API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 14th, 2012
108
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 65.64 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 12-04-2012 22:35:14 - Run 1
  2. OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Vedel\Skrivebord\Ny mappe
  3. Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 8.0.6001.18702)
  5. Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy
  6.  
  7. 3,37 Gb Total Physical Memory | 2,27 Gb Available Physical Memory | 67,23% Memory free
  8. 5,22 Gb Paging File | 4,12 Gb Available in Paging File | 79,04% Paging File free
  9. Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmer
  12. Drive C: | 28,62 Gb Total Space | 1,29 Gb Free Space | 4,50% Space Free | Partition Type: NTFS
  13.  
  14. Computer Name: SANZYYY | User Name: Vedel | Logged in as Administrator.
  15. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  16. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  17.  
  18. [color=#E56717]========== Processes (SafeList) ==========[/color]
  19.  
  20. PRC - [2012-04-12 22:28:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Vedel\Skrivebord\Ny mappe\OTL.exe
  21. PRC - [2012-04-09 22:28:49 | 001,224,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\chrome.exe
  22. PRC - [2012-04-04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe
  23. PRC - [2012-04-04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe
  24. PRC - [2012-03-26 21:00:41 | 000,180,648 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\GoogleCrashHandler.exe
  25. PRC - [2012-03-07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Programmer\AVAST Software\Avast\AvastUI.exe
  26. PRC - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Programmer\AVAST Software\Avast\AvastSvc.exe
  27. PRC - [2012-02-28 17:38:56 | 001,987,976 | ---- | M] (LogMeIn Inc.) -- C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe
  28. PRC - [2012-02-28 17:38:52 | 001,373,576 | ---- | M] (LogMeIn Inc.) -- C:\Programmer\LogMeIn Hamachi\hamachi-2.exe
  29. PRC - [2012-02-24 10:36:06 | 002,659,768 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe
  30. PRC - [2012-02-24 10:36:06 | 001,117,624 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe
  31. PRC - [2012-02-24 09:16:12 | 000,402,336 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe
  32. PRC - [2012-02-17 15:08:16 | 000,550,864 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
  33. PRC - [2012-01-17 12:07:54 | 000,252,296 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programmer\Fælles filer\Java\Java Update\jusched.exe
  34. PRC - [2011-10-08 06:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
  35. PRC - [2011-09-27 21:34:02 | 000,894,304 | ---- | M] (Spigot, Inc.) -- C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe
  36. PRC - [2011-08-09 17:56:40 | 000,417,112 | ---- | M] (IObit) -- C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe
  37. PRC - [2011-08-09 17:40:34 | 000,763,224 | ---- | M] (IObit) -- C:\Programmer\IObit\Advanced SystemCare 4\PMonitor.exe
  38. PRC - [2011-08-09 17:38:38 | 000,328,536 | ---- | M] (IObit) -- C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe
  39. PRC - [2007-12-14 14:28:02 | 000,716,800 | ---- | M] (Edimax Technology Co., Ltd) -- C:\Programmer\EDIMAX\Common\RaUI.exe
  40. PRC - [2006-03-02 14:00:00 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
  41.  
  42.  
  43. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  44.  
  45. MOD - [2012-04-12 10:26:32 | 001,755,136 | ---- | M] () -- C:\Programmer\AVAST Software\Avast\defs\12041200\algo.dll
  46. MOD - [2012-04-09 22:28:48 | 000,444,400 | ---- | M] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\ppgooglenaclpluginchrome.dll
  47. MOD - [2012-04-09 22:28:46 | 003,915,248 | ---- | M] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\pdf.dll
  48. MOD - [2012-04-09 22:27:21 | 000,122,880 | ---- | M] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\avutil-51.dll
  49. MOD - [2012-04-09 22:27:20 | 000,220,672 | ---- | M] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\avformat-53.dll
  50. MOD - [2012-04-09 22:27:19 | 001,747,456 | ---- | M] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\avcodec-53.dll
  51. MOD - [2012-04-09 21:42:11 | 008,743,584 | ---- | M] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\gcswf32.dll
  52. MOD - [2012-02-24 10:36:02 | 000,157,624 | ---- | M] () -- C:\Program Files\PC Tools\PC Tools Security\NetworkLayer\PCTCFHook.dll
  53. MOD - [2012-02-24 10:35:44 | 000,091,576 | ---- | M] () -- C:\Program Files\PC Tools\PC Tools Security\avengine\sdkBSCtrl.dll
  54. MOD - [2012-02-17 15:08:16 | 000,108,496 | ---- | M] () -- C:\Program Files\PC Tools\PC Tools Security\BDT\BSPatch.dll
  55. MOD - [2012-01-08 15:41:12 | 000,093,696 | ---- | M] () -- C:\Programmer\FileZilla FTP Client\fzshellext.dll
  56. MOD - [2011-10-08 06:50:00 | 000,355,432 | ---- | M] () -- C:\Programmer\NVIDIA Corporation\nView\nvShell.dll
  57. MOD - [2011-08-09 17:43:20 | 000,130,904 | ---- | M] () -- C:\Programmer\IObit\Advanced SystemCare 4\ASCv4ExtMenu.dll
  58. MOD - [2011-05-28 22:04:56 | 000,140,288 | ---- | M] () -- C:\Programmer\WinRAR\RarExt.dll
  59. MOD - [2010-11-08 17:15:40 | 000,296,448 | ---- | M] () -- C:\Programmer\Notepad++\NppShell_04.dll
  60. MOD - [2007-11-28 04:32:00 | 001,163,264 | ---- | M] () -- C:\Programmer\EDIMAX\Common\acAuth.dll
  61.  
  62.  
  63. [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
  64.  
  65. SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
  66. SRV - File not found [Disabled | Stopped] -- -- (Application Updater)
  67. SRV - [2012-04-04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programmer\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
  68. SRV - [2012-03-22 13:14:52 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Programmer\Fælles filer\Steam\SteamService.exe -- (Steam Client Service)
  69. SRV - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programmer\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  70. SRV - [2012-02-29 08:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Programmer\Skype\Updater\Updater.exe -- (SkypeUpdate)
  71. SRV - [2012-02-28 17:38:52 | 001,373,576 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Programmer\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
  72. SRV - [2012-02-24 10:36:06 | 001,117,624 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\PC Tools\PC Tools Security\pctsSvc.exe -- (sdCoreService)
  73. SRV - [2012-02-24 09:16:12 | 000,402,336 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\PC Tools\PC Tools Security\pctsAuxs.exe -- (sdAuxService)
  74. SRV - [2012-02-17 15:08:16 | 000,550,864 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe -- (Browser Defender Update Service)
  75. SRV - [2011-10-08 06:50:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Programmer\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
  76. SRV - [2011-08-09 17:38:38 | 000,328,536 | ---- | M] (IObit) [Auto | Running] -- C:\Programmer\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
  77. SRV - [2011-01-19 07:40:00 | 004,225,592 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
  78. SRV - [2002-12-17 18:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programmer\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR)
  79. SRV - [2002-12-17 18:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programmer\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR)
  80.  
  81.  
  82. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  83.  
  84. DRV - [2012-04-04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
  85. DRV - [2012-03-07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
  86. DRV - [2012-03-07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
  87. DRV - [2012-03-07 01:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
  88. DRV - [2012-03-07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
  89. DRV - [2012-03-07 01:01:39 | 000,095,704 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
  90. DRV - [2012-03-07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
  91. DRV - [2012-03-07 00:58:29 | 000,024,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
  92. DRV - [2012-02-24 10:36:44 | 000,185,560 | ---- | M] (PC Tools) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PCTSD.sys -- (PCTSD)
  93. DRV - [2011-12-01 16:07:06 | 000,909,728 | ---- | M] (PC Tools) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pctEFA.sys -- (pctEFA)
  94. DRV - [2011-12-01 16:07:06 | 000,342,168 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\pctDS.sys -- (pctDS)
  95. DRV - [2011-11-14 15:12:26 | 000,331,880 | ---- | M] (PC Tools) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\PCTCore.sys -- (PCTCore)
  96. DRV - [2011-09-28 13:14:02 | 000,056,840 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PCTBD.sys -- (PCTBD)
  97. DRV - [2011-08-30 17:28:46 | 006,435,432 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
  98. DRV - [2009-11-18 07:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
  99. DRV - [2009-11-18 07:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
  100. DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
  101. DRV - [2008-01-15 21:50:50 | 000,459,520 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
  102. DRV - [2004-08-13 20:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
  103.  
  104.  
  105. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  106.  
  107.  
  108. [color=#E56717]========== Internet Explorer ==========[/color]
  109.  
  110.  
  111. IE - HKCU\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
  112. IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - SOFTWARE\Classes\CLSID\{F3FEE66E-E034-436a-86E4-9690573BEE8A}\InprocServer32 File not found
  113. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  114. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
  115. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = :80
  116.  
  117. [color=#E56717]========== FireFox ==========[/color]
  118.  
  119. FF - prefs.js..browser.startup.homepage: "http://www.youtube.com/"
  120.  
  121. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
  122. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
  123. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.3.1: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
  124. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.3.1: C:\Programmer\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
  125. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
  126. FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: File not found
  127. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
  128. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
  129.  
  130. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Programmer\AVAST Software\Avast\WebRep\FF [2012-04-01 00:44:32 | 000,000,000 | ---D | M]
  131. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Programmer\fbphotozoom\fbphotozoom15.xpi [2012-03-26 22:25:47 | 000,102,423 | ---- | M] ()
  132. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\RewardsArcadeSuite\1950\Firefox [2012-03-29 15:37:14 | 000,000,000 | ---D | M]
  133. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16}: C:\Program Files\PC Tools\PC Tools Security\BDT\Firefox\ [2012-04-12 22:31:51 | 000,000,000 | ---D | M]
  134. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Programmer\Mozilla Firefox\components [2012-04-08 00:27:07 | 000,000,000 | ---D | M]
  135. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Programmer\Mozilla Firefox\plugins
  136.  
  137. [2012-04-08 00:34:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Vedel\Application Data\Mozilla\Extensions
  138. [2012-04-08 00:27:07 | 000,000,000 | ---D | M] (No name found) -- C:\Programmer\Mozilla Firefox\extensions
  139. [2012-03-13 06:39:39 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Programmer\mozilla firefox\components\browsercomps.dll
  140. [2012-03-13 06:38:32 | 000,002,252 | ---- | M] () -- C:\Programmer\mozilla firefox\searchplugins\bing.xml
  141. [2012-03-13 06:38:32 | 000,002,040 | ---- | M] () -- C:\Programmer\mozilla firefox\searchplugins\twitter.xml
  142.  
  143. [color=#E56717]========== Chrome ==========[/color]
  144.  
  145. CHR - default_search_provider: Google (Enabled)
  146. CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
  147. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
  148. CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
  149. CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\ppGoogleNaClPluginChrome.dll
  150. CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\pdf.dll
  151. CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\Application\18.0.1025.152\gcswf32.dll
  152. CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
  153. CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
  154. CHR - plugin: EA Battlefield Heroes Updater (Enabled) = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\gpdfjahpadlpfnfheehpddpcllihfkmm\5.0.127.0_0\npBFHUpdater.dll
  155. CHR - plugin: EA Battlefield Heroes Updater (Enabled) = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\gpdfjahpadlpfnfheehpddpcllihfkmm\5.0.127.0_0\BFHUpdater.exe
  156. CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programmer\Windows Media Player\npdrmv2.dll
  157. CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Programmer\Windows Media Player\npwmsdrm.dll
  158. CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Programmer\Windows Media Player\npdsplay.dll
  159. CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Update\1.3.21.111\npGoogleUpdate3.dll
  160. CHR - plugin: Java(TM) Platform SE 7 U3 (Enabled) = C:\Programmer\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll
  161. CHR - plugin: Java Deployment Toolkit 7.0.30.255 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
  162. CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
  163. CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
  164. CHR - Extension: YouTube = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
  165. CHR - Extension: Google Search = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
  166. CHR - Extension: Battlefield Heroes = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\gpdfjahpadlpfnfheehpddpcllihfkmm\5.0.127.0_0\
  167. CHR - Extension: avast! WebRep = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
  168. CHR - Extension: RewardsArcade Suite = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\ielefkgbofdpglioecfjcbikholflklb\1.17.28_0\
  169. CHR - Extension: Enhance Views Auto-Watch = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\ipohphkfcbeoiojnnpplnjmajbcnilof\0.7_0\
  170. CHR - Extension: I Want This = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\mpfapcdfbbledbojijcbcclmlieaoogk\1.17.43_0\
  171. CHR - Extension: FBPHOTOZOOM = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\mpieaakhacmfleokhjcjnpcnmnmpfkid\1.6_0\
  172. CHR - Extension: Gmail = C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
  173.  
  174. O1 HOSTS File: ([2012-04-08 23:34:02 | 000,000,229 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
  175. O1 - Hosts: 127.0.0.1 virustotal.com
  176. O1 - Hosts: 127.0.0.1 www.virustotal.com
  177. O1 - Hosts: 127.0.0.1 74.53.201.162
  178. O1 - Hosts: 127.0.0.1 jotti.org
  179. O1 - Hosts: 127.0.0.1 www.jotti.org
  180. O1 - Hosts: 127.0.0.1 virusscan.jotti.org
  181. O1 - Hosts: 127.0.0.1 66.36.241.92
  182. O2 - BHO: (PC Tools Browser Defender BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
  183. O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programmer\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  184. O2 - BHO: (Hjælp til tilmelding til Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
  185. O2 - BHO: (RewardsArcadeSuite) - {B6EF6C45-5E8D-4c3b-B580-A5073261A381} - C:\Programmer\RewardsArcadeSuite\RewardsArcadeSuite.dll (215 Apps)
  186. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmer\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation)
  187. O2 - BHO: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Programmer\YouTube Downloader Toolbar\IE\4.7\youtubedownloaderToolbarIE.dll File not found
  188. O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Programmer\Yontoo\YontooIEClient.dll (Yontoo LLC)
  189. O3 - HKLM\..\Toolbar: (PC Tools Browser Defender) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
  190. O3 - HKLM\..\Toolbar: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Programmer\YouTube Downloader Toolbar\IE\4.7\youtubedownloaderToolbarIE.dll File not found
  191. O4 - HKLM..\Run: [avast] C:\Programmer\AVAST Software\Avast\avastUI.exe (AVAST Software)
  192. O4 - HKLM..\Run: [ISTray] C:\Program Files\PC Tools\PC Tools Security\pctsGui.exe (PC Tools)
  193. O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
  194. O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Programmer\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
  195. O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Programmer\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
  196. O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
  197. O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
  198. O4 - HKLM..\Run: [nwiz] C:\Programmer\NVIDIA Corporation\nview\nwiz.exe ()
  199. O4 - HKLM..\Run: [SearchSettings] C:\Programmer\Fælles filer\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
  200. O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programmer\Fælles filer\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
  201. O4 - HKCU..\Run: [Advanced SystemCare 4] C:\Programmer\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)
  202. O4 - HKCU..\Run: [Clownfish] "C:\Programmer\Clownfish\Clownfish.exe" File not found
  203. O4 - HKCU..\Run: [Xvid] C:\Programmer\Xvid\CheckUpdate.exe File not found
  204. O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\Start\Wireless Utility.lnk = C:\Programmer\EDIMAX\Common\RaUI.exe (Edimax Technology Co., Ltd)
  205. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
  206. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
  207. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  208. O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Vedel\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
  209. O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Vedel\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
  210. O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
  211. O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
  212. O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programmer\Bonjour\mdnsNSP.dll (Apple Inc.)
  213. O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Programmer\Fælles filer\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
  214. O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Programmer\Fælles filer\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
  215. O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Programmer\Fælles filer\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
  216. O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Programmer\Fælles filer\PC Tools\Lsp\PCTLsp.dll (PC Tools Research Pty Ltd.)
  217. O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
  218. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03)
  219. O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
  220. O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
  221. O16 - DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03)
  222. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03)
  223. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
  224. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
  225. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 193.162.153.164 194.239.134.83
  226. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9E786FDF-274A-438D-99DB-AD259AEFCD0A}: DhcpNameServer = 193.162.153.164 194.239.134.83
  227. O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmer\Fælles filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
  228. O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmer\Fælles filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
  229. O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmer\Fælles filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
  230. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programmer\Fælles filer\Skype\Skype4COM.dll (Skype Technologies)
  231. O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
  232. O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
  233. O24 - Desktop Components:0 (Min aktuelle startside) - About:Home
  234. O24 - Desktop WallPaper: C:\Documents and Settings\Vedel\Skrivebord\Michaelvedeldone.png
  235. O24 - Desktop BackupWallPaper: C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Microsoft\Wallpaper1.bmp
  236. O32 - HKLM CDRom: AutoRun - 1
  237. O32 - AutoRun File - [2010-05-10 14:25:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
  238. O34 - HKLM BootExecute: (autocheck autochk *)
  239. O35 - HKLM\..comfile [open] -- "%1" %*
  240. O35 - HKLM\..exefile [open] -- "%1" %*
  241. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  242. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  243.  
  244. NetSvcs: 6to4 - File not found
  245. NetSvcs: AppMgmt - File not found
  246. NetSvcs: Ias - File not found
  247. NetSvcs: Iprip - File not found
  248. NetSvcs: Irmon - File not found
  249. NetSvcs: NWCWorkstation - File not found
  250. NetSvcs: Nwsapagent - File not found
  251. NetSvcs: WmdmPmSp - File not found
  252.  
  253. Drivers32: msacm.avis - C:\WINDOWS\System32\ff_acm.acm ()
  254. Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
  255. Drivers32: msacm.l3acm - C:\WINDOWS\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  256. Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
  257. Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
  258. Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
  259. Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll ()
  260. Drivers32: VIDC.FPS1 - C:\WINDOWS\System32\frapsvid.dll (Beepa P/L)
  261. Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
  262. Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
  263. Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
  264. Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
  265. Drivers32: vidc.tscc - C:\WINDOWS\system32\tsccvid.dll (TechSmith Corporation)
  266. Drivers32: vidc.XVID - C:\WINDOWS\System32\xvidvfw.dll ()
  267.  
  268. CREATERESTOREPOINT
  269. Restore point Set: OTL Restore Point
  270.  
  271. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  272.  
  273. [2012-04-12 22:31:49 | 000,056,840 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTBD.sys
  274. [2012-04-12 22:31:43 | 000,149,456 | ---- | C] (PC Tools) -- C:\WINDOWS\SGDetectionTool.dll
  275. [2012-04-12 22:31:40 | 002,250,704 | ---- | C] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDCore.dll
  276. [2012-04-12 22:31:39 | 001,681,360 | ---- | C] (Threat Expert Ltd.) -- C:\WINDOWS\PCTBDRes.dll
  277. [2012-04-12 22:27:45 | 000,253,352 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctgntdi.sys
  278. [2012-04-12 22:27:26 | 000,017,848 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctBTFix.sys
  279. [2012-04-12 22:27:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\PC Tools Security
  280. [2012-04-12 22:27:03 | 000,070,536 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplsg.sys
  281. [2012-04-12 22:21:24 | 000,909,728 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctEFA.sys
  282. [2012-04-12 22:21:23 | 000,342,168 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctDS.sys
  283. [2012-04-12 22:20:42 | 000,331,880 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTCore.sys
  284. [2012-04-12 22:20:41 | 000,162,584 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTAppEvent.sys
  285. [2012-04-12 22:19:48 | 000,185,560 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTSD.sys
  286. [2012-04-12 22:19:43 | 000,000,000 | ---D | C] -- C:\Programmer\Fælles filer\PC Tools
  287. [2012-04-12 22:18:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PC Tools
  288. [2012-04-12 22:18:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Application Data\TestApp
  289. [2012-04-12 22:08:09 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Vedel\Skrivebord\HijackThis.exe
  290. [2012-04-12 01:31:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Application Data\Malwarebytes
  291. [2012-04-12 01:31:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\Malwarebytes' Anti-Malware
  292. [2012-04-12 01:31:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes
  293. [2012-04-12 01:31:02 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
  294. [2012-04-12 01:31:02 | 000,000,000 | ---D | C] -- C:\Programmer\Malwarebytes' Anti-Malware
  295. [2012-04-12 01:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\DarkComet Remover
  296. [2012-04-09 13:59:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\Skype
  297. [2012-04-09 13:59:25 | 000,000,000 | ---D | C] -- C:\Programmer\Fælles filer\Skype
  298. [2012-04-09 13:59:18 | 000,000,000 | R--D | C] -- C:\Programmer\Skype
  299. [2012-04-08 19:58:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Menuen Start\Programmer\Counter-Strike Source
  300. [2012-04-08 19:40:27 | 000,000,000 | ---D | C] -- C:\Programmer\Counter-Strike Source
  301. [2012-04-08 19:13:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\Old css
  302. [2012-04-08 01:55:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\data
  303. [2012-04-08 00:30:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Application Data\Mozilla
  304. [2012-04-08 00:26:53 | 000,000,000 | ---D | C] -- C:\Programmer\Mozilla Firefox
  305. [2012-04-07 21:40:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\Ny mappe
  306. [2012-04-06 01:16:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\server
  307. [2012-04-05 23:17:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Dokumenter\Videoer
  308. [2012-04-03 13:59:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Dokumenter\Sony Media Libraries
  309. [2012-04-03 13:58:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Dokumenter\My Videos
  310. [2012-04-03 13:48:35 | 000,000,000 | ---D | C] -- C:\Programmer\Sony Setup
  311. [2012-04-02 14:30:32 | 000,000,000 | ---D | C] -- C:\Programmer\FileZilla FTP Client
  312. [2012-04-01 19:31:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Menuen Start\Programmer\Fraps
  313. [2012-04-01 19:31:15 | 000,000,000 | ---D | C] -- C:\Fraps
  314. [2012-04-01 15:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\LogMeIn Hamachi
  315. [2012-04-01 15:26:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\LogMeIn Hamachi
  316. [2012-04-01 15:26:42 | 000,000,000 | ---D | C] -- C:\Programmer\LogMeIn Hamachi
  317. [2012-04-01 01:34:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\iniuria_old_css
  318. [2012-04-01 00:03:03 | 000,000,000 | ---D | C] -- C:\Programmer\VALVe
  319. [2012-03-29 18:23:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\TeamViewer 7
  320. [2012-03-29 18:22:51 | 000,000,000 | ---D | C] -- C:\Programmer\TeamViewer
  321. [2012-03-29 18:08:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\Blackshades_4.8
  322. [2012-03-29 15:38:18 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\AI_RecycleBin
  323. [2012-03-29 15:38:04 | 000,000,000 | ---D | C] -- C:\Programmer\W3i
  324. [2012-03-29 15:38:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\W3i
  325. [2012-03-29 15:38:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\InstallIQ Updater
  326. [2012-03-29 15:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\RewardsArcadeSuite
  327. [2012-03-29 15:36:50 | 000,000,000 | ---D | C] -- C:\Programmer\RewardsArcadeSuite
  328. [2012-03-29 15:35:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\I Want This
  329. [2012-03-29 15:15:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Dokumenter\EpicBot
  330. [2012-03-29 15:15:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Application Data\EpicBot
  331. [2012-03-29 15:04:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\EpicBot
  332. [2012-03-29 15:04:27 | 000,000,000 | ---D | C] -- C:\Programmer\EpicBot
  333. [2012-03-29 15:04:16 | 000,000,000 | ---D | C] -- C:\Programmer\Free Offers from Freeze.com
  334. [2012-03-29 12:27:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Menuen Start\Programmer\Portforward.com
  335. [2012-03-29 12:27:44 | 000,000,000 | ---D | C] -- C:\Programmer\PFPortChecker
  336. [2012-03-29 11:47:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\APN
  337. [2012-03-29 11:31:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\Vitalwerks
  338. [2012-03-29 11:30:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Menuen Start\Programmer\No-IP DUC
  339. [2012-03-29 11:30:33 | 000,000,000 | ---D | C] -- C:\Programmer\No-IP
  340. [2012-03-29 11:27:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Application Data\Data
  341. [2012-03-26 22:33:10 | 000,000,000 | ---D | C] -- C:\Programmer\uTorrent
  342. [2012-03-26 22:32:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Application Data\uTorrent
  343. [2012-03-26 22:24:33 | 000,000,000 | ---D | C] -- C:\Programmer\Yontoo
  344. [2012-03-26 22:24:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Tarma Installer
  345. [2012-03-26 22:24:04 | 000,000,000 | ---D | C] -- C:\Programmer\fbphotozoom
  346. [2012-03-26 22:23:35 | 000,000,000 | ---D | C] -- C:\Programmer\1ClickDownload
  347. [2012-03-26 19:58:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\BOT-NAVS-BY-FLOW-AND-OPTIC
  348. [2012-03-25 14:51:40 | 000,000,000 | ---D | C] -- C:\GMouse20
  349. [2012-03-25 13:11:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\My items
  350. [2012-03-24 21:40:13 | 000,061,440 | ---- | C] (Gary's Hood) -- C:\Documents and Settings\Vedel\Skrivebord\rsclient.exe
  351. [2012-03-24 17:44:46 | 000,000,000 | ---D | C] -- C:\.codeusa_cache_32
  352. [2012-03-24 17:43:22 | 000,000,000 | ---D | C] -- C:\Programmer\CodeusaSoftware
  353. [2012-03-24 00:09:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\.voltage639_cache_32
  354. [2012-03-23 23:56:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\legacy
  355. [2012-03-23 15:33:00 | 000,283,648 | ---- | C] (Stirling Technologies, Inc.) -- C:\WINDOWS\uninst.exe
  356. [2012-03-23 15:32:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\WINDOWS
  357. [2012-03-23 15:07:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Dokumenter\AutomaticSolution Software
  358. [2012-03-17 00:19:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Skrivebord\PkHonor_client
  359. [2012-03-16 13:01:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\.neurox_666_cache_32
  360. [2012-03-16 12:44:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\.soulsplit
  361. [2012-03-16 12:27:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\.YOUR CLIENT NAME HERE_cache_32
  362. [2012-03-16 12:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\.TurmoilxReborn v2
  363. [2012-03-16 11:56:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\.DemonScape
  364. [2012-03-16 11:53:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\ahrims6677
  365. [2012-03-16 11:47:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\matrixCache10
  366. [2012-03-16 11:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\hades5
  367. [2012-03-16 02:10:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\pulseCache7048
  368. [2012-03-16 01:53:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\.dementhium_cache_32
  369. [2012-03-16 01:11:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\ExileCacheV5
  370. [2012-03-16 00:29:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\ZarporCache
  371. [2012-03-16 00:21:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vedel\Application Data\ZanarisV1
  372. [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  373. [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  374.  
  375. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  376.  
  377. [2012-04-12 22:37:08 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe
  378. [2012-04-12 22:27:27 | 000,001,797 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Skrivebord\PC Tools Spyware Doctor.lnk
  379. [2012-04-12 22:21:49 | 000,507,012 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB
  380. [2012-04-12 22:18:04 | 000,001,445 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\sdsetup_aff.exe.lnk
  381. [2012-04-12 22:06:34 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Vedel\Skrivebord\HijackThis.exe
  382. [2012-04-12 22:05:02 | 000,001,024 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-2049760794-682003330-1004UA.job
  383. [2012-04-12 21:42:51 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job
  384. [2012-04-12 21:42:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
  385. [2012-04-12 19:30:54 | 000,000,281 | RHS- | M] () -- C:\boot.ini
  386. [2012-04-12 01:54:36 | 000,002,229 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
  387. [2012-04-12 01:31:13 | 000,000,781 | ---- | M] () -- C:\Documents and Settings\Vedel\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
  388. [2012-04-11 23:04:38 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\Vedel\codeusa_codeusav3_preferences2.dat
  389. [2012-04-11 22:55:41 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Vedel\codeusa_codeusav3_preferences.dat
  390. [2012-04-11 21:58:50 | 007,063,435 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\eyehack_vs_eyehack_nocfg_de_dust2_11-04-2012_19-27-37.dem
  391. [2012-04-11 21:05:00 | 000,000,972 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1801674531-2049760794-682003330-1004Core.job
  392. [2012-04-11 14:20:00 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
  393. [2012-04-10 21:08:15 | 006,611,287 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\oldbrush10april.rar
  394. [2012-04-10 21:07:55 | 009,116,345 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\eyehack_vs_eyehack_pmapcw_de_dust2_10-04-2012_19-09-36.dem
  395. [2012-04-10 21:07:52 | 003,485,354 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\kgl_vs_eyehack_nocfg_de_nuke_10-04-2012_19-48-14.dem
  396. [2012-04-10 20:01:45 | 000,014,087 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\esteamation.cfg
  397. [2012-04-10 16:10:33 | 021,604,371 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\sanzyyyolddemos.rar
  398. [2012-04-10 15:09:53 | 000,002,316 | ---- | M] () -- C:\Documents and Settings\Vedel\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  399. [2012-04-10 15:09:52 | 000,002,338 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\Google Chrome.lnk
  400. [2012-04-10 14:22:20 | 000,013,686 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
  401. [2012-04-09 21:45:51 | 009,440,078 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\de_nuke_9april_2012.dem
  402. [2012-04-09 19:07:57 | 008,823,098 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\de_dust2_9april_2012_oldmix.dem
  403. [2012-04-08 23:34:02 | 000,000,229 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
  404. [2012-04-08 19:58:22 | 000,001,659 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\Counter-Strike Source.lnk
  405. [2012-04-08 17:59:56 | 000,073,728 | ---- | M] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  406. [2012-04-08 03:09:40 | 000,000,165 | ---- | M] () -- C:\Documents and Settings\Vedel\codeusa_codeusav2_preferences2.dat
  407. [2012-04-08 03:07:31 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Vedel\codeusa_codeusav2_preferences.dat
  408. [2012-04-08 00:27:11 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Vedel\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
  409. [2012-04-08 00:27:11 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Skrivebord\Mozilla Firefox.lnk
  410. [2012-04-07 20:55:47 | 000,536,114 | ---- | M] () -- C:\WINDOWS\System32\perfh006.dat
  411. [2012-04-07 20:55:47 | 000,519,788 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
  412. [2012-04-07 20:55:47 | 000,108,652 | ---- | M] () -- C:\WINDOWS\System32\perfc006.dat
  413. [2012-04-07 20:55:47 | 000,095,166 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
  414. [2012-04-06 17:06:26 | 000,001,640 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\mix.cfg
  415. [2012-04-06 17:06:26 | 000,001,640 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\brush.cfg
  416. [2012-04-05 23:41:05 | 000,405,752 | ---- | M] () -- C:\Documents and Settings\Vedel\Dokumenter\The Best Epic FAIL Videos On YouTube - Compilation_2.avi.sfk
  417. [2012-04-05 23:32:18 | 053,246,584 | ---- | M] () -- C:\Documents and Settings\Vedel\Dokumenter\The Best Epic FAIL Videos On YouTube - Compilation_2.avi
  418. [2012-04-05 18:34:37 | 005,292,053 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\brushcbble.dem
  419. [2012-04-05 01:20:33 | 011,648,058 | ---- | M] () -- C:\Documents and Settings\Vedel\Dokumenter\de_inferno_5april_2012.dem
  420. [2012-04-04 20:10:28 | 000,750,477 | ---- | M] () -- C:\Documents and Settings\Vedel\Dokumenter\demos.rar
  421. [2012-04-04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
  422. [2012-04-02 19:48:48 | 000,001,584 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\r4r.cfg
  423. [2012-04-02 03:52:26 | 000,084,439 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\hahhahahaha selfbust.JPG
  424. [2012-04-02 01:42:07 | 000,335,533 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\OLD CHEAT.rar
  425. [2012-04-01 23:34:57 | 000,026,735 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\logon_logo.png
  426. [2012-04-01 23:33:30 | 000,001,872 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\images.ICN
  427. [2012-04-01 19:31:22 | 000,000,488 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\Fraps.lnk
  428. [2012-04-01 04:56:06 | 000,000,578 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\hacker.cfg
  429. [2012-04-01 00:44:34 | 000,002,708 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
  430. [2012-04-01 00:33:58 | 000,333,991 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\iniuria_old_css.rar
  431. [2012-03-31 23:27:16 | 000,211,536 | ---- | M] () -- C:\Documents and Settings\Vedel\Application Data\MC1
  432. [2012-03-31 19:24:34 | 000,000,037 | ---- | M] () -- C:\Documents and Settings\Vedel\jagex_runescape_preferences.dat
  433. [2012-03-30 17:14:50 | 002,204,172 | ---- | M] () -- C:\Documents and Settings\Vedel\Application Data\RSBot.db
  434. [2012-03-29 19:58:36 | 000,000,040 | ---- | M] () -- C:\Documents and Settings\Vedel\jagex_cl_runescape_LIVE.dat
  435. [2012-03-29 18:28:09 | 000,004,398 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.msn
  436. [2012-03-29 18:23:24 | 017,893,382 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\My items.rar
  437. [2012-03-29 18:23:02 | 000,000,794 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Skrivebord\TeamViewer 7.lnk
  438. [2012-03-29 18:08:40 | 014,099,480 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\Blackshades_4.8.7z
  439. [2012-03-29 15:17:13 | 000,000,062 | ---- | M] () -- C:\Documents and Settings\Vedel\jagex_cl_runescape_LIVE1.dat
  440. [2012-03-29 11:30:34 | 000,000,629 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\DUC 3.0.lnk
  441. [2012-03-26 22:33:12 | 000,000,633 | ---- | M] () -- C:\Documents and Settings\Vedel\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
  442. [2012-03-25 18:27:38 | 000,000,109 | ---- | M] () -- C:\WINDOWS\GMouse.ini
  443. [2012-03-25 14:51:45 | 000,000,480 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\GhostMouse 2.0.lnk
  444. [2012-03-24 21:40:13 | 000,061,440 | ---- | M] (Gary's Hood) -- C:\Documents and Settings\Vedel\Skrivebord\rsclient.exe
  445. [2012-03-24 17:43:23 | 000,001,788 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\Codeusa.lnk
  446. [2012-03-24 16:41:52 | 000,000,117 | ---- | M] () -- C:\Documents and Settings\Vedel\YOUR CLIENT NAME HERE_runescape_preferences2.dat
  447. [2012-03-24 10:46:49 | 000,000,034 | ---- | M] () -- C:\Documents and Settings\Vedel\YOUR CLIENT NAME HERE_runescape_preferences.dat
  448. [2012-03-24 00:15:14 | 000,000,046 | ---- | M] () -- C:\Documents and Settings\Vedel\dementhium_runescape_preferences.dat
  449. [2012-03-24 00:15:05 | 000,000,117 | ---- | M] () -- C:\Documents and Settings\Vedel\dementhium_runescape_preferences2.dat
  450. [2012-03-17 22:17:39 | 002,579,334 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\vedel.rar
  451. [2012-03-16 13:08:39 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\Vedel\neurox_runescape_preferences2.dat
  452. [2012-03-16 13:07:01 | 000,000,035 | ---- | M] () -- C:\Documents and Settings\Vedel\neurox_runescape_preferences.dat
  453. [2012-03-16 11:56:09 | 002,921,937 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\demonscape.jar
  454. [2012-03-16 02:19:48 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Vedel\dementhium__preferences3.dat
  455. [2012-03-16 02:09:50 | 005,131,509 | ---- | M] () -- C:\Documents and Settings\Vedel\Skrivebord\Pulsescape.jar
  456. [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  457. [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  458.  
  459. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  460.  
  461. [2012-04-12 22:38:17 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\rmkjh7mv.exe
  462. [2012-04-12 22:31:47 | 000,767,952 | ---- | C] () -- C:\WINDOWS\BDTSupport.dll
  463. [2012-04-12 22:31:43 | 000,003,488 | ---- | C] () -- C:\WINDOWS\UDB.zip
  464. [2012-04-12 22:31:43 | 000,000,882 | ---- | C] () -- C:\WINDOWS\RegSDImport.xml
  465. [2012-04-12 22:31:43 | 000,000,879 | ---- | C] () -- C:\WINDOWS\RegISSImport.xml
  466. [2012-04-12 22:31:43 | 000,000,131 | ---- | C] () -- C:\WINDOWS\IDB.zip
  467. [2012-04-12 22:27:27 | 000,001,797 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Skrivebord\PC Tools Spyware Doctor.lnk
  468. [2012-04-12 22:21:32 | 000,507,012 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB
  469. [2012-04-12 22:18:04 | 000,001,445 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\sdsetup_aff.exe.lnk
  470. [2012-04-12 01:47:03 | 000,002,229 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
  471. [2012-04-12 01:31:13 | 000,000,781 | ---- | C] () -- C:\Documents and Settings\Vedel\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
  472. [2012-04-11 21:58:45 | 007,063,435 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\eyehack_vs_eyehack_nocfg_de_dust2_11-04-2012_19-27-37.dem
  473. [2012-04-10 21:08:08 | 006,611,287 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\oldbrush10april.rar
  474. [2012-04-10 21:07:48 | 009,116,345 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\eyehack_vs_eyehack_pmapcw_de_dust2_10-04-2012_19-09-36.dem
  475. [2012-04-10 21:07:48 | 003,485,354 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\kgl_vs_eyehack_nocfg_de_nuke_10-04-2012_19-48-14.dem
  476. [2012-04-10 20:01:45 | 000,014,087 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\esteamation.cfg
  477. [2012-04-09 21:45:37 | 009,440,078 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\de_nuke_9april_2012.dem
  478. [2012-04-09 19:15:41 | 008,823,098 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\de_dust2_9april_2012_oldmix.dem
  479. [2012-04-08 19:58:22 | 000,001,659 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\Counter-Strike Source.lnk
  480. [2012-04-08 18:29:13 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Vedel\codeusa_codeusav3_preferences2.dat
  481. [2012-04-08 18:25:25 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Vedel\codeusa_codeusav3_preferences.dat
  482. [2012-04-08 00:27:11 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\Vedel\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
  483. [2012-04-08 00:27:10 | 000,000,709 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menuen Start\Programmer\Mozilla Firefox.lnk
  484. [2012-04-08 00:27:10 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Skrivebord\Mozilla Firefox.lnk
  485. [2012-04-05 23:40:29 | 000,405,752 | ---- | C] () -- C:\Documents and Settings\Vedel\Dokumenter\The Best Epic FAIL Videos On YouTube - Compilation_2.avi.sfk
  486. [2012-04-05 23:31:09 | 053,246,584 | ---- | C] () -- C:\Documents and Settings\Vedel\Dokumenter\The Best Epic FAIL Videos On YouTube - Compilation_2.avi
  487. [2012-04-05 18:34:30 | 005,292,053 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\brushcbble.dem
  488. [2012-04-05 01:20:15 | 011,648,058 | ---- | C] () -- C:\Documents and Settings\Vedel\Dokumenter\de_inferno_5april_2012.dem
  489. [2012-04-04 20:10:17 | 000,750,477 | ---- | C] () -- C:\Documents and Settings\Vedel\Dokumenter\demos.rar
  490. [2012-04-03 16:06:51 | 000,001,640 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\mix.cfg
  491. [2012-04-03 15:31:39 | 021,604,371 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\sanzyyyolddemos.rar
  492. [2012-04-02 19:47:31 | 000,001,640 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\brush.cfg
  493. [2012-04-02 19:45:44 | 000,001,584 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\r4r.cfg
  494. [2012-04-02 03:52:26 | 000,084,439 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\hahhahahaha selfbust.JPG
  495. [2012-04-02 01:42:09 | 000,335,533 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\OLD CHEAT.rar
  496. [2012-04-01 23:35:01 | 000,026,735 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\logon_logo.png
  497. [2012-04-01 23:33:39 | 000,001,872 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\images.ICN
  498. [2012-04-01 19:31:22 | 000,000,488 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\Fraps.lnk
  499. [2012-04-01 04:56:06 | 000,000,578 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\hacker.cfg
  500. [2012-04-01 00:34:12 | 000,333,991 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\iniuria_old_css.rar
  501. [2012-03-30 19:04:03 | 000,211,536 | ---- | C] () -- C:\Documents and Settings\Vedel\Application Data\MC1
  502. [2012-03-29 19:58:13 | 002,204,172 | ---- | C] () -- C:\Documents and Settings\Vedel\Application Data\RSBot.db
  503. [2012-03-29 18:23:02 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Skrivebord\TeamViewer 7.lnk
  504. [2012-03-29 18:08:51 | 014,099,480 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\Blackshades_4.8.7z
  505. [2012-03-29 11:30:34 | 000,000,629 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\DUC 3.0.lnk
  506. [2012-03-27 11:35:36 | 017,893,382 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\My items.rar
  507. [2012-03-26 22:33:12 | 000,000,633 | ---- | C] () -- C:\Documents and Settings\Vedel\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
  508. [2012-03-25 14:51:45 | 000,000,480 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\GhostMouse 2.0.lnk
  509. [2012-03-25 14:51:41 | 000,000,516 | ---- | C] () -- C:\Documents and Settings\Vedel\Menuen Start\Programmer\GhostMouse 2.0.lnk
  510. [2012-03-24 17:46:23 | 000,000,165 | ---- | C] () -- C:\Documents and Settings\Vedel\codeusa_codeusav2_preferences2.dat
  511. [2012-03-24 17:44:47 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Vedel\codeusa_codeusav2_preferences.dat
  512. [2012-03-24 17:43:23 | 000,001,788 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\Codeusa.lnk
  513. [2012-03-23 15:33:27 | 000,000,109 | ---- | C] () -- C:\WINDOWS\GMouse.ini
  514. [2012-03-17 22:15:58 | 002,579,334 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\vedel.rar
  515. [2012-03-16 13:06:34 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Vedel\neurox_runescape_preferences2.dat
  516. [2012-03-16 13:01:17 | 000,000,035 | ---- | C] () -- C:\Documents and Settings\Vedel\neurox_runescape_preferences.dat
  517. [2012-03-16 12:34:14 | 000,000,117 | ---- | C] () -- C:\Documents and Settings\Vedel\YOUR CLIENT NAME HERE_runescape_preferences2.dat
  518. [2012-03-16 12:27:56 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Vedel\YOUR CLIENT NAME HERE_runescape_preferences.dat
  519. [2012-03-16 11:56:24 | 002,921,937 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\demonscape.jar
  520. [2012-03-16 02:19:48 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Vedel\dementhium__preferences3.dat
  521. [2012-03-16 02:10:53 | 005,131,509 | ---- | C] () -- C:\Documents and Settings\Vedel\Skrivebord\Pulsescape.jar
  522. [2012-03-16 02:00:42 | 000,000,117 | ---- | C] () -- C:\Documents and Settings\Vedel\dementhium_runescape_preferences2.dat
  523. [2012-03-16 01:53:18 | 000,000,046 | ---- | C] () -- C:\Documents and Settings\Vedel\dementhium_runescape_preferences.dat
  524. [2012-03-04 20:29:33 | 000,079,872 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
  525. [2012-03-04 20:12:19 | 000,645,632 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
  526. [2012-03-04 20:12:19 | 000,240,640 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
  527. [2011-12-30 17:40:21 | 000,138,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
  528. [2011-12-30 17:39:54 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
  529. [2011-12-30 17:39:46 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
  530. [2011-11-08 18:20:31 | 002,130,002 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
  531. [2011-08-26 17:44:02 | 000,025,244 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
  532. [2011-07-22 23:23:20 | 000,000,259 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
  533. [2011-06-21 20:13:12 | 000,000,134 | ---- | C] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\fusioncache.dat
  534. [2011-06-21 16:44:33 | 000,073,728 | ---- | C] () -- C:\Documents and Settings\Vedel\Lokale indstillinger\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  535. [2011-06-20 19:38:51 | 001,102,401 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
  536. [2011-06-20 17:00:01 | 000,286,200 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
  537. [2011-06-20 16:57:47 | 000,286,200 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
  538. [2011-06-20 16:57:47 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
  539. [2011-06-19 18:03:43 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
  540. [2011-06-19 18:00:49 | 002,047,352 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
  541. [2011-06-19 17:33:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
  542. [2011-06-19 17:26:22 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
  543. [2011-06-19 16:58:37 | 000,002,048 | ---- | C] () -- C:\WINDOWS\System32\rt73.bin
  544. [2011-06-19 16:53:12 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
  545. [2011-06-19 16:38:23 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
  546. [2011-06-19 16:38:21 | 000,011,649 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
  547. [2011-06-19 16:38:09 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
  548. [2011-06-19 16:25:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
  549. [2011-06-19 16:17:24 | 000,021,644 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
  550. [2011-02-23 02:57:00 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
  551. [2009-05-30 06:42:00 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll
  552. [2009-03-12 03:01:00 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll
  553. [2006-03-02 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
  554. [2006-03-02 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
  555. [2006-03-02 14:00:00 | 000,536,114 | ---- | C] () -- C:\WINDOWS\System32\perfh006.dat
  556. [2006-03-02 14:00:00 | 000,519,788 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
  557. [2006-03-02 14:00:00 | 000,284,912 | ---- | C] () -- C:\WINDOWS\System32\perfi006.dat
  558. [2006-03-02 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
  559. [2006-03-02 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
  560. [2006-03-02 14:00:00 | 000,108,652 | ---- | C] () -- C:\WINDOWS\System32\perfc006.dat
  561. [2006-03-02 14:00:00 | 000,095,166 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
  562. [2006-03-02 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
  563. [2006-03-02 14:00:00 | 000,034,026 | ---- | C] () -- C:\WINDOWS\System32\perfd006.dat
  564. [2006-03-02 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
  565. [2006-03-02 14:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
  566. [2006-03-02 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
  567. [2006-03-02 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
  568. [2006-03-02 14:00:00 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
  569. [2006-03-02 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
  570.  
  571. [color=#E56717]========== LOP Check ==========[/color]
  572.  
  573. [2012-02-01 14:55:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVAST Software
  574. [2011-11-08 20:00:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IObit
  575. [2011-08-18 05:36:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\MXSkypeRecorder
  576. [2012-03-04 19:40:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Red Giant Link
  577. [2012-03-04 19:38:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\RedGiant
  578. [2012-04-08 20:39:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony
  579. [2011-07-28 23:28:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\SwiftKit
  580. [2012-03-26 22:24:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Tarma Installer
  581. [2011-08-01 12:18:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TechSmith
  582. [2012-04-12 22:49:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
  583. [2012-03-29 15:38:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\W3i
  584. [2011-10-22 16:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\YouTube Downloader
  585. [2011-08-26 21:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
  586. [2012-04-11 19:39:51 | 000,000,000 | R--D | M] -- C:\Documents and Settings\Vedel\Application Data\.minecraft
  587. [2012-02-26 13:55:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\.spoutcraft
  588. [2012-03-29 15:58:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Data
  589. [2011-11-05 15:57:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\DVDVideoSoft
  590. [2011-11-05 15:57:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\DVDVideoSoftIEHelpers
  591. [2012-03-29 15:16:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\EpicBot
  592. [2012-04-11 23:21:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\FileZilla
  593. [2011-11-05 23:27:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\FireShot
  594. [2011-11-12 01:59:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\IObit
  595. [2012-03-28 15:27:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Mumble
  596. [2012-01-04 18:43:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Notepad++
  597. [2012-03-13 20:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Oracle
  598. [2011-06-20 18:51:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Publish Providers
  599. [2012-01-04 15:16:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\pymclevel
  600. [2012-03-04 19:41:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Red Giant Link
  601. [2012-02-16 22:46:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\redsn0w
  602. [2011-10-27 19:05:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Search Settings
  603. [2012-03-04 21:05:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Sony
  604. [2011-06-20 17:57:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\Sony Setup
  605. [2012-03-29 18:23:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\TeamViewer
  606. [2012-04-12 22:18:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\TestApp
  607. [2011-11-20 21:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\TS3Client
  608. [2012-04-01 21:45:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\uTorrent
  609. [2011-12-22 13:48:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\VOIPlay
  610. [2011-10-01 22:30:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\YouTube Downloader
  611. [2012-03-16 00:45:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vedel\Application Data\ZanarisV1
  612. [2012-04-12 21:42:51 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\ASC4_PerformanceMonitor.job
  613. [2012-03-04 19:40:43 | 000,000,416 | ---- | M] () -- C:\WINDOWS\Tasks\At1.job
  614.  
  615. [color=#E56717]========== Purity Check ==========[/color]
  616.  
  617.  
  618.  
  619. [color=#E56717]========== Custom Scans ==========[/color]
  620.  
  621.  
  622. [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
  623. [2010-05-10 14:25:35 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
  624. [2012-04-12 19:30:54 | 000,000,281 | RHS- | M] () -- C:\boot.ini
  625. [2006-03-02 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
  626. [2010-05-10 14:25:35 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
  627. [2010-05-10 14:25:35 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
  628. [2010-05-10 14:25:35 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
  629. [2006-03-02 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
  630. [2010-06-02 13:21:39 | 000,250,576 | RHS- | M] () -- C:\ntldr
  631. [2012-04-12 21:42:41 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
  632. [2011-07-31 21:01:23 | 000,000,489 | ---- | M] () -- C:\profile_43.txt
  633.  
  634. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  635.  
  636. [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
  637. [2011-06-19 18:00:00 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
  638. [2011-06-19 18:00:00 | 000,634,880 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
  639. [2011-06-19 17:59:59 | 000,446,464 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
  640.  
  641. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color]
  642.  
  643. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]
  644. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2012-04-12 07:18:15
  645.  
  646. [color=#E56717]========== Alternate Data Streams ==========[/color]
  647.  
  648. @Alternate Data Stream - 164 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:DFC5A2B2
  649. @Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:430C6D84
  650. @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:888AFB86
  651.  
  652. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!