Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

IRQL_NOT_LESS_OR_EQUAL

Started by Per Sindre , Dec 27 2010 08:12 PM

  • Please log in to reply

#1
Per Sindre
Posted 27 December 2010 - 08:12 PM

Per Sindre

    Member

  • Member
  • PipPip
  • 11 posts
OTL logfile created on: 28.12.2010 03:04:52 - Run 1
OTL by OldTimer - Version 3.2.18.0 Folder = C:\Users\Per_Killer\Downloads
Windows Vista Ultimate Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,00% Memory free
7,00 Gb Paging File | 6,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): d:\pagefile.sys 4986 10000 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 8,69 Gb Free Space | 17,79% Space Free | Partition Type: NTFS
Drive D: | 416,92 Gb Total Space | 50,56 Gb Free Space | 12,13% Space Free | Partition Type: NTFS
Drive E: | 702,31 Mb Total Space | 406,54 Mb Free Space | 57,89% Space Free | Partition Type: UDF
Drive H: | 12,66 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive K: | 1,84 Gb Total Space | 1,19 Gb Free Space | 64,60% Space Free | Partition Type: FAT

Computer Name: PERKILLER | User Name: Per_Killer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010.12.28 03:04:26 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Per_Killer\Downloads\OTL.exe
PRC - [2010.12.23 12:22:48 | 000,052,736 | ---- | M] (NirSoft) -- D:\Sindre\Prog\BlueScreenView\BlueScreenView.exe
PRC - [2010.12.10 01:08:12 | 000,910,808 | ---- | M] (Mozilla Corporation) -- D:\Sindre\Prog\Firefox\firefox.exe
PRC - [2010.10.16 12:42:38 | 000,792,680 | ---- | M] (NVIDIA Corporation) -- C:\Programfiler\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2010.08.29 19:32:06 | 000,047,432 | ---- | M] (Mobile Stream) -- C:\Programfiler\Mobile Stream\EasyTether\easytthr.exe
PRC - [2010.07.09 08:52:08 | 002,048,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Sindre\Prog\AVG\avgtray.exe
PRC - [2010.03.22 09:17:22 | 000,191,080 | ---- | M] (NVIDIA) -- C:\Programfiler\NVIDIA Corporation\nTune\nTuneService.exe
PRC - [2010.03.22 09:17:20 | 000,133,736 | ---- | M] (NVIDIA) -- C:\Programfiler\NVIDIA Corporation\nTune\nTuneCmd.exe
PRC - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- D:\Sindre\Prog\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009.12.17 23:32:30 | 000,497,856 | ---- | M] (Cisco Systems, Inc.) -- C:\Programfiler\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
PRC - [2009.11.06 13:24:52 | 000,195,176 | ---- | M] (NVIDIA) -- C:\Programfiler\NVIDIA Corporation\System Update\UpdateCenterService.exe
PRC - [2009.08.29 08:52:54 | 000,693,016 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Sindre\Prog\AVG\avgcsrvx.exe
PRC - [2009.08.29 08:52:54 | 000,486,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Sindre\Prog\AVG\avgrsx.exe
PRC - [2009.08.29 08:52:50 | 000,595,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Sindre\Prog\AVG\avgnsx.exe
PRC - [2009.08.29 08:52:47 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Sindre\Prog\AVG\avgemc.exe
PRC - [2009.08.29 08:52:42 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- D:\Sindre\Prog\AVG\avgwdsvc.exe
PRC - [2009.08.27 17:09:10 | 001,253,376 | ---- | M] (MAGIX AG) -- C:\Programfiler\Common Files\MAGIX Services\Database\bin\FABS.exe
PRC - [2008.10.29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008.01.19 08:38:38 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Programfiler\Windows Defender\MSASCui.exe
PRC - [2008.01.19 08:33:39 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\Programfiler\Windows Media Player\wmpnetwk.exe
PRC - [2008.01.19 08:33:39 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Programfiler\Windows Media Player\wmpnscfg.exe
PRC - [2007.12.17 04:02:28 | 004,718,592 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2006.12.05 15:05:18 | 000,112,152 | R--- | M] (InterVideo) -- C:\Programfiler\Common Files\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2006.05.10 13:57:44 | 000,606,208 | ---- | M] (Ralink Technology, Corp.) -- C:\Programfiler\RALINK\Common\RaUI.exe


========== Modules (SafeList) ==========

MOD - [2010.12.28 03:04:26 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Per_Killer\Downloads\OTL.exe
MOD - [2010.08.31 16:39:57 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2\comctl32.dll
MOD - [2009.08.29 08:52:54 | 000,011,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll


========== Win32 Services (SafeList) ==========

SRV - [2010.10.26 16:05:24 | 000,155,344 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe -- (Sony Ericsson PCCompanion)
SRV - [2010.10.06 11:31:48 | 000,517,448 | ---- | M] () [On_Demand | Stopped] -- D:\Sindre\Prog\AVG\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2010.03.22 09:17:22 | 000,191,080 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
SRV - [2010.03.18 15:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010.03.18 12:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.18 12:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010.03.18 12:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpActivator)
SRV - [2010.03.18 12:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetPipeActivator)
SRV - [2010.03.18 12:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetMsmqActivator)
SRV - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- D:\Sindre\Prog\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.12.17 23:32:30 | 000,497,856 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe -- (vpnagent)
SRV - [2009.11.18 08:49:58 | 000,320,760 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009.11.06 13:24:52 | 000,195,176 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe -- (UpdateCenterService)
SRV - [2009.08.29 08:52:47 | 000,908,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- D:\Sindre\Prog\AVG\avgemc.exe -- (avg8emc)
SRV - [2009.08.29 08:52:42 | 000,297,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- D:\Sindre\Prog\AVG\avgwdsvc.exe -- (avg8wd)
SRV - [2009.08.27 17:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Unknown | Running] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
SRV - [2009.07.26 06:43:14 | 000,025,832 | ---- | M] (BioWare) [Disabled | Stopped] -- D:\Sindre\Spill\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2009.07.22 00:49:00 | 003,240,876 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2008.08.26 01:26:18 | 000,242,424 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildGames\Game Console - WildGames\GameConsoleService.exe -- (GameConsoleService)
SRV - [2008.08.07 11:10:02 | 003,276,800 | ---- | M] (MAGIX®) [Disabled | Stopped] -- C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
SRV - [2008.01.19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programfiler\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2006.12.05 15:05:18 | 000,112,152 | R--- | M] (InterVideo) [Auto | Running] -- C:\Programfiler\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\EagleNT.sys -- (EagleNT)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2010.11.20 16:05:33 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010.11.20 16:05:33 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt)
DRV - [2010.10.22 07:23:05 | 010,084,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010.08.29 17:18:06 | 000,017,232 | ---- | M] (Mobile Stream) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\easytthr.sys -- (easytether)
DRV - [2010.06.28 13:33:42 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.12.17 23:18:50 | 000,020,152 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vpnva.sys -- (vpnva)
DRV - [2009.09.16 23:08:48 | 000,083,160 | ---- | M] (SoftCamp) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\scskusbs.sys -- (scskusbs)
DRV - [2009.09.16 23:08:48 | 000,019,504 | ---- | M] (SoftCamp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\scskusbf.sys -- (scskusbf)
DRV - [2009.09.15 14:59:28 | 000,038,248 | ---- | M] (NVIDIA Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvoclock.sys -- (nvoclock)
DRV - [2009.08.29 08:52:54 | 000,335,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009.08.29 08:52:54 | 000,027,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2009.08.28 19:42:44 | 000,017,408 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netaapl.sys -- (Netaapl)
DRV - [2009.07.14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.06 18:31:08 | 000,108,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2008.07.05 02:00:10 | 000,165,376 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2008.07.05 02:00:10 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008.06.30 21:43:41 | 000,016,608 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2008.05.02 21:46:00 | 006,554,496 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nv4_mini.sys -- (nv)
DRV - [2008.01.26 01:46:40 | 000,106,496 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008.01.19 06:53:23 | 000,073,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB-lyddriver (WDM)
DRV - [2007.12.20 11:02:06 | 002,032,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007.11.02 14:22:38 | 000,105,896 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s217unic.sys -- (s217unic) Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (WDM)
DRV - [2007.11.02 14:22:38 | 000,103,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s217mgmt.sys -- (s217mgmt) Sony Ericsson Device 217 USB WMC Device Management Drivers (WDM)
DRV - [2007.11.02 14:22:38 | 000,100,008 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s217obex.sys -- (s217obex)
DRV - [2007.11.02 14:22:38 | 000,024,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s217nd5.sys -- (s217nd5) Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (NDIS)
DRV - [2007.11.02 14:22:36 | 000,109,992 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s217mdm.sys -- (s217mdm)
DRV - [2007.11.02 14:22:36 | 000,083,496 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s217bus.sys -- (s217bus) Sony Ericsson Device 217 driver (WDM)
DRV - [2007.11.02 14:22:36 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s217mdfl.sys -- (s217mdfl)
DRV - [2007.05.11 16:28:30 | 000,357,376 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netr61.sys -- (rt61x86)
DRV - [2007.04.03 12:57:54 | 000,099,080 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s116unic.sys -- (s116unic) Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (WDM)
DRV - [2007.04.03 12:57:52 | 000,098,696 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s116obex.sys -- (s116obex)
DRV - [2007.04.03 12:57:52 | 000,023,176 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s116nd5.sys -- (s116nd5) Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (NDIS)
DRV - [2007.04.03 12:57:50 | 000,100,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s116mgmt.sys -- (s116mgmt) Sony Ericsson Device 116 USB WMC Device Management Drivers (WDM)
DRV - [2007.04.03 12:57:48 | 000,108,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s116mdm.sys -- (s116mdm)
DRV - [2007.04.03 12:57:48 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s116mdfl.sys -- (s116mdfl)
DRV - [2007.04.03 12:57:42 | 000,083,336 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s116bus.sys -- (s116bus) Sony Ericsson Device 116 driver (WDM)
DRV - [2006.11.02 10:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006.11.02 10:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006.11.02 10:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006.11.02 10:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006.11.02 10:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006.11.02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006.11.02 10:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006.11.02 10:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006.11.02 10:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006.11.02 10:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006.11.02 10:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006.11.02 10:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006.11.02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006.11.02 10:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006.11.02 10:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006.11.02 10:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006.11.02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006.11.02 10:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006.11.02 10:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006.11.02 10:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006.11.02 10:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006.11.02 10:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006.11.02 10:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006.11.02 10:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006.11.02 10:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006.11.02 10:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006.11.02 10:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006.11.02 10:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006.11.02 10:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006.11.02 10:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006.11.02 10:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006.11.02 10:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006.11.02 10:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006.11.02 10:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006.11.02 10:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006.11.02 09:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006.11.02 09:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006.11.02 09:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006.11.02 09:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006.11.02 09:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006.11.02 09:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006.11.02 08:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006.11.02 08:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel®
DRV - [2006.03.09 11:33:22 | 000,366,080 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rt61.sys -- (RT61)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.no...=no&source=iglk
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKCU\..\URLSearchHook: *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - D:\Sindre\Prog\AVG\Toolbar\IEToolbar.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.gmail.com/"
FF - prefs.js..extensions.enabledItems: [email protected]:4.0.27.0
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: [email protected]:1.0.0.071303000006

FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: D:\Sindre\Prog\AVG\Toolbar\Firefox\avg@igeared [2010.11.09 14:20:29 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.13\extensions\\Components: D:\Sindre\Prog\Firefox\components [2010.12.10 01:08:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.13\extensions\\Plugins: D:\Sindre\Prog\Firefox\plugins [2010.12.10 01:08:13 | 000,000,000 | ---D | M]

[2009.07.22 17:56:22 | 000,000,000 | ---D | M] -- C:\Users\Per_Killer\AppData\Roaming\mozilla\Extensions
[2010.12.28 02:31:04 | 000,000,000 | ---D | M] -- C:\Users\Per_Killer\AppData\Roaming\mozilla\Firefox\Profiles\k39p045a.default\extensions
[2010.12.20 12:33:27 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Per_Killer\AppData\Roaming\mozilla\Firefox\Profiles\k39p045a.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.10.06 17:32:00 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Per_Killer\AppData\Roaming\mozilla\Firefox\Profiles\k39p045a.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009.12.13 03:34:22 | 000,000,000 | ---D | M] -- C:\Users\Per_Killer\AppData\Roaming\mozilla\Firefox\Profiles\k39p045a.default\extensions\[email protected]
[2009.09.10 17:15:27 | 000,000,000 | ---D | M] -- C:\Users\Per_Killer\AppData\Roaming\mozilla\Firefox\Profiles\k39p045a.default\extensions\[email protected]

O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programfiler\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (Watch for Browser Events) - {42A7CE31-CEE7-4CCE-A060-A44A7E52E062} - D:\Sindre\Spill\Dark Ages\Keyboard Express 3\kie.dll (Insight Software Solutions)
O2 - BHO: (Påloggingshjelp for Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - D:\Sindre\Prog\AVG\Toolbar\IEToolbar.dll ()
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - D:\Sindre\Prog\Free Download Manager\iefdm2.dll ()
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - D:\Sindre\Prog\AVG\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - D:\Sindre\Prog\AVG\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG8_TRAY] D:\Sindre\Prog\AVG\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [EasyTether] C:\Program Files\Mobile Stream\EasyTether\easytthr.exe (Mobile Stream)
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\DisableRegistryTools: = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\DisableRegistryTools\ShowInfoTip: = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Download video with Free Download Manager - D:\Sindre\Prog\Free Download Manager\dlfvideo.htm ()
O8 - Extra context menu item: Nedlasting alle med Free Nedlasting Manager - D:\Sindre\Prog\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Nedlasting med Free Nedlasting Manager - D:\Sindre\Prog\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Nedlasting valgte med Free Nedlasting Manager - D:\Sindre\Prog\Free Download Manager\dlselected.htm ()
O9 - Extra Button: Blogg dette - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programfiler\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blogg dette i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programfiler\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Programfiler\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programfiler\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programfiler\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: gscdn.com ([rfonline-full] http in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zon...kr.cab56986.cab (Checkers Class)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} http://lads.myspace....ploader1006.cab (MySpace Uploader Control)
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zon...wn.cab56986.cab (Solitaire Showdown Class)
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} http://www.nvidia.co.../sysreqlab2.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {8C292180-8BB2-495F-B94B-89FE9F2B530A} http://rfonline-full..._downloader.cab (ccr_downloader Control)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ent/swflash.cab (Shockwave Flash Object)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zon...er.cab56986.cab (Minesweeper Flags Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - D:\Sindre\Prog\AVG\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programfiler\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programfiler\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programfiler\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Per_Killer\AppData\Roaming\Microsoft\Windows Photo Gallery\Bakgrunn for Windows Fotogalleri.jpg
O24 - Desktop BackupWallPaper: C:\Users\Per_Killer\AppData\Roaming\Microsoft\Windows Photo Gallery\Bakgrunn for Windows Fotogalleri.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.10.06 11:14:45 | 000,000,150 | R--- | M] () - H:\Autorun.inf -- [ CDFS ]
O33 - MountPoints2\{02f3b642-8d56-11dd-b3e7-001fd05018ec}\Shell - "" = AutoRun
O33 - MountPoints2\{02f3b642-8d56-11dd-b3e7-001fd05018ec}\Shell\applet\command - "" = autorun.exe /s
O33 - MountPoints2\{02f3b642-8d56-11dd-b3e7-001fd05018ec}\Shell\AutoRun\command - "" = F:\autorun\autorun.exe -- File not found
O33 - MountPoints2\{02f3b642-8d56-11dd-b3e7-001fd05018ec}\Shell\ereg\command - "" = F:\e_reg\register.exe -- File not found
O33 - MountPoints2\{02f3b642-8d56-11dd-b3e7-001fd05018ec}\Shell\install\command - "" = F:\install.exe -- File not found
O33 - MountPoints2\{02f3b642-8d56-11dd-b3e7-001fd05018ec}\Shell\readfile\command - "" = Notepad ReadMe.txt
O33 - MountPoints2\{29204daa-dad5-11df-a3fa-0008a1b5aaef}\Shell - "" = AutoRun
O33 - MountPoints2\{29204daa-dad5-11df-a3fa-0008a1b5aaef}\Shell\AutoRun\command - "" = I:\Startme.exe -- File not found
O33 - MountPoints2\{56b0f467-e0f7-11dd-85fe-001fd05018ec}\Shell - "" = AutoRun
O33 - MountPoints2\{56b0f467-e0f7-11dd-85fe-001fd05018ec}\Shell\AutoRun\command - "" = G:\autorun.exe -- File not found
O33 - MountPoints2\{7db8eda3-e27e-11df-a0dc-0008a1b5aaef}\Shell - "" = AutoRun
O33 - MountPoints2\{7db8eda3-e27e-11df-a0dc-0008a1b5aaef}\Shell\AutoRun\command - "" = J:\Startme.exe -- File not found
O33 - MountPoints2\{86d53262-f2f5-11df-8859-0008a1b5aaef}\Shell - "" = AutoRun
O33 - MountPoints2\{86d53262-f2f5-11df-8859-0008a1b5aaef}\Shell\AutoRun\command - "" = H:\Startme.exe -- [2010.05.10 14:20:08 | 000,683,728 | R--- | M] (Sony Ericsson)
O33 - MountPoints2\{a36dface-82b1-11df-a057-0008a1b5aaef}\Shell - "" = AutoRun
O33 - MountPoints2\{a36dface-82b1-11df-a057-0008a1b5aaef}\Shell\AutoRun\command - "" = G:\setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.12.24 09:37:34 | 000,000,000 | ---D | C] -- C:\Programfiler\Microsoft XNA
[2010.12.22 20:40:42 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.12.18 00:59:20 | 000,000,000 | -H-D | C] -- C:\ProgramData\{22E33049-CED4-463A-B8E5-41B356172B59}
[2010.12.18 00:56:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Norman
[2010.12.18 00:34:13 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2010.12.18 00:34:13 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010.12.18 00:34:12 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010.12.18 00:34:11 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2010.12.18 00:34:11 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2010.12.18 00:32:04 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2010.12.17 00:19:50 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.12.16 23:44:54 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010.12.16 23:44:49 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2010.12.16 23:31:46 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2010.12.16 23:25:28 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.12.16 23:25:24 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2010.12.16 23:25:24 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010.12.16 23:25:20 | 001,256,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010.12.16 23:25:08 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.12.16 23:25:00 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.12.16 23:25:00 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.12.16 23:25:00 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.12.16 23:24:46 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.12.16 23:24:06 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2010.12.16 23:24:06 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2010.12.16 23:24:06 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2010.12.16 23:24:06 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2010.12.16 23:24:06 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2010.12.16 23:24:06 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2010.12.16 23:24:06 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2010.12.16 23:23:45 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010.12.16 23:23:45 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010.12.16 23:23:45 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010.12.16 23:23:31 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2010.12.16 23:23:31 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2010.12.16 23:23:26 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.12.16 23:23:25 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.12.16 23:23:19 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.12.16 23:23:19 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.12.16 23:23:19 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.12.16 23:23:19 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.12.16 23:23:19 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.12.16 23:23:19 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010.12.16 23:23:19 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2010.12.16 23:23:19 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.12.16 23:23:19 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010.12.16 23:23:19 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.12.16 23:23:19 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010.12.16 23:23:14 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.12.16 23:23:13 | 000,511,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.12.16 23:23:11 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.12.16 23:23:10 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.12.16 23:23:10 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.12.16 23:23:07 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.12.16 23:23:00 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.12.16 23:23:00 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.12.16 23:22:59 | 000,329,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010.12.16 23:22:57 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.12.16 23:22:57 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.12.16 23:22:56 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.12.16 23:22:46 | 002,868,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2010.12.16 23:22:46 | 002,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2010.12.16 23:22:44 | 003,598,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.12.16 23:22:44 | 003,545,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.12.16 23:22:40 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2010.12.16 23:22:40 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2010.12.16 23:22:40 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2010.12.16 23:22:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010.12.16 23:22:35 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.12.16 23:22:35 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.12.16 23:22:35 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2010.12.16 23:22:30 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.12.16 23:22:26 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010.12.16 23:22:24 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.12.16 23:22:22 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.12.16 23:22:21 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.12.16 23:22:00 | 000,714,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2010.12.16 23:21:42 | 000,866,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.12.16 23:21:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010.12.16 23:21:31 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.12.16 23:21:30 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.12.16 23:21:29 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.12.16 23:20:09 | 000,310,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2010.12.16 23:20:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2010.12.16 23:20:05 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2010.12.16 23:20:05 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2010.12.16 23:19:31 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2010.12.16 23:09:59 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2010.12.16 08:02:52 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2010.12.16 08:02:52 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2010.12.16 08:02:30 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2010.12.16 08:02:30 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2010.12.16 08:02:30 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2010.12.16 08:02:14 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2010.12.16 08:02:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2010.12.16 01:24:01 | 000,000,000 | ---D | C] -- C:\Users\Per_Killer\AppData\Roaming\Darkfall
[2010.12.09 15:50:30 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2010.12.09 15:26:13 | 014,899,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2010.12.09 15:26:13 | 013,019,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2010.12.09 15:26:13 | 010,084,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2010.12.09 15:26:13 | 010,023,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2010.12.09 15:26:13 | 005,473,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2010.12.09 15:26:13 | 004,837,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2010.12.09 15:26:13 | 002,912,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2010.12.09 15:26:13 | 002,666,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2010.12.09 15:26:13 | 000,888,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco322050.dll
[2010.12.09 15:26:13 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322030.dll
[2010.12.09 15:26:13 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2010.12.09 15:26:13 | 000,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2010.12.09 14:18:18 | 000,000,000 | ---D | C] -- C:\Users\Per_Killer\AppData\Local\NVIDIA Corporation
[2010.12.09 14:16:19 | 000,000,000 | ---D | C] -- C:\Programfiler\NVIDIA Corporation
[2010.12.09 13:51:44 | 093,005,824 | ---- | C] (NVIDIA Corporation ) -- C:\Users\Per_Killer\Desktop\6.06_nvidia_system_tools.exe
[2010.12.08 14:46:10 | 000,000,000 | ---D | C] -- C:\Users\Per_Killer\AppData\Roaming\LolClient
[2010.12.08 14:28:33 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2010.12.08 14:28:33 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2010.12.08 14:28:32 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2010.12.08 14:28:32 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2010.12.08 14:28:29 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2010.12.07 15:36:39 | 000,000,000 | ---D | C] -- C:\Users\Per_Killer\AppData\Local\PMB Files
[2010.12.07 15:36:39 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2010.12.07 15:35:22 | 000,000,000 | ---D | C] -- C:\Programfiler\Pando Networks
[2010.12.01 14:22:03 | 000,000,000 | ---D | C] -- C:\Users\Per_Killer\Desktop\Ultimate NES Collection Top 100 NES Roms + 2 Emulators
[2010.11.30 01:18:29 | 000,000,000 | ---D | C] -- C:\Root
[2010.11.30 01:15:33 | 000,000,000 | ---D | C] -- C:\Users\Per_Killer\.android
[2010.11.29 23:57:59 | 000,000,000 | ---D | C] -- C:\Users\Per_Killer\Desktop\ROOT
[2010.11.29 22:13:46 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.11.29 22:13:46 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.11.29 22:13:46 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2008.12.02 16:54:42 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Per_Killer\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2010.12.28 02:57:38 | 000,004,640 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.12.28 02:57:38 | 000,004,640 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.12.28 02:55:01 | 000,000,256 | -H-- | M] () -- C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
[2010.12.28 02:49:59 | 000,000,860 | ---- | M] () -- C:\Users\Per_Killer\Desktop\BlueScreenView.lnk
[2010.12.28 02:31:02 | 000,000,302 | -H-- | M] () -- C:\Windows\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
[2010.12.28 02:23:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.12.28 02:23:27 | 000,627,296 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.12.28 02:23:27 | 000,492,162 | ---- | M] () -- C:\Windows\System32\perfh014.dat
[2010.12.28 02:23:27 | 000,116,120 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.12.28 02:23:27 | 000,093,840 | ---- | M] () -- C:\Windows\System32\perfc014.dat
[2010.12.28 02:20:01 | 000,000,302 | -H-- | M] () -- C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2010.12.28 02:18:59 | 2144,854,016 | -HS- | M] () -- C:\hiberfil.sys
[2010.12.28 02:15:00 | 000,001,034 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2607375068-3455517797-323644334-1003UA.job
[2010.12.28 02:15:00 | 000,000,982 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2607375068-3455517797-323644334-1003Core.job
[2010.12.28 02:11:01 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2607375068-3455517797-323644334-1000UA.job
[2010.12.27 20:11:00 | 000,000,970 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2607375068-3455517797-323644334-1000Core.job
[2010.12.24 09:40:10 | 000,001,799 | ---- | M] () -- C:\Users\Public\Desktop\Bloodline Champions.lnk
[2010.12.23 08:15:38 | 069,236,908 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2010.12.22 20:26:41 | 264,896,412 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.12.21 15:34:10 | 003,982,928 | ---- | M] (Spotify Ltd) -- C:\Users\Per_Killer\Desktop\spotify.exe
[2010.12.18 00:59:18 | 000,000,933 | ---- | M] () -- C:\Users\Public\Desktop\Norman Ad-Aware.lnk
[2010.12.18 00:48:29 | 000,286,640 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.12.18 00:21:40 | 000,000,617 | ---- | M] () -- C:\Users\Per_Killer\Desktop\Free Window Registry Repair.lnk
[2010.12.16 09:16:28 | 000,046,592 | ---- | M] () -- C:\Users\Per_Killer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.12.16 01:10:10 | 000,002,467 | ---- | M] () -- C:\Users\Per_Killer\Desktop\EasyTether.lnk
[2010.12.16 01:04:26 | 000,000,704 | ---- | M] () -- C:\Users\Public\Desktop\Darkfall EU.lnk
[2010.12.11 01:54:11 | 000,017,886 | ---- | M] () -- C:\Users\Per_Killer\Documents\notater.odt
[2010.12.09 15:50:31 | 000,001,356 | ---- | M] () -- C:\Users\Per_Killer\AppData\Local\d3d9caps.dat
[2010.12.09 13:52:45 | 093,005,824 | ---- | M] (NVIDIA Corporation ) -- C:\Users\Per_Killer\Desktop\6.06_nvidia_system_tools.exe
[2010.12.08 14:28:36 | 000,000,738 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2010.12.07 15:35:17 | 000,067,494 | ---- | M] () -- C:\Users\Per_Killer\Desktop\29480_10150183874145094_898355093_12319812_3776596_n.jpg
[2010.12.07 15:34:19 | 000,037,861 | ---- | M] () -- C:\Users\Per_Killer\Desktop\oi.jpg
[2010.12.06 17:44:46 | 000,000,023 | ---- | M] () -- C:\Windows\BlendSettings.ini
[2010.12.06 15:57:43 | 000,017,022 | ---- | M] () -- C:\Users\Per_Killer\Desktop\snusmumrik3.jpg
[2010.12.06 13:57:35 | 000,137,960 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010.12.06 13:57:26 | 000,235,248 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2010.11.30 13:24:32 | 000,002,045 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.30 01:49:14 | 000,000,689 | ---- | M] () -- C:\Users\Per_Killer\Desktop\cmd.exe - Snarvei.lnk
[2010.11.30 01:46:21 | 000,002,855 | ---- | M] () -- C:\Users\Per_Killer\Desktop\COMMAND.COM - Snarvei.pif

========== Files Created - No Company Name ==========

[2010.12.28 02:59:56 | 000,000,860 | ---- | C] () -- C:\Users\Per_Killer\Desktop\BlueScreenView.lnk
[2010.12.24 09:40:10 | 000,001,799 | ---- | C] () -- C:\Users\Public\Desktop\Bloodline Champions.lnk
[2010.12.18 00:59:18 | 000,000,933 | ---- | C] () -- C:\Users\Public\Desktop\Norman Ad-Aware.lnk
[2010.12.18 00:47:27 | 2144,854,016 | -HS- | C] () -- C:\hiberfil.sys
[2010.12.18 00:21:40 | 000,000,617 | ---- | C] () -- C:\Users\Per_Killer\Desktop\Free Window Registry Repair.lnk
[2010.12.16 23:22:41 | 002,501,921 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2010.12.16 06:00:24 | 000,175,263 | ---- | C] () -- C:\Users\Per_Killer\Desktop\Memtest86+ 4.10 USB Installer.exe
[2010.12.16 01:10:08 | 000,002,467 | ---- | C] () -- C:\Users\Per_Killer\Desktop\EasyTether.lnk
[2010.12.16 01:04:26 | 000,000,704 | ---- | C] () -- C:\Users\Public\Desktop\Darkfall EU.lnk
[2010.12.11 01:54:09 | 000,017,886 | ---- | C] () -- C:\Users\Per_Killer\Documents\notater.odt
[2010.12.09 15:26:13 | 000,004,962 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2010.12.08 14:28:36 | 000,000,738 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2010.12.07 15:35:12 | 000,067,494 | ---- | C] () -- C:\Users\Per_Killer\Desktop\29480_10150183874145094_898355093_12319812_3776596_n.jpg
[2010.12.07 15:34:15 | 000,037,861 | ---- | C] () -- C:\Users\Per_Killer\Desktop\oi.jpg
[2010.12.06 15:57:40 | 000,017,022 | ---- | C] () -- C:\Users\Per_Killer\Desktop\snusmumrik3.jpg
[2010.11.30 13:24:32 | 000,002,045 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.30 01:49:14 | 000,000,689 | ---- | C] () -- C:\Users\Per_Killer\Desktop\cmd.exe - Snarvei.lnk
[2010.11.30 01:46:21 | 000,002,855 | ---- | C] () -- C:\Users\Per_Killer\Desktop\COMMAND.COM - Snarvei.pif
[2010.10.20 15:56:27 | 000,000,418 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010.10.05 20:46:36 | 000,000,016 | ---- | C] () -- C:\Windows\System32\PCProxyOff.ini
[2010.10.05 20:46:27 | 000,073,728 | ---- | C] () -- C:\Windows\System32\VistaInfo32.dll
[2010.09.17 15:37:09 | 000,000,046 | ---- | C] () -- C:\Windows\Speed.INI
[2010.02.18 12:25:13 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll
[2010.01.08 11:02:38 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2010.01.08 11:02:38 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2010.01.08 11:02:38 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2009.12.21 00:44:49 | 000,290,897 | ---- | C] () -- C:\Windows\System32\Install6x.dll
[2009.09.02 04:35:36 | 000,000,000 | ---- | C] () -- C:\Windows\ipool.INI
[2009.07.16 01:38:29 | 000,000,510 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2009.02.02 02:58:38 | 000,000,329 | ---- | C] () -- C:\Windows\doom3.ini
[2009.01.14 04:02:16 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2009.01.06 04:08:00 | 000,138,056 | ---- | C] () -- C:\Users\Per_Killer\AppData\Roaming\PnkBstrK.sys
[2009.01.06 04:08:00 | 000,137,960 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009.01.03 22:55:06 | 000,000,811 | ---- | C] () -- C:\Windows\QIII.INI
[2008.12.02 16:55:43 | 000,000,671 | ---- | C] () -- C:\Users\Per_Killer\AppData\Roaming\vso_ts_preview.xml
[2008.12.02 16:55:22 | 000,000,034 | ---- | C] () -- C:\Users\Per_Killer\AppData\Roaming\pcouffin.log
[2008.12.02 16:54:42 | 000,087,608 | ---- | C] () -- C:\Users\Per_Killer\AppData\Roaming\inst.exe
[2008.12.02 16:54:42 | 000,007,887 | ---- | C] () -- C:\Users\Per_Killer\AppData\Roaming\pcouffin.cat
[2008.12.02 16:54:42 | 000,001,144 | ---- | C] () -- C:\Users\Per_Killer\AppData\Roaming\pcouffin.inf
[2008.11.30 02:31:45 | 000,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2008.11.30 02:31:43 | 000,348,160 | ---- | C] () -- C:\Windows\System32\cdga.dll
[2008.11.02 17:52:44 | 000,081,158 | ---- | C] () -- C:\Windows\System32\manage-bde.ini.en
[2008.10.23 17:53:39 | 000,025,655 | ---- | C] () -- C:\Users\Per_Killer\AppData\Roaming\phpdesigner2008.xml
[2008.10.20 15:40:16 | 000,000,000 | ---- | C] () -- C:\Windows\iSnooker.INI
[2008.10.20 14:52:18 | 000,000,042 | ---- | C] () -- C:\Windows\System32\kbpxvcd.dll
[2008.09.12 16:25:43 | 000,046,592 | ---- | C] () -- C:\Users\Per_Killer\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.07.05 02:00:10 | 000,165,376 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2008.07.05 02:00:10 | 000,018,048 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2008.07.01 21:15:06 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2008.06.30 20:53:01 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2008.06.30 18:55:26 | 000,001,356 | ---- | C] () -- C:\Users\Per_Killer\AppData\Local\d3d9caps.dat
[2008.05.02 21:46:00 | 001,703,936 | ---- | C] () -- C:\Windows\System32\nvwdmcpl.dll
[2008.05.02 21:46:00 | 001,486,848 | ---- | C] () -- C:\Windows\System32\nview.dll
[2008.05.02 21:46:00 | 001,019,904 | ---- | C] () -- C:\Windows\System32\nvwimg.dll
[2008.05.02 21:46:00 | 000,466,944 | ---- | C] () -- C:\Windows\System32\nvshell.dll
[2008.05.02 21:46:00 | 000,286,720 | ---- | C] () -- C:\Windows\System32\nvnt4cpl.dll
[2007.11.26 21:56:28 | 000,151,415 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2006.11.02 13:34:20 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2002.10.03 14:42:27 | 000,000,034 | ---- | C] () -- C:\Windows\Q3version.ini

========== Alternate Data Streams ==========

@Alternate Data Stream - 523 bytes -> C:\ProgramData\TEMP:05EE1EEF

< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP