OTL logfile created on: 2012-06-14 12:54:29 - Run 1
OTL by OldTimer - Version 3.2.48.0 Folder = C:\Documents and Settings\mattias\Skrivbord
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd
1,50 Gb Total Physical Memory | 0,98 Gb Available Physical Memory | 65,30% Memory free
3,35 Gb Paging File | 2,97 Gb Available in Paging File | 88,54% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program
Drive C: | 146,21 Gb Total Space | 72,13 Gb Free Space | 49,34% Space Free | Partition Type: NTFS
Computer Name: MB | User Name: mattias | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\mattias\Skrivbord\OTL(1).exe (OldTimer Tools)
PRC - C:\Program\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited)
PRC - C:\Program\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - c:\Program\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Program\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
PRC - C:\Program\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program\Personal\bin\Personal.exe (Technology Nexus AB)
PRC - C:\Program\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
PRC - C:\Program\BrowserCompanion\BCHelper.exe (Blabbers Communications LTD)
PRC - C:\Program\Delade filer\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
PRC - C:\WINDOWS\SYSTEM32\WGATray.exe (Microsoft Corporation)
PRC - C:\Program\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program\Intel\Intel Application Accelerator\IAAnotif.exe (Intel Corporation)
PRC - C:\Program\Intel\Intel Application Accelerator\IAANTmon.exe (Intel Corporation)
PRC - C:\Program\Delade filer\Microsoft Shared\VS7Debug\mdm.exe (Microsoft Corporation)
========== Modules (No Company Name) ==========
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\9080c8e8e7b6dfb502c1328673d636f8\System.Management.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\92d58f840f549f9bd880783d43db7e3c\System.Runtime.Remoting.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\995fcf39ead2c2a53e084505c2c67d49\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\8ca00132a08c69697adf1cda32ebd835\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\38d07a5ac34b99d94fd14f42e779f625\System.Core.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7416fe825e6e49a87fa8ff60c8971813\PresentationFramework.Classic.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\5b8ff47c1db373a2a4c638ca31988bd2\PresentationFramework.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\4eb3cd1f1d5a83617524a9dfb96a657d\PresentationCore.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsBase\6d8bef0d008389874e55c0308f0c18e5\WindowsBase.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll ()
MOD - C:\Program\adawaretb\adawareDx.dll ()
MOD - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\PDFShell.SVE ()
MOD - C:\Documents and Settings\mattias\Lokala inställningar\Temp\85e80529-e4f2-4f39-a0f4-8e660bf7f00d\CliSecureRT.dll ()
MOD - C:\Program\Samsung\Kies\External\FirmwareUpdate\sv-SE\CommonModule.resources.dll ()
MOD - C:\Program\Samsung\Kies\External\FirmwareUpdate\FirmwareUpdateAgent.Common.dll ()
MOD - C:\Program\Samsung\Kies\External\FirmwareUpdate\FirmwareUpdate.MVVM.dll ()
MOD - C:\Program\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
MOD - C:\Program\Samsung\Kies\External\FirmwareUpdate\IPCServer.dll ()
MOD - C:\Program\Samsung\Kies\External\FirmwareUpdate\ISharedIPCInterface.dll ()
MOD - C:\Program\Samsung\Kies\External\FirmwareUpdate\CommonModule.dll ()
MOD - C:\WINDOWS\SYSTEM32\cpwmon2k.dll ()
MOD - C:\Program\Ad-Aware Antivirus\Definitions\libMachoUniv.dll ()
MOD - C:\Program\Ad-Aware Antivirus\Definitions\libBase64.dll ()
MOD - C:\Program\Delade filer\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program\Delade filer\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program\BrowserCompanion\sqlite3.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_sv_b77a5c561934e089\mscorlib.resources.dll ()
========== Win32 Services (SafeList) ==========
SRV - (NipSvc) -- C:\NORMAN\Nvc\BIN\nipsvc.exe File not found
SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
SRV - (MozillaMaintenance) -- C:\Program\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (Ad-Aware Service) -- C:\Program\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
SRV - (Lavasoft Ad-Aware Service) -- C:\Program\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited)
SRV - (MsMpSvc) -- c:\Program\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (SBAMSvc) -- C:\Program\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
SRV - (Apple Mobile Device) -- C:\Program\Delade filer\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (IDriverT) -- C:\Program\Delade filer\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (IAANTMon) -- C:\Program\Intel\Intel Application Accelerator\IAANTmon.exe (Intel Corporation)
SRV - (MDM) -- C:\Program\Delade filer\Microsoft Shared\VS7Debug\mdm.exe (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (WDICA) -- File not found
DRV - (tvtool) -- C:\Program\TVTool 9.5\tvtool.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (motusbdevice) -- system32\DRIVERS\motusbdevice.sys File not found
DRV - (Motousbnet) -- system32\DRIVERS\Motousbnet.sys File not found
DRV - (MotoSwitchService) -- system32\DRIVERS\motswch.sys File not found
DRV - (motmodem) -- system32\DRIVERS\motmodem.sys File not found
DRV - (motccgpfl) -- system32\DRIVERS\motccgpfl.sys File not found
DRV - (motccgp) -- system32\DRIVERS\motccgp.sys File not found
DRV - (lbrtfdc) -- File not found
DRV - (JabraDFU) -- System32\Drivers\JabraMobileCsrDfuX86.sys File not found
DRV - (Changer) -- File not found
DRV - (BTCFilterService) -- system32\DRIVERS\motfilt.sys File not found
DRV - (Lavasoft Kernexplorer) -- C:\Program\Lavasoft\Ad-Aware\kernexplorer.sys ()
DRV - (sbapifs) -- C:\WINDOWS\SYSTEM32\DRIVERS\sbapifs.sys (GFI Software)
DRV - (sbaphd) -- C:\WINDOWS\SYSTEM32\DRIVERS\sbaphd.sys (GFI Software)
DRV - (SBRE) -- C:\WINDOWS\SYSTEM32\DRIVERS\SBREDrv.sys (GFI Software)
DRV - (dgderdrv) -- C:\WINDOWS\SYSTEM32\DRIVERS\dgderdrv.sys (Devguru Co., Ltd)
DRV - (Lbd) -- C:\WINDOWS\SYSTEM32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (s1039bus) Sony Ericsson Device 1039 driver (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\s1039bus.sys (MCCI Corporation)
DRV - (s1039nd5) Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS) -- C:\WINDOWS\SYSTEM32\DRIVERS\s1039nd5.sys (MCCI Corporation)
DRV - (s1039mdm) -- C:\WINDOWS\SYSTEM32\DRIVERS\s1039mdm.sys (MCCI Corporation)
DRV - (s1039unic) Sony Ericsson Device 1039 USB Ethernet Emulation (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\s1039unic.sys (MCCI Corporation)
DRV - (s1039mgmt) Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\s1039mgmt.sys (MCCI Corporation)
DRV - (s1039obex) -- C:\WINDOWS\SYSTEM32\DRIVERS\s1039obex.sys (MCCI Corporation)
DRV - (s1039mdfl) -- C:\WINDOWS\SYSTEM32\DRIVERS\s1039mdfl.sys (MCCI Corporation)
DRV - (fssfltr) -- C:\WINDOWS\SYSTEM32\DRIVERS\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (ggsemc) -- C:\WINDOWS\SYSTEM32\DRIVERS\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV - (ggflt) -- C:\WINDOWS\SYSTEM32\DRIVERS\ggflt.sys (Sony Ericsson Mobile Communications)
DRV - (seehcri) -- C:\WINDOWS\SYSTEM32\DRIVERS\seehcri.sys (Sony Ericsson Mobile Communications)
DRV - (s117obex) -- C:\WINDOWS\SYSTEM32\DRIVERS\s117obex.sys (MCCI Corporation)
DRV - (s117mdm) -- C:\WINDOWS\SYSTEM32\DRIVERS\s117mdm.sys (MCCI Corporation)
DRV - (s117mgmt) Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\s117mgmt.sys (MCCI Corporation)
DRV - (s117unic) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\s117unic.sys (MCCI Corporation)
DRV - (s117nd5) Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS) -- C:\WINDOWS\SYSTEM32\DRIVERS\s117nd5.sys (MCCI Corporation)
DRV - (s117mdfl) -- C:\WINDOWS\SYSTEM32\DRIVERS\s117mdfl.sys (MCCI Corporation)
DRV - (s117bus) Sony Ericsson Device 117 driver (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\s117bus.sys (MCCI Corporation)
DRV - (w200obex) -- C:\WINDOWS\SYSTEM32\DRIVERS\w200obex.sys (MCCI)
DRV - (w200mgmt) Sony Ericsson W200 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\w200mgmt.sys (MCCI)
DRV - (w200mdm) -- C:\WINDOWS\SYSTEM32\DRIVERS\w200mdm.sys (MCCI)
DRV - (w200mdfl) -- C:\WINDOWS\SYSTEM32\DRIVERS\w200mdfl.sys (MCCI)
DRV - (w200bus) Sony Ericsson W200 driver (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\w200bus.sys (MCCI)
DRV - (k750obex) -- C:\WINDOWS\SYSTEM32\DRIVERS\k750obex.sys (MCCI)
DRV - (k750mgmt) -- C:\WINDOWS\SYSTEM32\DRIVERS\k750mgmt.sys (MCCI)
DRV - (k750mdm) -- C:\WINDOWS\SYSTEM32\DRIVERS\k750mdm.sys (MCCI)
DRV - (k750mdfl) -- C:\WINDOWS\SYSTEM32\DRIVERS\k750mdfl.sys (MCCI)
DRV - (k750bus) Sony Ericsson 750 driver (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\k750bus.sys (MCCI)
DRV - (senfilt) -- C:\WINDOWS\SYSTEM32\DRIVERS\senfilt.sys (Creative Technology Ltd.)
DRV - (SQTECH905C) -- C:\WINDOWS\SYSTEM32\DRIVERS\Capt905c.sys (Service & Quality Technology.)
DRV - (ati2mtag) -- C:\WINDOWS\SYSTEM32\DRIVERS\ati2mtag.sys (ATI Technologies Inc.)
DRV - (b57w2k) -- C:\WINDOWS\SYSTEM32\DRIVERS\b57xp32.sys (Broadcom Corporation)
DRV - (omci) -- C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys (Dell Computer Corporation)
DRV - (MASPINT) -- C:\WINDOWS\System32\drivers\MASPINT.SYS (MicroStaff Co.,Ltd.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{F57AD34E-FF46-4960-82CF-EA11EE6FB2DD}: "URL" =
http://search.live.c...ferrer:source?}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://se.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
http://www.bing.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Live Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL =
http://search.live.c...ferrer:source?}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://search.babylo...000001111b84a30
IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {C61A771F-AA7C-4CBA-9746-C151914AC855}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{A19D7C86-5339-4F9A-8DCD-9C531F2C65A9}: "URL" =
http://search.live.c...ferrer:source?}
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" =
http://search.condui...&ctid=CT2504091
IE - HKCU\..\SearchScopes\{C61A771F-AA7C-4CBA-9746-C151914AC855}: "URL" =
http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\{D2E5E204-4778-4801-A620-FF81D995F650}: "URL" =
http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 192.168.*.*
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.superstart.se/"
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandasecurity.com/activescan: C:\Program\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.2.72: c:\program\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.2.72: c:\program\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.2.72: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.2.72: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.2.72: c:\program\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@se.nexus/Personal: C:\Program\Personal\bin\np_prsnl.dll (Technology Nexus AB)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-03-01 02:22:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program\Mozilla Firefox\components [2012-06-13 20:34:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program\Mozilla Firefox\plugins [2012-06-12 12:29:34 | 000,000,000 | ---D | M]
[2009-10-24 01:04:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\mattias\Application Data\Mozilla\Extensions
[2012-06-13 20:55:33 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\mattias\Application Data\Mozilla\Firefox\Profiles\uyuu74s4.default\extensions
[2010-04-28 09:23:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\mattias\Application Data\Mozilla\Firefox\Profiles\uyuu74s4.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009-07-26 15:44:36 | 000,000,000 | ---D | M] (Codetch) -- C:\Documents and Settings\mattias\Application Data\Mozilla\Firefox\Profiles\uyuu74s4.default\extensions\{420ed894-c19f-4318-a83f-bacae374db28}
[2012-05-15 10:47:11 | 000,000,000 | ---D | M] (Lavasoft Search Plugin) -- C:\Documents and Settings\mattias\Application Data\Mozilla\Firefox\Profiles\uyuu74s4.default\extensions\jid1-yZwVFzbsyfMrqQ@jetpack
[2008-05-31 23:31:48 | 000,000,000 | ---D | M] ("Svensk ordlista">) -- C:\Documents and Settings\mattias\Application Data\Mozilla\Firefox\Profiles\uyuu74s4.default\extensions\sv@dictionaries.addons.mozilla(2).org
[2009-08-23 09:56:34 | 000,002,163 | ---- | M] () -- C:\Documents and Settings\mattias\Application Data\Mozilla\Firefox\Profiles\uyuu74s4.default\searchplugins\bing.xml
[2011-11-12 11:18:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program\Mozilla Firefox\extensions
[2012-03-01 02:22:04 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\MATTIAS\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\UYUU74S4.DEFAULT\EXTENSIONS\{BA14329E-9550-4989-B3F2-9732E92D17CC}
[2012-05-05 15:16:26 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program\mozilla firefox\components\browsercomps.dll
[2012-06-08 22:23:24 | 000,002,352 | ---- | M] () -- C:\Program\mozilla firefox\searchplugins\babylon.xml
[2011-10-02 16:23:31 | 000,002,252 | ---- | M] () -- C:\Program\mozilla firefox\searchplugins\bing.xml
[2011-11-12 11:18:33 | 000,002,040 | ---- | M] () -- C:\Program\mozilla firefox\searchplugins\twitter.xml
========== Chrome ==========
CHR - default_search_provider: MSN Live Search ()
CHR - default_search_provider: search_url =
http://search.live.c...ferrer:source?}
CHR - default_search_provider: suggest_url =
O1 HOSTS File: ([2008-07-04 15:15:13 | 000,000,027 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Chatvibes Browser Helper) - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program\BrowserCompanion\jsloader.dll ( )
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Ad-Aware Security Toolbar) - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program\adawaretb\adawareDx.dll ()
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Chatvibes Browser Helper Verifier) - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program\BrowserCompanion\updatebhoWin32.dll ( )
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Ad-Aware Security Toolbar) - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program\adawaretb\adawareDx.dll ()
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited)
O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
O4 - HKLM..\Run: [Adobe ARM] C:\Program\Delade filer\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program\Delade filer\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Browser companion helper] C:\Program\BrowserCompanion\BCHelper.exe (Blabbers Communications LTD)
O4 - HKLM..\Run: [IAAnotif] C:\Program\Intel\Intel Application Accelerator\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [MSC] c:\Program\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\SYSTEM32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program\Java\jre6\bin\jusched.exe File not found
O4 - HKLM..\Run: [TkBellExe] C:\program\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [KiesHelper] C:\Program\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKCU..\Run: [KiesPDLR] C:\Program\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKCU..\Run: [MsnMsgr] "C:\Program\Windows Live\Messenger\msnmsgr.exe" /background File not found
O4 - HKCU..\Run: [UniblueRegistryBooster] "C:\Program\Uniblue\RegistryBooster\launcher.exe" delay 20000 File not found
O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\Adobe Gamma Loader.lnk = C:\Program\Delade filer\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\BankID säkerhetsprogram.lnk = C:\Program\Personal\bin\Personal.exe (Technology Nexus AB)
O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\Microsoft Office.lnk = C:\Program\Office10\OSA.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\mattias\Start-meny\Program\Autostart\PMB verktyg för mediekontroll.lnk = C:\Program\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffScripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupScripts = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffScripts = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupScripts = 0
O9 - Extra 'Tools' menuitem : Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71}
http://codecs.micros...cs/i386/fhg.CAB (Reg Error: Key error.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}
http://www.apple.com...ex/qtplugin.cab (QuickTime Object)
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533}
https://support.micr...veX/MSDcode.cab (Microsoft Data Collection Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000}
http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700}
http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537}
http://by110fd.bay11...es/MsnPUpld.cab (MSN Photo Upload Tool)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}
http://download.bitd...can8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}
http://www.update.mi...b?1180713662609 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3}
http://support.dell....lSystemLite.CAB (DellSystemLite.Scanner)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {DC6FEBC5-0A2D-458A-A01B-5DB15EEC4305}
http://webc.carinpal...ImageUpload.dll (IlosoftImageUploadCtl Class)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29}
http://www.creative....15035/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D5298D39-63D1-47CC-BB5B-B2CB4B4E0306}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D5298D39-63D1-47CC-BB5B-B2CB4B4E0306}: NameServer = 79.138.0.180,85.8.31.209
O18 - Protocol\Handler\base64 {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
O18 - Protocol\Handler\chrome {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program\Delade filer\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program\Delade filer\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\prox {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\SYSTEM32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avgrsstarter: DllName - (avgrsstx.dll) - File not found
O24 - Desktop Components:0 (Min aktuella startsida) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\mattias\Lokala inställningar\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\mattias\Lokala inställningar\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004-09-16 11:55:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{854c2011-ba7a-11e0-b2a3-001111b84a30}\Shell - "" = AutoRun
O33 - MountPoints2\{854c2011-ba7a-11e0-b2a3-001111b84a30}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{c0581cd1-c5c6-11dc-abb3-001111b84a30}\Shell - "" = AutoRun
O33 - MountPoints2\{c0581cd1-c5c6-11dc-abb3-001111b84a30}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{d211102e-b244-11e0-b28f-001111b84a30}\Shell - "" = AutoRun
O33 - MountPoints2\{d211102e-b244-11e0-b28f-001111b84a30}\Shell\AutoRun\command - "" = G:\setup.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ==========
[2012-06-14 12:47:35 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\mattias\Skrivbord\OTL(1).exe
[2012-06-14 12:24:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Lokala inställningar\Application Data\PCHealth
[2012-06-13 20:40:19 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2012-06-13 20:39:03 | 000,077,816 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys
[2012-06-13 20:37:21 | 000,021,240 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys
[2012-06-13 20:34:42 | 000,000,000 | ---D | C] -- C:\Program\BabylonToolbar
[2012-06-13 20:34:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Application Data\BabylonToolbar
[2012-06-13 20:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\Azureus Vuze
[2012-06-13 20:34:39 | 000,000,000 | ---D | C] -- C:\Program\Vuze_Remote
[2012-06-13 20:34:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Lokala inställningar\Application Data\Vuze_Remote
[2012-06-13 20:34:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Application Data\Ad-Aware Antivirus
[2012-06-13 20:34:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\Ad-Aware Antivirus
[2012-06-13 20:34:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD
[2012-06-13 20:34:27 | 000,000,000 | ---D | C] -- C:\Program\Ad-Aware Antivirus
[2012-06-13 20:34:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\Lavasoft
[2012-06-13 20:34:12 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{ECC164E0-3133-4C70-A831-F08DB2940F70}
[2012-06-13 20:34:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Lokala inställningar\Application Data\adaware
[2012-06-13 20:34:11 | 000,000,000 | ---D | C] -- C:\Program\Toolbar Cleaner
[2012-06-13 20:34:11 | 000,000,000 | ---D | C] -- C:\Program\adawaretb
[2012-06-13 20:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Application Data\adawaretb
[2012-06-13 20:34:01 | 000,000,000 | ---D | C] -- C:\Program\Delade filer\Java
[2012-06-13 20:33:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection
[2012-06-12 13:41:40 | 000,000,000 | --SD | C] -- C:\ComboFix(2)
[2012-06-12 12:46:08 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012-06-12 12:40:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Lokala inställningar\Application Data\Sun
[2012-06-12 12:33:34 | 000,000,000 | ---D | C] -- C:\Program\Delade filer\Java(2)
[2012-06-12 12:30:45 | 000,000,000 | ---D | C] -- C:\Program\Oracle
[2012-06-11 12:45:31 | 000,217,976 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbtis.sys
[2012-06-11 12:44:51 | 000,094,584 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\SbFwIm.sys
[2012-06-11 12:39:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\GFI Software
[2012-06-08 22:35:11 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2012-06-08 22:35:10 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2012-06-08 22:35:04 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012-06-08 22:35:03 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2012-06-08 22:35:00 | 011,111,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2012-06-08 22:22:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\AppData
[2012-06-08 22:22:20 | 000,000,000 | ---D | C] -- C:\Program\BrowserCompanion
[2012-06-08 22:22:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2012-06-08 22:22:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mattias\Application Data\Babylon
[2012-05-15 19:03:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Ad-Aware Antivirus
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012-06-14 12:48:25 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mattias\Skrivbord\OTL(1).exe
[2012-06-14 12:46:54 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\WPA.DBL
[2012-06-14 12:30:39 | 000,000,384 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2012-06-14 12:26:00 | 000,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-06-14 12:20:41 | 000,000,270 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-2849076640-103697791-4167111720-1006.job
[2012-06-14 12:20:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\BOOTSTAT.DAT
[2012-06-14 12:20:11 | 1608,683,520 | -HS- | M] () -- C:\hiberfil.sys
[2012-06-14 12:20:11 | 000,185,816 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-06-13 23:27:12 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012-06-12 09:46:06 | 000,000,482 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2012-06-11 12:49:02 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\SBRC.dat
[2012-06-11 12:45:32 | 000,001,691 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\Ad-Aware Antivirus.lnk
[2012-06-11 12:35:23 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\userinit.exe
[2012-06-10 16:10:20 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\rp_stats.dat
[2012-06-10 16:10:20 | 000,000,044 | ---- | M] () -- C:\WINDOWS\System32\rp_rules.dat
[2012-06-08 23:00:38 | 000,000,783 | ---- | M] () -- C:\Documents and Settings\mattias\Application Data\Microsoft\Internet Explorer\Quick Launch\Starta webbläsaren Internet Explorer.lnk
[2012-06-08 22:23:54 | 000,000,250 | ---- | M] () -- C:\user.js
[2012-06-08 22:14:34 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\mattias\Skrivbord\Genväg (2) till Internet Explorer.lnk
[2012-06-08 22:13:25 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\mattias\Skrivbord\Genväg till Internet Explorer.lnk
[2012-06-08 17:15:00 | 000,000,386 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
[2012-05-31 15:22:03 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll
[2012-05-31 13:42:06 | 000,001,190 | ---- | M] () -- C:\WINDOWS\System32\ServiceConfig.xml
[2012-05-27 18:10:37 | 000,141,312 | ---- | M] () -- C:\Documents and Settings\mattias\Lokala inställningar\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-05-27 17:27:51 | 000,000,155 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012-05-16 17:09:37 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2012-05-15 19:04:16 | 000,000,944 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job
[2012-05-15 15:55:49 | 001,863,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2012-05-15 15:55:49 | 001,863,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012-06-11 12:49:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\SBRC.dat
[2012-06-11 12:45:32 | 000,001,691 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\Ad-Aware Antivirus.lnk
[2012-06-08 22:23:48 | 000,000,250 | ---- | C] () -- C:\user.js
[2012-06-08 22:14:34 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\mattias\Skrivbord\Genväg (2) till Internet Explorer.lnk
[2012-06-08 22:13:25 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\mattias\Skrivbord\Genväg till Internet Explorer.lnk
[2012-05-31 13:42:06 | 000,001,190 | ---- | C] () -- C:\WINDOWS\System32\ServiceConfig.xml
[2012-05-15 19:04:16 | 000,000,944 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job
[2012-05-12 12:11:46 | 002,702,168 | ---- | C] () -- C:\Documents and Settings\LocalService\Lokala inställningar\Application Data\FontCache3.0.0.0.dat
[2012-04-24 23:21:31 | 000,088,656 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll
[2012-03-01 17:38:44 | 000,016,432 | ---- | C] () -- C:\WINDOWS\System32\lsdelete.exe
[2012-02-15 17:56:35 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011-09-16 11:54:48 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe
[2011-09-16 11:54:44 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll
[2011-09-16 11:54:44 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll
[2011-09-16 11:54:44 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll
[2011-09-16 11:54:44 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll
[2011-04-26 14:21:20 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011-04-26 14:21:20 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
========== LOP Check ==========
[2012-06-13 20:34:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection
[2010-08-27 09:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011-08-13 10:24:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011-03-09 16:38:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2007-04-10 22:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2012-06-08 22:22:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2009-11-06 23:00:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Boss Media
[2008-12-20 01:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Fighters
[2009-12-29 00:17:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GARMIN
[2012-06-11 12:39:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GFI Software
[2012-01-22 16:06:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2012-06-12 13:37:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011-07-19 22:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Motorola
[2007-01-10 01:14:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NPF
[2011-12-11 12:58:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Premium
[2007-07-22 17:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\REMOTE CDROM DEAF LITE
[2011-10-02 13:01:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Samsung
[2008-06-06 21:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2010-03-17 20:35:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SPCS
[2009-10-16 23:11:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011-04-15 11:24:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VS
[2010-04-08 15:15:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010-02-17 13:20:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009-05-21 09:41:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2012-06-13 20:34:12 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{ECC164E0-3133-4C70-A831-F08DB2940F70}
[2012-06-13 20:34:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Ad-Aware Antivirus
[2012-06-13 20:34:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\adawaretb
[2012-06-13 20:34:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Azureus
[2012-06-08 22:22:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Babylon
[2012-06-13 20:34:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\BabylonToolbar
[2011-01-23 22:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\BoneTown Demo
[2012-02-29 22:22:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Dropbox
[2007-07-22 17:06:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\File Media Setup
[2011-01-26 00:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\GARMIN
[2011-11-20 20:05:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\HandBrake
[2012-02-29 23:07:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\iid
[2005-03-23 20:03:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Leadertech
[2006-01-21 13:04:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Microgaming
[2011-07-19 22:57:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\motorola
[2011-12-12 15:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\MP3toiPodAudioBookConverter
[2011-10-02 12:28:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\MyPhoneExplorer
[2011-10-02 12:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\OpenCandy
[2009-10-21 20:58:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Opera
[2010-02-10 22:50:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Personal
[2012-01-29 18:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Red Kawa
[2011-08-19 10:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Rovio
[2011-10-02 12:57:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Samsung
[2011-10-29 12:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Sony
[2011-07-30 09:46:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Sony Setup
[2009-10-18 13:10:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Teleca
[2011-11-27 01:21:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Temp
[2005-04-21 11:07:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Template
[2005-04-19 11:13:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\TuneUp Software
[2011-10-02 15:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\Uniblue
[2012-03-27 13:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\uTorrent
[2006-12-31 00:17:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mattias\Application Data\XnView
[2012-06-08 17:15:00 | 000,000,386 | ---- | M] () -- C:\WINDOWS\Tasks\1-Click Maintenance.job
[2012-05-15 19:04:16 | 000,000,944 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Antivirus Scheduled Scan.job
[2012-06-12 09:46:06 | 000,000,482 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 147 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8
< End of report >
Logga in
Bli medlem
attach.txt (12,38Kb)
Citera flera inlägg
