Just nu i M3-nätverket
Jump to content

Meddelandfältet i windows xp?


mange.s88

Recommended Posts

Senaste veckorna så har ikonen säkerhetsmeddelande gjort sig tydlig, alltför ofta. Hur får jag bort den?

Jag har f-secure, virus/brandvägg sedan länge.

 

Ikonen för f-secure försvann för en tid sen från meddelandefältet, vet ej varför. Hur får jag tillbaks den dit?

Numera för att öppna f-secure så går jag via stratmenyn.

Min länk

 

Har kikat på detta men vet inte?

http://www.tipsomxp....ndefaeltet.html

Link to comment
Share on other sites

  • Replies 50
  • Created
  • Last Reply

Har du prövat med att ominstallera F-secure?

 

det har jag inte gjort. menar du att det, per automatik, skulle kunna lösa att ikonen för f-secure hamnar i meddelandefältet igen? finns det inget sätt att flytta ikonen för f-secure till området bredvid klockan (meddelandefältet)?

 

jag flyttade ner ikonen till höger om startknappen. det är det närmsta jag i nuläget kommer meddelandefältet.

Link to comment
Share on other sites

Om ikonen för säkerhetsmeddelande dyker upp är det stor risk för att F-secure inte fungerar ordentligt och att det är anledningen till att ikonen inte syns. Ikonerna vid klockan hänger alltid ihop med något program som kör just nu.

 

Om du dessutom har haft F-secure installerat länge har det antagligen kommit ut en ny version/årsmodell och du bör installera den nya versionen för bästa säkerhet.

Link to comment
Share on other sites

WinGuider.se

Mitt råd är att du provar en rescue CD. (Du startar mot den och rensar datorn utan att ha Windows igång!)

 

På en annan dator, Se till att ladda ner och bränna ut F-secure Rescue disk.

http://www.f-secure.com/en_EMEA-Labs/security-threats/tools/rescue-cd

 

Hur du gör står här: http://www.f-secure.com/linux- weblog/files/rescue_cd_user_guide.20090717.pdf

 

Har för mej att även Kaspersky har en liknande...

http://support.kaspersky.com/viruses/rescuedisk

 

 

 

Link to comment
Share on other sites

Om ikonen för säkerhetsmeddelande dyker upp är det stor risk för att F-secure inte fungerar ordentligt och att det är anledningen till att ikonen inte syns. Ikonerna vid klockan hänger alltid ihop med något program som kör just nu.

 

jag avinstallerade och installerade på nytt. men trots det så är inte allt bra. ikonen för f-secure har återkommit till meddelandefältet. men numera döljs den nästa av en annan ikon. Min länk = nätverksanslutningar: fel

 

f-secure verkar uppdatera sig som det ska. min uppkoppling i övrigt funkar som det ska.

 

 

Om du dessutom har haft F-secure installerat länge har det antagligen kommit ut en ny version/årsmodell och du bör installera den nya versionen för bästa säkerhet.

 

jag var inte tydlig nog i det avseendet. jag har version 2011 installerad sen förra året.

 

tack så länge...

Link to comment
Share on other sites

Mitt råd är att du provar en rescue CD. (Du startar mot den och rensar datorn utan att ha Windows igång!)

 

På en annan dator, Se till att ladda ner och bränna ut F-secure Rescue disk.

http://www.f-secure....tools/rescue-cd

 

Hur du gör står här: http://www.f-secure.com/linux- weblog/files/rescue_cd_user_guide.20090717.pdf

 

Har för mej att även Kaspersky har en liknande...

http://support.kaspe...uses/rescuedisk

 

 

 

jag ska titta på det när jag har lite mer tid... tack så länge

Link to comment
Share on other sites

jag avinstallerade och installerade på nytt. men trots det så är inte allt bra. ikonen för f-secure har återkommit till meddelandefältet. men numera döljs den nästa av en annan ikon. Min länk = nätverksanslutningar: fel

 

f-secure verkar uppdatera sig som det ska. min uppkoppling i övrigt funkar som det ska.

Min gissning är att krysset på röd botten är ett felmeddelande från F-secure. Står det inget när du öppnar F-secure?

Link to comment
Share on other sites

Min gissning är att krysset på röd botten är ett felmeddelande från F-secure. Står det inget när du öppnar F-secure?

 

nej ingenting.

men en annan sak. Min länk ska jag ha dem ibockade eller ej? jag bockade ur dem eftersom jag vet ju att jag har virus/brandvägg och automatiska uppdateringar.

Link to comment
Share on other sites

Jag har dem bockade för att få en varning om det skulle bli något problem med antivirusprogrammet eller brandväggen.

 

Skanna datorn online på http://www.eset.com/onlinescan/

För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.

 

Avbocka alternativet Remove found threats

Bocka för Scan Archives

 

Klicka på Advanced Settings

Bocka för:

Scan for potentially unwanted applications

Scan for potentially unsafe applications

Enable Anti-Stealth Technology

 

Klicka på Scan

 

När skanningen är klar skapas loggfilen C:\Program\Eset\Eset Online Scanner\log.txt. Öppna den i Anteckningar och klistra sedan in innehållet i ditt svar.

Link to comment
Share on other sites

körde 2 skanningar:

 

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

# version=7

# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)

# OnlineScanner.ocx=1.0.0.6425

# api_version=3.0.2

# EOSSerial=713c6e0edc492343aed556184559746f

# end=finished

# remove_checked=false

# archives_checked=true

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2011-03-05 07:17:30

# local_time=2011-03-05 08:17:30 (+0100, Västeuropa, normaltid)

# country="Sweden"

# lang=1033

# osver=5.1.2600 NT Service Pack 3

# compatibility_mode=crash

# scanned=98177

# found=2

# cleaned=0

# scan_time=4344

C:\DocumentsandSettings\Mange\Skrivbord\System_Tool_2011_Removal_Tool\System_Tool_2011_Removal_Tool.exe probably unknown NewHeur_PE virus (unable to clean) 00000000000000000000000000000000 I

C:\DocumentsandSettings\Mange\Skrivbord\System_Tool_2011_Removal_Tool\System_Tool_2011_Removal_Tool.zip probably unknown NewHeur_PE virus (unable to clean) 00000000000000000000000000000000 I

esets_scanner_update returned -1 esets_gle=53251

 

-----------------------------------------------------------------------------------------------------------------

 

# version=7

# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)

# OnlineScanner.ocx=1.0.0.6425

# api_version=3.0.2

# EOSSerial=713c6e0edc492343aed556184559746f

# end=finished

# remove_checked=false

# archives_checked=true

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2011-03-05 08:58:11

# local_time=2011-03-05 09:58:11 (+0100, Västeuropa, normaltid)

# country="Sweden"

# lang=1033

# osver=5.1.2600 NT Service Pack 3

# compatibility_mode=crash

# scanned=98183

# found=2

# cleaned=0

# scan_time=4771

C:\Documents and Settings\Mange\Skrivbord\System_Tool_2011_Removal_Tool\System_Tool_2011_Removal_Tool.exe probably unknown NewHeur_PE virus (unable to clean) 00000000000000000000000000000000 I

C:\DocumentsandSettings\Mange\Skrivbord\System_Tool_2011_Removal_Tool\System_Tool_2011_Removal_Tool.zip probably unknown NewHeur_PE virus (unable to clean) 00000000000000000000000000000000 I

 

 

 

Link to comment
Share on other sites

C:\Documents and Settings\Mange\Skrivbord\System_Tool_2011_Removal_Tool\System_Tool_2011_Removal_Tool.exe probably unknown NewHeur_PE virus (unable to clean) 00000000000000000000000000000000 I

C:\DocumentsandSettings\Mange\Skrivbord\System_Tool_2011_Removal_Tool\System_Tool_2011_Removal_Tool.zip probably unknown NewHeur_PE virus (unable to clean) 00000000000000000000000000000000 I

Ta bort de två filerna.

 

Har datorn varit infekterad med System Tool 2011?

Vad har du gjort för att få bort det skadliga programmet?

Link to comment
Share on other sites

Ta bort de två filerna.

 

Har datorn varit infekterad med System Tool 2011?

Vad har du gjort för att få bort det skadliga programmet?

 

just det... skulle ju följa upp det... hade problem med system tool 2011 och laddade ner Min länk körde det och sen glömde jag bort att kolla att allt var som det skulle.

 

tog bort det du sa. tömde papperskorgen. startade om datorn. men säkerhetsmeddelandet och krysset över f-secure kvarstår. kör just nu en skanning till.

men jag förstår inte varför f-secure inte på ett tydligare sätt visar vad som är fel, om man klickar på ikonen så öppnas bara själva centret där man gör alla inställningar etc. men inget där indikerar att något skulle vara fel.

Link to comment
Share on other sites

Då är det nog bäst att vi övergår till att se efter om där finns ytterligare skadliga filer och inställningar kvar. Vi kan se vad DDS visar till att börja med. Spara DDS på Skrivbordet.

http://download.bleepingcomputer.com/sUBs/dds.scr

 

Starta programmet genom att dubbelklicka på det.

Tryck Yes/Ja om frågan om Optional Scan dyker upp.

I ditt svar klistrar du in loggen DSS.txt. Medan du bifogar Attach.txt som en fil.

Link to comment
Share on other sites

Då är det nog bäst att vi övergår till att se efter om där finns ytterligare skadliga filer och inställningar kvar. Vi kan se vad DDS visar till att börja med. Spara DDS på Skrivbordet.

http://download.blee...om/sUBs/dds.scr

 

Starta programmet genom att dubbelklicka på det.

Tryck Yes/Ja om frågan om Optional Scan dyker upp.

I ditt svar klistrar du in loggen DSS.txt. Medan du bifogar Attach.txt som en fil.

 

problem.

dds startar och kör på i ca 30 sek sen fryser det och inget mer händer, hela datorn fryser, får stänga av datorn med strömbrytaren på baksidan. ingen förfrågan om optional scan heller.

 

testat både att vara ansluten till internet och inte. av och på med f-secure.

 

står något i dds om att inte ha program som blockerar script, vet inte vad det skulle vara för program.

Link to comment
Share on other sites

Se om det går bättre med DDS om du startar om datorn i felsäkert läge (tryck F8 upprepade gånger under uppstarten och välj felsäkert läge i menyn).

Link to comment
Share on other sites

Se om det går bättre med DDS om du startar om datorn i felsäkert läge (tryck F8 upprepade gånger under uppstarten och välj felsäkert läge i menyn).

 

med nätverk eller annat? kommer jag att hitta filen dds.scr som finns på skrivbordet i nuläget då?

Link to comment
Share on other sites

Utan nätverk går bra för DDS och DDS ska ju finnas kvar på skrivbordet även i felsäkert läge.

Link to comment
Share on other sites

Utan nätverk går bra för DDS och DDS ska ju finnas kvar på skrivbordet även i felsäkert läge.

 

 

f8 funkade inte. har f-mode på mitt tangentbord. testade både f-tangenter med standard och extrafunktioner.

körde msonfig och kryssade safeboot/minimal och sen safeboot/network. dds/datorn fryser oavsett vad jag gör och får stänga av med strömbrytaren på datorn.

det vill sig inte. nu får motgångarna ge sig...

 

dds skärmdump Min länk

 

tillägg: dds fryser på exakt samma ställe alla gånger jag testat

Link to comment
Share on other sites

Då ser vi om ett annat program fungerar bättre.

Spara OTL på Skrivbordet.

http://oldtimer.geekstogo.com/OTL.exe

Stäng alla program.

Kör OTL.

 

Under Output högt upp så välj Minimal Output.

Bocka för LOP Check och Purity Check.

Tryck på Run Scan och låt programmet köra ostört.

 

När det är klart så skapas två loggfiler på Skrivbordet, OTL.txt och Extras.txt. I ditt svar klistrar du in loggen OTL.txt. Medan du bifogar Extras.txt som en fil.

Link to comment
Share on other sites

När det är klart så skapas två loggfiler på Skrivbordet, OTL.txt och Extras.txt. I ditt svar klistrar du in loggen OTL.txt. Medan du bifogar Extras.txt som en fil.

 

 

 

 

OTL logfile created on: 2011-03-06 09:49:23 - Run 1

OTL by OldTimer - Version 3.2.22.2 Folder = C:\Documents and Settings\Mange\Skrivbord

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd

 

1 022,00 Mb Total Physical Memory | 586,00 Mb Available Physical Memory | 57,00% Memory free

2,00 Gb Paging File | 2,00 Gb Available in Paging File | 87,00% Paging File free

Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program

Drive C: | 48,83 Gb Total Space | 24,86 Gb Free Space | 50,91% Space Free | Partition Type: NTFS

Drive D: | 73,24 Gb Total Space | 44,30 Gb Free Space | 60,48% Space Free | Partition Type: NTFS

Drive E: | 68,36 Gb Total Space | 68,16 Gb Free Space | 99,70% Space Free | Partition Type: NTFS

Drive F: | 68,36 Gb Total Space | 68,27 Gb Free Space | 99,86% Space Free | Partition Type: NTFS

Drive G: | 80,14 Gb Total Space | 80,05 Gb Free Space | 99,89% Space Free | Partition Type: NTFS

 

Computer Name: Mange | User Name: Mange | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 

========== Processes (SafeList) ==========

 

PRC - C:\Documents and Settings\Mange\Skrivbord\OTL.exe (OldTimer Tools)

PRC - C:\Program\F-Secure\Anti-Virus\fssm32.exe (F-Secure Corporation)

PRC - C:\Program\F-Secure\Anti-Virus\fsgk32.exe (F-Secure Corporation)

PRC - C:\Program\F-Secure\Anti-Virus\fsgk32st.exe (F-Secure Corporation)

PRC - C:\Program\F-Secure\Common\FSMA32.EXE (F-Secure Corporation)

PRC - C:\Program\F-Secure\Common\FSLAUNCH.EXE (F-Secure Corporation)

PRC - C:\Program\Delade filer\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)

PRC - C:\Program\Personal\bin\Personal.exe (Technology Nexus AB)

PRC - C:\Program\Hardcopy\hardcopy.exe (sw4you, Siegfried Weckmann)

PRC - C:\Program\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech)

PRC - C:\Program\OpenOffice.org 3\program\soffice.bin (OpenOffice.org)

PRC - C:\Program\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)

PRC - C:\Documents and Settings\Mange\Application Data\CoSoSys\CarryItEasy\CarryLaunch.exe ()

PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)

PRC - C:\Program\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)

PRC - C:\Program\Delade filer\Logitech\KHAL\KHALMNPR.EXE (Logitech Inc.)

PRC - C:\NVIDIA\NetworkAccessManager\bin\nSvcIp.exe ()

PRC - C:\NVIDIA\NetworkAccessManager\bin\nSvcLog.exe ()

PRC - C:\NVIDIA\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe (Apache Software Foundation)

 

 

========== Modules (SafeList) ==========

 

MOD - C:\Documents and Settings\Mange\Skrivbord\OTL.exe (OldTimer Tools)

MOD - c:\Program\F-Secure\HIPS\fshook32.dll (F-Secure Corporation)

MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)

MOD - C:\Documents and Settings\Mange\Lokala inställningar\Temp\IadHide5.dll (BackWeb)

MOD - C:\Program\Hardcopy\HcDLL2_30_Win32.dll ()

MOD - C:\Program\Logitech\SetPoint\lgscroll.dll (Logitech Inc.)

 

 

========== Win32 Services (SafeList) ==========

 

SRV - (SwitchBoard) -- File not found

SRV - (HidServ) -- File not found

SRV - (AppMgmt) -- File not found

SRV - (FSORSPClient) -- C:\Program\F-Secure\ORSP Client\fsorsp.exe (F-Secure Corporation)

SRV - (FSDFWD) -- C:\Program\F-Secure\FWES\Program\fsdfwd.exe (F-Secure Corporation)

SRV - (F-Secure Gatekeeper Handler Starter) -- C:\Program\F-Secure\Anti-Virus\fsgk32st.exe (F-Secure Corporation)

SRV - (FSMA) -- C:\Program\F-Secure\Common\FSMA32.EXE (F-Secure Corporation)

SRV - (Akamai) -- C:/Program/Delade filer/Akamai/netsession_win_dbc0250.dll ()

SRV - (OpenVPNService) -- C:\Program\OpenVPN\bin\openvpnserv.exe ()

SRV - (IJPLMSVC) -- C:\Program\Canon\IJPLM\ijplmsvc.exe ()

SRV - (nSvcIp) -- C:\NVIDIA\NetworkAccessManager\bin\nSvcIp.exe ()

SRV - (nSvcLog) -- C:\NVIDIA\NetworkAccessManager\bin\nSvcLog.exe ()

SRV - (ForcewareWebInterface) -- C:\NVIDIA\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe (Apache Software Foundation)

 

 

========== Driver Services (SafeList) ==========

 

DRV - (fsbts) -- C:\WINDOWS\system32\Drivers\fsbts.sys ()

DRV - (F-Secure Gatekeeper) -- C:\Program\F-Secure\Anti-Virus\minifilter\fsgk.sys ()

DRV - (F-Secure Filter) -- C:\Program\F-Secure\Anti-Virus\win2k\fsfilter.sys ()

DRV - (F-Secure Recognizer) -- C:\Program\F-Secure\Anti-Virus\win2k\fsrec.sys ()

DRV - (tap0901) -- C:\WINDOWS\system32\drivers\tap0901.sys (The OpenVPN Project)

DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation)

DRV - (sscdmdm) -- C:\WINDOWS\system32\drivers\sscdmdm.sys (MCCI)

DRV - (sscdmdfl) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys (MCCI)

DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\WINDOWS\system32\drivers\sscdbus.sys (MCCI)

DRV - (LMouKE) -- C:\WINDOWS\system32\drivers\LMouKE.Sys (Logitech, Inc.)

DRV - (L8042mou) -- C:\WINDOWS\system32\drivers\L8042mou.Sys (Logitech, Inc.)

DRV - (L8042Kbd) -- C:\WINDOWS\system32\drivers\L8042Kbd.sys (Logitech, Inc.)

DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)

DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)

DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)

DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)

DRV - (ALCXSENS) -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS (Sensaura)

DRV - (nvatabus) -- C:\WINDOWS\System32\DRIVERS\nvatabus.sys (NVIDIA Corporation)

DRV - (nv_agp) -- C:\WINDOWS\System32\DRIVERS\nv_agp.sys (NVIDIA Corporation)

DRV - (ms_mpu401) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

 

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.superstart.se/

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

========== FireFox ==========

 

FF - prefs.js..extensions.enabledItems: litmus-ff@f-secure.com:1.10

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23

 

FF - HKLM\software\mozilla\Firefox\Extensions\\litmus-ff@f-secure.com: C:\Program\F-Secure\NRS\litmus-ff@f-secure.com [2011-03-03 13:30:08 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program\Mozilla Firefox\components [2010-08-17 10:38:39 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program\Mozilla Firefox\plugins [2011-03-04 09:24:17 | 000,000,000 | ---D | M]

 

[2010-08-17 10:38:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mange\Application Data\Mozilla\Extensions

[2010-08-17 11:41:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mange\Application Data\Mozilla\Firefox\Profiles\k4grd0d5.default\extensions

[2011-03-03 16:20:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program\Mozilla Firefox\extensions

[2010-10-16 04:56:56 | 000,000,000 | ---D | M] (Java Console) -- C:\Program\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

[2011-01-10 05:59:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

[2011-03-03 16:20:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

[2011-03-03 13:30:08 | 000,000,000 | ---D | M] ("Browsing Protection") -- C:\PROGRAM\F-SECURE\NRS\LITMUS-FF@F-SECURE.COM

[2010-09-02 08:00:05 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM\JAVA\JRE6\LIB\DEPLOY\JQS\FF

[2011-02-02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program\Mozilla Firefox\plugins\npdeployJava1.dll

[2010-07-23 01:48:26 | 000,001,470 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\allaannonser-sv-SE.xml

[2010-07-23 01:48:26 | 000,002,670 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\prisjakt-sv-SE.xml

[2010-07-23 01:48:26 | 000,000,948 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\tyda-sv-SE.xml

[2010-07-23 01:48:26 | 000,001,174 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\wikipedia-sv-SE.xml

[2010-07-23 01:48:26 | 000,000,951 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\yahoo-sv-SE.xml

 

O1 HOSTS File: ([2010-04-30 13:56:09 | 000,001,798 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 activate.adobe.com

O1 - Hosts: 127.0.0.1 practivate.adobe.com

O1 - Hosts: 127.0.0.1 ereg.adobe.com

O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com

O1 - Hosts: 127.0.0.1 wip3.adobe.com

O1 - Hosts: 127.0.0.1 3dns-3.adobe.com

O1 - Hosts: 127.0.0.1 3dns-2.adobe.com

O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com

O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com

O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com

O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com

O1 - Hosts: 127.0.0.1 activate-sea.adobe.com

O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com

O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com

O1 - Hosts: 127.0.0.1 adobe.activate.com

O1 - Hosts: 127.0.0.1 adobeereg.com

O1 - Hosts: 127.0.0.1 www.adobeereg.com

O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com

O1 - Hosts: 127.0.0.1 125.252.224.90

O1 - Hosts: 127.0.0.1 125.252.224.91

O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com

O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program\TechSmith\Snagit 10\SnagitBHO.dll (TechSmith Corporation)

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (Browsing Protection Class) - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)

O3 - HKLM\..\Toolbar: (Browsing Protection Toolbar) - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)

O3 - HKLM\..\Toolbar: (ImageShack Toolbar) - {6932D140-ABC4-4073-A44C-D4A541665E35} - C:\Program\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.)

O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program\TechSmith\Snagit 10\SnagitIEAddin.dll (TechSmith Corporation)

O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No CLSID value found.

O4 - HKLM..\Run: [Adobe ARM] C:\Program\Delade filer\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program\Delade filer\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [F-Secure Manager] C:\Program\F-Secure\Common\FSM32.EXE (F-Secure Corporation)

O4 - HKLM..\Run: [F-Secure TNB] C:\Program\F-Secure\FSGUI\TNBUtil.exe (F-Secure Corporation)

O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program\Delade filer\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)

O4 - HKCU..\Run: [AdobeBridge] File not found

O4 - HKCU..\Run: [CarryLaunch] C:\Documents and Settings\Mange\Application Data\CoSoSys\CarryItEasy\CarryLaunch.exe ()

O4 - HKCU..\Run: [CTFMON.EXE] File not found

O4 - HKCU..\Run: [LDM] C:\Program\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components] C:\Program\Panda Security\ActiveScan 2.0\as2guiie.dll (Panda Security, S.L.)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components.] C:\Program\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components..] C:\Program\Panda Security\ActiveScan 2.0\libcomm.dll (Panda Security, S.L.)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components...] C:\Program\Panda Security\ActiveScan 2.0\as2inst.dll (Panda Security, S.L.)

O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\BankID säkerhetsprogram.lnk = C:\Program\Personal\bin\Personal.exe (Technology Nexus AB)

O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\Logitech Desktop Messenger.lnk = C:\Program\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech)

O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\Logitech SetPoint.lnk = C:\Program\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)

O4 - Startup: C:\Documents and Settings\Mange\Start-meny\Program\Autostart\Hardcopy.LNK = C:\Program\Hardcopy\hardcopy.exe (sw4you, Siegfried Weckmann)

O4 - Startup: C:\Documents and Settings\Mange\Start-meny\Program\Autostart\OpenOffice.org 3.2.lnk = C:\Program\OpenOffice.org 3\program\quickstart.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: Post Image to Blog - C:\Program\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.)

O8 - Extra context menu item: Tag This Image - C:\Program\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.)

O8 - Extra context menu item: Transload Image to ImageShack - C:\Program\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.)

O8 - Extra context menu item: Upload All Images to ImageShack - C:\Program\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.)

O8 - Extra context menu item: Upload Image to ImageShack - C:\Program\ImageShackToolbar\ImageShackToolbar.dll (ImageShack Corp.)

O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)

O15 - HKCU\..Trusted Domains: anonine.com ([www] https in Tillförlitliga platser)

O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://www.fujidirek...geUploader5.cab (Image Uploader Control)

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1282030808031 (WUWebControl Class)

O16 - DPF: {6932D140-ABC4-4073-A44C-D4A541665E35} http://toolbar.image...hackToolbar.cab (ImageShack Toolbar)

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)

O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoft...s/as2stubie.cab (ActiveScan 2.0 Installer Class)

O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)

O18 - Protocol\Handler\bw+0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw+0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw-0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw00 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw00s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw-0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw10 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw10s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw20 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw20s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw30 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw30s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw40 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw40s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw50 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw50s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw60 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw60s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw70 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw70s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw80 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw80s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw90 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bw90s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwa0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwa0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwb0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwb0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwc0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwc0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwd0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwd0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwe0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwe0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwf0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwf0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwg0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwg0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwh0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwh0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwi0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwi0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwj0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwj0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwk0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwk0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwl0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwl0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwm0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwm0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwn0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwn0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwo0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwo0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwp0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwp0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwq0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwq0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwr0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwr0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bws0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bws0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwt0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwt0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwu0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwu0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwv0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bww0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwv0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bww0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwx0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwx0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwy0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwy0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwz0 {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\bwz0s {0ca16d6f-1b3d-4878-b49b-77949d9e6ca4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\msdaipp.dll (Microsoft Corporation)

O18 - Protocol\Handler\offline-8876480 {0CA16D6F-1B3D-4878-B49B-77949D9E6CA4} - C:\Program\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll ()

O24 - Desktop Components:0 (Min aktuella startsida) - About:Home

O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Sommar.bmp

O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Sommar.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2010-08-17 08:04:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O33 - MountPoints2\{3776633c-e285-11df-bea9-0004616a9dec}\Shell\AutoRun\command - "" = I:\avira.exe

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 

========== Files/Folders - Created Within 30 Days ==========

 

[2011-03-06 09:46:46 | 000,581,120 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mange\Skrivbord\OTL.exe

[2011-03-05 06:58:04 | 000,000,000 | ---D | C] -- C:\Program\ESET

[2011-03-04 11:26:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mange\Mina dokument\wallpaper

[2011-03-03 16:20:56 | 000,000,000 | ---D | C] -- C:\Program\Delade filer\Java

[2011-03-03 16:20:44 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe

[2011-03-03 16:20:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe

[2011-03-03 16:20:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe

[2011-03-03 13:24:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Program\F-Secure Internet Security 2011

[2011-03-03 13:22:46 | 000,082,824 | ---- | C] (F-Secure Corporation) -- C:\WINDOWS\System32\drivers\fsdfw.sys

[2011-03-03 12:02:30 | 000,751,056 | ---- | C] (F-Secure® Corporation ) -- C:\Documents and Settings\Mange\Skrivbord\UninstallationTool.exe

[2011-03-03 10:14:58 | 056,474,104 | ---- | C] (F-Secure Corporation) -- C:\Documents and Settings\Mange\Skrivbord\fsecure2011.exe

[2011-02-26 18:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mange\Lokala inställningar\Application Data\Temp

[2011-02-24 20:41:07 | 000,000,000 | ---D | C] -- C:\Program\Delade filer\Akamai

[2011-02-24 13:11:42 | 481,216,584 | ---- | C] (Adobe Systems Incorporated) -- C:\Documents and Settings\Mange\Skrivbord\Dreamweaver_11_LS4.exe

[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files - Modified Within 30 Days ==========

 

[2011-03-06 09:46:49 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mange\Skrivbord\OTL.exe

[2011-03-06 09:43:01 | 000,000,516 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled scanning task.job

[2011-03-06 09:42:30 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2011-03-05 20:26:19 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2011-03-05 20:25:40 | 000,000,211 | RHS- | M] () -- C:\boot.ini

[2011-03-05 18:09:47 | 000,625,664 | ---- | M] () -- C:\Documents and Settings\Mange\Skrivbord\dds.scr

[2011-03-04 13:24:42 | 000,010,922 | ---- | M] () -- C:\Documents and Settings\Mange\Mina dokument\diariet.pdf

[2011-03-04 13:24:41 | 000,000,060 | ---- | M] () -- C:\WINDOWS\wpd99.drv

[2011-03-03 16:46:56 | 000,001,580 | ---- | M] () -- C:\error.fstmp

[2011-03-03 16:30:00 | 000,000,000 | ---- | M] () -- C:\infect.fstmp

[2011-03-03 13:30:49 | 000,042,664 | ---- | M] () -- C:\WINDOWS\System32\drivers\fsbts.sys

[2011-03-03 13:24:31 | 000,000,838 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\F-Secure Internet Security 2011.lnk

[2011-03-03 13:22:49 | 000,324,750 | ---- | M] () -- C:\WINDOWS\System32\perfh01D.dat

[2011-03-03 13:22:49 | 000,321,348 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2011-03-03 13:22:49 | 000,052,242 | ---- | M] () -- C:\WINDOWS\System32\perfc01D.dat

[2011-03-03 13:22:49 | 000,044,450 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2011-03-03 13:22:17 | 000,082,824 | ---- | M] (F-Secure Corporation) -- C:\WINDOWS\System32\drivers\fsdfw.sys

[2011-03-03 12:02:35 | 000,751,056 | ---- | M] (F-Secure® Corporation ) -- C:\Documents and Settings\Mange\Skrivbord\UninstallationTool.exe

[2011-03-03 11:24:14 | 000,001,920 | ---- | M] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\Hardcopy.LNK

[2011-03-03 10:15:00 | 056,474,104 | ---- | M] (F-Secure Corporation) -- C:\Documents and Settings\Mange\Skrivbord\fsecure2011.exe

[2011-03-03 07:59:00 | 000,000,827 | ---- | M] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\OpenOffice.org Writer.lnk

[2011-03-02 11:32:29 | 000,001,680 | ---- | M] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\MP Navigator EX 2.0.lnk

[2011-03-02 11:32:07 | 000,000,810 | ---- | M] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\Adobe Photoshop CS5.lnk

[2011-03-02 11:31:13 | 000,000,838 | ---- | M] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\F-Secure Internet Security 2011.lnk

[2011-02-28 10:17:22 | 000,001,708 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\Adobe Reader X.lnk

[2011-02-24 13:13:01 | 481,216,584 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\Mange\Skrivbord\Dreamweaver_11_LS4.exe

[2011-02-24 12:35:11 | 000,007,216 | ---- | M] () -- C:\Documents and Settings\Mange\Skrivbord\AM_31308_11_UNDBE_09000cba8197ec61.pdf

[2011-02-24 12:10:15 | 000,362,056 | ---- | M] () -- C:\Documents and Settings\Mange\Skrivbord\Adobe_Dreamweaver_CS5-AkamaiDLM.exe

[2011-02-21 11:33:44 | 000,132,396 | ---- | M] () -- C:\Documents and Settings\Mange\Mina dokument\skotselanvisningar.pdf

[2011-02-09 12:20:48 | 003,423,376 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2011-02-09 07:50:41 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files Created - No Company Name ==========

 

[2011-03-05 18:09:43 | 000,625,664 | ---- | C] () -- C:\Documents and Settings\Mange\Skrivbord\dds.scr

[2011-03-04 13:17:44 | 000,010,922 | ---- | C] () -- C:\Documents and Settings\Mange\Mina dokument\diariet.pdf

[2011-03-03 14:25:48 | 000,000,516 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled scanning task.job

[2011-03-03 13:24:31 | 000,000,838 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\F-Secure Internet Security 2011.lnk

[2011-03-03 13:23:01 | 000,042,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\fsbts.sys

[2011-03-03 11:24:14 | 000,001,920 | ---- | C] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\Hardcopy.LNK

[2011-03-03 07:59:00 | 000,000,827 | ---- | C] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\OpenOffice.org Writer.lnk

[2011-03-02 11:32:29 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\MP Navigator EX 2.0.lnk

[2011-03-02 11:32:07 | 000,000,810 | ---- | C] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\Adobe Photoshop CS5.lnk

[2011-03-02 11:31:13 | 000,000,838 | ---- | C] () -- C:\Documents and Settings\Mange\Application Data\Microsoft\Internet Explorer\Quick Launch\F-Secure Internet Security 2011.lnk

[2011-02-26 18:41:04 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Start-meny\Program\Adobe Reader X.lnk

[2011-02-26 18:41:04 | 000,001,708 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\Adobe Reader X.lnk

[2011-02-24 13:29:53 | 000,000,840 | ---- | C] () -- C:\Documents and Settings\All Users\Start-meny\Program\Adobe Dreamweaver CS5.lnk

[2011-02-24 12:35:11 | 000,007,216 | ---- | C] () -- C:\Documents and Settings\Mange\Skrivbord\AM_31308_11_UNDBE_09000cba8197ec61.pdf

[2011-02-24 12:10:15 | 000,362,056 | ---- | C] () -- C:\Documents and Settings\Mange\Skrivbord\Adobe_Dreamweaver_CS5-AkamaiDLM.exe

[2011-02-21 11:33:44 | 000,132,396 | ---- | C] () -- C:\Documents and Settings\Mange\Mina dokument\skotselanvisningar.pdf

[2010-10-17 15:43:14 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Mange\Application Data\CS5-inställningar för PNG-format i Adobe

[2010-09-04 16:56:37 | 000,009,728 | ---- | C] () -- C:\Documents and Settings\Mange\Lokala inställningar\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-08-30 15:36:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\pdf995.ini

[2010-08-30 15:35:10 | 000,051,716 | ---- | C] () -- C:\WINDOWS\System32\pdf995mon.dll

[2010-08-30 15:35:10 | 000,000,060 | ---- | C] () -- C:\WINDOWS\wpd99.drv

[2010-08-17 11:48:04 | 002,067,140 | R--- | C] () -- C:\WINDOWS\System32\avcodec.dll

[2010-08-17 10:38:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat

[2010-08-17 10:07:51 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat

[2010-08-17 09:54:34 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2010-08-17 09:53:48 | 003,423,376 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2010-08-17 08:26:30 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\CNMVS78.DLL

[2010-08-17 08:23:27 | 000,118,784 | R--- | C] () -- C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe

[2010-08-17 08:14:04 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe

[2010-08-17 08:13:50 | 000,001,343 | ---- | C] () -- C:\WINDOWS\ATICIM.INI

[2010-08-17 08:12:19 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini

[2010-08-17 08:12:18 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll

[2010-08-17 08:10:19 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\nvunrm.exe

[2010-08-17 08:10:19 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\NVUninst.exe

[2010-08-17 08:06:14 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2010-08-17 08:03:14 | 000,021,700 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2010-02-02 16:56:36 | 000,453,024 | ---- | C] () -- C:\Program\setup.exe

[2010-02-02 16:55:52 | 130,034,184 | ---- | C] () -- C:\Program\openofficeorg1.cab

[2010-02-02 16:55:18 | 010,176,512 | ---- | C] () -- C:\Program\openofficeorg32.msi

[2010-02-02 01:15:54 | 000,000,290 | ---- | C] () -- C:\Program\setup.ini

[2004-05-15 15:31:36 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.dll

[2004-05-15 15:30:04 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.exe

[2003-04-24 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin

[2003-04-24 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat

[2003-04-24 13:00:00 | 000,324,750 | ---- | C] () -- C:\WINDOWS\System32\perfh01D.dat

[2003-04-24 13:00:00 | 000,321,348 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat

[2003-04-24 13:00:00 | 000,274,932 | ---- | C] () -- C:\WINDOWS\System32\perfi01D.dat

[2003-04-24 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat

[2003-04-24 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat

[2003-04-24 13:00:00 | 000,052,242 | ---- | C] () -- C:\WINDOWS\System32\perfc01D.dat

[2003-04-24 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin

[2003-04-24 13:00:00 | 000,044,450 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat

[2003-04-24 13:00:00 | 000,033,234 | ---- | C] () -- C:\WINDOWS\System32\perfd01D.dat

[2003-04-24 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat

[2003-04-24 13:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat

[2003-04-24 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin

[2003-04-24 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

 

========== LOP Check ==========

 

[2010-08-17 08:26:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ

[2010-12-06 16:53:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJ

[2010-08-22 14:15:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJEGV

[2010-12-06 16:53:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM

[2010-08-18 07:09:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJScan

[2010-08-17 08:21:59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu

[2010-08-17 08:35:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\f-secure

[2011-03-03 13:21:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\fssg

[2011-02-09 12:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\lGdBlHn01804

[2011-03-04 13:24:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\pdf995

[2011-02-24 13:30:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe

[2010-11-06 11:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TechSmith

[2011-01-01 19:52:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\Agency9

[2010-08-18 07:09:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\Canon

[2010-08-22 19:10:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\CD-LabelPrint

[2010-08-19 15:37:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1

[2010-10-28 12:22:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\CoSoSys

[2011-01-03 17:16:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\DC++

[2010-10-30 12:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\F-Secure

[2010-09-02 08:03:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\OpenOffice.org

[2010-08-30 15:36:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\pdf995

[2010-08-17 11:18:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\Personal

[2010-09-25 09:32:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mange\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1

[2011-03-06 09:43:01 | 000,000,516 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled scanning task.job

 

========== Purity Check ==========

 

 

 

< End of report >

Link to comment
Share on other sites

Skapade OTL ingen fil Extras.txt?

Jag skulle vilja se den också.

 

Vad känner du till om dessa program? Har du haft dem länge? Varifrån är de nedladdade?

C:\Program\Hardcopy\hardcopy.exe (sw4you, Siegfried Weckmann)

C:\Documents and Settings\Mange\Application Data\CoSoSys\CarryItEasy\CarryLaunch.exe

 

Starta Anteckningar och inifrån programmet öppna filen C:\error.fstmp. Kopiera innehållet och klistra in i ditt svar.

 

Skanna datorn online på http://www.eset.com/onlinescan/

För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.

 

Avbocka alternativet Remove found threats

Bocka för Scan Archives

 

Klicka på Advanced Settings

Bocka för:

Scan for potentially unwanted applications

Scan for potentially unsafe applications

Enable Anti-Stealth Technology

 

Klicka på Scan

 

När skanningen är klar skapas loggfilen C:\Program\Eset\Eset Online Scanner\log.txt. Öppna den i Anteckningar och klistra sedan in innehållet i ditt svar.

Link to comment
Share on other sites

C:\Program\Hardcopy\hardcopy.exe (sw4you, Siegfried Weckmann)

vet inte var jag laddat ner ifrån, kan ta bort det för nu om du vill? och ladda ner igen framöver.

 

C:\Documents and Settings\Mange\Application Data\CoSoSys\CarryItEasy\CarryLaunch.exe

märkligt, jag hittar inget. sökte både på "Application Data", "CoSoSys", "CarryItEasy". hittar inte undermappen Application Data alls.

ska jag köra "uninstall"? via ikonen på meddelandefältet, högerklick pop-up meny.

 

skärmdump carry it easy launcher

http://img683.images...arryiteasy.jpg/

 

skärmdump ikon meddelandefältet carry launch

http://img847.images...arrylaunch.jpg/

 

 

 

Extras.Txt

 

 

error.fstmp=

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\PAGEFILE.SYS

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\TEMP\PERFLIB_PERFDATA_264.DAT

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\TEMP\PERFLIB_PERFDATA_510.DAT

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT.LOG

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SAM

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SAM.LOG

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SECURITY

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SECURITY.LOG

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE.LOG

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM

 

<li>Kan inte öppna filen (<a href="#errorinfo">klicka här för mer information</a>)

C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM.LOG

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.




×
×
  • Create New...