Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Internet ist verdammt langsam

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 13.02.2011, 16:38   #1
-D3nYo-
 
Internet ist verdammt langsam - Unglücklich

Internet ist verdammt langsam



Guten Tag,

dies ist mein erster Post und ich versuche mich an die Regeln zu halten. Falls etwas falsch meinerseits ist, bitte nicht überreagieren, sondern mir den Tip geben wie es besser gemacht wird bitte

Erst einmal zu mir. Ich bin ein 26 jähriger junger Mann, welcher doch schon ein wenig Ahnung vom PC hat. Ich helfe wo ich kann und bin auch immer für jede Hilfe dankbar.

Nun zu meinem Problem.

Mein INternet auf meinem Laptop hier ist verdaaaaaamt langsam. Per Speedtest habe ich im Moment nur einen Download von 131kbs udn einen upload von 151kbs. Teilweise braucht das Gerät über 4 oder 5 Minuten zum Laden einer Seite. Lediglich Google wird schnell geladen Da die werde, zumindest der Download wert, einem DialUp gleichen, muss da etwas nicht stimmen. Zumal mein PC auch schneller läd und uploaded.

Ich habe Virenscanner laufen lassen, ich habe versucht zu tunen, nix klappt.
Ich habe diesen Laptop von einem Kollegen bekommen, welcher mal absolut NULL AHNUNG davon hat. Aber bevor ich das System komplett platt mache, wollte ich erstmal einen HiJack Log posten, den eventuell jemand von euch auswerten würde.

Hier der LOG:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:26:10, on 14.02.2011
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18542)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Acer Bio Protection\PdtWzd.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Users\Drake\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Acer Bio Protection\PwdBank.exe
C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Logitech\G35\G35.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Apoint2K\HidFind.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ManyCam 2.4\ManyCam.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\explorer.exe
C:\Users\Drake\Documents\HiJackThis204.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.facemoods.com/?a=stonicde
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://start.facemoods.com/?a=stonicde&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = socks=
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: Softonic Deutsch Toolbar - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Program Files\Softonic_Deutsch\tbSof1.dll
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Softonic Deutsch Toolbar - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Program Files\Softonic_Deutsch\tbSof1.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Ask.com Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: kikin Plugin - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files\kikin\ie_kikin.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Ask.com Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Softonic Deutsch Toolbar - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Program Files\Softonic_Deutsch\tbSof1.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Steganos Internet Anonym - {00000000-5736-4205-0008-f7ed0776fb27} - c:\program files\steganos internet anonym 2006\sia2006iep.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodsTlbr.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [VitaKeyPdtWzd] c:\Program Files\Acer Bio Protection\PdtWzd.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -k
O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Logitech G35] C:\Program Files\Logitech\G35\G35.exe
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [facemoods] "C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe" /md I
O4 - HKLM\..\RunOnce: [Cubase SX Update] C:\PROGRA~1\STEINB~1\CUBASE~1\CubaseSXUpd.exe
O4 - HKLM\..\RunOnce: [BrowserBallot] browserchoice.exe
O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam 2.4\ManyCam.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Driver Updater] "C:\Program Files\Carambis\Driver Updater\dupdater.exe" /minimized
O4 - HKCU\..\Run: [Sony Ericsson PC Companion] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [SIA2006] "C:\Program Files\Steganos Internet Anonym 2006\SIA2006.exe" -firstboot (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [SIA2006] "C:\Program Files\Steganos Internet Anonym 2006\SIA2006.exe" -firstboot (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\RunOnce: [SIA2006] "C:\Program Files\Steganos Internet Anonym 2006\SIA2006.exe" -firstboot (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SIA2006] "C:\Program Files\Steganos Internet Anonym 2006\SIA2006.exe" -firstboot (User 'Default user')
O4 - Startup: DSL-Manager.lnk = ?
O4 - Global Startup: TotalMedia Server.lnk = C:\Program Files\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
O9 - Extra 'Tools' menuitem: My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files\kikin\ie_kikin.dll
O9 - Extra button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files\Acer Bio Protection\PwdBank.exe
O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: Google Update Service (gupdate1ca56908ca67900) (gupdate1ca56908ca67900) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: EgisTec Service (IGBASVC) - Egis Technology Inc. - c:\Program Files\Acer Bio Protection\BASVC.exe
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
O23 - Service: DSL-Manager (TDslMgrService) - T-Systems Enterprise Services GmbH - C:\Program Files\DSL-Manager\DslMgrSvc.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 14162 bytes


So, hoffe jemand kann mir da weiter helfen.
Soweit schonmal vielen Dank fürs lesen und vielen Dank für Antworten und Hilfen!!!

LG: Dennis

Alt 13.02.2011, 21:37   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



Hallo und

Bitte routinemäßig einen Vollscan mit Malwarebytes machen und Log posten.
Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss!

Falls Logs aus älteren Scans mit Malwarebytes vorhanden sind, bitte auch davon alle posten!

Danach OTL:

Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
  • Doppelklick auf die OTL.exe
  • Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
  • Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
  • Unter Extra Registry, wähle bitte Use SafeList
  • Klicke nun auf Run Scan links oben
  • Wenn der Scan beendet wurde werden 2 Logfiles erstellt
  • Poste die Logfiles hier in den Thread.
__________________

__________________

Alt 14.02.2011, 16:13   #3
-D3nYo-
 
Internet ist verdammt langsam - Beitrag

Internet ist verdammt langsam



Hi Cosinus ...

hab das mal alles gemacht was du verlangst

Also .... Malware Log habe ich da.

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 5760

Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005

15.02.2011 15:45:28
mbam-log-2011-02-15 (15-45-28).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 342019
Laufzeit: 1 Stunde(n), 25 Minute(n), 9 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 11

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$R0C8UEX\netload.in\asmcaptcha\test.exe (Malware.Packer) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$R3V2YN1\fritz!box\nc.exe (PUP.KeyLogger) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$REK1976\fritz!box\nc.exe (PUP.KeyLogger) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$RGXWBCD\netload.in\asmcaptcha\test.exe (Malware.Packer) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$RKZ4W1M\netload.in\asmcaptcha\test.exe (Malware.Packer) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$RMQA4BG\fritz!box\nc.exe (PUP.KeyLogger) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$RMW3GKE\netload.in\asmcaptcha\test.exe (Malware.Packer) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$RORIJ41\netload.in\asmcaptcha\test.exe (Malware.Packer) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-805595961-3270918655-2816535499-1000\$RQ82X8L\fritz!box\nc.exe (PUP.KeyLogger) -> Quarantined and deleted successfully.
c:\Users\Drake\downloads\dead.space.generic_keygen-fff\fff-ea184.exe (Trojan.Orsam) -> Quarantined and deleted successfully.
c:\Users\Drake\downloads\the.sims.2.mansion.and.garden.stuff.generic_keygen-fff\fff-ea189.exe (Trojan.Orsam) -> Quarantined and deleted successfully.


Habe alle entfernt, also unten links auf den Button dann geklickt gehabt, rebootet und fedisch denk ich.


Dann habe ich OTL laufen lassen.
Einstellungen wie von dir verordnet, nur hatte ich zweifel bei der Einstellung zu Datei Alter. hab das mal von 30 auf 360 tage gesetzt. Wenn das falsch war bitte korrigieren, wobei ich glaube das das am Ergebnis nichts ändern sollte.
Nun macht der aber schon den dritten Dur .... korrigiere. Vierten Durchgang und gibt mir ständig neue Logs raus. Immer jeweils 2 Stück. Ich poste erstmal die ersten zwei. Wenn du die restlichen auch noch sehen magst, dann poste ich die ebenfalls.
__________________

Alt 14.02.2011, 16:18   #4
-D3nYo-
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



Hier die 2 Logs!OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 15.02.2011 15:56:31 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Users\Drake\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 52,00% Memory free
7,00 Gb Paging File | 6,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): c:\pagefile.sys 4597 6000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 452,99 Gb Total Space | 298,11 Gb Free Space | 65,81% Space Free | Partition Type: NTFS
 
Computer Name: DRAKE-PC | User Name: Drake | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Programme\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\TMonitor.exe ()
PRC - C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Programme\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Programme\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
PRC - C:\Programme\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
PRC - C:\Users\Drake\AppData\Local\Temp\RtkBtMnt.exe (Realtek Semiconductor Corp.)
PRC - C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Programme\Logitech\G35\G35.exe (Logitech(c))
PRC - C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe ()
PRC - C:\Programme\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Programme\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
PRC - C:\Programme\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
PRC - C:\Programme\Acer\Acer PowerSmart Manager\ePowerTray.exe (Acer Incorporated)
PRC - C:\Programme\Acer\Acer PowerSmart Manager\ePowerSvc.exe (Acer Incorporated)
PRC - C:\Programme\Acer\Acer PowerSmart Manager\ePowerEvent.exe (Acer Incorporated)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
PRC - C:\Programme\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
PRC - C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
PRC - c:\Programme\Acer Bio Protection\BASVC.exe (Egis Technology Inc.)
PRC - c:\Programme\Acer Bio Protection\CompPtcVUI.exe (Egis Technology Inc.)
PRC - C:\Programme\Apoint2K\Hidfind.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
PRC - C:\Programme\ICQ6Toolbar\ICQ Service.exe ()
PRC - C:\Programme\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe (NewTech Infosystems, Inc.)
PRC - C:\Windows\PLFSetI.exe ()
PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems)
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Defender\MSASCui.exe (Microsoft Corporation)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
MOD - C:\Programme\Acer\Acer PowerSmart Manager\SysHook.dll (Acer Incorporated)
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (TuneUp.Defrag) -- C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (Sony Ericsson PCCompanion) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe (Avanquest Software)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (CLHNService) -- C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe ()
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (ePowerSvc) -- C:\Programme\Acer\Acer PowerSmart Manager\ePowerSvc.exe (Acer Incorporated)
SRV - (NTI IScheduleSvc) -- C:\Programme\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
SRV - (IGBASVC) -- c:\Programme\Acer Bio Protection\BASVC.exe (Egis Technology Inc.)
SRV - (RS_Service) -- C:\Programme\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
SRV - (ICQ Service) -- C:\Programme\ICQ6Toolbar\ICQ Service.exe ()
SRV - (NTISchedulerSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe (NewTech Infosystems, Inc.)
SRV - (NTIBackupSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe (NewTech InfoSystems, Inc.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (AnyDVD) -- C:\Windows\System32\drivers\AnyDVD.sys (SlySoft, Inc.)
DRV - (ArcSec) -- C:\Windows\System32\drivers\ArcSec.sys ()
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\Windows\System32\drivers\eamon.sys (ESET)
DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) -- C:\Programme\Acer Arcade Deluxe\PlayMovie\000.fcl (CyberLink Corp.)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys ()
DRV - (LADF_SBVM) -- C:\Windows\System32\drivers\ladfSBVMi386.sys (Logitech)
DRV - (LADF_DHP2) -- C:\Windows\System32\drivers\ladfDHP2i386.sys (Logitech)
DRV - (usbaudio) USB-Audiotreiber (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (WinUSB) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (AlfaFF) -- C:\Windows\system32\drivers\AlfaFF.sys (Alfa Corporation)
DRV - (int15) -- C:\Windows\System32\drivers\int15.sys ()
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NTIDrvr) -- C:\Windows\System32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (FPSensor) EgisTech-Corp Fingerprint Reader Driver (FPSensor.sys) -- C:\Windows\System32\drivers\FPSensor.sys (Egis)
DRV - (RTSTOR) -- C:\Windows\System32\drivers\RTSTOR.sys (Realtek Semiconductor Corp.)
DRV - (hidshim) -- C:\Windows\System32\drivers\hidshim.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (nuvotonhidgeneric) -- C:\Windows\System32\drivers\nuvotonhidgeneric.sys (Nuvoton Technology Corporation)
DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (k57nd60x) Broadcom NetLink (TM) -- C:\Windows\System32\drivers\k57nd60x.sys (Broadcom Corporation)
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (NSCIRDA) -- C:\Windows\System32\drivers\nscirda.sys (National Semiconductor Corporation)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (ManyCam) -- C:\Windows\System32\drivers\ManyCam.sys (ManyCam LLC.)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (sscdmdm) -- C:\Windows\System32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\Windows\System32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\Windows\System32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (DKbFltr) -- C:\Windows\System32\drivers\DKbFltr.sys (Dritek System Inc.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (libusb0) -- C:\Windows\System32\drivers\libusb0.sys ()
DRV - (Nsynas32) -- C:\Windows\System32\drivers\NSynas32.sys (Syncrosoft Hard- und Software GmbH)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://start.facemoods.com/?a=stonicde&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.facemoods.com/?a=stonicde
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=
 
========== FireFox ==========
 
 
 
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010.06.05 16:50:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.03.21 12:31:10 | 000,000,000 | ---D | M]
 
[2009.07.25 21:26:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Extensions
[2011.02.15 09:39:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009.07.28 19:59:09 | 000,002,236 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\askcom.xml
[2009.05.19 10:24:54 | 000,000,894 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\conduit.xml
[2009.08.01 01:36:31 | 000,002,399 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\daemon-search.xml
[2011.02.13 07:03:27 | 000,000,955 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\icqplugin.xml
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2009.07.27 18:47:47 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2009.07.30 20:23:46 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.07.12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll
[2010.12.26 22:19:16 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.12.26 22:19:16 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.09.28 17:14:06 | 000,002,040 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\fcmdSrchstonicde.xml
[2010.12.26 22:19:16 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.12.26 22:19:16 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.12.26 22:19:16 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Programme\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Programme\kikin\ie_kikin.dll (kikin)
O3 - HKLM\..\Toolbar: (Steganos Internet Anonym) - {00000000-5736-4205-0008-f7ed0776fb27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Programme\facemoods.com\facemoods\1.4.17.3\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Steganos Internet Anonym) - {00000000-5736-4205-0008-F7ED0776FB27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Softonic Deutsch Toolbar) - {8DBB6D8E-E4A6-4E3B-9753-AF78B226441C} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe (Acer Incorporated)
O4 - HKLM..\Run: [ArcadeDeluxeAgent] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [LManager] C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Logitech G35] C:\Programme\Logitech\G35\G35.exe (Logitech(c))
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Programme\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [VitaKeyPdtWzd] c:\Programme\Acer Bio Protection\PdtWzd.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ManyCam] C:\Program Files\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
O4 - HKCU..\Run: [Sony Ericsson PC Companion] C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [BrowserBallot] C:\Windows\System32\browserchoice.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Cubase SX Update] C:\Programme\Steinberg\Cubase SX\CubaseSXUpd.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Programme\kikin\ie_kikin.dll (kikin)
O9 - Extra Button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra 'Tools' menuitem : Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.49.254
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O24 - Desktop BackupWallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell - "" = AutoRun
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\AutoRun\command - "" = F:\Install.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\menu1\command - "" = F:\Install.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 360 Days ==========
 
[2011.02.15 13:48:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Malwarebytes
[2011.02.15 13:48:40 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.02.15 13:48:37 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.02.15 13:48:37 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.02.15 09:11:33 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.02.15 09:11:33 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.02.15 09:11:33 | 000,797,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.02.15 09:11:32 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.02.15 09:11:32 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.02.15 09:11:32 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.02.15 09:11:31 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.02.15 09:11:31 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.02.15 09:11:31 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.02.15 09:11:31 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.02.15 09:11:31 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.02.15 09:11:31 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.02.15 09:11:30 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.02.15 09:11:29 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.02.15 09:11:29 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.02.15 09:11:29 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.02.15 09:11:28 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.02.15 09:11:28 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.02.15 09:11:28 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.02.15 09:11:27 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.02.15 09:11:25 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.02.15 09:11:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.02.15 09:08:37 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2011.02.14 21:29:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2011.02.14 20:50:31 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2011.02.14 16:20:09 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 16:01:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
[2011.02.14 15:48:21 | 000,030,016 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2011.02.14 15:48:20 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2011.02.11 05:43:03 | 002,039,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.02.11 05:42:57 | 003,602,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011.02.11 05:42:55 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011.02.11 05:42:39 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.02.11 05:42:35 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011.02.11 05:42:35 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.02.11 05:42:34 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.02.11 05:42:34 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.02.11 05:42:34 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011.02.11 05:42:29 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011.02.11 05:42:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.24 19:03:31 | 000,000,000 | ---D | C] -- C:\Programme\facemoods.com
[2011.01.24 19:01:47 | 000,000,000 | ---D | C] -- C:\Programme\Trymedia
[2011.01.24 19:01:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
[2011.01.24 19:01:40 | 000,000,000 | ---D | C] -- C:\Programme\PopCap Games
[2011.01.23 11:47:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\DVDFab
[2011.01.23 11:46:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 8
[2011.01.23 11:45:56 | 000,000,000 | ---D | C] -- C:\Programme\DVDFab 8
[2011.01.23 09:59:28 | 005,185,224 | ---- | C] (MPC-HC Team                                                 ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:57:40 | 014,871,584 | ---- | C] (Fengtao Software Inc.                                       ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.22 23:21:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\The KMPlayer
[2011.01.22 23:21:06 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
[2011.01.22 23:20:55 | 000,000,000 | ---D | C] -- C:\Programme\The KMPlayer
[2011.01.22 23:08:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\ArcSoft
[2011.01.22 23:05:58 | 000,000,000 | ---D | C] -- C:\ProgramData\ArcSoft
[2011.01.22 23:05:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft TotalMedia Theatre 5
[2011.01.22 23:04:13 | 000,000,000 | ---D | C] -- C:\Programme\ArcSoft
[2011.01.22 18:32:45 | 065,071,864 | ---- | C] (ArcSoft                                                      ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:20 | 005,860,207 | ---- | C] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 18:08:13 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Playlists
[2011.01.22 18:02:39 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curtains
[2011.01.22 18:02:38 | 000,000,000 | ---D | C] -- C:\Windows\Curtains
[2011.01.22 18:02:36 | 000,000,000 | ---D | C] -- C:\Programme\Curtains
[2011.01.22 17:55:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Team MediaPortal
[2011.01.22 17:54:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Team MediaPortal
[2011.01.22 17:54:19 | 000,000,000 | ---D | C] -- C:\Programme\Team MediaPortal
[2011.01.22 17:46:12 | 032,771,954 | ---- | C] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:35:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\AnyDVDHD
[2011.01.22 14:16:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2011.01.22 14:13:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
[2011.01.22 14:13:38 | 000,000,000 | ---D | C] -- C:\Programme\SlySoft
[2011.01.19 03:13:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.01.19 03:09:15 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2011.01.19 03:05:01 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011.01.19 03:05:01 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011.01.19 03:05:01 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011.01.19 03:02:42 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.01.19 03:02:40 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.01.17 15:15:30 | 000,000,000 | ---D | C] -- C:\PS3
[2011.01.14 03:06:52 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011.01.14 03:06:46 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011.01.12 14:36:15 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2011.01.12 14:36:14 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011.01.12 14:36:14 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011.01.12 14:36:09 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011.01.12 14:36:08 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011.01.12 14:36:08 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011.01.12 14:36:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011.01.12 14:35:47 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.01.12 14:35:41 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011.01.12 14:35:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\config
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\codes
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\wiiflow
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\WAD
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\txtcodes
[2010.12.17 10:08:27 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\WBFSManager
[2010.12.17 09:21:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\WBFS Manager Covers
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Programme\WBFS
[2010.12.17 09:21:06 | 000,000,000 | ---D | C] -- C:\WII
[2010.12.16 23:57:57 | 000,031,088 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 18:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Oberon Games
[2010.12.01 20:06:29 | 000,108,104 | ---- | C] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.25 19:29:05 | 000,089,256 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\Programme\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Ericsson
[2010.11.14 07:45:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Sony
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Podcasts
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Media Go
[2010.11.14 07:42:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2010.11.14 07:42:29 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Sony Shared
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\Programme\Sony
[2010.11.14 07:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\Programme\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010.11.14 07:40:32 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Apple
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Programme\Sony Media Go Install
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Sony
[2010.11.14 07:20:00 | 000,000,000 | ---D | C] -- C:\Users\Drake\Xperia X10
[2010.11.11 18:40:20 | 000,080,448 | ---- | C] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.10.24 13:12:22 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\Programme\Carambis
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Carambis
[2010.10.24 06:03:20 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.10.24 06:03:09 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.10.24 06:03:08 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.10.24 06:02:59 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.10.24 06:02:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.10.24 06:02:27 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.10.24 06:02:27 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.10.24 06:02:17 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.10.24 06:02:10 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.10.24 06:01:55 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.10.24 06:01:52 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.10.24 06:01:50 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.10.24 06:01:49 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.10.24 06:00:14 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.10.24 06:00:14 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.10.24 06:00:14 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.10.24 06:00:14 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.10.24 06:00:13 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010.10.24 06:00:13 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.10.24 06:00:13 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.10.24 05:06:07 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\NSV
[2010.10.24 04:42:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2010.10.24 04:42:55 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Programme\Winamp Detect
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Winamp
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Programme\Winamp
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\UseNeXT
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\Programme\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UseNeXT
[2010.09.21 02:36:09 | 000,000,000 | ---D | C] -- C:\Programme\Veetle
[2010.09.09 05:17:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\WWE BEST OF PPV
[2010.09.08 15:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.08 15:46:42 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.09.08 15:37:59 | 000,423,656 | ---- | C] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:59 | 000,153,376 | ---- | C] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.08 15:37:43 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.09.07 01:01:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
[2010.09.07 01:01:10 | 000,000,000 | ---D | C] -- C:\Programme\JDownloader
[2010.08.30 22:07:53 | 000,000,000 | ---D | C] -- C:\Users\Drake\NDS
[2010.08.17 20:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2010.08.07 21:16:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\Saved Games
[2010.08.01 18:24:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\c
[2010.06.18 19:02:04 | 000,000,000 | R-SD | C] -- C:\Users\Drake\Documents\My Stationery
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:27 | 000,000,000 | ---D | C] -- C:\Programme\PSP Pandora Deluxe
[2010.06.05 16:50:37 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:22 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\xing shared
[2010.06.05 16:50:07 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.06.05 16:50:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010.06.05 16:50:02 | 000,000,000 | ---D | C] -- C:\Programme\Real
[2010.06.03 00:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:16 | 000,000,000 | ---D | C] -- C:\Programme\Vistumbler
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\kikin
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Programme\kikin
[2010.05.21 20:53:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Steinberg
[2010.05.21 20:15:51 | 000,598,016 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\SYNSOPOS.exe
[2010.05.21 20:15:51 | 000,025,600 | R--- | C] (OxYGeN) -- C:\Windows\System32\SYNSOACC.dll
[2010.05.21 20:15:51 | 000,017,784 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\drivers\NSynas32.sys
[2010.05.21 20:15:51 | 000,016,896 | ---- | C] (Syncrosoft GmbH) -- C:\Windows\System32\drivers\SynasUSB.sys
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:06:29 | 000,000,000 | ---D | C] -- C:\Programme\Steinberg
[2010.05.18 21:21:23 | 000,081,920 | RHS- | C] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:37 | 000,081,920 | RHS- | C] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:01:58 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Programme\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS\0207030.022
[2010.04.28 16:13:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\NPS
[2010.04.26 23:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.17 02:55:10 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Dennis N
[2010.04.16 22:37:23 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2010.04.16 22:35:52 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Leadertech
[2010.04.16 22:35:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2010.04.16 22:35:15 | 000,000,000 | ---D | C] -- C:\Programme\Logitech
[2010.03.21 14:11:09 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.03.21 14:11:02 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010.03.21 14:11:02 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.03.21 14:11:01 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.03.21 14:10:01 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010.03.21 14:00:19 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010.03.18 13:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.16 13:11:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Art
[2010.03.10 20:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:32:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Yu-Gi-Oh! ONLINE 3
[2010.03.08 21:32:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010.03.08 21:31:59 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010.03.08 21:31:58 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2010.03.08 21:31:57 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010.03.08 21:31:57 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010.03.08 21:31:57 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010.03.08 21:31:56 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010.03.08 21:31:56 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010.03.08 21:31:44 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010.03.08 21:31:44 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010.03.08 21:31:44 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010.03.08 21:31:42 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010.03.08 21:31:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\konami
[2010.03.08 21:30:41 | 000,000,000 | ---D | C] -- C:\Programme\konami
[2010.03.07 23:42:01 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Microsoft Games
[2010.03.07 06:13:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Neuer Ordner
[2010.03.05 12:25:26 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Real
[2010.02.26 16:07:28 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010.02.26 16:07:26 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010.02.26 16:07:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010.02.26 16:07:24 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010.02.26 16:07:23 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010.02.26 16:07:17 | 000,000,000 | ---D | C] -- C:\Temp
[2010.02.26 16:02:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Wizards of the Coast
[2010.02.26 16:01:50 | 000,000,000 | ---D | C] -- C:\Programme\Wizards of the Coast
[2010.02.26 16:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wizards of the Coast
[2009.06.06 20:29:30 | 000,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 360 Days ==========
 
[2011.02.15 15:54:04 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.02.15 15:54:04 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.02.15 15:54:04 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.02.15 15:54:04 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.02.15 15:51:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.02.15 15:50:06 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011.02.15 15:47:57 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.02.15 15:47:47 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:46 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.15 15:46:58 | 3215,814,656 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.15 15:46:00 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.02.15 13:48:40 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 23:52:58 | 000,055,296 | ---- | M] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.14 21:34:33 | 000,296,800 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.02.14 20:33:44 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011.02.14 18:28:56 | 000,000,558 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Drake.job
[2011.02.14 16:20:15 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 15:48:15 | 000,001,871 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2011.02.14 15:48:15 | 000,001,857 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | M] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.02.12 05:53:45 | 000,001,975 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.02.12 05:17:36 | 000,007,592 | ---- | M] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2011.01.28 12:40:42 | 000,027,343 | ---- | M] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:28 | 000,076,235 | ---- | M] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:35:33 | 011,779,216 | ---- | M] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | M] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | M] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:54:13 | 000,304,944 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:33 | 000,062,432 | ---- | M] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:32 | 000,000,337 | ---- | M] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | M] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 10:00:09 | 005,185,224 | ---- | M] (MPC-HC Team                                                 ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:59:48 | 014,871,584 | ---- | M] (Fengtao Software Inc.                                       ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.23 09:05:47 | 000,181,010 | ---- | M] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | M] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:17 | 000,304,936 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | M] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | M] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:38:42 | 065,071,864 | ---- | M] (ArcSoft                                                      ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:45 | 005,860,207 | ---- | M] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:53:08 | 005,567,604 | ---- | M] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 17:50:17 | 032,771,954 | ---- | M] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:48:30 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.20 17:08:16 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.01.20 17:08:06 | 001,029,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.01.20 17:08:06 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.20 17:08:06 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.01.20 17:08:06 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.20 17:07:58 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.20 17:06:38 | 002,873,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.01.20 17:06:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.01.20 17:04:54 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.01.20 17:04:54 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.01.20 15:26:30 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.01.20 15:24:32 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.20 15:24:26 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.20 15:15:10 | 000,979,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.01.20 15:14:39 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.01.20 15:14:03 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.01.20 15:14:03 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.01.20 15:12:46 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.20 15:11:34 | 000,486,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.01.20 14:47:51 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.20 14:44:05 | 001,068,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.20 14:44:03 | 000,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.13 10:07:30 | 000,636,112 | ---- | M] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2011.01.08 09:47:50 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.08 07:28:49 | 000,292,352 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.12.31 14:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.12.28 16:55:03 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2010.12.20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.12.20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.12.20 17:34:30 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.12.20 17:34:18 | 000,471,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.12.20 17:33:32 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.12.20 17:33:31 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010.12.20 16:37:57 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010.12.20 15:55:46 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.12.17 09:21:44 | 000,000,944 | ---- | M] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.16 23:57:57 | 000,031,088 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 15:49:23 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2010.12.01 20:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.28 17:12:20 | 000,612,230 | ---- | M] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.27 13:51:22 | 538,084,740 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.11.27 13:43:38 | 722,565,647 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.25 19:29:05 | 000,089,256 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.22 08:13:23 | 005,142,954 | ---- | M] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.19 15:33:22 | 000,030,528 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2010.11.19 15:30:00 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2010.11.19 15:29:54 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2010.11.14 17:10:51 | 000,002,049 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | M] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.11.11 18:40:20 | 000,080,448 | ---- | M] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.11.04 19:56:07 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010.11.04 19:55:38 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010.11.04 19:55:38 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010.10.28 14:20:12 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.10.24 04:42:56 | 000,000,780 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.19 10:41:44 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.18 21:36:25 | 000,000,086 | ---- | M] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.18 14:37:35 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010.10.15 15:08:12 | 003,602,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,550,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.10.14 21:09:16 | 000,001,646 | ---- | M] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | M] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.26 22:02:45 | 000,001,398 | ---- | M] () -- C:\Users\Drake\Desktop\DivX Movies.lnk
[2010.09.26 22:02:38 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.09.21 09:10:32 | 000,192,504 | ---- | M] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.13 14:56:41 | 008,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:47 | 000,153,376 | ---- | M] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.07 01:01:21 | 000,000,832 | ---- | M] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.09.06 17:19:06 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.08.31 16:46:37 | 000,954,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.08.31 16:46:37 | 000,954,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.08.30 21:47:17 | 318,348,632 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.08.26 17:37:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.08.26 17:34:50 | 001,696,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010.08.26 17:33:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.08.26 15:23:58 | 004,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.08.20 17:05:07 | 000,867,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.08.17 20:24:35 | 000,000,961 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | M] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.03 23:33:01 | 000,011,566 | ---- | M] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | M] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | M] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:48 | 000,118,779 | ---- | M] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:12 | 000,441,321 | ---- | M] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | M] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | M] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | M] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:39 | 000,120,630 | ---- | M] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:21 | 000,108,693 | ---- | M] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | M] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | M] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | M] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:52 | 000,216,757 | ---- | M] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:14 | 000,213,134 | ---- | M] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:21 | 000,022,565 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:05 | 000,019,937 | ---- | M] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:49 | 000,028,357 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:47 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:36 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.18 18:31:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.06.16 16:30:44 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.06.16 01:00:39 | 000,280,547 | ---- | M] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.06.05 16:50:37 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:07 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.05.29 00:12:18 | 000,001,706 | ---- | M] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:40 | 000,813,984 | ---- | M] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.29 00:01:30 | 001,324,940 | ---- | M] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.27 21:08:17 | 000,081,920 | ---- | M] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.05.21 20:15:51 | 000,000,950 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.18 21:21:59 | 000,081,920 | RHS- | M] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:54 | 000,081,920 | RHS- | M] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:02:01 | 000,001,352 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk
[2010.05.12 17:01:58 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.05.04 20:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2010.05.04 20:10:47 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.04.26 23:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.05 18:02:42 | 000,317,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.04.05 18:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.03.25 23:42:42 | 588,148,736 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.03.25 23:42:34 | 596,645,888 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.10 20:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:31:20 | 000,001,968 | ---- | M] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:48:16 | 1579,026,944 | ---- | M] () -- C:\Windows\System\bla.avi
[2010.03.04 18:33:45 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.02.21 00:06:41 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010.02.21 00:05:14 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011.02.15 13:48:40 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | C] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.01.28 12:40:42 | 000,027,343 | ---- | C] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:27 | 000,076,235 | ---- | C] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:07:05 | 011,779,216 | ---- | C] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | C] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:53:51 | 000,304,944 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:16 | 000,062,432 | ---- | C] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:31 | 000,000,337 | ---- | C] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | C] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 09:05:42 | 000,181,010 | ---- | C] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | C] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:08 | 000,304,936 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | C] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | C] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:02:39 | 000,052,224 | ---- | C] () -- C:\Windows\unbud001.exe
[2011.01.22 18:02:39 | 000,049,664 | ---- | C] () -- C:\Windows\Curtains.scr
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:52:45 | 005,567,604 | ---- | C] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 14:15:39 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.13 10:06:23 | 000,636,112 | ---- | C] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2010.12.17 09:21:44 | 000,000,944 | ---- | C] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.02 14:45:25 | 538,084,740 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.12.02 14:44:48 | 722,565,647 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.28 17:12:20 | 000,612,230 | ---- | C] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.22 08:13:23 | 005,142,954 | ---- | C] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.14 17:10:51 | 000,002,049 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | C] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.10.24 12:43:31 | 3215,814,656 | -HS- | C] () -- C:\hiberfil.sys
[2010.10.24 04:42:56 | 000,000,780 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.18 21:36:25 | 000,000,086 | ---- | C] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.14 21:09:16 | 000,001,646 | ---- | C] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | C] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.21 09:10:32 | 000,192,504 | ---- | C] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.07 01:01:21 | 000,000,832 | ---- | C] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.08.17 20:24:48 | 000,000,921 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.08.17 20:24:35 | 000,000,961 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | C] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.04 17:12:15 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2010.08.03 23:33:01 | 000,011,566 | ---- | C] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | C] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | C] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:47 | 000,118,779 | ---- | C] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:11 | 000,441,321 | ---- | C] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | C] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | C] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | C] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:37 | 000,120,630 | ---- | C] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:20 | 000,108,693 | ---- | C] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | C] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | C] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | C] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:51 | 000,216,757 | ---- | C] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:13 | 000,213,134 | ---- | C] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:20 | 000,022,565 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:04 | 000,019,937 | ---- | C] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:48 | 000,028,357 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:46 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.21 06:43:40 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.16 01:00:39 | 000,280,547 | ---- | C] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.05.29 00:12:18 | 000,001,706 | ---- | C] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:22 | 001,324,940 | ---- | C] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.29 00:01:22 | 000,813,984 | ---- | C] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.21 20:15:51 | 000,595,405 | ---- | C] () -- C:\Windows\System32\Steinberg.bnf
[2010.05.21 20:15:51 | 000,049,606 | ---- | C] () -- C:\Windows\System32\Steinberg.pkg
[2010.05.21 20:15:51 | 000,036,008 | ---- | C] () -- C:\Windows\System32\Syncrosoft.pkg
[2010.05.21 20:15:51 | 000,000,950 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.21 20:15:51 | 000,000,024 | ---- | C] () -- C:\Windows\System32\synsopos.ini
[2010.05.12 17:01:58 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.03.08 21:31:20 | 000,001,968 | ---- | C] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:32:40 | 1579,026,944 | ---- | C] () -- C:\Windows\System\bla.avi
[2010.02.27 02:12:28 | 588,148,736 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.02.27 02:07:44 | 596,645,888 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2009.12.05 00:59:38 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.11.25 21:48:24 | 000,000,040 | ---- | C] () -- C:\Windows\RUNAWAY2.INI
[2009.11.21 23:27:21 | 000,000,059 | ---- | C] () -- C:\Windows\RUNAWAY.INI
[2009.11.20 18:59:26 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2009.11.20 18:59:26 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2009.11.05 06:08:37 | 000,000,032 | ---- | C] () -- C:\Windows\autostart.INI
[2009.09.28 00:02:54 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.08.27 17:14:00 | 000,005,086 | ---- | C] () -- C:\Users\Drake\AppData\Local\MyWinLockerInstaller.txt-20090827.log
[2009.08.10 23:42:35 | 000,033,792 | ---- | C] () -- C:\Windows\System32\drivers\libusb0.sys
[2009.08.01 01:30:02 | 000,007,592 | ---- | C] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2009.08.01 01:25:58 | 000,721,904 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009.07.31 22:05:12 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2009.07.26 02:11:48 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.07.26 02:11:47 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.07.25 17:48:37 | 000,055,296 | ---- | C] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.06 11:55:31 | 000,000,033 | ---- | C] () -- C:\Windows\LaunApp.ini
[2009.06.06 11:46:21 | 000,626,688 | ---- | C] () -- C:\Windows\Image.dll
[2009.06.06 11:46:21 | 000,000,036 | ---- | C] () -- C:\Windows\PidList.ini
[2009.05.28 10:07:14 | 000,075,024 | ---- | C] () -- C:\Windows\System32\LADFCoinst_i386.dll
[2009.03.12 11:32:52 | 000,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini
[2009.03.12 04:26:46 | 000,007,038 | ---- | C] () -- C:\ProgramData\ArcadeDeluxe2.log
[2009.02.13 01:50:52 | 000,097,792 | ---- | C] () -- C:\Windows\System32\INT15_64.dll
[2009.02.13 01:50:52 | 000,081,920 | ---- | C] () -- C:\Windows\System32\INT15.dll
[2009.02.13 01:50:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2009.02.13 01:50:52 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2009.02.13 01:50:04 | 000,118,784 | ---- | C] () -- C:\Windows\System32\VMC3KAPI.dll
[2009.02.11 21:03:58 | 000,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2009.02.11 21:03:58 | 000,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2009.02.11 21:03:57 | 000,000,060 | ---- | C] () -- C:\Windows\Prelaunch.ini
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.10.16 06:58:14 | 000,086,016 | ---- | C] () -- C:\Windows\System32\aspolyzt.dll
[2006.06.29 11:44:32 | 001,826,304 | ---- | C] () -- C:\Windows\System32\asconv3d.dll
[2005.07.06 10:59:58 | 000,028,672 | ---- | C] () -- C:\Windows\System32\asdrawli.dll
[2005.07.04 13:17:30 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ASDRAWMA.DLL
[2004.08.17 15:34:52 | 000,036,864 | ---- | C] () -- C:\Windows\System32\AS_SORT.DLL
[2003.05.22 10:31:44 | 000,033,792 | ---- | C] () -- C:\Windows\System32\ASDRAW32.DLL
[2002.07.12 14:29:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AS_MDB32.DLL
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben2.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben1.avi:TOC.WMV
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:814B9485
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:CDFF58FE
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:3B3A35EC
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F636E25
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:41099CE9
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:B623B5B8
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:CE0A077E
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:BB24555F

< End of report >
         
--- --- ---
PRC - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Programme\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\TMonitor.exe ()
PRC - C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Programme\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Programme\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
PRC - C:\Users\Drake\AppData\Local\Temp\RtkBtMnt.exe (Realtek Semiconductor Corp.)
PRC - C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Programme\Logitech\G35\G35.exe (Logitech(c))
PRC - C:\Programme\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
PRC - C:\Programme\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
PRC - C:\Programme\Acer\Acer PowerSmart Manager\ePowerTray.exe (Acer Incorporated)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
PRC - C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
PRC - C:\Programme\Apoint2K\Hidfind.exe (Alps Electric Co., Ltd.)
PRC - C:\Windows\PLFSetI.exe ()
PRC - C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Defender\MSASCui.exe (Microsoft Corporation)


========== Modules (SafeList) ==========

MOD - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
MOD - C:\Programme\Acer\Acer PowerSmart Manager\SysHook.dll (Acer Incorporated)


========== Win32 Services (SafeList) ==========

SRV - (TuneUp.Defrag) -- C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (Sony Ericsson PCCompanion) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe (Avanquest Software)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (CLHNService) -- C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe ()
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (ePowerSvc) -- C:\Programme\Acer\Acer PowerSmart Manager\ePowerSvc.exe (Acer Incorporated)
SRV - (NTI IScheduleSvc) -- C:\Programme\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
SRV - (IGBASVC) -- c:\Programme\Acer Bio Protection\BASVC.exe (Egis Technology Inc.)
SRV - (RS_Service) -- C:\Programme\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
SRV - (ICQ Service) -- C:\Programme\ICQ6Toolbar\ICQ Service.exe ()
SRV - (NTISchedulerSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe (NewTech Infosystems, Inc.)
SRV - (NTIBackupSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe (NewTech InfoSystems, Inc.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (AnyDVD) -- C:\Windows\System32\drivers\AnyDVD.sys (SlySoft, Inc.)
DRV - (ArcSec) -- C:\Windows\System32\drivers\ArcSec.sys ()
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\Windows\System32\drivers\eamon.sys (ESET)
DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) -- C:\Programme\Acer Arcade Deluxe\PlayMovie\000.fcl (CyberLink Corp.)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys ()
DRV - (LADF_SBVM) -- C:\Windows\System32\drivers\ladfSBVMi386.sys (Logitech)
DRV - (LADF_DHP2) -- C:\Windows\System32\drivers\ladfDHP2i386.sys (Logitech)
DRV - (usbaudio) USB-Audiotreiber (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (WinUSB) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (AlfaFF) -- C:\Windows\system32\drivers\AlfaFF.sys (Alfa Corporation)
DRV - (int15) -- C:\Windows\System32\drivers\int15.sys ()
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NTIDrvr) -- C:\Windows\System32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (FPSensor) EgisTech-Corp Fingerprint Reader Driver (FPSensor.sys) -- C:\Windows\System32\drivers\FPSensor.sys (Egis)
DRV - (RTSTOR) -- C:\Windows\System32\drivers\RTSTOR.sys (Realtek Semiconductor Corp.)
DRV - (hidshim) -- C:\Windows\System32\drivers\hidshim.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (nuvotonhidgeneric) -- C:\Windows\System32\drivers\nuvotonhidgeneric.sys (Nuvoton Technology Corporation)
DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (k57nd60x) Broadcom NetLink (TM) -- C:\Windows\System32\drivers\k57nd60x.sys (Broadcom Corporation)
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (NSCIRDA) -- C:\Windows\System32\drivers\nscirda.sys (National Semiconductor Corporation)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (ManyCam) -- C:\Windows\System32\drivers\ManyCam.sys (ManyCam LLC.)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (sscdmdm) -- C:\Windows\System32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\Windows\System32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\Windows\System32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (DKbFltr) -- C:\Windows\System32\drivers\DKbFltr.sys (Dritek System Inc.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (libusb0) -- C:\Windows\System32\drivers\libusb0.sys ()
DRV - (Nsynas32) -- C:\Windows\System32\drivers\NSynas32.sys (Syncrosoft Hard- und Software GmbH)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://start.facemoods.com/?a=stonicde&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_7738
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.facemoods.com/?a=stonicde
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=

========== FireFox ==========



FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010.06.05 16:50:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.03.21 12:31:10 | 000,000,000 | ---D | M]

[2009.07.25 21:26:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Extensions
[2011.02.15 09:39:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009.07.28 19:59:09 | 000,002,236 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\askcom.xml
[2009.05.19 10:24:54 | 000,000,894 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\conduit.xml
[2009.08.01 01:36:31 | 000,002,399 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\daemon-search.xml
[2011.02.13 07:03:27 | 000,000,955 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\icqplugin.xml
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2009.07.27 18:47:47 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2009.07.30 20:23:46 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.07.12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll
[2010.12.26 22:19:16 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.12.26 22:19:16 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.09.28 17:14:06 | 000,002,040 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\fcmdSrchstonicde.xml
[2010.12.26 22:19:16 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.12.26 22:19:16 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.12.26 22:19:16 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Programme\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Programme\kikin\ie_kikin.dll (kikin)
O3 - HKLM\..\Toolbar: (Steganos Internet Anonym) - {00000000-5736-4205-0008-f7ed0776fb27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Programme\facemoods.com\facemoods\1.4.17.3\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Steganos Internet Anonym) - {00000000-5736-4205-0008-F7ED0776FB27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Softonic Deutsch Toolbar) - {8DBB6D8E-E4A6-4E3B-9753-AF78B226441C} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe (Acer Incorporated)
O4 - HKLM..\Run: [ArcadeDeluxeAgent] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [LManager] C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Logitech G35] C:\Programme\Logitech\G35\G35.exe (Logitech(c))
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Programme\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [VitaKeyPdtWzd] c:\Programme\Acer Bio Protection\PdtWzd.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ManyCam] C:\Program Files\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
O4 - HKCU..\Run: [Sony Ericsson PC Companion] C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [BrowserBallot] C:\Windows\System32\browserchoice.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Cubase SX Update] C:\Programme\Steinberg\Cubase SX\CubaseSXUpd.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Programme\kikin\ie_kikin.dll (kikin)
O9 - Extra Button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra 'Tools' menuitem : Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.49.254
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O24 - Desktop BackupWallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell - "" = AutoRun
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\AutoRun\command - "" = F:\Install.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\menu1\command - "" = F:\Install.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 360 Days ==========

[2011.02.15 13:48:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Malwarebytes
[2011.02.15 13:48:40 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.02.15 13:48:37 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.02.15 13:48:37 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.02.15 09:11:33 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.02.15 09:11:33 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.02.15 09:11:33 | 000,797,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.02.15 09:11:32 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.02.15 09:11:32 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.02.15 09:11:32 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.02.15 09:11:31 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.02.15 09:11:31 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.02.15 09:11:31 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.02.15 09:11:31 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.02.15 09:11:31 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.02.15 09:11:31 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.02.15 09:11:30 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.02.15 09:11:29 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.02.15 09:11:29 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.02.15 09:11:29 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.02.15 09:11:28 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.02.15 09:11:28 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.02.15 09:11:28 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.02.15 09:11:27 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.02.15 09:11:25 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.02.15 09:11:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.02.15 09:08:37 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2011.02.14 21:29:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2011.02.14 20:50:31 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2011.02.14 16:20:09 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 16:01:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
[2011.02.14 15:48:21 | 000,030,016 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2011.02.14 15:48:20 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2011.02.11 05:43:03 | 002,039,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.02.11 05:42:57 | 003,602,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011.02.11 05:42:55 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011.02.11 05:42:39 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.02.11 05:42:35 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011.02.11 05:42:35 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.02.11 05:42:34 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.02.11 05:42:34 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.02.11 05:42:34 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011.02.11 05:42:29 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011.02.11 05:42:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.24 19:03:31 | 000,000,000 | ---D | C] -- C:\Programme\facemoods.com
[2011.01.24 19:01:47 | 000,000,000 | ---D | C] -- C:\Programme\Trymedia
[2011.01.24 19:01:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
[2011.01.24 19:01:40 | 000,000,000 | ---D | C] -- C:\Programme\PopCap Games
[2011.01.23 11:47:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\DVDFab
[2011.01.23 11:46:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 8
[2011.01.23 11:45:56 | 000,000,000 | ---D | C] -- C:\Programme\DVDFab 8
[2011.01.23 09:59:28 | 005,185,224 | ---- | C] (MPC-HC Team ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:57:40 | 014,871,584 | ---- | C] (Fengtao Software Inc. ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.22 23:21:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\The KMPlayer
[2011.01.22 23:21:06 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
[2011.01.22 23:20:55 | 000,000,000 | ---D | C] -- C:\Programme\The KMPlayer
[2011.01.22 23:08:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\ArcSoft
[2011.01.22 23:05:58 | 000,000,000 | ---D | C] -- C:\ProgramData\ArcSoft
[2011.01.22 23:05:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft TotalMedia Theatre 5
[2011.01.22 23:04:13 | 000,000,000 | ---D | C] -- C:\Programme\ArcSoft
[2011.01.22 18:32:45 | 065,071,864 | ---- | C] (ArcSoft ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:20 | 005,860,207 | ---- | C] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 18:08:13 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Playlists
[2011.01.22 18:02:39 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curtains
[2011.01.22 18:02:38 | 000,000,000 | ---D | C] -- C:\Windows\Curtains
[2011.01.22 18:02:36 | 000,000,000 | ---D | C] -- C:\Programme\Curtains
[2011.01.22 17:55:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Team MediaPortal
[2011.01.22 17:54:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Team MediaPortal
[2011.01.22 17:54:19 | 000,000,000 | ---D | C] -- C:\Programme\Team MediaPortal
[2011.01.22 17:46:12 | 032,771,954 | ---- | C] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:35:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\AnyDVDHD
[2011.01.22 14:16:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2011.01.22 14:13:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
[2011.01.22 14:13:38 | 000,000,000 | ---D | C] -- C:\Programme\SlySoft
[2011.01.19 03:13:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.01.19 03:09:15 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2011.01.19 03:05:01 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011.01.19 03:05:01 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011.01.19 03:05:01 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011.01.19 03:02:42 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.01.19 03:02:40 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.01.17 15:15:30 | 000,000,000 | ---D | C] -- C:\PS3
[2011.01.14 03:06:52 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011.01.14 03:06:46 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011.01.12 14:36:15 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2011.01.12 14:36:14 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011.01.12 14:36:14 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011.01.12 14:36:09 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011.01.12 14:36:08 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011.01.12 14:36:08 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011.01.12 14:36:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011.01.12 14:35:47 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.01.12 14:35:41 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011.01.12 14:35:18 | 000,002,048 | ---- | C] (Microsoft Corporation) --

Alt 14.02.2011, 16:22   #5
-D3nYo-
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



C:\Windows\System32\tzres.dll
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\config
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\codes
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\wiiflow
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\WAD
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\txtcodes
[2010.12.17 10:08:27 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\WBFSManager
[2010.12.17 09:21:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\WBFS Manager Covers
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Programme\WBFS
[2010.12.17 09:21:06 | 000,000,000 | ---D | C] -- C:\WII
[2010.12.16 23:57:57 | 000,031,088 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 18:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Oberon Games
[2010.12.01 20:06:29 | 000,108,104 | ---- | C] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.25 19:29:05 | 000,089,256 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\Programme\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Ericsson
[2010.11.14 07:45:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Sony
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Podcasts
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Media Go
[2010.11.14 07:42:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2010.11.14 07:42:29 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Sony Shared
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\Programme\Sony
[2010.11.14 07:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\Programme\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010.11.14 07:40:32 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Apple
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Programme\Sony Media Go Install
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Sony
[2010.11.14 07:20:00 | 000,000,000 | ---D | C] -- C:\Users\Drake\Xperia X10
[2010.11.11 18:40:20 | 000,080,448 | ---- | C] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.10.24 13:12:22 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\Programme\Carambis
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Carambis
[2010.10.24 06:03:20 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.10.24 06:03:09 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.10.24 06:03:08 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.10.24 06:02:59 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.10.24 06:02:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.10.24 06:02:27 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.10.24 06:02:27 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.10.24 06:02:17 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.10.24 06:02:10 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.10.24 06:01:55 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.10.24 06:01:52 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.10.24 06:01:50 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.10.24 06:01:49 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.10.24 06:00:14 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.10.24 06:00:14 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.10.24 06:00:14 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.10.24 06:00:14 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.10.24 06:00:13 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010.10.24 06:00:13 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.10.24 06:00:13 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.10.24 05:06:07 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\NSV
[2010.10.24 04:42:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2010.10.24 04:42:55 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Programme\Winamp Detect
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Winamp
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Programme\Winamp
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\UseNeXT
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\Programme\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UseNeXT
[2010.09.21 02:36:09 | 000,000,000 | ---D | C] -- C:\Programme\Veetle
[2010.09.09 05:17:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\WWE BEST OF PPV
[2010.09.08 15:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.08 15:46:42 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.09.08 15:37:59 | 000,423,656 | ---- | C] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:59 | 000,153,376 | ---- | C] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.08 15:37:43 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.09.07 01:01:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
[2010.09.07 01:01:10 | 000,000,000 | ---D | C] -- C:\Programme\JDownloader
[2010.08.30 22:07:53 | 000,000,000 | ---D | C] -- C:\Users\Drake\NDS
[2010.08.17 20:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2010.08.07 21:16:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\Saved Games
[2010.08.01 18:24:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\c
[2010.06.18 19:02:04 | 000,000,000 | R-SD | C] -- C:\Users\Drake\Documents\My Stationery
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:27 | 000,000,000 | ---D | C] -- C:\Programme\PSP Pandora Deluxe
[2010.06.05 16:50:37 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:22 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\xing shared
[2010.06.05 16:50:07 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.06.05 16:50:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010.06.05 16:50:02 | 000,000,000 | ---D | C] -- C:\Programme\Real
[2010.06.03 00:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:16 | 000,000,000 | ---D | C] -- C:\Programme\Vistumbler
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\kikin
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Programme\kikin
[2010.05.21 20:53:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Steinberg
[2010.05.21 20:15:51 | 000,598,016 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\SYNSOPOS.exe
[2010.05.21 20:15:51 | 000,025,600 | R--- | C] (OxYGeN) -- C:\Windows\System32\SYNSOACC.dll
[2010.05.21 20:15:51 | 000,017,784 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\drivers\NSynas32.sys
[2010.05.21 20:15:51 | 000,016,896 | ---- | C] (Syncrosoft GmbH) -- C:\Windows\System32\drivers\SynasUSB.sys
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:06:29 | 000,000,000 | ---D | C] -- C:\Programme\Steinberg
[2010.05.18 21:21:23 | 000,081,920 | RHS- | C] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:37 | 000,081,920 | RHS- | C] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:01:58 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Programme\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS\0207030.022
[2010.04.28 16:13:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\NPS
[2010.04.26 23:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.17 02:55:10 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Dennis N
[2010.04.16 22:37:23 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2010.04.16 22:35:52 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Leadertech
[2010.04.16 22:35:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2010.04.16 22:35:15 | 000,000,000 | ---D | C] -- C:\Programme\Logitech
[2010.03.21 14:11:09 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.03.21 14:11:02 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010.03.21 14:11:02 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.03.21 14:11:01 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.03.21 14:10:01 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010.03.21 14:00:19 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010.03.18 13:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.16 13:11:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Art
[2010.03.10 20:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:32:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Yu-Gi-Oh! ONLINE 3
[2010.03.08 21:32:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010.03.08 21:31:59 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010.03.08 21:31:58 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2010.03.08 21:31:57 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010.03.08 21:31:57 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010.03.08 21:31:57 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010.03.08 21:31:56 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010.03.08 21:31:56 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010.03.08 21:31:44 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010.03.08 21:31:44 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010.03.08 21:31:44 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010.03.08 21:31:42 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010.03.08 21:31:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\konami
[2010.03.08 21:30:41 | 000,000,000 | ---D | C] -- C:\Programme\konami
[2010.03.07 23:42:01 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Microsoft Games
[2010.03.07 06:13:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Neuer Ordner
[2010.03.05 12:25:26 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Real
[2010.02.26 16:07:28 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010.02.26 16:07:26 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010.02.26 16:07:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010.02.26 16:07:24 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010.02.26 16:07:23 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010.02.26 16:07:17 | 000,000,000 | ---D | C] -- C:\Temp
[2010.02.26 16:02:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Wizards of the Coast
[2010.02.26 16:01:50 | 000,000,000 | ---D | C] -- C:\Programme\Wizards of the Coast
[2010.02.26 16:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wizards of the Coast
[2009.06.06 20:29:30 | 000,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 360 Days ==========

[2011.02.15 15:54:04 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.02.15 15:54:04 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.02.15 15:54:04 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.02.15 15:54:04 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.02.15 15:51:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.02.15 15:50:06 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011.02.15 15:47:57 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.02.15 15:47:47 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:46 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.15 15:46:58 | 3215,814,656 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.15 15:46:00 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.02.15 13:48:40 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 23:52:58 | 000,055,296 | ---- | M] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.14 21:34:33 | 000,296,800 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.02.14 20:33:44 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011.02.14 18:28:56 | 000,000,558 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Drake.job
[2011.02.14 16:20:15 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 15:48:15 | 000,001,871 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2011.02.14 15:48:15 | 000,001,857 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | M] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.02.12 05:53:45 | 000,001,975 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.02.12 05:17:36 | 000,007,592 | ---- | M] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2011.01.28 12:40:42 | 000,027,343 | ---- | M] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:28 | 000,076,235 | ---- | M] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:35:33 | 011,779,216 | ---- | M] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | M] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | M] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:54:13 | 000,304,944 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:33 | 000,062,432 | ---- | M] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:32 | 000,000,337 | ---- | M] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | M] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 10:00:09 | 005,185,224 | ---- | M] (MPC-HC Team ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:59:48 | 014,871,584 | ---- | M] (Fengtao Software Inc. ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.23 09:05:47 | 000,181,010 | ---- | M] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | M] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:17 | 000,304,936 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | M] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | M] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:38:42 | 065,071,864 | ---- | M] (ArcSoft ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:45 | 005,860,207 | ---- | M] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:53:08 | 005,567,604 | ---- | M] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 17:50:17 | 032,771,954 | ---- | M] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:48:30 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.20 17:08:16 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.01.20 17:08:06 | 001,029,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.01.20 17:08:06 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.20 17:08:06 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.01.20 17:08:06 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.20 17:07:58 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.20 17:06:38 | 002,873,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.01.20 17:06:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.01.20 17:04:54 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.01.20 17:04:54 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.01.20 15:26:30 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.01.20 15:24:32 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.20 15:24:26 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.20 15:15:10 | 000,979,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.01.20 15:14:39 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.01.20 15:14:03 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.01.20 15:14:03 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.01.20 15:12:46 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.20 15:11:34 | 000,486,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.01.20 14:47:51 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.20 14:44:05 | 001,068,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.20 14:44:03 | 000,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.13 10:07:30 | 000,636,112 | ---- | M] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2011.01.08 09:47:50 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.08 07:28:49 | 000,292,352 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.12.31 14:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.12.28 16:55:03 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2010.12.20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.12.20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.12.20 17:34:30 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.12.20 17:34:18 | 000,471,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.12.20 17:33:32 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.12.20 17:33:31 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010.12.20 16:37:57 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010.12.20 15:55:46 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.12.17 09:21:44 | 000,000,944 | ---- | M] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.16 23:57:57 | 000,031,088 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 15:49:23 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2010.12.01 20:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.28 17:12:20 | 000,612,230 | ---- | M] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.27 13:51:22 | 538,084,740 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.11.27 13:43:38 | 722,565,647 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.25 19:29:05 | 000,089,256 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.22 08:13:23 | 005,142,954 | ---- | M] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.19 15:33:22 | 000,030,528 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2010.11.19 15:30:00 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2010.11.19 15:29:54 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2010.11.14 17:10:51 | 000,002,049 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | M] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.11.11 18:40:20 | 000,080,448 | ---- | M] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.11.04 19:56:07 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010.11.04 19:55:38 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010.11.04 19:55:38 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010.10.28 14:20:12 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.10.24 04:42:56 | 000,000,780 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.19 10:41:44 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.18 21:36:25 | 000,000,086 | ---- | M] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.18 14:37:35 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010.10.15 15:08:12 | 003,602,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,550,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.10.14 21:09:16 | 000,001,646 | ---- | M] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | M] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.26 22:02:45 | 000,001,398 | ---- | M] () -- C:\Users\Drake\Desktop\DivX Movies.lnk
[2010.09.26 22:02:38 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.09.21 09:10:32 | 000,192,504 | ---- | M] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.13 14:56:41 | 008,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:47 | 000,153,376 | ---- | M] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.07 01:01:21 | 000,000,832 | ---- | M] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.09.06 17:19:06 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.08.31 16:46:37 | 000,954,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.08.31 16:46:37 | 000,954,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.08.30 21:47:17 | 318,348,632 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.08.26 17:37:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.08.26 17:34:50 | 001,696,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010.08.26 17:33:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.08.26 15:23:58 | 004,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.08.20 17:05:07 | 000,867,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.08.17 20:24:35 | 000,000,961 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | M] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.03 23:33:01 | 000,011,566 | ---- | M] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | M] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | M] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:48 | 000,118,779 | ---- | M] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:12 | 000,441,321 | ---- | M] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | M] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | M] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | M] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:39 | 000,120,630 | ---- | M] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:21 | 000,108,693 | ---- | M] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | M] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | M] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | M] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:52 | 000,216,757 | ---- | M] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:14 | 000,213,134 | ---- | M] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:21 | 000,022,565 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:05 | 000,019,937 | ---- | M] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:49 | 000,028,357 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:47 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:36 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.18 18:31:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.06.16 16:30:44 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.06.16 01:00:39 | 000,280,547 | ---- | M] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.06.05 16:50:37 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:07 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.05.29 00:12:18 | 000,001,706 | ---- | M] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:40 | 000,813,984 | ---- | M] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.29 00:01:30 | 001,324,940 | ---- | M] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.27 21:08:17 | 000,081,920 | ---- | M] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.05.21 20:15:51 | 000,000,950 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.18 21:21:59 | 000,081,920 | RHS- | M] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:54 | 000,081,920 | RHS- | M] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:02:01 | 000,001,352 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk
[2010.05.12 17:01:58 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.05.04 20:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2010.05.04 20:10:47 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.04.26 23:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.05 18:02:42 | 000,317,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.04.05 18:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.03.25 23:42:42 | 588,148,736 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.03.25 23:42:34 | 596,645,888 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.10 20:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:31:20 | 000,001,968 | ---- | M] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:48:16 | 1579,026,944 | ---- | M] () -- C:\Windows\System\bla.avi
[2010.03.04 18:33:45 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.02.21 00:06:41 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010.02.21 00:05:14 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.02.15 13:48:40 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | C] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.01.28 12:40:42 | 000,027,343 | ---- | C] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:27 | 000,076,235 | ---- | C] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:07:05 | 011,779,216 | ---- | C] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | C] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:53:51 | 000,304,944 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:16 | 000,062,432 | ---- | C] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:31 | 000,000,337 | ---- | C] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | C] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 09:05:42 | 000,181,010 | ---- | C] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | C] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:08 | 000,304,936 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | C] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | C] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:02:39 | 000,052,224 | ---- | C] () -- C:\Windows\unbud001.exe
[2011.01.22 18:02:39 | 000,049,664 | ---- | C] () -- C:\Windows\Curtains.scr
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:52:45 | 005,567,604 | ---- | C] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 14:15:39 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.13 10:06:23 | 000,636,112 | ---- | C] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2010.12.17 09:21:44 | 000,000,944 | ---- | C] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.02 14:45:25 | 538,084,740 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.12.02 14:44:48 | 722,565,647 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.28 17:12:20 | 000,612,230 | ---- | C] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.22 08:13:23 | 005,142,954 | ---- | C] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.14 17:10:51 | 000,002,049 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | C] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.10.24 12:43:31 | 3215,814,656 | -HS- | C] () -- C:\hiberfil.sys
[2010.10.24 04:42:56 | 000,000,780 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.18 21:36:25 | 000,000,086 | ---- | C] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.14 21:09:16 | 000,001,646 | ---- | C] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | C] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.21 09:10:32 | 000,192,504 | ---- | C] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.07 01:01:21 | 000,000,832 | ---- | C] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.08.17 20:24:48 | 000,000,921 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.08.17 20:24:35 | 000,000,961 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | C] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.04 17:12:15 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2010.08.03 23:33:01 | 000,011,566 | ---- | C] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | C] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | C] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:47 | 000,118,779 | ---- | C] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:11 | 000,441,321 | ---- | C] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | C] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | C] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | C] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:37 | 000,120,630 | ---- | C] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:20 | 000,108,693 | ---- | C] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | C] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | C] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | C] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:51 | 000,216,757 | ---- | C] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:13 | 000,213,134 | ---- | C] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:20 | 000,022,565 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:04 | 000,019,937 | ---- | C] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:48 | 000,028,357 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:46 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.21 06:43:40 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.16 01:00:39 | 000,280,547 | ---- | C] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.05.29 00:12:18 | 000,001,706 | ---- | C] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:22 | 001,324,940 | ---- | C] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.29 00:01:22 | 000,813,984 | ---- | C] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.21 20:15:51 | 000,595,405 | ---- | C] () -- C:\Windows\System32\Steinberg.bnf
[2010.05.21 20:15:51 | 000,049,606 | ---- | C] () -- C:\Windows\System32\Steinberg.pkg
[2010.05.21 20:15:51 | 000,036,008 | ---- | C] () -- C:\Windows\System32\Syncrosoft.pkg
[2010.05.21 20:15:51 | 000,000,950 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.21 20:15:51 | 000,000,024 | ---- | C] () -- C:\Windows\System32\synsopos.ini
[2010.05.12 17:01:58 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.03.08 21:31:20 | 000,001,968 | ---- | C] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:32:40 | 1579,026,944 | ---- | C] () -- C:\Windows\System\bla.avi
[2010.02.27 02:12:28 | 588,148,736 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.02.27 02:07:44 | 596,645,888 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2009.12.05 00:59:38 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.11.25 21:48:24 | 000,000,040 | ---- | C] () -- C:\Windows\RUNAWAY2.INI
[2009.11.21 23:27:21 | 000,000,059 | ---- | C] () -- C:\Windows\RUNAWAY.INI
[2009.11.20 18:59:26 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2009.11.20 18:59:26 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2009.11.05 06:08:37 | 000,000,032 | ---- | C] () -- C:\Windows\autostart.INI
[2009.09.28 00:02:54 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.08.27 17:14:00 | 000,005,086 | ---- | C] () -- C:\Users\Drake\AppData\Local\MyWinLockerInstaller.txt-20090827.log
[2009.08.10 23:42:35 | 000,033,792 | ---- | C] () -- C:\Windows\System32\drivers\libusb0.sys
[2009.08.01 01:30:02 | 000,007,592 | ---- | C] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2009.08.01 01:25:58 | 000,721,904 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009.07.31 22:05:12 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2009.07.26 02:11:48 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.07.26 02:11:47 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.07.25 17:48:37 | 000,055,296 | ---- | C] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.06 11:55:31 | 000,000,033 | ---- | C] () -- C:\Windows\LaunApp.ini
[2009.06.06 11:46:21 | 000,626,688 | ---- | C] () -- C:\Windows\Image.dll
[2009.06.06 11:46:21 | 000,000,036 | ---- | C] () -- C:\Windows\PidList.ini
[2009.05.28 10:07:14 | 000,075,024 | ---- | C] () -- C:\Windows\System32\LADFCoinst_i386.dll
[2009.03.12 11:32:52 | 000,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini
[2009.03.12 04:26:46 | 000,007,038 | ---- | C] () -- C:\ProgramData\ArcadeDeluxe2.log
[2009.02.13 01:50:52 | 000,097,792 | ---- | C] () -- C:\Windows\System32\INT15_64.dll
[2009.02.13 01:50:52 | 000,081,920 | ---- | C] () -- C:\Windows\System32\INT15.dll
[2009.02.13 01:50:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2009.02.13 01:50:52 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2009.02.13 01:50:04 | 000,118,784 | ---- | C] () -- C:\Windows\System32\VMC3KAPI.dll
[2009.02.11 21:03:58 | 000,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2009.02.11 21:03:58 | 000,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2009.02.11 21:03:57 | 000,000,060 | ---- | C] () -- C:\Windows\Prelaunch.ini
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.10.16 06:58:14 | 000,086,016 | ---- | C] () -- C:\Windows\System32\aspolyzt.dll
[2006.06.29 11:44:32 | 001,826,304 | ---- | C] () -- C:\Windows\System32\asconv3d.dll
[2005.07.06 10:59:58 | 000,028,672 | ---- | C] () -- C:\Windows\System32\asdrawli.dll
[2005.07.04 13:17:30 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ASDRAWMA.DLL
[2004.08.17 15:34:52 | 000,036,864 | ---- | C] () -- C:\Windows\System32\AS_SORT.DLL
[2003.05.22 10:31:44 | 000,033,792 | ---- | C] () -- C:\Windows\System32\ASDRAW32.DLL
[2002.07.12 14:29:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AS_MDB32.DLL

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben2.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben1.avi:TOC.WMV
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:814B9485
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:CDFF58FE
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:3B3A35EC
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F636E25
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:41099CE9
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:B623B5B8
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:CE0A077E
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:BB24555F

< End of report >
PRC - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Programme\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\TMonitor.exe ()
PRC - C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Programme\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Programme\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
PRC - C:\Users\Drake\AppData\Local\Temp\RtkBtMnt.exe (Realtek Semiconductor Corp.)
PRC - C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Programme\Logitech\G35\G35.exe (Logitech(c))
PRC - C:\Programme\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
PRC - C:\Programme\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
PRC - C:\Programme\Acer\Acer PowerSmart Manager\ePowerTray.exe (Acer Incorporated)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
PRC - C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
PRC - c:\Programme\Acer Bio Protection\CompPtcVUI.exe (Egis Technology Inc.)
PRC - C:\Programme\Apoint2K\Hidfind.exe (Alps Electric Co., Ltd.)
PRC - C:\Windows\PLFSetI.exe ()
PRC - C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Defender\MSASCui.exe (Microsoft Corporation)


========== Modules (SafeList) ==========

MOD - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
MOD - C:\Programme\Acer\Acer PowerSmart Manager\SysHook.dll (Acer Incorporated)


========== Win32 Services (SafeList) ==========

SRV - (TuneUp.Defrag) -- C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (Sony Ericsson PCCompanion) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe (Avanquest Software)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (CLHNService) -- C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe ()
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (ePowerSvc) -- C:\Programme\Acer\Acer PowerSmart Manager\ePowerSvc.exe (Acer Incorporated)
SRV - (NTI IScheduleSvc) -- C:\Programme\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
SRV - (IGBASVC) -- c:\Programme\Acer Bio Protection\BASVC.exe (Egis Technology Inc.)
SRV - (RS_Service) -- C:\Programme\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
SRV - (ICQ Service) -- C:\Programme\ICQ6Toolbar\ICQ Service.exe ()
SRV - (NTISchedulerSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe (NewTech Infosystems, Inc.)
SRV - (NTIBackupSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe (NewTech InfoSystems, Inc.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (AnyDVD) -- C:\Windows\System32\drivers\AnyDVD.sys (SlySoft, Inc.)
DRV - (ArcSec) -- C:\Windows\System32\drivers\ArcSec.sys ()
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\Windows\System32\drivers\eamon.sys (ESET)
DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) -- C:\Programme\Acer Arcade Deluxe\PlayMovie\000.fcl (CyberLink Corp.)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys ()
DRV - (LADF_SBVM) -- C:\Windows\System32\drivers\ladfSBVMi386.sys (Logitech)
DRV - (LADF_DHP2) -- C:\Windows\System32\drivers\ladfDHP2i386.sys (Logitech)
DRV - (usbaudio) USB-Audiotreiber (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (WinUSB) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (AlfaFF) -- C:\Windows\system32\drivers\AlfaFF.sys (Alfa Corporation)
DRV - (int15) -- C:\Windows\System32\drivers\int15.sys ()
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NTIDrvr) -- C:\Windows\System32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (FPSensor) EgisTech-Corp Fingerprint Reader Driver (FPSensor.sys) -- C:\Windows\System32\drivers\FPSensor.sys (Egis)
DRV - (RTSTOR) -- C:\Windows\System32\drivers\RTSTOR.sys (Realtek Semiconductor Corp.)
DRV - (hidshim) -- C:\Windows\System32\drivers\hidshim.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (nuvotonhidgeneric) -- C:\Windows\System32\drivers\nuvotonhidgeneric.sys (Nuvoton Technology Corporation)
DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (k57nd60x) Broadcom NetLink (TM) -- C:\Windows\System32\drivers\k57nd60x.sys (Broadcom Corporation)
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (NSCIRDA) -- C:\Windows\System32\drivers\nscirda.sys (National Semiconductor Corporation)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (ManyCam) -- C:\Windows\System32\drivers\ManyCam.sys (ManyCam LLC.)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (sscdmdm) -- C:\Windows\System32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\Windows\System32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\Windows\System32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (DKbFltr) -- C:\Windows\System32\drivers\DKbFltr.sys (Dritek System Inc.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (libusb0) -- C:\Windows\System32\drivers\libusb0.sys ()
DRV - (Nsynas32) -- C:\Windows\System32\drivers\NSynas32.sys (Syncrosoft Hard- und Software GmbH)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://start.facemoods.com/?a=stonicde&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Acer.com Worldwide - Select your local country or region [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Facemoods Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=

========== FireFox ==========



FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010.06.05 16:50:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.03.21 12:31:10 | 000,000,000 | ---D | M]

[2009.07.25 21:26:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Extensions
[2011.02.15 09:39:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009.07.28 19:59:09 | 000,002,236 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\askcom.xml
[2009.05.19 10:24:54 | 000,000,894 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\conduit.xml
[2009.08.01 01:36:31 | 000,002,399 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\daemon-search.xml
[2011.02.13 07:03:27 | 000,000,955 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\icqplugin.xml
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2009.07.27 18:47:47 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2009.07.30 20:23:46 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.07.12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll
[2010.12.26 22:19:16 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.12.26 22:19:16 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.09.28 17:14:06 | 000,002,040 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\fcmdSrchstonicde.xml
[2010.12.26 22:19:16 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.12.26 22:19:16 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.12.26 22:19:16 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Programme\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Programme\kikin\ie_kikin.dll (kikin)
O3 - HKLM\..\Toolbar: (Steganos Internet Anonym) - {00000000-5736-4205-0008-f7ed0776fb27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Programme\facemoods.com\facemoods\1.4.17.3\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Steganos Internet Anonym) - {00000000-5736-4205-0008-F7ED0776FB27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Softonic Deutsch Toolbar) - {8DBB6D8E-E4A6-4E3B-9753-AF78B226441C} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe (Acer Incorporated)
O4 - HKLM..\Run: [ArcadeDeluxeAgent] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [LManager] C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Logitech G35] C:\Programme\Logitech\G35\G35.exe (Logitech(c))
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Programme\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [VitaKeyPdtWzd] c:\Programme\Acer Bio Protection\PdtWzd.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ManyCam] C:\Program Files\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
O4 - HKCU..\Run: [Sony Ericsson PC Companion] C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [BrowserBallot] C:\Windows\System32\browserchoice.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Cubase SX Update] C:\Programme\Steinberg\Cubase SX\CubaseSXUpd.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Programme\kikin\ie_kikin.dll (kikin)
O9 - Extra Button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra 'Tools' menuitem : Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.49.254
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O24 - Desktop BackupWallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell - "" = AutoRun
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\AutoRun\command - "" = F:\Install.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\menu1\command - "" = F:\Install.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 360 Days ==========

[2011.02.15 13:48:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Malwarebytes
[2011.02.15 13:48:40 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.02.15 13:48:37 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.02.15 13:48:37 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.02.15 09:11:33 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.02.15 09:11:33 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.02.15 09:11:33 | 000,797,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.02.15 09:11:32 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.02.15 09:11:32 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.02.15 09:11:32 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.02.15 09:11:31 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.02.15 09:11:31 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.02.15 09:11:31 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.02.15 09:11:31 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.02.15 09:11:31 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.02.15 09:11:31 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.02.15 09:11:30 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.02.15 09:11:29 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.02.15 09:11:29 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.02.15 09:11:29 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.02.15 09:11:28 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.02.15 09:11:28 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.02.15 09:11:28 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.02.15 09:11:27 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.02.15 09:11:25 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.02.15 09:11:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.02.15 09:08:37 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2011.02.14 21:29:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2011.02.14 20:50:31 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2011.02.14 16:20:09 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 16:01:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
[2011.02.14 15:48:21 | 000,030,016 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2011.02.14 15:48:20 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2011.02.11 05:43:03 | 002,039,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.02.11 05:42:57 | 003,602,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011.02.11 05:42:55 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011.02.11 05:42:39 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.02.11 05:42:35 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011.02.11 05:42:35 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.02.11 05:42:34 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.02.11 05:42:34 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.02.11 05:42:34 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011.02.11 05:42:29 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011.02.11 05:42:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.24 19:03:31 | 000,000,000 | ---D | C] -- C:\Programme\facemoods.com
[2011.01.24 19:01:47 | 000,000,000 | ---D | C] -- C:\Programme\Trymedia
[2011.01.24 19:01:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
[2011.01.24 19:01:40 | 000,000,000 | ---D | C] -- C:\Programme\PopCap Games
[2011.01.23 11:47:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\DVDFab
[2011.01.23 11:46:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 8
[2011.01.23 11:45:56 | 000,000,000 | ---D | C] -- C:\Programme\DVDFab 8
[2011.01.23 09:59:28 | 005,185,224 | ---- | C] (MPC-HC Team ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:57:40 | 014,871,584 | ---- | C] (Fengtao Software Inc. ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.22 23:21:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\The KMPlayer
[2011.01.22 23:21:06 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
[2011.01.22 23:20:55 | 000,000,000 | ---D | C] -- C:\Programme\The KMPlayer
[2011.01.22 23:08:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\ArcSoft
[2011.01.22 23:05:58 | 000,000,000 | ---D | C] -- C:\ProgramData\ArcSoft
[2011.01.22 23:05:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft TotalMedia Theatre 5
[2011.01.22 23:04:13 | 000,000,000 | ---D | C] -- C:\Programme\ArcSoft
[2011.01.22 18:32:45 | 065,071,864 | ---- | C] (ArcSoft ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:20 | 005,860,207 | ---- | C] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 18:08:13 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Playlists
[2011.01.22 18:02:39 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curtains
[2011.01.22 18:02:38 | 000,000,000 | ---D | C] -- C:\Windows\Curtains
[2011.01.22 18:02:36 | 000,000,000 | ---D | C] -- C:\Programme\Curtains
[2011.01.22 17:55:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Team MediaPortal
[2011.01.22 17:54:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Team MediaPortal
[2011.01.22 17:54:19 | 000,000,000 | ---D | C] -- C:\Programme\Team MediaPortal
[2011.01.22 17:46:12 | 032,771,954 | ---- | C] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:35:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\AnyDVDHD
[2011.01.22 14:16:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2011.01.22 14:13:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
[2011.01.22 14:13:38 | 000,000,000 | ---D | C] -- C:\Programme\SlySoft
[2011.01.19 03:13:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.01.19 03:09:15 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2011.01.19 03:05:01 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011.01.19 03:05:01 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011.01.19 03:05:01 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011.01.19 03:02:42 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.01.19 03:02:40 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.01.17 15:15:30 | 000,000,000 | ---D | C] -- C:\PS3
[2011.01.14 03:06:52 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011.01.14 03:06:46 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011.01.12 14:36:15 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2011.01.12 14:36:14 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011.01.12 14:36:14 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011.01.12 14:36:09 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011.01.12 14:36:08 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011.01.12 14:36:08 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011.01.12 14:36:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011.01.12 14:35:47 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.01.12 14:35:41 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011.01.12 14:35:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\config
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\codes
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\wiiflow
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\WAD
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\txtcodes
[2010.12.17 10:08:27 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\WBFSManager
[2010.12.17 09:21:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\WBFS Manager Covers
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Programme\WBFS
[2010.12.17 09:21:06 | 000,000,000 | ---D | C] -- C:\WII
[2010.12.16 23:57:57 | 000,031,088 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 18:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Oberon Games
[2010.12.01 20:06:29 | 000,108,104 | ---- | C] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.25 19:29:05 | 000,089,256 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\Programme\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Ericsson
[2010.11.14 07:45:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Sony
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Podcasts
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Media Go
[2010.11.14 07:42:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2010.11.14 07:42:29 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Sony Shared
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\Programme\Sony
[2010.11.14 07:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\Programme\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010.11.14 07:40:32 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Apple
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Programme\Sony Media Go Install
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Sony
[2010.11.14 07:20:00 | 000,000,000 | ---D | C] -- C:\Users\Drake\Xperia X10
[2010.11.11 18:40:20 | 000,080,448 | ---- | C] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.10.24 13:12:22 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\Programme\Carambis
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Carambis
[2010.10.24 06:03:20 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.10.24 06:03:09 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.10.24 06:03:08 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.10.24 06:02:59 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.10.24 06:02:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.10.24 06:02:27 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.10.24 06:02:27 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.10.24 06:02:17 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.10.24 06:02:10 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.10.24 06:01:55 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.10.24 06:01:52 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.10.24 06:01:50 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.10.24 06:01:49 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.10.24 06:00:14 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.10.24 06:00:14 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.10.24 06:00:14 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.10.24 06:00:14 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.10.24 06:00:13 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010.10.24 06:00:13 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.10.24 06:00:13 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.10.24 05:06:07 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\NSV
[2010.10.24 04:42:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2010.10.24 04:42:55 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Programme\Winamp Detect
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Winamp
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Programme\Winamp
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\UseNeXT
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\Programme\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UseNeXT
[2010.09.21 02:36:09 | 000,000,000 | ---D | C] -- C:\Programme\Veetle
[2010.09.09 05:17:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\WWE BEST OF PPV
[2010.09.08 15:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.08 15:46:42 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.09.08 15:37:59 | 000,423,656 | ---- | C] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:59 | 000,153,376 | ---- | C] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.08 15:37:43 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.09.07 01:01:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
[2010.09.07 01:01:10 | 000,000,000 | ---D | C] -- C:\Programme\JDownloader
[2010.08.30 22:07:53 | 000,000,000 | ---D | C] -- C:\Users\Drake\NDS
[2010.08.17 20:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2010.08.07 21:16:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\Saved Games
[2010.08.01 18:24:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\c
[2010.06.18 19:02:04 | 000,000,000 | R-SD | C] -- C:\Users\Drake\Documents\My Stationery
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:27 | 000,000,000 | ---D | C] -- C:\Programme\PSP Pandora Deluxe
[2010.06.05 16:50:37 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:22 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\xing shared
[2010.06.05 16:50:07 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.06.05 16:50:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010.06.05 16:50:02 | 000,000,000 | ---D | C] -- C:\Programme\Real
[2010.06.03 00:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:16 | 000,000,000 | ---D | C] -- C:\Programme\Vistumbler
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\kikin
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Programme\kikin
[2010.05.21 20:53:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Steinberg
[2010.05.21 20:15:51 | 000,598,016 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\SYNSOPOS.exe
[2010.05.21 20:15:51 | 000,025,600 | R--- | C] (OxYGeN) -- C:\Windows\System32\SYNSOACC.dll
[2010.05.21 20:15:51 | 000,017,784 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\drivers\NSynas32.sys
[2010.05.21 20:15:51 | 000,016,896 | ---- | C] (Syncrosoft GmbH) -- C:\Windows\System32\drivers\SynasUSB.sys
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:06:29 | 000,000,000 | ---D | C] -- C:\Programme\Steinberg
[2010.05.18 21:21:23 | 000,081,920 | RHS- | C] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:37 | 000,081,920 | RHS- | C] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:01:58 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Programme\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS\0207030.022
[2010.04.28 16:13:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\NPS
[2010.04.26 23:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.17 02:55:10 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Dennis N
[2010.04.16 22:37:23 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2010.04.16 22:35:52 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Leadertech
[2010.04.16 22:35:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2010.04.16 22:35:15 | 000,000,000 | ---D | C] -- C:\Programme\Logitech
[2010.03.21 14:11:09 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.03.21 14:11:02 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010.03.21 14:11:02 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.03.21 14:11:01 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.03.21 14:10:01 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010.03.21 14:00:19 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010.03.18 13:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.16 13:11:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Art
[2010.03.10 20:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:32:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Yu-Gi-Oh! ONLINE 3
[2010.03.08 21:32:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010.03.08 21:31:59 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010.03.08 21:31:58 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2010.03.08 21:31:57 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010.03.08 21:31:57 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010.03.08 21:31:57 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010.03.08 21:31:56 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010.03.08 21:31:56 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010.03.08 21:31:44 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010.03.08 21:31:44 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010.03.08 21:31:44 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010.03.08 21:31:42 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010.03.08 21:31:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\konami
[2010.03.08 21:30:41 | 000,000,000 | ---D | C] -- C:\Programme\konami
[2010.03.07 23:42:01 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Microsoft Games
[2010.03.07 06:13:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Neuer Ordner
[2010.03.05 12:25:26 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Real
[2010.02.26 16:07:28 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010.02.26 16:07:26 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010.02.26 16:07:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010.02.26 16:07:24 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010.02.26 16:07:23 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010.02.26 16:07:17 | 000,000,000 | ---D | C] -- C:\Temp
[2010.02.26 16:02:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Wizards of the Coast
[2010.02.26 16:01:50 | 000,000,000 | ---D | C] -- C:\Programme\Wizards of the Coast
[2010.02.26 16:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wizards of the Coast
[2009.06.06 20:29:30 | 000,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 360 Days ==========

[2011.02.15 15:54:04 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.02.15 15:54:04 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.02.15 15:54:04 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.02.15 15:54:04 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.02.15 15:51:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.02.15 15:50:06 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011.02.15 15:47:57 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.02.15 15:47:47 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:46 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.15 15:46:58 | 3215,814,656 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.15 15:46:00 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.02.15 13:48:40 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 23:52:58 | 000,055,296 | ---- | M] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.14 21:34:33 | 000,296,800 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.02.14 20:33:44 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011.02.14 18:28:56 | 000,000,558 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Drake.job
[2011.02.14 16:20:15 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 15:48:15 | 000,001,871 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2011.02.14 15:48:15 | 000,001,857 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | M] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.02.12 05:53:45 | 000,001,975 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.02.12 05:17:36 | 000,007,592 | ---- | M] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2011.01.28 12:40:42 | 000,027,343 | ---- | M] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:28 | 000,076,235 | ---- | M] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:35:33 | 011,779,216 | ---- | M] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | M] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | M] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:54:13 | 000,304,944 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:33 | 000,062,432 | ---- | M] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:32 | 000,000,337 | ---- | M] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | M] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 10:00:09 | 005,185,224 | ---- | M] (MPC-HC Team ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:59:48 | 014,871,584 | ---- | M] (Fengtao Software Inc. ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.23 09:05:47 | 000,181,010 | ---- | M] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | M] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:17 | 000,304,936 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | M] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | M] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:38:42 | 065,071,864 | ---- | M] (ArcSoft ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:45 | 005,860,207 | ---- | M] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:53:08 | 005,567,604 | ---- | M] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 17:50:17 | 032,771,954 | ---- | M] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:48:30 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.20 17:08:16 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.01.20 17:08:06 | 001,029,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.01.20 17:08:06 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.20 17:08:06 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.01.20 17:08:06 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.20 17:07:58 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.20 17:06:38 | 002,873,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.01.20 17:06:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.01.20 17:04:54 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.01.20 17:04:54 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.01.20 15:26:30 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.01.20 15:24:32 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.20 15:24:26 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.20 15:15:10 | 000,979,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.01.20 15:14:39 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.01.20 15:14:03 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.01.20 15:14:03 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.01.20 15:12:46 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.20 15:11:34 | 000,486,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.01.20 14:47:51 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.20 14:44:05 | 001,068,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.20 14:44:03 | 000,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.13 10:07:30 | 000,636,112 | ---- | M] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2011.01.08 09:47:50 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.08 07:28:49 | 000,292,352 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.12.31 14:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.12.28 16:55:03 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2010.12.20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.12.20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.12.20 17:34:30 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.12.20 17:34:18 | 000,471,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.12.20 17:33:32 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.12.20 17:33:31 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010.12.20 16:37:57 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010.12.20 15:55:46 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.12.17 09:21:44 | 000,000,944 | ---- | M] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.16 23:57:57 | 000,031,088 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 15:49:23 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2010.12.01 20:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.28 17:12:20 | 000,612,230 | ---- | M] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.27 13:51:22 | 538,084,740 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.11.27 13:43:38 | 722,565,647 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.25 19:29:05 | 000,089,256 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.22 08:13:23 | 005,142,954 | ---- | M] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.19 15:33:22 | 000,030,528 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2010.11.19 15:30:00 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2010.11.19 15:29:54 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2010.11.14 17:10:51 | 000,002,049 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | M] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.11.11 18:40:20 | 000,080,448 | ---- | M] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.11.04 19:56:07 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010.11.04 19:55:38 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010.11.04 19:55:38 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010.10.28 14:20:12 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.10.24 04:42:56 | 000,000,780 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.19 10:41:44 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.18 21:36:25 | 000,000,086 | ---- | M] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.18 14:37:35 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010.10.15 15:08:12 | 003,602,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,550,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.10.14 21:09:16 | 000,001,646 | ---- | M] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | M] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.26 22:02:45 | 000,001,398 | ---- | M] () -- C:\Users\Drake\Desktop\DivX Movies.lnk
[2010.09.26 22:02:38 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.09.21 09:10:32 | 000,192,504 | ---- | M] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.13 14:56:41 | 008,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:47 | 000,153,376 | ---- | M] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.07 01:01:21 | 000,000,832 | ---- | M] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.09.06 17:19:06 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.08.31 16:46:37 | 000,954,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.08.31 16:46:37 | 000,954,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.08.30 21:47:17 | 318,348,632 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.08.26 17:37:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.08.26 17:34:50 | 001,696,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010.08.26 17:33:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.08.26 15:23:58 | 004,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.08.20 17:05:07 | 000,867,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.08.17 20:24:35 | 000,000,961 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | M] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.03 23:33:01 | 000,011,566 | ---- | M] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | M] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | M] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:48 | 000,118,779 | ---- | M] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:12 | 000,441,321 | ---- | M] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | M] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | M] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | M] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:39 | 000,120,630 | ---- | M] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:21 | 000,108,693 | ---- | M] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | M] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | M] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | M] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:52 | 000,216,757 | ---- | M] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:14 | 000,213,134 | ---- | M] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:21 | 000,022,565 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:05 | 000,019,937 | ---- | M] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:49 | 000,028,357 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:47 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:36 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.18 18:31:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.06.16 16:30:44 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.06.16 01:00:39 | 000,280,547 | ---- | M] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.06.05 16:50:37 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:07 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.05.29 00:12:18 | 000,001,706 | ---- | M] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:40 | 000,813,984 | ---- | M] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.29 00:01:30 | 001,324,940 | ---- | M] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.27 21:08:17 | 000,081,920 | ---- | M] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.05.21 20:15:51 | 000,000,950 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.18 21:21:59 | 000,081,920 | RHS- | M] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:54 | 000,081,920 | RHS- | M] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:02:01 | 000,001,352 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk
[2010.05.12 17:01:58 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.05.04 20:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2010.05.04 20:10:47 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.04.26 23:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.05 18:02:42 | 000,317,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.04.05 18:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.03.25 23:42:42 | 588,148,736 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.03.25 23:42:34 | 596,645,888 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.10 20:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:31:20 | 000,001,968 | ---- | M] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:48:16 | 1579,026,944 | ---- | M] () -- C:\Windows\System\bla.avi
[2010.03.04 18:33:45 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.02.21 00:06:41 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010.02.21 00:05:14 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.02.15 13:48:40 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | C] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.01.28 12:40:42 | 000,027,343 | ---- | C] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:27 | 000,076,235 | ---- | C] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:07:05 | 011,779,216 | ---- | C] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | C] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:53:51 | 000,304,944 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:16 | 000,062,432 | ---- | C] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:31 | 000,000,337 | ---- | C] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | C] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 09:05:42 | 000,181,010 | ---- | C] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | C] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:08 | 000,304,936 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | C] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | C] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:02:39 | 000,052,224 | ---- | C] () -- C:\Windows\unbud001.exe
[2011.01.22 18:02:39 | 000,049,664 | ---- | C] () -- C:\Windows\Curtains.scr
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:52:45 | 005,567,604 | ---- | C] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 14:15:39 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.13 10:06:23 | 000,636,112 | ---- | C] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2010.12.17 09:21:44 | 000,000,944 | ---- | C] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.02 14:45:25 | 538,084,740 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.12.02 14:44:48 | 722,565,647 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.28 17:12:20 | 000,612,230 | ---- | C] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.22 08:13:23 | 005,142,954 | ---- | C] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.14 17:10:51 | 000,002,049 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | C] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.10.24 12:43:31 | 3215,814,656 | -HS- | C] () -- C:\hiberfil.sys
[2010.10.24 04:42:56 | 000,000,780 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.18 21:36:25 | 000,000,086 | ---- | C] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.14 21:09:16 | 000,001,646 | ---- | C] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | C] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.21 09:10:32 | 000,192,504 | ---- | C] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.07 01:01:21 | 000,000,832 | ---- | C] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.08.17 20:24:48 | 000,000,921 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.08.17 20:24:35 | 000,000,961 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | C] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.04 17:12:15 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2010.08.03 23:33:01 | 000,011,566 | ---- | C] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | C] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | C] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:47 | 000,118,779 | ---- | C] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:11 | 000,441,321 | ---- | C] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | C] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | C] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | C] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:37 | 000,120,630 | ---- | C] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:20 | 000,108,693 | ---- | C] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | C] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | C] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | C] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:51 | 000,216,757 | ---- | C] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:13 | 000,213,134 | ---- | C] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:20 | 000,022,565 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:04 | 000,019,937 | ---- | C] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:48 | 000,028,357 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:46 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.21 06:43:40 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.16 01:00:39 | 000,280,547 | ---- | C] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.05.29 00:12:18 | 000,001,706 | ---- | C] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:22 | 001,324,940 | ---- | C] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.29 00:01:22 | 000,813,984 | ---- | C] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.21 20:15:51 | 000,595,405 | ---- | C] () -- C:\Windows\System32\Steinberg.bnf
[2010.05.21 20:15:51 | 000,049,606 | ---- | C] () -- C:\Windows\System32\Steinberg.pkg
[2010.05.21 20:15:51 | 000,036,008 | ---- | C] () -- C:\Windows\System32\Syncrosoft.pkg
[2010.05.21 20:15:51 | 000,000,950 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.21 20:15:51 | 000,000,024 | ---- | C] () -- C:\Windows\System32\synsopos.ini
[2010.05.12 17:01:58 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.03.08 21:31:20 | 000,001,968 | ---- | C] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:32:40 | 1579,026,944 | ---- | C] () -- C:\Windows\System\bla.avi
[2010.02.27 02:12:28 | 588,148,736 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.02.27 02:07:44 | 596,645,888 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2009.12.05 00:59:38 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.11.25 21:48:24 | 000,000,040 | ---- | C] () -- C:\Windows\RUNAWAY2.INI
[2009.11.21 23:27:21 | 000,000,059 | ---- | C] () -- C:\Windows\RUNAWAY.INI
[2009.11.20 18:59:26 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2009.11.20 18:59:26 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2009.11.05 06:08:37 | 000,000,032 | ---- | C] () -- C:\Windows\autostart.INI
[2009.09.28 00:02:54 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.08.27 17:14:00 | 000,005,086 | ---- | C] () -- C:\Users\Drake\AppData\Local\MyWinLockerInstaller.txt-20090827.log
[2009.08.10 23:42:35 | 000,033,792 | ---- | C] () -- C:\Windows\System32\drivers\libusb0.sys
[2009.08.01 01:30:02 | 000,007,592 | ---- | C] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2009.08.01 01:25:58 | 000,721,904 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009.07.31 22:05:12 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2009.07.26 02:11:48 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.07.26 02:11:47 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.07.25 17:48:37 | 000,055,296 | ---- | C] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.06 11:55:31 | 000,000,033 | ---- | C] () -- C:\Windows\LaunApp.ini
[2009.06.06 11:46:21 | 000,626,688 | ---- | C] () -- C:\Windows\Image.dll
[2009.06.06 11:46:21 | 000,000,036 | ---- | C] () -- C:\Windows\PidList.ini
[2009.05.28 10:07:14 | 000,075,024 | ---- | C] () -- C:\Windows\System32\LADFCoinst_i386.dll
[2009.03.12 11:32:52 | 000,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini
[2009.03.12 04:26:46 | 000,007,038 | ---- | C] () -- C:\ProgramData\ArcadeDeluxe2.log
[2009.02.13 01:50:52 | 000,097,792 | ---- | C] () -- C:\Windows\System32\INT15_64.dll
[2009.02.13 01:50:52 | 000,081,920 | ---- | C] () -- C:\Windows\System32\INT15.dll
[2009.02.13 01:50:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2009.02.13 01:50:52 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2009.02.13 01:50:04 | 000,118,784 | ---- | C] () -- C:\Windows\System32\VMC3KAPI.dll
[2009.02.11 21:03:58 | 000,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2009.02.11 21:03:58 | 000,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2009.02.11 21:03:57 | 000,000,060 | ---- | C] () -- C:\Windows\Prelaunch.ini
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.10.16 06:58:14 | 000,086,016 | ---- | C] () -- C:\Windows\System32\aspolyzt.dll
[2006.06.29 11:44:32 | 001,826,304 | ---- | C] () -- C:\Windows\System32\asconv3d.dll
[2005.07.06 10:59:58 | 000,028,672 | ---- | C] () -- C:\Windows\System32\asdrawli.dll
[2005.07.04 13:17:30 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ASDRAWMA.DLL
[2004.08.17 15:34:52 | 000,036,864 | ---- | C] () -- C:\Windows\System32\AS_SORT.DLL
[2003.05.22 10:31:44 | 000,033,792 | ---- | C] () -- C:\Windows\System32\ASDRAW32.DLL
[2002.07.12 14:29:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AS_MDB32.DLL

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben2.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben1.avi:TOC.WMV
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:814B9485
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:CDFF58FE
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:3B3A35EC
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F636E25
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:41099CE9
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:B623B5B8
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:CE0A077E
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:BB24555F

< End of report >


Alt 14.02.2011, 16:22   #6
-D3nYo-
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



C:\Windows\System32\tzres.dll
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\config
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\codes
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\wiiflow
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\WAD
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\txtcodes
[2010.12.17 10:08:27 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\WBFSManager
[2010.12.17 09:21:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\WBFS Manager Covers
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Programme\WBFS
[2010.12.17 09:21:06 | 000,000,000 | ---D | C] -- C:\WII
[2010.12.16 23:57:57 | 000,031,088 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 18:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Oberon Games
[2010.12.01 20:06:29 | 000,108,104 | ---- | C] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.25 19:29:05 | 000,089,256 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\Programme\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Ericsson
[2010.11.14 07:45:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Sony
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Podcasts
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Media Go
[2010.11.14 07:42:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2010.11.14 07:42:29 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Sony Shared
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\Programme\Sony
[2010.11.14 07:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\Programme\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010.11.14 07:40:32 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Apple
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Programme\Sony Media Go Install
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Sony
[2010.11.14 07:20:00 | 000,000,000 | ---D | C] -- C:\Users\Drake\Xperia X10
[2010.11.11 18:40:20 | 000,080,448 | ---- | C] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.10.24 13:12:22 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\Programme\Carambis
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Carambis
[2010.10.24 06:03:20 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.10.24 06:03:09 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.10.24 06:03:08 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.10.24 06:02:59 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.10.24 06:02:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.10.24 06:02:27 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.10.24 06:02:27 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.10.24 06:02:17 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.10.24 06:02:10 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.10.24 06:01:55 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.10.24 06:01:52 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.10.24 06:01:50 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.10.24 06:01:49 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.10.24 06:00:14 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.10.24 06:00:14 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.10.24 06:00:14 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.10.24 06:00:14 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.10.24 06:00:13 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010.10.24 06:00:13 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.10.24 06:00:13 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.10.24 05:06:07 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\NSV
[2010.10.24 04:42:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2010.10.24 04:42:55 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Programme\Winamp Detect
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Winamp
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Programme\Winamp
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\UseNeXT
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\Programme\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UseNeXT
[2010.09.21 02:36:09 | 000,000,000 | ---D | C] -- C:\Programme\Veetle
[2010.09.09 05:17:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\WWE BEST OF PPV
[2010.09.08 15:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.08 15:46:42 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.09.08 15:37:59 | 000,423,656 | ---- | C] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:59 | 000,153,376 | ---- | C] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.08 15:37:43 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.09.07 01:01:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
[2010.09.07 01:01:10 | 000,000,000 | ---D | C] -- C:\Programme\JDownloader
[2010.08.30 22:07:53 | 000,000,000 | ---D | C] -- C:\Users\Drake\NDS
[2010.08.17 20:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2010.08.07 21:16:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\Saved Games
[2010.08.01 18:24:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\c
[2010.06.18 19:02:04 | 000,000,000 | R-SD | C] -- C:\Users\Drake\Documents\My Stationery
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:27 | 000,000,000 | ---D | C] -- C:\Programme\PSP Pandora Deluxe
[2010.06.05 16:50:37 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:22 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\xing shared
[2010.06.05 16:50:07 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.06.05 16:50:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010.06.05 16:50:02 | 000,000,000 | ---D | C] -- C:\Programme\Real
[2010.06.03 00:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:16 | 000,000,000 | ---D | C] -- C:\Programme\Vistumbler
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\kikin
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Programme\kikin
[2010.05.21 20:53:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Steinberg
[2010.05.21 20:15:51 | 000,598,016 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\SYNSOPOS.exe
[2010.05.21 20:15:51 | 000,025,600 | R--- | C] (OxYGeN) -- C:\Windows\System32\SYNSOACC.dll
[2010.05.21 20:15:51 | 000,017,784 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\drivers\NSynas32.sys
[2010.05.21 20:15:51 | 000,016,896 | ---- | C] (Syncrosoft GmbH) -- C:\Windows\System32\drivers\SynasUSB.sys
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:06:29 | 000,000,000 | ---D | C] -- C:\Programme\Steinberg
[2010.05.18 21:21:23 | 000,081,920 | RHS- | C] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:37 | 000,081,920 | RHS- | C] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:01:58 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Programme\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS\0207030.022
[2010.04.28 16:13:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\NPS
[2010.04.26 23:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.17 02:55:10 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Dennis N
[2010.04.16 22:37:23 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2010.04.16 22:35:52 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Leadertech
[2010.04.16 22:35:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2010.04.16 22:35:15 | 000,000,000 | ---D | C] -- C:\Programme\Logitech
[2010.03.21 14:11:09 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.03.21 14:11:02 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010.03.21 14:11:02 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.03.21 14:11:01 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.03.21 14:10:01 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010.03.21 14:00:19 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010.03.18 13:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.16 13:11:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Art
[2010.03.10 20:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:32:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Yu-Gi-Oh! ONLINE 3
[2010.03.08 21:32:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010.03.08 21:31:59 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010.03.08 21:31:58 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2010.03.08 21:31:57 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010.03.08 21:31:57 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010.03.08 21:31:57 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010.03.08 21:31:56 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010.03.08 21:31:56 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010.03.08 21:31:44 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010.03.08 21:31:44 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010.03.08 21:31:44 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010.03.08 21:31:42 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010.03.08 21:31:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\konami
[2010.03.08 21:30:41 | 000,000,000 | ---D | C] -- C:\Programme\konami
[2010.03.07 23:42:01 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Microsoft Games
[2010.03.07 06:13:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Neuer Ordner
[2010.03.05 12:25:26 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Real
[2010.02.26 16:07:28 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010.02.26 16:07:26 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010.02.26 16:07:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010.02.26 16:07:24 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010.02.26 16:07:23 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010.02.26 16:07:17 | 000,000,000 | ---D | C] -- C:\Temp
[2010.02.26 16:02:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Wizards of the Coast
[2010.02.26 16:01:50 | 000,000,000 | ---D | C] -- C:\Programme\Wizards of the Coast
[2010.02.26 16:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wizards of the Coast
[2009.06.06 20:29:30 | 000,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 360 Days ==========

[2011.02.15 15:54:04 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.02.15 15:54:04 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.02.15 15:54:04 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.02.15 15:54:04 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.02.15 15:51:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.02.15 15:50:06 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011.02.15 15:47:57 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.02.15 15:47:47 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:46 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.15 15:46:58 | 3215,814,656 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.15 15:46:00 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.02.15 13:48:40 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 23:52:58 | 000,055,296 | ---- | M] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.14 21:34:33 | 000,296,800 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.02.14 20:33:44 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011.02.14 18:28:56 | 000,000,558 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Drake.job
[2011.02.14 16:20:15 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 15:48:15 | 000,001,871 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2011.02.14 15:48:15 | 000,001,857 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | M] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.02.12 05:53:45 | 000,001,975 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.02.12 05:17:36 | 000,007,592 | ---- | M] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2011.01.28 12:40:42 | 000,027,343 | ---- | M] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:28 | 000,076,235 | ---- | M] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:35:33 | 011,779,216 | ---- | M] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | M] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | M] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:54:13 | 000,304,944 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:33 | 000,062,432 | ---- | M] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:32 | 000,000,337 | ---- | M] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | M] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 10:00:09 | 005,185,224 | ---- | M] (MPC-HC Team ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:59:48 | 014,871,584 | ---- | M] (Fengtao Software Inc. ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.23 09:05:47 | 000,181,010 | ---- | M] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | M] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:17 | 000,304,936 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | M] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | M] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:38:42 | 065,071,864 | ---- | M] (ArcSoft ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:45 | 005,860,207 | ---- | M] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:53:08 | 005,567,604 | ---- | M] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 17:50:17 | 032,771,954 | ---- | M] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:48:30 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.20 17:08:16 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.01.20 17:08:06 | 001,029,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.01.20 17:08:06 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.20 17:08:06 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.01.20 17:08:06 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.20 17:07:58 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.20 17:06:38 | 002,873,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.01.20 17:06:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.01.20 17:04:54 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.01.20 17:04:54 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.01.20 15:26:30 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.01.20 15:24:32 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.20 15:24:26 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.20 15:15:10 | 000,979,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.01.20 15:14:39 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.01.20 15:14:03 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.01.20 15:14:03 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.01.20 15:12:46 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.20 15:11:34 | 000,486,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.01.20 14:47:51 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.20 14:44:05 | 001,068,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.20 14:44:03 | 000,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.13 10:07:30 | 000,636,112 | ---- | M] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2011.01.08 09:47:50 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.08 07:28:49 | 000,292,352 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.12.31 14:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.12.28 16:55:03 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2010.12.20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.12.20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.12.20 17:34:30 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.12.20 17:34:18 | 000,471,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.12.20 17:33:32 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.12.20 17:33:31 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010.12.20 16:37:57 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010.12.20 15:55:46 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.12.17 09:21:44 | 000,000,944 | ---- | M] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.16 23:57:57 | 000,031,088 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 15:49:23 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2010.12.01 20:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.28 17:12:20 | 000,612,230 | ---- | M] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.27 13:51:22 | 538,084,740 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.11.27 13:43:38 | 722,565,647 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.25 19:29:05 | 000,089,256 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.22 08:13:23 | 005,142,954 | ---- | M] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.19 15:33:22 | 000,030,528 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2010.11.19 15:30:00 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2010.11.19 15:29:54 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2010.11.14 17:10:51 | 000,002,049 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | M] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.11.11 18:40:20 | 000,080,448 | ---- | M] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.11.04 19:56:07 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010.11.04 19:55:38 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010.11.04 19:55:38 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010.10.28 14:20:12 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.10.24 04:42:56 | 000,000,780 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.19 10:41:44 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.18 21:36:25 | 000,000,086 | ---- | M] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.18 14:37:35 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010.10.15 15:08:12 | 003,602,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,550,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.10.14 21:09:16 | 000,001,646 | ---- | M] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | M] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.26 22:02:45 | 000,001,398 | ---- | M] () -- C:\Users\Drake\Desktop\DivX Movies.lnk
[2010.09.26 22:02:38 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.09.21 09:10:32 | 000,192,504 | ---- | M] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.13 14:56:41 | 008,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:47 | 000,153,376 | ---- | M] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.07 01:01:21 | 000,000,832 | ---- | M] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.09.06 17:19:06 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.08.31 16:46:37 | 000,954,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.08.31 16:46:37 | 000,954,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.08.30 21:47:17 | 318,348,632 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.08.26 17:37:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.08.26 17:34:50 | 001,696,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010.08.26 17:33:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.08.26 15:23:58 | 004,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.08.20 17:05:07 | 000,867,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.08.17 20:24:35 | 000,000,961 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | M] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.03 23:33:01 | 000,011,566 | ---- | M] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | M] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | M] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:48 | 000,118,779 | ---- | M] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:12 | 000,441,321 | ---- | M] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | M] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | M] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | M] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:39 | 000,120,630 | ---- | M] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:21 | 000,108,693 | ---- | M] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | M] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | M] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | M] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:52 | 000,216,757 | ---- | M] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:14 | 000,213,134 | ---- | M] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:21 | 000,022,565 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:05 | 000,019,937 | ---- | M] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:49 | 000,028,357 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:47 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:36 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.18 18:31:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.06.16 16:30:44 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.06.16 01:00:39 | 000,280,547 | ---- | M] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.06.05 16:50:37 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:07 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.05.29 00:12:18 | 000,001,706 | ---- | M] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:40 | 000,813,984 | ---- | M] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.29 00:01:30 | 001,324,940 | ---- | M] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.27 21:08:17 | 000,081,920 | ---- | M] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.05.21 20:15:51 | 000,000,950 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.18 21:21:59 | 000,081,920 | RHS- | M] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:54 | 000,081,920 | RHS- | M] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:02:01 | 000,001,352 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk
[2010.05.12 17:01:58 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.05.04 20:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2010.05.04 20:10:47 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.04.26 23:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.05 18:02:42 | 000,317,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.04.05 18:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.03.25 23:42:42 | 588,148,736 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.03.25 23:42:34 | 596,645,888 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.10 20:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:31:20 | 000,001,968 | ---- | M] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:48:16 | 1579,026,944 | ---- | M] () -- C:\Windows\System\bla.avi
[2010.03.04 18:33:45 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.02.21 00:06:41 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010.02.21 00:05:14 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.02.15 13:48:40 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | C] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.01.28 12:40:42 | 000,027,343 | ---- | C] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:27 | 000,076,235 | ---- | C] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:07:05 | 011,779,216 | ---- | C] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | C] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:53:51 | 000,304,944 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:16 | 000,062,432 | ---- | C] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:31 | 000,000,337 | ---- | C] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | C] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 09:05:42 | 000,181,010 | ---- | C] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | C] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:08 | 000,304,936 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | C] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | C] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:02:39 | 000,052,224 | ---- | C] () -- C:\Windows\unbud001.exe
[2011.01.22 18:02:39 | 000,049,664 | ---- | C] () -- C:\Windows\Curtains.scr
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:52:45 | 005,567,604 | ---- | C] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 14:15:39 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.13 10:06:23 | 000,636,112 | ---- | C] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2010.12.17 09:21:44 | 000,000,944 | ---- | C] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.02 14:45:25 | 538,084,740 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.12.02 14:44:48 | 722,565,647 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.28 17:12:20 | 000,612,230 | ---- | C] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.22 08:13:23 | 005,142,954 | ---- | C] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.14 17:10:51 | 000,002,049 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | C] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.10.24 12:43:31 | 3215,814,656 | -HS- | C] () -- C:\hiberfil.sys
[2010.10.24 04:42:56 | 000,000,780 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.18 21:36:25 | 000,000,086 | ---- | C] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.14 21:09:16 | 000,001,646 | ---- | C] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | C] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.21 09:10:32 | 000,192,504 | ---- | C] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.07 01:01:21 | 000,000,832 | ---- | C] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.08.17 20:24:48 | 000,000,921 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.08.17 20:24:35 | 000,000,961 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | C] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.04 17:12:15 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2010.08.03 23:33:01 | 000,011,566 | ---- | C] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | C] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | C] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:47 | 000,118,779 | ---- | C] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:11 | 000,441,321 | ---- | C] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | C] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | C] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | C] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:37 | 000,120,630 | ---- | C] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:20 | 000,108,693 | ---- | C] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | C] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | C] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | C] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:51 | 000,216,757 | ---- | C] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:13 | 000,213,134 | ---- | C] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:20 | 000,022,565 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:04 | 000,019,937 | ---- | C] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:48 | 000,028,357 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:46 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.21 06:43:40 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.16 01:00:39 | 000,280,547 | ---- | C] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.05.29 00:12:18 | 000,001,706 | ---- | C] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:22 | 001,324,940 | ---- | C] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.29 00:01:22 | 000,813,984 | ---- | C] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.21 20:15:51 | 000,595,405 | ---- | C] () -- C:\Windows\System32\Steinberg.bnf
[2010.05.21 20:15:51 | 000,049,606 | ---- | C] () -- C:\Windows\System32\Steinberg.pkg
[2010.05.21 20:15:51 | 000,036,008 | ---- | C] () -- C:\Windows\System32\Syncrosoft.pkg
[2010.05.21 20:15:51 | 000,000,950 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.21 20:15:51 | 000,000,024 | ---- | C] () -- C:\Windows\System32\synsopos.ini
[2010.05.12 17:01:58 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.03.08 21:31:20 | 000,001,968 | ---- | C] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:32:40 | 1579,026,944 | ---- | C] () -- C:\Windows\System\bla.avi
[2010.02.27 02:12:28 | 588,148,736 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.02.27 02:07:44 | 596,645,888 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2009.12.05 00:59:38 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.11.25 21:48:24 | 000,000,040 | ---- | C] () -- C:\Windows\RUNAWAY2.INI
[2009.11.21 23:27:21 | 000,000,059 | ---- | C] () -- C:\Windows\RUNAWAY.INI
[2009.11.20 18:59:26 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2009.11.20 18:59:26 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2009.11.05 06:08:37 | 000,000,032 | ---- | C] () -- C:\Windows\autostart.INI
[2009.09.28 00:02:54 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.08.27 17:14:00 | 000,005,086 | ---- | C] () -- C:\Users\Drake\AppData\Local\MyWinLockerInstaller.txt-20090827.log
[2009.08.10 23:42:35 | 000,033,792 | ---- | C] () -- C:\Windows\System32\drivers\libusb0.sys
[2009.08.01 01:30:02 | 000,007,592 | ---- | C] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2009.08.01 01:25:58 | 000,721,904 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009.07.31 22:05:12 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2009.07.26 02:11:48 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.07.26 02:11:47 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.07.25 17:48:37 | 000,055,296 | ---- | C] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.06 11:55:31 | 000,000,033 | ---- | C] () -- C:\Windows\LaunApp.ini
[2009.06.06 11:46:21 | 000,626,688 | ---- | C] () -- C:\Windows\Image.dll
[2009.06.06 11:46:21 | 000,000,036 | ---- | C] () -- C:\Windows\PidList.ini
[2009.05.28 10:07:14 | 000,075,024 | ---- | C] () -- C:\Windows\System32\LADFCoinst_i386.dll
[2009.03.12 11:32:52 | 000,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini
[2009.03.12 04:26:46 | 000,007,038 | ---- | C] () -- C:\ProgramData\ArcadeDeluxe2.log
[2009.02.13 01:50:52 | 000,097,792 | ---- | C] () -- C:\Windows\System32\INT15_64.dll
[2009.02.13 01:50:52 | 000,081,920 | ---- | C] () -- C:\Windows\System32\INT15.dll
[2009.02.13 01:50:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2009.02.13 01:50:52 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2009.02.13 01:50:04 | 000,118,784 | ---- | C] () -- C:\Windows\System32\VMC3KAPI.dll
[2009.02.11 21:03:58 | 000,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2009.02.11 21:03:58 | 000,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2009.02.11 21:03:57 | 000,000,060 | ---- | C] () -- C:\Windows\Prelaunch.ini
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.10.16 06:58:14 | 000,086,016 | ---- | C] () -- C:\Windows\System32\aspolyzt.dll
[2006.06.29 11:44:32 | 001,826,304 | ---- | C] () -- C:\Windows\System32\asconv3d.dll
[2005.07.06 10:59:58 | 000,028,672 | ---- | C] () -- C:\Windows\System32\asdrawli.dll
[2005.07.04 13:17:30 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ASDRAWMA.DLL
[2004.08.17 15:34:52 | 000,036,864 | ---- | C] () -- C:\Windows\System32\AS_SORT.DLL
[2003.05.22 10:31:44 | 000,033,792 | ---- | C] () -- C:\Windows\System32\ASDRAW32.DLL
[2002.07.12 14:29:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AS_MDB32.DLL

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben2.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben1.avi:TOC.WMV
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:814B9485
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:CDFF58FE
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:3B3A35EC
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F636E25
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:41099CE9
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:B623B5B8
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:CE0A077E
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:BB24555F

< End of report >
PRC - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Programme\ArcSoft\TotalMedia Theatre 5\TotalMedia Server\TM Server.exe (ArcSoft Inc.)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Companion\TMonitor.exe ()
PRC - C:\Programme\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Programme\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Programme\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
PRC - C:\Programme\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
PRC - C:\Users\Drake\AppData\Local\Temp\RtkBtMnt.exe (Realtek Semiconductor Corp.)
PRC - C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Programme\Logitech\G35\G35.exe (Logitech(c))
PRC - C:\Programme\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
PRC - C:\Programme\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
PRC - C:\Programme\Acer\Acer PowerSmart Manager\ePowerTray.exe (Acer Incorporated)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
PRC - C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
PRC - c:\Programme\Acer Bio Protection\CompPtcVUI.exe (Egis Technology Inc.)
PRC - C:\Programme\Apoint2K\Hidfind.exe (Alps Electric Co., Ltd.)
PRC - C:\Windows\PLFSetI.exe ()
PRC - C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Defender\MSASCui.exe (Microsoft Corporation)


========== Modules (SafeList) ==========

MOD - C:\Users\Drake\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
MOD - C:\Programme\Acer\Acer PowerSmart Manager\SysHook.dll (Acer Incorporated)


========== Win32 Services (SafeList) ==========

SRV - (TuneUp.Defrag) -- C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (Sony Ericsson PCCompanion) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe (Avanquest Software)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (EhttpSrv) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe (ESET)
SRV - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV - (CLHNService) -- C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe ()
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (ePowerSvc) -- C:\Programme\Acer\Acer PowerSmart Manager\ePowerSvc.exe (Acer Incorporated)
SRV - (NTI IScheduleSvc) -- C:\Programme\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
SRV - (IGBASVC) -- c:\Programme\Acer Bio Protection\BASVC.exe (Egis Technology Inc.)
SRV - (RS_Service) -- C:\Programme\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
SRV - (ICQ Service) -- C:\Programme\ICQ6Toolbar\ICQ Service.exe ()
SRV - (NTISchedulerSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe (NewTech Infosystems, Inc.)
SRV - (NTIBackupSvc) -- C:\Programme\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe (NewTech InfoSystems, Inc.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (AnyDVD) -- C:\Windows\System32\drivers\AnyDVD.sys (SlySoft, Inc.)
DRV - (ArcSec) -- C:\Windows\System32\drivers\ArcSec.sys ()
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (eamon) -- C:\Windows\System32\drivers\eamon.sys (ESET)
DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) -- C:\Programme\Acer Arcade Deluxe\PlayMovie\000.fcl (CyberLink Corp.)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys ()
DRV - (LADF_SBVM) -- C:\Windows\System32\drivers\ladfSBVMi386.sys (Logitech)
DRV - (LADF_DHP2) -- C:\Windows\System32\drivers\ladfDHP2i386.sys (Logitech)
DRV - (usbaudio) USB-Audiotreiber (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (WinUSB) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (AlfaFF) -- C:\Windows\system32\drivers\AlfaFF.sys (Alfa Corporation)
DRV - (int15) -- C:\Windows\System32\drivers\int15.sys ()
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NTIDrvr) -- C:\Windows\System32\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (FPSensor) EgisTech-Corp Fingerprint Reader Driver (FPSensor.sys) -- C:\Windows\System32\drivers\FPSensor.sys (Egis)
DRV - (RTSTOR) -- C:\Windows\System32\drivers\RTSTOR.sys (Realtek Semiconductor Corp.)
DRV - (hidshim) -- C:\Windows\System32\drivers\hidshim.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (nuvotonhidgeneric) -- C:\Windows\System32\drivers\nuvotonhidgeneric.sys (Nuvoton Technology Corporation)
DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (k57nd60x) Broadcom NetLink (TM) -- C:\Windows\System32\drivers\k57nd60x.sys (Broadcom Corporation)
DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (NSCIRDA) -- C:\Windows\System32\drivers\nscirda.sys (National Semiconductor Corporation)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (b57nd60x) -- C:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (ManyCam) -- C:\Windows\System32\drivers\ManyCam.sys (ManyCam LLC.)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (sscdmdm) -- C:\Windows\System32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\Windows\System32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\Windows\System32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (DKbFltr) -- C:\Windows\System32\drivers\DKbFltr.sys (Dritek System Inc.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (libusb0) -- C:\Windows\System32\drivers\libusb0.sys ()
DRV - (Nsynas32) -- C:\Windows\System32\drivers\NSynas32.sys (Syncrosoft Hard- und Software GmbH)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://start.facemoods.com/?a=stonicde&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Acer.com Worldwide - Select your local country or region [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Facemoods Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=

========== FireFox ==========



FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010.06.05 16:50:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.12.26 22:19:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010.03.21 12:31:10 | 000,000,000 | ---D | M]

[2009.07.25 21:26:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Extensions
[2011.02.15 09:39:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.10.24 04:25:20 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Drake\AppData\Roaming\mozilla\Firefox\Profiles\raet75zl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009.07.28 19:59:09 | 000,002,236 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\askcom.xml
[2009.05.19 10:24:54 | 000,000,894 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\conduit.xml
[2009.08.01 01:36:31 | 000,002,399 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\daemon-search.xml
[2011.02.13 07:03:27 | 000,000,955 | ---- | M] () -- C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Profiles\raet75zl.default\searchplugins\icqplugin.xml
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2009.07.27 18:47:47 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2009.07.30 20:23:46 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
[2010.09.08 15:38:01 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.07.12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll
[2010.12.26 22:19:16 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.12.26 22:19:16 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.09.28 17:14:06 | 000,002,040 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\fcmdSrchstonicde.xml
[2010.12.26 22:19:16 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.12.26 22:19:16 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.12.26 22:19:16 | 000,000,801 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Programme\facemoods.com\facemoods\1.4.17.3\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Programme\kikin\ie_kikin.dll (kikin)
O3 - HKLM\..\Toolbar: (Steganos Internet Anonym) - {00000000-5736-4205-0008-f7ed0776fb27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Softonic Deutsch Toolbar) - {8dbb6d8e-e4a6-4e3b-9753-af78b226441c} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Programme\facemoods.com\facemoods\1.4.17.3\facemoodsTlbr.dll (facemoods.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Steganos Internet Anonym) - {00000000-5736-4205-0008-F7ED0776FB27} - c:\Programme\Steganos Internet Anonym 2006\SIA2006iep.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Softonic Deutsch Toolbar) - {8DBB6D8E-E4A6-4E3B-9753-AF78B226441C} - C:\Programme\Softonic_Deutsch\tbSof1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe (Acer Incorporated)
O4 - HKLM..\Run: [ArcadeDeluxeAgent] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [facemoods] C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe (facemoods.com)
O4 - HKLM..\Run: [LManager] C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Logitech G35] C:\Programme\Logitech\G35\G35.exe (Logitech(c))
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Programme\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [VitaKeyPdtWzd] c:\Programme\Acer Bio Protection\PdtWzd.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ManyCam] C:\Program Files\ManyCam 2.4\ManyCam.exe (ManyCam LLC)
O4 - HKCU..\Run: [Sony Ericsson PC Companion] C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [BrowserBallot] C:\Windows\System32\browserchoice.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Cubase SX Update] C:\Programme\Steinberg\Cubase SX\CubaseSXUpd.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Programme\kikin\ie_kikin.dll (kikin)
O9 - Extra Button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra 'Tools' menuitem : Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Programme\Acer Bio Protection\PwdBank.exe (Egis Technology Inc.)
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.49.254
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O24 - Desktop BackupWallPaper: C:\Users\Drake\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell - "" = AutoRun
O33 - MountPoints2\{1314412b-7e32-11de-be5c-001f169fecb8}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\AutoRun\command - "" = F:\Install.exe
O33 - MountPoints2\{b7c1ee22-ee58-11df-99ec-001f169fecb8}\Shell\menu1\command - "" = F:\Install.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 360 Days ==========

[2011.02.15 13:48:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Malwarebytes
[2011.02.15 13:48:40 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.02.15 13:48:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.02.15 13:48:37 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.02.15 13:48:37 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.02.15 09:11:33 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.02.15 09:11:33 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.02.15 09:11:33 | 000,797,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.02.15 09:11:32 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.02.15 09:11:32 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.02.15 09:11:32 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.02.15 09:11:31 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.02.15 09:11:31 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.02.15 09:11:31 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.02.15 09:11:31 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.02.15 09:11:31 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.02.15 09:11:31 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.02.15 09:11:30 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.02.15 09:11:29 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.02.15 09:11:29 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.02.15 09:11:29 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.02.15 09:11:28 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.02.15 09:11:28 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.02.15 09:11:28 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.02.15 09:11:27 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.02.15 09:11:25 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.02.15 09:11:25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.02.15 09:08:37 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2011.02.14 21:29:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2011.02.14 21:29:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2011.02.14 20:50:31 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2011.02.14 16:20:09 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 16:01:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
[2011.02.14 15:48:21 | 000,030,016 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2011.02.14 15:48:20 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2011.02.11 05:43:03 | 002,039,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.02.11 05:42:57 | 003,602,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011.02.11 05:42:55 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011.02.11 05:42:39 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.02.11 05:42:35 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011.02.11 05:42:35 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.02.11 05:42:34 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.02.11 05:42:34 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.02.11 05:42:34 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011.02.11 05:42:29 | 000,292,352 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011.02.11 05:42:29 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.24 19:03:31 | 000,000,000 | ---D | C] -- C:\Programme\facemoods.com
[2011.01.24 19:01:47 | 000,000,000 | ---D | C] -- C:\Programme\Trymedia
[2011.01.24 19:01:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
[2011.01.24 19:01:40 | 000,000,000 | ---D | C] -- C:\Programme\PopCap Games
[2011.01.23 11:47:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\DVDFab
[2011.01.23 11:46:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 8
[2011.01.23 11:45:56 | 000,000,000 | ---D | C] -- C:\Programme\DVDFab 8
[2011.01.23 09:59:28 | 005,185,224 | ---- | C] (MPC-HC Team ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:57:40 | 014,871,584 | ---- | C] (Fengtao Software Inc. ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.22 23:21:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\The KMPlayer
[2011.01.22 23:21:06 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
[2011.01.22 23:20:55 | 000,000,000 | ---D | C] -- C:\Programme\The KMPlayer
[2011.01.22 23:08:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\ArcSoft
[2011.01.22 23:05:58 | 000,000,000 | ---D | C] -- C:\ProgramData\ArcSoft
[2011.01.22 23:05:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft TotalMedia Theatre 5
[2011.01.22 23:04:13 | 000,000,000 | ---D | C] -- C:\Programme\ArcSoft
[2011.01.22 18:32:45 | 065,071,864 | ---- | C] (ArcSoft ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:20 | 005,860,207 | ---- | C] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 18:08:13 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Playlists
[2011.01.22 18:02:39 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curtains
[2011.01.22 18:02:38 | 000,000,000 | ---D | C] -- C:\Windows\Curtains
[2011.01.22 18:02:36 | 000,000,000 | ---D | C] -- C:\Programme\Curtains
[2011.01.22 17:55:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Team MediaPortal
[2011.01.22 17:54:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Team MediaPortal
[2011.01.22 17:54:19 | 000,000,000 | ---D | C] -- C:\Programme\Team MediaPortal
[2011.01.22 17:46:12 | 032,771,954 | ---- | C] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:35:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\AnyDVDHD
[2011.01.22 14:16:14 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2011.01.22 14:13:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
[2011.01.22 14:13:38 | 000,000,000 | ---D | C] -- C:\Programme\SlySoft
[2011.01.19 03:13:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.01.19 03:09:15 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2011.01.19 03:05:01 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011.01.19 03:05:01 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011.01.19 03:05:01 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011.01.19 03:02:42 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2011.01.19 03:02:40 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2011.01.17 15:15:30 | 000,000,000 | ---D | C] -- C:\PS3
[2011.01.14 03:06:52 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011.01.14 03:06:46 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011.01.12 14:36:15 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2011.01.12 14:36:14 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2011.01.12 14:36:14 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2011.01.12 14:36:09 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2011.01.12 14:36:08 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011.01.12 14:36:08 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2011.01.12 14:36:04 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011.01.12 14:35:47 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.01.12 14:35:41 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011.01.12 14:35:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\config
[2010.12.21 06:26:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\codes
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\wiiflow
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\WAD
[2010.12.21 06:26:35 | 000,000,000 | ---D | C] -- C:\Users\Drake\txtcodes
[2010.12.17 10:08:27 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\WBFSManager
[2010.12.17 09:21:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\WBFS Manager Covers
[2010.12.17 09:21:43 | 000,000,000 | ---D | C] -- C:\Programme\WBFS
[2010.12.17 09:21:06 | 000,000,000 | ---D | C] -- C:\WII
[2010.12.16 23:57:57 | 000,031,088 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 18:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Oberon Games
[2010.12.01 20:06:29 | 000,108,104 | ---- | C] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.25 19:29:05 | 000,089,256 | ---- | C] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\Programme\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Ericsson
[2010.11.14 17:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Ericsson
[2010.11.14 07:45:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Sony
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Podcasts
[2010.11.14 07:44:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Media Go
[2010.11.14 07:42:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2010.11.14 07:42:29 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Sony Shared
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Corporation
[2010.11.14 07:41:56 | 000,000,000 | ---D | C] -- C:\Programme\Sony
[2010.11.14 07:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\Programme\QuickTime
[2010.11.14 07:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010.11.14 07:40:32 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Apple
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Programme\Sony Media Go Install
[2010.11.14 07:35:07 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Sony
[2010.11.14 07:20:00 | 000,000,000 | ---D | C] -- C:\Users\Drake\Xperia X10
[2010.11.11 18:40:20 | 000,080,448 | ---- | C] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.10.24 13:12:22 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\Programme\Carambis
[2010.10.24 13:07:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Carambis
[2010.10.24 06:03:20 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.10.24 06:03:09 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.10.24 06:03:08 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.10.24 06:02:59 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.10.24 06:02:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.10.24 06:02:27 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
[2010.10.24 06:02:27 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
[2010.10.24 06:02:17 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.10.24 06:02:10 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.10.24 06:01:55 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.10.24 06:01:52 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.10.24 06:01:50 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.10.24 06:01:49 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.10.24 06:00:14 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.10.24 06:00:14 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.10.24 06:00:14 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.10.24 06:00:14 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.10.24 06:00:14 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.10.24 06:00:13 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010.10.24 06:00:13 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.10.24 06:00:13 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.10.24 05:06:07 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\NSV
[2010.10.24 04:42:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2010.10.24 04:42:55 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in
[2010.10.24 04:41:54 | 000,000,000 | ---D | C] -- C:\Programme\Winamp Detect
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Winamp
[2010.10.24 04:41:44 | 000,000,000 | ---D | C] -- C:\Programme\Winamp
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\UseNeXT
[2010.10.14 21:09:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\Programme\UseNeXT
[2010.10.14 21:09:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UseNeXT
[2010.09.21 02:36:09 | 000,000,000 | ---D | C] -- C:\Programme\Veetle
[2010.09.09 05:17:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\WWE BEST OF PPV
[2010.09.08 15:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2010.09.08 15:46:42 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.09.08 15:37:59 | 000,423,656 | ---- | C] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:59 | 000,153,376 | ---- | C] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:59 | 000,145,184 | ---- | C] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.08 15:37:43 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.09.07 01:01:21 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
[2010.09.07 01:01:10 | 000,000,000 | ---D | C] -- C:\Programme\JDownloader
[2010.08.30 22:07:53 | 000,000,000 | ---D | C] -- C:\Users\Drake\NDS
[2010.08.17 20:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
[2010.08.07 21:16:02 | 000,000,000 | ---D | C] -- C:\Users\Drake\Saved Games
[2010.08.01 18:24:49 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\c
[2010.06.18 19:02:04 | 000,000,000 | R-SD | C] -- C:\Users\Drake\Documents\My Stationery
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSP Pandora Deluxe
[2010.06.05 22:43:27 | 000,000,000 | ---D | C] -- C:\Programme\PSP Pandora Deluxe
[2010.06.05 16:50:37 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:22 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\xing shared
[2010.06.05 16:50:07 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.06.05 16:50:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Real
[2010.06.05 16:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2010.06.05 16:50:02 | 000,000,000 | ---D | C] -- C:\Programme\Real
[2010.06.03 00:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vistumbler
[2010.05.29 00:12:16 | 000,000,000 | ---D | C] -- C:\Programme\Vistumbler
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\kikin
[2010.05.29 00:01:56 | 000,000,000 | ---D | C] -- C:\Programme\kikin
[2010.05.21 20:53:38 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Steinberg
[2010.05.21 20:15:51 | 000,598,016 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\SYNSOPOS.exe
[2010.05.21 20:15:51 | 000,025,600 | R--- | C] (OxYGeN) -- C:\Windows\System32\SYNSOACC.dll
[2010.05.21 20:15:51 | 000,017,784 | ---- | C] (Syncrosoft Hard- und Software GmbH) -- C:\Windows\System32\drivers\NSynas32.sys
[2010.05.21 20:15:51 | 000,016,896 | ---- | C] (Syncrosoft GmbH) -- C:\Windows\System32\drivers\SynasUSB.sys
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:15:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase SX
[2010.05.21 20:06:29 | 000,000,000 | ---D | C] -- C:\Programme\Steinberg
[2010.05.18 21:21:23 | 000,081,920 | RHS- | C] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:37 | 000,081,920 | RHS- | C] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:01:58 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Programme\Norton Security Scan
[2010.05.12 17:01:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NSS\0207030.022
[2010.04.28 16:13:20 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\NPS
[2010.04.26 23:04:42 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.17 02:55:10 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Dennis N
[2010.04.16 22:37:23 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2010.04.16 22:35:52 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Leadertech
[2010.04.16 22:35:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2010.04.16 22:35:15 | 000,000,000 | ---D | C] -- C:\Programme\Logitech
[2010.03.21 14:11:09 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.03.21 14:11:02 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010.03.21 14:11:02 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.03.21 14:11:01 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.03.21 14:10:01 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010.03.21 14:00:19 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2010.03.21 12:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010.03.18 13:16:28 | 000,771,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.16 13:11:25 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\My Art
[2010.03.10 20:29:32 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:32:56 | 000,000,000 | ---D | C] -- C:\Users\Drake\Documents\Yu-Gi-Oh! ONLINE 3
[2010.03.08 21:32:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010.03.08 21:31:59 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010.03.08 21:31:58 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2010.03.08 21:31:57 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010.03.08 21:31:57 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010.03.08 21:31:57 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010.03.08 21:31:56 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010.03.08 21:31:56 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010.03.08 21:31:44 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010.03.08 21:31:44 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010.03.08 21:31:44 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010.03.08 21:31:42 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010.03.08 21:31:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\konami
[2010.03.08 21:30:41 | 000,000,000 | ---D | C] -- C:\Programme\konami
[2010.03.07 23:42:01 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Local\Microsoft Games
[2010.03.07 06:13:41 | 000,000,000 | ---D | C] -- C:\Users\Drake\Desktop\Neuer Ordner
[2010.03.05 12:25:26 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Real
[2010.02.26 16:07:28 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010.02.26 16:07:26 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010.02.26 16:07:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010.02.26 16:07:24 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010.02.26 16:07:23 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010.02.26 16:07:17 | 000,000,000 | ---D | C] -- C:\Temp
[2010.02.26 16:02:42 | 000,000,000 | ---D | C] -- C:\Users\Drake\AppData\Roaming\Wizards of the Coast
[2010.02.26 16:01:50 | 000,000,000 | ---D | C] -- C:\Programme\Wizards of the Coast
[2010.02.26 16:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wizards of the Coast
[2009.06.06 20:29:30 | 000,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 360 Days ==========

[2011.02.15 15:54:04 | 000,628,742 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.02.15 15:54:04 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.02.15 15:54:04 | 000,126,454 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.02.15 15:54:04 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.02.15 15:51:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.02.15 15:50:06 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011.02.15 15:47:57 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.02.15 15:47:47 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:46 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.02.15 15:47:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.02.15 15:46:58 | 3215,814,656 | -HS- | M] () -- C:\hiberfil.sys
[2011.02.15 15:46:00 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.02.15 13:48:40 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 23:52:58 | 000,055,296 | ---- | M] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.14 21:34:33 | 000,296,800 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.02.14 20:33:44 | 000,234,963 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011.02.14 18:28:56 | 000,000,558 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Drake.job
[2011.02.14 16:20:15 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Drake\Documents\HiJackThis204.exe
[2011.02.14 15:48:15 | 000,001,871 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2011.02.14 15:48:15 | 000,001,857 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | M] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.02.12 05:53:45 | 000,001,975 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011.02.12 05:17:36 | 000,007,592 | ---- | M] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2011.01.28 12:40:42 | 000,027,343 | ---- | M] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:28 | 000,076,235 | ---- | M] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:35:33 | 011,779,216 | ---- | M] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | M] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | M] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:54:13 | 000,304,944 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:33 | 000,062,432 | ---- | M] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:32 | 000,000,337 | ---- | M] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | M] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 10:00:09 | 005,185,224 | ---- | M] (MPC-HC Team ) -- C:\Users\Drake\Documents\mplayerc_homecinema.1.4.2824.0.x86.exe
[2011.01.23 09:59:48 | 014,871,584 | ---- | M] (Fengtao Software Inc. ) -- C:\Users\Drake\Documents\DVDFab8068.exe
[2011.01.23 09:05:47 | 000,181,010 | ---- | M] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | M] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:17 | 000,304,936 | ---- | M] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | M] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | M] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:38:42 | 065,071,864 | ---- | M] (ArcSoft ) -- C:\Users\Drake\Documents\totalmediatheatre5_retail_tbyb_all.exe
[2011.01.22 18:13:45 | 005,860,207 | ---- | M] (Moving Pictures) -- C:\Users\Drake\Documents\moving-pictures-1.0.4-setup.exe
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:53:08 | 005,567,604 | ---- | M] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 17:50:17 | 032,771,954 | ---- | M] (Team MediaPortal) -- C:\Users\Drake\Documents\MediaPortalSetup_1.1.2.exe
[2011.01.22 14:48:30 | 000,000,040 | -HS- | M] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.20 17:08:16 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2011.01.20 17:08:06 | 001,029,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2011.01.20 17:08:06 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011.01.20 17:08:06 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2011.01.20 17:08:06 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011.01.20 17:07:58 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011.01.20 17:06:38 | 002,873,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011.01.20 17:06:35 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2011.01.20 17:04:54 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2011.01.20 17:04:54 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2011.01.20 15:26:30 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2011.01.20 15:24:32 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011.01.20 15:24:26 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011.01.20 15:15:10 | 000,979,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2011.01.20 15:14:39 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2011.01.20 15:14:03 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2011.01.20 15:14:03 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011.01.20 15:12:46 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011.01.20 15:11:34 | 000,486,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2011.01.20 14:47:51 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011.01.20 14:44:05 | 001,068,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.01.20 14:44:03 | 000,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011.01.13 10:07:30 | 000,636,112 | ---- | M] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2011.01.08 09:47:50 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.01.08 07:28:49 | 000,292,352 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.12.31 14:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.12.28 16:55:03 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2010.12.20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.12.20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.12.20 17:34:30 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.12.20 17:34:18 | 000,471,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.12.20 17:33:32 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.12.20 17:33:31 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010.12.20 16:37:57 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010.12.20 15:55:46 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.12.17 09:21:44 | 000,000,944 | ---- | M] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.16 23:57:57 | 000,031,088 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\drivers\ElbyCDIO.sys
[2010.12.14 15:49:23 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2010.12.01 20:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) -- C:\Windows\System32\drivers\AnyDVD.sys
[2010.11.28 17:12:20 | 000,612,230 | ---- | M] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.27 13:51:22 | 538,084,740 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.11.27 13:43:38 | 722,565,647 | ---- | M] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.25 19:29:05 | 000,089,256 | ---- | M] (Elaborate Bytes AG) -- C:\Windows\System32\ElbyCDIO.dll
[2010.11.22 08:13:23 | 005,142,954 | ---- | M] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.19 15:33:22 | 000,030,528 | ---- | M] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe
[2010.11.19 15:30:00 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\System32\authuitu.dll
[2010.11.19 15:29:54 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll
[2010.11.14 17:10:51 | 000,002,049 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | M] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.11.11 18:40:20 | 000,080,448 | ---- | M] (ArcSoft Inc.) -- C:\Windows\System32\MMCEDT5.exe
[2010.11.04 19:56:07 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2010.11.04 19:55:38 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2010.11.04 19:55:38 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2010.10.28 14:20:12 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.10.24 04:42:56 | 000,000,780 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.19 10:41:44 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.10.18 21:36:25 | 000,000,086 | ---- | M] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.18 14:37:35 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2010.10.15 15:08:12 | 003,602,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,550,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.10.14 21:09:16 | 000,001,646 | ---- | M] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | M] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.26 22:02:45 | 000,001,398 | ---- | M] () -- C:\Users\Drake\Desktop\DivX Movies.lnk
[2010.09.26 22:02:38 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.09.21 09:10:32 | 000,192,504 | ---- | M] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.13 14:56:41 | 008,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010.09.08 15:37:47 | 000,423,656 | ---- | M] (Oracle) -- C:\Windows\System32\deployJava1.dll
[2010.09.08 15:37:47 | 000,153,376 | ---- | M] (Oracle) -- C:\Windows\System32\javaws.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\javaw.exe
[2010.09.08 15:37:47 | 000,145,184 | ---- | M] (Oracle) -- C:\Windows\System32\java.exe
[2010.09.07 01:01:21 | 000,000,832 | ---- | M] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.09.06 17:19:06 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010.08.31 16:46:37 | 000,954,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2010.08.31 16:46:37 | 000,954,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2010.08.30 21:47:17 | 318,348,632 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.08.26 17:37:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.08.26 17:34:50 | 001,696,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010.08.26 17:33:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.08.26 15:23:58 | 004,240,384 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.08.20 17:05:07 | 000,867,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2010.08.17 20:24:35 | 000,000,961 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | M] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.03 23:33:01 | 000,011,566 | ---- | M] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | M] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | M] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:48 | 000,118,779 | ---- | M] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:12 | 000,441,321 | ---- | M] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | M] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | M] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | M] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:39 | 000,120,630 | ---- | M] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:21 | 000,108,693 | ---- | M] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | M] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | M] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | M] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:52 | 000,216,757 | ---- | M] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:14 | 000,213,134 | ---- | M] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:21 | 000,022,565 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:05 | 000,019,937 | ---- | M] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:49 | 000,028,357 | ---- | M] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:47 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:36 | 000,006,705 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | M] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.18 18:31:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010.06.16 16:30:44 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.06.16 01:00:39 | 000,280,547 | ---- | M] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | M] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.06.05 16:50:37 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010.06.05 16:50:31 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010.06.05 16:50:31 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010.06.05 16:50:07 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010.05.29 00:12:18 | 000,001,706 | ---- | M] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:40 | 000,813,984 | ---- | M] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.29 00:01:30 | 001,324,940 | ---- | M] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.27 21:08:17 | 000,081,920 | ---- | M] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.05.21 20:15:51 | 000,000,950 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | M] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.18 21:21:59 | 000,081,920 | RHS- | M] (zDDHWbFE) -- C:\Users\Drake\mblix.exe
[2010.05.18 17:04:54 | 000,081,920 | RHS- | M] (SSaokDTQ) -- C:\Users\Drake\woeluc.exe
[2010.05.12 17:02:01 | 000,001,352 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk
[2010.05.12 17:01:58 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.05.04 20:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2010.05.04 20:10:47 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.04.26 23:04:42 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2010.04.05 18:02:42 | 000,317,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2010.04.05 18:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.03.25 23:42:42 | 588,148,736 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.03.25 23:42:34 | 596,645,888 | ---- | M] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
[2010.03.17 21:53:42 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010.03.17 21:53:42 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010.03.10 20:29:32 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\dpl100.dll
[2010.03.08 21:31:20 | 000,001,968 | ---- | M] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:48:16 | 1579,026,944 | ---- | M] () -- C:\Windows\System\bla.avi
[2010.03.04 18:33:45 | 000,430,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.02.21 00:06:41 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010.02.21 00:05:14 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.02.15 13:48:40 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.02.14 14:47:35 | 000,000,104 | ---- | C] () -- C:\Users\Drake\Desktop\Internet - Verknüpfung.lnk
[2011.01.28 12:40:42 | 000,027,343 | ---- | C] () -- C:\Users\Drake\Documents\WUAvatarDrake2210JPEG.jpg
[2011.01.28 12:40:27 | 000,076,235 | ---- | C] () -- C:\Users\Drake\Documents\DXSIG.jpg
[2011.01.24 19:07:05 | 011,779,216 | ---- | C] () -- C:\Users\Drake\Documents\JewelQuestSetup.exe
[2011.01.24 19:01:42 | 000,000,984 | ---- | C] () -- C:\Users\Public\Desktop\Zuma Deluxe.lnk
[2011.01.24 19:01:39 | 000,000,000 | ---- | C] () -- C:\Windows\popcinfo.dat
[2011.01.24 18:53:51 | 000,304,944 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_zuma-deluxe.exe
[2011.01.23 20:07:16 | 000,062,432 | ---- | C] () -- C:\Users\Drake\Documents\4952.jpg
[2011.01.23 17:04:31 | 000,000,337 | ---- | C] () -- C:\Users\Drake\Documents\DVDFab.v8.0.6.8.Final.Incl.PROPER.Multi-Patch.v0.2-BBB.rar
[2011.01.23 11:46:32 | 000,000,796 | ---- | C] () -- C:\Users\Drake\Desktop\DVDFab 8.lnk
[2011.01.23 09:05:42 | 000,181,010 | ---- | C] () -- C:\Users\Drake\Documents\BDInfo.v.0.5.6.zip
[2011.01.22 23:21:06 | 000,000,836 | ---- | C] () -- C:\Users\Drake\Desktop\KMPlayer.lnk
[2011.01.22 23:18:08 | 000,304,936 | ---- | C] () -- C:\Users\Drake\Documents\SoftonicDownloader_fuer_kmplayer.exe
[2011.01.22 23:05:57 | 000,002,167 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Server.lnk
[2011.01.22 23:05:56 | 000,001,885 | ---- | C] () -- C:\Users\Public\Desktop\TotalMedia Theatre 5.lnk
[2011.01.22 22:59:10 | 000,000,088 | ---- | C] () -- C:\Users\Drake\playbr.bat
[2011.01.22 18:02:39 | 000,052,224 | ---- | C] () -- C:\Windows\unbud001.exe
[2011.01.22 18:02:39 | 000,049,664 | ---- | C] () -- C:\Windows\Curtains.scr
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.01.22 17:58:02 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.01.22 17:55:30 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Configuration.lnk
[2011.01.22 17:55:25 | 000,001,963 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal.lnk
[2011.01.22 17:55:24 | 000,002,010 | ---- | C] () -- C:\Users\Public\Desktop\MediaPortal Extension Installer.lnk
[2011.01.22 17:52:45 | 005,567,604 | ---- | C] () -- C:\Users\Drake\Documents\MPwebdemo.exe
[2011.01.22 14:15:39 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011.01.22 14:13:42 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\AnyDVD.lnk
[2011.01.13 10:06:23 | 000,636,112 | ---- | C] () -- C:\Users\Drake\Documents\Energiebroschüre.pdf
[2010.12.17 09:21:44 | 000,000,944 | ---- | C] () -- C:\Users\Drake\Desktop\WBFS Manager 3.0.lnk
[2010.12.02 14:45:25 | 538,084,740 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-a-cineonws7705.avi
[2010.12.02 14:44:48 | 722,565,647 | ---- | C] () -- C:\Users\Drake\Desktop\2010-Piranha_3D-b-cineonws7705-2.avi
[2010.11.28 17:12:20 | 000,612,230 | ---- | C] () -- C:\Users\Drake\D7B9D314d01.pdf
[2010.11.22 08:13:23 | 005,142,954 | ---- | C] () -- C:\Users\Drake\65C8F36Cd01.pdf
[2010.11.14 17:10:51 | 000,002,049 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Companion 2.0.lnk
[2010.11.14 15:17:51 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
[2010.11.14 07:42:30 | 000,001,766 | ---- | C] () -- C:\Users\Public\Desktop\Media Go.lnk
[2010.11.14 07:41:06 | 000,001,730 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2010.10.24 12:43:31 | 3215,814,656 | -HS- | C] () -- C:\hiberfil.sys
[2010.10.24 04:42:56 | 000,000,780 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2010.10.18 21:36:25 | 000,000,086 | ---- | C] () -- C:\Users\Drake\Desktop\My World.URL
[2010.10.14 21:09:16 | 000,001,646 | ---- | C] () -- C:\Users\Drake\Desktop\UseNeXT.lnk
[2010.10.12 03:13:56 | 000,007,366 | ---- | C] () -- C:\Windows\System32\drivers\win7logo.cat
[2010.09.21 09:10:32 | 000,192,504 | ---- | C] () -- C:\Windows\System32\drivers\ArcSec.sys
[2010.09.07 01:01:21 | 000,000,832 | ---- | C] () -- C:\Users\Drake\Desktop\JDownloader.lnk
[2010.08.17 20:24:48 | 000,000,921 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010.08.17 20:24:35 | 000,000,961 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010.08.16 09:20:04 | 000,002,239 | ---- | C] () -- C:\Windows\System32\drivers\win7Logo.inf
[2010.08.04 17:12:15 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2010.08.03 23:33:01 | 000,011,566 | ---- | C] () -- C:\Users\Drake\Documents\Lebenslauf.docx
[2010.08.03 23:33:01 | 000,000,162 | -H-- | C] () -- C:\Users\Drake\Documents\~$benslauf.docx
[2010.07.29 16:51:15 | 000,056,445 | ---- | C] () -- C:\Users\Drake\Desktop\6gyn9w.jpg
[2010.07.29 16:48:47 | 000,118,779 | ---- | C] () -- C:\Users\Drake\Desktop\kellykelly_wrestlingyard.jpg
[2010.07.29 16:47:11 | 000,441,321 | ---- | C] () -- C:\Users\Drake\Desktop\kelly_kelly_1.jpg
[2010.07.29 16:43:43 | 000,036,565 | ---- | C] () -- C:\Users\Drake\Desktop\kelly112.jpg
[2010.07.29 16:43:04 | 000,189,221 | ---- | C] () -- C:\Users\Drake\Desktop\kelly169.jpg
[2010.07.29 16:42:51 | 000,148,799 | ---- | C] () -- C:\Users\Drake\Desktop\kelly155.jpg
[2010.07.29 16:42:37 | 000,120,630 | ---- | C] () -- C:\Users\Drake\Desktop\kelly143.jpg
[2010.07.29 16:42:20 | 000,108,693 | ---- | C] () -- C:\Users\Drake\Desktop\kelly158.jpg
[2010.07.29 16:42:06 | 000,118,074 | ---- | C] () -- C:\Users\Drake\Desktop\kelly166.jpg
[2010.07.29 16:41:27 | 000,239,343 | ---- | C] () -- C:\Users\Drake\Desktop\kelly134.jpg
[2010.07.29 16:41:08 | 000,184,135 | ---- | C] () -- C:\Users\Drake\Desktop\kelly122.jpg
[2010.07.29 16:40:51 | 000,216,757 | ---- | C] () -- C:\Users\Drake\Desktop\kelly125.jpg
[2010.07.29 16:40:13 | 000,213,134 | ---- | C] () -- C:\Users\Drake\Desktop\kelly128.jpg
[2010.07.26 13:12:20 | 000,022,565 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_4aa33d.jpg
[2010.07.24 10:11:04 | 000,019,937 | ---- | C] () -- C:\Users\Drake\Desktop\matte3.jpg
[2010.07.23 18:07:48 | 000,028,357 | ---- | C] () -- C:\Users\Drake\Desktop\1797695_1267357758.jpg
[2010.06.21 06:44:46 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_6.jpg
[2010.06.21 06:44:24 | 000,009,280 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_4.jpg
[2010.06.21 06:43:40 | 000,006,705 | ---- | C] () -- C:\Users\Drake\Desktop\medium_image_5.jpg
[2010.06.16 01:00:39 | 000,280,547 | ---- | C] () -- C:\Users\Drake\Documents\plugin-MasterCardPdfGeneratorSr.pdf
[2010.06.05 16:50:40 | 000,001,745 | ---- | C] () -- C:\Users\Public\Desktop\Gratis-Spiele & -Musik.lnk
[2010.06.05 16:50:40 | 000,001,163 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer SP.lnk
[2010.05.29 00:12:18 | 000,001,706 | ---- | C] () -- C:\Users\Drake\Desktop\Vistumbler.lnk
[2010.05.29 00:01:22 | 001,324,940 | ---- | C] () -- C:\Users\Drake\Desktop\netstumblerinstaller_0_4_0.exe
[2010.05.29 00:01:22 | 000,813,984 | ---- | C] () -- C:\Users\Drake\Desktop\kikin_installer_2.2.0.5_softonic-bundle.exe
[2010.05.21 20:15:51 | 000,595,405 | ---- | C] () -- C:\Windows\System32\Steinberg.bnf
[2010.05.21 20:15:51 | 000,049,606 | ---- | C] () -- C:\Windows\System32\Steinberg.pkg
[2010.05.21 20:15:51 | 000,036,008 | ---- | C] () -- C:\Windows\System32\Syncrosoft.pkg
[2010.05.21 20:15:51 | 000,000,950 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX Update.lnk
[2010.05.21 20:15:51 | 000,000,935 | ---- | C] () -- C:\Users\Drake\Desktop\Cubase SX.lnk
[2010.05.21 20:15:51 | 000,000,024 | ---- | C] () -- C:\Windows\System32\synsopos.ini
[2010.05.12 17:01:58 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NSS\0207030.022\isolate.ini
[2010.03.08 21:31:20 | 000,001,968 | ---- | C] () -- C:\Users\Public\Desktop\Yu-Gi-Oh! ONLINE 3.lnk
[2010.03.08 00:32:40 | 1579,026,944 | ---- | C] () -- C:\Windows\System\bla.avi
[2010.02.27 02:12:28 | 588,148,736 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben2.avi
[2010.02.27 02:07:44 | 596,645,888 | ---- | C] () -- C:\Users\Drake\Desktop\ntg-sleben1.avi
[2009.12.05 00:59:38 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.11.25 21:48:24 | 000,000,040 | ---- | C] () -- C:\Windows\RUNAWAY2.INI
[2009.11.21 23:27:21 | 000,000,059 | ---- | C] () -- C:\Windows\RUNAWAY.INI
[2009.11.20 18:59:26 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2009.11.20 18:59:26 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2009.11.05 06:08:37 | 000,000,032 | ---- | C] () -- C:\Windows\autostart.INI
[2009.09.28 00:02:54 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.08.27 17:14:00 | 000,005,086 | ---- | C] () -- C:\Users\Drake\AppData\Local\MyWinLockerInstaller.txt-20090827.log
[2009.08.10 23:42:35 | 000,033,792 | ---- | C] () -- C:\Windows\System32\drivers\libusb0.sys
[2009.08.01 01:30:02 | 000,007,592 | ---- | C] () -- C:\Users\Drake\AppData\Local\d3d9caps.dat
[2009.08.01 01:25:58 | 000,721,904 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009.07.31 22:05:12 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2009.07.26 02:11:48 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.07.26 02:11:47 | 000,234,963 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.07.25 17:48:37 | 000,055,296 | ---- | C] () -- C:\Users\Drake\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.06 11:55:31 | 000,000,033 | ---- | C] () -- C:\Windows\LaunApp.ini
[2009.06.06 11:46:21 | 000,626,688 | ---- | C] () -- C:\Windows\Image.dll
[2009.06.06 11:46:21 | 000,000,036 | ---- | C] () -- C:\Windows\PidList.ini
[2009.05.28 10:07:14 | 000,075,024 | ---- | C] () -- C:\Windows\System32\LADFCoinst_i386.dll
[2009.03.12 11:32:52 | 000,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini
[2009.03.12 04:26:46 | 000,007,038 | ---- | C] () -- C:\ProgramData\ArcadeDeluxe2.log
[2009.02.13 01:50:52 | 000,097,792 | ---- | C] () -- C:\Windows\System32\INT15_64.dll
[2009.02.13 01:50:52 | 000,081,920 | ---- | C] () -- C:\Windows\System32\INT15.dll
[2009.02.13 01:50:52 | 000,069,632 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2009.02.13 01:50:52 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2009.02.13 01:50:04 | 000,118,784 | ---- | C] () -- C:\Windows\System32\VMC3KAPI.dll
[2009.02.11 21:03:58 | 000,872,448 | ---- | C] () -- C:\Windows\iconv.dll
[2009.02.11 21:03:58 | 000,743,424 | ---- | C] () -- C:\Windows\libxml2.dll
[2009.02.11 21:03:57 | 000,000,060 | ---- | C] () -- C:\Windows\Prelaunch.ini
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.10.16 06:58:14 | 000,086,016 | ---- | C] () -- C:\Windows\System32\aspolyzt.dll
[2006.06.29 11:44:32 | 001,826,304 | ---- | C] () -- C:\Windows\System32\asconv3d.dll
[2005.07.06 10:59:58 | 000,028,672 | ---- | C] () -- C:\Windows\System32\asdrawli.dll
[2005.07.04 13:17:30 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ASDRAWMA.DLL
[2004.08.17 15:34:52 | 000,036,864 | ---- | C] () -- C:\Windows\System32\AS_SORT.DLL
[2003.05.22 10:31:44 | 000,033,792 | ---- | C] () -- C:\Windows\System32\ASDRAW32.DLL
[2002.07.12 14:29:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AS_MDB32.DLL

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben2.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Drake\Desktop\ntg-sleben1.avi:TOC.WMV
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:814B9485
@Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:CDFF58FE
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:3B3A35EC
@Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:4F636E25
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:41099CE9
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:B623B5B8
@Alternate Data Stream - 114 bytes -> C:\ProgramData\Temp:CE0A077E
@Alternate Data Stream - 109 bytes -> C:\ProgramData\Temp:BB24555F

< End of report >

Alt 14.02.2011, 16:26   #7
-D3nYo-
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



und hier der extras.txtOTL EXTRAS Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 15.02.2011 15:56:31 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Users\Drake\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 52,00% Memory free
7,00 Gb Paging File | 6,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): c:\pagefile.sys 4597 6000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 452,99 Gb Total Space | 298,11 Gb Free Space | 65,81% Space Free | Partition Type: NTFS
 
Computer Name: DRAKE-PC | User Name: Drake | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00818B43-F823-459B-846A-818BF9384949}" = lport=445 | protocol=6 | dir=in | app=system | 
"{0E8FF364-92BC-4F77-B0DA-18C3589C56DF}" = lport=10244 | protocol=6 | dir=in | app=system | 
"{1039D0C6-53F7-4E43-AE8F-4567910E7B9D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
"{147CD653-CB33-4F43-A232-D87DD159CCE9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=c:\windows\system32\svchost.exe | 
"{17ADB16F-340C-4467-984A-F6D810BA9600}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
"{2605546D-7365-4528-99E0-D77CAA7A16BE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
"{26E2D6C7-D2D6-4A43-B94B-1A42E5E28CD0}" = rport=1701 | protocol=17 | dir=out | app=system | 
"{2E0788FE-8E51-4582-A7C7-A4867D24ED7C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{32E2BD40-1858-452E-A00E-73DC6CCA6D4F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{3377B433-E72F-4DD0-A24F-FCA6C1026938}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{33D4192D-1F30-4255-8645-D4E69A302113}" = lport=138 | protocol=17 | dir=in | app=system | 
"{35C27668-71AD-4180-9E45-ECBDA1078DBA}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=c:\windows\system32\svchost.exe | 
"{37D2057B-D09B-4091-BD30-A063862EE14E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{3A43E04C-674A-4C02-8E6B-9E7DC88732B8}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{3B277244-7F3F-4FDC-931E-D2CABC526E4E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
"{40A55B8F-9944-48A4-B283-C32FCD231BB4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{410924E6-E9E0-4EDC-B099-42F08102F8E2}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{4419A434-D878-4EEA-A316-224933E2918B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{44DCC43D-C86E-42BF-8936-DF64B44CDACC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{4A210FC0-F34C-47BC-AF71-32A1D1D6B1A6}" = lport=3390 | protocol=6 | dir=in | app=system | 
"{52F5AD4E-9590-4FD1-A217-29AB0FCC9B44}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{53F18A46-D3BC-45EC-AAF7-683E173B62EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=c:\windows\system32\svchost.exe | 
"{582E5073-C568-4146-8748-A37005837AB7}" = lport=1701 | protocol=17 | dir=in | app=system | 
"{6397B589-3C08-4E34-BB15-B1A444A5FB5C}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=c:\windows\system32\vds.exe | 
"{67134F02-F89C-447A-BF41-387BC148A8D0}" = rport=445 | protocol=6 | dir=out | app=system | 
"{6E662FAD-94FE-46EE-A4C1-FB9C73C62E20}" = rport=137 | protocol=17 | dir=out | app=system | 
"{7633AAAC-76F7-45FC-8CE4-292551832536}" = lport=139 | protocol=6 | dir=in | app=system | 
"{7970EBEE-8B7E-4935-927C-2A161489B551}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{79F67761-B50E-479F-A28E-A5F9B74FE407}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{7A995DBF-C477-49E7-A102-AC5A6289D7D3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{7D741A71-345D-418A-AB4F-C9F97BA685FE}" = lport=1723 | protocol=6 | dir=in | app=system | 
"{7FFBC126-CBEC-496B-82D0-9C9D2F8A6059}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe | 
"{80B9406D-5EA6-45D0-94C5-1A4512E058B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{8358A2FC-D9C4-45A1-A3D5-51733CAEFA5D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{89A4F5DB-986A-497D-91C7-3F20C9A1C978}" = lport=rpc | protocol=6 | dir=in | svc=* | app=c:\windows\system32\svchost.exe | 
"{97732E4F-C3B1-44BA-AC3A-867D60BDB506}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
"{99CC1DB3-0542-4A60-ACB2-C73DC4D80207}" = lport=80 | protocol=6 | dir=in | app=system | 
"{A03959F8-60C7-43DC-8A93-6195F539A282}" = lport=445 | protocol=6 | dir=in | app=system | 
"{A1F6E7F4-3E4C-408F-94E5-C2F86937F1B3}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\services.exe | 
"{A84FEB77-E8A8-463E-ADB1-2795FA8AE0AC}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\vdsldr.exe | 
"{B08FB7BF-ED02-4630-80A6-BF9B12C70AF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{B381F01C-E825-4CB6-B5E9-C1A81EC8B1D9}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{B72D868D-805B-47FB-8EC9-67CF8934CA39}" = lport=445 | protocol=6 | dir=in | app=system | 
"{BC0A16CE-063E-4CEF-BDB1-2CF9A34AA2D9}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe | 
"{BCA9FC07-BFF2-4F36-994E-DEC3657EB375}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{BDBB6244-D525-411F-89EB-594AA937FA04}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{BE1DAF2E-EF8F-47B6-806F-C95C4999CAF3}" = rport=139 | protocol=6 | dir=out | app=system | 
"{BEB267B1-DB94-42F9-8430-8FCFCA9A3DFB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{C48C872D-9786-4B09-B220-F35AC698C127}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{CF396B73-CD6B-4507-9DA1-9BC2A7B00544}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{CFA6EB15-6992-472A-9504-559F9C00B3AF}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{D040F493-AC87-4D61-A966-D0083AC46EF4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{D456FC06-189D-416D-98E5-E73CE0419998}" = rport=138 | protocol=17 | dir=out | app=system | 
"{D72F5B4C-4790-4983-8037-B6D5021B76DC}" = rport=1723 | protocol=6 | dir=out | app=system | 
"{DD687CDB-982A-4CF8-B84F-8B7F4A96FAAB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{E63617F0-CD31-43F5-9F98-70BD5EFF722B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{E6EB27F4-52FD-47B9-BC98-7B7FC710900F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{EDB6C49E-8116-4224-B5CA-38C2B39FD9D3}" = rport=10244 | protocol=6 | dir=out | app=system | 
"{EDDE7A8E-574E-409F-81E3-77577B78146D}" = lport=445 | protocol=6 | dir=in | app=system | 
"{EE662450-7D9C-4AE5-9697-1C127545A68F}" = lport=137 | protocol=17 | dir=in | app=system | 
"{F32CE291-E5E4-4AEB-93A9-056954EC8E99}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{FD1E9878-E50A-47AB-A346-FA1C841785FB}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{FE23A560-A095-4776-89DE-100727EEA2C9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{FFB32D8B-2B94-447D-ABA4-01598CE2A848}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02421B8F-3715-46A8-9CE5-309CF052C1C5}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe | 
"{03F4C8A6-4D0D-40A0-97EC-A045884F081F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{04D7665C-E0CD-41F2-8A5A-A8E8DBCEE85C}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe | 
"{0876A0CA-C298-4CBE-86F9-413354505319}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{0AD63CA4-E4FB-4FCB-9EE2-9E7B8D955EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{0EB2F9B8-7993-44DB-9BD5-03FCC09E76B5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{0FCF4AA9-335E-417E-9C30-5E85B199AE46}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe | 
"{10DAA24C-E4E7-4865-BF6F-31B8749678DF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{19BFF45B-0058-4E0A-9136-8956ED4B222C}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe | 
"{1CCF2BF2-AD3F-4DD4-B10B-736F94EA2FFF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{1FFAE578-2D40-41F3-B421-91DDE5B811D4}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe | 
"{2431EB7D-5135-4EC3-A2AF-51745CA9F79F}" = protocol=6 | dir=out | app=system | 
"{291EAC0F-C1D9-4B3C-8659-C7F166E35384}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe | 
"{2E119624-64FA-4172-8A24-370071E04203}" = protocol=6 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe | 
"{368A9CCB-829B-4994-B013-B0408EB75201}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe | 
"{3EA714AE-4FD4-407F-87E2-4105C03C0AD2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{3FDBF395-931C-4297-BAC0-A05F3177FE14}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe | 
"{44313369-55A3-4DAD-880E-2106C1031AB1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{4B1F614E-9ACC-4092-B381-BA53D5624224}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe | 
"{4E2653DB-DF67-47AF-946A-0648A553B8A2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{565654F8-F40D-4390-93C6-8058E1ACD914}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe | 
"{57511EF4-299E-468D-A584-C1155E0665C8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{59D7ECC3-1D25-4D86-A5C5-E7571576410B}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe | 
"{6004ABCC-B45A-4EED-8304-084683592CBE}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe | 
"{6BC507F4-56B1-4FF6-ABC5-0A936A421C34}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe | 
"{7083925B-D779-4C38-9054-9C0BC1C6400A}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe | 
"{798FD248-8082-4D3E-A66C-5A22B08C0DCE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{7A8005A7-F5FB-42A0-A491-BD8D6E68E2AD}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe | 
"{8BA19971-F9C1-40F5-9B2A-440B2E541F5B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | 
"{8D514C19-9B7F-4B3D-9039-760270250D49}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe | 
"{8F8505F9-11BF-46BD-8C28-8544814B3DCD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{956A3EA0-324A-4246-B023-B47C7FDFF05E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{A9F71030-48C7-4DCA-8478-5B3C23C84AE6}" = protocol=17 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe | 
"{AB16E42D-6757-4C66-979C-AF36869A2377}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{AB5E5B16-25D8-4D8C-8847-D738D679508F}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe | 
"{AD34CF88-8627-4A37-9D6B-17F530CD6619}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe | 
"{AE4AF426-0752-41FE-A533-F7886DE302D8}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe | 
"{B4D4ED69-7645-44FA-A820-00A694A9ECE8}" = protocol=6 | dir=out | app=c:\windows\system32\wudfhost.exe | 
"{B94896C6-4C97-4F9F-8ECB-50D592A79E50}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe | 
"{C50E9F0E-8075-4E2F-9731-A37615F51F14}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{CB3FEEDC-6FCB-458E-94A8-43EB857FB49B}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe | 
"{D223A731-D16C-4A26-B477-A739E7BAB469}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe | 
"{D928E9C9-8E9B-4B11-97B0-B520BCEA5E36}" = dir=in | app=c:\program files\skype\phone\skype.exe | 
"{D9A23AEE-D76C-46AA-BF61-195698CF3D1A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{F245E915-8B6F-41DD-A734-819FCF9EC8D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{F3F0B4A3-9061-42D4-988A-98A714BD44FD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{F543F7C4-226B-4E07-8063-3608E9CAE38C}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe | 
"{FA8B8A41-BBF0-49C2-BA35-C03756F1C784}" = protocol=6 | dir=out | app=system | 
"TCP Query User{041189D2-7F08-448F-9ECC-A9C314D8290B}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | 
"TCP Query User{09FB8043-6709-45E9-8CB0-E651454D6AB9}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=6 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe | 
"TCP Query User{0ED9968F-DA50-4718-A5EA-A7EB7F60EBF4}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=6 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe | 
"TCP Query User{19EA354D-FE46-47E7-B8DE-E8DF5FFDDE82}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe | 
"TCP Query User{2386EDF1-952A-477F-ACA8-EEAA684CC280}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe | 
"TCP Query User{40BD3FE1-C6D9-44CB-A2E0-04BAFB3F8406}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"TCP Query User{7A57EE9F-F015-4657-8319-753C50106FAD}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=6 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe | 
"TCP Query User{8040B012-EEDD-4480-B4E6-FCDA51219567}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe | 
"TCP Query User{96EB0237-94A3-4B02-9043-5CFD71E2CD34}C:\gamez\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\gamez\dead space\dead space.exe | 
"TCP Query User{B19F811F-4CFE-4238-BA67-37DF2C54B6E2}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"TCP Query User{DF79C5A1-28BF-4E63-B9DE-623E2EA48864}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe | 
"UDP Query User{022C63C7-57E0-47E5-B78A-2AFD247C9618}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=17 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe | 
"UDP Query User{3EACC96D-76FD-4BA9-92A2-3539F208A9DA}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe | 
"UDP Query User{3FE2B31D-F18D-4268-9B89-1461988042F7}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=17 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe | 
"UDP Query User{72C551FD-5338-4E4D-BF3B-D67955F91C30}C:\gamez\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\gamez\dead space\dead space.exe | 
"UDP Query User{8A09F1EC-1B4D-4026-B28C-92F7AE31EEDA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"UDP Query User{8B422226-E0DE-4AE3-A061-3DF7BF62C7FE}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"UDP Query User{A2623241-31EB-4F6F-A5A4-20A3311005A4}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe | 
"UDP Query User{A70E5774-C47D-46D6-A6F4-FEC33E09B696}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe | 
"UDP Query User{AA013AC1-7C8C-4041-9543-57F88DF277FE}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe | 
"UDP Query User{BC173BC8-8D0B-43E6-BE98-8C27BD56599B}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=17 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe | 
"UDP Query User{F657B49C-EC94-4149-BDF6-24857B2C136A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000000-5736-4205-1000-F7ED0776FB27}" = Steganos Internet Anonym 2006 (8.0)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0C0AE701-05A6-4CFD-971D-CF5EF446108B}" = ESET NOD32 Antivirus
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{28CBE511-A28E-4010-BE83-1623FC3F1D3A}" = RUNAWAY - A road adventure
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{302E9B7B-2B6A-4C29-9A02-9F2110649779}" = Nuvoton EC Generic HID Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer PowerSmart Manager
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Fingerprint Solution
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion
"{5C318BD3-BA72-43E4-9D16-A18210B4A5A5}" = Media Go
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{62F7DA7E-CCCB-439C-A760-00C3926E761F}" = Microsoft Works
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{71C2828F-2678-4675-BDEC-895424861262}_is1" = C:\Program Files\Acer GameZone\GameConsole
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110184263}" = Puzzle Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11037623}" = Tradewinds 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111205743}" = Tri-Peaks Solitaire To Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111232687}" = Ocean Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11170417}" = Luxor 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11219217}" = Cradle of Rome
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112270203}" = Dream Day Wedding
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113009953}" = Turbo Pizza
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113056167}" = Dream Day Honeymoon
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113297350}" = Cake Mania 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113494430}" = Wedding Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}" = Airport Mania First Flight
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115443300}" = Cooking Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11551977}" = Parking Dash
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{93FD6568-A974-4292-B02E-AA9D90AEC13B}" = RUNAWAY 2 - The dream of the turtle
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9AF0B106-56F1-461B-A270-95BC1682E282}" = Broadcom Gigabit NetLink Controller
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}" = Magic Online
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}" = Acer Product Registration
"{DA410706-345C-4288-8853-A2460BDD0FA0}" = Logitech G35
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E117043B-5227-47E9-AC4C-BFB792D5820F}" = Yu-Gi-Oh! ONLINE 3
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin (Softonic Edition) 2.2
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.068
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"AC3Filter" = AC3Filter (remove only)
"Acer Screensaver" = Acer ScreenSaver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnyDVD" = AnyDVD
"art_of_murder_de_is1" = Die Kunst des Mordens - Geheimakte FBI
"AS-0000000709052007C8E4FAAD" = Mein Heim 3D
"Cubase SX" = Steinberg Cubase SX
"Curtains" = Curtains
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"DVDFab 8_is1" = DVDFab 8.0.6.8 (05/01/2011)
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows-Treiberpaket - MobileTop (sshpmdm) Modem  (01/26/2008 2.6.0.0)
"facemoods" = facemoods
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"ImgBurn" = ImgBurn
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Acer Bio Protection
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"JDownloader" = JDownloader
"JLC's Internet TV" = JLC's Internet TV
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"MediaMonkey_is1" = MediaMonkey 3.1
"MediaPortal" = MediaPortal
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.5.16)" = Mozilla Firefox (3.5.16)
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 12.0" = RealPlayer
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"SAMSUNG Mobile Modem V2" = SAMSUNG Mobile Modem V2 Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"Softonic_Deutsch Toolbar" = Softonic_Deutsch Toolbar
"SopCast" = SopCast 3.2.4
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities" = TuneUp Utilities
"Update Engine" = Sony Ericsson Update Engine
"UseNeXT_is1" = UseNeXT
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VideoLAN VLC media player 0.8.6d
"WBFS Manager 3.0" = WBFS Manager 3.0
"WeFi" = WeFi 3.6.4.4
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Erkennungs-Plug-in
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 18.01.2011 22:53:04 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 19.01.2011 14:19:13 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 19.01.2011 14:19:25 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 19.01.2011 14:20:31 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt. 
Er konnte daraufhin nicht gestartet werden.     Benutzer: Drake-PC\Drake     Prüfpunkt-ID:
 57     Fehlercode: 0x80070005     Fehlerbeschreibung: Zugriff verweigert 
 
Error - 19.01.2011 19:39:37 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 19.01.2011 19:39:39 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 19.01.2011 19:39:51 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt. 
Er konnte daraufhin nicht gestartet werden.     Benutzer: Drake-PC\Drake     Prüfpunkt-ID:
 57     Fehlercode: 0x80070005     Fehlerbeschreibung: Zugriff verweigert 
 
Error - 22.01.2011 08:57:11 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
[ System Events ]
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 03:57:37 | Computer Name = Drake-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 15.02.2011 um 01:37:29 unerwartet heruntergefahren.
 
Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 04:00:21 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7009
Description = 
 
Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
 
< End of report >
         
--- --- ---

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00818B43-F823-459B-846A-818BF9384949}" = lport=445 | protocol=6 | dir=in | app=system |
"{0E8FF364-92BC-4F77-B0DA-18C3589C56DF}" = lport=10244 | protocol=6 | dir=in | app=system |
"{1039D0C6-53F7-4E43-AE8F-4567910E7B9D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{147CD653-CB33-4F43-A232-D87DD159CCE9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=c:\windows\system32\svchost.exe |
"{17ADB16F-340C-4467-984A-F6D810BA9600}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{2605546D-7365-4528-99E0-D77CAA7A16BE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{26E2D6C7-D2D6-4A43-B94B-1A42E5E28CD0}" = rport=1701 | protocol=17 | dir=out | app=system |
"{2E0788FE-8E51-4582-A7C7-A4867D24ED7C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{32E2BD40-1858-452E-A00E-73DC6CCA6D4F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{3377B433-E72F-4DD0-A24F-FCA6C1026938}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{33D4192D-1F30-4255-8645-D4E69A302113}" = lport=138 | protocol=17 | dir=in | app=system |
"{35C27668-71AD-4180-9E45-ECBDA1078DBA}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=c:\windows\system32\svchost.exe |
"{37D2057B-D09B-4091-BD30-A063862EE14E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3A43E04C-674A-4C02-8E6B-9E7DC88732B8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3B277244-7F3F-4FDC-931E-D2CABC526E4E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{40A55B8F-9944-48A4-B283-C32FCD231BB4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{410924E6-E9E0-4EDC-B099-42F08102F8E2}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{4419A434-D878-4EEA-A316-224933E2918B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{44DCC43D-C86E-42BF-8936-DF64B44CDACC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4A210FC0-F34C-47BC-AF71-32A1D1D6B1A6}" = lport=3390 | protocol=6 | dir=in | app=system |
"{52F5AD4E-9590-4FD1-A217-29AB0FCC9B44}" = lport=2869 | protocol=6 | dir=in | app=system |
"{53F18A46-D3BC-45EC-AAF7-683E173B62EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=c:\windows\system32\svchost.exe |
"{582E5073-C568-4146-8748-A37005837AB7}" = lport=1701 | protocol=17 | dir=in | app=system |
"{6397B589-3C08-4E34-BB15-B1A444A5FB5C}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=c:\windows\system32\vds.exe |
"{67134F02-F89C-447A-BF41-387BC148A8D0}" = rport=445 | protocol=6 | dir=out | app=system |
"{6E662FAD-94FE-46EE-A4C1-FB9C73C62E20}" = rport=137 | protocol=17 | dir=out | app=system |
"{7633AAAC-76F7-45FC-8CE4-292551832536}" = lport=139 | protocol=6 | dir=in | app=system |
"{7970EBEE-8B7E-4935-927C-2A161489B551}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{79F67761-B50E-479F-A28E-A5F9B74FE407}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7A995DBF-C477-49E7-A102-AC5A6289D7D3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{7D741A71-345D-418A-AB4F-C9F97BA685FE}" = lport=1723 | protocol=6 | dir=in | app=system |
"{7FFBC126-CBEC-496B-82D0-9C9D2F8A6059}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{80B9406D-5EA6-45D0-94C5-1A4512E058B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{8358A2FC-D9C4-45A1-A3D5-51733CAEFA5D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{89A4F5DB-986A-497D-91C7-3F20C9A1C978}" = lport=rpc | protocol=6 | dir=in | svc=* | app=c:\windows\system32\svchost.exe |
"{97732E4F-C3B1-44BA-AC3A-867D60BDB506}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{99CC1DB3-0542-4A60-ACB2-C73DC4D80207}" = lport=80 | protocol=6 | dir=in | app=system |
"{A03959F8-60C7-43DC-8A93-6195F539A282}" = lport=445 | protocol=6 | dir=in | app=system |
"{A1F6E7F4-3E4C-408F-94E5-C2F86937F1B3}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\services.exe |
"{A84FEB77-E8A8-463E-ADB1-2795FA8AE0AC}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\vdsldr.exe |
"{B08FB7BF-ED02-4630-80A6-BF9B12C70AF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{B381F01C-E825-4CB6-B5E9-C1A81EC8B1D9}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{B72D868D-805B-47FB-8EC9-67CF8934CA39}" = lport=445 | protocol=6 | dir=in | app=system |
"{BC0A16CE-063E-4CEF-BDB1-2CF9A34AA2D9}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{BCA9FC07-BFF2-4F36-994E-DEC3657EB375}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{BDBB6244-D525-411F-89EB-594AA937FA04}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BE1DAF2E-EF8F-47B6-806F-C95C4999CAF3}" = rport=139 | protocol=6 | dir=out | app=system |
"{BEB267B1-DB94-42F9-8430-8FCFCA9A3DFB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C48C872D-9786-4B09-B220-F35AC698C127}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{CF396B73-CD6B-4507-9DA1-9BC2A7B00544}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{CFA6EB15-6992-472A-9504-559F9C00B3AF}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D040F493-AC87-4D61-A966-D0083AC46EF4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D456FC06-189D-416D-98E5-E73CE0419998}" = rport=138 | protocol=17 | dir=out | app=system |
"{D72F5B4C-4790-4983-8037-B6D5021B76DC}" = rport=1723 | protocol=6 | dir=out | app=system |
"{DD687CDB-982A-4CF8-B84F-8B7F4A96FAAB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{E63617F0-CD31-43F5-9F98-70BD5EFF722B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E6EB27F4-52FD-47B9-BC98-7B7FC710900F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EDB6C49E-8116-4224-B5CA-38C2B39FD9D3}" = rport=10244 | protocol=6 | dir=out | app=system |
"{EDDE7A8E-574E-409F-81E3-77577B78146D}" = lport=445 | protocol=6 | dir=in | app=system |
"{EE662450-7D9C-4AE5-9697-1C127545A68F}" = lport=137 | protocol=17 | dir=in | app=system |
"{F32CE291-E5E4-4AEB-93A9-056954EC8E99}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FD1E9878-E50A-47AB-A346-FA1C841785FB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{FE23A560-A095-4776-89DE-100727EEA2C9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FFB32D8B-2B94-447D-ABA4-01598CE2A848}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02421B8F-3715-46A8-9CE5-309CF052C1C5}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe |
"{03F4C8A6-4D0D-40A0-97EC-A045884F081F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{04D7665C-E0CD-41F2-8A5A-A8E8DBCEE85C}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{0876A0CA-C298-4CBE-86F9-413354505319}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0AD63CA4-E4FB-4FCB-9EE2-9E7B8D955EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{0EB2F9B8-7993-44DB-9BD5-03FCC09E76B5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0FCF4AA9-335E-417E-9C30-5E85B199AE46}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe |
"{10DAA24C-E4E7-4865-BF6F-31B8749678DF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19BFF45B-0058-4E0A-9136-8956ED4B222C}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{1CCF2BF2-AD3F-4DD4-B10B-736F94EA2FFF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1FFAE578-2D40-41F3-B421-91DDE5B811D4}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe |
"{2431EB7D-5135-4EC3-A2AF-51745CA9F79F}" = protocol=6 | dir=out | app=system |
"{291EAC0F-C1D9-4B3C-8659-C7F166E35384}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{2E119624-64FA-4172-8A24-370071E04203}" = protocol=6 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{368A9CCB-829B-4994-B013-B0408EB75201}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{3EA714AE-4FD4-407F-87E2-4105C03C0AD2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3FDBF395-931C-4297-BAC0-A05F3177FE14}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{44313369-55A3-4DAD-880E-2106C1031AB1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4B1F614E-9ACC-4092-B381-BA53D5624224}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{4E2653DB-DF67-47AF-946A-0648A553B8A2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{565654F8-F40D-4390-93C6-8058E1ACD914}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{57511EF4-299E-468D-A584-C1155E0665C8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{59D7ECC3-1D25-4D86-A5C5-E7571576410B}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{6004ABCC-B45A-4EED-8304-084683592CBE}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{6BC507F4-56B1-4FF6-ABC5-0A936A421C34}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe |
"{7083925B-D779-4C38-9054-9C0BC1C6400A}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe |
"{798FD248-8082-4D3E-A66C-5A22B08C0DCE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A8005A7-F5FB-42A0-A491-BD8D6E68E2AD}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{8BA19971-F9C1-40F5-9B2A-440B2E541F5B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{8D514C19-9B7F-4B3D-9039-760270250D49}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{8F8505F9-11BF-46BD-8C28-8544814B3DCD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{956A3EA0-324A-4246-B023-B47C7FDFF05E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{A9F71030-48C7-4DCA-8478-5B3C23C84AE6}" = protocol=17 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{AB16E42D-6757-4C66-979C-AF36869A2377}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AB5E5B16-25D8-4D8C-8847-D738D679508F}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{AD34CF88-8627-4A37-9D6B-17F530CD6619}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{AE4AF426-0752-41FE-A533-F7886DE302D8}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{B4D4ED69-7645-44FA-A820-00A694A9ECE8}" = protocol=6 | dir=out | app=c:\windows\system32\wudfhost.exe |
"{B94896C6-4C97-4F9F-8ECB-50D592A79E50}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe |
"{C50E9F0E-8075-4E2F-9731-A37615F51F14}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{CB3FEEDC-6FCB-458E-94A8-43EB857FB49B}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{D223A731-D16C-4A26-B477-A739E7BAB469}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe |
"{D928E9C9-8E9B-4B11-97B0-B520BCEA5E36}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D9A23AEE-D76C-46AA-BF61-195698CF3D1A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F245E915-8B6F-41DD-A734-819FCF9EC8D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F3F0B4A3-9061-42D4-988A-98A714BD44FD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F543F7C4-226B-4E07-8063-3608E9CAE38C}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{FA8B8A41-BBF0-49C2-BA35-C03756F1C784}" = protocol=6 | dir=out | app=system |
"TCP Query User{041189D2-7F08-448F-9ECC-A9C314D8290B}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{09FB8043-6709-45E9-8CB0-E651454D6AB9}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=6 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"TCP Query User{0ED9968F-DA50-4718-A5EA-A7EB7F60EBF4}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=6 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"TCP Query User{19EA354D-FE46-47E7-B8DE-E8DF5FFDDE82}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{2386EDF1-952A-477F-ACA8-EEAA684CC280}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{40BD3FE1-C6D9-44CB-A2E0-04BAFB3F8406}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{7A57EE9F-F015-4657-8319-753C50106FAD}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=6 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"TCP Query User{8040B012-EEDD-4480-B4E6-FCDA51219567}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{96EB0237-94A3-4B02-9043-5CFD71E2CD34}C:\gamez\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\gamez\dead space\dead space.exe |
"TCP Query User{B19F811F-4CFE-4238-BA67-37DF2C54B6E2}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{DF79C5A1-28BF-4E63-B9DE-623E2EA48864}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{022C63C7-57E0-47E5-B78A-2AFD247C9618}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=17 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"UDP Query User{3EACC96D-76FD-4BA9-92A2-3539F208A9DA}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{3FE2B31D-F18D-4268-9B89-1461988042F7}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=17 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"UDP Query User{72C551FD-5338-4E4D-BF3B-D67955F91C30}C:\gamez\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\gamez\dead space\dead space.exe |
"UDP Query User{8A09F1EC-1B4D-4026-B28C-92F7AE31EEDA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{8B422226-E0DE-4AE3-A061-3DF7BF62C7FE}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{A2623241-31EB-4F6F-A5A4-20A3311005A4}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{A70E5774-C47D-46D6-A6F4-FEC33E09B696}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{AA013AC1-7C8C-4041-9543-57F88DF277FE}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{BC173BC8-8D0B-43E6-BE98-8C27BD56599B}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=17 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"UDP Query User{F657B49C-EC94-4149-BDF6-24857B2C136A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000000-5736-4205-1000-F7ED0776FB27}" = Steganos Internet Anonym 2006 (8.0)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0C0AE701-05A6-4CFD-971D-CF5EF446108B}" = ESET NOD32 Antivirus
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{28CBE511-A28E-4010-BE83-1623FC3F1D3A}" = RUNAWAY - A road adventure
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{302E9B7B-2B6A-4C29-9A02-9F2110649779}" = Nuvoton EC Generic HID Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer PowerSmart Manager
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Fingerprint Solution
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion
"{5C318BD3-BA72-43E4-9D16-A18210B4A5A5}" = Media Go
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{62F7DA7E-CCCB-439C-A760-00C3926E761F}" = Microsoft Works
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{71C2828F-2678-4675-BDEC-895424861262}_is1" = C:\Program Files\Acer GameZone\GameConsole
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110184263}" = Puzzle Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11037623}" = Tradewinds 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111205743}" = Tri-Peaks Solitaire To Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111232687}" = Ocean Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11170417}" = Luxor 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11219217}" = Cradle of Rome
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112270203}" = Dream Day Wedding
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113009953}" = Turbo Pizza
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113056167}" = Dream Day Honeymoon
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113297350}" = Cake Mania 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113494430}" = Wedding Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}" = Airport Mania First Flight
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115443300}" = Cooking Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11551977}" = Parking Dash
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{93FD6568-A974-4292-B02E-AA9D90AEC13B}" = RUNAWAY 2 - The dream of the turtle
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9AF0B106-56F1-461B-A270-95BC1682E282}" = Broadcom Gigabit NetLink Controller
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}" = Magic Online
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}" = Acer Product Registration
"{DA410706-345C-4288-8853-A2460BDD0FA0}" = Logitech G35
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E117043B-5227-47E9-AC4C-BFB792D5820F}" = Yu-Gi-Oh! ONLINE 3
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin (Softonic Edition) 2.2
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.068
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"AC3Filter" = AC3Filter (remove only)
"Acer Screensaver" = Acer ScreenSaver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnyDVD" = AnyDVD
"art_of_murder_de_is1" = Die Kunst des Mordens - Geheimakte FBI
"AS-0000000709052007C8E4FAAD" = Mein Heim 3D
"Cubase SX" = Steinberg Cubase SX
"Curtains" = Curtains
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"DVDFab 8_is1" = DVDFab 8.0.6.8 (05/01/2011)
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows-Treiberpaket - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0)
"facemoods" = facemoods
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"ImgBurn" = ImgBurn
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Acer Bio Protection
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"JDownloader" = JDownloader
"JLC's Internet TV" = JLC's Internet TV
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"MediaMonkey_is1" = MediaMonkey 3.1
"MediaPortal" = MediaPortal
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.5.16)" = Mozilla Firefox (3.5.16)
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 12.0" = RealPlayer
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"SAMSUNG Mobile Modem V2" = SAMSUNG Mobile Modem V2 Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"Softonic_Deutsch Toolbar" = Softonic_Deutsch Toolbar
"SopCast" = SopCast 3.2.4
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities" = TuneUp Utilities
"Update Engine" = Sony Ericsson Update Engine
"UseNeXT_is1" = UseNeXT
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VideoLAN VLC media player 0.8.6d
"WBFS Manager 3.0" = WBFS Manager 3.0
"WeFi" = WeFi 3.6.4.4
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Erkennungs-Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 22:53:04 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:19:13 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 14:19:25 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:20:31 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 19.01.2011 19:39:37 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 19:39:39 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 19:39:51 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 22.01.2011 08:57:11 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

[ System Events ]
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:57:37 | Computer Name = Drake-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 15.02.2011 um 01:37:29 unerwartet heruntergefahren.

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 04:00:21 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =


< End of report >

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00818B43-F823-459B-846A-818BF9384949}" = lport=445 | protocol=6 | dir=in | app=system |
"{0E8FF364-92BC-4F77-B0DA-18C3589C56DF}" = lport=10244 | protocol=6 | dir=in | app=system |
"{1039D0C6-53F7-4E43-AE8F-4567910E7B9D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{147CD653-CB33-4F43-A232-D87DD159CCE9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=c:\windows\system32\svchost.exe |
"{17ADB16F-340C-4467-984A-F6D810BA9600}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{2605546D-7365-4528-99E0-D77CAA7A16BE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{26E2D6C7-D2D6-4A43-B94B-1A42E5E28CD0}" = rport=1701 | protocol=17 | dir=out | app=system |
"{2E0788FE-8E51-4582-A7C7-A4867D24ED7C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{32E2BD40-1858-452E-A00E-73DC6CCA6D4F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{3377B433-E72F-4DD0-A24F-FCA6C1026938}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{33D4192D-1F30-4255-8645-D4E69A302113}" = lport=138 | protocol=17 | dir=in | app=system |
"{35C27668-71AD-4180-9E45-ECBDA1078DBA}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=c:\windows\system32\svchost.exe |
"{37D2057B-D09B-4091-BD30-A063862EE14E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3A43E04C-674A-4C02-8E6B-9E7DC88732B8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3B277244-7F3F-4FDC-931E-D2CABC526E4E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{40A55B8F-9944-48A4-B283-C32FCD231BB4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{410924E6-E9E0-4EDC-B099-42F08102F8E2}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{4419A434-D878-4EEA-A316-224933E2918B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{44DCC43D-C86E-42BF-8936-DF64B44CDACC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4A210FC0-F34C-47BC-AF71-32A1D1D6B1A6}" = lport=3390 | protocol=6 | dir=in | app=system |
"{52F5AD4E-9590-4FD1-A217-29AB0FCC9B44}" = lport=2869 | protocol=6 | dir=in | app=system |
"{53F18A46-D3BC-45EC-AAF7-683E173B62EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=c:\windows\system32\svchost.exe |
"{582E5073-C568-4146-8748-A37005837AB7}" = lport=1701 | protocol=17 | dir=in | app=system |
"{6397B589-3C08-4E34-BB15-B1A444A5FB5C}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=c:\windows\system32\vds.exe |
"{67134F02-F89C-447A-BF41-387BC148A8D0}" = rport=445 | protocol=6 | dir=out | app=system |
"{6E662FAD-94FE-46EE-A4C1-FB9C73C62E20}" = rport=137 | protocol=17 | dir=out | app=system |
"{7633AAAC-76F7-45FC-8CE4-292551832536}" = lport=139 | protocol=6 | dir=in | app=system |
"{7970EBEE-8B7E-4935-927C-2A161489B551}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{79F67761-B50E-479F-A28E-A5F9B74FE407}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7A995DBF-C477-49E7-A102-AC5A6289D7D3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{7D741A71-345D-418A-AB4F-C9F97BA685FE}" = lport=1723 | protocol=6 | dir=in | app=system |
"{7FFBC126-CBEC-496B-82D0-9C9D2F8A6059}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{80B9406D-5EA6-45D0-94C5-1A4512E058B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{8358A2FC-D9C4-45A1-A3D5-51733CAEFA5D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{89A4F5DB-986A-497D-91C7-3F20C9A1C978}" = lport=rpc | protocol=6 | dir=in | svc=* | app=c:\windows\system32\svchost.exe |
"{97732E4F-C3B1-44BA-AC3A-867D60BDB506}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{99CC1DB3-0542-4A60-ACB2-C73DC4D80207}" = lport=80 | protocol=6 | dir=in | app=system |
"{A03959F8-60C7-43DC-8A93-6195F539A282}" = lport=445 | protocol=6 | dir=in | app=system |
"{A1F6E7F4-3E4C-408F-94E5-C2F86937F1B3}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\services.exe |
"{A84FEB77-E8A8-463E-ADB1-2795FA8AE0AC}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\vdsldr.exe |
"{B08FB7BF-ED02-4630-80A6-BF9B12C70AF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{B381F01C-E825-4CB6-B5E9-C1A81EC8B1D9}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{B72D868D-805B-47FB-8EC9-67CF8934CA39}" = lport=445 | protocol=6 | dir=in | app=system |
"{BC0A16CE-063E-4CEF-BDB1-2CF9A34AA2D9}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{BCA9FC07-BFF2-4F36-994E-DEC3657EB375}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{BDBB6244-D525-411F-89EB-594AA937FA04}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BE1DAF2E-EF8F-47B6-806F-C95C4999CAF3}" = rport=139 | protocol=6 | dir=out | app=system |
"{BEB267B1-DB94-42F9-8430-8FCFCA9A3DFB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C48C872D-9786-4B09-B220-F35AC698C127}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{CF396B73-CD6B-4507-9DA1-9BC2A7B00544}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{CFA6EB15-6992-472A-9504-559F9C00B3AF}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D040F493-AC87-4D61-A966-D0083AC46EF4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D456FC06-189D-416D-98E5-E73CE0419998}" = rport=138 | protocol=17 | dir=out | app=system |
"{D72F5B4C-4790-4983-8037-B6D5021B76DC}" = rport=1723 | protocol=6 | dir=out | app=system |
"{DD687CDB-982A-4CF8-B84F-8B7F4A96FAAB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{E63617F0-CD31-43F5-9F98-70BD5EFF722B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E6EB27F4-52FD-47B9-BC98-7B7FC710900F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EDB6C49E-8116-4224-B5CA-38C2B39FD9D3}" = rport=10244 | protocol=6 | dir=out | app=system |
"{EDDE7A8E-574E-409F-81E3-77577B78146D}" = lport=445 | protocol=6 | dir=in | app=system |
"{EE662450-7D9C-4AE5-9697-1C127545A68F}" = lport=137 | protocol=17 | dir=in | app=system |
"{F32CE291-E5E4-4AEB-93A9-056954EC8E99}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FD1E9878-E50A-47AB-A346-FA1C841785FB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{FE23A560-A095-4776-89DE-100727EEA2C9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FFB32D8B-2B94-447D-ABA4-01598CE2A848}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02421B8F-3715-46A8-9CE5-309CF052C1C5}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe |
"{03F4C8A6-4D0D-40A0-97EC-A045884F081F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{04D7665C-E0CD-41F2-8A5A-A8E8DBCEE85C}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{0876A0CA-C298-4CBE-86F9-413354505319}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0AD63CA4-E4FB-4FCB-9EE2-9E7B8D955EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{0EB2F9B8-7993-44DB-9BD5-03FCC09E76B5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0FCF4AA9-335E-417E-9C30-5E85B199AE46}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe |
"{10DAA24C-E4E7-4865-BF6F-31B8749678DF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19BFF45B-0058-4E0A-9136-8956ED4B222C}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{1CCF2BF2-AD3F-4DD4-B10B-736F94EA2FFF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1FFAE578-2D40-41F3-B421-91DDE5B811D4}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe |
"{2431EB7D-5135-4EC3-A2AF-51745CA9F79F}" = protocol=6 | dir=out | app=system |
"{291EAC0F-C1D9-4B3C-8659-C7F166E35384}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{2E119624-64FA-4172-8A24-370071E04203}" = protocol=6 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{368A9CCB-829B-4994-B013-B0408EB75201}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{3EA714AE-4FD4-407F-87E2-4105C03C0AD2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3FDBF395-931C-4297-BAC0-A05F3177FE14}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{44313369-55A3-4DAD-880E-2106C1031AB1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4B1F614E-9ACC-4092-B381-BA53D5624224}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{4E2653DB-DF67-47AF-946A-0648A553B8A2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{565654F8-F40D-4390-93C6-8058E1ACD914}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{57511EF4-299E-468D-A584-C1155E0665C8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{59D7ECC3-1D25-4D86-A5C5-E7571576410B}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{6004ABCC-B45A-4EED-8304-084683592CBE}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{6BC507F4-56B1-4FF6-ABC5-0A936A421C34}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe |
"{7083925B-D779-4C38-9054-9C0BC1C6400A}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe |
"{798FD248-8082-4D3E-A66C-5A22B08C0DCE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A8005A7-F5FB-42A0-A491-BD8D6E68E2AD}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{8BA19971-F9C1-40F5-9B2A-440B2E541F5B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{8D514C19-9B7F-4B3D-9039-760270250D49}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{8F8505F9-11BF-46BD-8C28-8544814B3DCD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{956A3EA0-324A-4246-B023-B47C7FDFF05E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{A9F71030-48C7-4DCA-8478-5B3C23C84AE6}" = protocol=17 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{AB16E42D-6757-4C66-979C-AF36869A2377}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AB5E5B16-25D8-4D8C-8847-D738D679508F}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{AD34CF88-8627-4A37-9D6B-17F530CD6619}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{AE4AF426-0752-41FE-A533-F7886DE302D8}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{B4D4ED69-7645-44FA-A820-00A694A9ECE8}" = protocol=6 | dir=out | app=c:\windows\system32\wudfhost.exe |
"{B94896C6-4C97-4F9F-8ECB-50D592A79E50}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe |
"{C50E9F0E-8075-4E2F-9731-A37615F51F14}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{CB3FEEDC-6FCB-458E-94A8-43EB857FB49B}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{D223A731-D16C-4A26-B477-A739E7BAB469}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe |
"{D928E9C9-8E9B-4B11-97B0-B520BCEA5E36}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D9A23AEE-D76C-46AA-BF61-195698CF3D1A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F245E915-8B6F-41DD-A734-819FCF9EC8D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F3F0B4A3-9061-42D4-988A-98A714BD44FD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F543F7C4-226B-4E07-8063-3608E9CAE38C}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{FA8B8A41-BBF0-49C2-BA35-C03756F1C784}" = protocol=6 | dir=out | app=system |
"TCP Query User{041189D2-7F08-448F-9ECC-A9C314D8290B}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{09FB8043-6709-45E9-8CB0-E651454D6AB9}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=6 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"TCP Query User{0ED9968F-DA50-4718-A5EA-A7EB7F60EBF4}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=6 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"TCP Query User{19EA354D-FE46-47E7-B8DE-E8DF5FFDDE82}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{2386EDF1-952A-477F-ACA8-EEAA684CC280}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{40BD3FE1-C6D9-44CB-A2E0-04BAFB3F8406}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{7A57EE9F-F015-4657-8319-753C50106FAD}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=6 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"TCP Query User{8040B012-EEDD-4480-B4E6-FCDA51219567}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{96EB0237-94A3-4B02-9043-5CFD71E2CD34}C:\gamez\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\gamez\dead space\dead space.exe |
"TCP Query User{B19F811F-4CFE-4238-BA67-37DF2C54B6E2}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{DF79C5A1-28BF-4E63-B9DE-623E2EA48864}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{022C63C7-57E0-47E5-B78A-2AFD247C9618}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=17 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"UDP Query User{3EACC96D-76FD-4BA9-92A2-3539F208A9DA}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{3FE2B31D-F18D-4268-9B89-1461988042F7}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=17 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"UDP Query User{72C551FD-5338-4E4D-BF3B-D67955F91C30}C:\gamez\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\gamez\dead space\dead space.exe |
"UDP Query User{8A09F1EC-1B4D-4026-B28C-92F7AE31EEDA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{8B422226-E0DE-4AE3-A061-3DF7BF62C7FE}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{A2623241-31EB-4F6F-A5A4-20A3311005A4}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{A70E5774-C47D-46D6-A6F4-FEC33E09B696}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{AA013AC1-7C8C-4041-9543-57F88DF277FE}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{BC173BC8-8D0B-43E6-BE98-8C27BD56599B}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=17 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"UDP Query User{F657B49C-EC94-4149-BDF6-24857B2C136A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000000-5736-4205-1000-F7ED0776FB27}" = Steganos Internet Anonym 2006 (8.0)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0C0AE701-05A6-4CFD-971D-CF5EF446108B}" = ESET NOD32 Antivirus
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{28CBE511-A28E-4010-BE83-1623FC3F1D3A}" = RUNAWAY - A road adventure
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{302E9B7B-2B6A-4C29-9A02-9F2110649779}" = Nuvoton EC Generic HID Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer PowerSmart Manager
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Fingerprint Solution
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion
"{5C318BD3-BA72-43E4-9D16-A18210B4A5A5}" = Media Go
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{62F7DA7E-CCCB-439C-A760-00C3926E761F}" = Microsoft Works
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{71C2828F-2678-4675-BDEC-895424861262}_is1" = C:\Program Files\Acer GameZone\GameConsole
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110184263}" = Puzzle Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11037623}" = Tradewinds 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111205743}" = Tri-Peaks Solitaire To Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111232687}" = Ocean Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11170417}" = Luxor 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11219217}" = Cradle of Rome
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112270203}" = Dream Day Wedding
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113009953}" = Turbo Pizza
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113056167}" = Dream Day Honeymoon
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113297350}" = Cake Mania 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113494430}" = Wedding Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}" = Airport Mania First Flight
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115443300}" = Cooking Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11551977}" = Parking Dash
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{93FD6568-A974-4292-B02E-AA9D90AEC13B}" = RUNAWAY 2 - The dream of the turtle
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9AF0B106-56F1-461B-A270-95BC1682E282}" = Broadcom Gigabit NetLink Controller
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}" = Magic Online
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}" = Acer Product Registration
"{DA410706-345C-4288-8853-A2460BDD0FA0}" = Logitech G35
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E117043B-5227-47E9-AC4C-BFB792D5820F}" = Yu-Gi-Oh! ONLINE 3
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin (Softonic Edition) 2.2
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.068
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"AC3Filter" = AC3Filter (remove only)
"Acer Screensaver" = Acer ScreenSaver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnyDVD" = AnyDVD
"art_of_murder_de_is1" = Die Kunst des Mordens - Geheimakte FBI
"AS-0000000709052007C8E4FAAD" = Mein Heim 3D
"Cubase SX" = Steinberg Cubase SX
"Curtains" = Curtains
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"DVDFab 8_is1" = DVDFab 8.0.6.8 (05/01/2011)
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows-Treiberpaket - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0)
"facemoods" = facemoods
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"ImgBurn" = ImgBurn
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Acer Bio Protection
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"JDownloader" = JDownloader
"JLC's Internet TV" = JLC's Internet TV
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"MediaMonkey_is1" = MediaMonkey 3.1
"MediaPortal" = MediaPortal
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.5.16)" = Mozilla Firefox (3.5.16)
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 12.0" = RealPlayer
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"SAMSUNG Mobile Modem V2" = SAMSUNG Mobile Modem V2 Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"Softonic_Deutsch Toolbar" = Softonic_Deutsch Toolbar
"SopCast" = SopCast 3.2.4
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities" = TuneUp Utilities
"Update Engine" = Sony Ericsson Update Engine
"UseNeXT_is1" = UseNeXT
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VideoLAN VLC media player 0.8.6d
"WBFS Manager 3.0" = WBFS Manager 3.0
"WeFi" = WeFi 3.6.4.4
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Erkennungs-Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 22:53:04 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:19:13 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 14:19:25 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:20:31 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 19.01.2011 19:39:37 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 19:39:39 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 19:39:51 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 22.01.2011 08:57:11 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

[ System Events ]
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:57:37 | Computer Name = Drake-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 15.02.2011 um 01:37:29 unerwartet heruntergefahren.

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 04:00:21 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =


Hoffe das das so richtig war, weil das doch schon ganz viele Sachen sind und somit halt auch endlos lange Posts.

Dazu auch sorry für die Doppelposts bzw dreifach posts. Ging leider net anders weil wegen zu lang ...

Soweit schon einmal vielen Dank und liebe Grüße von mir.

Denyo!

< End of report >

Alt 14.02.2011, 16:26   #8
-D3nYo-
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



und hier der extras.txtOTL EXTRAS Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 15.02.2011 15:56:31 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Users\Drake\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 52,00% Memory free
7,00 Gb Paging File | 6,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): c:\pagefile.sys 4597 6000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 452,99 Gb Total Space | 298,11 Gb Free Space | 65,81% Space Free | Partition Type: NTFS
 
Computer Name: DRAKE-PC | User Name: Drake | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00818B43-F823-459B-846A-818BF9384949}" = lport=445 | protocol=6 | dir=in | app=system | 
"{0E8FF364-92BC-4F77-B0DA-18C3589C56DF}" = lport=10244 | protocol=6 | dir=in | app=system | 
"{1039D0C6-53F7-4E43-AE8F-4567910E7B9D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
"{147CD653-CB33-4F43-A232-D87DD159CCE9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=c:\windows\system32\svchost.exe | 
"{17ADB16F-340C-4467-984A-F6D810BA9600}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
"{2605546D-7365-4528-99E0-D77CAA7A16BE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
"{26E2D6C7-D2D6-4A43-B94B-1A42E5E28CD0}" = rport=1701 | protocol=17 | dir=out | app=system | 
"{2E0788FE-8E51-4582-A7C7-A4867D24ED7C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{32E2BD40-1858-452E-A00E-73DC6CCA6D4F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{3377B433-E72F-4DD0-A24F-FCA6C1026938}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{33D4192D-1F30-4255-8645-D4E69A302113}" = lport=138 | protocol=17 | dir=in | app=system | 
"{35C27668-71AD-4180-9E45-ECBDA1078DBA}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=c:\windows\system32\svchost.exe | 
"{37D2057B-D09B-4091-BD30-A063862EE14E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{3A43E04C-674A-4C02-8E6B-9E7DC88732B8}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{3B277244-7F3F-4FDC-931E-D2CABC526E4E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
"{40A55B8F-9944-48A4-B283-C32FCD231BB4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{410924E6-E9E0-4EDC-B099-42F08102F8E2}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{4419A434-D878-4EEA-A316-224933E2918B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{44DCC43D-C86E-42BF-8936-DF64B44CDACC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{4A210FC0-F34C-47BC-AF71-32A1D1D6B1A6}" = lport=3390 | protocol=6 | dir=in | app=system | 
"{52F5AD4E-9590-4FD1-A217-29AB0FCC9B44}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{53F18A46-D3BC-45EC-AAF7-683E173B62EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=c:\windows\system32\svchost.exe | 
"{582E5073-C568-4146-8748-A37005837AB7}" = lport=1701 | protocol=17 | dir=in | app=system | 
"{6397B589-3C08-4E34-BB15-B1A444A5FB5C}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=c:\windows\system32\vds.exe | 
"{67134F02-F89C-447A-BF41-387BC148A8D0}" = rport=445 | protocol=6 | dir=out | app=system | 
"{6E662FAD-94FE-46EE-A4C1-FB9C73C62E20}" = rport=137 | protocol=17 | dir=out | app=system | 
"{7633AAAC-76F7-45FC-8CE4-292551832536}" = lport=139 | protocol=6 | dir=in | app=system | 
"{7970EBEE-8B7E-4935-927C-2A161489B551}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{79F67761-B50E-479F-A28E-A5F9B74FE407}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{7A995DBF-C477-49E7-A102-AC5A6289D7D3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{7D741A71-345D-418A-AB4F-C9F97BA685FE}" = lport=1723 | protocol=6 | dir=in | app=system | 
"{7FFBC126-CBEC-496B-82D0-9C9D2F8A6059}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe | 
"{80B9406D-5EA6-45D0-94C5-1A4512E058B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{8358A2FC-D9C4-45A1-A3D5-51733CAEFA5D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{89A4F5DB-986A-497D-91C7-3F20C9A1C978}" = lport=rpc | protocol=6 | dir=in | svc=* | app=c:\windows\system32\svchost.exe | 
"{97732E4F-C3B1-44BA-AC3A-867D60BDB506}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
"{99CC1DB3-0542-4A60-ACB2-C73DC4D80207}" = lport=80 | protocol=6 | dir=in | app=system | 
"{A03959F8-60C7-43DC-8A93-6195F539A282}" = lport=445 | protocol=6 | dir=in | app=system | 
"{A1F6E7F4-3E4C-408F-94E5-C2F86937F1B3}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\services.exe | 
"{A84FEB77-E8A8-463E-ADB1-2795FA8AE0AC}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\vdsldr.exe | 
"{B08FB7BF-ED02-4630-80A6-BF9B12C70AF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{B381F01C-E825-4CB6-B5E9-C1A81EC8B1D9}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{B72D868D-805B-47FB-8EC9-67CF8934CA39}" = lport=445 | protocol=6 | dir=in | app=system | 
"{BC0A16CE-063E-4CEF-BDB1-2CF9A34AA2D9}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe | 
"{BCA9FC07-BFF2-4F36-994E-DEC3657EB375}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{BDBB6244-D525-411F-89EB-594AA937FA04}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{BE1DAF2E-EF8F-47B6-806F-C95C4999CAF3}" = rport=139 | protocol=6 | dir=out | app=system | 
"{BEB267B1-DB94-42F9-8430-8FCFCA9A3DFB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{C48C872D-9786-4B09-B220-F35AC698C127}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{CF396B73-CD6B-4507-9DA1-9BC2A7B00544}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{CFA6EB15-6992-472A-9504-559F9C00B3AF}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{D040F493-AC87-4D61-A966-D0083AC46EF4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{D456FC06-189D-416D-98E5-E73CE0419998}" = rport=138 | protocol=17 | dir=out | app=system | 
"{D72F5B4C-4790-4983-8037-B6D5021B76DC}" = rport=1723 | protocol=6 | dir=out | app=system | 
"{DD687CDB-982A-4CF8-B84F-8B7F4A96FAAB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{E63617F0-CD31-43F5-9F98-70BD5EFF722B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{E6EB27F4-52FD-47B9-BC98-7B7FC710900F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{EDB6C49E-8116-4224-B5CA-38C2B39FD9D3}" = rport=10244 | protocol=6 | dir=out | app=system | 
"{EDDE7A8E-574E-409F-81E3-77577B78146D}" = lport=445 | protocol=6 | dir=in | app=system | 
"{EE662450-7D9C-4AE5-9697-1C127545A68F}" = lport=137 | protocol=17 | dir=in | app=system | 
"{F32CE291-E5E4-4AEB-93A9-056954EC8E99}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{FD1E9878-E50A-47AB-A346-FA1C841785FB}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{FE23A560-A095-4776-89DE-100727EEA2C9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{FFB32D8B-2B94-447D-ABA4-01598CE2A848}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02421B8F-3715-46A8-9CE5-309CF052C1C5}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe | 
"{03F4C8A6-4D0D-40A0-97EC-A045884F081F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{04D7665C-E0CD-41F2-8A5A-A8E8DBCEE85C}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe | 
"{0876A0CA-C298-4CBE-86F9-413354505319}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{0AD63CA4-E4FB-4FCB-9EE2-9E7B8D955EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{0EB2F9B8-7993-44DB-9BD5-03FCC09E76B5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{0FCF4AA9-335E-417E-9C30-5E85B199AE46}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe | 
"{10DAA24C-E4E7-4865-BF6F-31B8749678DF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{19BFF45B-0058-4E0A-9136-8956ED4B222C}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe | 
"{1CCF2BF2-AD3F-4DD4-B10B-736F94EA2FFF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{1FFAE578-2D40-41F3-B421-91DDE5B811D4}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe | 
"{2431EB7D-5135-4EC3-A2AF-51745CA9F79F}" = protocol=6 | dir=out | app=system | 
"{291EAC0F-C1D9-4B3C-8659-C7F166E35384}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe | 
"{2E119624-64FA-4172-8A24-370071E04203}" = protocol=6 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe | 
"{368A9CCB-829B-4994-B013-B0408EB75201}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe | 
"{3EA714AE-4FD4-407F-87E2-4105C03C0AD2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{3FDBF395-931C-4297-BAC0-A05F3177FE14}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe | 
"{44313369-55A3-4DAD-880E-2106C1031AB1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{4B1F614E-9ACC-4092-B381-BA53D5624224}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe | 
"{4E2653DB-DF67-47AF-946A-0648A553B8A2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{565654F8-F40D-4390-93C6-8058E1ACD914}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe | 
"{57511EF4-299E-468D-A584-C1155E0665C8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{59D7ECC3-1D25-4D86-A5C5-E7571576410B}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe | 
"{6004ABCC-B45A-4EED-8304-084683592CBE}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe | 
"{6BC507F4-56B1-4FF6-ABC5-0A936A421C34}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe | 
"{7083925B-D779-4C38-9054-9C0BC1C6400A}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe | 
"{798FD248-8082-4D3E-A66C-5A22B08C0DCE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{7A8005A7-F5FB-42A0-A491-BD8D6E68E2AD}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe | 
"{8BA19971-F9C1-40F5-9B2A-440B2E541F5B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | 
"{8D514C19-9B7F-4B3D-9039-760270250D49}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe | 
"{8F8505F9-11BF-46BD-8C28-8544814B3DCD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{956A3EA0-324A-4246-B023-B47C7FDFF05E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{A9F71030-48C7-4DCA-8478-5B3C23C84AE6}" = protocol=17 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe | 
"{AB16E42D-6757-4C66-979C-AF36869A2377}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{AB5E5B16-25D8-4D8C-8847-D738D679508F}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe | 
"{AD34CF88-8627-4A37-9D6B-17F530CD6619}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe | 
"{AE4AF426-0752-41FE-A533-F7886DE302D8}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe | 
"{B4D4ED69-7645-44FA-A820-00A694A9ECE8}" = protocol=6 | dir=out | app=c:\windows\system32\wudfhost.exe | 
"{B94896C6-4C97-4F9F-8ECB-50D592A79E50}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe | 
"{C50E9F0E-8075-4E2F-9731-A37615F51F14}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{CB3FEEDC-6FCB-458E-94A8-43EB857FB49B}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe | 
"{D223A731-D16C-4A26-B477-A739E7BAB469}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe | 
"{D928E9C9-8E9B-4B11-97B0-B520BCEA5E36}" = dir=in | app=c:\program files\skype\phone\skype.exe | 
"{D9A23AEE-D76C-46AA-BF61-195698CF3D1A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{F245E915-8B6F-41DD-A734-819FCF9EC8D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{F3F0B4A3-9061-42D4-988A-98A714BD44FD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{F543F7C4-226B-4E07-8063-3608E9CAE38C}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe | 
"{FA8B8A41-BBF0-49C2-BA35-C03756F1C784}" = protocol=6 | dir=out | app=system | 
"TCP Query User{041189D2-7F08-448F-9ECC-A9C314D8290B}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | 
"TCP Query User{09FB8043-6709-45E9-8CB0-E651454D6AB9}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=6 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe | 
"TCP Query User{0ED9968F-DA50-4718-A5EA-A7EB7F60EBF4}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=6 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe | 
"TCP Query User{19EA354D-FE46-47E7-B8DE-E8DF5FFDDE82}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe | 
"TCP Query User{2386EDF1-952A-477F-ACA8-EEAA684CC280}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe | 
"TCP Query User{40BD3FE1-C6D9-44CB-A2E0-04BAFB3F8406}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"TCP Query User{7A57EE9F-F015-4657-8319-753C50106FAD}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=6 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe | 
"TCP Query User{8040B012-EEDD-4480-B4E6-FCDA51219567}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe | 
"TCP Query User{96EB0237-94A3-4B02-9043-5CFD71E2CD34}C:\gamez\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\gamez\dead space\dead space.exe | 
"TCP Query User{B19F811F-4CFE-4238-BA67-37DF2C54B6E2}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"TCP Query User{DF79C5A1-28BF-4E63-B9DE-623E2EA48864}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe | 
"UDP Query User{022C63C7-57E0-47E5-B78A-2AFD247C9618}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=17 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe | 
"UDP Query User{3EACC96D-76FD-4BA9-92A2-3539F208A9DA}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe | 
"UDP Query User{3FE2B31D-F18D-4268-9B89-1461988042F7}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=17 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe | 
"UDP Query User{72C551FD-5338-4E4D-BF3B-D67955F91C30}C:\gamez\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\gamez\dead space\dead space.exe | 
"UDP Query User{8A09F1EC-1B4D-4026-B28C-92F7AE31EEDA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"UDP Query User{8B422226-E0DE-4AE3-A061-3DF7BF62C7FE}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"UDP Query User{A2623241-31EB-4F6F-A5A4-20A3311005A4}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe | 
"UDP Query User{A70E5774-C47D-46D6-A6F4-FEC33E09B696}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe | 
"UDP Query User{AA013AC1-7C8C-4041-9543-57F88DF277FE}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe | 
"UDP Query User{BC173BC8-8D0B-43E6-BE98-8C27BD56599B}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=17 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe | 
"UDP Query User{F657B49C-EC94-4149-BDF6-24857B2C136A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000000-5736-4205-1000-F7ED0776FB27}" = Steganos Internet Anonym 2006 (8.0)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0C0AE701-05A6-4CFD-971D-CF5EF446108B}" = ESET NOD32 Antivirus
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{28CBE511-A28E-4010-BE83-1623FC3F1D3A}" = RUNAWAY - A road adventure
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{302E9B7B-2B6A-4C29-9A02-9F2110649779}" = Nuvoton EC Generic HID Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer PowerSmart Manager
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Fingerprint Solution
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion
"{5C318BD3-BA72-43E4-9D16-A18210B4A5A5}" = Media Go
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{62F7DA7E-CCCB-439C-A760-00C3926E761F}" = Microsoft Works
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{71C2828F-2678-4675-BDEC-895424861262}_is1" = C:\Program Files\Acer GameZone\GameConsole
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110184263}" = Puzzle Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11037623}" = Tradewinds 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111205743}" = Tri-Peaks Solitaire To Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111232687}" = Ocean Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11170417}" = Luxor 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11219217}" = Cradle of Rome
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112270203}" = Dream Day Wedding
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113009953}" = Turbo Pizza
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113056167}" = Dream Day Honeymoon
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113297350}" = Cake Mania 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113494430}" = Wedding Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}" = Airport Mania First Flight
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115443300}" = Cooking Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11551977}" = Parking Dash
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{93FD6568-A974-4292-B02E-AA9D90AEC13B}" = RUNAWAY 2 - The dream of the turtle
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9AF0B106-56F1-461B-A270-95BC1682E282}" = Broadcom Gigabit NetLink Controller
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}" = Magic Online
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}" = Acer Product Registration
"{DA410706-345C-4288-8853-A2460BDD0FA0}" = Logitech G35
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E117043B-5227-47E9-AC4C-BFB792D5820F}" = Yu-Gi-Oh! ONLINE 3
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin (Softonic Edition) 2.2
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.068
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"AC3Filter" = AC3Filter (remove only)
"Acer Screensaver" = Acer ScreenSaver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnyDVD" = AnyDVD
"art_of_murder_de_is1" = Die Kunst des Mordens - Geheimakte FBI
"AS-0000000709052007C8E4FAAD" = Mein Heim 3D
"Cubase SX" = Steinberg Cubase SX
"Curtains" = Curtains
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"DVDFab 8_is1" = DVDFab 8.0.6.8 (05/01/2011)
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows-Treiberpaket - MobileTop (sshpmdm) Modem  (01/26/2008 2.6.0.0)
"facemoods" = facemoods
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"ImgBurn" = ImgBurn
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Acer Bio Protection
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"JDownloader" = JDownloader
"JLC's Internet TV" = JLC's Internet TV
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"MediaMonkey_is1" = MediaMonkey 3.1
"MediaPortal" = MediaPortal
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.5.16)" = Mozilla Firefox (3.5.16)
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 12.0" = RealPlayer
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"SAMSUNG Mobile Modem V2" = SAMSUNG Mobile Modem V2 Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"Softonic_Deutsch Toolbar" = Softonic_Deutsch Toolbar
"SopCast" = SopCast 3.2.4
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities" = TuneUp Utilities
"Update Engine" = Sony Ericsson Update Engine
"UseNeXT_is1" = UseNeXT
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VideoLAN VLC media player 0.8.6d
"WBFS Manager 3.0" = WBFS Manager 3.0
"WeFi" = WeFi 3.6.4.4
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Erkennungs-Plug-in
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 18.01.2011 22:53:04 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 19.01.2011 14:19:13 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 19.01.2011 14:19:25 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 19.01.2011 14:20:31 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt. 
Er konnte daraufhin nicht gestartet werden.     Benutzer: Drake-PC\Drake     Prüfpunkt-ID:
 57     Fehlercode: 0x80070005     Fehlerbeschreibung: Zugriff verweigert 
 
Error - 19.01.2011 19:39:37 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 19.01.2011 19:39:39 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 19.01.2011 19:39:51 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt. 
Er konnte daraufhin nicht gestartet werden.     Benutzer: Drake-PC\Drake     Prüfpunkt-ID:
 57     Fehlercode: 0x80070005     Fehlerbeschreibung: Zugriff verweigert 
 
Error - 22.01.2011 08:57:11 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe".
Die
 abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
[ System Events ]
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 03:57:37 | Computer Name = Drake-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 15.02.2011 um 01:37:29 unerwartet heruntergefahren.
 
Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 04:00:21 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7009
Description = 
 
Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description = 
 
 
< End of report >
         
--- --- ---

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00818B43-F823-459B-846A-818BF9384949}" = lport=445 | protocol=6 | dir=in | app=system |
"{0E8FF364-92BC-4F77-B0DA-18C3589C56DF}" = lport=10244 | protocol=6 | dir=in | app=system |
"{1039D0C6-53F7-4E43-AE8F-4567910E7B9D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{147CD653-CB33-4F43-A232-D87DD159CCE9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=c:\windows\system32\svchost.exe |
"{17ADB16F-340C-4467-984A-F6D810BA9600}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{2605546D-7365-4528-99E0-D77CAA7A16BE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{26E2D6C7-D2D6-4A43-B94B-1A42E5E28CD0}" = rport=1701 | protocol=17 | dir=out | app=system |
"{2E0788FE-8E51-4582-A7C7-A4867D24ED7C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{32E2BD40-1858-452E-A00E-73DC6CCA6D4F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{3377B433-E72F-4DD0-A24F-FCA6C1026938}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{33D4192D-1F30-4255-8645-D4E69A302113}" = lport=138 | protocol=17 | dir=in | app=system |
"{35C27668-71AD-4180-9E45-ECBDA1078DBA}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=c:\windows\system32\svchost.exe |
"{37D2057B-D09B-4091-BD30-A063862EE14E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3A43E04C-674A-4C02-8E6B-9E7DC88732B8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3B277244-7F3F-4FDC-931E-D2CABC526E4E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{40A55B8F-9944-48A4-B283-C32FCD231BB4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{410924E6-E9E0-4EDC-B099-42F08102F8E2}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{4419A434-D878-4EEA-A316-224933E2918B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{44DCC43D-C86E-42BF-8936-DF64B44CDACC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4A210FC0-F34C-47BC-AF71-32A1D1D6B1A6}" = lport=3390 | protocol=6 | dir=in | app=system |
"{52F5AD4E-9590-4FD1-A217-29AB0FCC9B44}" = lport=2869 | protocol=6 | dir=in | app=system |
"{53F18A46-D3BC-45EC-AAF7-683E173B62EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=c:\windows\system32\svchost.exe |
"{582E5073-C568-4146-8748-A37005837AB7}" = lport=1701 | protocol=17 | dir=in | app=system |
"{6397B589-3C08-4E34-BB15-B1A444A5FB5C}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=c:\windows\system32\vds.exe |
"{67134F02-F89C-447A-BF41-387BC148A8D0}" = rport=445 | protocol=6 | dir=out | app=system |
"{6E662FAD-94FE-46EE-A4C1-FB9C73C62E20}" = rport=137 | protocol=17 | dir=out | app=system |
"{7633AAAC-76F7-45FC-8CE4-292551832536}" = lport=139 | protocol=6 | dir=in | app=system |
"{7970EBEE-8B7E-4935-927C-2A161489B551}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{79F67761-B50E-479F-A28E-A5F9B74FE407}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7A995DBF-C477-49E7-A102-AC5A6289D7D3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{7D741A71-345D-418A-AB4F-C9F97BA685FE}" = lport=1723 | protocol=6 | dir=in | app=system |
"{7FFBC126-CBEC-496B-82D0-9C9D2F8A6059}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{80B9406D-5EA6-45D0-94C5-1A4512E058B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{8358A2FC-D9C4-45A1-A3D5-51733CAEFA5D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{89A4F5DB-986A-497D-91C7-3F20C9A1C978}" = lport=rpc | protocol=6 | dir=in | svc=* | app=c:\windows\system32\svchost.exe |
"{97732E4F-C3B1-44BA-AC3A-867D60BDB506}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{99CC1DB3-0542-4A60-ACB2-C73DC4D80207}" = lport=80 | protocol=6 | dir=in | app=system |
"{A03959F8-60C7-43DC-8A93-6195F539A282}" = lport=445 | protocol=6 | dir=in | app=system |
"{A1F6E7F4-3E4C-408F-94E5-C2F86937F1B3}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\services.exe |
"{A84FEB77-E8A8-463E-ADB1-2795FA8AE0AC}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\vdsldr.exe |
"{B08FB7BF-ED02-4630-80A6-BF9B12C70AF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{B381F01C-E825-4CB6-B5E9-C1A81EC8B1D9}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{B72D868D-805B-47FB-8EC9-67CF8934CA39}" = lport=445 | protocol=6 | dir=in | app=system |
"{BC0A16CE-063E-4CEF-BDB1-2CF9A34AA2D9}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{BCA9FC07-BFF2-4F36-994E-DEC3657EB375}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{BDBB6244-D525-411F-89EB-594AA937FA04}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BE1DAF2E-EF8F-47B6-806F-C95C4999CAF3}" = rport=139 | protocol=6 | dir=out | app=system |
"{BEB267B1-DB94-42F9-8430-8FCFCA9A3DFB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C48C872D-9786-4B09-B220-F35AC698C127}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{CF396B73-CD6B-4507-9DA1-9BC2A7B00544}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{CFA6EB15-6992-472A-9504-559F9C00B3AF}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D040F493-AC87-4D61-A966-D0083AC46EF4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D456FC06-189D-416D-98E5-E73CE0419998}" = rport=138 | protocol=17 | dir=out | app=system |
"{D72F5B4C-4790-4983-8037-B6D5021B76DC}" = rport=1723 | protocol=6 | dir=out | app=system |
"{DD687CDB-982A-4CF8-B84F-8B7F4A96FAAB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{E63617F0-CD31-43F5-9F98-70BD5EFF722B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E6EB27F4-52FD-47B9-BC98-7B7FC710900F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EDB6C49E-8116-4224-B5CA-38C2B39FD9D3}" = rport=10244 | protocol=6 | dir=out | app=system |
"{EDDE7A8E-574E-409F-81E3-77577B78146D}" = lport=445 | protocol=6 | dir=in | app=system |
"{EE662450-7D9C-4AE5-9697-1C127545A68F}" = lport=137 | protocol=17 | dir=in | app=system |
"{F32CE291-E5E4-4AEB-93A9-056954EC8E99}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FD1E9878-E50A-47AB-A346-FA1C841785FB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{FE23A560-A095-4776-89DE-100727EEA2C9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FFB32D8B-2B94-447D-ABA4-01598CE2A848}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02421B8F-3715-46A8-9CE5-309CF052C1C5}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe |
"{03F4C8A6-4D0D-40A0-97EC-A045884F081F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{04D7665C-E0CD-41F2-8A5A-A8E8DBCEE85C}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{0876A0CA-C298-4CBE-86F9-413354505319}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0AD63CA4-E4FB-4FCB-9EE2-9E7B8D955EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{0EB2F9B8-7993-44DB-9BD5-03FCC09E76B5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0FCF4AA9-335E-417E-9C30-5E85B199AE46}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe |
"{10DAA24C-E4E7-4865-BF6F-31B8749678DF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19BFF45B-0058-4E0A-9136-8956ED4B222C}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{1CCF2BF2-AD3F-4DD4-B10B-736F94EA2FFF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1FFAE578-2D40-41F3-B421-91DDE5B811D4}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe |
"{2431EB7D-5135-4EC3-A2AF-51745CA9F79F}" = protocol=6 | dir=out | app=system |
"{291EAC0F-C1D9-4B3C-8659-C7F166E35384}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{2E119624-64FA-4172-8A24-370071E04203}" = protocol=6 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{368A9CCB-829B-4994-B013-B0408EB75201}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{3EA714AE-4FD4-407F-87E2-4105C03C0AD2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3FDBF395-931C-4297-BAC0-A05F3177FE14}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{44313369-55A3-4DAD-880E-2106C1031AB1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4B1F614E-9ACC-4092-B381-BA53D5624224}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{4E2653DB-DF67-47AF-946A-0648A553B8A2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{565654F8-F40D-4390-93C6-8058E1ACD914}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{57511EF4-299E-468D-A584-C1155E0665C8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{59D7ECC3-1D25-4D86-A5C5-E7571576410B}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{6004ABCC-B45A-4EED-8304-084683592CBE}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{6BC507F4-56B1-4FF6-ABC5-0A936A421C34}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe |
"{7083925B-D779-4C38-9054-9C0BC1C6400A}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe |
"{798FD248-8082-4D3E-A66C-5A22B08C0DCE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A8005A7-F5FB-42A0-A491-BD8D6E68E2AD}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{8BA19971-F9C1-40F5-9B2A-440B2E541F5B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{8D514C19-9B7F-4B3D-9039-760270250D49}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{8F8505F9-11BF-46BD-8C28-8544814B3DCD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{956A3EA0-324A-4246-B023-B47C7FDFF05E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{A9F71030-48C7-4DCA-8478-5B3C23C84AE6}" = protocol=17 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{AB16E42D-6757-4C66-979C-AF36869A2377}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AB5E5B16-25D8-4D8C-8847-D738D679508F}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{AD34CF88-8627-4A37-9D6B-17F530CD6619}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{AE4AF426-0752-41FE-A533-F7886DE302D8}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{B4D4ED69-7645-44FA-A820-00A694A9ECE8}" = protocol=6 | dir=out | app=c:\windows\system32\wudfhost.exe |
"{B94896C6-4C97-4F9F-8ECB-50D592A79E50}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe |
"{C50E9F0E-8075-4E2F-9731-A37615F51F14}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{CB3FEEDC-6FCB-458E-94A8-43EB857FB49B}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{D223A731-D16C-4A26-B477-A739E7BAB469}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe |
"{D928E9C9-8E9B-4B11-97B0-B520BCEA5E36}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D9A23AEE-D76C-46AA-BF61-195698CF3D1A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F245E915-8B6F-41DD-A734-819FCF9EC8D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F3F0B4A3-9061-42D4-988A-98A714BD44FD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F543F7C4-226B-4E07-8063-3608E9CAE38C}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{FA8B8A41-BBF0-49C2-BA35-C03756F1C784}" = protocol=6 | dir=out | app=system |
"TCP Query User{041189D2-7F08-448F-9ECC-A9C314D8290B}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{09FB8043-6709-45E9-8CB0-E651454D6AB9}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=6 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"TCP Query User{0ED9968F-DA50-4718-A5EA-A7EB7F60EBF4}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=6 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"TCP Query User{19EA354D-FE46-47E7-B8DE-E8DF5FFDDE82}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{2386EDF1-952A-477F-ACA8-EEAA684CC280}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{40BD3FE1-C6D9-44CB-A2E0-04BAFB3F8406}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{7A57EE9F-F015-4657-8319-753C50106FAD}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=6 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"TCP Query User{8040B012-EEDD-4480-B4E6-FCDA51219567}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{96EB0237-94A3-4B02-9043-5CFD71E2CD34}C:\gamez\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\gamez\dead space\dead space.exe |
"TCP Query User{B19F811F-4CFE-4238-BA67-37DF2C54B6E2}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{DF79C5A1-28BF-4E63-B9DE-623E2EA48864}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{022C63C7-57E0-47E5-B78A-2AFD247C9618}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=17 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"UDP Query User{3EACC96D-76FD-4BA9-92A2-3539F208A9DA}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{3FE2B31D-F18D-4268-9B89-1461988042F7}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=17 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"UDP Query User{72C551FD-5338-4E4D-BF3B-D67955F91C30}C:\gamez\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\gamez\dead space\dead space.exe |
"UDP Query User{8A09F1EC-1B4D-4026-B28C-92F7AE31EEDA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{8B422226-E0DE-4AE3-A061-3DF7BF62C7FE}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{A2623241-31EB-4F6F-A5A4-20A3311005A4}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{A70E5774-C47D-46D6-A6F4-FEC33E09B696}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{AA013AC1-7C8C-4041-9543-57F88DF277FE}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{BC173BC8-8D0B-43E6-BE98-8C27BD56599B}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=17 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"UDP Query User{F657B49C-EC94-4149-BDF6-24857B2C136A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000000-5736-4205-1000-F7ED0776FB27}" = Steganos Internet Anonym 2006 (8.0)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0C0AE701-05A6-4CFD-971D-CF5EF446108B}" = ESET NOD32 Antivirus
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{28CBE511-A28E-4010-BE83-1623FC3F1D3A}" = RUNAWAY - A road adventure
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{302E9B7B-2B6A-4C29-9A02-9F2110649779}" = Nuvoton EC Generic HID Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer PowerSmart Manager
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Fingerprint Solution
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion
"{5C318BD3-BA72-43E4-9D16-A18210B4A5A5}" = Media Go
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{62F7DA7E-CCCB-439C-A760-00C3926E761F}" = Microsoft Works
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{71C2828F-2678-4675-BDEC-895424861262}_is1" = C:\Program Files\Acer GameZone\GameConsole
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110184263}" = Puzzle Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11037623}" = Tradewinds 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111205743}" = Tri-Peaks Solitaire To Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111232687}" = Ocean Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11170417}" = Luxor 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11219217}" = Cradle of Rome
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112270203}" = Dream Day Wedding
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113009953}" = Turbo Pizza
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113056167}" = Dream Day Honeymoon
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113297350}" = Cake Mania 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113494430}" = Wedding Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}" = Airport Mania First Flight
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115443300}" = Cooking Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11551977}" = Parking Dash
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{93FD6568-A974-4292-B02E-AA9D90AEC13B}" = RUNAWAY 2 - The dream of the turtle
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9AF0B106-56F1-461B-A270-95BC1682E282}" = Broadcom Gigabit NetLink Controller
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}" = Magic Online
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}" = Acer Product Registration
"{DA410706-345C-4288-8853-A2460BDD0FA0}" = Logitech G35
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E117043B-5227-47E9-AC4C-BFB792D5820F}" = Yu-Gi-Oh! ONLINE 3
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin (Softonic Edition) 2.2
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.068
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"AC3Filter" = AC3Filter (remove only)
"Acer Screensaver" = Acer ScreenSaver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnyDVD" = AnyDVD
"art_of_murder_de_is1" = Die Kunst des Mordens - Geheimakte FBI
"AS-0000000709052007C8E4FAAD" = Mein Heim 3D
"Cubase SX" = Steinberg Cubase SX
"Curtains" = Curtains
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"DVDFab 8_is1" = DVDFab 8.0.6.8 (05/01/2011)
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows-Treiberpaket - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0)
"facemoods" = facemoods
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"ImgBurn" = ImgBurn
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Acer Bio Protection
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"JDownloader" = JDownloader
"JLC's Internet TV" = JLC's Internet TV
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"MediaMonkey_is1" = MediaMonkey 3.1
"MediaPortal" = MediaPortal
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.5.16)" = Mozilla Firefox (3.5.16)
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 12.0" = RealPlayer
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"SAMSUNG Mobile Modem V2" = SAMSUNG Mobile Modem V2 Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"Softonic_Deutsch Toolbar" = Softonic_Deutsch Toolbar
"SopCast" = SopCast 3.2.4
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities" = TuneUp Utilities
"Update Engine" = Sony Ericsson Update Engine
"UseNeXT_is1" = UseNeXT
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VideoLAN VLC media player 0.8.6d
"WBFS Manager 3.0" = WBFS Manager 3.0
"WeFi" = WeFi 3.6.4.4
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Erkennungs-Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 22:53:04 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:19:13 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 14:19:25 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:20:31 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 19.01.2011 19:39:37 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 19:39:39 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 19:39:51 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 22.01.2011 08:57:11 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

[ System Events ]
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:57:37 | Computer Name = Drake-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 15.02.2011 um 01:37:29 unerwartet heruntergefahren.

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 04:00:21 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =


< End of report >

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [MediaMonkey.1Play] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" "%1" (Ventis Media Inc.)
Directory [MediaMonkey.2PlayNext] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /NEXT "%1" (Ventis Media Inc.)
Directory [MediaMonkey.3Enqueue] -- "C:\Program Files\MediaMonkey\MediaMonkey.exe" /ADD "%1" (Ventis Media Inc.)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00818B43-F823-459B-846A-818BF9384949}" = lport=445 | protocol=6 | dir=in | app=system |
"{0E8FF364-92BC-4F77-B0DA-18C3589C56DF}" = lport=10244 | protocol=6 | dir=in | app=system |
"{1039D0C6-53F7-4E43-AE8F-4567910E7B9D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{147CD653-CB33-4F43-A232-D87DD159CCE9}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=c:\windows\system32\svchost.exe |
"{17ADB16F-340C-4467-984A-F6D810BA9600}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{2605546D-7365-4528-99E0-D77CAA7A16BE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{26E2D6C7-D2D6-4A43-B94B-1A42E5E28CD0}" = rport=1701 | protocol=17 | dir=out | app=system |
"{2E0788FE-8E51-4582-A7C7-A4867D24ED7C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{32E2BD40-1858-452E-A00E-73DC6CCA6D4F}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{3377B433-E72F-4DD0-A24F-FCA6C1026938}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{33D4192D-1F30-4255-8645-D4E69A302113}" = lport=138 | protocol=17 | dir=in | app=system |
"{35C27668-71AD-4180-9E45-ECBDA1078DBA}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=c:\windows\system32\svchost.exe |
"{37D2057B-D09B-4091-BD30-A063862EE14E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3A43E04C-674A-4C02-8E6B-9E7DC88732B8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3B277244-7F3F-4FDC-931E-D2CABC526E4E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{40A55B8F-9944-48A4-B283-C32FCD231BB4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{410924E6-E9E0-4EDC-B099-42F08102F8E2}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{4419A434-D878-4EEA-A316-224933E2918B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{44DCC43D-C86E-42BF-8936-DF64B44CDACC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4A210FC0-F34C-47BC-AF71-32A1D1D6B1A6}" = lport=3390 | protocol=6 | dir=in | app=system |
"{52F5AD4E-9590-4FD1-A217-29AB0FCC9B44}" = lport=2869 | protocol=6 | dir=in | app=system |
"{53F18A46-D3BC-45EC-AAF7-683E173B62EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=c:\windows\system32\svchost.exe |
"{582E5073-C568-4146-8748-A37005837AB7}" = lport=1701 | protocol=17 | dir=in | app=system |
"{6397B589-3C08-4E34-BB15-B1A444A5FB5C}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=c:\windows\system32\vds.exe |
"{67134F02-F89C-447A-BF41-387BC148A8D0}" = rport=445 | protocol=6 | dir=out | app=system |
"{6E662FAD-94FE-46EE-A4C1-FB9C73C62E20}" = rport=137 | protocol=17 | dir=out | app=system |
"{7633AAAC-76F7-45FC-8CE4-292551832536}" = lport=139 | protocol=6 | dir=in | app=system |
"{7970EBEE-8B7E-4935-927C-2A161489B551}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{79F67761-B50E-479F-A28E-A5F9B74FE407}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7A995DBF-C477-49E7-A102-AC5A6289D7D3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{7D741A71-345D-418A-AB4F-C9F97BA685FE}" = lport=1723 | protocol=6 | dir=in | app=system |
"{7FFBC126-CBEC-496B-82D0-9C9D2F8A6059}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{80B9406D-5EA6-45D0-94C5-1A4512E058B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{8358A2FC-D9C4-45A1-A3D5-51733CAEFA5D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{89A4F5DB-986A-497D-91C7-3F20C9A1C978}" = lport=rpc | protocol=6 | dir=in | svc=* | app=c:\windows\system32\svchost.exe |
"{97732E4F-C3B1-44BA-AC3A-867D60BDB506}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{99CC1DB3-0542-4A60-ACB2-C73DC4D80207}" = lport=80 | protocol=6 | dir=in | app=system |
"{A03959F8-60C7-43DC-8A93-6195F539A282}" = lport=445 | protocol=6 | dir=in | app=system |
"{A1F6E7F4-3E4C-408F-94E5-C2F86937F1B3}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\services.exe |
"{A84FEB77-E8A8-463E-ADB1-2795FA8AE0AC}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\vdsldr.exe |
"{B08FB7BF-ED02-4630-80A6-BF9B12C70AF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{B381F01C-E825-4CB6-B5E9-C1A81EC8B1D9}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe |
"{B72D868D-805B-47FB-8EC9-67CF8934CA39}" = lport=445 | protocol=6 | dir=in | app=system |
"{BC0A16CE-063E-4CEF-BDB1-2CF9A34AA2D9}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe |
"{BCA9FC07-BFF2-4F36-994E-DEC3657EB375}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{BDBB6244-D525-411F-89EB-594AA937FA04}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BE1DAF2E-EF8F-47B6-806F-C95C4999CAF3}" = rport=139 | protocol=6 | dir=out | app=system |
"{BEB267B1-DB94-42F9-8430-8FCFCA9A3DFB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C48C872D-9786-4B09-B220-F35AC698C127}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe |
"{CF396B73-CD6B-4507-9DA1-9BC2A7B00544}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{CFA6EB15-6992-472A-9504-559F9C00B3AF}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D040F493-AC87-4D61-A966-D0083AC46EF4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D456FC06-189D-416D-98E5-E73CE0419998}" = rport=138 | protocol=17 | dir=out | app=system |
"{D72F5B4C-4790-4983-8037-B6D5021B76DC}" = rport=1723 | protocol=6 | dir=out | app=system |
"{DD687CDB-982A-4CF8-B84F-8B7F4A96FAAB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{E63617F0-CD31-43F5-9F98-70BD5EFF722B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E6EB27F4-52FD-47B9-BC98-7B7FC710900F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EDB6C49E-8116-4224-B5CA-38C2B39FD9D3}" = rport=10244 | protocol=6 | dir=out | app=system |
"{EDDE7A8E-574E-409F-81E3-77577B78146D}" = lport=445 | protocol=6 | dir=in | app=system |
"{EE662450-7D9C-4AE5-9697-1C127545A68F}" = lport=137 | protocol=17 | dir=in | app=system |
"{F32CE291-E5E4-4AEB-93A9-056954EC8E99}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FD1E9878-E50A-47AB-A346-FA1C841785FB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{FE23A560-A095-4776-89DE-100727EEA2C9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |
"{FFB32D8B-2B94-447D-ABA4-01598CE2A848}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02421B8F-3715-46A8-9CE5-309CF052C1C5}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe |
"{03F4C8A6-4D0D-40A0-97EC-A045884F081F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{04D7665C-E0CD-41F2-8A5A-A8E8DBCEE85C}" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{0876A0CA-C298-4CBE-86F9-413354505319}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0AD63CA4-E4FB-4FCB-9EE2-9E7B8D955EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{0EB2F9B8-7993-44DB-9BD5-03FCC09E76B5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0FCF4AA9-335E-417E-9C30-5E85B199AE46}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\playmovie.exe |
"{10DAA24C-E4E7-4865-BF6F-31B8749678DF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19BFF45B-0058-4E0A-9136-8956ED4B222C}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{1CCF2BF2-AD3F-4DD4-B10B-736F94EA2FFF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1FFAE578-2D40-41F3-B421-91DDE5B811D4}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe |
"{2431EB7D-5135-4EC3-A2AF-51745CA9F79F}" = protocol=6 | dir=out | app=system |
"{291EAC0F-C1D9-4B3C-8659-C7F166E35384}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{2E119624-64FA-4172-8A24-370071E04203}" = protocol=6 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{368A9CCB-829B-4994-B013-B0408EB75201}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{3EA714AE-4FD4-407F-87E2-4105C03C0AD2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3FDBF395-931C-4297-BAC0-A05F3177FE14}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{44313369-55A3-4DAD-880E-2106C1031AB1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4B1F614E-9ACC-4092-B381-BA53D5624224}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe |
"{4E2653DB-DF67-47AF-946A-0648A553B8A2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{565654F8-F40D-4390-93C6-8058E1ACD914}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{57511EF4-299E-468D-A584-C1155E0665C8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{59D7ECC3-1D25-4D86-A5C5-E7571576410B}" = protocol=6 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{6004ABCC-B45A-4EED-8304-084683592CBE}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{6BC507F4-56B1-4FF6-ABC5-0A936A421C34}" = dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe |
"{7083925B-D779-4C38-9054-9C0BC1C6400A}" = dir=in | app=c:\program files\acer arcade deluxe\acer arcade deluxe\acer arcade deluxe.exe |
"{798FD248-8082-4D3E-A66C-5A22B08C0DCE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A8005A7-F5FB-42A0-A491-BD8D6E68E2AD}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{8BA19971-F9C1-40F5-9B2A-440B2E541F5B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{8D514C19-9B7F-4B3D-9039-760270250D49}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe |
"{8F8505F9-11BF-46BD-8C28-8544814B3DCD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{956A3EA0-324A-4246-B023-B47C7FDFF05E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{A9F71030-48C7-4DCA-8478-5B3C23C84AE6}" = protocol=17 | dir=in | app=c:\program files\konami\yu-gi-oh! online 3\yo3.exe |
"{AB16E42D-6757-4C66-979C-AF36869A2377}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AB5E5B16-25D8-4D8C-8847-D738D679508F}" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{AD34CF88-8627-4A37-9D6B-17F530CD6619}" = protocol=6 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{AE4AF426-0752-41FE-A533-F7886DE302D8}" = protocol=17 | dir=in | app=c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{B4D4ED69-7645-44FA-A820-00A694A9ECE8}" = protocol=6 | dir=out | app=c:\windows\system32\wudfhost.exe |
"{B94896C6-4C97-4F9F-8ECB-50D592A79E50}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe |
"{C50E9F0E-8075-4E2F-9731-A37615F51F14}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{CB3FEEDC-6FCB-458E-94A8-43EB857FB49B}" = protocol=17 | dir=in | app=c:\program files\sony ericsson\update engine\sony ericsson update engine.exe |
"{D223A731-D16C-4A26-B477-A739E7BAB469}" = dir=in | app=c:\program files\acer arcade deluxe\playmovie\pmvservice.exe |
"{D928E9C9-8E9B-4B11-97B0-B520BCEA5E36}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D9A23AEE-D76C-46AA-BF61-195698CF3D1A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F245E915-8B6F-41DD-A734-819FCF9EC8D0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F3F0B4A3-9061-42D4-988A-98A714BD44FD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F543F7C4-226B-4E07-8063-3608E9CAE38C}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{FA8B8A41-BBF0-49C2-BA35-C03756F1C784}" = protocol=6 | dir=out | app=system |
"TCP Query User{041189D2-7F08-448F-9ECC-A9C314D8290B}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{09FB8043-6709-45E9-8CB0-E651454D6AB9}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=6 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"TCP Query User{0ED9968F-DA50-4718-A5EA-A7EB7F60EBF4}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=6 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"TCP Query User{19EA354D-FE46-47E7-B8DE-E8DF5FFDDE82}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{2386EDF1-952A-477F-ACA8-EEAA684CC280}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{40BD3FE1-C6D9-44CB-A2E0-04BAFB3F8406}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{7A57EE9F-F015-4657-8319-753C50106FAD}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=6 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"TCP Query User{8040B012-EEDD-4480-B4E6-FCDA51219567}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{96EB0237-94A3-4B02-9043-5CFD71E2CD34}C:\gamez\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\gamez\dead space\dead space.exe |
"TCP Query User{B19F811F-4CFE-4238-BA67-37DF2C54B6E2}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{DF79C5A1-28BF-4E63-B9DE-623E2EA48864}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{022C63C7-57E0-47E5-B78A-2AFD247C9618}C:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe" = protocol=17 | dir=in | app=c:\program files\arcsoft\totalmedia theatre 5\totalmedia server\tm server.exe |
"UDP Query User{3EACC96D-76FD-4BA9-92A2-3539F208A9DA}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{3FE2B31D-F18D-4268-9B89-1461988042F7}C:\users\drake\downloads\mtgoiii_helper.exe" = protocol=17 | dir=in | app=c:\users\drake\downloads\mtgoiii_helper.exe |
"UDP Query User{72C551FD-5338-4E4D-BF3B-D67955F91C30}C:\gamez\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\gamez\dead space\dead space.exe |
"UDP Query User{8A09F1EC-1B4D-4026-B28C-92F7AE31EEDA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{8B422226-E0DE-4AE3-A061-3DF7BF62C7FE}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{A2623241-31EB-4F6F-A5A4-20A3311005A4}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{A70E5774-C47D-46D6-A6F4-FEC33E09B696}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{AA013AC1-7C8C-4041-9543-57F88DF277FE}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{BC173BC8-8D0B-43E6-BE98-8C27BD56599B}C:\program files\popcap games\zuma deluxe\zuma.exe" = protocol=17 | dir=in | app=c:\program files\popcap games\zuma deluxe\zuma.exe |
"UDP Query User{F657B49C-EC94-4149-BDF6-24857B2C136A}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000000-5736-4205-1000-F7ED0776FB27}" = Steganos Internet Anonym 2006 (8.0)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0C0AE701-05A6-4CFD-971D-CF5EF446108B}" = ESET NOD32 Antivirus
"{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4500_series" = Canon iP4500 series
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime
"{28CBE511-A28E-4010-BE83-1623FC3F1D3A}" = RUNAWAY - A road adventure
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{302E9B7B-2B6A-4C29-9A02-9F2110649779}" = Nuvoton EC Generic HID Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer PowerSmart Manager
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{542068F1-9AAE-4E1B-8ACA-094FE03728BE}" = Carambis Driver Updater
"{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Fingerprint Solution
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion
"{5C318BD3-BA72-43E4-9D16-A18210B4A5A5}" = Media Go
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{62F7DA7E-CCCB-439C-A760-00C3926E761F}" = Microsoft Works
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{71C2828F-2678-4675-BDEC-895424861262}_is1" = C:\Program Files\Acer GameZone\GameConsole
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110184263}" = Puzzle Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11037623}" = Tradewinds 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111205743}" = Tri-Peaks Solitaire To Go
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111232687}" = Ocean Express
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11170417}" = Luxor 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11219217}" = Cradle of Rome
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112270203}" = Dream Day Wedding
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113009953}" = Turbo Pizza
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113056167}" = Dream Day Honeymoon
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113297350}" = Cake Mania 2
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113494430}" = Wedding Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}" = Airport Mania First Flight
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115443300}" = Cooking Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11551977}" = Parking Dash
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_HOMESTUDENTR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_HOMESTUDENTR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_HOMESTUDENTR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{93FD6568-A974-4292-B02E-AA9D90AEC13B}" = RUNAWAY 2 - The dream of the turtle
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"{9AF0B106-56F1-461B-A270-95BC1682E282}" = Broadcom Gigabit NetLink Controller
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}" = Acer Crystal Eye Webcam
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}" = Magic Online
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver
"{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}" = Acer Product Registration
"{DA410706-345C-4288-8853-A2460BDD0FA0}" = Logitech G35
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E117043B-5227-47E9-AC4C-BFB792D5820F}" = Yu-Gi-Oh! ONLINE 3
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E4A71A41-BCC8-480a-9E69-0DA29CBA7ECA}" = kikin plugin (Softonic Edition) 2.2
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 2.01.068
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"AC3Filter" = AC3Filter (remove only)
"Acer Screensaver" = Acer ScreenSaver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AnyDVD" = AnyDVD
"art_of_murder_de_is1" = Die Kunst des Mordens - Geheimakte FBI
"AS-0000000709052007C8E4FAAD" = Mein Heim 3D
"Cubase SX" = Steinberg Cubase SX
"Curtains" = Curtains
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"DVDFab 8_is1" = DVDFab 8.0.6.8 (05/01/2011)
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows-Treiberpaket - MobileTop (sshpmdm) Modem (01/26/2008 2.6.0.0)
"facemoods" = facemoods
"Google Chrome" = Google Chrome
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ICQToolbar" = ICQ Toolbar
"ImgBurn" = ImgBurn
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5
"InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe
"InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}" = Acer Bio Protection
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}" = ArcSoft TotalMedia Theatre 5
"InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"JDownloader" = JDownloader
"JLC's Internet TV" = JLC's Internet TV
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"ManyCam" = ManyCam 2.4 (remove only)
"MediaMonkey_is1" = MediaMonkey 3.1
"MediaPortal" = MediaPortal
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.5.16)" = Mozilla Firefox (3.5.16)
"NSS" = Norton Security Scan
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 12.0" = RealPlayer
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"SAMSUNG Mobile Modem V2" = SAMSUNG Mobile Modem V2 Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"Softonic_Deutsch Toolbar" = Softonic_Deutsch Toolbar
"SopCast" = SopCast 3.2.4
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The KMPlayer" = The KMPlayer (remove only)
"TuneUp Utilities" = TuneUp Utilities
"Update Engine" = Sony Ericsson Update Engine
"UseNeXT_is1" = UseNeXT
"Veetle TV" = Veetle TV 0.9.18
"VLC media player" = VideoLAN VLC media player 0.8.6d
"WBFS Manager 3.0" = WBFS Manager 3.0
"WeFi" = WeFi 3.6.4.4
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"Zuma Deluxe 1.0" = Zuma Deluxe 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Erkennungs-Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 17:51:30 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\WksWP.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 18.01.2011 22:53:04 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:19:13 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 14:19:25 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 14:20:31 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 19.01.2011 19:39:37 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksss.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

Error - 19.01.2011 19:39:39 | Computer Name = Drake-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.01.2011 19:39:51 | Computer Name = Drake-PC | Source = WinDefendRtp | ID = 3003
Description = Vom %%827-Echtzeitschutz-Prüfpunkt wurde ein Fehler festgestellt.
Er konnte daraufhin nicht gestartet werden. Benutzer: Drake-PC\Drake Prüfpunkt-ID:
57 Fehlercode: 0x80070005 Fehlerbeschreibung: Zugriff verweigert

Error - 22.01.2011 08:57:11 | Computer Name = Drake-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\Installer\{62F7DA7E-CCCB-439C-A760-00C3926E761F}\wksdb.exe".
Die
abhängige Assemblierung "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".

[ System Events ]
Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 14.02.2011 16:35:03 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:57:37 | Computer Name = Drake-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 15.02.2011 um 01:37:29 unerwartet heruntergefahren.

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 03:58:18 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 04:00:21 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 05:03:01 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 15.02.2011 10:48:33 | Computer Name = Drake-PC | Source = Service Control Manager | ID = 7000
Description =


Hoffe das das so richtig war, weil das doch schon ganz viele Sachen sind und somit halt auch endlos lange Posts.

Dazu auch sorry für die Doppelposts bzw dreifach posts. Ging leider net anders weil wegen zu lang ...

Soweit schon einmal vielen Dank und liebe Grüße von mir.

Denyo!

< End of report >

Alt 14.02.2011, 16:30   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



Zitat:
c:\Users\Drake\downloads\dead.space.generic_keygen-fff\fff-ea184.exe (Trojan.Orsam) -> Quarantined and deleted successfully.
c:\Users\Drake\downloads\the.sims.2.mansion.and.garden.stuff.generic_keygen-fff\fff-ea189.exe (Trojan.Orsam) -> Quarantined and deleted successfully.
Keygens/Cracks sind zu 99,9% gefährliche Schädlinge, mit denen man nicht spaßen sollte. Ausserdem sind diese illegal und wir unterstützen die Verwendung von geklauter Software nicht. Somit beschränkt sich der Support auf Anleitung zur kompletten Neuinstallation!!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.02.2011, 16:59   #10
-D3nYo-
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



Ernsthaft jetzt? kein Support?

Wenn ich meine Posts lösche, die Keygens lösche und neu poste? Wie sieht das dann aus?

Weil wär echt schade wenn das jetzt so wär.

War eigentlich sehr zufrieden immer mit dem Board, zumindestens bei dem, was ich immer so ergoogelt habe.

edit***

Die KEygens sind übrigens bereits gelöscht .... welches man auch im letzten post sieht.
Quarantined and deleted successfully!!

Von daher sollte das eigentlich alles klar sein

Geändert von -D3nYo- (14.02.2011 um 17:04 Uhr) Grund: bereits gelöschte keygens

Alt 14.02.2011, 18:48   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



http://www.trojaner-board.de/95394-c...-software.html

Jetzt ist es zu spät.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.02.2011, 20:19   #12
-D3nYo-
 
Internet ist verdammt langsam - Standard

Internet ist verdammt langsam



hmm ... sehr schade. ok.
Habe sie ja entfernt, weil ich sie nicht brauche ...

aber regeln sind nunmal regeln und sollten nicht geändert oder gebrochen werden

Aber dann sagt mir wenigstens wo ich meinen Account löschen kann. Muss ja dann nicht unnötig hier nen Account haben

Hab schon gesucht aber nix gefunden.

LG
Und trotzdem Danke für die Hilfe!

Antwort

Themen zu Internet ist verdammt langsam
5 minuten, adobe, antivirus, auswerten, bho, cubase, defender, eset nod32, explorer, firefox, google, hijack, hijackthis, hkus\s-1-5-18, internet, internet explorer, internet langsam, kein download, kein upload, langsam, launch, mozilla, plug-in, problemehilfe, programdata, realtek, rundll, scan, senden, server, softonic, softonic deutsch toolbar, software, speedtest, stimme, system, temp, vista, wenig ahnung, windows



Ähnliche Themen: Internet ist verdammt langsam


  1. Laptop geht von ein tag auf den anderen verdammt langsam
    Plagegeister aller Art und deren Bekämpfung - 26.03.2015 (12)
  2. PC langsam. Internet langsam. Beim Start öffnen sich unseriöse Sachen.
    Plagegeister aller Art und deren Bekämpfung - 26.12.2014 (7)
  3. vista > nach Virenelimination verdammt träge
    Log-Analyse und Auswertung - 20.07.2013 (21)
  4. Rechner langsam, Internet langsam, neue Programme , mit Log Files
    Log-Analyse und Auswertung - 08.05.2013 (4)
  5. Rechner (Internet) extrem langsam langsam und hackelig!Leerlaufprozess Task Manager ständig zw. 70-98 %
    Plagegeister aller Art und deren Bekämpfung - 11.04.2013 (17)
  6. Microsoft und AntiViren Seiten werden blockiert & Laptop verdammt langsam
    Plagegeister aller Art und deren Bekämpfung - 27.10.2011 (2)
  7. verdammt viele 04 Einträge bei Hijackthis, Virus ?
    Log-Analyse und Auswertung - 25.10.2010 (3)
  8. PC Startet Verdammt Langsam
    Log-Analyse und Auswertung - 24.03.2010 (1)
  9. Internet langsam und zu reagiert das Internet und Outlook nicht mehr
    Log-Analyse und Auswertung - 27.08.2009 (37)
  10. internet seitenaufbau total langsam,internet aktivität zu hoch.
    Plagegeister aller Art und deren Bekämpfung - 03.12.2008 (0)
  11. Vista läuft verdammt langsam Media- und Audioplayer machen Probleme.
    Log-Analyse und Auswertung - 03.11.2008 (2)
  12. Spyware Virus! Verdammt
    Log-Analyse und Auswertung - 06.02.2008 (2)
  13. Laptop verdammt langsam.. eScan und HJT Log inside
    Plagegeister aller Art und deren Bekämpfung - 27.12.2007 (0)
  14. CD Laufwerk geht auf und zu| Rechner langsam | Internet langsam
    Log-Analyse und Auswertung - 01.06.2007 (1)
  15. pc so langsam . internet aufbau langsam pc ständig am arbeiten
    Log-Analyse und Auswertung - 04.05.2007 (9)
  16. Verdammt kompliziert
    Log-Analyse und Auswertung - 22.02.2006 (1)

Zum Thema Internet ist verdammt langsam - Guten Tag, dies ist mein erster Post und ich versuche mich an die Regeln zu halten. Falls etwas falsch meinerseits ist, bitte nicht überreagieren, sondern mir den Tip geben wie - Internet ist verdammt langsam...
Archiv
Du betrachtest: Internet ist verdammt langsam auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.