Mr. Hermonella Skrevet 4. august 2012 Del Skrevet 4. august 2012 (endret) Hei:) Jeg har begynt og få et rart problem med PCen min. Jeg mister Internett veldig ofte og når jeg ser i WIFI lista så kan jeg noen ganger se alle naboene sine og mitt nettverk, andre ganger ser jeg bare mitt nettverk, og andre ganger ser jeg bare mitt. Jeg har også prøvd og restarte, resette og oppdatere firmwaren i routeren men det hjalp ikke. jeg har nett på andre ting for eks. mobil Nettverkskort: RaLink RT61 (ca. 2-3 år gammelt) OS: Windows 7 Pro Legger til en Speccy fil for resten: https://dl.dropbox.c...rmonella.speccy Viss dere trenger noe mer info så spør:) Endret 4. august 2012 av Mr. Hormonella Lenke til kommentar
mobile999 Skrevet 5. august 2012 Del Skrevet 5. august 2012 Last ned og kjør OTL fra følgende nettside: http://www.geekstogo...for-hijackthis/ Klikk Quick Scan for å kjøre scanningen. Post innholdet i begge filene som dukker opp når scanningen er ferdig, sett dem i hver sin spoilertekst. Lenke til kommentar
Mr. Hermonella Skrevet 5. august 2012 Forfatter Del Skrevet 5. august 2012 OTL logfile created on: 05.08.2012 12:05:40 - Run 1 OTL by OldTimer - Version 3.2.56.0 Folder = F:\Downloads 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy 7,98 Gb Total Physical Memory | 5,70 Gb Available Physical Memory | 71,41% Memory free 7,98 Gb Paging File | 5,22 Gb Available in Paging File | 65,47% Paging File free Paging file location(s): [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 55,80 Gb Total Space | 21,86 Gb Free Space | 39,18% Space Free | Partition Type: NTFS Drive D: | 465,63 Gb Total Space | 2,21 Gb Free Space | 0,47% Space Free | Partition Type: NTFS Drive F: | 1863,01 Gb Total Space | 323,18 Gb Free Space | 17,35% Space Free | Partition Type: NTFS Computer Name: TOVARE | User Name: Tov Are | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.08.05 12:05:20 | 000,596,480 | ---- | M] (OldTimer Tools) -- F:\Downloads\OTL.exe PRC - [2012.08.04 14:53:47 | 001,353,080 | ---- | M] (Valve Corporation) -- D:\Program Files (x86)\Steam\Steam.exe PRC - [2012.07.24 22:16:17 | 007,601,880 | ---- | M] (Spotify Ltd) -- C:\Users\Tov Are\AppData\Roaming\Spotify\spotify.exe PRC - [2012.07.24 22:16:13 | 001,193,176 | ---- | M] () -- C:\Users\Tov Are\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe PRC - [2012.07.16 16:31:32 | 007,445,416 | ---- | M] (TeamViewer GmbH) -- d:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe PRC - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) -- d:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe PRC - [2012.07.16 16:22:42 | 000,106,408 | ---- | M] (TeamViewer GmbH) -- d:\Program Files (x86)\TeamViewer\Version7\tv_w32.exe PRC - [2012.07.06 16:35:58 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2012.05.24 20:39:22 | 027,112,840 | ---- | M] (Dropbox, Inc.) -- C:\Users\Tov Are\AppData\Roaming\Dropbox\bin\Dropbox.exe PRC - [2012.03.01 02:02:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012.02.29 13:26:46 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2011.11.15 15:13:22 | 003,990,528 | ---- | M] (WhatPulse.org) -- D:\Program Files (x86)\WhatPulse\WhatPulse.exe PRC - [2011.05.11 23:13:04 | 002,534,064 | ---- | M] (Beepa P/L) -- C:\Fraps\fraps.exe PRC - [2010.12.28 14:44:54 | 000,294,912 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe PRC - [2010.11.17 03:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe ========== Modules (No Company Name) ========== MOD - [2012.08.01 11:48:59 | 020,316,496 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\libcef.dll MOD - [2012.08.01 11:48:57 | 000,900,944 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\chromehtml.dll MOD - [2012.08.01 11:48:55 | 000,123,192 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avutil-51.dll MOD - [2012.08.01 11:48:53 | 000,190,776 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avformat-53.dll MOD - [2012.08.01 11:48:51 | 001,099,576 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avcodec-53.dll MOD - [2012.07.31 07:36:14 | 000,442,392 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll MOD - [2012.07.31 07:36:12 | 003,997,720 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll MOD - [2012.07.31 07:34:45 | 000,144,424 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\avutil-51.dll MOD - [2012.07.31 07:34:43 | 000,266,792 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\avformat-54.dll MOD - [2012.07.31 07:34:42 | 002,480,680 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\avcodec-54.dll MOD - [2012.07.24 22:16:13 | 020,219,096 | ---- | M] () -- C:\Users\Tov Are\AppData\Roaming\Spotify\Data\libcef.dll MOD - [2012.07.24 22:16:13 | 001,193,176 | ---- | M] () -- C:\Users\Tov Are\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe MOD - [2012.02.20 09:52:41 | 008,358,400 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll MOD - [2012.02.20 09:52:41 | 001,152,512 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll MOD - [2012.02.20 09:52:41 | 000,333,824 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll MOD - [2012.02.20 09:52:41 | 000,151,040 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-51.dll ========== Win32 Services (SafeList) ========== SRV:64bit: - [2010.08.12 15:00:20 | 000,133,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel® PROSet Monitoring Service) SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2009.07.14 03:39:47 | 000,081,920 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tlntsvr.exe -- (TlntSvr) SRV - [2012.08.01 10:46:21 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- d:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2012.07.06 16:35:58 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2012.07.03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012.06.22 16:13:37 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service) SRV - [2012.06.22 16:13:22 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service) SRV - [2012.06.19 19:04:00 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012.03.26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programfiler\Microsoft Security Client\NisSrv.exe -- (NisSrv) SRV - [2012.03.26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programfiler\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV - [2012.03.01 02:02:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012.02.29 13:26:46 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2011.09.27 21:04:08 | 000,359,192 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Programfiler\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2010.12.28 14:44:54 | 000,294,912 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService) SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.10.21 10:40:00 | 000,193,904 | ---- | M] (TOSHIBA CORPORATION) [On_Demand | Stopped] -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service) SRV - [2009.08.18 12:48:02 | 002,291,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012.06.05 16:03:52 | 000,147,288 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp) DRV:64bit: - [2012.05.26 12:50:56 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2012.05.12 12:31:00 | 000,121,416 | ---- | M] (MotioninJoy) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MijXfilt.sys -- (MotioninJoyXFilter) DRV:64bit: - [2012.05.11 07:34:14 | 000,203,320 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) DRV:64bit: - [2012.05.11 07:34:12 | 000,099,384 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) DRV:64bit: - [2012.03.20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv) DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012.02.05 14:29:04 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901) DRV:64bit: - [2012.01.17 14:45:56 | 000,188,224 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2011.12.07 19:42:28 | 000,074,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21) DRV:64bit: - [2011.09.02 08:30:46 | 000,042,776 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt) DRV:64bit: - [2011.09.02 08:30:36 | 000,060,696 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt) DRV:64bit: - [2011.09.02 08:30:24 | 000,066,840 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt) DRV:64bit: - [2011.07.27 10:30:40 | 000,024,456 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus) DRV:64bit: - [2011.07.15 12:15:02 | 000,023,552 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UHSfiltv.sys -- (UHSfiltv) DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.12.10 07:50:36 | 000,181,248 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc) DRV:64bit: - [2010.12.10 07:50:36 | 000,080,384 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub) DRV:64bit: - [2010.11.22 09:09:06 | 000,303,408 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv91xx.sys -- (mv91xx) DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2010.10.19 16:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:64bit: - [2010.09.21 08:34:18 | 000,313,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress) DRV:64bit: - [2010.08.10 11:29:16 | 000,120,920 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID) DRV:64bit: - [2010.04.07 12:14:50 | 000,446,304 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr6164.sys -- (rt61x64) DRV:64bit: - [2010.04.06 18:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs) DRV:64bit: - [2010.04.06 18:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs) DRV:64bit: - [2009.09.24 17:55:00 | 000,212,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfbd.sys -- (Tosrfbd) DRV:64bit: - [2009.09.14 14:30:00 | 000,058,744 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfusb.sys -- (Tosrfusb) DRV:64bit: - [2009.08.05 12:56:00 | 000,063,856 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TosRfSnd.sys -- (TosRfSnd) DRV:64bit: - [2009.07.28 20:02:00 | 000,081,768 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tosrfcom.sys -- (Tosrfcom) DRV:64bit: - [2009.07.24 11:33:00 | 000,026,472 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfnds.sys -- (tosrfnds) DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.19 10:01:00 | 000,009,608 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Toshidpt.sys -- (toshidpt) DRV:64bit: - [2009.06.19 10:00:00 | 000,094,336 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Tosrfhid.sys -- (Tosrfhid) DRV:64bit: - [2009.06.19 09:59:00 | 000,050,664 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfbnp.sys -- (tosrfbnp) DRV:64bit: - [2009.06.17 12:01:00 | 000,054,664 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosporte.sys -- (tosporte) DRV:64bit: - [2009.06.10 22:35:38 | 000,707,072 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr7364.sys -- (netr7364) DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.03.18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://no.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nb-NO IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F8 BF 19 17 C5 5A CD 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Tov Are\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Tov Are\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Tov Are\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) ========== Chrome ========== CHR - homepage: http://www.google.no/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}, CHR - homepage: http://www.google.no/ CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: Java Platform SE 7 U5 (Enabled) = C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll CHR - plugin: Java Deployment Toolkit 7.0.50.255 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll CHR - plugin: Uplay PC (Disabled) = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll CHR - plugin: Unity Player (Enabled) = C:\Users\Tov Are\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll CHR - plugin: Google Update (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll CHR - Extension: From Dust = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\anelkojiepicmcldgnmkplocifmegpfj\0.0.0.23_0\ CHR - Extension: YouTube = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Ubuntu Orange Selection Color = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\bociknnlecmldnnglpoijppnpdeiofbm\1.1_0\ CHR - Extension: Google Search = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Google Kalender = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0\ CHR - Extension: RapidShare Auto-Downloader = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcngaibjigkbcpniopoogeojkjljfpil\3.0.1_1\ CHR - Extension: AdBlock = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.38_0\ CHR - Extension: TinEye Reverse Image Search = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.2_1\ CHR - Extension: Gun Blood = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifphbghhodpimajnjejgjlfcjmnnkhci\3.0_1\ CHR - Extension: Moon Breakers = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\jccpdhkmgdfccbdmbggjafpokmgeimnm\4.0_0\ CHR - Extension: YouTube Downloader: MP3 / HD Video Download = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkkeahicimadnjhdamcladhobabaafbg\13.0_0\ CHR - Extension: BugMeNot Lite = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\lackfehpdclhclidcbbfcemcpolgdgnb\0.3.9_0\ CHR - Extension: Ubuntu light-themes scrollbars = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\mikdfeaeaecoffpjoodiihgejnbfigln\0.9.2_0\ CHR - Extension: relaxpls.com = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmnpijamnjkmkcpfkadpmdhhehabcld\1.0_0\ CHR - Extension: Google Chrome to Phone Extension = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco\2.3.1_0\ CHR - Extension: Auto Refresh Plus = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\1.8.9.13_0\ CHR - Extension: Bastion = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohphhdkahjlioohbalmicpokoefkgid\0.0.0.4_0\ CHR - Extension: Gmail = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012.06.18 17:24:18 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2:64bit: - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programfiler\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O4:64bit: - HKLM..\Run: [EvtMgr6] D:\Program Files\logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4:64bit: - HKLM..\Run: [itype] C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation) O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe () O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation) O4 - HKCU..\Run: [Dxtory Update Checker 2.0] C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe (Dxtory Software) O4 - HKCU..\Run: [spotify] C:\Users\Tov Are\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd) O4 - HKCU..\Run: [spotify Web Helper] C:\Users\Tov Are\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe () O4 - HKCU..\Run: [steam] D:\Program Files (x86)\Steam\steam.exe (Valve Corporation) O4 - HKCU..\Run: [WhatPulse] D:\Program Files (x86)\WhatPulse\WhatPulse.exe (WhatPulse.org) O4 - Startup: C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Tov Are\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O4 - Startup: C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MetroTwit.appref-ms () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 10.5.1) O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 10.5.1) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{17114A34-BE21-4DA3-BECA-5D1B5C7BF908}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{663CD106-8533-4BC5-8BBF-65B923DC2AFB}: DhcpNameServer = 8.8.8.8 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B64DFD80-9338-4EC3-B16F-4DB2827D4421}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DA210907-E8E9-431F-8001-5209615076E7}: DhcpNameServer = 192.168.0.1 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKCU Winlogon: Shell - (expstart.exe) - C:\Windows\expstart.exe () O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Programfiler\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.08.04 23:49:34 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\Desktop\por [2012.08.04 23:47:26 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\Desktop\x64 [2012.08.04 22:34:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung [2012.08.04 22:32:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClockworkMod [2012.08.04 22:10:57 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Microsoft Games [2012.08.04 22:06:06 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games [2012.08.04 21:04:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft DirectX SDK (June 2010) [2012.08.03 22:12:33 | 001,807,624 | ---- | C] (CPUID) -- C:\Users\Tov Are\Desktop\HWMonitor.exe [2012.08.01 16:00:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic [2012.07.29 20:32:27 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Dxtory Software [2012.07.29 20:32:26 | 003,673,600 | ---- | C] (Dxtory Software) -- C:\Windows\SysNative\DxtoryCodec64.dll [2012.07.29 20:32:26 | 003,166,720 | ---- | C] (Dxtory Software) -- C:\Windows\SysWow64\DxtoryCodec.dll [2012.07.29 20:32:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0 [2012.07.29 20:32:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dxtory Software [2012.07.29 20:11:09 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\Desktop\JC2B [2012.07.29 19:18:18 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\MotioninJoy [2012.07.29 19:18:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy [2012.07.29 19:18:15 | 000,000,000 | ---D | C] -- C:\Program Files\MotioninJoy [2012.07.28 17:27:49 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012.07.28 02:36:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bohemia Interactive [2012.07.28 00:28:17 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\BIT.TRIP RUNNER [2012.07.28 00:28:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx [2012.07.27 23:34:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories [2012.07.27 23:34:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Xbox 360 Accessories [2012.07.27 15:51:07 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2012.07.27 15:50:48 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2012.07.27 15:47:45 | 000,000,000 | ---D | C] -- C:\NVIDIA [2012.07.25 19:27:49 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat [2012.07.25 19:27:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat [2012.07.24 18:51:04 | 000,052,736 | ---- | C] (Technic) -- C:\Users\Tov Are\Desktop\TechnicLauncher.exe [2012.07.24 18:10:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Focus Home Interactive [2012.07.24 18:09:00 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Focus Home Interactive [2012.07.24 17:27:39 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Joymasher [2012.07.23 21:23:27 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\FalloutNV [2012.07.23 17:00:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2012.07.23 16:59:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Oracle [2012.07.23 16:55:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2012.07.22 21:41:00 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps [2012.07.22 21:40:58 | 000,000,000 | ---D | C] -- C:\Fraps [2012.07.22 20:14:06 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\MinMaxGames [2012.07.21 19:51:33 | 000,000,000 | ---D | C] -- C:\sw3dg [2012.07.21 14:33:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Six Projects [2012.07.21 13:13:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft [2012.07.21 00:38:45 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\123KickIt [2012.07.21 00:38:14 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\AaaaaRecklessDisregard [2012.07.20 17:11:31 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\XRay Engine [2012.07.20 16:50:00 | 000,000,000 | ---D | C] -- F:\Documents\SimCity 4 [2012.07.20 16:29:33 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\temp [2012.07.19 21:16:42 | 000,000,000 | ---D | C] -- F:\Documents\Criterion Games [2012.07.19 17:56:55 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\WhatPulse [2012.07.19 17:56:52 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatPulse [2012.07.19 17:56:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhatPulse [2012.07.17 19:56:53 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\The Wonderful End of the World [2012.07.15 18:31:44 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Tropico 4 [2012.07.15 18:27:34 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Kalypso Media [2012.07.13 23:45:23 | 000,000,000 | ---D | C] -- F:\Documents\Trials 2 [2012.07.13 23:45:12 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Redlynx [2012.07.13 20:14:39 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\GRAW2 [2012.07.13 20:14:39 | 000,000,000 | ---D | C] -- C:\ProgramData\GRAW2 [2012.07.13 17:40:26 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Unity [2012.07.13 17:35:43 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Unity [2012.07.12 23:10:46 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Nem's Tools [2012.07.12 23:10:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools [2012.07.12 21:37:55 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Media Player Classic [2012.07.12 21:37:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 [2012.07.12 21:33:18 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\SVP 3.1 [2012.07.12 21:33:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SVP 3.1 [2012.07.12 21:33:05 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter [2012.07.12 21:33:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter [2012.07.12 21:32:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow [2012.07.12 21:32:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ffdshow [2012.07.12 21:32:24 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5 [2012.07.12 21:32:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5 [2012.07.12 21:23:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [2012.07.12 21:23:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN [2012.07.12 20:57:56 | 000,000,000 | ---D | C] -- C:\ProgramData\media center programs [2012.07.12 20:57:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Funcom [2012.07.06 22:53:04 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Audacity [2012.07.06 16:35:27 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\PunkBuster [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2012.08.05 12:03:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.08.05 00:35:00 | 000,001,010 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2063373090-736875098-3998285179-1000UA.job [2012.08.05 00:34:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012.08.04 22:57:40 | 000,031,314 | ---- | M] () -- C:\Users\Tov Are\Desktop\TOVARE.speccy [2012.08.04 22:57:08 | 000,000,680 | ---- | M] () -- C:\Users\Public\Desktop\Speccy.lnk [2012.08.04 22:35:57 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUsb_01007.Wdf [2012.08.04 22:34:28 | 001,361,150 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.08.04 22:34:28 | 000,654,038 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.08.04 22:34:28 | 000,494,382 | ---- | M] () -- C:\Windows\SysNative\perfh014.dat [2012.08.04 22:34:28 | 000,121,870 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.08.04 22:34:28 | 000,095,072 | ---- | M] () -- C:\Windows\SysNative\perfc014.dat [2012.08.04 22:11:08 | 000,021,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.08.04 22:11:08 | 000,021,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.08.04 19:14:04 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\DS3 Tool.lnk [2012.08.01 20:46:38 | 000,325,293 | ---- | M] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar 2.jpg [2012.08.01 17:55:25 | 000,477,881 | ---- | M] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar.jpg [2012.08.01 16:00:12 | 000,001,852 | ---- | M] () -- C:\Users\Public\Desktop\ZBrush 4R2.lnk [2012.08.01 11:35:00 | 000,000,958 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2063373090-736875098-3998285179-1000Core.job [2012.07.27 23:49:26 | 001,339,986 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.07.27 21:13:22 | 000,002,573 | ---- | M] () -- C:\Users\Public\Desktop\Six Updater.lnk [2012.07.27 21:13:22 | 000,002,573 | ---- | M] () -- C:\Users\Public\Desktop\Six Launcher.lnk [2012.07.27 15:49:09 | 000,040,822 | ---- | M] () -- F:\Documents\cc_20120727_154905.reg [2012.07.25 20:23:57 | 000,963,295 | ---- | M] () -- C:\Users\Tov Are\Desktop\gears of war (mad world).mp3 [2012.07.24 18:59:45 | 000,001,329 | ---- | M] () -- C:\Users\Tov Are\Desktop\TechnicLauncher.lnk [2012.07.24 18:51:00 | 000,052,736 | ---- | M] (Technic) -- C:\Users\Tov Are\Desktop\TechnicLauncher.exe [2012.07.22 20:13:41 | 000,004,096 | ---- | M] () -- C:\Windows\d3dx.dat [2012.07.19 20:37:43 | 000,000,897 | ---- | M] () -- C:\Users\Tov Are\Desktop\Diablo III.lnk [2012.07.13 10:56:32 | 000,284,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.07.12 23:46:04 | 000,925,184 | ---- | M] () -- C:\Windows\expstart.exe [2012.07.12 20:57:56 | 000,000,878 | ---- | M] () -- C:\Users\Public\Desktop\The Secret World.lnk [2012.07.06 16:35:58 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.07.06 16:35:31 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2012.07.06 16:35:31 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2012.08.04 22:57:40 | 000,031,314 | ---- | C] () -- C:\Users\Tov Are\Desktop\TOVARE.speccy [2012.08.04 22:57:08 | 000,000,680 | ---- | C] () -- C:\Users\Public\Desktop\Speccy.lnk [2012.08.04 22:35:57 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUsb_01007.Wdf [2012.08.01 20:46:36 | 000,325,293 | ---- | C] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar 2.jpg [2012.08.01 17:55:25 | 000,477,881 | ---- | C] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar.jpg [2012.08.01 16:00:12 | 000,001,852 | ---- | C] () -- C:\Users\Public\Desktop\ZBrush 4R2.lnk [2012.07.29 19:18:16 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\DS3 Tool.lnk [2012.07.27 15:50:57 | 002,515,790 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin [2012.07.27 15:49:06 | 000,040,822 | ---- | C] () -- F:\Documents\cc_20120727_154905.reg [2012.07.25 20:24:02 | 000,963,295 | ---- | C] () -- C:\Users\Tov Are\Desktop\gears of war (mad world).mp3 [2012.07.24 18:59:45 | 000,001,329 | ---- | C] () -- C:\Users\Tov Are\Desktop\TechnicLauncher.lnk [2012.07.22 20:13:41 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat [2012.07.21 14:33:18 | 000,002,573 | ---- | C] () -- C:\Users\Public\Desktop\Six Updater.lnk [2012.07.21 14:33:18 | 000,002,573 | ---- | C] () -- C:\Users\Public\Desktop\Six Launcher.lnk [2012.07.19 20:37:43 | 000,000,897 | ---- | C] () -- C:\Users\Tov Are\Desktop\Diablo III.lnk [2012.07.12 21:37:49 | 000,204,800 | ---- | C] () -- C:\Windows\SysNative\unrar64.dll [2012.07.12 21:32:42 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2012.07.12 20:57:56 | 000,000,878 | ---- | C] () -- C:\Users\Public\Desktop\The Secret World.lnk [2012.07.06 22:53:00 | 000,000,722 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk [2012.07.06 16:35:30 | 000,298,016 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2012.07.06 11:54:33 | 000,298,016 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.07.06 11:54:33 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.07.06 11:54:32 | 003,130,440 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_blr.exe [2012.06.24 13:21:40 | 000,197,120 | ---- | C] () -- C:\Windows\patchw32.dll [2012.06.22 16:13:39 | 000,206,848 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL [2012.06.22 16:13:39 | 000,074,240 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL [2012.06.22 16:13:39 | 000,002,169 | ---- | C] () -- C:\Windows\FatWcfg.ini [2012.06.22 16:13:39 | 000,000,388 | ---- | C] () -- C:\Windows\FatWMCcfg.ini [2012.06.22 16:13:39 | 000,000,200 | ---- | C] () -- C:\Windows\UHSConfig.ini [2012.06.05 21:34:53 | 000,000,218 | ---- | C] () -- C:\Users\Tov Are\.recently-used.xbel [2012.06.01 23:20:45 | 000,151,608 | ---- | C] () -- C:\Windows\UTP.exe [2012.05.29 19:24:04 | 000,925,184 | ---- | C] () -- C:\Windows\expstart.exe [2012.05.17 14:40:52 | 000,000,046 | ---- | C] () -- C:\Users\Tov Are\jagex_cl_runescape_LIVE.dat [2012.05.17 14:40:52 | 000,000,024 | ---- | C] () -- C:\Users\Tov Are\random.dat [2012.05.17 13:26:09 | 001,339,986 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.05.17 13:00:44 | 000,041,368 | ---- | C] () -- C:\Windows\Ascd_log.ini [2012.05.17 12:59:31 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2012.05.17 12:59:28 | 000,028,592 | ---- | C] () -- C:\Windows\Ascd_tmp.ini [2012.05.05 07:52:48 | 000,000,108 | ---- | C] () -- C:\Users\Tov Are\AppData\Roaming\87338ce1.dat [2012.02.29 13:26:56 | 000,416,064 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe [2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat ========== LOP Check ========== [2012.08.01 15:07:30 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\.minecraft [2012.06.23 17:10:23 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\.Nitrous [2012.08.03 15:48:28 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\.techniclauncher [2012.06.24 13:43:52 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Atari [2012.07.06 23:02:38 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Audacity [2012.07.27 16:09:02 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Awesomium [2012.06.16 22:54:20 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Beat Hazard [2012.06.23 18:07:38 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\BluetoothDriverInstaller [2012.06.08 22:08:45 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Braid [2012.07.01 21:58:30 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Carbon [2012.06.14 17:02:22 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\com.cipherprime.auditorium [2012.05.26 12:52:02 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\DAEMON Tools Lite [2012.05.29 16:36:12 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\DC++ [2012.05.27 15:59:38 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\DisneyInteractiveStudios [2012.08.05 12:05:14 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Dropbox [2012.06.02 17:58:26 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\fltk.org [2012.06.05 21:34:53 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\gedit [2012.06.22 22:24:39 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\HackSlashLoot [2012.07.24 17:27:39 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Joymasher [2012.07.15 18:27:34 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Kalypso Media [2012.05.20 11:44:04 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Leadertech [2012.06.07 19:15:42 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\LoneSurvivor [2012.06.29 22:49:47 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Mael [2012.06.15 15:20:25 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MetroTwit [2012.06.14 16:43:53 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MinerWars [2012.07.22 20:14:06 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MinMaxGames [2012.07.29 19:18:18 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MotioninJoy [2012.05.26 13:21:45 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Notepad++ [2012.05.26 03:11:49 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Origin [2012.06.21 18:35:32 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Rainmeter [2012.06.09 23:48:21 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\RotMG.Production [2012.06.15 15:26:26 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\six-updater [2012.06.15 15:22:58 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\six-zsync [2012.07.04 21:46:11 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\SkyGoblin [2012.05.22 18:03:09 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\SplitMediaLabs [2012.08.05 12:04:49 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Spotify [2012.07.12 21:33:18 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\SVP 3.1 [2012.03.24 21:11:31 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\System [2012.05.18 15:41:43 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\TeamViewer [2012.07.23 19:57:19 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Tropico 4 [2012.07.13 17:40:26 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Unity [2012.08.04 22:46:53 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\uTorrent [2012.07.29 19:45:12 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\WhatPulse [2012.06.09 14:31:22 | 000,000,000 | -HSD | M] -- C:\Users\Tov Are\AppData\Roaming\wyUpdate AU [2012.07.20 17:11:31 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\XRay Engine [2009.07.14 07:08:49 | 000,032,386 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:05E9FFE5 < End of report > Lenke til kommentar
mobile999 Skrevet 5. august 2012 Del Skrevet 5. august 2012 Det var bare den ene filen. Lenke til kommentar
Mr. Hermonella Skrevet 5. august 2012 Forfatter Del Skrevet 5. august 2012 (endret) Fikk bare opp 1 fil, skal kjøre skannen på nytt jeg:) Edit: der var scanninga ferdig, men fikk bare opp 1 fil: [OTL logfile created on: 05.08.2012 13:37:31 - Run 2 OTL by OldTimer - Version 3.2.56.0 Folder = F:\Downloads 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy 7,98 Gb Total Physical Memory | 3,79 Gb Available Physical Memory | 47,46% Memory free 7,98 Gb Paging File | 2,80 Gb Available in Paging File | 35,08% Paging File free Paging file location(s): [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 55,80 Gb Total Space | 21,87 Gb Free Space | 39,19% Space Free | Partition Type: NTFS Drive D: | 465,63 Gb Total Space | 2,21 Gb Free Space | 0,47% Space Free | Partition Type: NTFS Drive F: | 1863,01 Gb Total Space | 323,18 Gb Free Space | 17,35% Space Free | Partition Type: NTFS Computer Name: TOVARE | User Name: Tov Are | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.08.05 12:05:20 | 000,596,480 | ---- | M] (OldTimer Tools) -- F:\Downloads\OTL.exe PRC - [2012.08.04 14:53:47 | 001,353,080 | ---- | M] (Valve Corporation) -- D:\Program Files (x86)\Steam\Steam.exe PRC - [2012.08.01 11:49:03 | 000,071,464 | ---- | M] (Valve Corporation) -- D:\Program Files (x86)\Steam\GameOverlayUI.exe PRC - [2012.07.25 18:47:08 | 000,118,784 | ---- | M] () -- D:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe PRC - [2012.07.24 22:16:17 | 007,601,880 | ---- | M] (Spotify Ltd) -- C:\Users\Tov Are\AppData\Roaming\Spotify\spotify.exe PRC - [2012.07.24 22:16:13 | 001,193,176 | ---- | M] () -- C:\Users\Tov Are\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe PRC - [2012.07.16 16:31:32 | 007,445,416 | ---- | M] (TeamViewer GmbH) -- d:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe PRC - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) -- d:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe PRC - [2012.07.16 16:22:42 | 000,106,408 | ---- | M] (TeamViewer GmbH) -- d:\Program Files (x86)\TeamViewer\Version7\tv_w32.exe PRC - [2012.07.06 16:35:58 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2012.05.24 20:39:22 | 027,112,840 | ---- | M] (Dropbox, Inc.) -- C:\Users\Tov Are\AppData\Roaming\Dropbox\bin\Dropbox.exe PRC - [2012.03.01 02:02:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012.02.29 13:26:46 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2011.11.15 15:13:22 | 003,990,528 | ---- | M] (WhatPulse.org) -- D:\Program Files (x86)\WhatPulse\WhatPulse.exe PRC - [2010.12.28 14:44:54 | 000,294,912 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe PRC - [2010.11.17 03:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe ========== Modules (No Company Name) ========== MOD - [2012.08.01 11:48:59 | 020,316,496 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\libcef.dll MOD - [2012.08.01 11:48:57 | 000,900,944 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\chromehtml.dll MOD - [2012.08.01 11:48:55 | 000,123,192 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avutil-51.dll MOD - [2012.08.01 11:48:53 | 000,190,776 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avformat-53.dll MOD - [2012.08.01 11:48:51 | 001,099,576 | ---- | M] () -- D:\Program Files (x86)\Steam\bin\avcodec-53.dll MOD - [2012.07.31 07:36:14 | 000,442,392 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll MOD - [2012.07.31 07:36:13 | 012,235,288 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll MOD - [2012.07.31 07:36:12 | 003,997,720 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll MOD - [2012.07.31 07:34:57 | 000,526,872 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\libglesv2.dll MOD - [2012.07.31 07:34:55 | 000,104,984 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\libegl.dll MOD - [2012.07.31 07:34:45 | 000,144,424 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\avutil-51.dll MOD - [2012.07.31 07:34:43 | 000,266,792 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\avformat-54.dll MOD - [2012.07.31 07:34:42 | 002,480,680 | ---- | M] () -- C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\avcodec-54.dll MOD - [2012.07.25 18:47:08 | 007,507,968 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\tf\bin\client.dll MOD - [2012.07.25 18:47:08 | 000,118,784 | ---- | M] () -- D:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe MOD - [2012.07.25 18:47:07 | 006,828,032 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\tf\bin\server.dll MOD - [2012.07.25 18:47:07 | 001,880,064 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\tf\bin\gameui.dll MOD - [2012.07.25 18:47:06 | 000,921,600 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\tf\bin\matchmaking.dll MOD - [2012.07.25 18:40:29 | 000,692,224 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\vscript.dll MOD - [2012.07.25 18:40:29 | 000,241,664 | ---- | M] () -- D:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\vstdlib.dll MOD - [2012.07.25 18:40:24 | 001,048,576 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\vphysics.dll MOD - [2012.07.25 18:40:23 | 000,110,592 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\video_services.dll MOD - [2012.07.25 18:40:22 | 000,139,264 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\video_quicktime.dll MOD - [2012.07.25 18:40:21 | 001,449,984 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\vguimatsurface.dll MOD - [2012.07.25 18:40:21 | 000,122,880 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\video_bink.dll MOD - [2012.07.25 18:40:17 | 000,397,312 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\vgui2.dll MOD - [2012.07.25 18:40:14 | 000,077,824 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\vaudio_miles.dll MOD - [2012.07.25 18:40:13 | 000,135,168 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\valve_avi.dll MOD - [2012.07.25 18:40:06 | 005,296,128 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\tools\pet.dll MOD - [2012.07.25 18:39:58 | 016,740,352 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\tools\ifm.dll MOD - [2012.07.25 18:39:30 | 000,274,432 | ---- | M] () -- D:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\tier0.dll MOD - [2012.07.25 18:39:29 | 000,634,880 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\studiorender.dll MOD - [2012.07.25 18:39:19 | 000,872,448 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\stdshader_dx9.dll MOD - [2012.07.25 18:39:17 | 000,229,376 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\stdshader_dbg.dll MOD - [2012.07.25 18:39:16 | 000,163,840 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\soundemittersystem.dll MOD - [2012.07.25 18:39:15 | 001,617,920 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\shaderapidx9.dll MOD - [2012.07.25 18:39:12 | 001,044,480 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\serverbrowser.dll MOD - [2012.07.25 18:39:11 | 000,090,112 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\scenefilecache.dll MOD - [2012.07.25 18:39:09 | 000,217,088 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\phonemeextractors\phonemeextractor_ims.dll MOD - [2012.07.25 18:39:08 | 000,536,576 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\p4lib.dll MOD - [2012.07.25 18:39:08 | 000,217,088 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\phonemeextractors\phonemeextractor.dll MOD - [2012.07.25 18:39:07 | 000,344,064 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\networksystem.dll MOD - [2012.07.25 18:39:03 | 000,131,072 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\localize.dll MOD - [2012.07.25 18:39:02 | 001,126,400 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\materialsystem.dll MOD - [2012.07.25 18:39:01 | 000,196,608 | ---- | M] () -- D:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\launcher.dll MOD - [2012.07.25 18:39:00 | 000,131,072 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\inputsystem.dll MOD - [2012.07.25 18:38:38 | 000,356,352 | ---- | M] () -- D:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\filesystem_stdio.dll MOD - [2012.07.25 18:38:37 | 004,505,600 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\engine.dll MOD - [2012.07.25 18:38:27 | 000,274,432 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\datacache.dll MOD - [2012.07.24 22:16:13 | 020,219,096 | ---- | M] () -- C:\Users\Tov Are\AppData\Roaming\Spotify\Data\libcef.dll MOD - [2012.07.24 22:16:13 | 001,193,176 | ---- | M] () -- C:\Users\Tov Are\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe MOD - [2012.07.03 15:00:44 | 007,643,136 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\tools\qtgui4.dll MOD - [2012.07.03 15:00:31 | 000,471,040 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\phonemeextractors\ims_helper.dll MOD - [2012.07.03 15:00:29 | 000,180,224 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\vaudio_speex.dll MOD - [2012.07.03 15:00:11 | 000,131,072 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\sixense.dll MOD - [2012.07.03 15:00:10 | 000,095,744 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\mssmp3.asi MOD - [2012.07.03 15:00:09 | 002,375,680 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\tools\qtcore4.dll MOD - [2012.07.03 15:00:07 | 011,213,288 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\libcef.dll MOD - [2012.07.03 15:00:00 | 000,153,600 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\mssvoice.asi MOD - [2012.07.03 15:00:00 | 000,060,416 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\msseax.flt MOD - [2012.07.03 14:59:36 | 000,013,312 | ---- | M] () -- d:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\mssds3d.flt MOD - [2012.02.20 09:52:41 | 008,358,400 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll MOD - [2012.02.20 09:52:41 | 001,152,512 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll MOD - [2012.02.20 09:52:41 | 000,333,824 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll MOD - [2012.02.20 09:52:41 | 000,151,040 | ---- | M] () -- D:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-51.dll ========== Win32 Services (SafeList) ========== SRV:64bit: - [2010.08.12 15:00:20 | 000,133,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel® PROSet Monitoring Service) SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2009.07.14 03:39:47 | 000,081,920 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tlntsvr.exe -- (TlntSvr) SRV - [2012.08.01 10:46:21 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012.07.16 16:31:32 | 002,673,064 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- d:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2012.07.06 16:35:58 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2012.07.03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012.06.22 16:13:37 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service) SRV - [2012.06.22 16:13:22 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service) SRV - [2012.06.19 19:04:00 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012.03.26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programfiler\Microsoft Security Client\NisSrv.exe -- (NisSrv) SRV - [2012.03.26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programfiler\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV - [2012.03.01 02:02:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012.02.29 13:26:46 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2011.09.27 21:04:08 | 000,359,192 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Programfiler\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2010.12.28 14:44:54 | 000,294,912 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService) SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.10.21 10:40:00 | 000,193,904 | ---- | M] (TOSHIBA CORPORATION) [On_Demand | Stopped] -- C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service) SRV - [2009.08.18 12:48:02 | 002,291,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc) SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012.06.05 16:03:52 | 000,147,288 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp) DRV:64bit: - [2012.05.26 12:50:56 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2012.05.12 12:31:00 | 000,121,416 | ---- | M] (MotioninJoy) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MijXfilt.sys -- (MotioninJoyXFilter) DRV:64bit: - [2012.05.11 07:34:14 | 000,203,320 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) DRV:64bit: - [2012.05.11 07:34:12 | 000,099,384 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) DRV:64bit: - [2012.03.20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv) DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012.02.05 14:29:04 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901) DRV:64bit: - [2012.01.17 14:45:56 | 000,188,224 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2011.12.07 19:42:28 | 000,074,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21) DRV:64bit: - [2011.09.02 08:30:46 | 000,042,776 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt) DRV:64bit: - [2011.09.02 08:30:36 | 000,060,696 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt) DRV:64bit: - [2011.09.02 08:30:24 | 000,066,840 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt) DRV:64bit: - [2011.07.27 10:30:40 | 000,024,456 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus) DRV:64bit: - [2011.07.15 12:15:02 | 000,023,552 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UHSfiltv.sys -- (UHSfiltv) DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.12.10 07:50:36 | 000,181,248 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc) DRV:64bit: - [2010.12.10 07:50:36 | 000,080,384 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub) DRV:64bit: - [2010.11.22 09:09:06 | 000,303,408 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv91xx.sys -- (mv91xx) DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2010.10.19 16:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:64bit: - [2010.09.21 08:34:18 | 000,313,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress) DRV:64bit: - [2010.08.10 11:29:16 | 000,120,920 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID) DRV:64bit: - [2010.04.07 12:14:50 | 000,446,304 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr6164.sys -- (rt61x64) DRV:64bit: - [2010.04.06 18:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs) DRV:64bit: - [2010.04.06 18:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs) DRV:64bit: - [2009.09.24 17:55:00 | 000,212,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfbd.sys -- (Tosrfbd) DRV:64bit: - [2009.09.14 14:30:00 | 000,058,744 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfusb.sys -- (Tosrfusb) DRV:64bit: - [2009.08.05 12:56:00 | 000,063,856 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TosRfSnd.sys -- (TosRfSnd) DRV:64bit: - [2009.07.28 20:02:00 | 000,081,768 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tosrfcom.sys -- (Tosrfcom) DRV:64bit: - [2009.07.24 11:33:00 | 000,026,472 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfnds.sys -- (tosrfnds) DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.06.19 10:01:00 | 000,009,608 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Toshidpt.sys -- (toshidpt) DRV:64bit: - [2009.06.19 10:00:00 | 000,094,336 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Tosrfhid.sys -- (Tosrfhid) DRV:64bit: - [2009.06.19 09:59:00 | 000,050,664 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tosrfbnp.sys -- (tosrfbnp) DRV:64bit: - [2009.06.17 12:01:00 | 000,054,664 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosporte.sys -- (tosporte) DRV:64bit: - [2009.06.10 22:35:38 | 000,707,072 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr7364.sys -- (netr7364) DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.03.18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi) DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://no.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nb-NO IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F8 BF 19 17 C5 5A CD 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.0: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.0: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_268.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Tov Are\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Tov Are\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Tov Are\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) ========== Chrome ========== CHR - homepage: http://www.google.no/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}, CHR - homepage: http://www.google.no/ CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\Application\21.0.1180.60\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: Java™ Platform SE 7 U5 (Enabled) = C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll CHR - plugin: Java Deployment Toolkit 7.0.50.255 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll CHR - plugin: Uplay PC (Disabled) = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll CHR - plugin: Unity Player (Enabled) = C:\Users\Tov Are\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll CHR - plugin: Google Update (Enabled) = C:\Users\Tov Are\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll CHR - Extension: From Dust = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\anelkojiepicmcldgnmkplocifmegpfj\0.0.0.23_0\ CHR - Extension: YouTube = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Ubuntu Orange Selection Color = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\bociknnlecmldnnglpoijppnpdeiofbm\1.1_0\ CHR - Extension: Google Search = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Google Kalender = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0\ CHR - Extension: RapidShare Auto-Downloader = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcngaibjigkbcpniopoogeojkjljfpil\3.0.1_1\ CHR - Extension: AdBlock = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.38_0\ CHR - Extension: TinEye Reverse Image Search = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.2_1\ CHR - Extension: Gun Blood = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifphbghhodpimajnjejgjlfcjmnnkhci\3.0_1\ CHR - Extension: Moon Breakers = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\jccpdhkmgdfccbdmbggjafpokmgeimnm\4.0_0\ CHR - Extension: YouTube Downloader: MP3 / HD Video Download = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkkeahicimadnjhdamcladhobabaafbg\13.0_0\ CHR - Extension: BugMeNot Lite = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\lackfehpdclhclidcbbfcemcpolgdgnb\0.3.9_0\ CHR - Extension: Ubuntu light-themes scrollbars = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\mikdfeaeaecoffpjoodiihgejnbfigln\0.9.2_0\ CHR - Extension: relaxpls.com = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmnpijamnjkmkcpfkadpmdhhehabcld\1.0_0\ CHR - Extension: Google Chrome to Phone Extension = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco\2.3.1_0\ CHR - Extension: Auto Refresh Plus = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\1.8.9.13_0\ CHR - Extension: Bastion = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohphhdkahjlioohbalmicpokoefkgid\0.0.0.4_0\ CHR - Extension: Gmail = C:\Users\Tov Are\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012.06.18 17:24:18 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programfiler\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) O4:64bit: - HKLM..\Run: [EvtMgr6] D:\Program Files\logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4:64bit: - HKLM..\Run: [itype] C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation) O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe () O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation) O4 - HKCU..\Run: [Dxtory Update Checker 2.0] C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe (Dxtory Software) O4 - HKCU..\Run: [spotify] C:\Users\Tov Are\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd) O4 - HKCU..\Run: [spotify Web Helper] C:\Users\Tov Are\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe () O4 - HKCU..\Run: [steam] D:\Program Files (x86)\Steam\steam.exe (Valve Corporation) O4 - HKCU..\Run: [WhatPulse] D:\Program Files (x86)\WhatPulse\WhatPulse.exe (WhatPulse.org) O4 - Startup: C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Tov Are\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O4 - Startup: C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MetroTwit.appref-ms () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programfiler\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.5.1) O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.5.1) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{17114A34-BE21-4DA3-BECA-5D1B5C7BF908}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{663CD106-8533-4BC5-8BBF-65B923DC2AFB}: DhcpNameServer = 8.8.8.8 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B64DFD80-9338-4EC3-B16F-4DB2827D4421}: NameServer = 8.8.8.8,8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9E62ACC-5AF2-42E0-9454-31EDD9DE697D}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DA210907-E8E9-431F-8001-5209615076E7}: DhcpNameServer = 192.168.0.1 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKCU Winlogon: Shell - (expstart.exe) - C:\Windows\expstart.exe () O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Programfiler\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.08.05 13:12:31 | 000,155,648 | ---- | C] (TODO: &--#60;会社名&--#62;) -- C:\Windows\SysNative\utv_dmo.dll [2012.08.05 13:12:31 | 000,131,072 | ---- | C] (TODO: &--#60;会社名&--#62;) -- C:\Windows\SysWow64\utv_dmo.dll [2012.08.05 13:12:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ut Video Codec Suite [2012.08.04 23:49:34 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\Desktop\por [2012.08.04 23:47:26 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\Desktop\x64 [2012.08.04 22:34:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung [2012.08.04 22:32:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClockworkMod [2012.08.04 22:10:57 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Microsoft Games [2012.08.04 22:06:06 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games [2012.08.04 21:04:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft DirectX SDK (June 2010) [2012.08.03 22:12:33 | 001,807,624 | ---- | C] (CPUID) -- C:\Users\Tov Are\Desktop\HWMonitor.exe [2012.08.01 16:00:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic [2012.07.29 20:32:27 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Dxtory Software [2012.07.29 20:32:26 | 003,673,600 | ---- | C] (Dxtory Software) -- C:\Windows\SysNative\DxtoryCodec64.dll [2012.07.29 20:32:26 | 003,166,720 | ---- | C] (Dxtory Software) -- C:\Windows\SysWow64\DxtoryCodec.dll [2012.07.29 20:32:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0 [2012.07.29 20:32:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dxtory Software [2012.07.29 20:11:09 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\Desktop\JC2B [2012.07.29 19:18:18 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\MotioninJoy [2012.07.29 19:18:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy [2012.07.29 19:18:15 | 000,000,000 | ---D | C] -- C:\Program Files\MotioninJoy [2012.07.28 17:27:49 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012.07.28 02:36:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bohemia Interactive [2012.07.28 00:28:17 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\BIT.TRIP RUNNER [2012.07.28 00:28:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx [2012.07.27 23:34:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories [2012.07.27 23:34:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Xbox 360 Accessories [2012.07.27 15:51:07 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2012.07.27 15:50:48 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2012.07.27 15:47:45 | 000,000,000 | ---D | C] -- C:\NVIDIA [2012.07.25 19:27:49 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat [2012.07.25 19:27:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat [2012.07.24 18:51:04 | 000,052,736 | ---- | C] (Technic) -- C:\Users\Tov Are\Desktop\TechnicLauncher.exe [2012.07.24 18:10:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Focus Home Interactive [2012.07.24 18:09:00 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Focus Home Interactive [2012.07.24 17:27:39 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Joymasher [2012.07.23 21:23:27 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\FalloutNV [2012.07.23 17:00:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2012.07.23 16:59:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Oracle [2012.07.23 16:55:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2012.07.22 21:41:00 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps [2012.07.22 21:40:58 | 000,000,000 | ---D | C] -- C:\Fraps [2012.07.22 20:14:06 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\MinMaxGames [2012.07.21 19:51:33 | 000,000,000 | ---D | C] -- C:\sw3dg [2012.07.21 14:33:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Six Projects [2012.07.21 13:13:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft [2012.07.21 00:38:45 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\123KickIt [2012.07.21 00:38:14 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\AaaaaRecklessDisregard [2012.07.20 17:11:31 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\XRay Engine [2012.07.20 16:50:00 | 000,000,000 | ---D | C] -- F:\Documents\SimCity 4 [2012.07.20 16:29:33 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\temp [2012.07.19 21:16:42 | 000,000,000 | ---D | C] -- F:\Documents\Criterion Games [2012.07.19 17:56:55 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\WhatPulse [2012.07.19 17:56:52 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatPulse [2012.07.19 17:56:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhatPulse [2012.07.17 19:56:53 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\The Wonderful End of the World [2012.07.15 18:31:44 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Tropico 4 [2012.07.15 18:27:34 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Kalypso Media [2012.07.13 23:45:23 | 000,000,000 | ---D | C] -- F:\Documents\Trials 2 [2012.07.13 23:45:12 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Redlynx [2012.07.13 20:14:39 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\GRAW2 [2012.07.13 20:14:39 | 000,000,000 | ---D | C] -- C:\ProgramData\GRAW2 [2012.07.13 17:40:26 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Unity [2012.07.13 17:35:43 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Unity [2012.07.12 23:10:46 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\Nem's Tools [2012.07.12 23:10:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools [2012.07.12 21:37:55 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Media Player Classic [2012.07.12 21:37:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 [2012.07.12 21:33:18 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\SVP 3.1 [2012.07.12 21:33:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SVP 3.1 [2012.07.12 21:33:05 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter [2012.07.12 21:33:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter [2012.07.12 21:32:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow [2012.07.12 21:32:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ffdshow [2012.07.12 21:32:24 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5 [2012.07.12 21:32:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5 [2012.07.12 21:23:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [2012.07.12 21:23:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN [2012.07.12 20:57:56 | 000,000,000 | ---D | C] -- C:\ProgramData\media center programs [2012.07.12 20:57:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Funcom [2012.07.06 22:53:04 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Roaming\Audacity [2012.07.06 16:35:27 | 000,000,000 | ---D | C] -- C:\Users\Tov Are\AppData\Local\PunkBuster [2 C:\Windows\SysWow64\*.tmp files -&--#62; C:\Windows\SysWow64\*.tmp -&--#62; ] [1 C:\Windows\*.tmp files -&--#62; C:\Windows\*.tmp -&--#62; ] ========== Files - Modified Within 30 Days ========== [2012.08.05 13:35:00 | 000,001,010 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2063373090-736875098-3998285179-1000UA.job [2012.08.05 13:34:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012.08.05 12:10:44 | 000,021,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.08.05 12:10:44 | 000,021,904 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.08.05 12:09:22 | 001,361,150 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.08.05 12:09:22 | 000,654,038 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.08.05 12:09:22 | 000,494,382 | ---- | M] () -- C:\Windows\SysNative\perfh014.dat [2012.08.05 12:09:22 | 000,121,870 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.08.05 12:09:22 | 000,095,072 | ---- | M] () -- C:\Windows\SysNative\perfc014.dat [2012.08.05 12:03:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.08.04 22:57:40 | 000,031,314 | ---- | M] () -- C:\Users\Tov Are\Desktop\TOVARE.speccy [2012.08.04 22:57:08 | 000,000,680 | ---- | M] () -- C:\Users\Public\Desktop\Speccy.lnk [2012.08.04 22:35:57 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUsb_01007.Wdf [2012.08.04 19:14:04 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\DS3 Tool.lnk [2012.08.01 20:46:38 | 000,325,293 | ---- | M] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar 2.jpg [2012.08.01 17:55:25 | 000,477,881 | ---- | M] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar.jpg [2012.08.01 16:00:12 | 000,001,852 | ---- | M] () -- C:\Users\Public\Desktop\ZBrush 4R2.lnk [2012.08.01 11:35:00 | 000,000,958 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2063373090-736875098-3998285179-1000Core.job [2012.07.27 23:49:26 | 001,339,986 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.07.27 21:13:22 | 000,002,573 | ---- | M] () -- C:\Users\Public\Desktop\Six Updater.lnk [2012.07.27 21:13:22 | 000,002,573 | ---- | M] () -- C:\Users\Public\Desktop\Six Launcher.lnk [2012.07.27 15:49:09 | 000,040,822 | ---- | M] () -- F:\Documents\cc_20120727_154905.reg [2012.07.26 21:46:04 | 000,155,648 | ---- | M] (TODO: &--#60;会社名&--#62;) -- C:\Windows\SysNative\utv_dmo.dll [2012.07.26 21:46:02 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\utv_vcm.dll [2012.07.26 21:46:00 | 000,186,368 | ---- | M] () -- C:\Windows\SysNative\utv_core.dll [2012.07.26 21:45:54 | 000,131,072 | ---- | M] (TODO: &--#60;会社名&--#62;) -- C:\Windows\SysWow64\utv_dmo.dll [2012.07.26 21:45:52 | 000,069,632 | ---- | M] () -- C:\Windows\SysWow64\utv_vcm.dll [2012.07.26 21:45:50 | 000,147,456 | ---- | M] () -- C:\Windows\SysWow64\utv_core.dll [2012.07.25 20:23:57 | 000,963,295 | ---- | M] () -- C:\Users\Tov Are\Desktop\gears of war (mad world).mp3 [2012.07.24 18:59:45 | 000,001,329 | ---- | M] () -- C:\Users\Tov Are\Desktop\TechnicLauncher.lnk [2012.07.24 18:51:00 | 000,052,736 | ---- | M] (Technic) -- C:\Users\Tov Are\Desktop\TechnicLauncher.exe [2012.07.22 20:13:41 | 000,004,096 | ---- | M] () -- C:\Windows\d3dx.dat [2012.07.19 20:37:43 | 000,000,897 | ---- | M] () -- C:\Users\Tov Are\Desktop\Diablo III.lnk [2012.07.13 10:56:32 | 000,284,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.07.12 23:46:04 | 000,925,184 | ---- | M] () -- C:\Windows\expstart.exe [2012.07.12 20:57:56 | 000,000,878 | ---- | M] () -- C:\Users\Public\Desktop\The Secret World.lnk [2012.07.06 16:35:58 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.07.06 16:35:31 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2012.07.06 16:35:31 | 000,298,016 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2 C:\Windows\SysWow64\*.tmp files -&--#62; C:\Windows\SysWow64\*.tmp -&--#62; ] [1 C:\Windows\*.tmp files -&--#62; C:\Windows\*.tmp -&--#62; ] ========== Files Created - No Company Name ========== [2012.08.05 13:12:31 | 000,186,368 | ---- | C] () -- C:\Windows\SysNative\utv_core.dll [2012.08.05 13:12:31 | 000,147,456 | ---- | C] () -- C:\Windows\SysWow64\utv_core.dll [2012.08.05 13:12:31 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\utv_vcm.dll [2012.08.05 13:12:31 | 000,065,536 | ---- | C] () -- C:\Windows\SysNative\utv_vcm.dll [2012.08.04 22:57:40 | 000,031,314 | ---- | C] () -- C:\Users\Tov Are\Desktop\TOVARE.speccy [2012.08.04 22:57:08 | 000,000,680 | ---- | C] () -- C:\Users\Public\Desktop\Speccy.lnk [2012.08.04 22:35:57 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUsb_01007.Wdf [2012.08.01 20:46:36 | 000,325,293 | ---- | C] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar 2.jpg [2012.08.01 17:55:25 | 000,477,881 | ---- | C] () -- C:\Users\Tov Are\Desktop\portal_the_movie_by_blacklab94-d3evfar.jpg [2012.08.01 16:00:12 | 000,001,852 | ---- | C] () -- C:\Users\Public\Desktop\ZBrush 4R2.lnk [2012.07.29 19:18:16 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\DS3 Tool.lnk [2012.07.27 15:50:57 | 002,515,790 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin [2012.07.27 15:49:06 | 000,040,822 | ---- | C] () -- F:\Documents\cc_20120727_154905.reg [2012.07.25 20:24:02 | 000,963,295 | ---- | C] () -- C:\Users\Tov Are\Desktop\gears of war (mad world).mp3 [2012.07.24 18:59:45 | 000,001,329 | ---- | C] () -- C:\Users\Tov Are\Desktop\TechnicLauncher.lnk [2012.07.22 20:13:41 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat [2012.07.21 14:33:18 | 000,002,573 | ---- | C] () -- C:\Users\Public\Desktop\Six Updater.lnk [2012.07.21 14:33:18 | 000,002,573 | ---- | C] () -- C:\Users\Public\Desktop\Six Launcher.lnk [2012.07.19 20:37:43 | 000,000,897 | ---- | C] () -- C:\Users\Tov Are\Desktop\Diablo III.lnk [2012.07.12 21:37:49 | 000,204,800 | ---- | C] () -- C:\Windows\SysNative\unrar64.dll [2012.07.12 21:32:42 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2012.07.12 20:57:56 | 000,000,878 | ---- | C] () -- C:\Users\Public\Desktop\The Secret World.lnk [2012.07.06 22:53:00 | 000,000,722 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk [2012.07.06 16:35:30 | 000,298,016 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2012.07.06 11:54:33 | 000,298,016 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.07.06 11:54:33 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.07.06 11:54:32 | 003,130,440 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_blr.exe [2012.06.24 13:21:40 | 000,197,120 | ---- | C] () -- C:\Windows\patchw32.dll [2012.06.22 16:13:39 | 000,206,848 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL [2012.06.22 16:13:39 | 000,074,240 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL [2012.06.22 16:13:39 | 000,002,169 | ---- | C] () -- C:\Windows\FatWcfg.ini [2012.06.22 16:13:39 | 000,000,388 | ---- | C] () -- C:\Windows\FatWMCcfg.ini [2012.06.22 16:13:39 | 000,000,200 | ---- | C] () -- C:\Windows\UHSConfig.ini [2012.06.05 21:34:53 | 000,000,218 | ---- | C] () -- C:\Users\Tov Are\.recently-used.xbel [2012.06.01 23:20:45 | 000,151,608 | ---- | C] () -- C:\Windows\UTP.exe [2012.05.29 19:24:04 | 000,925,184 | ---- | C] () -- C:\Windows\expstart.exe [2012.05.17 14:40:52 | 000,000,046 | ---- | C] () -- C:\Users\Tov Are\jagex_cl_runescape_LIVE.dat [2012.05.17 14:40:52 | 000,000,024 | ---- | C] () -- C:\Users\Tov Are\random.dat [2012.05.17 13:26:09 | 001,339,986 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012.05.17 13:00:44 | 000,041,368 | ---- | C] () -- C:\Windows\Ascd_log.ini [2012.05.17 12:59:31 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2012.05.17 12:59:28 | 000,028,592 | ---- | C] () -- C:\Windows\Ascd_tmp.ini [2012.05.05 07:52:48 | 000,000,108 | ---- | C] () -- C:\Users\Tov Are\AppData\Roaming\87338ce1.dat [2012.02.29 13:26:56 | 000,416,064 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe [2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat ========== LOP Check ========== [2012.08.01 15:07:30 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\.minecraft [2012.06.23 17:10:23 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\.Nitrous [2012.08.03 15:48:28 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\.techniclauncher [2012.06.24 13:43:52 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Atari [2012.07.06 23:02:38 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Audacity [2012.07.27 16:09:02 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Awesomium [2012.06.16 22:54:20 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Beat Hazard [2012.06.23 18:07:38 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\BluetoothDriverInstaller [2012.06.08 22:08:45 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Braid [2012.07.01 21:58:30 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Carbon [2012.06.14 17:02:22 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\com.cipherprime.auditorium [2012.05.26 12:52:02 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\DAEMON Tools Lite [2012.05.29 16:36:12 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\DC++ [2012.05.27 15:59:38 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\DisneyInteractiveStudios [2012.08.05 12:05:14 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Dropbox [2012.06.02 17:58:26 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\fltk.org [2012.06.05 21:34:53 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\gedit [2012.06.22 22:24:39 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\HackSlashLoot [2012.07.24 17:27:39 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Joymasher [2012.07.15 18:27:34 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Kalypso Media [2012.05.20 11:44:04 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Leadertech [2012.06.07 19:15:42 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\LoneSurvivor [2012.06.29 22:49:47 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Mael [2012.06.15 15:20:25 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MetroTwit [2012.06.14 16:43:53 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MinerWars [2012.07.22 20:14:06 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MinMaxGames [2012.07.29 19:18:18 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\MotioninJoy [2012.05.26 13:21:45 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Notepad++ [2012.05.26 03:11:49 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Origin [2012.06.21 18:35:32 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Rainmeter [2012.06.09 23:48:21 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\RotMG.Production [2012.06.15 15:26:26 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\six-updater [2012.06.15 15:22:58 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\six-zsync [2012.07.04 21:46:11 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\SkyGoblin [2012.05.22 18:03:09 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\SplitMediaLabs [2012.08.05 13:08:48 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Spotify [2012.07.12 21:33:18 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\SVP 3.1 [2012.03.24 21:11:31 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\System [2012.05.18 15:41:43 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\TeamViewer [2012.07.23 19:57:19 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Tropico 4 [2012.07.13 17:40:26 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\Unity [2012.08.04 22:46:53 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\uTorrent [2012.07.29 19:45:12 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\WhatPulse [2012.06.09 14:31:22 | 000,000,000 | -HSD | M] -- C:\Users\Tov Are\AppData\Roaming\wyUpdate AU [2012.07.20 17:11:31 | 000,000,000 | ---D | M] -- C:\Users\Tov Are\AppData\Roaming\XRay Engine [2009.07.14 07:08:49 | 000,032,386 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 141 bytes -&--#62; C:\ProgramData\TEMP:05E9FFE5 &--#60; End of report &--#62; Endret 5. august 2012 av Mr. Hormonella Lenke til kommentar
mobile999 Skrevet 5. august 2012 Del Skrevet 5. august 2012 (endret) Se etter "Extras.txt" i: F:\Downloads eller i: C:\_OTL Endret 5. august 2012 av mobile999 Lenke til kommentar
Mr. Hermonella Skrevet 5. august 2012 Forfatter Del Skrevet 5. august 2012 Denne her? OTL Extras logfile created on: 05.08.2012 12:05:40 - Run 1 OTL by OldTimer - Version 3.2.56.0 Folder = F:\Downloads 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy 7,98 Gb Total Physical Memory | 5,70 Gb Available Physical Memory | 71,41% Memory free 7,98 Gb Paging File | 5,22 Gb Available in Paging File | 65,47% Paging File free Paging file location(s): [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 55,80 Gb Total Space | 21,86 Gb Free Space | 39,18% Space Free | Partition Type: NTFS Drive D: | 465,63 Gb Total Space | 2,21 Gb Free Space | 0,47% Space Free | Partition Type: NTFS Drive F: | 1863,01 Gb Total Space | 323,18 Gb Free Space | 17,35% Space Free | Partition Type: NTFS Computer Name: TOVARE | User Name: Tov Are | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Directory [takeownership] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Directory [takeownership] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{A026685C-FF3F-4F8C-BBFD-975B69B29386}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{CCDE87D7-7D10-4029-BEFF-4C5D06051ABA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{01789E9C-A6AA-42F9-838E-185DD1859C33}" = protocol=6 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\civilization4.exe | "{019802D6-99B9-456F-99BF-D773893F1C87}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\auditorium\auditorium.exe | "{01F2E27C-3A5F-4D45-B6EE-E6676E7765D6}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bit.trip runner\runner.exe | "{05AD2396-641D-4FAB-8AEF-28BFCD555E4A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sid meier's civilization v\launcher.exe | "{066426FB-20AD-4155-B8A2-D9F48BFAEDBD}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | "{085ADF7E-738C-4896-9C2F-E58544024675}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\microsoft flight\flight.exe | "{0B1BAA91-5C6C-4570-953E-B0E5D370C019}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hardreset\hardreset.exe | "{0BA8DDF0-C819-4BE8-AD58-7F264AF292D1}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{0E14674E-7DD2-42A5-AB9C-5BAFACA86ACE}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hitman blood money\hitmanbloodmoney.exe | "{0E70D759-0879-45F5-BCFB-046BBAB27465}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\payday the heist\payday_win32_release.exe | "{0EAD7540-3D38-4A40-8363-17B7B34D2733}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.998\agent.exe | "{0EF6E3CA-1935-47F8-A457-BA078457689F}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd | "{0F3C4C1B-A364-496C-9E06-63614F5D0F76}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the binding of isaac\isaac.exe | "{0FBBECE2-DCAE-4D76-9A5A-60931836DBDB}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\indie game the movie\igtm.exe | "{0FFFE82A-B5F1-461B-8B22-568FABCC3D3B}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\simcity 4 deluxe\support\ea help\electronic_arts_technical_support.htm | "{10F7C05A-51E7-43D2-82D2-04C0367D593B}" = dir=out | app=d:\program files (x86)\rockstar games\max payne 3\maxpayne3.exe | "{13663756-7DF6-466B-BF41-6DFF7AEE5549}" = protocol=17 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\beyond the sword\civ4beyondsword.exe | "{166636C0-E77B-4A68-B9F0-9DECD44DA890}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\railworks\railworks.exe | "{1975AF92-4182-49FB-8422-5CC12EAB4C9F}" = dir=in | app=d:\program files (x86)\electronic arts\the sims 3 generasjoner\game\bin\sims3launcher.exe | "{1A020D54-3A2B-4C09-8C73-15B9A638F453}" = protocol=17 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization iv colonization\colonization.exe | "{1D081AE5-6374-4F31-BF10-E3A7579F0ABE}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\indie game the movie\igtm.exe | "{1D24C999-874A-4A7D-B064-A10499F142D0}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trackmania nations forever\tmforever.exe | "{1D264E1D-DE85-44E1-AB29-B4B1857FC1D1}" = protocol=17 | dir=in | app=d:\program files (x86)\six projects\six updater\tools\bin\rsync.exe | "{1E28ACC5-00D8-4DAC-B3FD-0DCACBFBC286}" = protocol=6 | dir=in | app=d:\program files (x86)\utorrent\utorrent.exe | "{1E653421-7A9F-4553-87E7-78E638B74375}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hackslashloot\hackslashloot.exe | "{1F73521B-1B67-4DF7-96B7-72E3C5200234}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hitogata happa\happa64.exe | "{1FDF337D-6767-4D92-972F-85C4C47F7C12}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dc universe online\launchpad.exe | "{1FE5DD5C-B9FE-4F8B-B3FA-5BB6630D0B13}" = protocol=17 | dir=in | app=d:\diablo iii\diablo iii.exe | "{20AC0239-FBAB-4FF8-AF0C-EE32D8CCF700}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\uplink\uplink.exe | "{20C69177-504C-49FE-9E3A-7A51A347F352}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the wonderful end of the world\main.exe | "{20EF132F-71A8-4FE4-A41A-37D4A0B032FB}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\psychonauts\psychonauts.exe | "{22CA4541-5FB1-4466-93F9-9C2FF5B7B59F}" = protocol=6 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization iv colonization\colonization.exe | "{22F486A8-E0DB-42EB-8D54-DD0543ED1571}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gotham city impostors\engine.exe | "{2379255D-843E-496F-9D34-80EBF234541C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\superbrothers sword & sworcery ep\swordandsworcery_pc.exe | "{23A76F71-6E24-499C-B8FA-E9F910E20228}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\awesome\awesome.exe | "{24AFF162-CB05-48D1-9B7E-D57DC13B0445}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\need for speed hot pursuit\support\ea help\electronic_arts_technical_support.htm | "{26624F7B-408E-49E4-90B6-07D63BCEEF45}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dungeons of dredmor\dungeons of dredmor.exe | "{26F9C2D3-ED54-4D4E-B18E-49935F33B4EA}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trackmania nations forever\tmforeverlauncher.exe | "{270446B1-83A5-4F29-B567-7D3126944449}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\simcity 4 deluxe\support\ea help\electronic_arts_technical_support.htm | "{2733ED77-B205-4046-BCD7-46B821CE99E1}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sniper elite v2\bin\sniperelitev2.exe | "{27667DA5-C4D3-4901-BCCC-6B2EFCD6781F}" = dir=in | app=d:\program files (x86)\rockstar games\max payne 3\maxpayne3.exe | "{284A7BF1-4DE8-4C4B-A79B-468AFF2C5EBB}" = dir=in | app=d:\program files (x86)\electronic arts\the sims 3\game\bin\tslhelper.exe | "{28FBBF13-7F8C-40CC-BA96-12998C14E8D0}" = dir=out | app=d:\program files (x86)\electronic arts\the sims 3\game\bin\tslhelper.exe | "{29CD79EC-4164-4476-9A88-220DCE748431}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\garry's mod beta\hl2.exe | "{2AFBA92F-7BA0-4B1B-8411-172E9F2D3154}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\microsoft flight\flight.exe | "{2C11C34C-6D94-4B57-9F9B-385B7C34B625}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hardreset\hardreset.exe | "{2C62798A-6B91-4BDF-9B78-691D628B2C89}" = protocol=17 | dir=in | app=d:\program files (x86)\rockstar games\rockstar games social club\rgsclauncher.exe | "{2D8F47CA-8529-47CC-9699-51E591E2539C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.998\agent.exe | "{2E38D16D-C08E-4849-9175-9795DAC9B381}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\runespelloverture\runespell.exe | "{302F41FC-F75B-422D-A396-0221701FB2BA}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steam.exe | "{33801CBD-A4AC-4D32-AEF5-2A0B5372FA27}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\fallout new vegas\falloutnvlauncher.exe | "{340E3C7E-465C-4254-9B86-0B7277A3FB5C}" = protocol=17 | dir=in | app=d:\program files (x86)\ubisoft\driver san francisco\driver.exe | "{3496287C-B33F-4126-9C65-62433139309A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hitman blood money\configure.exe | "{36336F4D-17E7-4426-B152-1A340EF70A4D}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the wonderful end of the world\main.exe | "{3643D9B6-9708-46DC-8E92-AB088CF7E0AC}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\amnesia the dark descent\launcher.exe | "{36D91AEE-79BF-471D-A186-1FFB419B36E8}" = dir=in | app=d:\program files (x86)\skype\phone\skype.exe | "{375847A3-39B8-4B6D-AE96-0399DFE63C4F}" = protocol=17 | dir=in | app=d:\program files (x86)\codemasters\dirt2\dirt2_game.exe | "{37795C13-CE3A-4DB9-9961-4BAC0B31DF1E}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{3826032F-BC75-4E0C-B8F3-CDD4E11393FE}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\unreal tournament 3\binaries\ut3.exe | "{3A7F943D-F8A2-4308-9C49-8192FF508BC4}" = protocol=6 | dir=in | app=d:\program files (x86)\rockstar games\max payne 3\playmaxpayne3.exe | "{3B223B03-0AD9-477F-8572-2FECC8678340}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trine 2\trine2_launcher.exe | "{3BC60888-938B-41CD-A26E-1480283864F3}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dirt 2\dirt2.exe | "{3FB0D033-55BB-4601-BD0A-9D58A88CEB0B}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dungeondefenders.exe | "{40047E0C-9791-4816-BB3B-9250202F3978}" = protocol=6 | dir=in | app=d:\program files (x86)\ubisoft\driver san francisco\driver.exe | "{42B959DE-22F4-4CD6-817F-4ABF44845011}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\simcity 4 deluxe\apps\simcity 4.exe | "{44A154EC-9063-4706-BD8C-0CBCB9A7766A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hacker evolution\hacker evolution.exe | "{4665D40D-0760-4A4D-9BBE-B64DF878C3C2}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\microsoft flight\flight.exe | "{46E36BBA-C12D-4D50-ADC3-54C68A959EAF}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gundeadligne\gundeadligne.exe | "{488D6C42-3372-49B8-9C16-68B160D297C7}" = protocol=6 | dir=in | app=d:\program files (x86)\funcom\the secret world\clientpatcher.exe | "{494DB4EF-A685-4F12-8537-843B12EC2682}" = protocol=6 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\beyond the sword\civ4beyondsword.exe | "{49F7ECA8-6668-4D8B-B6F3-BD82886C7702}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\sfm.exe | "{4B51CD8C-2DC0-4BEE-95B5-C06FA404F784}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | "{4CE63F00-C736-4CCC-AD4B-BE83F20D2A22}" = protocol=6 | dir=in | app=d:\program files (x86)\funcom\the secret world\clientpatcher.exe | "{4E5A55AE-6430-4EA7-B4D4-FCBE8172E853}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trackmania nations forever\tmforever.exe | "{4F874FF7-5988-4F5B-A55E-B8B30A6807D6}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\noitu love 2 devolution\nl2.exe | "{4FC9E8EF-64D5-4E9A-B304-F305624F6649}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\beat hazard\runme.exe | "{502C7607-C776-4FDC-95DF-EABD59889057}" = protocol=17 | dir=in | app=d:\program files (x86)\maniaplanet\maniaplanet.exe | "{504A6F11-2E20-4598-9521-FFBECCE1A18D}" = protocol=17 | dir=in | app=c:\users\tov are\desktop\r1w67.1\server\br - server.exe | "{504C0BD6-F21F-4D4C-8881-193D47EB6F5E}" = dir=out | app=d:\program files (x86)\electronic arts\the sims 3\game\bin\sims3launcher.exe | "{515D6F97-EBB5-44D9-93AC-6B945F0CF858}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\uplink\uplink.exe | "{51DE7AA4-6BCC-4000-9964-66017012C053}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\beat hazard\runme.exe | "{5309C3AA-16F3-418A-AF69-AAB3CE91B7EE}" = protocol=6 | dir=in | app=d:\program files (x86)\codemasters\dirt2\dirt2_game.exe | "{546D9D78-4797-4FF1-9B45-3160BEAE2ED3}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\realm of the mad god\realm of the mad god.exe | "{5567A76D-7771-4E1E-8CBA-00B10FBF6F26}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe | "{56211769-74C5-4833-A1D9-EE5FD88F91EA}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\aaaaaaaaaaaaaaaaaaaaaaaaa!!!\main.exe | "{56237F99-7551-44AA-BFC2-74B7488566E7}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\puzzle agent\grickle101.exe | "{56A1E4DB-FAAE-443A-A21D-BCC8F0AD17C8}" = protocol=17 | dir=in | app=d:\program files (x86)\teamviewer\version7\teamviewer.exe | "{57A53E8B-A327-4A68-8EFB-EE5B9BC1B42C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\unreal tournament 3\binaries\ut3.exe | "{581B453F-5D64-4AAB-84FF-E4AED917104A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\ghost recon advanced warfighter 2\graw2.exe | "{59EFA2FB-F263-441D-BF0C-0298171DD209}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | "{59F5DE7D-0864-44E7-ADC9-C2A21B1AE459}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe | "{5BCECC4B-1B4E-45F9-82A4-28AABA2AC377}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trine\trine_launcher.exe | "{5BF75A04-C729-45EC-8D09-5DE517DE22A0}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe | "{5D33229E-A466-4F4B-A69A-1D5CADDFC8FA}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\payday the heist\payday_win32_release.exe | "{5D948252-775C-4B71-BCCE-3FF7B4C8CF44}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\simcity 4 deluxe\apps\simcity 4.exe | "{5DFE0FAB-2811-42C7-B3DA-5A16152ECD0F}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the walking dead\walkingdead101.exe | "{5F155F32-C001-4149-85E7-D6F34B4515EB}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\auditorium\auditorium.exe | "{5F23726F-C9F2-4F18-AC4A-FA274748F834}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\ghost recon advanced warfighter 2\graw2.exe | "{60F9617E-420D-490A-92CE-316D60DC94AA}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hitogata happa\happa64.exe | "{613CACD5-6F58-44A5-9F24-119D3AD64C43}" = protocol=6 | dir=in | app=d:\diablo iii\diablo iii.exe | "{61D93661-5165-40F4-825E-B185DC3EACB9}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\valvetestapp206500\airmech.exe | "{66E749C7-3460-4A61-A944-E1692D91AF38}" = protocol=6 | dir=in | app=c:\users\tov are\appdata\roaming\spotify\spotify.exe | "{68F8431C-8CB3-44F9-8338-6EA422584857}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\serious sam 2\bin\dedicatedserver.exe | "{6AB600A8-6EA3-4FA5-B7F6-17AFE091DCC4}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the walking dead\walkingdead101.exe | "{6B30496E-8005-4ECF-A492-DEC0BCAE03E5}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\shank\bin\shank.exe | "{6C681768-933A-4D3B-88A4-5802A0C56CAA}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe | "{6E02702E-6D77-483D-B473-FC3F9C24F327}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dungeondefenders.exe | "{6EB6C871-8CD6-45EC-9C98-45006CF3285B}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\space pirates and zombies\spazgame.exe | "{6FE782D4-4869-43F1-9F13-FC2842F29A80}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe | "{70C39EDE-706A-4301-AACD-0324E1D32186}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trials 2 second edition\launcher.exe | "{71C692E2-1A4C-4FC9-84F8-303239B70B86}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\need for speed hot pursuit\nfs11.exe | "{724000A5-CDDA-4AF7-B8E1-C62AF6FEED43}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\tropico 4\tropico4.exe | "{75BB7074-CF98-4CFF-90BE-83FD3B4ABDCF}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd | "{79068DF1-1002-476F-AFDE-DB7881C2B86F}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hackslashloot\hackslashloot.exe | "{79D17A4B-2FB6-46C5-9491-5C21520590F9}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gotham city impostors\impostors.exe | "{79D261D6-F355-4CFC-9608-F3C5172DE4D1}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\conviction_game.exe | "{7C0BC332-677E-4563-B1EE-95EF71B5ED08}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe | "{7C0C051D-B9DF-4615-BCB0-669D93EE2220}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\realm of the mad god\realm of the mad god.exe | "{7E7AC74A-202E-4F4F-8645-5D763B65058E}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\just cause 2\justcause2.exe | "{7F90E82D-0841-4BA9-ABDB-6FD8D803B65C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\lone survivor\lonesurvivor\lonesurvivor.exe | "{80380835-A23B-4A31-86E3-BCA0D96C2F11}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\noitu love 2 devolution\config.exe | "{806CC798-6B0D-4E16-A9CA-FD61EDCA5232}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\garry's mod beta\hl2.exe | "{80C742B1-BAC5-4149-9563-B69A435F2D2C}" = protocol=6 | dir=in | app=d:\program files (x86)\maniaplanet\maniaplanet.exe | "{8184EF52-8A7E-4564-8463-92FCA30EBA22}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\garry's mod beta\hl2.exe | "{82BECF1A-F229-4EB6-8D5F-1D231B3A4963}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\noitu love 2 devolution\nl2.exe | "{82E1DBBA-4864-45A8-935F-1AC6631FC055}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gundemonium recollection\gundemonium.exe | "{82F5C660-3BD1-4B2D-B1C5-406E75AFB01A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\serious sam 2\bin\seriouseditor2.exe | "{83242738-FC40-43F8-B3B1-53CD9BE6F6F6}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\midnight club 2\mc2.exe | "{83F4C5C9-8815-4735-96E8-ADB34475FB00}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\valvetestapp206500\airmech.exe | "{840BA0F1-2705-484C-B438-E82233D60453}" = protocol=6 | dir=in | app=d:\program files (x86)\six projects\six updater\tools\bin\rsync.exe | "{858AC2CF-3C5E-482F-A3E6-98DC20C5F76F}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{8692AFBD-4CAF-42B5-AD9B-5EB78BA03D35}" = protocol=17 | dir=in | app=c:\users\tov are\appdata\roaming\dropbox\bin\dropbox.exe | "{86ADE853-380A-4943-80D8-B4ED99A1B39F}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe | "{8704C93D-86F1-48A9-9D38-9CE29C7C8A80}" = protocol=17 | dir=in | app=d:\program files (x86)\rockstar games\max payne 3\playmaxpayne3.exe | "{8771A029-3208-4D18-BBDA-4162820765C1}" = protocol=17 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\warlords\civ4warlords.exe | "{87A1E34E-3287-4DA9-80DF-16A810CC0DFA}" = protocol=6 | dir=in | app=d:\program files (x86)\teamviewer\version7\teamviewer_service.exe | "{88FBFA61-04B4-4122-9254-D78DB6D70BD4}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\super meat boy\supermeatboy.exe | "{89609B5B-DAE3-4F74-B210-61F148EC924B}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | "{8A98EC21-41EF-46D2-903D-9A8EA34D173C}" = protocol=17 | dir=in | app=d:\program files (x86)\funcom\the secret world\clientpatcher.exe | "{8DC57DF8-D264-4596-82F1-B98F2E452301}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\bit.trip runner\runner.exe | "{8E2B2F1C-66D1-4FBB-A1FB-D4325E71977F}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sid meier's civilization v\launcher.exe | "{8EF03BF5-C8B3-4C71-B56B-0CDF87960F76}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe | "{903B3D7B-D7E3-42D7-A1F1-5397ECDF062A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steam.exe | "{928EB5AF-9AB2-4682-85B8-31FE1767C6B4}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the walking dead\walkingdead101.exe | "{92C2B747-479D-4B26-BBBE-63F9FA351B47}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gundeadligne\gundeadligne.exe | "{9382AAD1-280F-4329-AD3D-9C6111432D77}" = protocol=17 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\civilization4.exe | "{93EAD1AE-471A-4361-9582-DFF283C33CB6}" = protocol=6 | dir=in | app=c:\users\tov are\desktop\r1w67.1\server\br - server.exe | "{947E4117-FFA1-4943-BFFB-303F48E85927}" = dir=in | app=d:\program files (x86)\electronic arts\the sims 3\game\bin\sims3launcher.exe | "{9607A21A-E1D4-43E0-A3D7-D82F815FAB5B}" = dir=out | app=d:\program files (x86)\rockstar games\max payne 3\maxpayne3.exe | "{96268E33-A336-4633-8C0C-2BD2AC075CAA}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd | "{9669D2A3-0726-4C5A-B4FD-C2953CC3DEB3}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\serious sam 2\bin\sam2.exe | "{96B44989-7778-4CF3-9C29-53E0622712A8}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\aaaaaaaaaaaaaaaaaaaaaaaaa!!!\main.exe | "{99002D40-9852-4A23-A4CD-A4C7EC0D78C2}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\conviction_game.exe | "{990AC977-0F45-4B5C-8B13-0CE1ECED093C}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hydrophobia\hydropc.exe | "{9B144FE1-D0E5-4442-A3CE-CFA31FEE2441}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe | "{9C35707F-D5FF-4396-A8AE-F42106CAEEED}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\just cause 2\justcause2.exe | "{A1EAAA7F-DA5E-4FD5-962B-256DFC765AEE}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dc universe online\launchpad.exe | "{A2BD1744-4AEB-4069-80A9-51AB78A5C997}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hacker evolution\hacker evolution mod editor.exe | "{A4C0EB83-AC54-4F89-BDE7-A05022284CEB}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gundemonium recollection\gundemonium.exe | "{A60D765C-9319-4005-98A9-D30810698E8F}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steam.exe | "{A62BA009-9EDB-4F04-8DA4-C60C101B0E4C}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe | "{A698D87D-6BFA-4E60-8F2F-91D740143B66}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\awesome\awesome.exe | "{A77C9A63-EE73-483D-86FE-A949237E6FF4}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe | "{A78C87BB-E5C8-4996-A6A7-7E50B9876D65}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\harvest massive encounter\harvest.exe | "{A9F009DA-991D-4F97-BEBE-BCEE7E042C8B}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hitman blood money\configure.exe | "{AA00D593-36D5-45F9-B30F-EBAE3741B022}" = protocol=17 | dir=in | app=d:\program files (x86)\clockworkmod\tether\win32\node.exe | "{ABBEF6C9-E327-4FA6-BFEC-7ACF4CFB2F4F}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\evochron mercenary\evochronmercenary.exe | "{AE1D9D0C-4107-4A1C-BC5D-8BE7B42A0EF8}" = protocol=17 | dir=in | app=d:\program files (x86)\funcom\the secret world\clientpatcher.exe | "{AF01BDAD-6473-4C13-8330-958D44D79C9D}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gotham city impostors\impostors.exe | "{B0C1991C-8DBF-402C-99B4-7BF6F14EB06E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dungeons of dredmor\dungeons of dredmor.exe | "{B0CA8A67-62E1-4818-90A0-6DF96E0DB528}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\magicka\magicka.exe | "{B1D4DD7F-45D0-4D3B-86F8-20821FC7C029}" = protocol=17 | dir=in | app=c:\users\tov are\appdata\roaming\spotify\spotify.exe | "{B28EBDB8-FDE2-4D74-B41F-9B7C434E9B0B}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\fallout new vegas\falloutnvlauncher.exe | "{B391D80E-C8BC-4DD6-8746-BC2F4E251A07}" = protocol=17 | dir=in | app=d:\program files (x86)\teamviewer\version7\teamviewer_service.exe | "{B3A9560D-8697-4C63-8327-FDEBBB1B51EC}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{B42434AB-F0E8-4399-9AE9-0DA9A949E80A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\microsoft flight\flight.exe | "{B626A949-23C8-40BB-AF1D-F6E238D2646C}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe | "{B765465C-A4CD-4400-8C26-C22D4A73F2C8}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\superbrothers sword & sworcery ep\swordandsworcery_pc.exe | "{B77B125C-A299-4DF0-8F04-3E7C82FCE7BA}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dungeons of dredmor\dungeons of dredmor.exe | "{B9F32A9F-7BB2-4CA1-AA01-B6FD52475D34}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sniper elite v2\bin\sniperelitev2.exe | "{BA8B8794-7EA0-4869-95BF-9BCD0703BC44}" = protocol=6 | dir=in | app=c:\users\tov are\appdata\roaming\dropbox\bin\dropbox.exe | "{BB4E35E3-C27F-4ABD-9D08-B61B597C3E0C}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\evochron mercenary\evochronmercenary.exe | "{BB9A3750-E388-4E0C-923F-B3F03A4BD490}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe | "{BC458189-11F7-4DDA-A891-5ED7E5679B53}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\railworks\railworks.exe | "{BC793C5B-439D-4BD6-AFE2-1693CD75850E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the binding of isaac\isaac.exe | "{BD20280C-7C42-4A63-A57C-4AF963910241}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\tropico 4\tropico4.exe | "{BDDF1614-2FCE-4F27-930B-1326EDDDBD01}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trine\trine_launcher.exe | "{BFF42D38-59F2-43C8-AF87-70B3D01B3A54}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\gotham city impostors\engine.exe | "{C114DB1C-479B-4442-A6E4-F9344228563C}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{C1545A77-C15A-4942-8A82-0C78A52A90A6}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe | "{C4FA75CD-576A-45A5-AE53-B9BE2FFA851A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hydrophobia\hydropc.exe | "{C609C1F2-E81A-40C0-944E-069EDFDE34EE}" = dir=out | app=d:\program files (x86)\rockstar games\max payne 3\playmaxpayne3.exe | "{C6293916-C2F9-4136-9E99-A40C13EE46C8}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\just cause 2\justcause2.exe | "{C73400C0-D24B-4B8F-BE50-FAE2D891D8B6}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\garry's mod beta\hl2.exe | "{C74FAE62-39B8-49B5-9AD2-D92977C87E47}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\magicka\magicka.exe | "{C861FBD9-6E76-45FF-B395-4AADF528A54A}" = protocol=6 | dir=in | app=d:\program files (x86)\clockworkmod\tether\win32\node.exe | "{CA36EF3C-CA1A-4A13-8D70-9E60C2A53EA6}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe | "{CAE3997E-BFAA-4A54-92A4-E9348977F78A}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2\arma2.exe | "{CB652D01-160B-4C60-84EB-E43A4FE04C77}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe | "{CBA48F5C-ABC1-49FB-87BD-24B7E7925F6A}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{CC6DB9B7-4AC6-4098-93BE-416434653D97}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\shank\bin\shank.exe | "{CC7BEFEE-595A-4841-BEAC-ED55E45154AD}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\123kickit\123kickit.exe | "{D01EE1E3-6C0D-4F81-A321-27861897CAD9}" = dir=in | app=d:\program files (x86)\rockstar games\max payne 3\playmaxpayne3.exe | "{D04CFA75-B94D-4F9F-BDCE-9F07E0D84C17}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dirt 2\dirt2.exe | "{D2320978-0686-473C-B452-71E07440F848}" = protocol=6 | dir=in | app=d:\program files (x86)\teamviewer\version7\teamviewer.exe | "{D31F4003-0A46-4E10-B95B-A92B094FF7DB}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\midnight club 2\mc2.exe | "{D3319846-52D1-474E-B981-AAB209030C36}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\serious sam 2\bin\sam2.exe | "{D34A46D0-FD31-42B7-BEFD-099072C9050A}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\space pirates and zombies\spazgame.exe | "{D5804E0D-5021-4AB0-97D6-2FF7FDB3F5B2}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\besetup\setup_battleyearma2oa.exe | "{D76796AE-BD92-4ABE-8A1F-1C08C69947EB}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | "{D830D355-F7B0-467D-BF4B-E7E1C110C1D5}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\amnesia the dark descent\launcher.exe | "{D917EA82-B611-4BCA-8830-32A40A1622E0}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\need for speed hot pursuit\support\ea help\electronic_arts_technical_support.htm | "{DA9C1FA8-F54E-4B5C-821A-61FD71793D37}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\super meat boy\supermeatboy.exe | "{DCB53433-0795-4024-814D-C1606AB40005}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | "{DD365EA5-511D-45F5-9606-CCC3E0FBE519}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\serious sam 2\bin\seriouseditor2.exe | "{DD8E39D3-A0C2-4024-8722-B46BC7977889}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dungeons of dredmor\dungeons of dredmor.exe | "{DD941421-FB12-4464-8B4A-60D1859580F1}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trine 2\trine2_launcher.exe | "{DDE6EE6A-50F3-47E9-9F1F-C943AEC4C695}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hacker evolution\hacker evolution mod editor.exe | "{DEA89F61-2C35-4B22-BB45-853A2B491CCB}" = dir=in | app=d:\program files (x86)\electronic arts\the sims 3\game\bin\ts3.exe | "{DF12B76F-AF43-44C9-946E-3107502F5178}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\warhammer 40,000 space marine\spacemarine.exe | "{E09BA0FF-1985-44CB-AA4E-4DE4C4F89F0B}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\stalker call of pripyat\stalker-cop.exe | "{E12647D9-2AE9-43A0-AFDF-AC78B5A9A006}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trackmania nations forever\tmforeverlauncher.exe | "{E2DF2578-921A-4026-8628-E540395D214D}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\stalker call of pripyat\stalker-cop.exe | "{E2E4070B-7BC3-4617-BFD2-D174C9E8B16D}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\eye\eye.exe | "{E330A1AD-29B5-4FA8-AB22-AA10A0102AD0}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steam.exe | "{E3FF65F4-AA5D-42BE-9F1B-DD036AF40B49}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\just cause 2\justcause2.exe | "{E4ECDB63-FDA2-4589-AB81-31368CF6D9B0}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hacker evolution\hacker evolution.exe | "{E5B2CF97-C9B3-4A32-A502-2BBD8AB586BB}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\need for speed hot pursuit\nfs11.exe | "{E7ED145A-1EB1-41D0-8EAB-2DEAC9ADD7AE}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\bin\qsdklauncher.exe | "{E85FF34A-0CF3-493B-83A8-9FCC844B1408}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the binding of isaac\isaac.exe | "{EA18AC27-643C-474F-A85E-CB656A0AD615}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe | "{EA208E22-C686-4324-BE88-67562EC41324}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\123kickit\123kickit.exe | "{EA81E808-7FDA-4C17-ACE6-3CEDF6304A7B}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\hitman blood money\hitmanbloodmoney.exe | "{EA84317E-1FD3-4112-A115-A1988C720585}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the binding of isaac\isaac.exe | "{EB9A3B00-8E0A-4729-945A-BDA632EFB496}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\bin\qsdklauncher.exe | "{EBA011C4-5CB7-4517-8030-7041F008A7AE}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\runespelloverture\runespell.exe | "{ED17B25E-F0A0-40CF-80E7-E41DEE4BDBDE}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\eye\eye.exe | "{ED591B9F-6958-488B-8AB4-F28F2B101C7F}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\harvest massive encounter\harvest.exe | "{EDE15DE8-CBDD-413C-9D5C-6F4072334F29}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\serious sam 2\bin\dedicatedserver.exe | "{F12FCE57-21DF-4B91-8D7B-69ACF49A51B8}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\superbrothers sword & sworcery ep\swordandsworcery_pc.exe | "{F161A4DD-872E-47B9-9B67-FD32DA638A5E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\lone survivor\lonesurvivor\lonesurvivor.exe | "{F24A3386-54E8-4868-9E07-59BCFC335B44}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\psychonauts\psychonauts.exe | "{F2B47083-3A42-4A4E-9809-4A8673A06C0D}" = protocol=6 | dir=in | app=d:\program files (x86)\2k games\firaxis games\sid meier's civilization 4 complete\warlords\civ4warlords.exe | "{F650839D-CB94-4FCD-9372-CADED14C8BD9}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\noitu love 2 devolution\config.exe | "{F6F9172D-6E7F-4368-B399-E07C8560E70D}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\superbrothers sword & sworcery ep\swordandsworcery_pc.exe | "{F883583D-4C43-4778-8A8B-132166741556}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\the walking dead\walkingdead101.exe | "{F8A37557-737B-44DE-9B54-46AEF581C607}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | "{F9489C9A-166A-4D13-930F-8D56DDA23F36}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oa.exe | "{F98219CD-4C09-40E2-AAA3-F6D98B001DF5}" = protocol=6 | dir=in | app=d:\program files (x86)\rockstar games\rockstar games social club\rgsclauncher.exe | "{FA8B0675-3A11-48D9-AA01-F338C8B145AF}" = dir=out | app=d:\program files (x86)\electronic arts\the sims 3\game\bin\ts3.exe | "{FB88CEC9-EDEB-4FC3-ABDE-C441AACCED16}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\_runa2co.cmd | "{FBD22BD2-7A53-436F-BF5C-9C84F6769577}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\trials 2 second edition\launcher.exe | "{FC05ECE5-DC20-4CA2-A2FE-D2BC578C1A07}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe | "{FC94A9A7-609D-4B7A-8277-20E1254D390D}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\puzzle agent\grickle101.exe | "{FE0CE6E8-17A8-42C1-A86B-1E18179C3FD8}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\sfm.exe | "{FF359808-0680-4BC1-8A08-01E070F7B3FD}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\warhammer 40,000 space marine\spacemarine.exe | "{FFA5AD8E-691C-4599-94E5-2707E6609526}" = protocol=17 | dir=in | app=d:\program files (x86)\utorrent\utorrent.exe | "TCP Query User{0AB6E8E0-3F4E-454E-A197-E417AD9F1E2E}C:\users\tov are\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\tov are\appdata\roaming\dropbox\bin\dropbox.exe | "TCP Query User{0F83D7E9-8070-4878-BDCA-4780962BF4B1}D:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\sfm.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\sfm.exe | "TCP Query User{4032BFEA-7D28-4718-9491-18CBF05A9C2D}D:\program files (x86)\steam\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe | "TCP Query User{50BC110D-72E9-42C5-9294-6A5B2EA18985}D:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe | "TCP Query User{820B5D09-4943-416C-A317-154C3A66C112}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | "TCP Query User{842280B6-3610-45B6-9D27-13F19831557E}D:\program files (x86)\six projects\six updater\tools\bin\rsync.exe" = protocol=6 | dir=in | app=d:\program files (x86)\six projects\six updater\tools\bin\rsync.exe | "TCP Query User{A4B3205C-4313-44DD-9A1F-64FEA4A1D91D}D:\program files (x86)\dc++\dcplusplus.exe" = protocol=6 | dir=in | app=d:\program files (x86)\dc++\dcplusplus.exe | "TCP Query User{B15B4189-FB29-4492-B70B-68DFFE7BFA26}C:\users\tov are\desktop\r1w67.1\server\br - server.exe" = protocol=6 | dir=in | app=c:\users\tov are\desktop\r1w67.1\server\br - server.exe | "TCP Query User{C565F414-2E24-4CFA-9A46-ADC2FE7864AB}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | "TCP Query User{C7739E94-2A97-4318-8B87-2A7A4F68C054}D:\program files (x86)\steam\steamapps\tordval\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\team fortress 2\hl2.exe | "TCP Query User{CA3F5AA7-906C-4560-85C4-A9F8691B4BD8}C:\users\tov are\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\tov are\appdata\roaming\spotify\spotify.exe | "TCP Query User{D6479D48-C29C-4B63-B8D4-B22C484E740A}D:\program files (x86)\prototype 2\prototype2.exe" = protocol=6 | dir=in | app=d:\program files (x86)\prototype 2\prototype2.exe | "TCP Query User{D9D3F851-4FE4-4D15-A0A1-20D453283FB3}D:\program files (x86)\steam\steamapps\tordval\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\counter-strike source\hl2.exe | "TCP Query User{E0557D15-E86A-4832-8FAC-F1326DC7B7CC}D:\program files (x86)\maniaplanet\maniaplanet.exe" = protocol=6 | dir=in | app=d:\program files (x86)\maniaplanet\maniaplanet.exe | "TCP Query User{F33F6DF3-90E1-4826-B6B3-E45B07610A0D}D:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe | "UDP Query User{0D595446-2847-463D-81CF-466C60235851}D:\program files (x86)\prototype 2\prototype2.exe" = protocol=17 | dir=in | app=d:\program files (x86)\prototype 2\prototype2.exe | "UDP Query User{0E829E46-F5E9-46B4-8D88-8785A22D0810}D:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\sfm.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sourcefilmmaker\game\sfm.exe | "UDP Query User{18D95BF6-05E2-45FB-88E9-A5B1C2D7C25C}D:\program files (x86)\steam\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dc universe online\unreal3\binaries\win32\dcgame.exe | "UDP Query User{306B7F16-2DA3-4F99-88B7-8B720E3D464E}D:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe | "UDP Query User{373F4B58-3207-4E9B-A491-2A8885DDFDAF}C:\users\tov are\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\tov are\appdata\roaming\dropbox\bin\dropbox.exe | "UDP Query User{3BCD95E4-9CBF-41E9-BB78-88FEBE2FB3E1}D:\program files (x86)\six projects\six updater\tools\bin\rsync.exe" = protocol=17 | dir=in | app=d:\program files (x86)\six projects\six updater\tools\bin\rsync.exe | "UDP Query User{44F83551-6A59-4F16-9C66-C5C262486BAB}D:\program files (x86)\maniaplanet\maniaplanet.exe" = protocol=17 | dir=in | app=d:\program files (x86)\maniaplanet\maniaplanet.exe | "UDP Query User{46120099-8DD6-4D5A-B307-66C2BA9EC1ED}D:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe | "UDP Query User{6D051933-68C3-45F3-98FC-5422DCC47611}D:\program files (x86)\steam\steamapps\tordval\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\team fortress 2\hl2.exe | "UDP Query User{806C8048-E208-4D58-BD75-F5BD79A2EE5D}D:\program files (x86)\steam\steamapps\tordval\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\tordval\counter-strike source\hl2.exe | "UDP Query User{828A3247-A378-42E1-AB9F-316A8C8271F4}D:\program files (x86)\dc++\dcplusplus.exe" = protocol=17 | dir=in | app=d:\program files (x86)\dc++\dcplusplus.exe | "UDP Query User{C3C7E9B0-3651-40E4-A21C-47048DA5BB9A}C:\users\tov are\desktop\r1w67.1\server\br - server.exe" = protocol=17 | dir=in | app=c:\users\tov are\desktop\r1w67.1\server\br - server.exe | "UDP Query User{C7F9317A-C7AE-434C-A9F5-1F0D913ECEFA}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | "UDP Query User{CD65C7EE-B8B4-4268-8AE8-9669EBBA3003}C:\users\tov are\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\tov are\appdata\roaming\spotify\spotify.exe | "UDP Query User{D025A5E1-3FC3-464F-AD4D-94090457EE7F}D:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{26A24AE4-039D-4CA4-87B4-2F86417005FF}" = Java 7 Update 5 (64-bit) "{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1" = MPC-HC 1.6.2.4902 (64-bit) "{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1" = MotioninJoy Gamepad tool 0.7.1001 "{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 "{4EE61784-10C6-4B7C-A0B2-5BED17B05741}" = Oracle VM VirtualBox 4.1.18 "{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10 "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{6D9DCF92-F8A3-33A2-897A-9C379448E0D8}" = Microsoft .NET Framework 4 Client Profile NOR Language Pack "{789C9644-9F82-44d3-B4CA-AC31F46F5883}" = Python 3.2.3 (64-bit) "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}" = Microsoft IntelliType Pro 8.0 "{99F9B5F6-C042-44C5-9BE8-36CF244480BC}" = ActiveState ActivePython 2.7.2.5 (64-bit) "{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant "{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision-driver 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA kontrollpanel 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafikkdriver 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Driver til 3D Vision-kontroller 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX systemprogramvare 9.12.0213 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA oppdateringer 1.7.11 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Driver for HD-lyd 1.3.12.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{BCCC97EE-E162-448C-8847-59718FF29B04}" = Intel® Network Connections 15.6.25.0 "{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D9C50188-12D5-4D3E-8F00-682346C2AA5F}" = Microsoft Xbox 360 Accessories 1.2 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "CCleaner" = CCleaner "GCFScape_is1" = GCFScape 1.8.2 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile NOR Language Pack" = Microsoft .NET Framework 4 Client Profile NOR Language Pack "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft Security Client" = Microsoft Security Essentials "PROSetDX" = Intel® Network Connections 15.6.25.0 "sp6" = Logitech SetPoint 6.32 "Speccy" = Speccy "WinRAR archiver" = WinRAR 4.20 beta 2 (64-bit) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club "{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1 "{117B6BF6-82C3-420C-B284-9247C8568E53}" = The Sims™ 3 Luksus i det grønne - Stæsj "{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1 "{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3 "{20B6BE33-525B-4EF9-9628-E1BA58093A4C}" = ZBrush 4R2 "{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.10.1 "{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java 6 Update 33 "{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java 7 Update 5 "{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0 "{2D8CED57-CCDB-4D86-9087-3BBCAE8F8F22}" = Six Updater "{2EEEC858-21F8-419B-8FE2-820621BFFCD7}" = GetDataBack for FAT "{30D1F3D2-54CF-481D-A005-F94B0E98FEEC}" = Sid Meier's Civilization 4 Complete "{37542828-0F05-4BAA-BEB7-B633F27D3E7B}" = SlimDX SDK (September 2011) "{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg "{45057FCE-5784-48BE-8176-D9D00AF56C3C}" = The Sims™ 3 Helaften "{456A5815-604D-4D72-94DF-346D2B978A59}_is1" = GOG.com Downloader version 3.0.51 "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace "{52D1D62C-FEAB-4580-849E-1DB624BADBBD}" = DiRT2 "{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver "{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}" = GetDataBack for NTFS "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{64029508-2587-4D39-AB83-2AC722FBFCC2}" = XSplit "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components "{65CB4C08-C47B-4A7E-A6A4-50C06ADA5FC6}" = Adobe AIR "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{71828142-5A24-4BD0-97E7-976DA08CE6CF}" = The Sims™ 3 Luksus og Design - Stæsj "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{7B11296A-F894-449C-8DF6-6AAAA7D4D118}" = The Sims™ 3 Byliv - Stæsj "{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{87328F93-879B-48B4-B934-526077AFD89D}" = Escape Goat "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{8D126B46-C6EF-4E24-9BE6-CBF474F2B70D}_is1" = Linux Tycoon version 1.0 "{907B4640-266B-4A21-92FB-CD1A86CD0F63}" = RollerCoaster Tycoon 3 "{910F4A29-1134-49E0-AD8B-56E4A3152BD1}" = The Sims™ 3 Drømmejobben "{92000C16-939B-44CA-802F-0D552019D7C8}" = Sound Blaster Tactic(3D) "{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9B2506E3-9A3F-45B5-96BF-509CAD584650}" = The Sims™ 3 Katy Perry Søtsaker "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor "{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 Reisefeber "{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3 "{C12631C6-804D-4B32-B0DD-8A496462F106}" = The Sims™ 3 Kjæledyr "{C5C67EA4-16FA-473C-B274-904A71162DE4}" = Tether "{ceca424e-2d49-4406-b1ff-b570a1a2933a}" = MinerWars "{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.3.26 Game "{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas "{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime "{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}" = The Sims™ 3 Generasjoner "{EA926717-CE5A-4CB4-AB21-9E6E9565A458}" = RCT3 Soaked "{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}" = The Sims™ 3 Full fart - Stæsj "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{EF36A836-BF89-4A4F-B079-057B0C68C1E0}" = Sid Meier's Civilization IV Colonization "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FAB1F336-1B7C-4057-A7BC-2922CD82A781}" = Ralink Wireless LAN Card "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "Audacity_is1" = Audacity 2.0 "AviSynth" = AviSynth 2.5 "BattlEye for OA" = BattlEye for OA Uninstall "Cities XL 2012" = Cities XL 2012 "DAEMON Tools Lite" = DAEMON Tools Lite "DC++" = DC++ 0.799 "Diablo III" = Diablo III "Driver San Francisco" = Driver San Francisco "Dxtory2.0_is1" = Dxtory version 2.0.114 "ffdshow_is1" = ffdshow v1.2.4453 [2012-05-21] "Fraps" = Fraps (remove only) "Free ISO Creator (by minidvdsoft)_is1" = Free ISO Creator version 2.8 "gedit_is1" = gedit 2.30.1 "GeeXLab (No Python)_is1" = GeeXLab v0.2.0 (No Python) "GeeXLab_is1" = GeeXLab v0.2.0 "HaaliMkx" = Haali Media Splitter "HxD Hex Editor_is1" = HxD Hex Editor version 1.7.7.0 "InstallShield_{20B6BE33-525B-4EF9-9628-E1BA58093A4C}" = ZBrush 4R2 "InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver "MagniDriver" = marvell 91xx driver "ManiaPlanet_is1" = ManiaPlanet "Notepad++" = Notepad++ "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "OpenAL" = OpenAL "OpenTTD" = OpenTTD 1.2.1 "Origin" = Origin "PunkBusterSvc" = PunkBuster Services "Rainmeter" = Rainmeter "ResourceHacker_is1" = Resource Hacker Version 3.6.0 "Rockstar Games Social Club" = Rockstar Games Social Club "SmoothVideo Project_is1" = SmoothVideo Project version 3.1.2 "Spec Ops The Line_is1" = Spec Ops The Line "Steam App 102200" = Runespell: Overture "Steam App 105800" = PixelJunk Eden "Steam App 107100" = Bastion "Steam App 107200" = Space Pirates and Zombies "Steam App 12840" = DiRT 2 "Steam App 13210" = Unreal Tournament 3: Black Edition "Steam App 13510" = Tom Clancy's Ghost Recon: Advanced Warfighter 2 "Steam App 1510" = Uplink "Steam App 15400" = Harvest: Massive Encounter "Steam App 15500" = The Wonderful End of the World "Steam App 15520" = AaAaAA!!! - A Reckless Disregard for Gravity "Steam App 15540" = 1... 2... 3... KICK IT! (Drop That Beat Like an Ugly Baby) "Steam App 15560" = AaaaaAAaaaAAAaaAAAAaAAAAA!!! for the Awesome "Steam App 16600" = Trials 2: Second Edition "Steam App 1840" = Source Filmmaker "Steam App 200210" = Realm of the Mad God "Steam App 200900" = Cave Story+ "Steam App 203850" = Microsoft Flight "Steam App 204060" = Superbrothers: Sword & Sworcery EP "Steam App 204340" = Serious Sam 2 "Steam App 204350" = Serious Sam 2 Editor "Steam App 205870" = Auditorium "Steam App 206500" = AirMech "Steam App 207530" = Noitu Love 2 Devolution "Steam App 209830" = Lone Survivor "Steam App 211" = Source SDK "Steam App 24010" = Train Simulator 2012 "Steam App 24200" = DC Universe Online "Steam App 24780" = SimCity 4 Deluxe "Steam App 26800" = Braid "Steam App 31270" = Puzzle Agent "Steam App 33220" = Tom Clancy's Splinter Cell: Conviction "Steam App 35700" = Trine "Steam App 3830" = Psychonauts "Steam App 40810" = Super Meat Boy Editor "Steam App 41700" = S.T.A.L.K.E.R.: Call of Pripyat "Steam App 42910" = Magicka "Steam App 47870" = Need for Speed: Hot Pursuit "Steam App 48000" = LIMBO "Steam App 550" = Left 4 Dead 2 "Steam App 55150" = Warhammer 40,000 Space Marine "Steam App 57300" = Amnesia: The Dark Descent "Steam App 57690" = Tropico 4 "Steam App 63710" = BIT.TRIP RUNNER "Steam App 70100" = Hacker Evolution "Steam App 71000" = Evochron Mercenary "Steam App 91700" = E.Y.E: Divine Cybermancy "Steam App 92000" = Hydrophobia: Prophecy "Steam App 92200" = Gundemonium Recollection "Steam App 92210" = Hitogata Happa "Steam App 92220" = GundeadliGne "Steam App 98800" = Dungeons of Dredmor "SysInfo" = Creative System Information "TeamViewer 7" = TeamViewer 7 "The Secret World_is1" = The Secret World "Theme Park World" = Theme Park World "Unepic" = Unepic "uTorrent" = µTorrent "VLC media player" = VLC media player 2.0.2 "WhatPulse" = WhatPulse 1.7.1 "X3 Albion Prelude_is1" = X3 Albion Prelude ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Dropbox" = Dropbox "eec89cd0692c9aed" = MetroTwit "Google Chrome" = Google Chrome "Spotify" = Spotify "UnityWebPlayer" = Unity Web Player "WinDirStat" = WinDirStat 1.1.2 ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 03.08.2012 05:55:03 | Computer Name = TovAre | Source = WinMgmt | ID = 10 Description = Error - 04.08.2012 08:55:24 | Computer Name = TovAre | Source = WinMgmt | ID = 10 Description = Error - 04.08.2012 10:04:16 | Computer Name = TovAre | Source = SideBySide | ID = 16842785 Description = Generering av aktiveringskontekst mislyktes for D:\Program Files (x86)\SplitMediaLabs\XSplit\XSplitBroadcasterSrc.exe. Finner ikke den avhengige samlingen Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0". Bruk sxstrace.exe for detaljert diagnostisering. Error - 04.08.2012 12:33:46 | Computer Name = TovAre | Source = WinMgmt | ID = 10 Description = Error - 04.08.2012 13:14:59 | Computer Name = TovAre | Source = WinMgmt | ID = 10 Description = Error - 04.08.2012 15:16:12 | Computer Name = TovAre | Source = WinMgmt | ID = 10 Description = Error - 04.08.2012 16:28:27 | Computer Name = TovAre | Source = MsiInstaller | ID = 11335 Description = Error - 04.08.2012 17:48:43 | Computer Name = TovAre | Source = Application Hang | ID = 1002 Description = Programmet GCFScape.exe versjon 1.8.2.0 sluttet å samhandle med Windows og ble lukket. Hvis du vil se om det finnes mer informasjon tilgjengelig om problemet, ser du i problemloggen i kontrollpanelet for Handlingssenter. Prosess-ID: 176c Starttidspunkt: 01cd728abeb93f65 Avslutningstidspunkt: 3 Programbane: C:\Users\Tov Are\Desktop\x64\GCFScape.exe Rapport-ID: 274b778b-de7e-11e1-bb6a-5404a6c02b16 Error - 04.08.2012 17:49:19 | Computer Name = TovAre | Source = Application Hang | ID = 1002 Description = Programmet GCFScape.exe versjon 1.8.2.0 sluttet å samhandle med Windows og ble lukket. Hvis du vil se om det finnes mer informasjon tilgjengelig om problemet, ser du i problemloggen i kontrollpanelet for Handlingssenter. Prosess-ID: 1160 Starttidspunkt: 01cd728aed3e3165 Avslutningstidspunkt: 3 Programbane: C:\Users\Tov Are\Desktop\x64\GCFScape.exe Rapport-ID: 3d2a8ac7-de7e-11e1-bb6a-5404a6c02b16 Error - 05.08.2012 06:05:17 | Computer Name = TovAre | Source = WinMgmt | ID = 10 Description = [ System Events ] Error - 27.07.2012 09:43:40 | Computer Name = TovAre | Source = EventLog | ID = 6008 Description = Forrige avslutning av systemet klokken 15:41:35 den ?27.?07.?2012 var uventet. Error - 27.07.2012 09:45:47 | Computer Name = TovAre | Source = Service Control Manager | ID = 7038 Description = Tjenesten nvUpdatusService kan ikke logge på som .\UpdatusUser med det gjeldende konfigurerte passordet på grunn av følgende feil: %%1330 Bruk snapin-modulen Tjenester i MMC (Microsoft Management Console) til å konfigurere tjenesten riktig. Error - 27.07.2012 09:45:47 | Computer Name = TovAre | Source = Service Control Manager | ID = 7000 Description = Tjenesten NVIDIA Update Service Daemon kan ikke starte på grunn av følgende feil: %%1069 Error - 27.07.2012 09:53:01 | Computer Name = TovAre | Source = DCOM | ID = 10010 Description = Error - 27.07.2012 12:02:53 | Computer Name = TovAre | Source = volsnap | ID = 393252 Description = Skyggekopiene av volum C: ble avbrutt fordi skyggekopilageret ikke kunne vokse på grunn av en brukerdefinert grense. Error - 01.08.2012 04:45:46 | Computer Name = TovAre | Source = EventLog | ID = 6008 Description = Forrige avslutning av systemet klokken 22:37:41 den ?30.?07.?2012 var uventet. Error - 04.08.2012 08:53:33 | Computer Name = TovAre | Source = EventLog | ID = 6008 Description = Forrige avslutning av systemet klokken 00:08:06 den ?04.?08.?2012 var uventet. Error - 04.08.2012 12:31:54 | Computer Name = TovAre | Source = EventLog | ID = 6008 Description = Forrige avslutning av systemet klokken 18:30:28 den ?04.?08.?2012 var uventet. Error - 04.08.2012 13:13:07 | Computer Name = TovAre | Source = EventLog | ID = 6008 Description = Forrige avslutning av systemet klokken 19:11:49 den ?04.?08.?2012 var uventet. Error - 04.08.2012 13:20:15 | Computer Name = TovAre | Source = Disk | ID = 262155 Description = Driveren oppdaget en feil på styreren på \Device\Harddisk4\DR4. < End of report > Lenke til kommentar
mobile999 Skrevet 5. august 2012 Del Skrevet 5. august 2012 Last ned Combofix og lagre programmet direkte på skrivebordet. Dvs. høyreklikk linken og velg Lagre (link) som... Deaktiver Microsoft Security Essentials: Open MSE and go to Settings > Real Time Protection. Then uncheck "Turn on real time protection". Exit MSE when done. Start Combofix ved å dobbelklikke Combofix ikonet på skrivebordet. Klikk deg gjennom veiviseren for å kjøre skanningen. Tillat installering av gjenopprettingskonsollen hvis du blir spurt om det. Post loggfilen når Combofix er ferdig. Den finnes også her: C:\Combofix.txt Lenke til kommentar
Mr. Hermonella Skrevet 5. august 2012 Forfatter Del Skrevet 5. august 2012 ComboFix 12-08-05.02 - Tov Are 05.08.2012 16:48:39.1.4 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1252.47.1044.18.8169.3709 [GMT 2:00] Kjører fra: c:\users\Tov Are\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Andre slettinger ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Tov Are\AppData\Roaming\87338ce1.dat c:\windows\SysWow64\tmpAB57.tmp c:\windows\SysWow64\tmpAB58.tmp f:\documents\Downloads\CT2776682_BrotherSoft_Extreme.exe F:\install.exe . . ((((((((((((((((((((((((((( Filer Opprettet Fra 2012-07-05 til 2012-08-05 ))))))))))))))))))))))))))))))))) . . 2012-08-05 14:50 . 2012-08-05 14:50 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-08-05 14:13 . 2012-08-05 14:13 -------- d-----w- c:\users\Tov Are\AppData\Local\Black_Tree_Gaming 2012-08-05 11:55 . 2012-08-05 11:55 -------- d-----w- c:\windows\LastGood 2012-08-05 11:12 . 2012-07-26 19:46 155648 ----a-w- c:\windows\system32\utv_dmo.dll 2012-08-05 11:12 . 2012-07-26 19:46 65536 ----a-w- c:\windows\system32\utv_vcm.dll 2012-08-05 11:12 . 2012-07-26 19:46 186368 ----a-w- c:\windows\system32\utv_core.dll 2012-08-05 11:12 . 2012-07-26 19:45 131072 ----a-w- c:\windows\SysWow64\utv_dmo.dll 2012-08-05 11:12 . 2012-07-26 19:45 69632 ----a-w- c:\windows\SysWow64\utv_vcm.dll 2012-08-05 11:12 . 2012-07-26 19:45 147456 ----a-w- c:\windows\SysWow64\utv_core.dll 2012-08-04 20:34 . 2012-08-04 20:34 -------- d-----w- c:\programdata\Samsung 2012-08-04 20:10 . 2012-08-04 20:18 -------- d-----w- c:\users\Tov Are\AppData\Local\Microsoft Games 2012-08-04 20:06 . 2012-08-04 20:06 -------- d-----w- c:\program files\Microsoft Games 2012-08-04 13:04 . 2012-06-29 10:04 9133488 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A793663F-405F-46BC-A011-08E91626F67A}\mpengine.dll 2012-08-03 10:03 . 2012-06-29 10:04 9133488 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2012-08-01 13:59 . 2012-08-01 14:00 -------- d-----w- c:\users\Public\Pixologic 2012-07-29 18:32 . 2012-07-29 18:36 -------- d-----w- c:\users\Tov Are\AppData\Local\Dxtory Software 2012-07-29 18:32 . 2011-05-23 21:29 3673600 ----a-w- c:\windows\system32\DxtoryCodec64.dll 2012-07-29 18:32 . 2011-05-23 21:23 3166720 ----a-w- c:\windows\SysWow64\DxtoryCodec.dll 2012-07-29 18:32 . 2012-07-29 18:32 -------- d-----w- c:\program files (x86)\Dxtory Software 2012-07-29 17:18 . 2012-07-29 17:18 -------- d-----w- c:\users\Tov Are\AppData\Roaming\MotioninJoy 2012-07-29 17:18 . 2011-12-07 17:42 328712 ----a-w- c:\windows\system32\MijFrc.dll 2012-07-29 17:18 . 2011-12-07 17:42 1721576 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll 2012-07-29 17:18 . 2012-07-29 17:18 -------- d-----w- c:\program files\MotioninJoy 2012-07-28 15:27 . 2012-07-28 15:27 268784 ----a-w- c:\windows\system32\javaws.exe 2012-07-28 15:27 . 2012-07-28 15:27 189424 ----a-w- c:\windows\system32\javaw.exe 2012-07-28 15:27 . 2012-07-28 15:27 188912 ----a-w- c:\windows\system32\java.exe 2012-07-28 15:27 . 2012-07-28 15:27 -------- d-----w- c:\program files\Java 2012-07-28 00:36 . 2012-07-28 00:36 -------- d-----w- c:\program files (x86)\Bohemia Interactive 2012-07-27 22:28 . 2012-08-01 09:19 -------- d-----w- c:\users\Tov Are\AppData\Local\BIT.TRIP RUNNER 2012-07-27 21:34 . 2012-07-27 21:34 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories 2012-07-27 13:51 . 2012-08-05 10:03 -------- d-----w- c:\programdata\NVIDIA 2012-07-24 16:09 . 2012-07-24 16:09 -------- d-----w- c:\users\Tov Are\AppData\Local\Focus Home Interactive 2012-07-24 15:27 . 2012-07-24 15:27 -------- d-----w- c:\users\Tov Are\AppData\Roaming\Joymasher 2012-07-23 19:23 . 2012-07-23 19:23 -------- d-----w- c:\users\Tov Are\AppData\Local\FalloutNV 2012-07-23 15:00 . 2012-07-23 15:00 -------- d-----w- c:\program files (x86)\Common Files\Java 2012-07-23 14:59 . 2012-07-23 14:59 -------- d-----w- c:\program files (x86)\Oracle 2012-07-23 14:55 . 2012-07-23 14:59 -------- d-----w- c:\program files (x86)\Java 2012-07-22 19:40 . 2012-08-05 10:03 -------- d-----w- C:\Fraps 2012-07-22 18:14 . 2012-07-22 18:14 -------- d-----w- c:\users\Tov Are\AppData\Roaming\MinMaxGames 2012-07-21 17:51 . 2012-07-21 17:51 -------- d-----w- C:\sw3dg 2012-07-21 11:13 . 2012-07-21 11:13 -------- d-----w- c:\programdata\Ubisoft 2012-07-20 22:38 . 2012-07-20 22:38 -------- d-----w- c:\users\Tov Are\AppData\Local\123KickIt 2012-07-20 22:38 . 2012-07-20 22:38 -------- d-----w- c:\users\Tov Are\AppData\Local\AaaaaRecklessDisregard 2012-07-20 15:11 . 2012-07-20 15:11 -------- d-----w- c:\users\Tov Are\AppData\Roaming\XRay Engine 2012-07-20 14:29 . 2012-07-20 14:29 -------- d-----w- c:\users\Tov Are\temp 2012-07-19 15:56 . 2012-07-29 17:45 -------- d-----w- c:\users\Tov Are\AppData\Roaming\WhatPulse 2012-07-17 17:56 . 2012-07-17 17:57 -------- d-----w- c:\users\Tov Are\AppData\Local\The Wonderful End of the World 2012-07-15 16:31 . 2012-07-23 17:57 -------- d-----w- c:\users\Tov Are\AppData\Roaming\Tropico 4 2012-07-15 16:27 . 2012-07-15 16:27 -------- d-----w- c:\users\Tov Are\AppData\Roaming\Kalypso Media 2012-07-13 21:45 . 2012-07-13 21:45 -------- d-----w- c:\users\Tov Are\AppData\Local\Redlynx 2012-07-13 18:14 . 2012-07-13 21:58 -------- d-----w- c:\users\Tov Are\AppData\Local\GRAW2 2012-07-13 18:14 . 2012-07-13 18:14 -------- d-----w- c:\programdata\GRAW2 2012-07-13 15:40 . 2012-07-13 15:40 -------- d-----w- c:\users\Tov Are\AppData\Roaming\Unity 2012-07-13 15:35 . 2012-07-13 15:35 -------- d-----w- c:\users\Tov Are\AppData\Local\Unity 2012-07-12 23:10 . 2012-06-12 03:08 3148800 ----a-w- c:\windows\system32\win32k.sys 2012-07-12 21:10 . 2012-07-12 21:10 -------- d-----w- c:\users\Tov Are\AppData\Local\Nem's Tools 2012-07-12 19:37 . 2012-07-12 19:37 -------- d-----w- c:\users\Tov Are\AppData\Roaming\Media Player Classic 2012-07-12 19:37 . 2012-05-26 10:36 204800 ----a-w- c:\windows\system32\unrar64.dll 2012-07-12 19:33 . 2012-07-12 19:33 -------- d-----w- c:\users\Tov Are\AppData\Roaming\SVP 3.1 2012-07-12 19:32 . 2012-05-13 18:05 79872 ----a-w- c:\windows\SysWow64\ff_vfw.dll 2012-07-12 19:32 . 2012-07-12 19:32 -------- d-----w- c:\program files (x86)\ffdshow 2012-07-12 19:23 . 2012-07-12 19:23 -------- d-----w- c:\program files (x86)\VideoLAN 2012-07-12 18:57 . 2012-07-12 18:57 -------- d-----w- c:\programdata\media center programs 2012-07-06 20:53 . 2012-07-06 21:02 -------- d-----w- c:\users\Tov Are\AppData\Roaming\Audacity . . . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-08-01 08:46 . 2012-05-17 11:21 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-08-01 08:46 . 2012-05-17 11:21 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-07-29 14:51 . 2012-05-20 09:43 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys 2012-07-28 15:27 . 2012-05-17 18:36 955888 ----a-w- c:\windows\system32\npDeployJava1.dll 2012-07-28 15:27 . 2012-05-17 18:36 839152 ----a-w- c:\windows\system32\deployJava1.dll 2012-07-12 21:46 . 2012-05-29 17:24 925184 ----a-w- c:\windows\expstart.exe 2012-07-06 14:35 . 2012-07-06 09:54 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe 2012-07-06 14:35 . 2012-07-06 14:35 298016 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr 2012-07-06 14:35 . 2012-07-06 09:54 298016 ----a-w- c:\windows\SysWow64\PnkBstrB.exe 2012-07-06 09:54 . 2012-07-06 09:54 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0 2012-07-05 20:06 . 2012-05-17 11:24 772544 ----a-w- c:\windows\SysWow64\npdeployJava1.dll 2012-07-05 20:06 . 2012-05-17 11:24 687544 ----a-w- c:\windows\SysWow64\deployJava1.dll 2012-07-05 15:29 . 2012-07-06 09:54 3130440 ----a-w- c:\windows\SysWow64\pbsvc_blr.exe 2012-06-22 14:13 . 2012-05-26 01:32 466520 ----a-w- c:\windows\system32\wrap_oal.dll 2012-06-22 14:13 . 2012-05-26 01:32 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll 2012-06-22 14:13 . 2012-05-26 01:32 123480 ----a-w- c:\windows\system32\OpenAL32.dll 2012-06-22 14:13 . 2012-05-26 01:32 109144 ----a-w- c:\windows\SysWow64\OpenAL32.dll 2012-06-08 18:10 . 2012-06-08 18:10 98304 ----a-w- c:\windows\SysWow64\CmdLineExt.dll 2012-06-05 19:41 . 2012-06-01 21:20 151608 ----a-w- c:\windows\UTP.exe 2012-06-05 14:03 . 2012-06-26 18:08 224088 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys 2012-06-05 14:03 . 2012-06-26 18:08 130904 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys 2012-06-05 14:03 . 2012-06-05 14:03 147288 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys 2012-06-05 14:03 . 2012-05-22 12:25 166232 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys 2012-06-05 14:02 . 2012-05-22 12:25 320856 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll 2012-06-02 22:19 . 2012-06-22 13:56 38424 ----a-w- c:\windows\system32\wups.dll 2012-06-02 22:19 . 2012-06-22 13:56 2428952 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-02 22:19 . 2012-06-22 13:56 57880 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-02 22:19 . 2012-06-22 13:56 44056 ----a-w- c:\windows\system32\wups2.dll 2012-06-02 22:19 . 2012-06-22 13:56 701976 ----a-w- c:\windows\system32\wuapi.dll 2012-06-02 22:15 . 2012-06-22 13:56 2622464 ----a-w- c:\windows\system32\wucltux.dll 2012-06-02 22:15 . 2012-06-22 13:56 99840 ----a-w- c:\windows\system32\wudriver.dll 2012-06-02 13:19 . 2012-06-22 13:56 186752 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-02 13:15 . 2012-06-22 13:56 36864 ----a-w- c:\windows\system32\wuapp.exe 2012-06-01 21:20 . 2010-11-21 03:24 2755072 ----a-w- c:\windows\SysWow64\themeui.dll 2012-06-01 21:20 . 2009-07-13 23:39 245760 ----a-w- c:\windows\SysWow64\uxtheme.dll 2012-05-29 17:16 . 2012-05-29 17:46 123392 ----a-w- c:\windows\system32\dwm_backup_w7abt.exe 2012-05-29 17:16 . 2012-05-29 17:05 123392 ----a-w- c:\windows\system32\dwm.exe 2012-05-29 17:01 . 2009-07-13 23:55 332288 ----a-w- c:\windows\system32\uxtheme.dll 2012-05-29 17:01 . 2010-11-21 03:23 2851840 ----a-w- c:\windows\system32\themeui.dll 2012-05-29 17:01 . 2009-07-13 23:54 44544 ----a-w- c:\windows\system32\themeservice.dll 2012-05-28 16:38 . 2008-12-21 21:46 406016 ----a-w- c:\windows\SysWow64\avisynth.dll 2012-05-26 10:50 . 2012-05-26 10:50 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2012-05-26 01:34 . 2009-08-18 10:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll 2012-05-26 01:34 . 2009-08-18 09:24 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2012-05-25 19:52 . 2012-05-25 19:52 40960 ----a-r- c:\users\Tov Are\AppData\Roaming\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\NewShortcut1_9559F7CA5E344237A2D9D856464AD727.exe 2012-05-25 19:52 . 2012-05-25 19:52 40960 ----a-r- c:\users\Tov Are\AppData\Roaming\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\ARPPRODUCTICON.exe 2012-05-20 09:44 . 2012-05-20 09:44 53248 ----a-r- c:\users\Tov Are\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe 2012-05-18 18:51 . 2012-05-18 18:51 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll 2012-05-18 18:51 . 2012-05-18 18:51 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2012-05-18 18:51 . 2012-05-18 18:51 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2012-05-18 18:51 . 2012-05-18 18:51 74752 ----a-w- c:\windows\SysWow64\iesetup.dll 2012-05-18 18:51 . 2012-05-18 18:51 63488 ----a-w- c:\windows\SysWow64\tdc.ocx 2012-05-18 18:51 . 2012-05-18 18:51 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2012-05-18 18:51 . 2012-05-18 18:51 420864 ----a-w- c:\windows\SysWow64\vbscript.dll 2012-05-18 18:51 . 2012-05-18 18:51 367104 ----a-w- c:\windows\SysWow64\html.iec 2012-05-18 18:51 . 2012-05-18 18:51 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll 2012-05-18 18:51 . 2012-05-18 18:51 161792 ----a-w- c:\windows\SysWow64\msls31.dll 2012-05-18 18:51 . 2012-05-18 18:51 152064 ----a-w- c:\windows\SysWow64\wextract.exe 2012-05-18 18:51 . 2012-05-18 18:51 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2012-05-18 18:51 . 2012-05-18 18:51 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2012-05-18 18:51 . 2012-05-18 18:51 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-05-18 18:51 . 2012-05-18 18:51 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-05-18 18:51 . 2012-05-18 18:51 89088 ----a-w- c:\windows\system32\ie4uinit.exe 2012-05-18 18:51 . 2012-05-18 18:51 85504 ----a-w- c:\windows\system32\iesetup.dll 2012-05-18 18:51 . 2012-05-18 18:51 82432 ----a-w- c:\windows\system32\icardie.dll 2012-05-18 18:51 . 2012-05-18 18:51 76800 ----a-w- c:\windows\system32\tdc.ocx 2012-05-18 18:51 . 2012-05-18 18:51 697344 ----a-w- c:\windows\system32\msfeeds.dll 2012-05-18 18:51 . 2012-05-18 18:51 65024 ----a-w- c:\windows\system32\pngfilt.dll 2012-05-18 18:51 . 2012-05-18 18:51 603648 ----a-w- c:\windows\system32\vbscript.dll 2012-05-18 18:51 . 2012-05-18 18:51 55296 ----a-w- c:\windows\system32\msfeedsbs.dll 2012-05-18 18:51 . 2012-05-18 18:51 534528 ----a-w- c:\windows\system32\ieapfltr.dll 2012-05-18 18:51 . 2012-05-18 18:51 49664 ----a-w- c:\windows\system32\imgutil.dll 2012-05-18 18:51 . 2012-05-18 18:51 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-05-18 18:51 . 2012-05-18 18:51 452608 ----a-w- c:\windows\system32\dxtmsft.dll 2012-05-18 18:51 . 2012-05-18 18:51 448512 ----a-w- c:\windows\system32\html.iec 2012-05-18 18:51 . 2012-05-18 18:51 403248 ----a-w- c:\windows\system32\iedkcs32.dll 2012-05-18 18:51 . 2012-05-18 18:51 39936 ----a-w- c:\windows\system32\iernonce.dll 2012-05-18 18:51 . 2012-05-18 18:51 3695416 ----a-w- c:\windows\system32\ieapfltr.dat 2012-05-18 18:51 . 2012-05-18 18:51 35840 ----a-w- c:\windows\SysWow64\imgutil.dll 2012-05-18 18:51 . 2012-05-18 18:51 30720 ----a-w- c:\windows\system32\licmgr10.dll 2012-05-18 18:51 . 2012-05-18 18:51 282112 ----a-w- c:\windows\system32\dxtrans.dll 2012-05-18 18:51 . 2012-05-18 18:51 267776 ----a-w- c:\windows\system32\ieaksie.dll 2012-05-18 18:51 . 2012-05-18 18:51 249344 ----a-w- c:\windows\system32\webcheck.dll 2012-05-18 18:51 . 2012-05-18 18:51 222208 ----a-w- c:\windows\system32\msls31.dll 2012-05-18 18:51 . 2012-05-18 18:51 197120 ----a-w- c:\windows\system32\msrating.dll 2012-05-18 18:51 . 2012-05-18 18:51 165888 ----a-w- c:\windows\system32\iexpress.exe 2012-05-18 18:51 . 2012-05-18 18:51 163840 ----a-w- c:\windows\system32\ieakui.dll 2012-05-18 18:51 . 2012-05-18 18:51 160256 ----a-w- c:\windows\system32\wextract.exe 2012-05-18 18:51 . 2012-05-18 18:51 160256 ----a-w- c:\windows\system32\ieakeng.dll 2012-05-18 18:51 . 2012-05-18 18:51 149504 ----a-w- c:\windows\system32\occache.dll 2012-05-18 18:51 . 2012-05-18 18:51 145920 ----a-w- c:\windows\system32\iepeers.dll 2012-05-18 18:51 . 2012-05-18 18:51 135168 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-05-18 18:51 . 2012-05-18 18:51 12288 ----a-w- c:\windows\system32\mshta.exe 2012-05-18 18:51 . 2012-05-18 18:51 11776 ----a-w- c:\windows\SysWow64\mshta.exe 2012-05-18 18:51 . 2012-05-18 18:51 114176 ----a-w- c:\windows\system32\admparse.dll 2012-05-18 18:51 . 2012-05-18 18:51 111616 ----a-w- c:\windows\system32\iesysprep.dll 2012-05-18 18:51 . 2012-05-18 18:51 10752 ----a-w- c:\windows\system32\msfeedssync.exe 2012-05-18 18:51 . 2012-05-18 18:51 103936 ----a-w- c:\windows\system32\inseng.dll 2012-05-18 18:51 . 2012-05-18 18:51 101888 ----a-w- c:\windows\SysWow64\admparse.dll 2012-05-17 11:44 . 2012-07-03 20:08 927800 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4D1C0D37-DFFD-49A5-AC40-32EF86BAF2E0}\gapaengine.dll . . (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret ))))))))))))))))))))))))))))))))))))))))))))) . . *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 94208 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 94208 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 94208 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 94208 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Skype"="d:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-03 17417392] "Steam"="d:\program files (x86)\Steam\steam.exe" [2012-08-04 1353080] "Spotify"="c:\users\Tov Are\AppData\Roaming\Spotify\spotify.exe" [2012-07-24 7601880] "Spotify Web Helper"="c:\users\Tov Are\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-07-24 1193176] "WhatPulse"="d:\program files (x86)\WhatPulse\WhatPulse.exe" [2011-11-15 3990528] "Dxtory Update Checker 2.0"="c:\program files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe" [2010-10-17 93696] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288] "JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-01-19 43632] . c:\users\Tov Are\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dropbox.lnk - c:\users\Tov Are\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840] MetroTwit.appref-ms [2012-5-22 308] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Rainmeter.lnk - d:\program files\Rainmeter\Rainmeter.exe [2012-1-8 107720] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 SkypeUpdate;Skype Updater;d:\program files (x86)\Skype\Updater\Updater.exe [2012-07-03 160944] R3 BTCOM;Bluetooth Serial port driver;c:\windows\system32\DRIVERS\btcomport.sys [x] R3 BTCOMBUS;Bluetooth Serial Port Bus Service;c:\windows\system32\Drivers\btcombus.sys [x] R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\Drivers\btnetBus.sys [2010-04-06 30088] R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2012-06-22 79360] R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2012-06-22 79360] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-05-11 99384] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168] R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\Drivers\IvtBtBus.sys [2010-04-06 27016] R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys [2012-05-12 121416] R3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;c:\windows\system32\DRIVERS\netr7364.sys [2009-06-10 707072] R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 98688] R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-05-11 203320] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-06-05 147288] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-05-17 1255736] R4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-01 250056] S0 BtHidBus;Bluetooth HID Bus Service;c:\windows\System32\Drivers\BtHidBus.sys [2011-07-27 24456] S0 mv91xx;mv91xx;c:\windows\system32\DRIVERS\mv91xx.sys [2010-11-22 303408] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-05-26 283200] S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2012-06-05 224088] S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2012-06-05 130904] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [2010-08-12 133800] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-29 382272] S2 TeamViewer7;TeamViewer 7;d:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-07-16 2673064] S3 e1cexpress;Intel® PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520] S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-01-17 188224] S3 rt61x64;RT61 Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr6164.sys [2010-04-07 446304] S3 UHSfiltv;UHSfiltv;c:\windows\system32\drivers\UHSfiltv.sys [2011-07-15 23552] S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2012-06-05 166232] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] . . Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver) . 2012-08-05 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-17 08:46] . 2012-08-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2063373090-736875098-3998285179-1000Core.job - c:\users\Tov Are\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-17 11:20] . 2012-08-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2063373090-736875098-3998285179-1000UA.job - c:\users\Tov Are\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-17 11:20] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 97792 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 97792 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 97792 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-02-15 00:32 97792 ----a-w- c:\users\Tov Are\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-11-02 11545192] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 1271168] "EvtMgr6"="d:\program files\logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152] "itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2010-07-21 2306448] "XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-09-30 825184] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Tilleggsskanning ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com TCP: DhcpNameServer = 192.168.0.1 TCP: Interfaces\{B64DFD80-9338-4EC3-B16F-4DB2827D4421}: NameServer = 8.8.8.8,8.8.4.4 . - - - - TOMME PEKERE FJERNET - - - - . AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_blr.exe AddRemove-Theme Park World - d:\program files (x86)\Bullfrog\Theme Park World\Uninst.isu . . . --------------------- LÅSTE REGISTERNØKLER --------------------- . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions] @Denied: (2) (LocalSystem) "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07, 72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57 "{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23, 94,30,02,d1,0f,f1,da,12,24,73,56,27,d2 "{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db, df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd . [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration] @Denied: (2) (LocalSystem) "Timestamp"=hex:76,4e,7e,41,80,72,cd,01 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_265_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_265_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Tidspunkt ferdig: 2012-08-05 16:51:21 ComboFix-quarantined-files.txt 2012-08-05 14:51 . Pre-Run: 24 045 608 960 byte ledig Post-Run: 28 155 678 720 byte ledig . - - End Of File - - E5943105212B3C2D0A2D57ACDA972F8B Lenke til kommentar
mobile999 Skrevet 5. august 2012 Del Skrevet 5. august 2012 Avinstaller Java™ 6 Update 33 via kontrollpanel. Bruk Windows+R på tastaturet for å hente opp Kjør-boksen, skriv inn følgende linje (et mellomrom!) og trykk Ok: combofix /uninstall Kjør OTL fix: Obs! Når du trykker Run Fix som beskrevet nedenfor så vil/skal datamaskinen starte på nytt. Dobbel klikk OTL.exe for å starte programmet. Kopier innholdet av tekstboksen under og lim det inn i Custom Scans/Fixes boksen i OTL. (Pass på å få med deg absolutt alle tegn) :OTL @Alternate Data Stream - 141 bytes -> C:\ProgramData\TEMP:05E9FFE5 :Commands [emptytemp] [emptyjava] [emptyflash] Klikk Run Fix knappen. Klikk OK dersom OTL spør om å starte maskinen på nytt. Loggen vil dukke opp på skjermen etter omstarten. Post innholdet i denne loggen. Jeg regner ikke med at noe av dette løser problemene du har med ditt trådløse nettverk. Bruker du windows eller 3.parts programvare for å koble til trådløst? Lenke til kommentar
Mr. Hermonella Skrevet 5. august 2012 Forfatter Del Skrevet 5. august 2012 Jeg bruker windows sin innebygde programvare for og koble til internett. Logg: All processes killed ========== OTL ========== ADS C:\ProgramData\TEMP:05E9FFE5 deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 56478 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Eier ->Temp folder emptied: 0 bytes User: Public ->Temp folder emptied: 0 bytes User: Tov Are ->Temp folder emptied: 69511 bytes ->Temporary Internet Files folder emptied: 218908232 bytes ->Java cache emptied: 5597037 bytes ->Google Chrome cache emptied: 265215357 bytes ->Flash cache emptied: 113368 bytes User: UpdatusUser ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 56478 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 200704 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 11692 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36030957 bytes RecycleBin emptied: 12288810072 bytes Total Files Cleaned = 12 221,00 mb [EMPTYJAVA] User: All Users User: Default User: Default User User: Eier User: Public User: Tov Are ->Java cache emptied: 0 bytes User: UpdatusUser Total Java Files Cleaned = 0,00 mb [EMPTYFLASH] User: All Users User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Eier User: Public User: Tov Are ->Flash cache emptied: 0 bytes User: UpdatusUser ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.56.0 log created on 08052012_194436 Files\Folders moved on Reboot... C:\Users\Tov Are\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. PendingFileRenameOperations files... File C:\Users\Tov Are\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found! Registry entries deleted on Reboot... Lenke til kommentar
Mr. Hermonella Skrevet 5. august 2012 Forfatter Del Skrevet 5. august 2012 Er ikke sikker på om det er relevant men jeg har tatt noen speed tester gjennom dagen: en jeg tok i 5 tiden: http://www.speedtest.net/result/2102921482.png en jeg tok akkurat: http://www.speedtest.net/result/2102989467.png Er ikke sikker på opp hastigheten min men er helt sikker på at jeg han 8Mbps ned. Lenke til kommentar
mobile999 Skrevet 5. august 2012 Del Skrevet 5. august 2012 (endret) Start OTL og trykk Cleanup knappen. Restart pc'en hvis OTL ønsker dette. Hviken router har du og hvor gammel er den? Hvilke andre enheter har du som du evt. kan teste hastighet med? Endret 5. august 2012 av mobile999 Lenke til kommentar
Mr. Hermonella Skrevet 5. august 2012 Forfatter Del Skrevet 5. august 2012 Start OTL og trykk Cleanup knappen. Restart pc'en hvis OTL ønsker dette. Hviken router har du og hvor gammel er den? Hvilke andre enheter har du som du evt. kan teste hastighet med? Har en Dlink Dir-655 og den er vel 2-3- år gammel nå, En speedtest fra PCen til mor så ble detta resultatet: ping 26 download: 6.70Mbps Upload: 0.51 Mbps Og fra mobilen: ping: 35 Download: 6.58Mbps Upload: 0.64Mbps Lenke til kommentar
mobile999 Skrevet 5. august 2012 Del Skrevet 5. august 2012 Hvis du ikke allerede har gjort det, så foreslår jeg å teste i sikkermodus med nettverk. Ingen sikkerhetsprogrammer kjører i sikkermodus, så man skal ikke bruke det til annet enn nødstilfeller/feilsøking. Du kan evt. også teste med diagnoseoppstart: Trykk Windows+R tasten for å hente opp "Kjør" vinduet, skriv inn msconfig og trykk OK. Klikk Diagnoseoppstart (på Generelt fanen). Klikk deretter Tjenester fanen, klikk Aktiver alle, huk av for Skjul alle Microsoft-tjenester, klikk Deaktiver alle. Fjern haken for Skjul alle Microsoft-tjenester igjen og sjekk det er huket av for alle Microsoft tjenester. Klikk Oppstart fanen og huk av for Microsoft Security Client hvis du har denne. Klikk OK, restart maskinen og test hastigheten. Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå