Just nu i M3-nätverket
Gå till innehåll

magnus_n

Medlem
  • Antal inlägg

    33
  • Gick med

  • Senaste besök

Om magnus_n

  • Medlemstitel
    Användare

Profil

  • Ort
    Ystad
  1. Det har du rätt i! Jag avvaktar någon dag för att se vad som händer. Har kontakt med en av mina MSN-kontakter som tidigare regelbundet fått "mina" spam-meddelanden.
  2. Jag är lite osäker på om ComboFix är nödvändigt. Jag googlade och fann bl a följande site: http://www.raymond.cc/blog/archives/2008/06/14/beware-of-pics-for-msn-friends-phishing-websites/ Ursprunget till problemet var att jag fick en liknande länk av en av mina msn-kontakter. Klickade på länken och fyllde i e-mail och password. (Jag vet, oerhört korkat! Var nog inte vid mina fulla sinnes bruk ) Tror inte det handlar om ett virus eller malware, snarare phishing, som nu skickar ut spam-meddelanden till mina kontakter. Jag ändrade mitt MSN-lösenord och ominstallerade MSN. Tror du detta räcker eller ska jag köra ComboFix?
  3. Det skickas meddelande till diverse kontakter jag har i MSN. Meddelanden kan se ut som följer: check out these awesome pics from the awesome party LOL http:// username.nu-incredible-offers.com Hey magnus_n this site is giving away free blackberry phones if you are willing to test one, hurry before they give them all away go to http:// username.bakblu.com username=anv.konto i MSN [log]OTViewIt logfile created on: 2008-12-15 12:33:28 - Run OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Documents and Settings\clmag\Skrivbord Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.11) Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd 1,98 Gb Total Physical Memory | 1,30 Gb Available Physical Memory | 65,45% Memory free 1,83 Gb Paging File | 1,32 Gb Available in Paging File | 71,96% Paging File free Paging file location(s): %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Drive C: | 142,57 Gb Total Space | 90,07 Gb Free Space | 63,18% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: CL-T61-125 Current User Name: clmag Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Whitelist: On File Age = 30 Days ========== Processes ========== [2007-05-31 11:02:06 | 00,036,400 | | M] (Lenovo) C:\WINDOWS\system32\ibmpmsvc.exe [2007-02-27 16:35:04 | 00,266,295 | | M] (Broadcom Corporation.) C:\Program\ThinkPad\Bluetooth Software\bin\btwdins.exe [2007-04-16 10:21:20 | 00,983,040 | | M] (Intel Corporation ) C:\Program\Intel\Wireless\Bin\S24EvMon.exe [2007-01-30 04:05:02 | 00,108,080 | | M] (Lenovo Group Limited) C:\WINDOWS\system32\IPSSVC.EXE [2007-07-05 14:05:04 | 00,065,536 | | M] (Lenovo ) C:\Program\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe [2008-12-12 09:01:19 | 00,927,288 | | M] (Prevx) C:\Program\PrevxCSI\prevxcsi.exe [2007-10-26 13:28:06 | 01,524,512 | | M] (Cisco Systems, Inc.) C:\Program\Cisco Systems\VPN Client\cvpnd.exe [2006-05-23 20:08:06 | 00,622,700 | | M] (Diskeeper Corporation) C:\Program\Diskeeper Corporation\Diskeeper\DkService.exe [2007-04-16 10:33:18 | 00,647,168 | | M] (Intel Corporation) C:\Program\Intel\Wireless\Bin\EvtEng.exe [2008-04-14 17:05:08 | 00,015,360 | | M] (Microsoft Corporation) C:\WINDOWS\system32\inetsrv\inetinfo.exe [2007-01-04 18:48:52 | 00,112,152 | R- | M] (InterVideo) C:\Program\Delade filer\InterVideo\RegMgr\iviRegMgr.exe [2008-12-05 15:53:15 | 00,152,984 | | M] (Sun Microsystems, Inc.) C:\Program\Java\jre6\bin\jqs.exe [2003-06-19 22:25:00 | 00,322,120 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\VS7DEBUG\MDM.EXE [2007-09-06 20:44:28 | 00,771,440 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\NTRtScan.exe [2008-03-21 02:19:00 | 00,155,716 | | M] (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe [2008-07-08 11:17:24 | 16,153,424 | R- | M] (QlikTech AB) C:\Program\QlikView\Server\QVS.exe [2007-04-16 10:14:24 | 00,327,680 | | M] (Intel Corporation) C:\Program\Intel\Wireless\Bin\RegSrvc.exe [2007-06-07 15:43:46 | 00,013,312 | | M] (Lenovo Group Limited) c:\Program\Lenovo\System Update\SUService.exe [2007-08-03 15:10:46 | 00,644,408 | | M] (Lenovo Group Limited) C:\Program\Delade filer\Lenovo\tvt_reg_monitor_svc.exe [2007-10-16 17:33:00 | 00,037,424 | | M] (Lenovo.) C:\WINDOWS\system32\TPHDEXLG.exe [2007-08-03 15:19:08 | 00,722,232 | | M] (IBM) C:\Program\Lenovo\Client Security Solution\tvttcsd.exe [2007-02-08 12:11:32 | 00,569,344 | | M] () C:\Program\Lenovo\Rescue and Recovery\rrpservice.exe [2007-02-08 12:09:58 | 00,950,272 | | M] (Lenovo Group Limited) C:\Program\Lenovo\Rescue and Recovery\rrservice.exe [2007-02-08 12:19:36 | 01,118,208 | | M] (Lenovo Group Limited) c:\Program\Delade filer\Lenovo\Scheduler\tvtsched.exe [2007-02-08 10:40:16 | 00,045,056 | | M] () C:\Program\Lenovo\Rescue and Recovery\ADM\IUService.exe [2007-07-05 14:03:32 | 00,184,320 | | M] (Lenovo ) C:\Program\ThinkPad\ConnectUtilities\AcSvc.exe [2007-09-11 12:25:08 | 00,804,208 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\TmListen.exe [2007-02-08 12:00:06 | 00,022,016 | | M] () C:\Program\Delade filer\Lenovo\Logger\logmon.exe [2008-04-14 17:05:24 | 00,218,112 | | M] (Microsoft Corporation) C:\WINDOWS\system32\wbem\wmiprvse.exe [2007-09-06 20:45:20 | 00,300,400 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\CNTAoSMgr.exe [2007-09-06 20:45:40 | 00,300,392 | | M] (Trend Micro Inc.) C:\WINDOWS\Temp\BT4D0B.EXE [2007-07-05 14:04:18 | 00,114,688 | | M] (Lenovo ) C:\Program\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe [2008-12-12 09:01:19 | 00,927,288 | | M] (Prevx) C:\Program\PrevxCSI\prevxcsi.exe [2008-04-14 17:05:18 | 00,033,280 | | M] (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe [2007-08-11 00:30:40 | 00,110,592 | | M] (Synaptics, Inc.) C:\Program\Synaptics\SynTP\SynTPLpr.exe [2007-08-11 00:30:12 | 00,512,000 | | M] (Synaptics, Inc.) C:\Program\Synaptics\SynTP\SynTPEnh.exe [2007-11-29 19:04:00 | 00,059,168 | | M] (Lenovo Group Limited) C:\Program\Lenovo\NPDIRECT\tpfnf7sp.exe [2007-03-09 06:49:42 | 00,066,176 | | M] (Lenovo Group Limited) C:\Program\Lenovo\HOTKEY\TPOSDSVC.exe [2007-11-22 14:09:26 | 00,181,536 | | M] (Lenovo.) C:\WINDOWS\system32\TpShocks.exe [2007-03-08 05:16:48 | 00,073,776 | | M] (Lenovo Group Limited) C:\Program\Lenovo\HOTKEY\TPONSCR.exe [2006-09-06 08:39:10 | 00,091,688 | | M] (Lenovo Group Limited) C:\Program\Lenovo\ZOOM\TpScrex.exe [2007-03-28 18:32:00 | 00,243,248 | | M] (Lenovo Group Ltd.) C:\Program\ThinkPad\Utilities\EZEJMNAP.EXE [2007-04-09 08:23:56 | 01,015,808 | | M] (Analog Devices, Inc.) C:\Program\Analog Devices\Core\smax4pnp.exe [2007-02-08 12:19:44 | 00,536,576 | | M] (Lenovo Group Limited) C:\Program\Delade filer\Lenovo\Scheduler\scheduler_proxy.exe [2008-04-14 17:05:18 | 00,033,280 | | M] (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe [2006-02-02 04:20:00 | 00,122,940 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLACTRLW.EXE [2005-02-16 15:15:20 | 00,081,920 | | M] (InstallShield Software Corporation) C:\Program\Delade filer\Installshield\UpdateService\issch.exe [2006-11-07 11:51:40 | 00,091,688 | | M] (Lenovo Group Limited) C:\Program\Lenovo\AwayTask\AwaySch.EXE [2007-04-26 18:10:00 | 00,120,368 | | M] (Lenovo Group Limited) C:\Program\ThinkVantage\PrdCtr\LPMGR.EXE [2007-08-03 15:35:38 | 02,630,968 | | M] (Lenovo Group Limited) C:\Program\Lenovo\Client Security Solution\cssauth.exe [2007-09-06 20:45:26 | 00,710,000 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\PccNTMon.exe [2008-04-14 17:05:18 | 00,033,280 | | M] (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe [2005-11-21 14:55:16 | 00,045,056 | | M] (HP) C:\Program\HP\ToolBoxFX\bin\HPTLBXFX.exe [2005-09-29 13:50:08 | 00,036,864 | | M] ( ) C:\Program\HP\HP UT\bin\hppusg.exe [2007-05-08 15:24:20 | 00,054,840 | | M] (Hewlett-Packard) C:\Program\HP\HP Software Update\hpwuSchd2.exe [2008-12-05 15:53:15 | 00,136,600 | | M] (Sun Microsystems, Inc.) C:\Program\Java\jre6\bin\jusched.exe [2007-04-16 10:17:58 | 00,487,424 | | M] (Intel Corporation) C:\Program\Intel\Wireless\Bin\Dot1XCfg.exe [2006-05-18 15:24:06 | 00,196,696 | | M] (Diskeeper Corporation) C:\Program\Diskeeper Corporation\Diskeeper\DkIcon.exe [2008-12-15 12:30:07 | 00,423,424 | | M] (OldTimer Tools) C:\Documents and Settings\clmag\Skrivbord\OTViewIt.exe [2007-12-14 12:06:52 | 00,120,384 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\Windows Live\WLLoginProxy.exe [2007-02-12 14:54:32 | 00,134,144 | | M] (Microsoft Corporation) C:\Program\Windows Live Toolbar\msn_sl.exe ========== (O23) Win32 Services ========== [2007-07-05 14:05:04 | 00,065,536 | | M] (Lenovo ) C:\Program\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe (AcPrfMgrSvc [Auto | Running]) [2007-07-05 14:03:32 | 00,184,320 | | M] (Lenovo ) C:\Program\ThinkPad\ConnectUtilities\AcSvc.exe (AcSvc [Auto | Running]) [2007-10-24 00:47:22 | 00,033,800 | | M] (Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (aspnet_state [On_Demand | Stopped]) [2007-02-27 16:35:04 | 00,266,295 | | M] (Broadcom Corporation.) C:\Program\ThinkPad\Bluetooth Software\bin\btwdins.exe (btwdins [Auto | Running]) [2007-10-24 00:47:40 | 00,070,144 | | M] (Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) [2008-12-12 09:01:19 | 00,927,288 | | M] (Prevx) C:\Program\PrevxCSI\prevxcsi.exe (CSIScanner [Auto | Running]) [2007-10-26 13:28:06 | 01,524,512 | | M] (Cisco Systems, Inc.) C:\Program\Cisco Systems\VPN Client\cvpnd.exe (CVPND [Auto | Running]) [2006-05-23 20:08:06 | 00,622,700 | | M] (Diskeeper Corporation) C:\Program\Diskeeper Corporation\Diskeeper\DkService.exe (Diskeeper [Auto | Running]) [2007-04-16 10:33:18 | 00,647,168 | | M] (Intel Corporation) C:\Program\Intel\Wireless\Bin\EvtEng.exe (EvtEng [Auto | Running]) [2007-05-31 11:02:06 | 00,036,400 | | M] (Lenovo) C:\WINDOWS\system32\ibmpmsvc.exe (IBMPMSVC [Auto | Running]) [2005-11-14 00:06:04 | 00,069,632 | | M] (Macrovision Corporation) C:\Program\Delade filer\Installshield\Driver\1150\Intel 32\IDriverT.exe (IDriverT [On_Demand | Stopped]) [2008-04-14 17:05:08 | 00,015,360 | | M] (Microsoft Corporation) C:\WINDOWS\system32\inetsrv\inetinfo.exe (IISADMIN [Auto | Running]) [2007-01-30 04:05:02 | 00,108,080 | | M] (Lenovo Group Limited) C:\WINDOWS\system32\IPSSVC.EXE (IPSSVC [Auto | Running]) [2007-01-04 18:48:52 | 00,112,152 | R- | M] (InterVideo) C:\Program\Delade filer\InterVideo\RegMgr\iviRegMgr.exe (IviRegMgr [Auto | Running]) [2008-12-05 15:53:15 | 00,152,984 | | M] (Sun Microsystems, Inc.) C:\Program\Java\jre6\bin\jqs.exe (JavaQuickStarterService [Auto | Running]) [2003-06-19 22:25:00 | 00,322,120 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\VS7DEBUG\MDM.EXE (MDM [Auto | Running]) [2007-09-06 20:44:28 | 00,771,440 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\NTRtScan.exe (ntrtscan [Auto | Running]) [2008-03-21 02:19:00 | 00,155,716 | | M] (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe (NVSvc [Auto | Running]) [2006-10-26 12:03:08 | 00,145,184 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\Source Engine\OSE.EXE (ose [On_Demand | Stopped]) [2008-07-07 11:18:54 | 00,044,032 | | M] (QlikTech) C:\Program\QlikView\Publisher\DirectoryServiceConnector\QVDirectoryServiceConnector.exe (QlikViewDirectoryServiceConnector [On_Demand | Stopped]) [2008-07-08 11:17:22 | 00,012,624 | R- | M] (QlikTech) C:\Program\QlikView\Server\HttpServer\QvHttpService.exe (QlikViewHttpService [On_Demand | Stopped]) [2008-07-07 11:18:54 | 00,077,824 | | M] (QlikTech International) C:\Program\QlikView\Publisher\AccessPointService\QVPublisherAccesspointService.exe (QlikViewPublisherAccessPointService [On_Demand | Stopped]) [2008-07-07 11:18:54 | 00,463,360 | | M] (Qliktech Internaltional Inc) C:\Program\QlikView\Publisher\CommandCenterService\QVPublisherCommandCenterService.exe (QlikViewPublisherCommandCenterService [On_Demand | Stopped]) [2008-07-07 11:18:56 | 00,012,288 | | M] (QlikTech) C:\Program\QlikView\Publisher\ExecutionService\QVPublisherExecutionService.exe (QlikViewPublisherExecutionService [On_Demand | Stopped]) [2008-07-08 11:17:24 | 16,153,424 | R- | M] (QlikTech AB) C:\Program\QlikView\Server\QVS.exe (QlikViewServer [Auto | Running]) [2007-04-16 10:14:24 | 00,327,680 | | M] (Intel Corporation) C:\Program\Intel\Wireless\Bin\RegSrvc.exe (RegSrvc [Auto | Running]) [2007-04-16 10:21:20 | 00,983,040 | | M] (Intel Corporation ) C:\Program\Intel\Wireless\Bin\S24EvMon.exe (S24EventMonitor [Auto | Running]) [2008-04-14 17:05:08 | 00,015,360 | | M] (Microsoft Corporation) C:\WINDOWS\system32\inetsrv\inetinfo.exe (SMTPSVC [Disabled | Stopped]) [2006-04-14 09:04:54 | 00,087,840 | | M] (Microsoft Corporation) c:\Program\Microsoft SQL Server\90\Shared\sqlwriter.exe (SQLWriter [On_Demand | Stopped]) [2007-06-07 15:43:46 | 00,013,312 | | M] (Lenovo Group Limited) c:\Program\Lenovo\System Update\SUService.exe (SUService [Auto | Running]) [2007-08-03 15:10:46 | 00,644,408 | | M] (Lenovo Group Limited) C:\Program\Delade filer\Lenovo\tvt_reg_monitor_svc.exe (ThinkVantage Registry Monitor Service [Auto | Running]) [2007-09-11 12:25:08 | 00,804,208 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\TmListen.exe (tmlisten [Auto | Running]) [2007-04-27 20:35:28 | 00,575,064 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\TmProxy.exe (TmProxy [On_Demand | Stopped]) [2007-10-16 17:33:00 | 00,037,424 | | M] (Lenovo.) C:\WINDOWS\system32\TPHDEXLG.exe (TPHDEXLGSVC [Auto | Running]) [2007-08-03 15:19:08 | 00,722,232 | | M] (IBM) C:\Program\Lenovo\Client Security Solution\tvttcsd.exe (TSSCoreService [Auto | Running]) [2007-02-08 12:11:32 | 00,569,344 | | M] () C:\Program\Lenovo\Rescue and Recovery\rrpservice.exe (TVT Backup Protection Service [Auto | Running]) [2007-02-08 12:09:58 | 00,950,272 | | M] (Lenovo Group Limited) C:\Program\Lenovo\Rescue and Recovery\rrservice.exe (TVT Backup Service [Auto | Running]) [2007-02-08 12:19:36 | 01,118,208 | | M] (Lenovo Group Limited) c:\Program\Delade filer\Lenovo\Scheduler\tvtsched.exe (TVT Scheduler [Auto | Running]) [2007-02-08 10:40:16 | 00,045,056 | | M] () C:\Program\Lenovo\Rescue and Recovery\ADM\IUService.exe (tvtnetwk [Auto | Running]) [2007-10-18 11:31:54 | 00,098,328 | | M] (Microsoft Corporation) C:\Program\Windows Live\Messenger\usnsvc.exe (usnjsvc [On_Demand | Stopped]) [2008-04-14 17:05:08 | 00,015,360 | | M] (Microsoft Corporation) C:\WINDOWS\system32\inetsrv\inetinfo.exe (W3SVC [Auto | Running]) [2007-10-25 14:27:54 | 00,266,240 | | M] (Microsoft Corporation) C:\Program\Windows Live\installer\WLSetupSvc.exe (WLSetupSvc [On_Demand | Stopped]) [2006-11-15 09:49:34 | 00,912,384 | | M] (Microsoft Corporation) C:\Program\Windows Media Player\wmpnetwk.exe (WMPNetworkSvc [On_Demand | Stopped]) ========== Driver Services ========== [2001-08-17 21:20:04 | 00,096,256 | | M] (Intel Corporation) C:\WINDOWS\system32\drivers\ac97intc.sys (ac97intc [On_Demand | Stopped]) [2007-04-13 05:08:26 | 00,306,176 | | M] (Analog Devices, Inc.) C:\WINDOWS\system32\drivers\ADIHdAud.sys (ADIHdAudAddService [On_Demand | Running]) [2007-03-22 23:59:48 | 00,094,848 | | M] (Andrea Electronics Corporation) C:\WINDOWS\system32\drivers\aeaudio.sys (AEAudio [On_Demand | Running]) [2008-06-25 23:15:32 | 00,021,393 | | M] (Cisco Systems, Inc.) C:\WINDOWS\system32\drivers\AegisP.sys (AegisP [Auto | Running]) [2001-08-17 21:51:56 | 00,005,248 | | M] (Acer Laboratories Inc.) C:\WINDOWS\system32\drivers\aliide.sys (AliIde [Disabled | Stopped]) [2008-04-13 19:36:39 | 00,043,008 | | M] (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\drivers\amdagp.sys (amdagp [Disabled | Stopped]) [2005-11-08 08:27:20 | 00,011,520 | | M] (IBM Corp.) C:\WINDOWS\system32\drivers\ANC.sys (ANC [system | Running]) [2001-08-17 21:52:00 | 00,026,496 | | M] (Advanced System Products, Inc.) C:\WINDOWS\system32\drivers\asc.sys (asc [Disabled | Stopped]) [2001-08-17 21:51:58 | 00,014,848 | | M] (Advanced System Products, Inc.) C:\WINDOWS\system32\drivers\asc3550.sys (asc3550 [Disabled | Stopped]) [2005-05-17 09:20:08 | 00,015,872 | | M] (Atmel, Inc.) C:\WINDOWS\system32\drivers\atmeltpm.sys (atmeltpm [On_Demand | Running]) [2004-10-15 11:50:20 | 00,015,295 | | M] (Brother Industries Ltd.) C:\WINDOWS\system32\drivers\BrScnUsb.sys (BrScnUsb [On_Demand | Stopped]) [2007-01-24 10:33:00 | 00,530,861 | | M] (Broadcom Corporation.) C:\WINDOWS\system32\drivers\btaudio.sys (btaudio [On_Demand | Running]) [2006-10-09 15:00:00 | 00,030,459 | | M] (Broadcom Corporation.) C:\WINDOWS\system32\drivers\btport.sys (BTDriver [On_Demand | Running]) [2007-02-27 10:02:00 | 00,868,042 | | M] (Broadcom Corporation.) C:\WINDOWS\system32\drivers\btkrnl.sys (BTKRNL [On_Demand | Running]) [2006-10-15 07:01:00 | 00,149,123 | | M] (Broadcom Corporation.) C:\WINDOWS\system32\drivers\btwdndis.sys (BTWDNDIS [On_Demand | Stopped]) [2007-01-24 10:27:00 | 00,067,960 | | M] (Broadcom Corporation.) C:\WINDOWS\system32\drivers\btwusb.sys (BTWUSB [On_Demand | Stopped]) [2001-09-06 19:54:56 | 00,006,656 | | M] (CMD Technology, Inc.) C:\WINDOWS\system32\drivers\cmdide.sys (CmdIde [Disabled | Stopped]) [2007-01-18 15:28:02 | 00,005,275 | | M] (Cisco Systems, Inc.) C:\WINDOWS\system32\drivers\CVirtA.sys (CVirtA [On_Demand | Stopped]) [2007-10-26 13:27:00 | 00,306,300 | | M] (Cisco Systems, Inc.) C:\WINDOWS\system32\drivers\CVPNDRVA.sys (CVPNDRVA [Auto | Running]) [2001-08-17 21:52:16 | 00,179,584 | | M] (Mylex Corporation) C:\WINDOWS\system32\drivers\dac2w2k.sys (dac2w2k [Disabled | Stopped]) [2006-02-02 04:20:00 | 00,025,628 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLABOIOM.SYS (DLABOIOM [Auto | Running]) [2005-11-18 11:02:50 | 00,005,660 | | M] (Sonic Solutions) C:\WINDOWS\system32\drivers\DLACDBHM.SYS (DLACDBHM [system | Running]) [2006-02-02 04:20:00 | 00,002,496 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLADResN.SYS (DLADResN [Auto | Running]) [2006-02-02 04:20:00 | 00,086,652 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS (DLAIFS_M [Auto | Running]) [2006-02-02 04:20:00 | 00,014,684 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS (DLAOPIOM [Auto | Running]) [2006-02-02 04:20:00 | 00,006,364 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLAPoolM.SYS (DLAPoolM [Auto | Running]) [2005-11-18 11:02:10 | 00,022,684 | | M] (Sonic Solutions) C:\WINDOWS\system32\drivers\DLARTL_N.SYS (DLARTL_N [system | Running]) [2006-02-02 04:20:00 | 00,094,332 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS (DLAUDFAM [Auto | Running]) [2006-02-02 04:20:00 | 00,087,036 | | M] (Sonic Solutions) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS (DLAUDF_M [Auto | Running]) [2007-01-31 12:45:06 | 00,127,376 | | M] (Deterministic Networks, Inc.) C:\WINDOWS\system32\drivers\dne2000.sys (DNE [On_Demand | Running]) [2006-03-01 02:30:00 | 00,089,472 | | M] (Sonic Solutions) C:\WINDOWS\system32\drivers\DRVMCDB.SYS (DRVMCDB [boot | Running]) [2005-11-18 04:20:00 | 00,040,544 | | M] (Sonic Solutions) C:\WINDOWS\system32\drivers\DRVNDDM.SYS (DRVNDDM [Auto | Running]) [2001-09-06 21:03:10 | 00,117,760 | | M] (Intel Corporation) C:\WINDOWS\system32\drivers\e100b325.sys (E100B [On_Demand | Stopped]) [2008-01-02 22:53:30 | 00,252,048 | | M] (Intel Corporation) C:\WINDOWS\system32\drivers\e1e5132.sys (e1express [On_Demand | Running]) [2001-09-06 20:09:10 | 00,322,432 | | M] (Matrox Graphics Inc.) C:\WINDOWS\system32\drivers\G400m.sys (G400 [On_Demand | Stopped]) [2008-04-13 17:36:05 | 00,144,384 | | M] (Windows ® Server 2003 DDK provider) C:\WINDOWS\system32\drivers\hdaudbus.sys (HDAudBus [On_Demand | Running]) [2006-12-22 03:56:00 | 00,209,664 | | M] (Conexant Systems, Inc.) C:\WINDOWS\system32\drivers\HSFHWAZL.sys (HSFHWAZL [On_Demand | Running]) [2006-12-22 03:56:00 | 00,988,800 | | M] (Conexant Systems, Inc.) C:\WINDOWS\system32\drivers\HSF_DPV.sys (HSF_DPV [On_Demand | Running]) [2007-02-12 18:36:54 | 00,277,784 | | M] (Intel Corporation) C:\WINDOWS\system32\drivers\iaStor.sys (iaStor [boot | Running]) [2007-05-31 11:01:30 | 00,021,424 | | M] (Lenovo.) C:\WINDOWS\system32\drivers\ibmpmdrv.sys (IBMPMDRV [On_Demand | Running]) [2007-04-02 10:24:08 | 00,004,224 | | M] () C:\WINDOWS\system32\drivers\IBMBLDID.sys (IBMTPCHK [system | Running]) [2003-09-10 22:36:54 | 00,021,060 | | M] (InterVideo, Inc.) C:\WINDOWS\system32\drivers\iviaspi.sys (Iviaspi [On_Demand | Running]) [2006-06-19 06:26:00 | 00,012,672 | | M] (Conexant) C:\WINDOWS\system32\drivers\mdmxsdk.sys (mdmxsdk [Auto | Running]) [2001-08-17 21:52:12 | 00,017,280 | | M] (American Megatrends Inc.) C:\WINDOWS\system32\drivers\mraid35x.sys (mraid35x [Disabled | Stopped]) [2007-04-30 05:37:20 | 02,206,976 | | M] (Intel Corporation) C:\WINDOWS\system32\drivers\NETw4x32.sys (NETw4x32 [On_Demand | Running]) [2008-03-21 02:19:00 | 06,547,936 | | M] (NVIDIA Corporation) C:\WINDOWS\system32\drivers\nv4_mini.sys (nv [On_Demand | Running]) [2008-06-25 23:38:31 | 00,007,012 | | M] (Microsoft Corporation) C:\WINDOWS\system32\drivers\pmemnt.sys (pmem [Auto | Running]) [2006-11-06 09:24:56 | 00,012,080 | | M] (Lenovo Group Limited) C:\WINDOWS\system32\drivers\PROCDD.SYS (PROCDD [Auto | Running]) [2007-05-22 08:59:34 | 00,021,376 | | M] (Lenovo (United States) Inc.) C:\WINDOWS\system32\drivers\psadd.sys (psadd [On_Demand | Running]) [2004-08-04 22:00:00 | 00,017,792 | | M] (Parallel Technologies, Inc.) C:\WINDOWS\system32\drivers\ptilink.sys (Ptilink [On_Demand | Running]) [2008-12-12 09:01:19 | 00,026,808 | | M] (Prevx) C:\WINDOWS\system32\drivers\pxark.sys (pxark [boot | Running]) [2008-06-25 23:39:09 | 00,036,624 | | M] (Sonic Solutions) C:\WINDOWS\system32\drivers\pxhelp20.sys (PxHelp20 [boot | Running]) [2001-08-17 21:52:20 | 00,040,320 | | M] (QLogic Corporation) C:\WINDOWS\system32\drivers\ql1080.sys (ql1080 [Disabled | Stopped]) [2001-08-17 21:52:20 | 00,045,312 | | M] (QLogic Corporation) C:\WINDOWS\system32\drivers\ql12160.sys (ql12160 [Disabled | Stopped]) [2001-08-17 21:52:18 | 00,049,024 | | M] (QLogic Corporation) C:\WINDOWS\system32\drivers\ql1280.sys (ql1280 [Disabled | Stopped]) [2007-08-08 12:42:00 | 00,045,568 | | M] (REDC) C:\WINDOWS\system32\drivers\rimmptsk.sys (rimmptsk [Auto | Running]) [2007-07-30 02:42:00 | 00,043,008 | | M] (REDC) C:\WINDOWS\system32\drivers\rimsptsk.sys (rimsptsk [Auto | Running]) [2007-07-30 03:54:00 | 00,038,400 | | M] (REDC) C:\WINDOWS\system32\drivers\rixdptsk.sys (rismxdp [Auto | Running]) [2007-11-02 14:22:36 | 00,083,496 | | M] (MCCI Corporation) C:\WINDOWS\system32\drivers\s217bus.sys (s217bus [On_Demand | Stopped]) [2007-11-02 14:22:36 | 00,015,016 | | M] (MCCI Corporation) C:\WINDOWS\system32\drivers\s217mdfl.sys (s217mdfl [On_Demand | Stopped]) [2007-11-02 14:22:36 | 00,109,992 | | M] (MCCI Corporation) C:\WINDOWS\system32\drivers\s217mdm.sys (s217mdm [On_Demand | Stopped]) [2007-11-02 14:22:38 | 00,103,976 | | M] (MCCI Corporation) C:\WINDOWS\system32\drivers\s217mgmt.sys (s217mgmt [On_Demand | Stopped]) [2007-11-02 14:22:38 | 00,024,872 | | M] (MCCI Corporation) C:\WINDOWS\system32\drivers\s217nd5.sys (s217nd5 [On_Demand | Stopped]) [2007-11-02 14:22:38 | 00,100,008 | | M] (MCCI Corporation) C:\WINDOWS\system32\drivers\s217obex.sys (s217obex [On_Demand | Stopped]) [2007-11-02 14:22:38 | 00,105,896 | | M] (MCCI) C:\WINDOWS\system32\drivers\s217unic.sys (s217unic [On_Demand | Stopped]) [2007-03-29 14:19:36 | 00,012,416 | | M] (Intel Corporation) C:\WINDOWS\system32\drivers\s24trans.sys (s24trans [Auto | Running]) [2008-04-13 19:36:44 | 00,079,232 | | M] (Microsoft Corporation) C:\WINDOWS\system32\drivers\sdbus.sys (sdbus [On_Demand | Running]) [2007-11-13 11:25:56 | 00,020,480 | | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\WINDOWS\system32\drivers\secdrv.sys (Secdrv [On_Demand | Stopped]) [2007-10-16 17:33:00 | 00,103,472 | | M] (Lenovo.) C:\WINDOWS\system32\drivers\ApsX86.sys (Shockprf [boot | Running]) [2008-04-13 19:36:39 | 00,040,960 | | M] (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\drivers\sisagp.sys (sisagp [Disabled | Stopped]) [2007-03-14 21:10:02 | 00,011,152 | | M] (UPEK Inc.) C:\Program\Delade filer\ThinkVantage Fingerprint Software\Drivers\smihlp.sys (smihlp [Auto | Running]) [2001-08-17 22:07:44 | 00,019,072 | | M] (Adaptec, Inc.) C:\WINDOWS\system32\drivers\sparrow.sys (Sparrow [Disabled | Stopped]) [2001-08-17 22:07:34 | 00,016,256 | | M] (Symbios Logic Inc.) C:\WINDOWS\system32\drivers\symc810.sys (symc810 [Disabled | Stopped]) [2001-08-17 22:07:36 | 00,032,640 | | M] (LSI Logic) C:\WINDOWS\system32\drivers\symc8xx.sys (symc8xx [Disabled | Stopped]) [2001-08-17 22:07:40 | 00,028,384 | | M] (LSI Logic) C:\WINDOWS\system32\drivers\sym_hi.sys (sym_hi [Disabled | Stopped]) [2001-08-17 22:07:42 | 00,030,688 | | M] (LSI Logic) C:\WINDOWS\system32\drivers\sym_u3.sys (sym_u3 [Disabled | Stopped]) [2007-08-11 00:25:28 | 00,177,664 | | M] (Synaptics, Inc.) C:\WINDOWS\system32\drivers\SynTP.sys (SynTP [On_Demand | Running]) [2007-03-14 20:50:08 | 00,040,848 | | M] (UPEK Inc.) C:\WINDOWS\system32\drivers\tcusb.sys (TcUsb [On_Demand | Running]) [2007-12-24 17:37:00 | 00,138,384 | | M] (Trend Micro Inc.) C:\WINDOWS\system32\drivers\tmcomm.sys (tmcomm [Auto | Running]) [2008-08-16 02:00:52 | 00,205,328 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\tmxpflt.sys (TmFilter [Auto | Running]) [2008-08-16 02:00:46 | 00,036,368 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\tmpreflt.sys (TmPreFilter [Auto | Running]) [2007-08-31 15:16:48 | 00,078,864 | | M] (Trend Micro Incorporated.) C:\WINDOWS\system32\drivers\tmtdi.sys (tmtdi [system | Running]) [2007-10-16 17:32:00 | 00,019,504 | | M] (Lenovo.) C:\WINDOWS\system32\drivers\ApsHM86.sys (TPDIGIMN [boot | Running]) [2006-10-23 02:23:28 | 00,017,778 | | M] (IBM Corporation) C:\WINDOWS\system32\drivers\TPHKDRV.sys (TPHKDRV [system | Running]) [2007-12-06 17:22:00 | 00,004,442 | | M] () C:\WINDOWS\system32\drivers\TPPWRIF.SYS (TPPWRIF [system | Running]) [2008-09-01 07:28:38 | 00,235,840 | | M] (TrueCrypt Foundation) C:\WINDOWS\system32\drivers\truecrypt.sys (truecrypt [boot | Running]) [2007-11-29 19:04:00 | 00,007,168 | | M] () C:\WINDOWS\system32\drivers\TSMAPIP.SYS (TSMAPIP [system | Running]) [2008-06-25 23:39:26 | 00,033,536 | | M] (Lenovo) C:\WINDOWS\system32\drivers\tvtfilter.sys (tvtfilter [Auto | Running]) [2007-05-22 14:59:38 | 00,030,336 | | M] (Lenovo (United States) Inc.) C:\WINDOWS\system32\drivers\tvti2c.sys (TVTI2C [On_Demand | Running]) [2001-08-17 21:52:22 | 00,036,736 | | M] (Promise Technology, Inc.) C:\WINDOWS\system32\drivers\ultra.sys (ultra [Disabled | Stopped]) [2008-08-16 01:53:50 | 01,195,448 | | M] (Trend Micro Inc.) C:\Program\Trend Micro\OfficeScan Client\vsapint.sys (VSApiNt [Auto | Running]) [2005-01-26 09:22:20 | 00,280,344 | | M] (Zone Labs LLC) C:\WINDOWS\system32\vsdatant.sys (vsdatant [On_Demand | Stopped]) [2006-12-22 03:55:00 | 00,730,112 | | M] (Conexant Systems, Inc.) C:\WINDOWS\system32\drivers\HSF_CNXT.sys (winachsf [On_Demand | Running]) [2008-04-13 19:36:38 | 00,008,832 | | M] (Microsoft Corporation) C:\WINDOWS\system32\drivers\wmiacpi.sys (WmiAcpi [system | Running]) ========== (R ) Internet Explorer ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main] "Default_Page_URL"=http://www.climber.se "Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896 "Default_Secondary_Page_URL"= "Extensions Off Page"=about:NoAdd-ons "Local Page"=%SystemRoot%\system32\blank.htm "Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896 "Security Risk Page"=about:SecurityRisk "Start Page"=http://go.microsoft.com/fwlink/?LinkId=69157 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search] "CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm "SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main] "Default_Page_URL"=http://www.climber.se "Local Page"=C:\WINDOWS\system32\blank.htm "Search Page"=http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR "SearchDefaultBranded"= "Start Page"=www.climber.se [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL] ""=http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings] "ProxyEnable" = 0 [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main] "Secondary Start Pages"= "Start Page"=http://lenovo.live.com [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings] "ProxyEnable" = 0 [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main] "Secondary Start Pages"= "Start Page"=http://lenovo.live.com [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings] "ProxyEnable" = 0 [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main] [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main] [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\SOFTWARE\Microsoft\Internet Explorer\Main] "Default_Page_URL"=http://www.climber.se "Local Page"=C:\WINDOWS\system32\blank.htm "Search Page"=http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR "SearchDefaultBranded"= "Start Page"=www.climber.se [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\Software\Microsoft\Internet Explorer\SearchURL] ""=http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\Software\Microsoft\Internet Explorer\URLSearchHooks] "{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\Software\Microsoft\Windows\CurrentVersion\Internet Settings] "ProxyEnable" = 0 ========== (O1) Hosts File ========== HOSTS File = (710 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts First 25 entries... 127.0.0.1 localhost ========== (O2) BHO's ========== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\] {18DF081C-E8AD-4283-A596-FA578C2EBDC3} (HKLM) C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) {22BF413B-C6D2-4d91-82A9-A0F997BA588C} (HKLM) C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) {5CA3D70E-1895-11CF-8E15-001234567890} (HKLM) C:\WINDOWS\system32\DLA\DLASHX_W.DLL (Sonic Solutions) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) C:\Program\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) {7E853D72-626A-48EC-A868-BA8D5E23E045} (HKLM) Reg Error: Key does not exist or could not be opened. File not found {9030D464-4C02-4ABF-8ECC-5164760863C6} (HKLM) C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (HKLM) C:\Program\Windows Live Toolbar\msntb.dll (Microsoft Corporation) {DBC80044-A445-435b-BC74-9C25C1C588A9} (HKLM) C:\Program\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) {E7E6F031-17CE-4C07-BC86-EABFE594F69C} (HKLM) C:\Program\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) {F040E541-A427-4CF7-85D8-75E3E0F476C5} (HKLM) C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited) ========== (O3) Toolbars ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar] "{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) C:\Program\Windows Live Toolbar\msntb.dll (Microsoft Corporation) [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser] "{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) C:\Program\Windows Live Toolbar\msntb.dll (Microsoft Corporation) [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser] "{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) C:\Program\Windows Live Toolbar\msntb.dll (Microsoft Corporation) ========== (O4) Run Keys ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="C:\Program\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated) "AMSG"=C:\Program\ThinkVantage\AMSG\Amsg.exe /startup (LENOVO) "AwaySch"=C:\Program\Lenovo\AwayTask\AwaySch.EXE (Lenovo Group Limited) "BLOG"=rundll32 C:\Program\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog () "BrMfcWnd"=C:\Program\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN (Brother Industries, Ltd.) "ControlCenter3"=C:\Program\Brother\ControlCenter3\brctrcen.exe /autorun (Brother Industries, Ltd.) "cssauth"="C:\Program\Lenovo\Client Security Solution\cssauth.exe" silent (Lenovo Group Limited) "DiskeeperSystray"="C:\Program\Diskeeper Corporation\Diskeeper\DkIcon.exe" (Diskeeper Corporation) "DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE (Sonic Solutions) "EZEJMNAP"=C:\Program\ThinkPad\UTILIT~1\EzEjMnAp.Exe (Lenovo Group Ltd.) "HP Software Update"=C:\Program\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard) "HPUsageTracking"="C:\Program\HP\HP UT\bin\hppusg.exe" "C:\Program\HP\HP UT\" ( ) "ISUSPM Startup"=C:\Program\DELADE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup (InstallShield Software Corporation) "ISUSScheduler"="C:\Program\Delade filer\InstallShield\UpdateService\issch.exe" -start (InstallShield Software Corporation) "LPManager"=C:\Program\THINKV~1\PrdCtr\LPMGR.exe (Lenovo Group Limited) "NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation) "nwiz"=nwiz.exe /installquiet /keeploaded /nodetect () "NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation) "OfficeScanNT Monitor"="C:\Program\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow (Trend Micro Inc.) "PWRMGRTR"=rundll32 C:\Program\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor (Lenovo Group Limited) "SoundMAX"=C:\Program\Analog Devices\SoundMAX\Smax4.exe /tray (Analog Devices, Inc.) "SoundMAXPnP"=C:\Program\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.) "SunJavaUpdateSched"=C:\Program\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) "SynTPEnh"=C:\Program\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.) "SynTPLpr"=C:\Program\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.) "ToolBoxFX"="C:\Program\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /systrayIcon:on (HP) "TPFNF7"=C:\Program\Lenovo\NPDIRECT\TPFNF7SP.exe /r (Lenovo Group Limited) "TPHOTKEY"=C:\Program\Lenovo\HOTKEY\TPOSDSVC.exe (Lenovo Group Limited) "TpShocks"=TpShocks.exe (Lenovo.) "TVT Scheduler Proxy"=C:\Program\Delade filer\Lenovo\Scheduler\scheduler_proxy.exe (Lenovo Group Limited) [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Uniblue RegistryBooster 2009"=C:\Program\Uniblue\RegistryBooster\RegistryBooster.exe /S File not found [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Picasa Media Detector"=C:\Program\Picasa2\PicasaMediaDetector.exe File not found [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Picasa Media Detector"=C:\Program\Picasa2\PicasaMediaDetector.exe File not found [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Uniblue RegistryBooster 2009"=C:\Program\Uniblue\RegistryBooster\RegistryBooster.exe /S File not found ========== (O4) Startup Folders ========== ========== (O6 & O7) Current Version Policies ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] "NoDriveTypeAutoRun"=145 [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] "NoDriveTypeAutoRun"=145 [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] "NoDriveTypeAutoRun"=145 [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] "NoDriveTypeAutoRun"=145 [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] "NoDriveTypeAutoRun"=145 [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] "NoDriveTypeAutoRun"=145 ========== (O8) IE Context Menu Extensions ========== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\] &Windows Live Search: C:\Program\Windows Live Toolbar\msntb.dll [2007-02-12 14:56:04 | 00,546,672 | | M] (Microsoft Corporation) Skicka till &Bluetooth-enhet...: C:\Program\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm [2006-08-16 06:16:32 | 00,002,773 | | M] () [HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\MenuExt\] E&xportera till Microsoft Excel: C:\Program\Microsoft Office\OFFICE11\EXCEL.EXE [2008-10-13 11:29:28 | 10,351,944 | | M] (Microsoft Corporation) [HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\MenuExt\] E&xportera till Microsoft Excel: C:\Program\Microsoft Office\OFFICE11\EXCEL.EXE [2008-10-13 11:29:28 | 10,351,944 | | M] (Microsoft Corporation) [HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\MenuExt\] E&xportera till Microsoft Excel: Reg Error: Key does not exist or could not be opened. File not found [HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\MenuExt\] E&xportera till Microsoft Excel: Reg Error: Key does not exist or could not be opened. File not found [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\Software\Microsoft\Internet Explorer\MenuExt\] &Windows Live Search: C:\Program\Windows Live Toolbar\msntb.dll [2007-02-12 14:56:04 | 00,546,672 | | M] (Microsoft Corporation) Skicka till &Bluetooth-enhet...: C:\Program\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm [2006-08-16 06:16:32 | 00,002,773 | | M] () ========== (O9) IE Extensions ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\] {0045D4BC-5189-4b67-969C-83BB1906C421}: Menu: ThinkVantage Password Manager... %ProgramFiles%\Lenovo\Client Security Solution\tvtpwm_ie_com.dll [2007-08-03 15:42:12 | 00,795,960 | | M] (Lenovo Group Limited) {08B0E5C0-4FCB-11CF-AAA5-00401C608501}: Menu: Sun Java-konsol %ProgramFiles%\Java\jre6\bin\npjpi160_11.dll [2008-12-05 15:53:15 | 00,132,504 | | M] (Sun Microsystems, Inc.) {92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Referensinformation %ProgramFiles%\Microsoft Office\OFFICE11\REFIEBAR.DLL [2007-04-19 13:10:18 | 00,063,840 | | M] (Microsoft Corporation) {e2e2dd38-d088-4134-82b7-f2ba38496583}: Menu: @xpsp3res.dll,-20001 %SystemRoot%\network diagnostic\xpnetdiag.exe [2008-04-13 19:53:32 | 00,558,080 | | M] (Microsoft Corporation) {FB5F1910-F110-11d2-BB9E-00C04F795683}: Button: Messenger %ProgramFiles%\Messenger\msmsgs.exe [2008-04-14 17:05:13 | 01,695,232 | -HS- | M] (Microsoft Corporation) {FB5F1910-F110-11d2-BB9E-00C04F795683}: Menu: Windows Messenger %ProgramFiles%\Messenger\msmsgs.exe [2008-04-14 17:05:13 | 01,695,232 | -HS- | M] (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\] CmdMapping\\{0045D4BC-5189-4b67-969C-83BB1906C421} [HKLM] -> %ProgramFiles%\Lenovo\Client Security Solution\tvtpwm_ie_com.dll [ThinkVantage Password Manager...] -> [2007-08-03 15:42:12 | 00,795,960 | | M] (Lenovo Group Limited) CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %ProgramFiles%\Java\jre6\bin\npjpi160_11.dll [sun Java-konsol] -> [2008-12-05 15:53:15 | 00,132,504 | | M] (Sun Microsystems, Inc.) CmdMapping\\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> %ProgramFiles%\Microsoft Office\OFFICE11\REFIEBAR.DLL [Referensinformation] -> [2007-04-19 13:10:18 | 00,063,840 | | M] (Microsoft Corporation) CmdMapping\\{e2e2dd38-d088-4134-82b7-f2ba38496583} [HKLM] -> %SystemRoot%\network diagnostic\xpnetdiag.exe [@xpsp3res.dll,-20001] -> [2008-04-13 19:53:32 | 00,558,080 | | M] (Microsoft Corporation) CmdMapping\\{FB5F1910-F110-11d2-BB9E-00C04F795683} [HKLM] -> %ProgramFiles%\Messenger\msmsgs.exe [Messenger] -> [2008-04-14 17:05:13 | 01,695,232 | -HS- | M] (Microsoft Corporation) [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\SOFTWARE\Microsoft\Internet Explorer\Extensions\] CmdMapping\\{0045D4BC-5189-4b67-969C-83BB1906C421} [HKLM] -> %ProgramFiles%\Lenovo\Client Security Solution\tvtpwm_ie_com.dll [ThinkVantage Password Manager...] -> [2007-08-03 15:42:12 | 00,795,960 | | M] (Lenovo Group Limited) CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %ProgramFiles%\Java\jre6\bin\npjpi160_11.dll [sun Java-konsol] -> [2008-12-05 15:53:15 | 00,132,504 | | M] (Sun Microsystems, Inc.) CmdMapping\\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> %ProgramFiles%\Microsoft Office\OFFICE11\REFIEBAR.DLL [Referensinformation] -> [2007-04-19 13:10:18 | 00,063,840 | | M] (Microsoft Corporation) CmdMapping\\{e2e2dd38-d088-4134-82b7-f2ba38496583} [HKLM] -> %SystemRoot%\network diagnostic\xpnetdiag.exe [@xpsp3res.dll,-20001] -> [2008-04-13 19:53:32 | 00,558,080 | | M] (Microsoft Corporation) CmdMapping\\{FB5F1910-F110-11d2-BB9E-00C04F795683} [HKLM] -> %ProgramFiles%\Messenger\msmsgs.exe [Messenger] -> [2008-04-14 17:05:13 | 01,695,232 | -HS- | M] (Microsoft Corporation) ========== (O12) Internet Explorer Plugins ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\] PluginsPage: "" = http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery ========== (O13) Default Prefixes ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix] ""=http:// ========== (O15) Trusted Sites ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\] 1 domain(s) and sub-domain(s) not assigned to a zone. ========== (O16) DPF ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\] {00140000-B1BA-11CE-ABC6-F5B2E79D9E3F}: https://iof.ystad.se/FtB/LTOCX14N.CAB LEAD Main Control (14.0) {215B8138-A3CF-44C5-803F-8226143CFC0A}: http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab Trend Micro ActiveX Scan Agent 6.6 {6414512B-B978-451D-A0D8-FCFDF33E833C}: http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1220009808883 WUWebControl Class {6E32070A-766D-4EE6-879C-DC1FA91D2FC3}: http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1220010782288 MUWebControl Class {8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab'>http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab'>http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab Java Plug-in 1.6.0_11 {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab Java Plug-in 1.6.0_11 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab Java Plug-in 1.6.0_11 {D27CDB6E-AE6D-11CF-96B8-444553540000}: http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Shockwave Flash Object {E06E2E99-0AA1-11D4-ABA6-0060082AA75C}: https://qliktech.webex.com/client/T26L/webex/ieatgpc.cab GpcContainer Class ========== (O17) DNS Name Servers ========== {572FA2FD-C5AA-477E-A5EA-F214497E01CD} (Servers: | Description: 1394 Net Adapter) {973B6A47-36BC-4C90-99E7-62EBC6D2D555} (Servers: | Description: Intel® 82566MM Gigabit Network Connection) {9BAFFD9F-ADA2-4F9C-858B-39994E60BF7F} (Servers: | Description: Sony Ericsson Device 217 USB Ethernet Emulation (NDIS 5)) {9C9E8A20-10A2-4CB5-886E-58687D6FD779} (Servers: | Description: ) {D877598C-79AC-4F61-9920-46C3D9030F8A} (Servers: | Description: Intel® Wireless WiFi Link 4965AGN) {F3F77127-4C9A-49A5-9630-567E9BB01651} (Servers: | Description: ) ========== (O20) HKLM Winlogon Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "GinaDLL"=vrlogon.dll >[2007-03-14 21:19:20 | 00,615,424 | | M] (UPEK Inc.) C:\WINDOWS\system32\vrlogon.dll ========== (O20) Winlogon Notify Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\] ACNotify: "DllName" = ACNotify.dll C:\Program\ThinkPad\ConnectUtilities\ACNotify.dll (Lenovo ) psfus: "DllName" = C:\WINDOWS\system32\psqlpwd.dll C:\WINDOWS\system32\psqlpwd.dll (UPEK Inc.) tpfnf2: "DllName" = C:\Program\Lenovo\HOTKEY\notifyf2.dll C:\Program\Lenovo\HOTKEY\notifyf2.dll () tphotkey: "DllName" = C:\Program\Lenovo\HOTKEY\tphklock.dll C:\Program\Lenovo\HOTKEY\tphklock.dll () ========== Safeboot Options ========== "AlternateShell"=cmd.exe ========== CDRom AutoRun Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom] "AutoRun" = 1 ========== Autorun Files on Drives ========== AUTOEXEC.BAT [] [2006-02-17 00:25:27 | 00,000,000 | | M] () C:\AUTOEXEC.BAT [ NTFS ] ========== Files/Folders - Created Within 30 Days ========== [2008-12-15 12:30:03 | 00,423,424 | | C] (OldTimer Tools) C:\Documents and Settings\clmag\Skrivbord\OTViewIt.exe [2008-12-15 12:22:49 | 00,020,480 | | C] () C:\Documents and Settings\clmag\Skrivbord\magnus.doc [2008-12-12 10:42:11 | 21,288,63232 | -HS- | C] () C:\hiberfil.sys [2008-12-12 09:01:19 | 00,026,808 | | C] (Prevx) C:\WINDOWS\System32\drivers\pxark.sys [2008-12-12 09:01:19 | 00,000,000 | -D | C] C:\Program\PrevxCSI [2008-12-12 09:01:15 | 00,000,000 | -D | C] C:\Documents and Settings\All Users\Application Data\PrevxCSI [2008-12-11 15:35:44 | 00,000,000 | -D | C] C:\Documents and Settings\clmag\Application Data\InterVideo [2008-12-11 15:25:01 | 00,000,000 | -D | C] C:\Documents and Settings\clmag\Mina dokument\Mina PaperPort-dokument [2008-12-10 16:47:32 | 00,000,000 | -D | C] C:\Documents and Settings\clmag\Lokala inställningar\Application Data\WMTools Downloaded Files [2008-12-09 14:30:45 | 00,000,000 | -D | C] C:\Documents and Settings\clmag\Application Data\Malwarebytes [2008-12-09 14:30:40 | 00,000,000 | -D | C] C:\Documents and Settings\All Users\Application Data\Malwarebytes [2008-12-09 14:20:57 | 00,000,000 | -D | C] C:\Program\Adobe [2008-12-09 14:08:52 | 00,000,000 | -D | C] C:\Documents and Settings\All Users\Application Data\NOS [2008-12-09 14:08:50 | 00,000,000 | -D | C] C:\Program\NOS [2008-12-09 12:25:53 | 00,000,000 | -D | C] C:\Documents and Settings\clmag\Application Data\Uniblue [2008-12-09 10:59:47 | 00,138,384 | | C] (Trend Micro Inc.) C:\WINDOWS\System32\drivers\tmcomm.sys [2008-12-08 13:21:21 | 00,000,000 | -D | C] C:\Documents and Settings\clmag\Lokala inställningar\Application Data\CutePDF Writer [2008-12-08 10:29:07 | 00,000,000 | -D | C] C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com [2008-12-08 10:28:57 | 00,000,000 | -D | C] C:\Documents and Settings\clmag\Application Data\SUPERAntiSpyware.com [2008-12-08 09:11:10 | 00,000,000 | -D | C] C:\Program\GPLGS [2008-12-08 09:10:24 | 00,087,552 | | C] () C:\WINDOWS\System32\cpwmon2k.dll [2008-12-08 09:10:09 | 00,000,000 | -D | C] C:\Program\Acro Software ========== Files - Modified Within 30 Days ========== [1 C:\WINDOWS\System32\*.tmp files] [2 C:\WINDOWS\*.tmp files] [2008-12-15 12:30:07 | 00,423,424 | | M] (OldTimer Tools) C:\Documents and Settings\clmag\Skrivbord\OTViewIt.exe [2008-12-15 12:26:59 | 00,111,899 | | M] () C:\WINDOWS\System32\nvModes.001 [2008-12-15 12:26:52 | 00,000,312 | | M] () C:\WINDOWS\tasks\PMTask.job [2008-12-15 12:26:41 | 00,170,835 | | M] () C:\WINDOWS\System32\nvapps.xml [2008-12-15 12:26:21 | 00,002,278 | | M] () C:\WINDOWS\System32\wpa.dbl [2008-12-15 12:25:55 | 00,025,257 | | M] () C:\WINDOWS\System32\PROCDB.INI [2008-12-15 12:25:32 | 00,000,380 | | M] () C:\WINDOWS\System32\IPSCtrl.INI [2008-12-15 12:24:59 | 00,000,006 | -H | M] () C:\WINDOWS\tasks\SA.DAT [2008-12-15 12:24:58 | 00,002,048 | S- | M] () C:\WINDOWS\bootstat.dat [2008-12-15 12:24:53 | 21,288,63232 | -HS- | M] () C:\hiberfil.sys [2008-12-15 12:23:22 | 04,834,432 | -H | M] () C:\Documents and Settings\clmag\Lokala inställningar\Application Data\IconCache.db [2008-12-15 12:22:50 | 00,020,480 | | M] () C:\Documents and Settings\clmag\Skrivbord\magnus.doc [2008-12-15 12:15:17 | 00,000,596 | | M] () C:\Documents and Settings\clmag\Mina dokument\Mina delade mappar.lnk [2008-12-15 11:54:00 | 00,000,246 | | M] () C:\WINDOWS\tasks\Kontrollera uppdateringar för Windows Live Toolbar.job [2008-12-15 11:42:54 | 00,012,830 | | M] () C:\WINDOWS\cfgall.ini [2008-12-12 09:01:19 | 00,026,808 | | M] (Prevx) C:\WINDOWS\System32\drivers\pxark.sys [2008-12-11 20:46:53 | 00,457,504 | | M] () C:\WINDOWS\System32\perfh01D.dat [2008-12-11 20:46:53 | 00,093,970 | | M] () C:\WINDOWS\System32\perfc01D.dat [2008-12-11 20:46:52 | 01,093,158 | | M] () C:\WINDOWS\System32\PerfStringBackup.INI [2008-12-11 20:46:52 | 00,452,956 | | M] () C:\WINDOWS\System32\perfh009.dat [2008-12-11 20:46:52 | 00,080,190 | | M] () C:\WINDOWS\System32\perfc009.dat [2008-12-11 19:43:19 | 00,000,612 | | M] () C:\WINDOWS\win.ini [2008-12-11 19:42:03 | 00,001,834 | | M] () C:\WINDOWS\imsins.BAK [2008-12-11 15:50:14 | 00,082,896 | | M] () C:\Documents and Settings\clmag\Lokala inställningar\Application Data\GDIPFONTCACHEV1.DAT [2008-12-11 15:49:43 | 00,325,112 | | M] () C:\WINDOWS\System32\FNTCACHE.DAT [2008-12-10 00:24:37 | 17,593,280 | | M] (Microsoft Corporation) C:\WINDOWS\System32\MRT.exe [2008-12-05 13:21:43 | 00,282,624 | | M] () C:\Documents and Settings\clmag\Lokala inställningar\Application Data\filesync.metadata [2008-12-02 16:04:10 | 00,111,899 | | M] () C:\WINDOWS\System32\nvModes.dat [2008-11-18 16:57:30 | 00,001,818 | -H | M] () C:\Documents and Settings\clmag\Mina dokument\Default.rdp < End of report >[/log] [log]OTViewIt Extras logfile created on: 2008-12-15 12:33:28 - Run OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Documents and Settings\clmag\Skrivbord Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.11) Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd 1,98 Gb Total Physical Memory | 1,30 Gb Available Physical Memory | 65,45% Memory free 1,83 Gb Paging File | 1,32 Gb Available in Paging File | 71,96% Paging File free Paging file location(s): %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Drive C: | 142,57 Gb Total Space | 90,07 Gb Free Space | 63,18% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: CL-T61-125 Current User Name: clmag Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Whitelist: On File Age = 30 Days ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled"=1 "AntiVirusDisableNotify"=0 "FirewallDisableNotify"=0 "UpdatesDisableNotify"=0 "AntiVirusOverride"=0 "FirewallOverride"=0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring"=1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring"=1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] "DisableMonitoring"=1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts] ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [2008-04-14 17:05:18 | 00,141,312 | | M] (Microsoft Corporation) %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 [2008-04-13 19:53:32 | 00,558,080 | | M] (Microsoft Corporation) %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 File not found D:\setup\HPZNET01.EXE:*:Enabled:hpznet01.exe File not found D:\setup\hppapd.exe:*:Enabled:hppapd.exe File not found D:\setup\HPPNICIFS01.EXE:*:Enabled:hppnicifs01.exe File not found D:\setup\HPNTWKEXE.EXE:*:Enabled:hpntwkexe.exe File not found D:\setup\hppSetBOD.exe:*:Enabled:hppsetbod.exe File not found D:\setup\HPPNAC01.EXE:*:Enabled:hppnac01.exe [2008-08-11 16:46:50 | 21,741,864 | R- | M] (Skype Technologies S.A.) C:\Program\Skype\Phone\Skype.exe:*:Enabled:Skype [2007-10-18 11:35:08 | 05,724,184 | | M] (Microsoft Corporation) C:\Program\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger [2007-10-02 17:18:24 | 00,304,488 | | M] (Microsoft Corporation) C:\Program\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [2008-04-14 17:05:18 | 00,141,312 | | M] (Microsoft Corporation) %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 [2008-04-13 19:53:32 | 00,558,080 | | M] (Microsoft Corporation) %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 [2008-08-11 16:46:50 | 21,741,864 | R- | M] (Skype Technologies S.A.) C:\Program\Skype\Phone\Skype.exe:*:Enabled:Skype [2007-10-18 11:35:08 | 05,724,184 | | M] (Microsoft Corporation) C:\Program\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger [2007-10-02 17:18:24 | 00,304,488 | | M] (Microsoft Corporation) C:\Program\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) ========== (O18) Protocol Handlers ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] ipp: [HKLM - No CLSID value] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] - Protocol Handlers [2006-10-26 17:49:48 | 01,011,488 | | M] (Microsoft Corporation) C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL ipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] [2007-10-18 11:31:54 | 00,066,072 | | M] (Microsoft Corporation) C:\Program\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (livecall:{828030A1-22C1-4009-854F-8E305202313F} (HKLM) [Reg Error: Value does not exist or could not be read.]) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] msdaipp: [HKLM - No CLSID value] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] - Protocol Handlers [2006-10-26 17:49:48 | 01,011,488 | | M] (Microsoft Corporation) C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] - Protocol Handlers [2006-10-26 17:49:48 | 01,011,488 | | M] (Microsoft Corporation) C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAIPP.BINDER] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] [2000-04-19 17:47:36 | 00,520,117 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\Information Retrieval\MSITSS.DLL (ms-itss:{0A9007C0-4076-11D3-8789-0000F8105754} (HKLM) [Microsoft Infotech Storage Protocol for IE 4.0]) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] [2007-10-18 11:31:54 | 00,066,072 | | M] (Microsoft Corporation) C:\Program\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (msnim:{828030A1-22C1-4009-854F-8E305202313F} (HKLM) [Reg Error: Value does not exist or could not be read.]) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] [2007-03-14 12:10:22 | 07,255,384 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\Web Components\10\OWC10.DLL (mso-offdap:{3D9F03FA-7A94-11D3-BE81-0050048385D1} (HKLM) [Data Page Pluggable Protocol mso-offdap Handler]) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] [2007-05-10 12:45:34 | 08,069,464 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\Web Components\11\OWC11.DLL (mso-offdap11:{32505114-5902-49B2-880A-1F7738E5A384} (HKLM) [Data Page Plugable Protocal mso-offdap11 Handler]) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] [2008-08-11 16:46:50 | 01,942,864 | R- | M] (Skype Technologies) C:\Program\Delade filer\Skype\Skype4COM.dll (skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} (HKLM) [iEProtocolHandler Class]) ========== (O18) Protocol Filters ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\] - Protocol Filters [2007-04-19 12:57:40 | 00,046,432 | | M] (Microsoft Corporation) C:\Program\Delade filer\Microsoft Shared\OFFICE11\MSOXMLMF.DLL text/xml:{807553E5-5146-11D5-A672-00B0D022E945} (HKLM) [Reg Error: Value does not exist or could not be read.] ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{03CAB33F-D1C2-48C6-8766-DAE84DFC25FE}"=Microsoft Sync Framework Services v1.0 (x86) "{049CAE8B-67B4-4C53-8B08-58331A41A4C0}"=hpzTLBXFX "{075473F5-846A-448B-BCB3-104AA1760205}"=RecordNow Data "{0ED47137-C071-46CC-A243-E5E33271E10E}"=Windows Live Sign-in Assistant "{1007F41F-7D69-468E-8017-3849A5A973C2}"=ThinkVantage Technologies Welcome Message "{11A3D40A-6EF9-4E0E-BB34-E9F458C40601}"=hppIOFiles "{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}"=Sonic DLA "{1297C681-92D7-40EF-93BF-03F66EC5105C}"=ThinkPad EasyEject Utility "{17014473-0098-4DF0-827D-7D582697C78C}"=Microsoft .NET Framework 2.0 Language Pack - SVE "{17CBC505-D1AE-459D-B445-3D2000A85842}"=ThinkPad UltraNav-guiden "{1E745BC8-4C2C-423D-8601-770BB3E9E023}"=hppusg2605 "{1F73D672-6175-4A1D-B3C1-420439D03D0F}"=Product_SF_Full_QFolder "{20503DFE-E5B2-491E-B2C5-8BCB5BF5B9E9}"=Windows Live Messenger "{22FF271C-5039-4243-A5E5-59283724126B}"=QlikView Server "{23FB368F-1399-4EAC-817C-4B83ECBE3D83}"=mProSafe "{24BEBF2E-73F3-4599-840B-EDC612CCDD0D}"=Destinations "{26A24AE4-039D-4CA4-87B4-2F83216011FF}"=Java 6 Update 11 "{2FFE93F0-BB72-4E52-8761-354D1AAA9387}"=Sony Ericsson PC Suite 3.209.00 "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}"=Sonic Update Manager "{34F3FCF1-817B-4D61-B6AF-19D9486AFEA0}"=Unload "{350C941d-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP "{4041C245-7099-4C96-9738-5EBC23827B3C}"=BufferChm "{414C803A-6115-4DB6-BD4E-FD81EA6BC71C}"=Product_SF_Min_QFolder "{41894269-0DD1-4C85-B3DD-1EB41B07621D}"=ThinkVantage Fingerprint Software 5.6 "{46A84694-59EC-48F0-964C-7E76E9F8A2ED}"=ThinkVantage Aktivt skyddssystem "{49A384C5-C819-4F4C-8768-D8D1A8766C88}"=QlikView "{4BE53DB2-C1F2-44D1-A9AB-1630BA7F2AF1}"=SolutionCenter "{50120000-1105-0000-0000-0000000FF1CE}"=Microsoft Office 2007 Primary Interop Assemblies "{59F6A514-9813-47A3-948C-8A155460CC2A}"=RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02 "{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}"=Skype™ 3.8 "{6441FECE-0E73-4326-81BF-68503E897820}"=CorePLS_Min_QFolder "{65706020-7B6F-41F2-8047-FC69579E386A}"=Presentationshanteraren "{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}"=eSupportQFolder "{69333A04-5134-40A5-A055-9166A7AA1EC8}"= "{69E6C13B-CF6B-47A6-B7A5-77FE82B2CB40}"=hppFonts "{6B7E1C85-CAAB-42DD-9319-E785C2C19BB3}"=hppTLBXFX2605 "{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}"=CustomerResearchQFolder "{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}"=Avanquest update "{796E076A-82F7-4D49-98C8-DEC0C3BC733A}"=Diskeeper Lite "{7EB114D8-207F-45AE-BABD-1669715F2630}"=ThinkVantage Access Connections "{7FC3BBEC-5A91-41B0-9CB8-960EC4421411}"=InterVideo WinDVD Creator 3 "{84814E6B-2581-46EC-926A-823BD1C670F6}"=ThinkPad Bluetooth with Enhanced Data Rate Software "{8675339C-128C-44DD-83BF-0A5D6ABD8297}"=System Update "{871DF2BE-41D2-4334-AC33-839AF16FC8FE}"=Cisco Systems VPN Client 5.0.02.0090 "{87F6173E-66E9-4188-9BC9-AD81610ABEE4}"=Microsoft SQL Server Native Client "{885DE773-CC47-4B94-97A3-C692C9AF1B05}"=Hjälpfiler för installation av Microsoft SQL Server (engelska) "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}"=Microsoft Silverlight "{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}"=mPfMgr "{8C0118CC-F720-45FF-A4DA-44AD77B2E73C}"=CorePLS_Full_QFolder "{9011041D-6000-11D3-8CFE-0150048383C9}"=Microsoft Office Professional Edition 2003 "{90120000-0020-0409-0000-0000000FF1CE}"=Compatibility Pack for the 2007 Office system "{90120000-0020-041D-0000-0000000FF1CE}"=Compatibility Pack för Office 2007-systemet "{90A4041D-6000-11D3-8CFE-0150048383C9}"=Microsoft Office 2003 Webbkomponenter "{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}"=InterVideo WinDVD "{96C79EA4-E1A4-423D-90DB-6FFFEF6994AB}"=Windows Live Toolbar "{986F64DC-FF15-449D-998F-EE3BCEC6666A}"=Hjälpcentralen "{992A2DB1-4ABC-4738-BD71-045C5FFE00D1}"=Microsoft .NET Framework 1.1 Swedish Language Pack "{9D08BA75-D917-43FD-A0C4-F81D27C61053}"=hppCLJ2605 "{9DE3F260-B88E-42CE-90E7-73C78C37D95E}"=32 Bit HP BiDi Channel Components Installer "{A0E64EBA-8BF0-49FB-90C0-BB3D781A2016}"=ThinkPad Energispararen "{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}"=mDriver "{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}"=Brother MFL-Pro Suite "{A8BD5A60-E843-46DC-8271-ABF20756BE0F}"=Microsoft Sync Framework Runtime v1.0 (x86) "{A939D341-5A04-4E0A-BB55-3E65B386432D}"=Microsoft Office Small Business Anslutningsbara komponenter "{AAA11090-6E99-4655-AAF5-57EB5F677D0C}"=MarketResearch "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}"=DeviceManagementQFolder "{AB708C9B-97C8-4AC9-899B-DBF226AC9382}"=RecordNow Audio "{AC76BA86-7AD7-1053-7B44-A90000000001}"=Adobe Reader 9 - Svenska "{AFDFC350-C142-4790-BE12-8357AECD028F}"=SyncToy 2.0 (x86) "{B12665F4-4E93-4AB4-B7FC-37053B524629}"=RecordNow Copy "{B334D9AE-1393-423E-97C0-3BDC3360E692}"=Sonic Icons for Lenovo "{B508B3F1-A24A-32C0-B310-85786919EF28}"=Microsoft .NET Framework 2.0 Service Pack 1 "{C0CE77E6-3CB9-4C81-8B10-A47E3D716010}"=Microsoft SQL Server VSS-skrivare "{C53D0627-79E7-45A0-B37C-B92A7E40F122}"=hppManuals2605 "{C54ED2B6-1AF2-416F-BBA8-5E2B8CDCB5C4}"=XP Themes "{C6FA39A7-26B1-480A-BC74-6D17531AC222}"=Access - Hjälp "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}"=Microsoft .NET Framework 1.1 "{CCACAAE2-CA00-4D9A-88BE-947AE4EE38E0}"=QlikView Publisher "{CDD3274F-5D95-42D3-AC7C-7C7A28215D74}"=QlikView Plugin "{CF5737AF-8550-4546-A69B-0EA9EF5A9B55}"=ThinkVantage Productivity Center "{D728E945-256D-4477-B377-6BBA693714AC}"=Productivity Center - tillägg för ThinkPad "{DB71210F-8314-4AE3-B7A7-EBAF85BD30E9}"=Wallpapers "{DEBB2986-15B0-4D28-95FA-5C966A396589}"=HPProductAssistant "{E17F76BE-50E9-4E7C-ADF6-6D8F44A9C6F3}"=Windows Live installer "{E7E836B8-4BDD-454F-82E6-5FEA17C83AD4}"=Meddelandecentralen "{E81667C6-2856-46D6-ABEA-6A2F42166779}"=mCore "{EC2715CE-C182-483C-84CC-81D7D914CF14}"=WebReg "{EDAE4F43-833C-443B-8DB5-129F897DF3E8}"=hppWebRegMM "{F055E1B2-8A05-4D87-8039-1BE979BA4193}"=Client Security Solution "{F0A37341-D692-11D4-A984-009027EC0A9C}"=SoundMAX "{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}"=mMHouse "{F151F2B3-0C32-44D3-90E2-E639B8024622}"=Rescue and Recovery "{F18DB86D-BC16-4E01-BCCE-63F62B931D82}"=InterVideo Register Manager "{F705E3E1-A471-426B-9A09-73429F3418EE}"=System Migration Assistant "{F9167015-60B0-4B83-AFA2-5CCDCB16FEF0}"=QlikView "{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}"=mWlsSafe "{FE57DE70-95DE-4B64-9266-84DA811053DB}"=HP Update "ActiveTouchMeetingClient"=WebEx "Adobe Flash Player ActiveX"=Adobe Flash Player ActiveX "AwayTask"=Maintenance Manager "CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_10140588"=ThinkPad Modem "CutePDF Writer Installation"=CutePDF Writer 2.7 "HP Color LaserJet 2605"=HP Color LaserJet 2605 Series 1.0 "HP Imaging Device Functions"=HP Imaging Device Functions 6.0 "HP Solution Center & Imaging Support Tools"=HP Solution Center and Imaging Support Tools 6.0 "HPExtendedCapabilities"=HP Extended Capabilities 6.0 "IDNMitigationAPIs"=Microsoft Internationalized Domain Names Mitigation APIs "ie7"=Windows Internet Explorer 7 "Lenovo Registration"=Lenovo Registration "Microsoft .NET Framework 1.1 (1033)"=Microsoft .NET Framework 1.1 "Microsoft .NET Framework 2.0 Language Pack - SVE"=Microsoft .NET Framework 2.0 Language Pack - SVE "MSCompPackV1"=Microsoft Compression Client Pack 1.0 for Windows XP "NLSDownlevelMapping"=Microsoft National Language Support Downlevel APIs "NVIDIA Drivers"=NVIDIA Drivers "OfficeScanNT"=Trend Micro OfficeScan Client "OnScreenDisplay"=Visa på skärmen "PCMCIAPW"=ThinkPad PC Card Power Policy "PCSI"=Prevx CSI "Personal"=BankID säkerhetsprogram 4.10 "Power Management Driver"=ThinkPad Power Management Driver "ProInst"=Programvara för Intel® PROSet för trådlösa anslutningar "PROSet"=Intel® PRO Network Connections Drivers "Remove Multimedia Center"=Remove Multimedia Center "SynTPDeinstKey"=ThinkPad UltraNav Driver "ThinkPad FullScreen Magnifier"=ThinkPad FullScreen Magnifier "TrueCrypt"=TrueCrypt "WIC"=Windows Imaging Component "Windows Live Toolbar"=Windows Live Toolbar "Windows Media Format Runtime"=Windows Media Format 11 runtime "Windows Media Player"=Windows Media Player 11 "Windows XP Service Pack"=Windows XP Service Pack 3 "VLC media player"=VideoLAN VLC media player 0.8.5 "WMCSetup"=Windows Media Connect "WMFDist11"=Windows Media Format 11 runtime "wmp11"=Windows Media Player 11 "Wudf01000"=Microsoft User-Mode Driver Framework Feature Pack 1.0 "XpsEPSC"=XML Paper Specification Shared Components Pack 1.0 ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Move Networks Player - IE"=Move Networks Media Player for Internet Explorer ========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-471515534-911680266-3586310472-1510\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Move Networks Player - IE"=Move Networks Media Player for Internet Explorer ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 2008-12-14 15:55:48 | Computer Name = CL-T61-125 | Source = crypt32 | ID = 131080 Description = Det gick inte att automatiskt uppdatera tredjepartsrotlistsekvensnumret från: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>. Fel: Åtgärden misslyckades eftersom tidsgränsen överskreds. Error - 2008-12-15 04:37:20 | Computer Name = CL-T61-125 | Source = Userenv | ID = 1054 Description = Det går inte att läsa domänkontrollantens namn på nätverket. (Den angivna domänen finns inte eller kunde inte kontaktas. ). Grupprinciper kommer inte att behandlas. Error - 2008-12-15 04:37:20 | Computer Name = CL-T61-125 | Source = Userenv | ID = 1054 Description = Det går inte att läsa domänkontrollantens namn på nätverket. (Den angivna domänen finns inte eller kunde inte kontaktas. ). Grupprinciper kommer inte att behandlas. Error - 2008-12-15 04:37:21 | Computer Name = CL-T61-125 | Source = AutoEnrollment | ID = 15 Description = Automatisk registrering för certifikat för lokalt systemkonto kunde inte kontakta Active Directory (0x8007054b). Den angivna domänen finns inte eller kunde inte kontaktas. . Registrering kommer inte att ske. Error - 2008-12-15 07:10:24 | Computer Name = CL-T61-125 | Source = QlikViewServer | ID = 120 Description = Error - 2008-12-15 07:10:46 | Computer Name = CL-T61-125 | Source = Application Error | ID = 1000 Description = Felaktigt program QVS.exe, version 8.50.6091.4, felaktig modul QVS.exe, version 8.50.6091.4, felaktig adress 0x0031ac94. Error - 2008-12-15 07:11:41 | Computer Name = CL-T61-125 | Source = Application Error | ID = 1000 Description = Felaktigt program iexplore.exe, version 7.0.6000.16762, felaktig modul windowslivelogin.dll, version 5.0.742.2, felaktig adress 0x0003d1c5. Error - 2008-12-15 07:25:35 | Computer Name = CL-T61-125 | Source = Userenv | ID = 1054 Description = Det går inte att läsa domänkontrollantens namn på nätverket. (Den angivna domänen finns inte eller kunde inte kontaktas. ). Grupprinciper kommer inte att behandlas. Error - 2008-12-15 07:25:35 | Computer Name = CL-T61-125 | Source = Userenv | ID = 1054 Description = Det går inte att läsa domänkontrollantens namn på nätverket. (Den angivna domänen finns inte eller kunde inte kontaktas. ). Grupprinciper kommer inte att behandlas. Error - 2008-12-15 07:25:35 | Computer Name = CL-T61-125 | Source = AutoEnrollment | ID = 15 Description = Automatisk registrering för certifikat för lokalt systemkonto kunde inte kontakta Active Directory (0x8007054b). Den angivna domänen finns inte eller kunde inte kontaktas. . Registrering kommer inte att ske. [ System Events ] Error - 2008-12-09 15:14:15 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 15 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-09 15:14:21 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 15 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-09 15:14:34 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 15 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-09 15:14:34 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 15 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-09 15:14:57 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 14 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-09 15:29:57 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 30 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-09 15:59:57 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 60 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-09 16:59:57 | Computer Name = CL-T61-125 | Source = W32Time | ID = 39452701 Description = Tidsprovidern NtpClient har konfigurerats för att läsa tid från en eller fler tidskällor, men ingen källa är tillgänglig för närvarande. Inget försök att kontakta någon källa kommer att göras förrän om 120 minuter. NtpClient har ingen källa för korrekt tid. Error - 2008-12-10 03:28:03 | Computer Name = CL-T61-125 | Source = NETLOGON | ID = 5719 Description = Det finns ingen domänkontrollant tillgänglig för domän REGONET p g a följande: %%1311. Kontrollera att datorn är ansluten till nätverket och försök igen. Kontakta domänadministratören om problemet kvarstår. Error - 2008-12-10 07:28:07 | Computer Name = CL-T61-125 | Source = NETLOGON | ID = 5719 Description = Det finns ingen domänkontrollant tillgänglig för domän REGONET p g a följande: %%1311. Kontrollera att datorn är ansluten till nätverket och försök igen. Kontakta domänadministratören om problemet kvarstår. < End of report >[/log] Gjort så länkarna inte är klickbara. Cecilia - Moderator för Virus, skadliga program & botemedel [inlägget ändrat 2008-12-15 13:19:54 av Cecilia]
  4. Tyvärr visade det sig att viruset fortfarande lever kvar. Har fått meddelande om att länkar skickats till mina MSN-kontakter "från mig". Någon med förslag på verktyg som upptäcker viruset och som kan rensa bort det? Har provat ovantsående i konversationen utan framgång.
  5. [log]- Logfile MSNCleaner 1.7.1 by www.forospyware.com - Created Logfile: 2008-12-10 on 21:23:14 - Operative System: Windows XP - Boot mode: Safe mode with network support _________________________________________ Detected files: 0 Deleted file: 0 Undeleted Files: 0 <<<<<<< No file found >>>>>>>[/log] Dénna ser också fin ut!
  6. Datron har iofs fungerat normalt hela tiden. Min osäkerhet från början var om jag lyckats ta bort viruset som skickade länkar till mina kontakter i MSN. Även denna loggfil ser "frisk". Jag antar att viruset är borta men är inte helt säker!? [log]-------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER 7 REPORT Tuesday, December 9, 2008 Operating System: Microsoft Windows XP Professional Service Pack 3 (build 2600) Kaspersky Online Scanner 7 version: 7.0.25.0 Program database last update: Tuesday, December 09, 2008 17:02:03 Records in database: 1447645 -------------------------------------------------------------------------------- Scan settings: Scan using the following database: extended Scan archives: yes Scan mail databases: yes Scan area - My Computer: C:\ D:\ Y:\ Scan statistics: Files scanned: 73028 Threat name: 0 Infected objects: 0 Suspicious objects: 0 Duration of the scan: 01:52:38 No malware has been detected. The scan area is clean. The selected area was scanned.[/log]
  7. Svar till steg 5: Jag har installerat QlikView Plugin, QlikView Publisher, QlikView och SyncTroy 2.0 så detta är ok. Jag har ett eget nätverk och en egen namnserver. Däremot kan jag inte hitta C:\WINDOWS\TEMP\DM2534.EXE. Jag avinstallerade java och acrobat reader och installerade senaste versionen av acrobat reader följt av omstart innan jag sökte efter filen, så detta kanske kan vara anledningen? Steg 2 klart! Steg 3 klart! Steg 4: [log] Malwarebytes' Anti-Malware 1.31 Databasversion: 1477 Windows 5.1.2600 Service Pack 3 2008-12-09 14:52:39 mbam-log-2008-12-09 (14-52-39).txt Skanningstyp: Snabb skanning Antal skannade objekt: 62737 Förfluten tid: 21 minute(s), 11 second(s) Infekterade minnesprocesser: 0 Infekterade minnesmoduler: 0 Infekterade registernycklar: 0 Infekterade registervärden: 0 Infekterade registerdataposter: 0 Infekterade mappar: 0 Infekterade filer: 0 Infekterade minnesprocesser: (Inga illasinnade poster hittades) Infekterade minnesmoduler: (Inga illasinnade poster hittades) Infekterade registernycklar: (Inga illasinnade poster hittades) Infekterade registervärden: (Inga illasinnade poster hittades) Infekterade registerdataposter: (Inga illasinnade poster hittades) Infekterade mappar: (Inga illasinnade poster hittades) Infekterade filer: (Inga illasinnade poster hittades) [/log]
  8. Svar kommer senare! [inlägget ändrat 2008-12-09 14:37:57 av magnus_n]
  9. [log]Logfile of random's system information tool 1.04 (written by random/random) Run by clmag at 2008-12-09 10:48:33 Microsoft Windows XP Professional Service Pack 3 System drive C: has 94 GB (65%) free of 146 GB Total RAM: 2030 MB (7% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:49:16, on 2008-12-09 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program\ThinkPad\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\svchost.exe C:\Program\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\IPSSVC.EXE C:\Program\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe C:\Program\Cisco Systems\VPN Client\cvpnd.exe C:\Program\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program\Intel\Wireless\Bin\EvtEng.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program\Delade filer\InterVideo\RegMgr\iviRegMgr.exe C:\Program\Java\jre6\bin\jqs.exe C:\Program\Delade filer\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program\Trend Micro\OfficeScan Client\ntrtscan.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program\QlikView\Server\QVS.exe C:\Program\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\svchost.exe c:\program\lenovo\system update\suservice.exe C:\Program\Delade filer\Lenovo\tvt_reg_monitor_svc.exe C:\WINDOWS\System32\TPHDEXLG.exe C:\Program\Lenovo\Rescue and Recovery\rrpservice.exe C:\Program\Lenovo\Rescue and Recovery\rrservice.exe c:\Program\Delade filer\Lenovo\Scheduler\tvtsched.exe C:\Program\Lenovo\Rescue and Recovery\ADM\IUService.exe C:\Program\ThinkPad\ConnectUtilities\AcSvc.exe C:\Program\Trend Micro\OfficeScan Client\tmlisten.exe C:\Program\Delade filer\Lenovo\Logger\logmon.exe C:\WINDOWS\TEMP\DM2534.EXE C:\Program\Trend Micro\OfficeScan Client\CNTAoSMgr.exe C:\Program\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\rundll32.exe C:\Program\Synaptics\SynTP\SynTPLpr.exe C:\Program\Synaptics\SynTP\SynTPEnh.exe C:\Program\Lenovo\NPDIRECT\TPFNF7SP.exe C:\Program\Lenovo\HOTKEY\TPOSDSVC.exe C:\WINDOWS\system32\TpShocks.exe C:\Program\ThinkPad\UTILIT~1\EzEjMnAp.Exe C:\Program\Analog Devices\Core\smax4pnp.exe C:\Program\Lenovo\HOTKEY\TPONSCR.exe C:\Program\Lenovo\Zoom\TpScrex.exe C:\Program\Delade filer\Lenovo\Scheduler\scheduler_proxy.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\System32\DLA\DLACTRLW.EXE C:\WINDOWS\System32\svchost.exe C:\Program\Delade filer\InstallShield\UpdateService\issch.exe C:\Program\Lenovo\AwayTask\AwaySch.EXE C:\Program\THINKV~1\PrdCtr\LPMGR.exe C:\Program\Lenovo\Client Security Solution\cssauth.exe C:\Program\Trend Micro\OfficeScan Client\pccntmon.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program\ScanSoft\PaperPort\pptd40nt.exe C:\Program\HP\ToolBoxFX\bin\HPTLBXFX.exe C:\Program\HP\HP UT\bin\hppusg.exe C:\Program\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\ctfmon.exe C:\Program\Cisco Systems\VPN Client\vpngui.exe C:\Program\Diskeeper Corporation\Diskeeper\DkIcon.exe C:\WINDOWS\system32\dllhost.exe C:\Program\Delade filer\Microsoft Shared\Windows Live\WLLoginProxy.exe c:\program\delade filer\installshield\updateservice\isuspm.exe C:\Program\Delade filer\InstallShield\UpdateService\agent.exe C:\Program\Microsoft Office\OFFICE11\OUTLOOK.EXE C:\Program\Microsoft Office\OFFICE11\WINWORD.EXE C:\Program\Intel\Wireless\Bin\Dot1XCfg.exe C:\Program\QlikView\Qv.exe C:\Program\Internet Explorer\iexplore.exe C:\Program\Java\jre6\bin\jusched.exe C:\Documents and Settings\clmag\Skrivbord\RSIT.exe C:\Documents and Settings\clmag\Mina dokument\Climber\Setup\clmag.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.climber.se'>http://www.climber.se R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR'>http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR'>http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.climber.se R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.climber.se R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program\Windows Live Toolbar\msntb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: ThinkVantage Password Manager - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\Program\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor O4 - HKLM\..\Run: [bLOG] rundll32 C:\Program\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog O4 - HKLM\..\Run: [synTPLpr] C:\Program\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [TPFNF7] C:\Program\Lenovo\NPDIRECT\TPFNF7SP.exe /r O4 - HKLM\..\Run: [TPHOTKEY] C:\Program\Lenovo\HOTKEY\TPOSDSVC.exe O4 - HKLM\..\Run: [TpShocks] TpShocks.exe O4 - HKLM\..\Run: [EZEJMNAP] C:\Program\ThinkPad\UTILIT~1\EzEjMnAp.Exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program\Delade filer\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE O4 - HKLM\..\Run: [iSUSPM Startup] C:\Program\DELADE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program\Delade filer\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [AwaySch] C:\Program\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [LPManager] C:\Program\THINKV~1\PrdCtr\LPMGR.exe O4 - HKLM\..\Run: [AMSG] C:\Program\ThinkVantage\AMSG\Amsg.exe /startup O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [cssauth] "C:\Program\Lenovo\Client Security Solution\cssauth.exe" silent O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program\Delade filer\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program\ScanSoft\PaperPort\pptd40nt.exe" O4 - HKLM\..\Run: [indexSearch] "C:\Program\ScanSoft\PaperPort\IndexSearch.exe" O4 - HKLM\..\Run: [PPort11reminder] "C:\Program\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini O4 - HKLM\..\Run: [brMfcWnd] C:\Program\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN O4 - HKLM\..\Run: [ControlCenter3] C:\Program\Brother\ControlCenter3\brctrcen.exe /autorun O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /systrayIcon:on O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program\HP\HP UT\bin\hppusg.exe" "C:\Program\HP\HP UT\" O4 - HKLM\..\Run: [HP Software Update] C:\Program\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\DOCUME~1\clmag\LOKALA~1\Temp\SSUPDATE.EXE Software\SUPERAntiSpyware.com\SUPERAntiSpyware O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJÄNST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: &Windows Live Search - res://C:\Program\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Skicka till &Bluetooth-enhet... - C:\Program\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra 'Tools' menuitem: ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre6\bin\jp2iexp.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre6\bin\jp2iexp.dll O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O16 - DPF: {00140000-B1BA-11CE-ABC6-F5B2E79D9E3F} (LEAD Main Control (14.0)) - https://iof.ystad.se/FtB/LTOCX14N.CAB O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1220009808883 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1220010782288 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://qliktech.webex.com/client/T26L/webex/ieatgpc.cab O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = rn.local O17 - HKLM\Software\..\Telephony: DomainName = rn.local O17 - HKLM\System\CCS\Services\Tcpip\..\{F3F77127-4C9A-49A5-9630-567E9BB01651}: Domain = rn.local O17 - HKLM\System\CCS\Services\Tcpip\..\{F3F77127-4C9A-49A5-9630-567E9BB01651}: NameServer = 192.168.253.6 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = rn.local O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = rn.local O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = rn.local O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = rn.local O18 - Protocol: qvp - {4BA78E3D-CA25-4BFF-B8F0-8A3359E4B520} - C:\Program\QLIKVI~1\QVPROT~1\Qvp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program\DELADE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing) O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program\ThinkPad\Bluetooth Software\bin\btwdins.exe O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program\Delade filer\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE O23 - Service: IviRegMgr - InterVideo - C:\Program\Delade filer\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program\Java\jre6\bin\jqs.exe O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program\Trend Micro\OfficeScan Client\ntrtscan.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: QlikView DirectoryServiceConnector (QlikViewDirectoryServiceConnector) - QlikTech - C:\Program\QlikView\Publisher\DirectoryServiceConnector\QVDirectoryServiceConnector.exe O23 - Service: QlikView Http Service (QlikViewHttpService) - QlikTech - C:\Program\QlikView\Server\HttpServer\QvHttpService.exe O23 - Service: QlikView Publisher AccessPoint Service (QlikViewPublisherAccessPointService) - QlikTech International - C:\Program\QlikView\Publisher\AccessPointService\QVPublisherAccesspointService.exe O23 - Service: QlikView Publisher CommandCenter Service (QlikViewPublisherCommandCenterService) - Qliktech Internaltional Inc - C:\Program\QlikView\Publisher\CommandCenterService\QVPublisherCommandCenterService.exe O23 - Service: QlikView Publisher Execution Service (QlikViewPublisherExecutionService) - QlikTech - C:\Program\QlikView\Publisher\ExecutionService\QVPublisherExecutionService.exe O23 - Service: QlikView Server (QlikViewServer) - QlikTech AB - C:\Program\QlikView\Server\QVS.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program\lenovo\system update\suservice.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program\Delade filer\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program\Trend Micro\OfficeScan Client\tmlisten.exe O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program\Trend Micro\OfficeScan Client\TmProxy.exe O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:\Program\Lenovo\Client Security Solution\tvttcsd.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program\Delade filer\Lenovo\Scheduler\tvtsched.exe O23 - Service: tvtnetwk - Unknown owner - C:\Program\Lenovo\Rescue and Recovery\ADM\IUService.exe -- End of file - 16964 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Kontrollera uppdateringar för Windows Live Toolbar.job C:\WINDOWS\tasks\Laddning.job C:\WINDOWS\tasks\PMTask.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Länkhjälp till Adobe PDF Reader - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}] Skype add-on (mastermind) - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-08-11 1443112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}] DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2006-02-02 110652] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] SSVHelper Class - C:\Program\Java\jre6\bin\ssv.dll [2008-12-05 320920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-12-14 392240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}] Windows Live Toolbar Helper - C:\Program\Windows Live Toolbar\msntb.dll [2007-02-12 546672] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program\Java\jre6\bin\jp2ssv.dll [2008-12-05 34816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-12-05 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F040E541-A427-4CF7-85D8-75E3E0F476C5}] CPwmIEBrowserHelper Object - C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll [2007-08-03 795960] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program\Windows Live Toolbar\msntb.dll [2007-02-12 546672] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "PWRMGRTR"=rundll32 C:\Program\ThinkPad\UTILIT~1\PWRMGRTR.DLL [] "BLOG"=rundll32 C:\Program\ThinkPad\UTILIT~1\BatLogEx.DLL [] "SynTPLpr"=C:\Program\Synaptics\SynTP\SynTPLpr.exe [2007-08-11 110592] "SynTPEnh"=C:\Program\Synaptics\SynTP\SynTPEnh.exe [2007-08-11 512000] "TPFNF7"=C:\Program\Lenovo\NPDIRECT\TPFNF7SP.exe [2007-11-29 59168] "TPHOTKEY"=C:\Program\Lenovo\HOTKEY\TPOSDSVC.exe [2007-03-09 66176] ""= [] "TpShocks"=C:\WINDOWS\system32\TpShocks.exe [2007-11-22 181536] "EZEJMNAP"=C:\Program\ThinkPad\UTILIT~1\EzEjMnAp.Exe [2007-03-28 243248] "SoundMAXPnP"=C:\Program\Analog Devices\Core\smax4pnp.exe [2007-04-09 1015808] "SoundMAX"=C:\Program\Analog Devices\SoundMAX\Smax4.exe [2007-04-03 839680] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-03-21 13524992] "nwiz"=nwiz.exe /installquiet /keeploaded /nodetect [] "TVT Scheduler Proxy"=C:\Program\Delade filer\Lenovo\Scheduler\scheduler_proxy.exe [2007-02-08 536576] "DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2006-02-02 122940] "ISUSPM Startup"=C:\Program\DELADE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184] "ISUSScheduler"=C:\Program\Delade filer\InstallShield\UpdateService\issch.exe [2005-02-16 81920] "AwaySch"=C:\Program\Lenovo\AwayTask\AwaySch.EXE [2006-11-07 91688] "LPManager"=C:\Program\THINKV~1\PrdCtr\LPMGR.exe [2007-04-26 120368] "AMSG"=C:\Program\ThinkVantage\AMSG\Amsg.exe [2007-02-01 419376] "DiskeeperSystray"=C:\Program\Diskeeper Corporation\Diskeeper\DkIcon.exe [2006-05-18 196696] "cssauth"=C:\Program\Lenovo\Client Security Solution\cssauth.exe [2007-08-03 2630968] "OfficeScanNT Monitor"=C:\Program\Trend Micro\OfficeScan Client\pccntmon.exe [2007-09-06 710000] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-03-21 86016] "SSBkgdUpdate"=C:\Program\Delade filer\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472] "PaperPort PTD"=C:\Program\ScanSoft\PaperPort\pptd40nt.exe [2007-01-29 30248] "IndexSearch"=C:\Program\ScanSoft\PaperPort\IndexSearch.exe [2007-01-29 46632] "PPort11reminder"=C:\Program\ScanSoft\PaperPort\Ereg\Ereg.exe [2007-02-01 255528] "BrMfcWnd"=C:\Program\Brother\Brmfcmon\BrMfcWnd.exe [2007-03-12 663552] "ControlCenter3"=C:\Program\Brother\ControlCenter3\brctrcen.exe [2007-01-26 65536] "ToolBoxFX"=C:\Program\HP\ToolBoxFX\bin\HPTLBXFX.exe [2005-11-21 45056] "HPUsageTracking"=C:\Program\HP\HP UT\bin\hppusg.exe [2005-09-29 36864] "HP Software Update"=C:\Program\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840] "Adobe Reader Speed Launcher"=C:\Program\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792] "SunJavaUpdateSched"=C:\Program\Java\jre6\bin\jusched.exe [2008-12-05 136600] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "SUPERAntiSpyware"=C:\DOCUME~1\clmag\LOKALA~1\Temp\SSUPDATE.EXE [2008-11-17 158960] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ACNotify] C:\Program\ThinkPad\ConnectUtilities\ACNotify.dll [2007-07-05 32768] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus] C:\WINDOWS\system32\psqlpwd.dll [2007-03-14 89600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tpfnf2] C:\Program\Lenovo\HOTKEY\notifyf2.dll [2006-09-06 34344] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tphotkey] C:\Program\Lenovo\HOTKEY\tphklock.dll [2006-12-14 28672] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "notification packages"=ACGina psqlpwd scecli [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program\Skype\Phone\Skype.exe"="C:\Program\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program\Windows Live\Messenger\msnmsgr.exe"="C:\Program\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program\Windows Live\Messenger\livecall.exe"="C:\Program\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "D:\setup\HPZNET01.EXE"="D:\setup\HPZNET01.EXE:*:Enabled:hpznet01.exe" "D:\setup\hppapd.exe"="D:\setup\hppapd.exe:*:Enabled:hppapd.exe" "D:\setup\HPPNICIFS01.EXE"="D:\setup\HPPNICIFS01.EXE:*:Enabled:hppnicifs01.exe" "D:\setup\HPNTWKEXE.EXE"="D:\setup\HPNTWKEXE.EXE:*:Enabled:hpntwkexe.exe" "D:\setup\hppSetBOD.exe"="D:\setup\hppSetBOD.exe:*:Enabled:hppsetbod.exe" "D:\setup\HPPNAC01.EXE"="D:\setup\HPPNAC01.EXE:*:Enabled:hppnac01.exe" "C:\Program\Skype\Phone\Skype.exe"="C:\Program\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program\Windows Live\Messenger\msnmsgr.exe"="C:\Program\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program\Windows Live\Messenger\livecall.exe"="C:\Program\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" ======List of files/folders created in the last 1 months====== 2008-12-09 10:48:33 ----D---- C:\rsit 2008-12-08 16:27:43 ----A---- C:\WINDOWS\ntbtlog.txt 2008-12-08 15:53:35 ----D---- C:\Program\Enigma Software Group 2008-12-08 10:29:07 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com 2008-12-08 10:28:57 ----D---- C:\Program\SUPERAntiSpyware 2008-12-08 10:28:57 ----D---- C:\Documents and Settings\clmag\Application Data\SUPERAntiSpyware.com 2008-12-08 09:11:10 ----D---- C:\Program\GPLGS 2008-12-08 09:10:24 ----A---- C:\WINDOWS\system32\cpwmon2k.dll 2008-12-08 09:10:09 ----D---- C:\Program\Acro Software 2008-12-05 15:53:27 ----A---- C:\WINDOWS\system32\javaws.exe 2008-12-05 15:53:27 ----A---- C:\WINDOWS\system32\javaw.exe 2008-12-05 15:53:27 ----A---- C:\WINDOWS\system32\java.exe 2008-12-05 15:53:27 ----A---- C:\WINDOWS\system32\deploytk.dll 2008-11-19 11:31:27 ----D---- C:\Program\Adobe 2008-11-12 09:18:50 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$ 2008-11-12 09:18:13 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$ 2008-11-12 09:17:27 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2008-11-10 09:30:25 ----D---- C:\Program\SyncToy 2.0 2008-11-10 09:29:42 ----D---- C:\Program\Microsoft Sync Framework ======List of files/folders modified in the last 1 months====== 2008-12-09 10:23:03 ----SHD---- C:\WINDOWS\Installer 2008-12-09 10:23:02 ----HD---- C:\Config.Msi 2008-12-09 10:22:55 ----D---- C:\Program\Java 2008-12-09 10:22:53 ----D---- C:\WINDOWS\Prefetch 2008-12-09 10:22:43 ----D---- C:\WINDOWS\system32 2008-12-09 10:22:39 ----D---- C:\WINDOWS\system32\inetsrv 2008-12-09 10:13:41 ----D---- C:\WINDOWS\security 2008-12-09 06:38:07 ----D---- C:\WINDOWS\system32\drivers 2008-12-09 05:01:52 ----D---- C:\WINDOWS\Temp 2008-12-09 00:10:23 ----D---- C:\Program\Internet Explorer 2008-12-08 23:00:15 ----A---- C:\WINDOWS\cfgall.ini 2008-12-08 22:47:41 ----SD---- C:\WINDOWS\Downloaded Program Files 2008-12-08 22:27:13 ----D---- C:\Program\Windows Live 2008-12-08 22:20:42 ----D---- C:\WINDOWS\Registration 2008-12-08 22:19:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2008-12-08 22:19:08 ----AD---- C:\WINDOWS 2008-12-08 22:18:40 ----D---- C:\WINDOWS\system32\CatRoot2 2008-12-08 22:17:12 ----A---- C:\WINDOWS\system32\PROCDB.INI 2008-12-08 22:16:48 ----A---- C:\TPHKLOCK.TXT 2008-12-08 22:16:47 ----A---- C:\WINDOWS\system32\IPSCtrl.INI 2008-12-08 18:53:47 ----A---- C:\WINDOWS\SchedLgU.Txt 2008-12-08 18:40:55 ----SHD---- C:\WINDOWS\CSC 2008-12-08 15:53:35 ----RD---- C:\Program 2008-12-08 13:13:51 ----D---- C:\SWSHARE 2008-12-08 12:58:54 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-12-08 10:28:29 ----D---- C:\Program\Delade filer\Wise Installation Wizard 2008-12-08 08:28:34 ----ASHD---- C:\WINDOWS\system32\dllcache 2008-11-25 11:36:24 ----HD---- C:\WINDOWS\inf 2008-11-21 18:43:40 ----D---- C:\WINDOWS\Help 2008-11-19 13:10:41 ----D---- C:\WINDOWS\system32\config 2008-11-19 11:31:56 ----D---- C:\Program\Delade filer\Adobe 2008-11-19 11:31:39 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2008-11-13 15:08:56 ----D---- C:\Program\Philips 2008-11-12 09:18:54 ----A---- C:\WINDOWS\imsins.BAK 2008-11-12 09:18:50 ----HD---- C:\WINDOWS\$hf_mig$ 2008-11-12 09:16:28 ----D---- C:\WINDOWS\WinSxS 2008-11-10 09:29:49 ----RSD---- C:\WINDOWS\assembly ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 ANC;ANC; C:\WINDOWS\System32\drivers\ANC.SYS [2005-11-08 11520] R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2005-11-18 5660] R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2005-11-18 22684] R1 IBMTPCHK;IBMTPCHK; \??\C:\WINDOWS\system32\Drivers\IBMBLDID.sys [] R1 intelppm;Intel-processordrivrutin; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40320] R1 SASKUTIL;SASKUTIL; \??\C:\Program\SUPERAntiSpyware\SASKUTIL.sys [] R1 tmtdi;Trend Micro TDI Driver; C:\WINDOWS\system32\DRIVERS\tmtdi.sys [2007-08-31 78864] R1 TPHKDRV;TPHKDRV; C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys [2006-10-23 17778] R1 TPPWRIF;TPPWRIF; C:\WINDOWS\System32\drivers\Tppwrif.sys [2007-12-06 4442] R1 TSMAPIP;TSMAPIP; C:\WINDOWS\System32\drivers\TSMAPIP.SYS [2007-11-29 7168] R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832] R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.4.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-06-25 21393] R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys [] R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-02-02 25628] R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2006-02-02 2496] R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-02-02 86652] R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-02-02 14684] R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-02-02 6364] R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-02-02 87036] R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-02-02 94332] R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2005-11-18 40544] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672] R2 pmem;pmem; \??\C:\WINDOWS\System32\drivers\pmemnt.sys [] R2 PROCDD;IPS Helper Driver; C:\WINDOWS\system32\DRIVERS\PROCDD.SYS [2006-11-06 12080] R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2007-08-08 45568] R2 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2007-07-30 43008] R2 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2007-07-30 38400] R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2007-03-29 12416] R2 smihlp;SMI Helper Driver (smihlp); \??\C:\Program\Delade filer\ThinkVantage Fingerprint Software\Drivers\smihlp.sys [] R2 tmcomm;tmcomm; \??\C:\WINDOWS\system32\drivers\tmcomm.sys [] R2 TmFilter;Trend Micro Filter; \??\C:\Program\Trend Micro\OfficeScan Client\TmXPFlt.sys [] R2 TmPreFilter;Trend Micro PreFilter; \??\C:\Program\Trend Micro\OfficeScan Client\TmPreFlt.sys [] R2 tvtfilter;tvtfilter; C:\WINDOWS\system32\DRIVERS\tvtfilter.sys [2008-06-25 33536] R2 VSApiNt;Trend Micro VSAPI NT; \??\C:\Program\Trend Micro\OfficeScan Client\VSApiNt.sys [] R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2007-04-13 306176] R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-03-22 94848] R3 Arp1394;1394 ARP-klientprotokoll; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 atmeltpm;atmeltpm; C:\WINDOWS\system32\DRIVERS\atmeltpm.sys [2005-05-17 15872] R3 btaudio;Bluetooth-ljudenhet; C:\WINDOWS\system32\drivers\btaudio.sys [2007-01-24 530861] R3 BTDriver;Virtuell Bluetooth-kommunikationsdrivrutin; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-10-09 30459] R3 BTKRNL;Bluetooth-bussräknare; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-27 868042] R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952] R3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275] R3 DNE;Deterministic Network Enhancer Miniport; C:\WINDOWS\system32\DRIVERS\dne2000.sys [2007-01-31 127376] R3 e1express;Intel® PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2008-01-02 252048] R3 HDAudBus;Microsoft UAA-bussdrivrutin för High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 HidUsb;Microsoft HID-klassdrivrutin; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-12-22 988800] R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-12-22 209664] R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2007-05-31 21424] R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2003-09-10 21060] R3 mouhid;HID-drivrutin för mus; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12160] R3 NETw4x32;Kortdrivrutin för Windows XP 32-bitars för Intel® Wireless WiFi Link; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-04-30 2206976] R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-03-21 6547936] R3 psadd;Lenovo Parties Service Access Device Driver; C:\WINDOWS\system32\DRIVERS\psadd.sys [2007-05-22 21376] R3 SASENUM;SASENUM; \??\C:\Program\SUPERAntiSpyware\SASENUM.SYS [] R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-08-11 177664] R3 TcUsb;TC USB Kernel Driver; C:\WINDOWS\System32\Drivers\tcusb.sys [2007-03-14 40848] R3 TVTI2C;Lenovo SM bus driver; C:\WINDOWS\system32\DRIVERS\Tvti2c.sys [2007-05-22 30336] R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Drivrutin för Microsoft USB-standardnav (hub); C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-12-22 730112] R3 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys [] S2 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [] S3 ac97intc;Installationstjänst för Intel® 82801-ljuddrivrutin (WDM); C:\WINDOWS\system32\drivers\ac97intc.sys [2001-08-17 96256] S3 BrScnUsb;Brother USB Still Image driver; C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys [2004-10-15 15295] S3 BTWDNDIS;Bluetooth-server för nätverksåtkomst; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-10-15 149123] S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-01-24 67960] S3 CPWGU(Philips);Philips SNU5600 Wireless USB Adapter 11b/g(Philips); C:\WINDOWS\system32\DRIVERS\CPWGU.sys [] S3 E100B;Drivrutin för Intel® PRO; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-09-06 117760] S3 G400;G400; C:\WINDOWS\system32\DRIVERS\G400m.sys [2001-09-06 322432] S3 s217bus;Sony Ericsson Device 217 driver (WDM); C:\WINDOWS\system32\DRIVERS\s217bus.sys [2007-11-02 83496] S3 s217mdfl;Sony Ericsson Device 217 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s217mdfl.sys [2007-11-02 15016] S3 s217mdm;Sony Ericsson Device 217 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s217mdm.sys [2007-11-02 109992] S3 s217mgmt;Sony Ericsson Device 217 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s217mgmt.sys [2007-11-02 103976] S3 s217nd5;Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (NDIS); C:\WINDOWS\system32\DRIVERS\s217nd5.sys [2007-11-02 24872] S3 s217obex;Sony Ericsson Device 217 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s217obex.sys [2007-11-02 100008] S3 s217unic;Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (WDM); C:\WINDOWS\system32\DRIVERS\s217unic.sys [2007-11-02 105896] S3 TVTPktFilter;TVT Packet Filter Service; C:\WINDOWS\system32\DRIVERS\tvtpktfilter.sys [] S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS [] S3 usbprint;Microsoft USB-skrivarklass; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 USBSTOR;Drivrutin för USB-masslagringsenheter; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368] S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-13 44928] S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-13 42752] S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-13 43008] S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952] S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504] S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-13 40960] S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-13 42240] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AcPrfMgrSvc;Ac Profile Manager Service; C:\Program\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe [2007-07-05 65536] R2 AcSvc;Access Connections Main Service; C:\Program\ThinkPad\ConnectUtilities\AcSvc.exe [2007-07-05 184320] R2 btwdins;Bluetooth Service; C:\Program\ThinkPad\Bluetooth Software\bin\btwdins.exe [2007-02-27 266295] R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program\Cisco Systems\VPN Client\cvpnd.exe [2007-10-26 1524512] R2 Diskeeper;Diskeeper; C:\Program\Diskeeper Corporation\Diskeeper\DkService.exe [2006-05-23 622700] R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program\Intel\Wireless\Bin\EvtEng.exe [2007-04-16 647168] R2 IBMPMSVC;ThinkPad PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2007-05-31 36400] R2 IISADMIN;IIS Admin; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15360] R2 IPSSVC;IPS Core Service; C:\WINDOWS\system32\IPSSVC.EXE [2007-01-30 108080] R2 IviRegMgr;IviRegMgr; C:\Program\Delade filer\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152] R2 JavaQuickStarterService;Java Quick Starter; C:\Program\Java\jre6\bin\jqs.exe [2008-12-05 152984] R2 MDM;Machine Debug Manager; C:\Program\Delade filer\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120] R2 ntrtscan;OfficeScanNT RealTime Scan; C:\Program\Trend Micro\OfficeScan Client\ntrtscan.exe [2007-09-06 771440] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-03-21 155716] R2 QlikViewServer;QlikView Server; C:\Program\QlikView\Server\QVS.exe [2008-07-08 16153424] R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program\Intel\Wireless\Bin\RegSrvc.exe [2007-04-16 327680] R2 S24EventMonitor;Intel® PROSet/Wireless Service; C:\Program\Intel\Wireless\Bin\S24EvMon.exe [2007-04-16 983040] R2 SUService;System Update; c:\program\lenovo\system update\suservice.exe [2007-06-07 13312] R2 ThinkVantage Registry Monitor Service;ThinkVantage Registry Monitor Service; C:\Program\Delade filer\Lenovo\tvt_reg_monitor_svc.exe [2007-08-03 644408] R2 tmlisten;OfficeScan NT Listener; C:\Program\Trend Micro\OfficeScan Client\tmlisten.exe [2007-09-11 804208] R2 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\WINDOWS\System32\TPHDEXLG.exe [2007-10-16 37424] R2 TSSCoreService;TSS Core Service; C:\Program\Lenovo\Client Security Solution\tvttcsd.exe [2007-08-03 722232] R2 TVT Backup Protection Service;TVT Backup Protection Service; C:\Program\Lenovo\Rescue and Recovery\rrpservice.exe [2007-02-08 569344] R2 TVT Backup Service;TVT Backup Service; C:\Program\Lenovo\Rescue and Recovery\rrservice.exe [2007-02-08 950272] R2 TVT Scheduler;TVT Scheduler; c:\Program\Delade filer\Lenovo\Scheduler\tvtsched.exe [2007-02-08 1118208] R2 tvtnetwk;tvtnetwk; C:\Program\Lenovo\Rescue and Recovery\ADM\IUService.exe [2007-02-08 45056] R2 W3SVC;World Wide Web Publishing; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15360] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S3 aspnet_state;ASP.NET tillståndstjänst; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144] S3 gusvc;Google Updater Service; C:\Program\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-04 136120] S3 IDriverT;InstallDriver Table Manager; C:\Program\Delade filer\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632] S3 ose;Office Source Engine; C:\Program\Delade filer\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 QlikViewDirectoryServiceConnector;QlikView DirectoryServiceConnector; C:\Program\QlikView\Publisher\DirectoryServiceConnector\QVDirectoryServiceConnector.exe [2008-07-07 44032] S3 QlikViewHttpService;QlikView Http Service; C:\Program\QlikView\Server\HttpServer\QvHttpService.exe [2008-07-08 12624] S3 QlikViewPublisherAccessPointService;QlikView Publisher AccessPoint Service; C:\Program\QlikView\Publisher\AccessPointService\QVPublisherAccesspointService.exe [2008-07-07 77824] S3 QlikViewPublisherCommandCenterService;QlikView Publisher CommandCenter Service; C:\Program\QlikView\Publisher\CommandCenterService\QVPublisherCommandCenterService.exe [2008-07-07 463360] S3 QlikViewPublisherExecutionService;QlikView Publisher Execution Service; C:\Program\QlikView\Publisher\ExecutionService\QVPublisherExecutionService.exe [2008-07-07 12288] S3 SQLWriter;SQL Server VSS Writer; c:\Program\Microsoft SQL Server\90\Shared\sqlwriter.exe [2006-04-14 87840] S3 TmProxy;OfficeScan NT Proxy Service; C:\Program\Trend Micro\OfficeScan Client\TmProxy.exe [2007-04-27 575064] S3 WLSetupSvc;Windows Live Setup Service; C:\Program\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program\Windows Media Player\WMPNetwk.exe [2006-11-15 912384] S4 SMTPSVC;SMTP (Simple Mail Transfer Protocol); C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15360] -----------------EOF-----------------[/log] [log]info.txt logfile of random's system information tool 1.04 2008-12-09 10:49:22 ======Uninstall list====== -->C:\Program\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\SETUP.exe -l0x001d -removeonly -->C:\Program\InstallShield Installation Information\{69333A04-5134-40A5-A055-9166A7AA1EC8}\setup.exe -runfromtemp -l0x0009 -removeonly -->C:\Program\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\SETUP.exe -l0x001d -removeonly -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205} -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6} -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382} -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 32 Bit HP BiDi Channel Components Installer-->MsiExec.exe /I{9DE3F260-B88E-42CE-90E7-73C78C37D95E} Access - Hjälp-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{C6FA39A7-26B1-480A-BC74-6D17531AC222}\Setup.exe" -l0x1d UNINSTALL Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Reader 8.1.3 - Svenska-->MsiExec.exe /I{AC76BA86-7AD7-1053-7B44-A81300000003} Avanquest update-->C:\Program\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\setup.exe -runfromtemp -l0x001d -removeonly BankID säkerhetsprogram 4.10-->"C:\Program\Personal\bin\persinst.exe" -u Brother MFL-Pro Suite-->"C:\Program\InstallShield Installation Information\{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}\Setup.exe" -runfromtemp -l0x001d Brunin03.dll -removeonly Cisco Systems VPN Client 5.0.02.0090-->MsiExec.exe /X{871DF2BE-41D2-4334-AC33-839AF16FC8FE} Client Security Solution-->MsiExec.exe /I{F055E1B2-8A05-4D87-8039-1BE979BA4193} Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE} CutePDF Writer 2.7-->C:\Program\Acro Software\CutePDF Writer\uninscpw.exe Diskeeper Lite-->MsiExec.exe /X{796E076A-82F7-4D49-98C8-DEC0C3BC733A} HijackThis 2.0.2-->"C:\Documents and Settings\clmag\Skrivbord\HijackThis.exe" /uninstall Hjälpcentralen-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{986F64DC-FF15-449D-998F-EE3BCEC6666A}\Setup.exe" -l0x1d -AddRemove Hjälpfiler för installation av Microsoft SQL Server (engelska)-->MsiExec.exe /X{885DE773-CC47-4B94-97A3-C692C9AF1B05} Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" Hotfix for Windows XP (KB915800-v4)-->"C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe" HP Color LaserJet 2605 Series 1.0-->C:\Program\HP\Digital Imaging\{4E59AA98-3EF3-47A3-9DEA-6B37F00C901F}\setup\hpzscr01.exe -datfile hppscr03.dat -forcereboot HP Extended Capabilities 6.0-->C:\Program\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat HP Imaging Device Functions 6.0-->C:\Program\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat HP Solution Center and Imaging Support Tools 6.0-->C:\Program\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB} Integrated Camera-->C:\Program\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x001d -removeonly -u Intel® PRO Network Connections Drivers-->Prounstl.exe InterVideo WinDVD Creator 3-->"C:\Program\InstallShield Installation Information\{7FC3BBEC-5A91-41B0-9CB8-960EC4421411}\setup.exe" REMOVEALL InterVideo WinDVD-->"C:\Program\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060} Java 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF} Lenovo Registration-->C:\Program\Lenovo Registration\uninstall.exe Maintenance Manager-->Rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\AWAYTASK.INF mCore-->MsiExec.exe /I{E81667C6-2856-46D6-ABEA-6A2F42166779} mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29} Meddelandecentralen-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{E7E836B8-4BDD-454F-82E6-5FEA17C83AD4}\Setup.exe" -l0x1d -AddRemove Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1 Swedish Language Pack-->MsiExec.exe /X{992A2DB1-4ABC-4738-BD71-045C5FFE00D1} Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Language Pack - SVE-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - SVE\install.exe Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28} Microsoft Base Smart Card Cryptographic Service Provider Package-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe" Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe" Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe" Microsoft Office 2003 Webbkomponenter-->MsiExec.exe /I{90A4041D-6000-11D3-8CFE-0150048383C9} Microsoft Office 2007 Primary Interop Assemblies-->MsiExec.exe /X{50120000-1105-0000-0000-0000000FF1CE} Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011041D-6000-11D3-8CFE-0150048383C9} Microsoft Office Small Business Anslutningsbara komponenter-->MsiExec.exe /X{A939D341-5A04-4E0A-BB55-3E65B386432D} Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft SQL Server Native Client-->MsiExec.exe /I{87F6173E-66E9-4188-9BC9-AD81610ABEE4} Microsoft SQL Server VSS-skrivare-->MsiExec.exe /I{C0CE77E6-3CB9-4C81-8B10-A47E3D716010} Microsoft Sync Framework Runtime v1.0 (x86)-->MsiExec.exe /I{A8BD5A60-E843-46DC-8271-ABF20756BE0F} Microsoft Sync Framework Services v1.0 (x86)-->MsiExec.exe /I{03CAB33F-D1C2-48C6-8766-DAE84DFC25FE} Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" mMHouse-->MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5} mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5} mProSafe-->MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{DC86EAB4-DF11-4276-AB40-B556877F0E30} mWlsSafe-->MsiExec.exe /I{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4} NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI PaperPort Image Printer-->MsiExec.exe /X{332CC6BF-E6C7-48EE-BA3D-435E576AD67F} PC-Doctor 5 for Windows-->C:\Program\PCDR5\uninst.exe Picasa 2-->"C:\Program\Picasa2\Uninstall.exe" Presentationshanteraren-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{65706020-7B6F-41F2-8047-FC69579E386A}\Setup.exe" -l0x1d -AddRemove Productivity Center - tillägg för ThinkPad-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{D728E945-256D-4477-B377-6BBA693714AC}\SETUP.EXE" -l0x1d -AddRemove Programvara för Intel® PROSet för trådlösa anslutningar-->C:\WINDOWS\Installer\iProInst.exe QlikView Plugin-->MsiExec.exe /I{CDD3274F-5D95-42D3-AC7C-7C7A28215D74} QlikView Publisher-->MsiExec.exe /I{CCACAAE2-CA00-4D9A-88BE-947AE4EE38E0} QlikView-->MsiExec.exe /I{49A384C5-C819-4F4C-8768-D8D1A8766C88} QlikView-->MsiExec.exe /I{F9167015-60B0-4B83-AFA2-5CCDCB16FEF0} RecordNow Audio-->MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382} RecordNow Copy-->MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629} RecordNow Data-->MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205} Remove Multimedia Center-->C:\swtools\apps\MMCfTO\customiz\sequencer.exe -fc:\swtools\apps\MMCfTO\customiz\uninst.seq Rescue and Recovery-->MsiExec.exe /I{F151F2B3-0C32-44D3-90E2-E639B8024622} RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02-->RunDll32 C:\Program\DELADE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{59F6A514-9813-47A3-948C-8A155460CC2A}\setup.exe" -l0x1d anything ScanSoft PaperPort 11-->MsiExec.exe /I{B6C89654-A6A2-477C-873B-724EC1C56407} Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82} Snabbkorrigering för Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe" Snabbkorrigering för Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Sonic DLA-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6} Sonic Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} Sonic Icons for Lenovo-->MsiExec.exe /I{B334D9AE-1393-423E-97C0-3BDC3360E692} Sonic Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E} Sony Ericsson PC Suite 3.209.00-->C:\Program\InstallShield Installation Information\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\Setup.exe -runfromtemp -l0x001d -removeonly SoundMAX-->RunDll32 C:\Program\DELADE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\SETUP.exe" -l0x1d -removeonly SUPERAntiSpyware Free Edition-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} SyncToy 2.0 (x86)-->MsiExec.exe /I{AFDFC350-C142-4790-BE12-8357AECD028F} System Migration Assistant-->MsiExec.exe /X{F705E3E1-A471-426B-9A09-73429F3418EE} System Update-->MsiExec.exe /X{8675339C-128C-44DD-83BF-0A5D6ABD8297} Säkerhetsuppdatering för Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows Media Player 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB953155)-->"C:\WINDOWS\$NtUninstallKB953155$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Säkerhetsuppdatering för Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" ThinkPad Bluetooth with Enhanced Data Rate Software-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823BD1C670F6} ThinkPad EasyEject Utility -->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{1297C681-92D7-40EF-93BF-03F66EC5105C}\SETUP.EXE" -l0x1d -AddRemove ThinkPad Energispararen-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{A0E64EBA-8BF0-49FB-90C0-BB3D781A2016}\SETUP.EXE" -l0x1d -AddRemove ThinkPad FullScreen Magnifier-->RunDll32 setupapi.dll,InstallHinfSection DefaultUninstall.NT 132 C:\Program\Lenovo\Zoom\TpScrex.inf ThinkPad Modem-->C:\Program\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_10140588\UIU32m.exe -U -ITkp0588k.inf ThinkPad PC Card Power Policy-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUnInstall 132 C:\SWTOOLS\OSFIXES\PCMCIAPW\pcmciapw.inf ThinkPad Power Management Driver-->RunDll32.exe tpinspm.dll,Uninstall ThinkPad UltraNav Driver-->rundll32.exe "C:\Program\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall ThinkPad UltraNav-guiden-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{17CBC505-D1AE-459D-B445-3D2000A85842}\SETUP.EXE" -l0x1d UNINSTALL ThinkVantage Access Connections-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{7EB114D8-207F-45AE-BABD-1669715F2630}\Setup.exe" -l0x1d anything ThinkVantage Aktivt skyddssystem-->MsiExec.exe /X{46A84694-59EC-48F0-964C-7E76E9F8A2ED} ThinkVantage Productivity Center-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{CF5737AF-8550-4546-A69B-0EA9EF5A9B55}\SETUP.EXE" -l0x1d -AddRemove ThinkVantage Technologies Welcome Message-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{1007F41F-7D69-468E-8017-3849A5A973C2}\Setup.exe" -l0x1d anything Trend Micro OfficeScan Client-->"C:\Program\Trend Micro\OfficeScan Client\ntrmv.exe" TrueCrypt-->"C:\Program\TrueCrypt\TrueCrypt Setup.exe" /u Uppdatering för Windows XP (KB943729)-->"C:\WINDOWS\$NtUninstallKB943729$\spuninst\spuninst.exe" Uppdatering för Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe" Uppdatering för Windows XP (KB951618-v2)-->"C:\WINDOWS\$NtUninstallKB951618-v2$\spuninst\spuninst.exe" Uppdatering för Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Wallpapers-->RunDll32 C:\Program\DELADE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program\InstallShield Installation Information\{DB71210F-8314-4AE3-B7A7-EBAF85BD30E9}\Setup.exe" -l0x1d UNINSTALL WebEx-->C:\WINDOWS\DOWNLO~1\atcliun.exe VideoLAN VLC media player 0.8.5-->C:\Program\VideoLAN\VLC\uninstall.exe Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe" Windows Live installer-->MsiExec.exe /X{E17F76BE-50E9-4E7C-ADF6-6D8F44A9C6F3} Windows Live Sign-in Assistant-->MsiExec.exe /I{0ED47137-C071-46CC-A243-E5E33271E10E} Windows Live Toolbar-->"C:\Program\Windows Live Toolbar\UnInstall.exe" {96C79EA4-E1A4-423D-90DB-6FFFEF6994AB} Windows Live Toolbar-->MsiExec.exe /X{96C79EA4-E1A4-423D-90DB-6FFFEF6994AB} Windows Media Connect-->"C:\WINDOWS\$NtUninstallWMCSetup$\spuninst\spuninst.exe" Windows Media Format 11 runtime-->"C:\Program\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\Program\Windows Media Player\Setup_wm.exe" /Uninstall Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" Visa på skärmen-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall.XP 132 C:\Program\Lenovo\HOTKEY\tphk_tp.inf XP Themes-->MsiExec.exe /I{C54ED2B6-1AF2-416F-BBA8-5E2B8CDCB5C4} ======Security center information====== AV: Trend Micro OfficeScan Antivirus ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program\Intel\Wireless\Bin\;C:\Program\Diskeeper Corporation\Diskeeper\;C:\Program\ThinkPad\ConnectUtilities;C:\Program\Delade filer\Lenovo;C:\Program\Lenovo\Client Security Solution "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel "PROCESSOR_REVISION"=1706 "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "SonicCentral"=C:\Program\Delade filer\Sonic Shared\Sonic Central"TPCCommon"=C:\Program\THINKV~1\PrdCtr "SMA"=C:\Program\ThinkVantage\SMA"TVT"=C:\Program\Lenovo "TVTCOMMON"=C:\Program\Delade filer\Lenovo "SWSHARE"=C:\SWSHARE "RR"=C:\Program\Lenovo\Rescue and Recovery "TVTPYDIR"=C:\Program\Delade filer\Lenovo\Python24 -----------------EOF-----------------[/log]
  10. Fick ett virus i MSN som skickade länkar till mina kontakter. Har kört uppdaterad version av mitt anitivirus TrendMicro OfficeScan, HouseCall 65 online, samt SUPERNatiSpyware i felsäkert läge, men är osäker på om det helt försvunnit. Någon som har lust att kolla på loggarna från SUPERAntiSpyware och HiJackThis? [log]SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 12/08/2008 at 08:11 PM Application Version : 4.22.1014 Core Rules Database Version : 3666 Trace Rules Database Version: 1645 Scan type : Complete Scan Total Scan Time : 01:11:44 Memory items scanned : 225 Memory threats detected : 0 Registry items scanned : 6479 Registry threats detected : 0 File items scanned : 84342 File threats detected : 0 [/log] [log] Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 06:48:29, on 2008-12-09 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\ibmpmsvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program\ThinkPad\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\svchost.exe C:\Program\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\IPSSVC.EXE C:\Program\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe C:\Program\Cisco Systems\VPN Client\cvpnd.exe C:\Program\Diskeeper Corporation\Diskeeper\DkService.exe C:\Program\Intel\Wireless\Bin\EvtEng.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program\Delade filer\InterVideo\RegMgr\iviRegMgr.exe C:\Program\Java\jre6\bin\jqs.exe C:\Program\Delade filer\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\System32\svchost.exe C:\Program\Trend Micro\OfficeScan Client\ntrtscan.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program\QlikView\Server\QVS.exe C:\Program\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\svchost.exe c:\program\lenovo\system update\suservice.exe C:\Program\Delade filer\Lenovo\tvt_reg_monitor_svc.exe C:\WINDOWS\System32\TPHDEXLG.exe C:\Program\Lenovo\Rescue and Recovery\rrpservice.exe C:\Program\Lenovo\Rescue and Recovery\rrservice.exe c:\Program\Delade filer\Lenovo\Scheduler\tvtsched.exe C:\Program\Lenovo\Rescue and Recovery\ADM\IUService.exe C:\Program\ThinkPad\ConnectUtilities\AcSvc.exe C:\Program\Trend Micro\OfficeScan Client\tmlisten.exe C:\Program\Delade filer\Lenovo\Logger\logmon.exe C:\WINDOWS\TEMP\DM2534.EXE C:\Program\Trend Micro\OfficeScan Client\CNTAoSMgr.exe C:\Program\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe C:\WINDOWS\Explorer.EXE C:\Program\Intel\Wireless\Bin\Dot1XCfg.exe C:\WINDOWS\system32\rundll32.exe C:\Program\Synaptics\SynTP\SynTPLpr.exe C:\Program\Synaptics\SynTP\SynTPEnh.exe C:\Program\Lenovo\NPDIRECT\TPFNF7SP.exe C:\Program\Lenovo\HOTKEY\TPOSDSVC.exe C:\WINDOWS\system32\TpShocks.exe C:\Program\ThinkPad\UTILIT~1\EzEjMnAp.Exe C:\Program\Analog Devices\Core\smax4pnp.exe C:\Program\Lenovo\HOTKEY\TPONSCR.exe C:\Program\Lenovo\Zoom\TpScrex.exe C:\Program\Delade filer\Lenovo\Scheduler\scheduler_proxy.exe C:\WINDOWS\system32\rundll32.exe C:\Program\Java\jre6\bin\jusched.exe C:\WINDOWS\System32\DLA\DLACTRLW.EXE C:\WINDOWS\System32\svchost.exe C:\Program\Delade filer\InstallShield\UpdateService\issch.exe C:\Program\Lenovo\AwayTask\AwaySch.EXE C:\Program\THINKV~1\PrdCtr\LPMGR.exe C:\Program\Lenovo\Client Security Solution\cssauth.exe C:\Program\Trend Micro\OfficeScan Client\pccntmon.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program\ScanSoft\PaperPort\pptd40nt.exe C:\Program\HP\ToolBoxFX\bin\HPTLBXFX.exe C:\Program\HP\HP UT\bin\hppusg.exe C:\Program\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\ctfmon.exe C:\Program\Cisco Systems\VPN Client\vpngui.exe C:\Program\Diskeeper Corporation\Diskeeper\DkIcon.exe C:\WINDOWS\system32\dllhost.exe C:\Program\Internet Explorer\IEXPLORE.EXE C:\Program\Delade filer\Microsoft Shared\Windows Live\WLLoginProxy.exe c:\program\delade filer\installshield\updateservice\isuspm.exe C:\Program\Delade filer\InstallShield\UpdateService\agent.exe C:\WINDOWS\system32\notepad.exe C:\Documents and Settings\clmag\Mina dokument\Climber\Setup\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.climber.se'>http://www.climber.se R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR'>http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR'>http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.climber.se R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.climber.se R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.se/0SESVSE/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program\Windows Live Toolbar\msntb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: ThinkVantage Password Manager - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\Program\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor O4 - HKLM\..\Run: [bLOG] rundll32 C:\Program\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog O4 - HKLM\..\Run: [synTPLpr] C:\Program\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [TPFNF7] C:\Program\Lenovo\NPDIRECT\TPFNF7SP.exe /r O4 - HKLM\..\Run: [TPHOTKEY] C:\Program\Lenovo\HOTKEY\TPOSDSVC.exe O4 - HKLM\..\Run: [TpShocks] TpShocks.exe O4 - HKLM\..\Run: [EZEJMNAP] C:\Program\ThinkPad\UTILIT~1\EzEjMnAp.Exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program\Delade filer\Lenovo\Scheduler\scheduler_proxy.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE O4 - HKLM\..\Run: [iSUSPM Startup] C:\Program\DELADE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program\Delade filer\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [AwaySch] C:\Program\Lenovo\AwayTask\AwaySch.EXE O4 - HKLM\..\Run: [LPManager] C:\Program\THINKV~1\PrdCtr\LPMGR.exe O4 - HKLM\..\Run: [AMSG] C:\Program\ThinkVantage\AMSG\Amsg.exe /startup O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program\Diskeeper Corporation\Diskeeper\DkIcon.exe" O4 - HKLM\..\Run: [cssauth] "C:\Program\Lenovo\Client Security Solution\cssauth.exe" silent O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program\Delade filer\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program\ScanSoft\PaperPort\pptd40nt.exe" O4 - HKLM\..\Run: [indexSearch] "C:\Program\ScanSoft\PaperPort\IndexSearch.exe" O4 - HKLM\..\Run: [PPort11reminder] "C:\Program\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini O4 - HKLM\..\Run: [brMfcWnd] C:\Program\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN O4 - HKLM\..\Run: [ControlCenter3] C:\Program\Brother\ControlCenter3\brctrcen.exe /autorun O4 - HKLM\..\Run: [ToolBoxFX] "C:\Program\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /systrayIcon:on O4 - HKLM\..\Run: [HPUsageTracking] "C:\Program\HP\HP UT\bin\hppusg.exe" "C:\Program\HP\HP UT\" O4 - HKLM\..\Run: [HP Software Update] C:\Program\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\DOCUME~1\clmag\LOKALA~1\Temp\SSUPDATE.EXE Software\SUPERAntiSpyware.com\SUPERAntiSpyware O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJÄNST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: &Windows Live Search - res://C:\Program\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Skicka till &Bluetooth-enhet... - C:\Program\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra 'Tools' menuitem: ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program\Lenovo\Client Security Solution\tvtpwm_ie_com.dll O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O16 - DPF: {00140000-B1BA-11CE-ABC6-F5B2E79D9E3F} (LEAD Main Control (14.0)) - https://iof.ystad.se/FtB/LTOCX14N.CAB O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1220009808883 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1220010782288 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD5/JSCDL/jre/6u11-b90/jinstall-6u11-windows-i586-jc.cab?e=1228772972437&h=60694f960da9afa0c8d39d93769ea1f0/&filename=jinstall-6u11-windows-i586-jc.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://qliktech.webex.com/client/T26L/webex/ieatgpc.cab O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = rn.local O17 - HKLM\Software\..\Telephony: DomainName = rn.local O17 - HKLM\System\CCS\Services\Tcpip\..\{F3F77127-4C9A-49A5-9630-567E9BB01651}: Domain = rn.local O17 - HKLM\System\CCS\Services\Tcpip\..\{F3F77127-4C9A-49A5-9630-567E9BB01651}: NameServer = 192.168.253.6 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = rn.local O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = rn.local O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = rn.local O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = rn.local O18 - Protocol: qvp - {4BA78E3D-CA25-4BFF-B8F0-8A3359E4B520} - C:\Program\QLIKVI~1\QVPROT~1\Qvp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program\DELADE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing) O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program\ThinkPad\ConnectUtilities\AcSvc.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program\ThinkPad\Bluetooth Software\bin\btwdins.exe O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\WINDOWS\system32\ibmpmsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program\Delade filer\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE O23 - Service: IviRegMgr - InterVideo - C:\Program\Delade filer\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program\Java\jre6\bin\jqs.exe O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program\Trend Micro\OfficeScan Client\ntrtscan.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: QlikView DirectoryServiceConnector (QlikViewDirectoryServiceConnector) - QlikTech - C:\Program\QlikView\Publisher\DirectoryServiceConnector\QVDirectoryServiceConnector.exe O23 - Service: QlikView Http Service (QlikViewHttpService) - QlikTech - C:\Program\QlikView\Server\HttpServer\QvHttpService.exe O23 - Service: QlikView Publisher AccessPoint Service (QlikViewPublisherAccessPointService) - QlikTech International - C:\Program\QlikView\Publisher\AccessPointService\QVPublisherAccesspointService.exe O23 - Service: QlikView Publisher CommandCenter Service (QlikViewPublisherCommandCenterService) - Qliktech Internaltional Inc - C:\Program\QlikView\Publisher\CommandCenterService\QVPublisherCommandCenterService.exe O23 - Service: QlikView Publisher Execution Service (QlikViewPublisherExecutionService) - QlikTech - C:\Program\QlikView\Publisher\ExecutionService\QVPublisherExecutionService.exe O23 - Service: QlikView Server (QlikViewServer) - QlikTech AB - C:\Program\QlikView\Server\QVS.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program\lenovo\system update\suservice.exe O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program\Delade filer\Lenovo\tvt_reg_monitor_svc.exe O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program\Trend Micro\OfficeScan Client\tmlisten.exe O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program\Trend Micro\OfficeScan Client\TmProxy.exe O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:\Program\Lenovo\Client Security Solution\tvttcsd.exe O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program\Lenovo\Rescue and Recovery\rrpservice.exe O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program\Lenovo\Rescue and Recovery\rrservice.exe O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program\Delade filer\Lenovo\Scheduler\tvtsched.exe O23 - Service: tvtnetwk - Unknown owner - C:\Program\Lenovo\Rescue and Recovery\ADM\IUService.exe -- End of file - 16931 bytes [/log]
  11. Jag har ett adressregister i excel. Jag har via word fixat en kopplad utskrift till excelfilen för utskrift av adressetiketterna. Då jag lägger till en post i excel och sen via hyperlänk klickar mig till wordfilen så fungerar detta bra. jag stänger ner word och excel. problemet uppstår då jag ska öpppna excelfilen på nytt. excel.exe ligger fortfarande öppen som process i aktivitetshanteraren trots att programmet är stängt. Jag kan därför inte öppna excelfilen på nytt utan måste först avsluta processen via aktivitetshanteraren. Om jag däremot bara öppnar excelfilen, gör en ändring, sparar utan att länka mig vidare till word, går det att stänga och öppna den på nytt utan problem. Uppenbarligen har det något att göra med kopplingen mellan excel och word!? Någon som vet vad felet beror på och hur man kan lösa det? [inlägget ändrat 2008-05-21 15:53:14 av magnus_n]
  12. Gjort är gjort. Adressen är registrerad. Nu försöker jag lösa det så smidigt som möjligt...
  13. Problemet är att karriarval.se redan är registrerad av annan användare...
  14. Jag registrerade nyligen www.karriärval.se (med ä). Adressen motsvaras av www.xn--karrirval-z2a.se (utan ä). Nu i efterhand har jag kommit underfund med att det bara är Internet Explorer 7 som kan "läsa in" url:er med å, ä eller ö. Har man tidigare webbläsare kan man lösa det genom en plug-in. Jag vill kringgå detta på något sätt. Har en tanke om att lägga in ett asp-script på första sidan som säger: om webbläsare=ie7 så www.karriärval.se om webbläsare<7 så www.xn--karrirval-z2a.se Är det någon som vet om detta skulle fungera eller har tips på annan lösning så att man slipper använda sig av www.xn--karrirval-z2a.se.
×
×
  • Skapa nytt...