD       (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:17:33.0458 7516   TermDD - ok
21:17:33.0520 7516   TermService   (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:17:33.0520 7516   TermService - ok
21:17:33.0536 7516   Themes       (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:17:33.0536 7516   Themes - ok
21:17:33.0551 7516   THREADORDER   (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:17:33.0551 7516   THREADORDER - ok
21:17:33.0661 7516   TomTomHOMEService (3199a477f0f06eede41bd55179f8eb05) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
21:17:33.0661 7516   TomTomHOMEService - ok
21:17:33.0693 7516   TrkWks       (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:17:33.0693 7516   TrkWks - ok
21:17:33.0740 7516   TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:17:33.0740 7516   TrustedInstaller - ok
21:17:33.0786 7516   tssecsrv     (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:17:33.0786 7516   tssecsrv - ok
21:17:33.0818 7516   TsUsbFlt     (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:17:33.0818 7516   TsUsbFlt - ok
21:17:33.0849 7516   TsUsbGD       (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
21:17:33.0849 7516   TsUsbGD - ok
21:17:33.0896 7516   tunnel       (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:17:33.0896 7516   tunnel - ok
21:17:33.0911 7516   uagp35       (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
21:17:33.0911 7516   uagp35 - ok
21:17:33.0942 7516   udfs         (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:17:33.0942 7516   udfs - ok
21:17:33.0974 7516   UI0Detect     (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:17:33.0974 7516   UI0Detect - ok
21:17:34.0020 7516   uliagpkx     (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:17:34.0020 7516   uliagpkx - ok
21:17:34.0052 7516   umbus       (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
21:17:34.0052 7516   umbus - ok
21:17:34.0083 7516   UmPass       (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:17:34.0083 7516   UmPass - ok
21:17:34.0208 7516   UNS         (758c2ce427c343f780a205e28555c98d) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
21:17:34.0223 7516   UNS - ok
21:17:34.0317 7516   upnphost     (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:17:34.0317 7516   upnphost - ok
21:17:34.0395 7516   usbaudio     (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
21:17:34.0395 7516   usbaudio - ok
21:17:34.0410 7516   usbccgp       (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:17:34.0410 7516   usbccgp - ok
21:17:34.0457 7516   usbcir       (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:17:34.0457 7516   usbcir - ok
21:17:34.0473 7516   usbehci       (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:17:34.0473 7516   usbehci - ok
21:17:34.0504 7516   usbhub       (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:17:34.0504 7516   usbhub - ok
21:17:34.0520 7516   usbohci       (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:17:34.0520 7516   usbohci - ok
21:17:34.0566 7516   usbprint     (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:17:34.0566 7516   usbprint - ok
21:17:34.0582 7516   usbscan       (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:17:34.0582 7516   usbscan - ok
21:17:34.0613 7516   USBSTOR       (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:17:34.0613 7516   USBSTOR - ok
21:17:34.0629 7516   usbuhci       (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:17:34.0629 7516   usbuhci - ok
21:17:34.0676 7516   usbvideo     (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
21:17:34.0676 7516   usbvideo - ok
21:17:34.0707 7516   UxSms       (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:17:34.0707 7516   UxSms - ok
21:17:34.0738 7516   VaultSvc     (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:17:34.0754 7516   VaultSvc - ok
21:17:34.0769 7516   vdrvroot     (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:17:34.0769 7516   vdrvroot - ok
21:17:34.0816 7516   vds         (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:17:34.0816 7516   vds - ok
21:17:34.0863 7516   vga         (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:17:34.0863 7516   vga - ok
21:17:34.0863 7516   VgaSave       (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:17:34.0878 7516   VgaSave - ok
21:17:34.0910 7516   vhdmp       (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:17:34.0910 7516   vhdmp - ok
21:17:34.0925 7516   viaide       (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:17:34.0925 7516   viaide - ok
21:17:34.0956 7516   volmgr       (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:17:34.0956 7516   volmgr - ok
21:17:34.0988 7516   volmgrx       (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:17:34.0988 7516   volmgrx - ok
21:17:35.0019 7516   volsnap       (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:17:35.0019 7516   volsnap - ok
21:17:35.0050 7516   vsmraid       (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
21:17:35.0050 7516   vsmraid - ok
21:17:35.0128 7516   VSS         (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:17:35.0144 7516   VSS - ok
21:17:35.0253 7516   vwifibus     (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:17:35.0253 7516   vwifibus - ok
21:17:35.0284 7516   vwififlt     (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:17:35.0284 7516   vwififlt - ok
21:17:35.0284 7516   vwifimp       (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:17:35.0284 7516   vwifimp - ok
21:17:35.0331 7516   W32Time       (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:17:35.0346 7516   W32Time - ok
21:17:35.0378 7516   WacomPen     (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
21:17:35.0378 7516   WacomPen - ok
21:17:35.0409 7516   WANARP       (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:17:35.0409 7516   WANARP - ok
21:17:35.0424 7516   Wanarpv6     (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:17:35.0424 7516   Wanarpv6 - ok
21:17:35.0487 7516   WatAdminSvc   (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:17:35.0502 7516   WatAdminSvc - ok
21:17:35.0565 7516   wbengine     (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:17:35.0580 7516   wbengine - ok
21:17:35.0674 7516   WbioSrvc     (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:17:35.0674 7516   WbioSrvc - ok
21:17:35.0705 7516   wcncsvc       (7368a2afd46e5a4481d1de

21:17:35.0705 7516   wcncsvc       (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:17:35.0705 7516   wcncsvc - ok
21:17:35.0736 7516   WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:17:35.0736 7516   WcsPlugInService - ok
21:17:35.0783 7516   Wd         (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
21:17:35.0783 7516   Wd - ok
21:17:35.0814 7516   Wdf01000     (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:17:35.0814 7516   Wdf01000 - ok
21:17:35.0846 7516   WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:17:35.0846 7516   WdiServiceHost - ok
21:17:35.0846 7516   WdiSystemHost   (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:17:35.0846 7516   WdiSystemHost - ok
21:17:35.0877 7516   WebClient     (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:17:35.0892 7516   WebClient - ok
21:17:35.0908 7516   Wecsvc       (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:17:35.0908 7516   Wecsvc - ok
21:17:35.0924 7516   wercplsupport   (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:17:35.0924 7516   wercplsupport - ok
21:17:35.0939 7516   WerSvc       (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:17:35.0955 7516   WerSvc - ok
21:17:36.0002 7516   WfpLwf       (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:17:36.0002 7516   WfpLwf - ok
21:17:36.0017 7516   WIMMount     (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:17:36.0017 7516   WIMMount - ok
21:17:36.0080 7516   WinDefend - ok
21:17:36.0080 7516   WinHttpAutoProxySvc - ok
21:17:36.0142 7516   Winmgmt       (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:17:36.0158 7516   Winmgmt - ok
21:17:36.0236 7516   WinRM       (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:17:36.0267 7516   WinRM - ok
21:17:36.0392 7516   WinUsb       (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
21:17:36.0392 7516   WinUsb - ok
21:17:36.0438 7516   Wlansvc       (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:17:36.0438 7516   Wlansvc - ok
21:17:36.0532 7516   wlcrasvc     (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:17:36.0532 7516   wlcrasvc - ok
21:17:36.0704 7516   wlidsvc       (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:17:36.0719 7516   wlidsvc - ok
21:17:36.0828 7516   WmiAcpi       (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:17:36.0828 7516   WmiAcpi - ok
21:17:36.0860 7516   wmiApSrv     (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:17:36.0875 7516   wmiApSrv - ok
21:17:36.0922 7516   WMPNetworkSvc - ok
21:17:36.0969 7516   WPCSvc       (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:17:36.0969 7516   WPCSvc - ok
21:17:36.0984 7516   WPDBusEnum     (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:17:36.0984 7516   WPDBusEnum - ok
21:17:37.0000 7516   ws2ifsl       (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:17:37.0000 7516   ws2ifsl - ok
21:17:37.0016 7516   wscsvc       (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
21:17:37.0016 7516   wscsvc - ok
21:17:37.0016 7516   WSearch - ok
21:17:37.0094 7516   wuauserv     (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
21:17:37.0109 7516   wuauserv - ok
21:17:37.0203 7516   WudfPf       (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:17:37.0203 7516   WudfPf - ok
21:17:37.0250 7516   WUDFRd       (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:17:37.0250 7516   WUDFRd - ok
21:17:37.0281 7516   wudfsvc       (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:17:37.0281 7516   wudfsvc - ok
21:17:37.0312 7516   WwanSvc       (ce8cf9de9cbfdaa318bd04d8be3fcada) C:\Windows\System32\wwansvc.dll
21:17:37.0312 7516   WwanSvc - ok
21:17:37.0406 7516   ZyxelUDSMBus   (658c63083b951308bd08960f4c05772c) C:\Windows\syswow64\Drivers\ZyxelUDSMBus.sys
21:17:37.0406 7516   ZyxelUDSMBus - ok
21:17:37.0421 7516   ZyxelUDSTcpBus (3ed2ed56f1bc46604c7a97925f27c3b7) C:\Windows\syswow64\Drivers\ZyxelUDSTcpBus.sys
21:17:37.0421 7516   ZyxelUDSTcpBus - ok
21:17:37.0484 7516   MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:17:38.0373 7516   \Device\Harddisk0\DR0 - ok
21:17:38.0388 7516   Boot (0x1200)  (e66bd131edaa0dbd2047d5cb840d08bb) \Device\Harddisk0\DR0\Partition0
21:17:38.0388 7516   \Device\Harddisk0\DR0\Partition0 - ok
21:17:38.0404 7516   Boot (0x1200)  (34b149970a683c6f24e2f3d9331e659d) \Device\Harddisk0\DR0\Partition1
21:17:38.0404 7516   \Device\Harddisk0\DR0\Partition1 - ok
21:17:38.0420 7516   Boot (0x1200)  (7697b2616b7a8fd5eca3982e44bba061) \Device\Harddisk0\DR0\Partition2
21:17:38.0420 7516   \Device\Harddisk0\DR0\Partition2 - ok
21:17:38.0451 7516   Boot (0x1200)  (62bbe7d09b5757bfebac69a3377ffafe) \Device\Harddisk0\DR0\Partition3
21:17:38.0451 7516   \Device\Harddisk0\DR0\Partition3 - ok
21:17:38.0451 7516   ============================================================
21:17:38.0451 7516   Scan finished
21:17:38.0451 7516   ============================================================
21:17:38.0451 7348   Detected object count: 0
21:17:38.0451 7348   Actual detected object count: 0
21:18:16.0608 5116   Deinitialize success

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-05-07 21:25:46
——————————————-
21:25:46.487   OS Version: Windows x64 6.1.7601 Service Pack 1
21:25:46.503   Number of processors: 4 586 0x2A07
21:25:46.503   ComputerName: MORGAN-HP UserName: Morgan
21:25:48.453   Initialize success
21:26:22.468   AVAST engine defs: 12050700
21:26:56.180   Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:26:56.180   Disk 0 Vendor: TOSHIBA_ GN00 Size: 715404MB BusType: 3
21:26:56.195   Disk 0 MBR read successfully
21:26:56.195   Disk 0 MBR scan
21:26:56.195   Disk 0 Windows 7 default MBR code
21:26:56.211   Disk 0 Partition 1 80 (A) 07   HPFS/NTFS NTFS       199 MB offset 2048
21:26:56.227   Disk 0 Partition 2 00   07   HPFS/NTFS NTFS     697595 MB offset 409600
21:26:56.258   Disk 0 Partition 3 00   07   HPFS/NTFS NTFS     17506 MB offset 1429084160
21:26:56.273   Disk 0 Partition 4 00   0C   FAT32 LBA MSDOS5.0     102 MB offset 1464936448
21:26:56.320   Disk 0 scanning C:\Windows\system32\drivers
21:27:04.978   Service scanning
21:27:34.228   Modules scanning
21:27:34.228   Disk 0 trace - called modules:
21:27:34.275   ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
21:27:34.275   1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006c12060]
21:27:34.275   3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004d1f050]
21:27:36.163   AVAST engine scan C:\Windows
21:27:40.109   AVAST engine scan C:\Windows\system32
21:29:43.459   AVAST engine scan C:\Windows\system32\drivers
21:29:56.173   AVAST engine scan C:\Users\Morgan
21:40:18.130   AVAST engine scan C:\ProgramData
21:41:27.004   Scan finished successfully
21:43:21.701   Disk 0 MBR has been saved successfully to “C:\Users\Morgan\Documents\MBR.dat”
21:43:21.701   The log file has been saved successfully to “C:\Users\Morgan\Documents\aswMBR.txt”

Der var jo ikke noget

Hent og gem MiniToolBox af Farbar.

Start den og sæt flueben i følgende.

Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP Configuration
List Winsock Entries
List last 10 Event Wiewer Errors
List Devices. (Only problems)

Klik så på GO. Den laver Result.txt, som du gerne må kopiere herind.

MiniToolBox by Farbar Version: 18-01-2012
Ran by Morgan (administrator) on 07-05-2012 at 22:03:38
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================

127.0.0.1     localhost

========================= IP Configuration: ================================

Ralink RT5390 802.11b/g/n WiFi Adapter = Trådløs netværksforbindelse 5 (Connected)
Realtek PCIe FE Family Controller = LAN-forbindelse (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Trådløs netværksforbindelse 6 (Media disconnected)

#—————————————————
# IPv4-konfiguration
#—————————————————
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# Slut p† IPv4-konfiguration.

Windows IP-konfiguration

  V‘rtsnavn. . . . . . . . . . . . . . . . . . : Morgan-HP
  Prim‘rt DNS-suffiks. . . . . . . . . . . . . :
  Nodetype . . . . . . . . . . . . . . . . . . : Hybrid
  IP-routing aktiveret . . . . . . . . . . . . : Nej
  WINS-proxy aktiveret . . . . . . . . . . . . : Nej
  S›geliste for DNS-suffiks. . . . . . . . . . : zyxel.com

Tr†dl›st LAN-kort Tr†dl›s netv‘rksforbindelse 6:

  Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
  Forbindelsesspecifikt DNS-suffiks. . . . . . :
  Beskrivelse. . . . . . . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #3
  Fysisk adresse . . . . . . . . . . . . . . . : C0-F8-DA-AD-3C-55
  DHCP aktiveret . . . . . . . . . . . . . . . : Ja
  Automatisk konfiguration aktiveret . . . . . : Ja

Tr†dl›st LAN-kort Tr†dl›s netv‘rksforbindelse 5:

  Forbindelsesspecifikt DNS-suffiks. . . . . . : zyxel.com
  Beskrivelse. . . . . . . . . . . . . . . . . : Ralink RT5390 802.11b/g/n WiFi Adapter #2
  Fysisk adresse . . . . . . . . . . . . . . . : C0-F8-DA-AD-3C-54
  DHCP aktiveret . . . . . . . . . . . . . . . : Ja
  Automatisk konfiguration aktiveret . . . . . : Ja
  Link-local-IPv6-adresse . . . . . : fe80::78a9:aa3e:4542:2f42(Foretrukken)
  IPv4-adresse . . . . . . . . . . . . . . . . : 192.168.1.48(Foretrukken)
  Undernetmaske. . . . . . . . . . . . . . . . : 255.255.255.0
  Rettigheden opn†et . . . . . . . . . . . . . : 7. maj 2012 21:54:18
  Rettigheden udl›ber. . . . . . . . . . . . . : 8. maj 2012 21:54:18
  Standardgateway. . . . . . . . . . . . . . . : 192.168.1.1
  DHCP-server. . . . . . . . . . . . . . . . . : 192.168.1.1
  DHCPv6 IAID . . . . . . . . . . . : 314636506
  DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-8E-1E-4A-2C-27-D7-E8-23-4E
  DNS-servere. . . . . . . . . . . . . . . . . : 192.168.1.1
  NetBIOS over Tcpip . . . . . . . . . . . . . : Aktiveret

Ethernet-netv‘rkskort LAN-forbindelse:

  Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
  Forbindelsesspecifikt DNS-suffiks. . . . . . :
  Beskrivelse. . . . . . . . . . . . . . . . . : Realtek PCIe FE Family Controller
  Fysisk adresse . . . . . . . . . . . . . . . : 2C-27-D7-E8-23-4E
  DHCP aktiveret . . . . . . . . . . . . . . . : Ja
  Automatisk konfiguration aktiveret . . . . . : Ja

Tunnel-netv‘rkskort isatap.zyxel.com:

  Medietilstand. . . . . . . . . . . . . . . . : Mediet afbrudt
  Forbindelsesspecifikt DNS-suffiks. . . . . . : zyxel.com
  Beskrivelse. . . . . . . . . . . . . . . . . : Microsoft ISATAP-netv‘rkskort
  Fysisk adresse . . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
  DHCP aktiveret . . . . . . . . . . . . . . . : Nej
  Automatisk konfiguration aktiveret . . . . . : Ja

Tunnel-netv‘rkskort Teredo Tunneling Pseudo-Interface:

  Forbindelsesspecifikt DNS-suffiks. . . . . . :
  Beskrivelse. . . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
  Fysisk adresse . . . . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
  DHCP aktiveret . . . . . . . . . . . . . . . : Nej
  Automatisk konfiguration aktiveret . . . . . : Ja
  IPv6-adresse. . . . . . . . . . . : 2001:0:5ef5:79fb:3886:28a6:2bda:6022(Foretrukken)
  Link-local-IPv6-adresse . . . . . : fe80::3886:28a6:2bda:6022(Foretrukken)
  Standardgateway. . . . . . . . . . . . . . . : ::
  NetBIOS via TCP/IP . . . . . . . . . . . . . : Deaktiveret
Server:  UnKnown
Address:  192.168.1.1

Navn:  google.com
Addresses:  173.194.69.100
    173.194.69.139
    173.194.69.101
    173.194.69.102
    173.194.69.138
    173.194.69.113

Pinger google.com [173.194.69.113] med 32 byte data:
Svar fra 173.194.69.113: byte=32 tid=37ms TTL=48
Svar fra 173.194.69.113: byte=32 tid=38ms TTL=48

Ping-statistikker for 173.194.69.113:
  Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),
Beregnet tid for rundtur i millisekunder:
  Minimum = 37ms, Maksimum = 38ms, Gennemsnitlig = 37ms
Server:  UnKnown
Address:  192.168.1.1

Navn:  yahoo.com
Addresses:  209.191.122.70
    72.30.38.140
    98.139.183.24

Pinger yahoo.com [98.139.183.24] med 32 byte data:
Svar fra 98.139.183.24: byte=32 tid=149ms TTL=52
Svar fra 98.139.183.24: byte=32 tid=228ms TTL=52

Ping-statistikker for 98.139.183.24:
  Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),
Beregnet tid for rundtur i millisekunder:
  Minimum = 149ms, Maksimum = 228ms, Gennemsnitlig = 188ms
Server:  UnKnown
Address:  192.168.1.1

Navn:  bleepingcomputer.com
Address:  208.43.87.2

Pinger bleepingcomputer.com [208.43.87.2] med 32 byte data:
Svar fra 208.43.87.2: Modtagerv‘rt ikke tilg‘ngelig.
Svar fra 208.43.87.2: Modtagerv‘rt ikke tilg‘ngelig.

Ping-statistikker for 208.43.87.2:
  Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),

Pinger 127.0.0.1 med 32 byte data:
Svar fra 127.0.0.1: byte=32 tid<1ms TTL=128
Svar fra 127.0.0.1: byte=32 tid<1ms TTL=128

Ping-statistikker for 127.0.0.1:
  Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),
Beregnet tid for rundtur i millisekunder:
  Minimum = 0ms, Maksimum = 0ms, Gennemsnitlig = 0ms
===========================================================================
Liste over gr‘nseflader
20…c0 f8 da ad 3c 55 ......Microsoft Virtual WiFi Miniport Adapter #3
18…c0 f8 da ad 3c 54 ......Ralink RT5390 802.11b/g/n WiFi Adapter #2
11…2c 27 d7 e8 23 4e ......Realtek PCIe FE Family Controller
  1…........................Software Loopback Interface 1
19…00 00 00 00 00 00 00 e0 Microsoft ISATAP-netv‘rkskort
14…00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Rutetabel
===========================================================================
Aktive ruter:
Netv‘rksdestination   Netmaske     Gateway     Gr‘nseflade Metrikv‘rdi
      0.0.0.0       0.0.0.0     192.168.1.1   192.168.1.48   25
      127.0.0.0     255.0.0.0       On-link       127.0.0.1   306
      127.0.0.1 255.255.255.255       On-link       127.0.0.1   306
  127.255.255.255 255.255.255.255       On-link       127.0.0.1   306
    192.168.1.0   255.255.255.0       On-link     192.168.1.48   281
    192.168.1.48 255.255.255.255       On-link     192.168.1.48   281
  192.168.1.255 255.255.255.255       On-link     192.168.1.48   281
      224.0.0.0     240.0.0.0       On-link       127.0.0.1   306
      224.0.0.0     240.0.0.0       On-link     192.168.1.48   281
  255.255.255.255 255.255.255.255       On-link       127.0.0.1   306
  255.255.255.255 255.255.255.255       On-link     192.168.1.48   281
===========================================================================
Vedvarende ruter:
  Ingen

IPv6 Rutetabel
===========================================================================
Aktive ruter:
Hvis Metrik Netv‘rk Destination     Gateway
14   58 ::/0               On-link
  1   306 ::1/128             On-link
14   58 2001::/32           On-link
14   306 2001:0:5ef5:79fb:3886:28a6:2bda:6022/128
                        On-link
18   281 fe80::/64           On-link
14   306 fe80::/64           On-link
14   306 fe80::3886:28a6:2bda:6022/128
                        On-link
18   281 fe80::78a9:aa3e:4542:2f42/128
                        On-link
  1   306 ff00::/8           On-link
14   306 ff00::/8           On-link
18   281 ff00::/8           On-link
===========================================================================
Vedvarende ruter:
  Ingen
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/07/2012 09:52:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA “Win32_Processor” AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU failed to post message to CCC

System errors:
=============
Error: (05/07/2012 09:54:11 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten HP Network Devices Support blev afbrudt med følgende fejl:
%6

Error: (05/07/2012 09:51:53 PM) (Source: Service Control Manager) (User: )
Description: Tjenesten Hardlock kunne ikke starte pga. følgende fejl:
u

Error: (05/07/2012 09:51:53 PM) (Source: Application Popup) (User: )
Description: Indlæsning af \??\C:\Windows\SysWow64\drivers\hardlock.sys er blevet blokeret på grund af inkompatibilitet med dette system. Kontakt softwareleverandøren for at få en kompatibel version af driveren.

Error: (05/07/2012 07:37:22 PM) (Source: Service Control Manager) (User: )
Description: Der opstod en timeout (30000 millisekunder), mens der ventedes på et transaktionssvar fra tjenesten ShellHWDetection.

Error: (05/07/2012 07:37:13 PM) (Source: Ntfs) (User: )
Description: Filstrukturen på disken er beskadiget og ubrugelig.
Kør hjælpeprogrammet chkdsk på diskenheden I:.

Error: (05/07/2012 07:36:52 PM) (Source: Service Control Manager) (User: )
Description: Der opstod en timeout (30000 millisekunder), mens der ventedes på et transaktionssvar fra tjenesten WSearch.

Error: (05/07/2012 07:36:22 PM) (Source: Service Control Manager) (User: )
Description: Der opstod en timeout (30000 millisekunder), mens der ventedes på et transaktionssvar fra tjenesten LanmanServer.

Error: (05/07/2012 07:35:47 PM) (Source: Disk) (User: )
Description: Driveren detekterede en controllerfejl på \Device\Harddisk1\DR3.

Error: (05/07/2012 07:35:47 PM) (Source: Disk) (User: )
Description: Driveren detekterede en controllerfejl på \Device\Harddisk1\DR3.

Error: (05/07/2012 07:35:46 PM) (Source: Disk) (User: )
Description: Driveren detekterede en controllerfejl på \Device\Harddisk1\DR3.

Microsoft Office Sessions:
=========================
Error: (05/07/2012 09:52:09 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA “Win32_Processor” AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/07/2012 09:50:21 PM) (Source: ATIeRecord)(User: )
Description:

========================= Devices: ================================

**** End of log ****

PS. Jeg kan ikke komme på min mail, det virker som om at mit password er ændret??.