Interpol Virus - wie erstelle ich den Fixlist.txt ?

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by SYSTEM on MINWINPC on 14-10-2013 01:45:33
Running from G:\
Windows Vista (TM) Home Premium Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6139904 2008-05-22] (Realtek Semiconductor)
HKLM\...\Run: [ECDeject] - C:\PROGRA~1\ECDeject\CDeject.exe [371208 2008-07-01] (Dritek System Inc.)
HKLM\...\Run: [OSD] - C:\Program Files\OEM\OSD_1.16\osd.exe [376832 2008-06-18] (ODM)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2008-05-22] (Realtek Semiconductor Corp.)
HKLM\...\Run: [BigDog303] - C:\Windows\VM303_STI.EXE [61440 2006-01-24] (Vimicro)
HKLM\...\Run: [snpstd3] - C:\Windows\vsnpstd3.exe [835584 2007-05-10] ()
HKLM\...\Run: [tsnpstd3] - C:\Windows\tsnpstd3.exe [339968 2009-06-30] ()
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-28] ()
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [vProt] - C:\Program Files\AVG Secure Search\vprot.exe [2404376 2013-10-02] ()
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start hxxp://www.avg.com/ww.special-uninstallation-feedback-app?lic=OQBBAFYARgBSAEUARQAtAFYAMwBaAEMAOQAtAEUASwBBAFIAUwAtADYAUgBXAEcAQQAtAEEAQQBUAEMAVQAtAFYAUAA5AEYATgA"&"inst=NwA3AC0AMQAxADkAMgA2ADYANAA3ADYAMQAtAFQANQAtAFgATAArADEALQBCAEEAUgA5AEcAKwAxAC0ARgBMACsAOQAtAFgATwAzADYAKwAxAC0AWABPADkAKwAxAC0ARABEAFQAKwAwAC0AUwBUADkAMABGAEEAUABQACsAMQA"&"prod=90"&"ver=9.0.894
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\test\...\Run: [Google Update] - C:\Users\test\AppData\Local\Google\Update\GoogleUpdate.exe [ 2012-04-30] (Google Inc.)
HKU\test\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [ 2012-04-11] (DT Soft Ltd)
HKU\test\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [ 2012-11-09] (Skype Technologies S.A.)
HKU\test\...\Winlogon: [Shell] explorer.exe,C:\Users\test\AppData\Roaming\data.dat [ 2013-07-09] () <==== ATTENTION 

========================== Services (Whitelisted) =================

S2 Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [144712 2009-07-09] (Apple Inc.)
S2 OsdService; C:\Program Files\OEM\OSD_1.16\OsdService.exe [94208 2008-02-22] (TODO: <公司名稱>)
S2 TestHandler; C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [303104 2008-04-25] (Fujitsu Siemens Computers)
S2 vToolbarUpdater17.0.12; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.0.12\ToolbarUpdater.exe [1734680 2013-10-02] (AVG Secure Search)

==================== Drivers (Whitelisted) ====================

S4 ahcix86s; C:\Windows\system32\drivers\ahcix86s.sys [170000 2007-12-19] (AMD Technologies Inc.)
S1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-10-02] (AVG Technologies)
S0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-10] (Microsoft Corporation)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-06-28] (DT Soft Ltd)
S1 ECDejectPortIO; C:\PROGRA~1\ECDeject\ECDejectIO.sys [20104 2008-06-30] (Dritek System Inc.)
S3 GpdDevDPort; C:\Windows\system32\directport.sys [7168 2008-06-17] ()
S3 GpdKbFilter; C:\Windows\system32\kbfiltr.sys [8192 2008-03-31] (Windows (R) Codename Longhorn DDK provider)
S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [9344 2009-04-17] (GARMIN Corp.)
S4 JRAID; C:\Windows\system32\drivers\jraid.sys [76688 2008-04-03] (JMicron Technology Corp.)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 swivsp; C:\Windows\System32\DRIVERS\swivspnt.sys [20352 2007-03-26] (Sierra Wireless Inc.)
S3 swmsflt; C:\Windows\System32\drivers\swmsflt.sys [26760 2008-07-08] ()
S3 SWNC8U80; C:\Windows\System32\DRIVERS\swnc8u80.sys [167040 2008-05-20] (Sierra Wireless Inc.)
S3 SWUMX80; C:\Windows\System32\DRIVERS\swumx80.sys [143360 2008-05-20] (Sierra Wireless Inc.)
S3 ZSMC303; C:\Windows\System32\Drivers\usbVM303.sys [391300 2006-02-22] (Vimicro Corporation)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 LVRS; system32\DRIVERS\lvrs.sys [x]
S3 LVUSBSta; system32\drivers\LVUSBSta.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 pepifilter; system32\DRIVERS\lv302af.sys [x]
S3 PID_PEPI; system32\DRIVERS\LV302V32.SYS [x]
S3 SWUMX20; system32\DRIVERS\swumx20.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-14 01:22 - 2013-10-14 01:22 - 00000000 ____D C:\FRST
2013-10-13 02:36 - 2013-10-13 15:35 - 00000004 _____ C:\Users\test\AppData\Roaming\settings.ini
2013-10-09 17:03 - 2013-09-22 02:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-10-09 17:03 - 2013-09-22 02:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-10-09 17:03 - 2013-09-22 02:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-10-09 17:03 - 2013-09-22 02:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-10-09 17:03 - 2013-09-22 02:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-10-09 17:03 - 2013-09-22 02:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-10-09 17:03 - 2013-09-22 02:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-10-09 17:03 - 2013-09-22 02:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-10-09 17:03 - 2013-09-22 02:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-10-09 17:03 - 2013-09-22 02:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-10-09 17:03 - 2013-09-22 02:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-10-09 17:03 - 2013-09-22 02:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-10-09 17:03 - 2013-09-22 02:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-10-09 17:03 - 2013-09-22 02:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-10-09 17:03 - 2013-09-22 02:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-10-09 17:03 - 2013-09-22 01:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-10-09 03:21 - 2013-07-12 01:04 - 00134272 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbvideo.sys
2013-10-09 03:20 - 2013-08-26 18:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-10-09 03:20 - 2013-08-26 18:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-10-09 03:20 - 2013-08-26 18:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-10-09 03:20 - 2013-08-26 18:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-10-09 03:20 - 2013-08-26 17:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-10-09 03:20 - 2013-08-26 17:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-10-09 03:20 - 2013-08-26 17:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-10-09 03:20 - 2013-08-26 17:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-10-09 03:20 - 2013-08-26 17:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-10-09 03:20 - 2013-07-31 19:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2013-10-09 03:20 - 2013-07-31 18:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\System32\cdd.dll
2013-10-09 03:19 - 2013-08-28 23:36 - 02050048 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-10-09 03:19 - 2013-07-20 02:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 03:17 - 2013-06-28 18:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2013-10-09 03:17 - 2013-06-28 18:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2013-10-09 03:16 - 2013-06-28 18:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2013-10-09 03:16 - 2013-06-28 18:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2013-10-09 03:16 - 2011-05-05 05:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2013-10-09 03:16 - 2011-05-05 05:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2013-10-09 03:05 - 2013-06-26 15:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys
2013-10-09 03:05 - 2013-06-26 15:01 - 00047720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\WdfLdr.sys
2013-10-09 03:05 - 2013-06-26 15:01 - 00009728 _____ (Microsoft Corporation) C:\Windows\System32\Wdfres.dll
2013-10-09 03:00 - 2013-06-03 20:16 - 00034304 _____ (Adobe Systems) C:\Windows\System32\atmlib.dll
2013-10-09 03:00 - 2013-06-03 17:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2013-10-09 02:59 - 2013-07-03 20:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\System32\comctl32.dll
2013-10-09 02:59 - 2013-07-02 18:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\hidparse.sys
2013-09-15 02:24 - 2013-08-01 20:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2013-09-15 02:24 - 2013-07-15 20:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\System32\themeui.dll

==================== One Month Modified Files and Folders =======

2013-10-14 01:22 - 2013-10-14 01:22 - 00000000 ____D C:\FRST
2013-10-13 15:35 - 2013-10-13 02:36 - 00000004 _____ C:\Users\test\AppData\Roaming\settings.ini
2013-10-13 15:33 - 2006-11-02 04:47 - 00003216 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-13 15:33 - 2006-11-02 04:47 - 00003216 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-13 15:11 - 2009-01-24 07:03 - 00000012 _____ C:\Windows\bthservsdp.dat
2013-10-13 15:11 - 2009-01-24 05:35 - 01192006 _____ C:\Windows\WindowsUpdate.log
2013-10-13 15:09 - 2012-06-17 06:54 - 00000000 ____D C:\Users\test\AppData\Roaming\Skype
2013-10-13 15:09 - 2008-04-09 02:19 - 01418806 _____ C:\Windows\System32\PerfStringBackup.INI
2013-10-13 15:03 - 2011-01-24 08:48 - 00044183 _____ C:\Windows\setupact.log
2013-10-12 14:00 - 2012-05-02 07:54 - 00151040 _____ C:\Users\test\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-10-10 14:49 - 2012-05-03 10:23 - 00000000 ____D C:\Users\test\AppData\Roaming\dvdcss
2013-10-10 02:12 - 2006-11-02 03:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-10 01:35 - 2006-11-02 04:47 - 00380848 _____ C:\Windows\System32\FNTCACHE.DAT
2013-10-10 01:34 - 2009-02-26 05:00 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-09 17:15 - 2009-01-24 05:48 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-09 17:13 - 2013-08-12 17:00 - 00000000 ____D C:\Windows\System32\MRT
2013-10-09 17:11 - 2006-11-02 02:24 - 78106760 _____ (Microsoft Corporation) C:\Windows\System32\mrt.exe
2013-10-08 10:26 - 2012-06-03 05:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-10-08 10:26 - 2011-08-15 12:43 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-10-06 06:53 - 2012-04-30 02:10 - 00002043 _____ C:\Users\test\Desktop\Google Chrome.lnk
2013-10-02 06:05 - 2013-03-12 02:08 - 00037664 _____ (AVG Technologies) C:\Windows\System32\Drivers\avgtpx86.sys
2013-10-02 06:05 - 2013-03-12 02:08 - 00000000 ____D C:\Program Files\AVG Secure Search
2013-10-01 05:03 - 2009-10-31 04:58 - 00113102 _____ C:\Windows\PFRO.log
2013-09-30 13:24 - 2012-05-02 07:58 - 00000000 ____D C:\Users\test\AppData\Roaming\vlc
2013-09-22 02:29 - 2013-10-09 17:03 - 12336128 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-09-22 02:22 - 2013-10-09 17:03 - 09739264 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-09-22 02:22 - 2013-10-09 17:03 - 01800704 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-09-22 02:14 - 2013-10-09 17:03 - 01427968 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-09-22 02:13 - 2013-10-09 17:03 - 01129472 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-09-22 02:13 - 2013-10-09 17:03 - 01104896 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-09-22 02:12 - 2013-10-09 17:03 - 00231936 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-09-22 02:09 - 2013-10-09 17:03 - 00065024 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-09-22 02:08 - 2013-10-09 17:03 - 00142848 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-09-22 02:07 - 2013-10-09 17:03 - 00717824 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-09-22 02:06 - 2013-10-09 17:03 - 00420864 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-09-22 02:05 - 2013-10-09 17:03 - 00607744 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-09-22 02:03 - 2013-10-09 17:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-09-22 02:03 - 2013-10-09 17:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-09-22 02:03 - 2013-10-09 17:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-09-22 01:59 - 2013-10-09 17:03 - 00176640 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll

Files to move or delete:
====================
C:\Users\test\AppData\Roaming\data.dat
C:\Users\test\AppData\Roaming\settings.ini
C:\Users\test\AppData\Roaming\i.ini


Some content of TEMP:
====================
C:\Users\test\AppData\Local\Temp\dyavxsqxivlhitfuwjhj.exe


==================== Known DLLs (Whitelisted) ============


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

14
Restore point made on: 2013-09-30 18:08:51
Restore point made on: 2013-10-01 10:39:03
Restore point made on: 2013-10-02 14:00:12
Restore point made on: 2013-10-03 16:29:29
Restore point made on: 2013-10-04 15:56:47
Restore point made on: 2013-10-05 18:17:14
Restore point made on: 2013-10-06 15:20:15
Restore point made on: 2013-10-07 14:00:15
Restore point made on: 2013-10-08 05:43:57
Restore point made on: 2013-10-08 18:21:31
Restore point made on: 2013-10-09 17:00:51
Restore point made on: 2013-10-10 16:07:50
Restore point made on: 2013-10-11 14:00:15
Restore point made on: 2013-10-12 18:26:47

==================== Memory info =========================== 

Percentage of memory in use: 12%
Total physical RAM: 4055.98 MB
Available physical RAM: 3544.11 MB
Total Pagefile: 3776.82 MB
Available Pagefile: 3606.6 MB
Total Virtual: 2047.88 MB
Available Virtual: 1968.45 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:92.21 GB) (Free:30.03 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:197.09 GB) (Free:40.41 GB) NTFS
Drive f: (WinRE) (Fixed) (Total:8.79 GB) (Free:3.27 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive g: (KINGSTON) (Removable) (Total:28.89 GB) (Free:2.07 GB) NTFS
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298 GB) (Disk ID: 97AC6793)
Partition 1: (Not Active) - (Size=9 GB) - (Type=27)
Partition 2: (Active) - (Size=92 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=197 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 29 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=29 GB) - (Type=07 NTFS)


LastRegBack: 2013-10-13 15:09

==================== End Of Log ============================