Page 1 of 2 12 LastLast
Results 1 to 10 of 16

Thread: virus stuffs

  1. #1
    Member
    Join Date
    Dec 2013
    Posts
    10
    Points
    5

    Default virus stuffs

    I got a real nasty virus. It slows Down my computer untill it doesnt preform tasks Anymore, making it impossible to scan it. If i try to run it in safemode the computer turns off. Wat Do

  2. The Following User Says Thank You to DuhDurk For This Useful Post:


  3. #2
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hi DuhDurk,

    Hi! My name is zep516 and Welcome to help2go
    I'll do the best I can to resolve your computer issue
    Please be patient with me as I am currently in training, and all of my responses to you have to be reviewed by my instructor before I post them. Just keep in mind that you get the advantage as you have 2 people examining your issue. Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, don't continue Stop and ask! Never be afraid to ask questions!

    What operating system is installed? Do you have another computer you can use? Do you have a USB flash drive?

    What else can you tell us about the virus, do you see any fake scanners warning you of Malware or anything like that. Any errors before it shuts down in safe mode?

    See if you can do the instruction below, from your description, I don't expect you to but try it.


    Please download OTL to your Desktop
    • Double click on the to run the program. On Vista/Win7 or 8 right click select Run As Administrator to start the program. If prompted by UAC, please allow it.
    • Make sure all other windows are closed and to let it run uninterrupted.
    • Click the Scan All Users checkbox
      and
    • Check the option for All under the Extra Registry section
    • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan won't take long.
      • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
      • Please copy (Edit->Select All, Edit->Copy) the contents of these files and post them in your topic

    • OTL.txt <-- Will be opened, maximized
    • Extras.txt <-- Will be minimized on task bar.

    Please post the contents of both OTL.txt and Extras.txt files in your next reply.

    Please answer all my questions and post the log if at all possible.

    Thanks
    Joe

  4. The Following User Says Thank You to zep516 For This Useful Post:


  5. #3
    Member
    Join Date
    Dec 2013
    Posts
    10
    Points
    5

    Default

    I Do have access to another computer even tho it may take some time before i can use it, i also own a usb. I dont mind deleting everything from my computer. its filled with crap anyways, so i wouldnt mind if you told me how to do that.
    Back to the virus. If i run it in safemode the computer turns off after 10sec to a minute. No warning. Just as i would have removed the battery. I did run it in safemode w/ command promt and installed malware bytes. I ran a scan but when it was done my computer had slowed down, so i couldnt remove the virus. xD i am now gonna try to download the thing you asked Me to and see if it works.

    Btw. The malwarebytes scan found about 106 pup things at search-protect thing. It also found a trojan at somewhere i couldnt see. I think it was at some kind of autostart folder

    Thank you for seeing over this. Win xp 32 bit

  6. The Following User Says Thank You to DuhDurk For This Useful Post:


  7. #4
    Member
    Join Date
    Dec 2013
    Posts
    10
    Points
    5

    Default

    Okay, here we go. OTL.Txt:


    OTL logfile created on: 2013-12-27 11:07:24 - Run 1
    OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Lol\Mina dokument\Downloads
    Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 6.0.2900.5512)
    Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd

    2,00 Gb Total Physical Memory | 0,93 Gb Available Physical Memory | 46,72% Memory free
    3,85 Gb Paging File | 3,22 Gb Available in Paging File | 83,60% Paging File free
    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program
    Drive C: | 85,55 Gb Total Space | 17,08 Gb Free Space | 19,97% Space Free | Partition Type: NTFS
    Drive D: | 7,59 Gb Total Space | 0,58 Gb Free Space | 7,70% Space Free | Partition Type: FAT32

    Computer Name: YOUR-5999F0A11E | User Name: Lol | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - [2013-12-27 10:15:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Lol\Mina dokument\Downloads\OTL.exe
    PRC - [2013-12-23 17:44:00 | 003,764,024 | ---- | M] (AVAST Software) -- C:\Program\AVAST Software\Avast\AvastUI.exe
    PRC - [2013-12-23 17:43:59 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program\AVAST Software\Avast\AvastSvc.exe
    PRC - [2013-12-09 16:51:31 | 002,471,448 | ---- | M] () -- C:\Program\AVG Secure Search\vprot.exe
    PRC - [2013-12-09 16:51:26 | 001,771,544 | ---- | M] (AVG Secure Search) -- C:\Program\Delade filer\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe
    PRC - [2013-12-09 16:51:07 | 000,159,768 | ---- | M] () -- C:\Program\Delade filer\AVG Secure Search\vToolbarUpdater\17.2.0\loggingserver.exe
    PRC - [2013-11-29 16:20:48 | 003,806,544 | ---- | M] (LogMeIn Inc.) -- C:\Program\LogMeIn Hamachi\hamachi-2-ui.exe
    PRC - [2013-11-29 16:20:40 | 001,664,336 | ---- | M] (LogMeIn Inc.) -- C:\Program\LogMeIn Hamachi\hamachi-2.exe
    PRC - [2013-10-11 11:51:12 | 000,375,056 | ---- | M] (LogMeIn, Inc.) -- C:\Program\LogMeIn Hamachi\LMIGuardianSvc.exe
    PRC - [2013-07-08 12:09:10 | 004,153,184 | ---- | M] (TeamViewer GmbH) -- C:\Program\TeamViewer\Version8\TeamViewer_Service.exe
    PRC - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program\Malwarebytes' Anti-Malware\mbamservice.exe
    PRC - [2013-04-04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program\Malwarebytes' Anti-Malware\mbamgui.exe
    PRC - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program\Malwarebytes' Anti-Malware\mbamscheduler.exe
    PRC - [2012-09-03 16:28:09 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program\Java\jre7\bin\jqs.exe
    PRC - [2008-04-14 17:05:06 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
    PRC - [2006-07-20 19:38:26 | 000,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program\Delade filer\LightScribe\LSSrvc.exe
    PRC - [2006-04-06 04:20:00 | 000,122,940 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\DLA\DLACTRLW.EXE
    PRC - [2006-02-15 16:43:16 | 000,892,928 | ---- | M] () -- C:\WINDOWS\SMINST\Scheduler.exe
    PRC - [2006-02-15 16:16:02 | 000,581,693 | ---- | M] (Broadcom Corporation.) -- C:\Program\WIDCOMM\Bluetooth-programvara\BTTray.exe
    PRC - [2006-02-15 16:14:44 | 001,265,748 | ---- | M] (Broadcom Corporation.) -- C:\Program\WIDCOMM\Bluetooth-programvara\BTStackServer.exe
    PRC - [2006-02-15 16:09:20 | 000,258,103 | ---- | M] (Broadcom Corporation.) -- C:\Program\WIDCOMM\Bluetooth-programvara\bin\btwdins.exe
    PRC - [2006-02-14 10:56:08 | 000,122,880 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program\HPQ\HP ProtectTools Security Manager\pthosttr.exe
    PRC - [2006-02-06 21:51:18 | 000,126,976 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program\HPQ\HP ProtectTools Security Manager\PTServs.exe
    PRC - [2005-12-23 12:44:26 | 000,491,606 | ---- | M] () -- C:\Program\HPQ\Shared\HpqToaster.exe
    PRC - [2005-08-19 15:22:10 | 000,397,312 | ---- | M] (Infineon Technologies AG) -- C:\Program\ProtectTools\Embedded Security Software\SpTNA.exe
    PRC - [2005-06-29 20:06:54 | 000,043,008 | ---- | M] (Cognizance Corporation) -- C:\Program\HPQ\IAM\Bin\asghost.exe
    PRC - [2005-06-23 19:27:36 | 000,085,696 | ---- | M] (Symantec Corporation) -- C:\Program\Symantec AntiVirus\VPTray.exe
    PRC - [2005-06-23 19:27:28 | 001,715,904 | ---- | M] (Symantec Corporation) -- C:\Program\Symantec AntiVirus\Rtvscan.exe
    PRC - [2005-06-23 19:27:18 | 000,019,648 | ---- | M] (Symantec Corporation) -- C:\Program\Symantec AntiVirus\DefWatch.exe
    PRC - [2005-06-02 09:21:46 | 000,161,392 | ---- | M] (Symantec Corporation) -- C:\Program\Delade filer\Symantec Shared\ccSetMgr.exe
    PRC - [2005-06-02 09:21:40 | 000,185,968 | ---- | M] (Symantec Corporation) -- C:\Program\Delade filer\Symantec Shared\ccEvtMgr.exe
    PRC - [2005-06-02 09:21:38 | 000,048,752 | ---- | M] (Symantec Corporation) -- C:\Program\Delade filer\Symantec Shared\ccApp.exe


    ========== Modules (No Company Name) ==========

    MOD - [2013-12-26 17:53:53 | 002,153,984 | ---- | M] () -- C:\Program\AVAST Software\Avast\defs\13122601\algo.dll
    MOD - [2013-12-23 17:44:04 | 019,336,120 | ---- | M] () -- C:\Program\AVAST Software\Avast\libcef.dll
    MOD - [2013-12-09 16:51:38 | 000,519,704 | ---- | M] () -- C:\Program\Delade filer\AVG Secure Search\vToolbarUpdater\17.2.0\log4cplusU.dll
    MOD - [2013-12-09 16:51:31 | 002,471,448 | ---- | M] () -- C:\Program\AVG Secure Search\vprot.exe
    MOD - [2013-12-09 16:51:07 | 000,159,768 | ---- | M] () -- C:\Program\Delade filer\AVG Secure Search\vToolbarUpdater\17.2.0\loggingserver.exe
    MOD - [2013-06-29 13:02:36 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
    MOD - [2013-05-16 14:08:15 | 012,433,920 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\81b85db6e9fe04e4d1c9547b993acfce\System.Windows.Forms.ni.dll
    MOD - [2013-02-19 17:28:09 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\e143370f0583abe015d8e3d2d536185e\System.Web.ni.dll
    MOD - [2013-01-10 09:41:17 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\fe025743210c22bea2f009e1612c38bf\System.Xml.ni.dll
    MOD - [2013-01-10 09:35:57 | 001,593,856 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7782f356a838c403b4a8e9c80df5a577\System.Drawing.ni.dll
    MOD - [2013-01-10 09:23:55 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll
    MOD - [2013-01-10 09:23:14 | 011,492,352 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll
    MOD - [2012-01-15 17:08:31 | 001,675,264 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2943.27323__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
    MOD - [2012-01-15 17:08:31 | 000,253,952 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2943.27283__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
    MOD - [2012-01-15 17:08:31 | 000,196,608 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.2943.27336__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
    MOD - [2012-01-15 17:08:31 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2943.27315__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
    MOD - [2012-01-15 17:08:31 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2943.27302__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
    MOD - [2012-01-15 17:08:30 | 000,364,544 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.2943.27513__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll
    MOD - [2012-01-15 17:08:30 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.2943.27506__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
    MOD - [2012-01-15 17:08:30 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.2943.27472__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
    MOD - [2012-01-15 17:08:30 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.2943.27429__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
    MOD - [2012-01-15 17:08:28 | 000,483,328 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2943.27535__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
    MOD - [2012-01-15 17:07:52 | 000,135,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2943.27541__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:52 | 000,102,400 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.2943.27330__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:52 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2943.27296__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:52 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.2943.27329__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:51 | 000,352,256 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.2943.27479__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:51 | 000,167,936 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Dashboard\2.0.2943.27471__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:51 | 000,090,112 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2943.27485__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
    MOD - [2012-01-15 17:07:51 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.2943.27478__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:51 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Runtime\2.0.2943.27471__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:49 | 000,794,624 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.2943.27436__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:49 | 000,434,176 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2943.27303__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:49 | 000,401,408 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.2943.27498__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
    MOD - [2012-01-15 17:07:49 | 000,217,088 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.2943.27343__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:49 | 000,118,784 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.2943.27451__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:49 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.2943.27436__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:49 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.2943.27451__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:48 | 000,901,120 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.2943.27508__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:48 | 000,585,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.2943.27349__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:48 | 000,479,232 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.2943.27430__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:48 | 000,401,408 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.2943.27465__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:48 | 000,331,776 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.2943.27424__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
    MOD - [2012-01-15 17:07:48 | 000,307,200 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.2943.27354__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
    MOD - [2012-01-15 17:07:48 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.2943.27429__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:48 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.2943.27354__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:48 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.2943.27435__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:48 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.2943.27464__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
    MOD - [2012-01-15 17:07:47 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2886.28819__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
    MOD - [2012-01-15 17:07:47 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2886.28812__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
    MOD - [2012-01-15 17:07:47 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.2886.28862__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
    MOD - [2012-01-15 17:07:47 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2886.28831__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
    MOD - [2012-01-15 17:07:47 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2886.28863__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
    MOD - [2012-01-15 17:07:47 | 000,006,656 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
    MOD - [2012-01-15 17:07:46 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.2886.28804__90ba9c70f846762e\CLI.Foundation.dll
    MOD - [2012-01-15 17:07:46 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
    MOD - [2012-01-15 17:07:46 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2886.28801__90ba9c70f846762e\LOG.Foundation.dll
    MOD - [2012-01-15 17:07:46 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2886.28885__90ba9c70f846762e\CLI.Foundation.XManifest.dll
    MOD - [2012-01-15 17:07:46 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2886.28803__90ba9c70f846762e\NEWAEM.Foundation.dll
    MOD - [2012-01-15 17:07:46 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2886.28837__90ba9c70f846762e\DEM.OS.I0602.dll
    MOD - [2012-01-15 17:07:46 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2886.28825__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
    MOD - [2012-01-15 17:07:46 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2886.28817__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
    MOD - [2012-01-15 17:07:46 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2886.28829__90ba9c70f846762e\MOM.Foundation.dll
    MOD - [2012-01-15 17:07:46 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.2886.28836__90ba9c70f846762e\DEM.OS.dll
    MOD - [2012-01-15 17:07:46 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
    MOD - [2012-01-15 17:07:46 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.2886.28837__90ba9c70f846762e\DEM.Graphics.dll
    MOD - [2012-01-15 17:07:46 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
    MOD - [2012-01-15 17:07:45 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2886.28823__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2886.28850__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2886.28860__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Shared\2.0.2886.28849__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2886.28813__90ba9c70f846762e\CLI.Component.Client.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.2886.28844__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2886.28819__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2886.28844__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
    MOD - [2012-01-15 17:07:45 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2886.28838__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.2886.28850__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.2886.28847__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.2886.28847__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.2886.28847__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.2886.28849__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.2886.28830__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.2886.28844__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.2886.28839__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.2886.28848__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.2886.28832__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2886.28839__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
    MOD - [2012-01-15 17:07:44 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.2886.28831__90ba9c70f846762e\APM.Foundation.dll
    MOD - [2012-01-15 17:07:44 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2886.28819__90ba9c70f846762e\AEM.Server.Shared.dll
    MOD - [2012-01-15 17:07:43 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Foundation\2.0.2886.28801__90ba9c70f846762e\AEM.Foundation.dll
    MOD - [2012-01-15 17:07:43 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
    MOD - [2012-01-15 17:07:31 | 000,102,400 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2943.27527__90ba9c70f846762e\MOM.Implementation.dll
    MOD - [2012-01-15 17:07:31 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2943.27552__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
    MOD - [2012-01-15 17:07:31 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2886.28814__90ba9c70f846762e\LOG.Foundation.Private.dll
    MOD - [2012-01-15 17:07:31 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2886.28834__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
    MOD - [2012-01-15 17:07:31 | 000,006,656 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2943.27273__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
    MOD - [2012-01-15 17:07:30 | 000,491,520 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2943.27310__90ba9c70f846762e\CLI.Component.Wizard.dll
    MOD - [2012-01-15 17:07:30 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2943.27275__90ba9c70f846762e\CLI.Component.Runtime.dll
    MOD - [2012-01-15 17:07:30 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2943.27525__90ba9c70f846762e\LOG.Foundation.Implementation.dll
    MOD - [2012-01-15 17:07:30 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2886.28834__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
    MOD - [2012-01-15 17:07:30 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2886.28809__90ba9c70f846762e\CLI.Foundation.Private.dll
    MOD - [2012-01-15 17:07:30 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2886.28826__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
    MOD - [2012-01-15 17:07:28 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2886.28832__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
    MOD - [2012-01-15 17:07:27 | 001,507,328 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2943.27291__90ba9c70f846762e\CLI.Component.Dashboard.dll
    MOD - [2012-01-15 17:07:27 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.2943.27276__90ba9c70f846762e\ATIDEMOS.dll
    MOD - [2012-01-15 17:07:27 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2886.28825__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
    MOD - [2012-01-15 17:07:27 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.2943.27526__90ba9c70f846762e\CCC.Implementation.dll
    MOD - [2012-01-15 17:07:27 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
    MOD - [2012-01-15 17:07:27 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.2886.28851__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
    MOD - [2012-01-15 17:07:26 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.2943.27275__90ba9c70f846762e\APM.Server.dll
    MOD - [2012-01-15 17:07:26 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2943.27274__90ba9c70f846762e\AEM.Server.dll
    MOD - [2012-01-09 19:44:20 | 000,166,912 | ---- | M] () -- C:\Program\WinRAR\RarExt.dll
    MOD - [2011-06-06 12:55:34 | 000,300,544 | ---- | M] () -- C:\Program\Delade filer\Adobe\Acrobat\ActiveX\PDFShell.SVE
    MOD - [2006-02-15 16:43:16 | 000,892,928 | ---- | M] () -- C:\WINDOWS\SMINST\Scheduler.exe
    MOD - [2006-02-15 16:17:26 | 000,053,248 | ---- | M] () -- C:\Program\WIDCOMM\Bluetooth-programvara\BTKeyInd.dll
    MOD - [2005-12-23 12:44:26 | 000,491,606 | ---- | M] () -- C:\Program\HPQ\Shared\HpqToaster.exe
    MOD - [2004-06-01 10:39:56 | 000,094,274 | ---- | M] () -- C:\WINDOWS\system32\HPBHEALR.DLL


    ========== Services (SafeList) ==========

    SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
    SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
    SRV - [2013-12-23 17:43:59 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
    SRV - [2013-12-11 19:34:39 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
    SRV - [2013-12-09 16:51:26 | 001,771,544 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program\Delade filer\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe -- (vToolbarUpdater17.2.0)
    SRV - [2013-11-29 16:20:40 | 001,664,336 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
    SRV - [2013-09-05 09:34:30 | 000,171,680 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program\Skype\Updater\Updater.exe -- (SkypeUpdate)
    SRV - [2013-07-10 02:56:22 | 000,559,016 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program\Delade filer\Steam\SteamService.exe -- (Steam Client Service)
    SRV - [2013-07-08 12:09:10 | 004,153,184 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
    SRV - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
    SRV - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
    SRV - [2012-09-03 16:28:09 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
    SRV - [2006-07-20 19:38:26 | 000,061,440 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program\Delade filer\LightScribe\LSSrvc.exe -- (LightScribeService)
    SRV - [2006-02-15 16:09:20 | 000,258,103 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program\WIDCOMM\Bluetooth-programvara\bin\btwdins.exe -- (btwdins)
    SRV - [2005-06-23 19:27:30 | 000,124,608 | ---- | M] (symantec) [On_Demand | Stopped] -- C:\Program\Symantec AntiVirus\SavRoam.exe -- (SavRoam)
    SRV - [2005-06-23 19:27:28 | 001,715,904 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program\Symantec AntiVirus\Rtvscan.exe -- (Symantec AntiVirus)
    SRV - [2005-06-23 19:27:18 | 000,019,648 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program\Symantec AntiVirus\DefWatch.exe -- (DefWatch)
    SRV - [2005-06-02 09:21:46 | 000,161,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program\Delade filer\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
    SRV - [2005-06-02 09:21:46 | 000,083,568 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program\Delade filer\Symantec Shared\ccPwdSvc.exe -- (ccPwdSvc)
    SRV - [2005-06-02 09:21:40 | 000,185,968 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program\Delade filer\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)
    SRV - [2005-04-22 12:03:28 | 000,206,552 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program\Delade filer\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
    SRV - [2005-03-30 21:48:22 | 000,992,864 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program\Delade filer\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)
    SRV - [2004-10-22 02:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- c:\Program\Delade filer\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
    SRV - [2004-08-10 23:46:56 | 000,483,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program\Windows Media Connect\mswmccds.exe -- (WmcCds)
    SRV - [2004-08-10 20:50:42 | 000,028,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program\Windows Media Connect\mswmcls.exe -- (WmcCdsLs)


    ========== Driver Services (SafeList) ==========

    DRV - File not found [File_System | On_Demand | Stopped] -- C:\Program\Razer\Razer Game Booster\Driver\WinRing0.sys -- (WinRing0_1_2_0)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program\DELADE~1\SYMANT~1\SymcData\idsdefs\20050901.036\symidsco.sys -- (SYMIDSCO)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
    DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
    DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
    DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
    DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleXNt.sys -- (EagleXNt)
    DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
    DRV - File not found [File_System | Auto | Stopped] -- -- (aswFsBlk)
    DRV - [2013-12-27 10:09:48 | 000,040,776 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
    DRV - [2013-12-23 17:44:06 | 000,775,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSnx.sys -- (aswSnx)
    DRV - [2013-12-23 17:44:06 | 000,410,528 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
    DRV - [2013-12-23 17:44:06 | 000,180,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
    DRV - [2013-12-23 17:44:06 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
    DRV - [2013-12-23 17:44:06 | 000,057,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
    DRV - [2013-12-23 17:44:06 | 000,054,832 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (AswRdr)
    DRV - [2013-12-23 17:44:06 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
    DRV - [2013-11-11 15:48:38 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp)
    DRV - [2013-09-30 14:38:50 | 000,052,984 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
    DRV - [2013-09-30 14:38:49 | 000,934,312 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL)
    DRV - [2013-09-30 14:15:58 | 006,616,816 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETwLx32.sys -- (NETwLx32)
    DRV - [2013-06-17 09:00:00 | 001,611,992 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program\Delade filer\Symantec Shared\VirusDefs\20130708.002\NAVEX15.SYS -- (NAVEX15)
    DRV - [2013-06-17 09:00:00 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program\Delade filer\Symantec Shared\VirusDefs\20130708.002\NAVENG.SYS -- (NAVENG)
    DRV - [2013-05-22 17:49:32 | 000,014,776 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
    DRV - [2013-04-04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
    DRV - [2012-08-01 01:34:46 | 000,106,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\Program\Delade filer\Symantec Shared\EENGINE\EraserUtilDrv11220.sys -- (EraserUtilDrv11220)
    DRV - [2012-08-01 01:34:45 | 000,376,480 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program\Delade filer\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
    DRV - [2009-03-18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
    DRV - [2008-01-22 17:38:04 | 002,845,696 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2006-04-06 04:20:00 | 000,094,460 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
    DRV - [2006-04-06 04:20:00 | 000,087,068 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
    DRV - [2006-04-06 04:20:00 | 000,086,812 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
    DRV - [2006-04-06 04:20:00 | 000,025,628 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
    DRV - [2006-04-06 04:20:00 | 000,014,684 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
    DRV - [2006-04-06 04:20:00 | 000,006,364 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
    DRV - [2006-04-06 04:20:00 | 000,002,496 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\DLA\DLADResN.SYS -- (DLADResN)
    DRV - [2006-03-30 13:39:48 | 000,130,432 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\atswpdrv.sys -- (ATSWPDRV)
    DRV - [2006-03-17 07:35:24 | 000,005,660 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
    DRV - [2006-03-17 07:34:46 | 000,022,684 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\DLARTL_N.SYS -- (DLARTL_N)
    DRV - [2006-01-30 02:00:04 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
    DRV - [2006-01-30 02:00:04 | 000,718,464 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
    DRV - [2006-01-30 02:00:04 | 000,201,600 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
    DRV - [2006-01-19 14:50:40 | 001,428,096 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51)
    DRV - [2006-01-12 11:06:16 | 000,142,720 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
    DRV - [2006-01-10 00:00:04 | 000,022,016 | ---- | M] (Hewlett-Packard Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Accelerometer.sys -- (Accelerometer)
    DRV - [2006-01-10 00:00:04 | 000,017,920 | ---- | M] (Hewlett-Packard Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hpdskflt.sys -- (hpdskflt)
    DRV - [2005-10-25 19:10:44 | 000,035,488 | ---- | M] (Infineon Technologies AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\psd.sys -- (PersonalSecureDrive)
    DRV - [2005-09-20 10:30:56 | 000,162,432 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
    DRV - [2005-09-19 13:24:20 | 000,005,760 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EabUsb.sys -- (eabusb)
    DRV - [2005-09-19 13:24:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CPQBttn.sys -- (HBtnKey)
    DRV - [2005-09-19 13:23:52 | 000,007,808 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\eabfiltr.sys -- (eabfiltr)
    DRV - [2005-06-10 14:26:00 | 000,035,968 | ---- | M] (Infineon Technologies AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ifxtpm.sys -- (IFXTPM)
    DRV - [2005-05-31 11:46:26 | 000,087,936 | R--- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gtipci21.sys -- (GTIPCI21)
    DRV - [2005-05-13 19:50:10 | 000,123,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program\Symantec\SYMEVENT.SYS -- (SymEvent)
    DRV - [2005-04-22 12:03:02 | 000,267,192 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\symtdi.sys -- (SYMTDI)
    DRV - [2005-04-22 12:03:00 | 000,017,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\symredrv.sys -- (SYMREDRV)
    DRV - [2005-03-30 21:48:20 | 000,372,832 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program\Delade filer\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
    DRV - [2005-02-04 20:14:32 | 000,053,896 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program\Symantec AntiVirus\Savrtpel.sys -- (SAVRTPEL)
    DRV - [2005-02-04 20:14:30 | 000,324,232 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program\Symantec AntiVirus\savrt.sys -- (SAVRT)
    DRV - [2001-09-06 19:13:08 | 000,036,425 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Upgrade to Google Chrome


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



    IE - HKU\S-1-5-21-1848949643-2008525134-2121549772-1061\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    IE - HKU\S-1-5-21-1848949643-2008525134-2121549772-1061\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


    ========== FireFox ==========

    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
    FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program\Delade filer\AVG Secure Search\SiteSafetyInstaller\17.2.0\\npsitesafety.dll ()
    FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\npNxGameeu.dll File not found
    FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: C:\Program\VideoLAN\VLC\npvlc.dll (VideoLAN)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\Documents and Settings\All Users\Application Data\AVG Secure Search\FireFoxExt\17.2.0.38 [2013-12-09 16:54:16 | 000,000,000 | ---D | M]


    ========== Chrome ==========

    CHR - default_search_provider: Google (Enabled)
    CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{googleriginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{googlemniboxStartMarginParameter}ie={inputEncoding}
    CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{googleageClassification}sugkey={google:suggestAPIKeyParameter},
    CHR - Extension: Google Dokument = C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
    CHR - Extension: Google Drive = C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
    CHR - Extension: YouTube = C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
    CHR - Extension: S\u00F6k p\u00E5 Google = C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
    CHR - Extension: AVG Security Toolbar = C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.2.0.38_0\
    CHR - Extension: Google Wallet = C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
    CHR - Extension: Gmail = C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

    O1 HOSTS File: ([2004-08-04 09:00:00 | 000,000,710 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\DLA\DLASHX_W.DLL (Sonic Solutions)
    O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre7\bin\ssv.dll (Oracle Corporation)
    O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program\AVG Secure Search\17.2.0.38\AVG Secure Search_toolbar.dll (AVG Secure Search)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
    O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    O2 - BHO: (HP Credential Manager for ProtectTools) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program\HPQ\IAM\Bin\ItIeAddIN.dll (Infineon Technologies AG)
    O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program\AVG Secure Search\17.2.0.38\AVG Secure Search_toolbar.dll (AVG Secure Search)
    O4 - HKLM..\Run: [] File not found
    O4 - HKLM..\Run: [20131121] C:\Program\AVAST Software\Avast\setup\emupdate\433ba66f-3282-4ac4-bc65-c939c04539a7.exe (AVAST Software)
    O4 - HKLM..\Run: [Adobe ARM] C:\Program\Delade filer\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
    O4 - HKLM..\Run: [AvastUI.exe] C:\Program\AVAST Software\Avast\AvastUI.exe (AVAST Software)
    O4 - HKLM..\Run: [ccApp] C:\Program\Delade filer\Symantec Shared\ccApp.exe (Symantec Corporation)
    O4 - HKLM..\Run: [CognizanceTS] C:\Program\HPQ\IAM\Bin\AsTsVcc.dll (Cognizance Corporation)
    O4 - HKLM..\Run: [Cpqset] C:\Program\HPQ\Default Settings\Cpqset.exe ()
    O4 - HKLM..\Run: [DLA] C:\WINDOWS\system32\DLA\DLACTRLW.EXE (Sonic Solutions)
    O4 - HKLM..\Run: [GB_UPDATE] C:\Program\Razer\Razer Game Booster\AutoUpdate.exe/AUTORUN File not found
    O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
    O4 - HKLM..\Run: [PTHOSTTR] C:\Program\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE (Hewlett-Packard Development Company, L.P.)
    O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
    O4 - HKLM..\Run: [Reminder] C:\WINDOWS\CREATOR\Remind_XP.exe ()
    O4 - HKLM..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe ()
    O4 - HKLM..\Run: [StartCCC] C:\Program\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
    O4 - HKLM..\Run: [WatchDog] C:\Program\InterVideo\DVD Check\DVDCheck.exe (InterVideo Inc.)
    O4 - HKLM..\Run: [vProt] C:\Program\AVG Secure Search\vprot.exe ()
    O4 - HKLM..\Run: [vptray] C:\Program\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
    O4 - HKU\S-1-5-21-1848949643-2008525134-2121549772-1061..\Run: [MSMSGS] "C:\Program\Messenger\msmsgs.exe" /background File not found
    O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\BTTray.lnk = C:\Program\WIDCOMM\Bluetooth-programvara\BTTray.exe (Broadcom Corporation.)
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-21-1848949643-2008525134-2121549772-1061\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe File not found
    O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe File not found
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2CE19984-0F41-4547-AFED-6B735953AC93}: DhcpNameServer = 192.168.1.1
    O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)
    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program\Delade filer\Skype\Skype4COM.dll (Skype Technologies)
    O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program\Delade filer\AVG Secure Search\ViProtocolInstaller\17.2.0\ViProtocol.dll (AVG Secure Search)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\IfxWlxEN: DllName - (IfxWlxEN.dll) - C:\WINDOWS\System32\IfxWlxEN.dll (Infineon Technologies AG)
    O20 - Winlogon\Notify\NavLogon: DllName - (C:\WINDOWS\system32\NavLogon.dll) - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation)
    O20 - Winlogon\Notify\OneCard: DllName - (C:\Program\HPQ\IAM\Bin\AsWlnPkg.dll) - C:\Program\HPQ\IAM\Bin\AsWlnPkg.dll (Cognizance Corporation)
    O24 - Desktop Components:0 (Min aktuella startsida) - About:Home
    O24 - Desktop WallPaper: C:\WINDOWS\HP Cityscape.bmp
    O24 - Desktop BackupWallPaper: C:\WINDOWS\HP Cityscape.bmp
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2001-07-27 23:07:00 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
    O32 - AutoRun File - [2004-04-30 15:01:00 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
    O34 - HKLM BootExecute: (autocheck autochk *)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
    O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
    O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

    ========== Files/Folders - Created Within 30 Days ==========

    [2013-12-27 10:15:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Mina dokument\Downloads
    [2013-12-27 10:11:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Google
    [2013-12-26 21:35:31 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
    [2013-12-26 21:19:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\Adobe
    [2013-12-26 21:19:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\AVG Secure Search
    [2013-12-26 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\AVAST Software
    [2013-12-26 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\ATI
    [2013-12-26 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\ATI
    [2013-12-26 21:18:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\AVG Secure Search
    [2013-12-26 21:18:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Mina dokument\Mapp för Bluetooth-utbyte
    [2013-12-26 21:18:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Bluetooth Software
    [2013-12-26 21:18:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\LogMeIn
    [2013-12-26 21:18:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Symantec
    [2013-12-26 19:10:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\Malwarebytes
    [2013-12-26 19:09:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Start-meny\Program\Google Chrome
    [2013-12-26 19:09:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\Infineon
    [2013-12-26 19:09:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\LogMeIn Hamachi
    [2013-12-26 19:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\SearchProtect
    [2013-12-26 19:07:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Lol\Application Data\Microsoft
    [2013-12-26 19:07:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Lol\Cookies
    [2013-12-26 19:07:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Lol\Application Data
    [2013-12-26 19:07:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lol\Mina dokument
    [2013-12-26 19:07:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lol\Mina dokument\Mina bilder
    [2013-12-26 19:07:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lol\Mina dokument\Min musik
    [2013-12-26 19:07:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lol\Favoriter
    [2013-12-26 19:07:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lol\Nätverket
    [2013-12-26 19:07:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lol\Mallar
    [2013-12-26 19:07:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lol\Lokala inställningar
    [2013-12-26 19:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\SampleView
    [2013-12-26 19:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\Microsoft
    [2013-12-26 19:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\Macromedia
    [2013-12-26 19:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Application Data\Identities
    [2013-12-26 19:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\ApplicationHistory
    [2013-12-26 19:07:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
    [2013-12-26 19:07:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Lol\SendTo
    [2013-12-26 19:07:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Lol\Recent
    [2013-12-26 19:07:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lol\Start-meny\Program\Tillbehör
    [2013-12-26 19:07:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lol\Start-meny
    [2013-12-26 19:07:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Lol\Start-meny\Program\Autostart
    [2013-12-26 19:07:17 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Lol\Skrivare
    [2013-12-26 19:07:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Lol\Skrivbord
    [2013-12-26 10:08:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\Malwarebytes' Anti-Malware
    [2013-12-26 10:08:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    [2013-12-26 10:08:02 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
    [2013-12-26 10:08:02 | 000,000,000 | ---D | C] -- C:\Program\Malwarebytes' Anti-Malware
    [2013-12-23 20:03:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\Microsoft Silverlight
    [2013-12-23 20:02:53 | 000,000,000 | ---D | C] -- C:\Program\Microsoft Silverlight
    [2013-12-23 17:44:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\Avast
    [2013-12-15 12:07:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\Auto Clicker
    [2013-12-09 16:55:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\LogMeIn Hamachi
    [2013-12-09 16:55:27 | 000,000,000 | ---D | C] -- C:\Program\LogMeIn Hamachi
    [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2013-12-27 11:03:31 | 000,000,352 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
    [2013-12-27 11:03:21 | 000,000,968 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2013-12-27 11:03:17 | 000,000,350 | ---- | M] () -- C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
    [2013-12-27 11:03:17 | 000,000,350 | ---- | M] () -- C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
    [2013-12-27 11:03:17 | 000,000,272 | ---- | M] () -- C:\WINDOWS\tasks\SmartDefrag_Startup.job
    [2013-12-27 11:03:17 | 000,000,270 | ---- | M] () -- C:\WINDOWS\tasks\SmartDefragUpdate.job
    [2013-12-27 11:03:17 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\Driver Booster Update.job
    [2013-12-27 11:03:17 | 000,000,262 | ---- | M] () -- C:\WINDOWS\tasks\Driver Booster Scan.job
    [2013-12-27 11:02:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2013-12-27 11:02:12 | 2146,881,536 | -HS- | M] () -- C:\hiberfil.sys
    [2013-12-27 10:33:08 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
    [2013-12-27 10:28:54 | 000,000,972 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2013-12-27 10:13:35 | 000,001,771 | ---- | M] () -- C:\Documents and Settings\Lol\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
    [2013-12-27 10:13:31 | 000,001,753 | ---- | M] () -- C:\Documents and Settings\Lol\Skrivbord\Google Chrome.lnk
    [2013-12-27 10:09:48 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
    [2013-12-26 19:18:08 | 000,000,747 | ---- | M] () -- C:\Documents and Settings\Lol\Application Data\Microsoft\Internet Explorer\Quick Launch\Starta webbläsaren Internet Explorer.lnk
    [2013-12-26 10:08:04 | 000,000,740 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\Malwarebytes Anti-Malware.lnk
    [2013-12-26 10:07:28 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
    [2013-12-23 17:44:40 | 000,001,677 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\avast! Free Antivirus.lnk
    [2013-12-23 17:44:06 | 000,775,952 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
    [2013-12-23 17:44:06 | 000,410,528 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
    [2013-12-23 17:44:06 | 000,180,248 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
    [2013-12-23 17:44:06 | 000,067,824 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
    [2013-12-23 17:44:06 | 000,057,672 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
    [2013-12-23 17:44:06 | 000,054,832 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
    [2013-12-23 17:44:06 | 000,049,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
    [2013-12-23 17:44:05 | 000,270,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
    [2013-12-23 17:44:05 | 000,043,152 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
    [2013-12-23 17:39:33 | 000,002,578 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
    [2013-12-23 17:03:46 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2013-12-11 19:34:38 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
    [2013-12-11 19:34:38 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
    [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2013-12-26 19:09:57 | 000,001,771 | ---- | C] () -- C:\Documents and Settings\Lol\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
    [2013-12-26 19:09:57 | 000,001,753 | ---- | C] () -- C:\Documents and Settings\Lol\Skrivbord\Google Chrome.lnk
    [2013-12-26 19:09:46 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\Lol\Start-meny\Program\Windows Media Player.lnk
    [2013-12-26 19:09:36 | 000,000,735 | ---- | C] () -- C:\Documents and Settings\Lol\Start-meny\Program\Internet Explorer.lnk
    [2013-12-26 19:09:33 | 000,000,747 | ---- | C] () -- C:\Documents and Settings\Lol\Application Data\Microsoft\Internet Explorer\Quick Launch\Starta webbläsaren Internet Explorer.lnk
    [2013-12-26 19:07:20 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Lol\Application Data\Microsoft\Internet Explorer\Quick Launch\Visa skrivbordet.scf
    [2013-12-26 19:07:19 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Lol\Lokala inställningar\Application Data\fusioncache.dat
    [2013-12-26 19:07:18 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\Lol\Start-meny\Program\Fjärrhjälp.lnk
    [2013-12-26 19:07:18 | 000,001,491 | ---- | C] () -- C:\Documents and Settings\Lol\Start-meny\Program\Software Setup.lnk
    [2013-12-26 19:07:18 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\Lol\Start-meny\Program\Outlook Express.lnk
    [2013-12-26 19:06:41 | 2146,881,536 | -HS- | C] () -- C:\hiberfil.sys
    [2013-12-26 10:08:04 | 000,000,740 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\Malwarebytes Anti-Malware.lnk
    [2013-12-23 17:44:40 | 000,001,677 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\avast! Free Antivirus.lnk
    [2013-09-30 14:08:51 | 000,014,776 | ---- | C] () -- C:\WINDOWS\System32\drivers\SmartDefragDriver.sys
    [2013-09-21 17:54:19 | 000,180,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
    [2013-09-21 17:54:17 | 000,049,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
    [2013-07-23 20:32:16 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
    [2013-06-29 13:05:00 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Lokala inställningar\Application Data\FontCache3.0.0.0.dat
    [2012-11-01 18:31:14 | 000,326,510 | ---- | C] () -- C:\Documents and Settings\LocalService\Lokala inställningar\Application Data\WPFFontCache_v0400-S-1-5-21-1848949643-2008525134-2121549772-1006-0.dat
    [2012-10-31 20:57:25 | 000,162,446 | ---- | C] () -- C:\Documents and Settings\LocalService\Lokala inställningar\Application Data\WPFFontCache_v0400-System.dat
    [2012-08-07 18:13:20 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
    [2012-05-25 19:01:21 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
    [2012-04-06 14:50:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\vpc32.INI
    [2012-02-16 21:19:55 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
    [2012-01-15 18:13:32 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
    [2012-01-02 00:20:43 | 000,000,060 | ---- | C] () -- C:\WINDOWS\System32\SYSDRV.DAT
    [2012-01-01 15:29:04 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
    [2012-01-01 15:29:04 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
    [2012-01-01 15:29:04 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
    [2012-01-01 15:29:04 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
    [2012-01-01 15:29:04 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
    [2012-01-01 15:29:03 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll

    ========== ZeroAccess Check ==========

    [2004-09-08 11:20:48 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

    [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

    [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

    [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
    "" = %SystemRoot%\system32\shdocvw.dll -- [2011-11-01 21:36:07 | 001,510,400 | ---- | M] (Microsoft Corporation)
    "ThreadingModel" = Apartment

    [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
    "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:56:00 | 000,473,600 | ---- | M] (Microsoft Corporation)
    "ThreadingModel" = Free

    [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
    "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 17:04:54 | 000,273,920 | ---- | M] (Microsoft Corporation)
    "ThreadingModel" = Both

    < End of report >


    Okay, here we have the extras.txt

    OTL Extras logfile created on: 2013-12-27 11:07:24 - Run 1
    OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Lol\Mina dokument\Downloads
    Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 6.0.2900.5512)
    Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd

    2,00 Gb Total Physical Memory | 0,93 Gb Available Physical Memory | 46,72% Memory free
    3,85 Gb Paging File | 3,22 Gb Available in Paging File | 83,60% Paging File free
    Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program
    Drive C: | 85,55 Gb Total Space | 17,08 Gb Free Space | 19,97% Space Free | Partition Type: NTFS
    Drive D: | 7,59 Gb Total Space | 0,58 Gb Free Space | 7,70% Space Free | Partition Type: FAT32

    Computer Name: YOUR-5999F0A11E | User Name: Lol | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (All) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .bat [@ = batfile] -- "%1" %*
    .chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
    .cmd [@ = cmdfile] -- "%1" %*
    .com [@ = comfile] -- "%1" %*
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .exe [@ = exefile] -- "%1" %*
    .hlp [@ = hlpfile] -- C:\WINDOWS\System32\winhlp32.exe (Microsoft Corporation)
    .hta [@ = htafile] -- C:\WINDOWS\System32\mshta.exe (Microsoft Corporation)
    .html [@ = htmlfile] -- C:\Program\Internet Explorer\iexplore.exe (Microsoft Corporation)
    .inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
    .ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
    .url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l
    .js [@ = JSFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
    .jse [@ = JSEFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
    .pif [@ = piffile] -- "%1" %*
    .reg [@ = regfile] -- C:\WINDOWS\regedit.exe (Microsoft Corporation)
    .scr [@ = scrfile] -- "%1" /S
    .txt [@ = txtfile] -- C:\WINDOWS\System32\NOTEPAD.EXE (Microsoft Corporation)
    .vbe [@ = VBEFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
    .vbs [@ = VBSFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
    .wsf [@ = WSFFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)
    .wsh [@ = WSHFile] -- C:\WINDOWS\System32\WScript.exe (Microsoft Corporation)

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
    batfile [open] -- "%1" %*
    batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
    chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
    cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
    cmdfile [open] -- "%1" %*
    cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    helpfile [open] -- winhlp32.exe %1 (Microsoft Corporation)
    hlpfile [open] -- %SystemRoot%\System32\winhlp32.exe %1 (Microsoft Corporation)
    htafile [open] -- C:\WINDOWS\system32\mshta.exe "%1" %* (Microsoft Corporation)
    htmlfile [edit] -- Reg Error: Key error.
    htmlfile [open] -- "C:\Program\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
    htmlfile [opennew] -- "C:\Program\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
    htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
    http [open] -- "C:\Program\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
    https [open] -- "C:\Program\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
    inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
    inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
    inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
    inifile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
    inifile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
    InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
    InternetShortcut [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
    jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
    jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
    jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
    jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
    jsefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
    jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
    regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
    regfile [merge] -- Reg Error: Key error.
    regfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
    txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
    txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
    vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
    vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
    vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
    vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
    vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
    vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
    wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Microsoft Corporation)
    wsffile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
    wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Microsoft Corporation)
    wshfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [AddToPlaylistVLC] -- "C:\Program\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Directory [PlayWithVLC] -- "C:\Program\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Applications\iexplore.exe [open] -- "C:\Program\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
    CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program\Internet Explorer\iexplore.exe" (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirstRunDisabled" = 1
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusOverride" = 1
    "FirewallOverride" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    ========== System Restore Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
    "Start" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
    "Start" = 2

    ========== Firewall Settings ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
    "58324:TCP" = 58324:TCP:*:Enabled:Pando Media Booster
    "58324:UDP" = 58324:UDP:*:Enabled:Pando Media Booster

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 1
    "DoNotAllowExceptions" = 0
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
    "58324:TCP" = 58324:TCP:*:Enabled:Pando Media Booster
    "58324:UDP" = 58324:UDP:*:Enabled:Pando Media Booster
    "25565:TCP" = 25565:TCP:*:Enabled:Minecraft
    "25565:UDP" = 25565:UDP:*:Enabled:Minecraft
    "1931:TCP" = 1931:TCP:*:Enabled:Minecraft
    "1931:UDP" = 1931:UDP:*:Enabled:Minecraft
    "50668:TCP" = 50668:TCP:*:Enabled:Minecraft_Server
    "50668:UDP" = 50668:UDP:*:Enabled:Minecraft_Server
    "49082:TCP" = 49082:TCP:*:Enabled:Utorrent
    "49082:UDP" = 49082:UDP:*:Enabled:Utorrentud

    ========== Authorized Applications List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
    "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
    "C:\Program\Pando Networks\Media Booster\PMB.exe" = C:\Program\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
    "C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
    "C:\WINDOWS\SMINST\Scheduler.exe" = C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler -- ()
    "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
    "C:\Program\Steam\Steam.exe" = C:\Program\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
    "C:\Program\Steam\steamapps\lugo135\team fortress 2\hl2.exe" = C:\Program\Steam\steamapps\lugo135\team fortress 2\hl2.exe:*:Enabled:hl2
    "C:\Program\Steam\steamapps\lax231\team fortress 2\hl2.exe" = C:\Program\Steam\steamapps\lax231\team fortress 2\hl2.exe:*:Enabled:hl2
    "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
    "C:\WINDOWS\system32\rundll32.exe" = C:\WINDOWS\system32\rundll32.exe:*:Enabled:Kör en DLL-fil som ett program -- (Microsoft Corporation)
    "C:\Program\Java\jre6\bin\javaw.exe" = C:\Program\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
    "C:\Program\Pando Networks\Media Booster\PMB.exe" = C:\Program\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
    "C:\Documents and Settings\Ungarna\Application Data\Spotify\spotify.exe" = C:\Documents and Settings\Ungarna\Application Data\Spotify\spotify.exe:*:Enabled:Spotify
    "C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe" = C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager
    "C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe
    "C:\Nexon\Combat Arms EU\NMService.exe" = C:\Nexon\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core
    "C:\Documents and Settings\TEMP\Application Data\Spotify\spotify.exe" = C:\Documents and Settings\TEMP\Application Data\Spotify\spotify.exe:*:Enabled:Spotify
    "C:\Program\Java\jre6\bin\java.exe" = C:\Program\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
    "C:\Program\Java\jre7\bin\javaw.exe" = C:\Program\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation)
    "C:\Program\Steam\steamapps\flaxinz\team fortress 2\hl2.exe" = C:\Program\Steam\steamapps\flaxinz\team fortress 2\hl2.exe:*:Enabled:hl2
    "C:\Program\Java\jre7\bin\java.exe" = C:\Program\Java\jre7\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation)
    "C:\Documents and Settings\Ungarna\Application Data\uTorrent\uTorrent.exe" = C:\Documents and Settings\Ungarna\Application Data\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent Inc.)
    "C:\Riot Games\FFXI Boot\ffxi-boot\ffxi-boot.exe" = C:\Riot Games\FFXI Boot\ffxi-boot\ffxi-boot.exe:*:Enabled:Build_100
    "C:\Program\TeamViewer\Version8\TeamViewer.exe" = C:\Program\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
    "C:\Program\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Program\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
    "C:\WINDOWS\system32\java.exe" = C:\WINDOWS\system32\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation)
    "C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8-server -- (Microsoft Corporation)
    "C:\WINDOWS\system32\dxdiag.exe" = C:\WINDOWS\system32\dxdiag.exe:*:Enabled:Microsoft DirectX Diagnostic Tool -- (Microsoft Corporation)
    "C:\Program\Skype\Phone\Skype.exe" = C:\Program\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
    "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
    "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
    "{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic Data Module
    "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
    "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
    "{0A98C77E-A20B-5572-1551-9EAE4BEB6AA1}" = Catalyst Control Center Localization Norwegian
    "{0C667A8A-79AC-F6CD-C6D7-0F4B58FB9584}" = CCC Help Spanish
    "{0DC3F5B7-146F-E6D2-CE95-9D6C7CD2177D}" = CCC Help Japanese
    "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
    "{10C896F2-EC2F-1294-13BE-7ABF18B44A49}" = CCC Help German
    "{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
    "{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Sonic DLA
    "{13EA04CA-DB1B-DDDB-1938-F8EBE4C0A34C}" = Catalyst Control Center Localization Polish
    "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
    "{1BA8365C-E93A-2132-4AE2-9C2DFDB27013}" = Catalyst Control Center Graphics Full Existing
    "{1DE77520-5F35-6E15-13F8-418D207F17FD}" = CCC Help Greek
    "{1F89F212-2052-414A-8B7E-D8604C431BDF}" = HP User Guides 0013
    "{20B38EEB-1579-3010-D53C-0BE030A48F3F}" = CCC Help Hungarian
    "{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus
    "{2298055A-F5E6-4332-9A15-C5D99870E72F}" = HP Embedded Security for ProtectTools
    "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
    "{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
    "{28F451B0-44E5-48C0-8706-84114249F5B4}" = LightScribe 1.4.109.1
    "{296D775C-839A-3618-8D5C-E2B588C5CD12}" = Microsoft .NET Framework 4 Extended SVE Language Pack
    "{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
    "{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
    "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
    "{3248E093-5288-4CA9-B3AB-11A675FEA1F9}" = Symantec AntiVirus
    "{3444E2E9-B768-4490-5050-EEFF0D8869D0}" = Catalyst Control Center Localization Russian
    "{34563BF2-2181-EA35-8A6F-5DB23B3DBB82}" = Catalyst Control Center Localization Hungarian
    "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.00 H1
    "{350C941d-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
    "{38C72867-3322-395E-EED1-B8B61851A3E1}" = ccc-utility
    "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
    "{3E9B8918-3C82-6C6D-ABE1-9DA32E137B17}" = Catalyst Control Center Localization Czech
    "{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = HP Integrated Module with Bluetooth wireless technology
    "{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = Installationsprogram för HPs hanterare för säkerhetskopiering och återställning
    "{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}" = HP Wireless Assistant 2.00 E1
    "{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4C0A3478-F658-424A-FD5F-657E4A701CAC}" = CCC Help Italian
    "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11
    "{50DDB00E-7E08-3463-4FE8-B804E2500D06}" = Catalyst Control Center Graphics Light
    "{5468C2E7-8673-0694-A954-82D5D9BDF5E9}" = Catalyst Control Center Localization Greek
    "{55557243-1193-FFDF-EBF2-AFBD2D672563}" = CCC Help Chinese Standard
    "{55F8D929-8775-51BF-B614-1230AD0DC813}" = CCC Help Korean
    "{5C67F561-4758-4EC9-A727-CF8CEBD58041}" = Catalyst Control Center - Branding
    "{5D97A4A7-C274-4B63-86D9-07A33435F505}" = InterVideo DVD Check
    "{5FBD03E7-B29E-1900-47AB-4697F01D98E5}" = Catalyst Control Center Localization Chinese Standard
    "{6005B423-E721-3691-15D7-90BE56038203}" = Catalyst Control Center Localization Finnish
    "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
    "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler
    "{68330407-4C4C-1A8B-4D37-67D5C0588F3D}" = Catalyst Control Center Graphics Full New
    "{68B88EB8-4B1C-91D1-D59C-6205FEA83B0E}" = CCC Help Chinese Traditional
    "{6B388529-8C30-BB57-0295-670C4AC9438B}" = Catalyst Control Center Localization Korean
    "{7369B95B-8220-279B-F594-62CF0C6BADA3}" = Catalyst Control Center Localization Dutch
    "{75ECB75A-522C-4312-8DE7-597CDA9D96A3}" = HP Mobile Data Protection System
    "{7691F657-C5C7-C096-F076-36DD98EA7FEC}" = Catalyst Control Center Localization French
    "{7735D759-0E41-5A66-8507-96AF384C7A3E}" = ccc-core-static
    "{79BF4901-1EC4-4726-B3C2-A7859706C6E7}" = League of Legends
    "{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = TIPCI
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{83ABA477-0CAE-E1AE-5C1D-B8A76009B51C}" = CCC Help Swedish
    "{86FA75D6-CF1E-43EB-9FAE-4B0D6214CE30}" = Catalyst Control Center Localization Portuguese
    "{870A9033-7509-7350-970A-5A4755AB84A4}" = Catalyst Control Center Localization German
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{913D6A0B-FBB5-8B90-19F0-0014D4FB90FC}" = Catalyst Control Center Localization Italian
    "{914E1AB1-DCA0-4A7D-935F-B58C4B887A2B}" = HP ProtectTools Security Manager 2.00 C3
    "{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
    "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
    "{92D64961-80C1-E213-5D6F-289605449685}" = CCC Help Norwegian
    "{95299FC9-7883-45B9-6733-8A233332C87B}" = ccc-core-preinstall
    "{9597F07F-9F70-5377-35C5-45FF2FDE242E}" = CCC Help French
    "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
    "{992A2DB1-4ABC-4738-BD71-045C5FFE00D1}" = Microsoft .NET Framework 1.1 Swedish Language Pack
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    "{9D79C42A-3635-3551-58F6-378B7F3474C0}" = Catalyst Control Center Core Implementation
    "{A08777B7-7EA8-DD4A-2086-805B1F343D63}" = CCC Help Thai
    "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
    "{A7AD8CEF-72D7-4FE4-8A14-DDD09DC86074}" = HP Notebook Accessories Product Tour
    "{A8FEA904-2003-3CE1-1242-26888D691FCA}" = CCC Help Dutch
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
    "{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic Audio Module
    "{AC76BA86-7AD7-1053-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Svenska
    "{AE052EF7-2640-48D7-8915-69B810D975CB}" = HP BIOS Configuration for ProtectTools 2.00 E1
    "{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic Copy Module
    "{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
    "{B74B6054-0008-232B-B2AE-3684B7FF036B}" = CCC Help Russian
    "{B786AE68-C697-6829-6D7B-4D9BB7C25E0A}" = CCC Help Czech
    "{B9F4C05D-E42F-4E9A-A73F-FDD9355319FB}" = HP Credential Manager for ProtectTools
    "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
    "{C0A7E4F3-82CC-416B-82C6-BA06AACFD635}_is1" = Auto Clicker v1.5
    "{C35582A6-6F45-BB59-34CA-F70A302DAB6E}" = CCC Help Finnish
    "{C579AE41-5875-ACE5-0BD1-221287127896}" = CCC Help English
    "{C60AAF4C-A72C-36E0-8CA4-41FF753D74F6}" = Microsoft .NET Framework 4 Client Profile SVE Language Pack
    "{C6D9AF23-BE25-9287-404E-3A485D76EB00}" = CCC Help Turkish
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CDA96CF0-0755-4B38-F551-DE122D2768ED}" = CCC Help Portuguese
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{CF103051-98A4-8A56-6CDB-C5E21A131F23}" = CCC Help Danish
    "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
    "{D6CBCAF3-8C11-D262-4E24-211D3E420147}" = Catalyst Control Center Localization Japanese
    "{D84F41A8-33E6-402A-8DD6-D2244235BCB8}" = LogMeIn Hamachi
    "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
    "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
    "{E0335435-0379-FE9B-F2E2-72D36E42892C}" = Catalyst Control Center Localization Thai
    "{E0DBC47C-ED3F-4A1B-A929-9A26DAAA14B3}" = Application Installer 4.00.B6
    "{E622D07D-23CB-AEAB-EBAD-6375A63C3010}" = Catalyst Control Center Localization Chinese Traditional
    "{E6D01615-78C9-FF2F-3A2F-F3A8D1102058}" = Catalyst Control Center Localization Swedish
    "{EA32E7DD-3799-D84F-D26D-2FC569FEC211}" = Catalyst Control Center Localization Danish
    "{EAA13A6E-6C11-AA31-24A4-83E81F0C7B95}" = Catalyst Control Center Localization Spanish
    "{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
    "{F2472544-9CBB-4595-B925-30FF619AF3F5}" = Catalyst Control Center Localization Turkish
    "{F6545202-473B-279E-A13E-DE97EF069DC6}" = CCC Help Polish
    "{F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B}" = Windows Media Connect
    "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "Adobe AIR" = Adobe AIR
    "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
    "All ATI Software" = ATI - Software Uninstall Utility
    "ATI Display Driver" = ATI Display Driver
    "avast" = avast! Free Antivirus
    "AVG Secure Search" = AVG Security Toolbar
    "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
    "CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA_hpq0033m" = HDAUDIO Soft Data Fax Modem with SmartCP
    "d4cfeebc-b821-40b7-9f81-d366b1466f03_is1" = Horizon v2.5.11.1
    "Driver Booster_is1" = Driver Booster
    "Google Chrome" = Google Chrome
    "iLivid" = iLivid
    "InstallShield_{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = Texas Instruments PCIxx21/x515/xx12 drivers.
    "League of Legends 3.0.1" = League of Legends
    "LiveUpdate" = LiveUpdate 2.6 (Symantec Corporation)
    "LogMeIn Hamachi" = LogMeIn Hamachi
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
    "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "Microsoft .NET Framework 4 Client Profile SVE Language Pack" = Microsoft .NET Framework 4 Client Profile Language Pack - SVE
    "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
    "Microsoft .NET Framework 4 Extended SVE Language Pack" = Microsoft .NET Framework 4 Extended Language Pack - SVE
    "Notepad++" = Notepad++
    "SearchProtect" = Search Protect
    "Smart Defrag 2_is1" = Smart Defrag 2
    "Steam App 440" = Team Fortress 2
    "SynTPDeinstKey" = Synaptics Pointing Device Driver
    "TeamSpeak 3 Client" = TeamSpeak 3 Client
    "TeamViewer 8" = TeamViewer 8
    "Windows Media Connect" = Windows Media Connect
    "Windows Media Format Runtime" = Windows Media Format Runtime
    "Windows Media Player" = Windows Media Player 10
    "Windows XP Service Pack" = Windows XP Service Pack 3
    "WinRAR archiver" = WinRAR 4.10 (32-bit)
    "VLC media player" = VLC media player 2.0.7

    ========== Last 20 Event Log Errors ==========

    [ Application Events ]
    Error - 2013-12-25 13:30:36 | Computer Name = YOUR-5999F0A11E | Source = PerfNet | ID = 2004
    Description = Det gick inte att öppna tjänsten Server. Prestandadata för tjänsten
    Server kommer inte att returneras. Den returnerade felkoden anges av DWORD-värde
    0.

    Error - 2013-12-25 13:35:51 | Computer Name = YOUR-5999F0A11E | Source = Ci | ID = 4126
    Description = Bearbetar skadade metadata för innehållsindexet på c:\system volume
    information\catalog.wci. Indexet kommer automatiskt att återställas genom att alla
    dokument filtreras om.

    Error - 2013-12-26 14:09:17 | Computer Name = YOUR-5999F0A11E | Source = IFXSPMGT | ID = 2687328
    Description = The Upgrade Tool returned an error.

    Error - 2013-12-26 14:10:33 | Computer Name = YOUR-5999F0A11E | Source = Application Hang | ID = 1002
    Description = Stoppat program explorer.exe, version 6.0.2900.5512, stoppad modul
    hungapp, version 0.0.0.0, stoppad adress 0x00000000.

    Error - 2013-12-26 14:13:45 | Computer Name = YOUR-5999F0A11E | Source = Ci | ID = 4126
    Description = Bearbetar skadade metadata för innehållsindexet på c:\system volume
    information\catalog.wci. Indexet kommer automatiskt att återställas genom att alla
    dokument filtreras om.

    Error - 2013-12-26 16:17:04 | Computer Name = YOUR-5999F0A11E | Source = IFXSPMGT | ID = 2687328
    Description = The Upgrade Tool returned an error.

    Error - 2013-12-26 16:21:21 | Computer Name = YOUR-5999F0A11E | Source = Ci | ID = 4126
    Description = Bearbetar skadade metadata för innehållsindexet på c:\system volume
    information\catalog.wci. Indexet kommer automatiskt att återställas genom att alla
    dokument filtreras om.

    Error - 2013-12-26 16:34:29 | Computer Name = YOUR-5999F0A11E | Source = IFXSPMGT | ID = 2687328
    Description = The Upgrade Tool returned an error.

    Error - 2013-12-27 05:11:21 | Computer Name = YOUR-5999F0A11E | Source = IFXSPMGT | ID = 2687328
    Description = The Upgrade Tool returned an error.

    Error - 2013-12-27 06:03:21 | Computer Name = YOUR-5999F0A11E | Source = IFXSPMGT | ID = 2687328
    Description = The Upgrade Tool returned an error.

    [ System Events ]
    Error - 2013-12-26 14:04:26 | Computer Name = YOUR-5999F0A11E | Source = DCOM | ID = 10005
    Description = DCOM fick felet %1084 vid försök att starta tjänsten netman med argumenten
    för att köra servern: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

    Error - 2013-12-26 14:05:03 | Computer Name = YOUR-5999F0A11E | Source = DCOM | ID = 10005
    Description = DCOM fick felet %1084 vid försök att starta tjänsten IFXSpMgtSrv med
    argumenten -Service för att köra servern: {FBCD9C6A-72CB-47BB-99DD-2317551491DE}

    Error - 2013-12-26 14:05:03 | Computer Name = YOUR-5999F0A11E | Source = DCOM | ID = 10005
    Description = DCOM fick felet %1084 vid försök att starta tjänsten EventSystem med
    argumenten för att köra servern: {1BE1F766-5536-11D1-B726-00C04FB926AF}

    Error - 2013-12-26 14:09:05 | Computer Name = YOUR-5999F0A11E | Source = Service Control Manager | ID = 7000
    Description = Tjänsten aswFsBlk kunde inte startas på grund av följande fel: %%2

    Error - 2013-12-26 16:16:43 | Computer Name = YOUR-5999F0A11E | Source = Service Control Manager | ID = 7000
    Description = Tjänsten aswFsBlk kunde inte startas på grund av följande fel: %%2

    Error - 2013-12-26 16:32:55 | Computer Name = YOUR-5999F0A11E | Source = sr | ID = 1
    Description = Systemåterställningsfiltret påträffade det oväntade felet 0xC0000001
    när filen på volymen HarddiskVolume1 behandlades. Volymen övervakas inte längre.

    Error - 2013-12-26 16:34:34 | Computer Name = YOUR-5999F0A11E | Source = Service Control Manager | ID = 7000
    Description = Tjänsten aswFsBlk kunde inte startas på grund av följande fel: %%2

    Error - 2013-12-26 16:34:34 | Computer Name = YOUR-5999F0A11E | Source = Service Control Manager | ID = 7026
    Description = Följande start- eller systemstartdrivrutin(er) avbröts på grund av
    fel under start: AliIde PCIIde ViaIde

    Error - 2013-12-27 05:11:16 | Computer Name = YOUR-5999F0A11E | Source = Service Control Manager | ID = 7000
    Description = Tjänsten aswFsBlk kunde inte startas på grund av följande fel: %%2

    Error - 2013-12-27 06:05:31 | Computer Name = YOUR-5999F0A11E | Source = Service Control Manager | ID = 7000
    Description = Tjänsten aswFsBlk kunde inte startas på grund av följande fel: %%2


    < End of report >

  8. The Following User Says Thank You to DuhDurk For This Useful Post:


  9. #5
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hi DuhDurk,

    First off and important!

    You have signs of 2 Anti Virus programs running,
    • Avast.
    • Symantec Anti Virus.


    The real-time protection of two antivirus programs may conflict with each other and cause the following:

    * False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
    * Conflicts: Your system may lock up due to both products attempting to access the same file at the same time.
    * Performance: More that one antivirus will cause your PC to become slow and it may even crash or blue screen.
    * Less protection: Two antivirus trying to scan the same file may interfere with the process and allow a malicious file onto the computer without notice to you.
    **Symantec is a paid for Anti virus, so if your subscription is up to date I suggest you keep Symantec and uninstall Avast Anti Virus using the Avast Uninstall tool found Here. Please follow the instruction to remove Avast.

    Let me know what Anti Virus you're going to keep. Then we can move forward with the rest of the work.

    Please post the Malwarebytes log.

    Open Malwarebytes and click the "Logs" tab. This tab shows a list of log files that the program creates when it performs a scan. Each file shows the location where Malwarebytes stores the file. This is the default location for your reports. Yours will be here,

    C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs


    Thanks
    Joe
    Last edited by zep516; 12-27-2013 at 09:44 PM.

  10. The Following User Says Thank You to zep516 For This Useful Post:


  11. #6
    Member
    Join Date
    Dec 2013
    Posts
    10
    Points
    5

    Default

    I'm going to keep symantec. I will run a new virus scan; the virus defenition just updated. I hope it wont be a problem (with the scan) that the computer has to be restarted every 30 min due to the extreme slowdown. I will let the scan finish, then restart, and post the log here.

    Edit: urmagurd, the scan runs 10x faster than when i had avast x_x.

  12. The Following User Says Thank You to DuhDurk For This Useful Post:


  13. #7
    Member
    Join Date
    Dec 2013
    Posts
    10
    Points
    5

    Default

    Okay, i just run the scan, removed a few of the non PUP things manually (found them and deleted them) and now my computer seems to be going alot smoother. Im still going to post the log so here you go:

    Malwarebytes Anti-Malware (Trial) 1.75.0.1300
    Malwarebytes : Free Anti-Malware

    Database version: v2013.12.28.03

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 6.0.2900.5512
    Lol :: YOUR-5999F0A11E [administrator]

    Protection: Enabled

    2013-12-28 10:41:20
    mbam-log-2013-12-28 (10-41-20).txt

    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 258333
    Time elapsed: 40 minute(s), 9 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 1
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|StartMenuLogoff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 15
    C:\Documents and Settings\Ungarna\Lokala inställningar\Temp\SPSetup.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nss10.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsg1B.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsh1E.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsi32.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsl48A.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsm483.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsn36.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nso13.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsq482.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsq489.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsu47.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsv42.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsv4B.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
    C:\WINDOWS\Temp\nsz44.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.

    (end)

  14. The Following User Says Thank You to DuhDurk For This Useful Post:


  15. #8
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hi,

    Looking good, please don't make any more changes , remove anything or run any more scans. I'll provide a set of instructions soon to proceed.

    Thanks
    Joe

  16. #9
    Member
    Join Date
    Dec 2013
    Posts
    10
    Points
    5

    Default

    Problem seems to be solved. I've gotten no more slowdowns/other stuff and it works great again. T

  17. #10
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    We are not done here!!!!

    Stick with me until I tell you that your clean. Just because the symptoms go away does not mean all the Malware is gone.

    Thanks
    Joe

Page 1 of 2 12 LastLast