Christina111 | 07.12.2011 16:53 | Aus Sicherheitsgründen wurde ihr Windowssystem blockiert Hä Leute.Ich habe ein größeres problem.Kann mir jemand vielleicht helfen.Danke im Voraus.OTL EXTRAS Logfile:
OTL Logfile: Code:
OTL Extras logfile created on: 07.12.2011 16:39:48 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Home\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,25 Gb Total Physical Memory | 2,62 Gb Available Physical Memory | 80,58% Memory free
6,50 Gb Paging File | 5,93 Gb Available in Paging File | 91,21% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116,44 Gb Total Space | 31,93 Gb Free Space | 27,42% Space Free | Partition Type: NTFS
Drive D: | 334,67 Gb Total Space | 334,44 Gb Free Space | 99,93% Space Free | Partition Type: NTFS
Computer Name: MTDVD-WINDOWS7 | User Name: Home | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02602409-9189-4567-BC07-562605243B69}" = Windows Live Remote Client Resources
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{2B4E24A0-A06F-488D-87D8-16738E5E1104}" = Windows Live Family Safety
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3A65A74A-5B6E-451A-92D8-50F1182BBE9A}" = Windows Live Remote Service Resources
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5B65EF64-1DFA-414A-8C94-7BB726158E21}" = ControlDeck
"{5B9C7C4F-A1CB-11E0-9E40-0013D3D69929}" = Vegas Pro 10.0
"{5D4C60AA-84E6-4E1A-8A68-69970D387BE1}" = TuneUp Utilities Language Pack (de-DE)
"{5DF7AA5E-A1CB-11E0-A7D6-0013D3D69929}" = MSVCRT Redists
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{65C0025A-2CDE-43C5-82D0-C7A56EF0DB39}" = Bing Bar Platform
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}" = ASUS CopyProtect
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISE_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9FDC7042-CB9F-4336-A14C-DF10F53762E2}" = Topaz Adjust 4
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{C13A8E73-7E98-4295-BA94-6931701CD1F9}" = Topaz Vivacity
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}" = SRS Premium Sound Control Panel
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}" = ASUS FancyStart
"{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ASUS USB2.0 UVC VGA WebCam" = ASUS USB2.0 UVC VGA WebCam
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"CCleaner" = CCleaner
"Elantech" = ETDWare PS/2-x86 7.0.5.9_WHQL
"ENTERPRISE" = Microsoft Office Enterprise 2007
"GeoGebra" = GeoGebra
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Plattform-Geräte-Manager
"InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}" = Alcor Micro USB Card Reader
"Magic Bullet Looks Vegas" = Magic Bullet Looks Vegas
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox 8.0 (x86 de)" = Mozilla Firefox 8.0 (x86 de)
"Nero Micro 9.2.6.02.0" = Nero Micro 9.2.6.0 Build.2.0
"NewBlue 3D Transformations for Vegas" = NewBlue 3D Transformations for Vegas
"NewBlue Art Effects for Windows" = NewBlue Art Effects for Windows
"NewBlue Film Effects for Windows" = NewBlue Film Effects for Windows
"NewBlue Motion Blends for Windows" = NewBlue Motion Blends for Windows
"OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
"Topaz Adjust 4" = Topaz Adjust 4
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"Uniblue RegistryBooster" = Uniblue RegistryBooster
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.1.10
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.00 (32-Bit)
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Search Defender" = Yahoo! Suche Schutzvorkehrung
"Yahoo! Software Update" = Yahoo! Software Update
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Yahoo! BrowserPlus" = Yahoo! BrowserPlus 2.9.8
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report > --- --- ---
--- --- ---OTL Logfile: Code:
OTL logfile created on: 07.12.2011 17:05:58 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Home\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,25 Gb Total Physical Memory | 2,54 Gb Available Physical Memory | 78,27% Memory free
6,50 Gb Paging File | 5,84 Gb Available in Paging File | 89,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116,44 Gb Total Space | 31,90 Gb Free Space | 27,40% Space Free | Partition Type: NTFS
Drive D: | 334,67 Gb Total Space | 334,44 Gb Free Space | 99,93% Space Free | Partition Type: NTFS
Computer Name: MTDVD-WINDOWS7 | User Name: Home | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\Home\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\ASUS\ASUS Live Update\ALU.exe ()
========== Modules (No Company Name) ==========
MOD - C:\Programme\Mozilla Firefox\mozjs.dll ()
MOD - C:\Windows\System32\Macromed\Flash\NPSWF32.dll ()
MOD - C:\Programme\Java\jre6\bin\jp2native.dll ()
MOD - C:\Programme\WinRAR\RarExt.dll ()
MOD - C:\Programme\ASUS\ASUS Live Update\ALU.exe ()
========== Win32 Services (SafeList) ==========
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe ()
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (YahooAUService) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
SRV - (ATKGFNEXSrv) -- C:\Programme\ATKGFNEX\GFNEXSrv.exe ()
========== Driver Services (SafeList) ==========
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -- C:\Windows\System32\drivers\snp2uvc.sys ()
DRV - (vmbus) -- C:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV - (VIAHdAudAddService) -- C:\Windows\System32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (lullaby) -- C:\Windows\system32\DRIVERS\lullaby.sys (Windows (R) Win 7 DDK provider)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ATKACPI.sys (ASUS)
DRV - (lvupdtio) -- C:\Programme\ASUS\ASUS Live Update\SYS\lvupdtio.sys ()
DRV - (ASMMAP) -- C:\Programme\ATKGFNEX\ASMMAP.sys ()
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.msn.com/?ocid=ie9hp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 96 D3 88 6D 7B 39 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaulturl: "hxxp://de.search.yahoo.com/search?fr=ffsp1&p="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "google.com"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}:6.0.25
FF - prefs.js..keyword.URL: "hxxp://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.9.8: C:\Users\Home\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll (Yahoo! Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.11.11 19:04:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.06.07 22:36:20 | 000,000,000 | ---D | M]
[2011.05.09 14:42:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Home\AppData\Roaming\mozilla\Extensions
[2011.11.13 12:29:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Home\AppData\Roaming\mozilla\Firefox\Profiles\dij5s70v.default\extensions
[2011.10.25 18:35:42 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Home\AppData\Roaming\mozilla\Firefox\Profiles\dij5s70v.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011.11.10 18:05:27 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Home\AppData\Roaming\mozilla\Firefox\Profiles\dij5s70v.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011.11.13 12:29:44 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Home\AppData\Roaming\mozilla\Firefox\Profiles\dij5s70v.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2011.05.28 22:15:06 | 000,002,399 | ---- | M] () -- C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\dij5s70v.default\searchplugins\askcom.xml
[2011.06.17 19:46:24 | 000,003,915 | ---- | M] () -- C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\dij5s70v.default\searchplugins\sweetim.xml
[2011.11.11 19:04:12 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.11.11 19:04:08 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.05.09 14:30:12 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.10.03 12:51:24 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.10.03 12:51:24 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011.10.03 12:51:24 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2011.10.03 12:51:24 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.10.03 12:51:23 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.10.03 12:51:23 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2011.05.09 15:08:24 | 000,434,034 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 14935 more lines...
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Programme\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Programme\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Programme\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (@C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Programme\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [AmIcoSinglun] C:\Programme\AmIcoSingLun\AmIcoSinglun.exe (AlcorMicro Co., Ltd.)
O4 - HKLM..\Run: [ATKMEDIA] C:\Programme\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [ETDWare] C:\Programme\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [SwitchBoard] C:\Programme\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O4 - HKCU..\Run: [{8BA68212-7A3A-11E0-9449-806E6F6E6963}] C:\Users\Home\AppData\Roaming\Microsoft\svhcost.exe (Auslogics)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [ccleaner] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [RegistryBooster] C:\Program Files\Uniblue\RegistryBooster\launcher.exe (Uniblue Systems Limited)
O4 - HKCU..\Run: [Search Protection] C:\Programme\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O4 - Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Programme\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{483378A7-563B-49ED-992A-6BD8F61CEDDA}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programme\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Programme\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011.12.07 16:37:14 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Home\Desktop\OTL.exe
[2011.12.07 16:06:02 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{D322F9CC-A0D8-4AE9-9A73-F82CB5294B11}
[2011.12.07 16:05:50 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{CDC220F4-70F3-45C2-BB1D-342F11B18F48}
[2011.12.07 16:02:46 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1DF99D18-5B08-49CF-8B06-5668265F55C0}
[2011.12.07 16:02:34 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{0325A9C3-8645-4D4D-82F0-DE6D642AECF3}
[2011.12.07 15:56:47 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{73DBAC68-6AEB-44BE-85F9-C3A8BDFACC92}
[2011.12.07 15:56:35 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{8CC3CA17-3F05-4150-9095-BD3E6F2AAB18}
[2011.12.07 15:44:27 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Roaming\Uniblue
[2011.12.07 15:44:26 | 000,000,000 | -H-D | C] -- C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
[2011.12.07 15:44:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[2011.12.07 15:44:26 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2011.12.07 15:01:14 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6CE8D8C8-CB7E-4336-95D0-A726C18EBBD4}
[2011.12.07 15:01:02 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{FA3D1B0F-4C4C-40ED-ADCD-6224E97A6E4A}
[2011.12.07 14:53:14 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{504F6B37-93CB-4247-A1C7-59C2F7F74D74}
[2011.12.07 14:53:01 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C6465742-AB8B-4710-92BE-0CEA73BD769A}
[2011.12.07 14:30:50 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{BBDCA931-ABAF-4D7A-AD2B-2821626A7674}
[2011.12.07 14:30:37 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1DEDAF0E-371C-4E2F-8F31-1646DFE3C6C1}
[2011.12.07 14:25:07 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1A5CB2DC-249E-4C75-9961-029C478F3A95}
[2011.12.07 14:24:54 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{B811C15B-D044-4CFA-8B01-795BFE5609C2}
[2011.12.07 14:17:50 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7622A39F-7F53-40D0-9B70-C3675B7CC4EE}
[2011.12.07 14:17:31 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{2E10E18A-ADE2-4BC2-8987-6827974E0F7E}
[2011.12.07 14:16:57 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A755750C-BC30-417F-8A3B-1B35DAFC8FE6}
[2011.12.07 14:16:43 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{328DD879-53DA-4B0B-B227-B7BB89826E64}
[2011.12.07 14:14:39 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C573B123-BD66-4D0D-A9BF-A232C5CA82BB}
[2011.12.07 14:14:26 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{9F4EC67B-E271-48B1-98A2-DEE22B0A7A18}
[2011.12.07 14:10:46 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{D59D1D47-D522-49C8-AA6E-7C94E716B6F3}
[2011.12.07 12:36:08 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{71B1800D-BCB0-430E-AC66-DFEAF74F7684}
[2011.12.07 12:35:54 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{34C4030B-61F2-4143-9E1C-D57B746AC846}
[2011.12.07 12:23:11 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A1E62C25-4FB1-4F4D-A2E1-CAFF8A2CDE45}
[2011.12.07 12:22:51 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{4698CCBD-64A0-4A2F-A494-1A373423D6C4}
[2011.12.07 12:21:28 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{4555E200-2F33-455B-ABA5-A18098D5A4EB}
[2011.12.07 12:21:11 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{EA958EBF-18F0-4210-BB20-EEECC7AD068C}
[2011.12.07 11:55:56 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{EAEE5E37-01D4-4F6A-8B4D-E9F9334DF698}
[2011.12.07 11:55:43 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{91CA4CF1-4EDC-4AF7-B5AD-E6B88E911B02}
[2011.12.07 11:12:55 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7D79765D-5853-4246-8656-A734E5E226EF}
[2011.12.07 11:12:43 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{9BC51109-C05A-4E69-B032-8380CAB0C94A}
[2011.12.07 11:11:08 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{3C029B4E-AC48-4595-B842-93DB0BA7C763}
[2011.12.07 11:10:55 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{4CE73F1D-557C-478D-99A7-9021B3EAB4E8}
[2011.12.06 19:40:10 | 000,000,000 | ---D | C] -- C:\Users\Home\Documents\Adobe Scripts
[2011.12.06 14:16:49 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{31E5245A-C607-409F-9EAB-7DDFDF239973}
[2011.12.06 14:16:36 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1EE1F872-79F2-4A92-BE9B-561951EB615D}
[2011.12.04 21:34:43 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{56745E5C-9DAB-4EC0-AB66-DA0F66177FB4}
[2011.12.04 15:10:04 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{06C48899-6183-4707-992B-D37AD5895A3B}
[2011.12.04 12:39:56 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6BF938B7-9B28-41EC-A83A-DDE8D5A718B3}
[2011.12.04 12:39:16 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{65F95123-3DBF-486D-AA21-D4BFBCE1832A}
[2011.12.04 12:37:17 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{DE4512B8-AF3D-4533-997E-EBF0447E0BA0}
[2011.12.04 12:36:54 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{9E8AB9EC-1512-4564-A7DB-C79D1DBBD2E2}
[2011.12.04 12:29:35 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{EE608AA5-8F19-4BC1-BB0D-271ACFA9F172}
[2011.12.04 12:29:21 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{E1A657F8-82A7-47E4-B0B3-D3F95EBAB368}
[2011.12.04 12:03:43 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{708A2257-2082-475E-9F8B-F1BDE396A7B1}
[2011.12.04 12:03:24 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5013E04C-9780-4BDE-8A03-CCB1E725D944}
[2011.12.04 11:02:06 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{BF4CE8F9-F486-418D-9247-1E8DDFBBF237}
[2011.12.04 11:01:25 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{B6251309-92E8-4511-B5E9-259429E1378D}
[2011.12.04 10:56:13 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{D6793DB1-D441-4DF1-9CD8-E7241712C876}
[2011.12.04 00:22:43 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C75DADCC-86C7-418B-A988-26216E2EF3CB}
[2011.12.04 00:22:29 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{651E944A-D8A7-4D1E-B0EE-C49049FE0619}
[2011.12.03 23:13:08 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{E33FC96F-2C50-4C18-BEB6-B1D0E32703BA}
[2011.12.03 23:12:53 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{FCCEF5E4-06ED-46AA-A557-C782822523A7}
[2011.12.03 22:45:47 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{DC7A2E12-47F3-4D19-A62B-476C26BBF9A5}
[2011.12.03 22:45:33 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C99930C2-362C-4E31-B00C-47B485DDB92A}
[2011.12.03 22:42:12 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5D6AB985-77D5-4E1E-A03B-C98851ABE4CF}
[2011.12.03 21:57:10 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6BFB6528-7CFB-4940-91DE-3CBD97C3537C}
[2011.12.03 21:56:56 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7FF04502-7894-451E-8193-CFDE862DC26C}
[2011.12.03 21:22:29 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C17A9F3A-AC10-45FA-90D2-73996CC174D0}
[2011.12.03 21:22:15 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{F2A72197-1685-4D3E-9E9B-C44DB226B97B}
[2011.12.03 18:07:17 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A7CF85DD-AF5A-4D2E-BA12-2AFA2E0EEB2C}
[2011.12.03 18:06:58 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{D8EC9AF5-4589-4FC9-A467-34689AE5B168}
[2011.12.03 12:39:27 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{BB3445B1-DC1F-4D7C-A4EF-52986B0BC28D}
[2011.12.03 12:39:10 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{051C2F2C-3F5F-4347-8D1F-F7DCC6D6A35B}
[2011.12.03 12:32:29 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{AACE222C-CBC1-4A2C-B4D7-3696A849C5E8}
[2011.12.03 12:32:16 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{84CE611A-318F-4C8A-A05F-F4B9D81140C7}
[2011.12.03 12:29:25 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{105FDB91-6BFE-4F50-AAB4-7106FE7AA2BA}
[2011.12.03 12:29:11 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7A830A0A-C3B0-4E8A-AD7B-473DF136539A}
[2011.12.03 12:08:34 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{608A8073-183B-45A2-8E96-4CEA17D8C26E}
[2011.12.03 12:08:19 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5151C589-98E8-4EE1-8366-A92C3C1ACFB5}
[2011.12.02 15:08:27 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{013F7B25-5469-4BFF-BABC-1188F6C6E51C}
[2011.12.02 15:08:02 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{864FB2DF-5DBA-4FE8-8126-9743ACC37835}
[2011.12.01 22:08:22 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7AD4DDE0-51C0-4E37-BC67-39560B038DD0}
[2011.12.01 22:08:09 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A7EF42E4-63DB-42B6-A638-E823207B655A}
[2011.12.01 17:24:23 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{170CDE2A-478C-486B-B604-4AF595DAC6E5}
[2011.11.30 22:40:14 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{E61354A5-0BF6-4E12-A3F3-B705449D48FE}
[2011.11.30 22:39:59 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{881269C9-8872-4888-9A49-834406691CD1}
[2011.11.30 16:30:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra
[2011.11.30 16:30:17 | 000,000,000 | ---D | C] -- C:\Program Files\GeoGebra
[2011.11.30 14:58:37 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{F10495BE-01F8-44E3-9763-46B0598DA3C2}
[2011.11.30 14:58:20 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{2DE9D8F6-6D5B-430A-9E43-79DA3F0D0182}
[2011.11.29 18:54:28 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5836A577-4A3D-4340-8D63-AE3B19C9AF72}
[2011.11.29 14:35:37 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{0C65AA11-40CC-4554-8235-A4E2577EFEF1}
[2011.11.29 14:35:21 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{F9EC2814-12A3-4098-9E3F-AD7F7B7E4FDA}
[2011.11.28 14:47:14 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{70077B0A-9636-4FEF-9D2F-BC54902F6410}
[2011.11.27 15:00:39 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{2D5CD16D-63B4-488A-A427-F8FC4E86DFA2}
[2011.11.27 11:32:55 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5E5910C1-736A-4EC6-B1A4-A112D8F05344}
[2011.11.27 11:32:41 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{0572FD42-8BAE-4CBF-A13A-76B73A3CBE95}
[2011.11.26 21:51:43 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{87A50E1C-2B4E-4884-9DE4-6E8DF4899150}
[2011.11.26 21:51:31 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{2A26A5CA-225B-4F13-B92C-20C9177B0131}
[2011.11.26 18:28:48 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{E2E3710F-B6C3-4828-8CE2-409B30228AC3}
[2011.11.26 18:28:36 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{8921A585-36FF-466D-A734-331356C498FD}
[2011.11.26 18:11:32 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{8BD570DF-BB66-4433-A5F5-46CC0544FFF2}
[2011.11.26 18:11:20 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{CB61C61F-AB77-4520-903B-3CA445FC2486}
[2011.11.26 16:17:46 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{17B239C2-77D1-4456-8A8D-9688C474528B}
[2011.11.26 16:17:33 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{9C18D891-FA65-48C7-9699-BC69C49CE7EE}
[2011.11.26 11:40:20 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{2CEEF849-AC36-4938-A79A-E92BF6BAD13F}
[2011.11.25 22:19:11 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{3475939C-583B-42DB-AC7F-918B6E8FA2A5}
[2011.11.25 22:18:59 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5E1812E1-1A16-4A43-BD51-8B76C0C5E0A9}
[2011.11.25 17:57:39 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{65473449-4A4C-475E-B427-C98D1DBF7971}
[2011.11.24 18:27:44 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7A7C3763-3492-4224-8C70-6EE0BD2AFB09}
[2011.11.24 18:27:31 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{01D5C0CB-6C53-431C-945A-306672FE6DCB}
[2011.11.24 17:49:26 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6BA6FE14-3D87-4C95-A0AA-AD8B1A5E0D90}
[2011.11.24 17:49:13 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{E94D3431-B632-4D1E-BA48-C641EEDF2531}
[2011.11.22 14:54:05 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6D1E550D-F843-4038-9674-9EDDF72542C0}
[2011.11.22 14:53:51 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{15C2388A-6E8D-498F-9D12-5AAE2238512E}
[2011.11.21 19:12:23 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{DDC989D4-2ACB-4233-B34B-6A3D2143D6EB}
[2011.11.21 14:40:47 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{481211A9-6760-4097-B916-65E9C31C33A1}
[2011.11.21 14:40:35 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{CD81BF6D-6CE3-4A77-A3E8-74F04D075D29}
[2011.11.20 17:15:13 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{41F17812-5444-4202-B51A-1F2F5CA1DFBA}
[2011.11.20 16:02:15 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{B5C262B0-3BA3-449E-AB37-A4122D47C90B}
[2011.11.20 16:02:01 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{235368F5-E6A1-4511-A3D6-9A89C6670B02}
[2011.11.20 15:39:02 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{318817FE-9A74-4622-B46C-CFC30D2D858E}
[2011.11.20 15:38:49 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{994EEC7C-78E0-4C95-B686-E0FE18F8673B}
[2011.11.20 15:32:34 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{F125268D-2F9A-49C2-B3D1-080BEF83FFB6}
[2011.11.20 15:32:22 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1CB6BFB6-DCBC-4458-8E8A-3885D2490F68}
[2011.11.20 15:24:26 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1FA6F435-22A1-4C9E-88E9-13CB2CCF94D0}
[2011.11.20 15:24:11 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6F25706F-4F1B-4554-A803-33948D5319D9}
[2011.11.20 11:48:45 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5F056376-20B3-4A0A-9AC4-3081BF0EA67A}
[2011.11.20 11:48:31 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{56DC3C59-B6F7-4949-B3C4-8409074ACA32}
[2011.11.19 18:50:19 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7B97EF82-47F9-4474-BA8F-BE6EEE7DDEAA}
[2011.11.19 18:50:03 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{9034C4E6-D6A7-4978-A8B6-16849ED88CC3}
[2011.11.19 13:47:16 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{DB8AFBEC-D4F0-458E-86CD-BBD0C14C0C62}
[2011.11.19 10:17:04 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{463FA65D-B7BB-475E-A425-D528138F5C89}
[2011.11.19 10:16:49 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1E7727D8-8A4F-4036-83DE-7ABF7DBE8AA3}
[2011.11.18 21:17:00 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{96E4A9AC-2F7B-4DC7-8219-89D39DC7257B}
[2011.11.18 21:16:48 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{183E27AB-5F36-4B28-89E3-7212E6175FD1}
[2011.11.18 20:58:20 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A1744600-B590-45B0-BC62-2E74A001424E}
[2011.11.18 20:58:06 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6CDCCB8F-DC14-4C44-8C8F-F6D0E912FE2A}
[2011.11.18 20:02:15 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C0C49D71-CA1E-42AF-B725-0969BD54567F}
[2011.11.18 20:02:02 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{D848D91B-FDBB-45D5-A707-D4ADDD0724E3}
[2011.11.18 12:14:36 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{B6823B65-91D1-420E-871F-17BC5968C25D}
[2011.11.16 14:48:54 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{AA6577CE-E2DE-4585-B1DE-85CE17905B13}
[2011.11.16 14:47:16 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011.11.16 11:38:17 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{3578C7BA-0CE8-4507-95A3-582B97EB847A}
[2011.11.16 11:38:05 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{AC29539A-80DC-4635-B06D-6C624CE0DC2C}
[2011.11.15 18:45:09 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{924F0AF1-CDD0-4B91-8173-215E6BEC25B7}
[2011.11.15 14:46:18 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{AD457644-F9D5-4E6C-B791-F0B69EB1DD77}
[2011.11.14 21:39:25 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6C604A43-5D20-4C48-A5E9-2F9BC360EC94}
[2011.11.14 21:39:02 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{BB75CAB7-3633-441F-B5C8-08C4709B511C}
[2011.11.14 16:54:11 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{601EB041-DDA5-4BBA-989E-77628CB90FAB}
[2011.11.14 16:53:59 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{E8151B3F-84AE-4A95-9F35-450BD9FE9F55}
[2011.11.14 16:03:53 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5FD3B69D-C89A-4234-872F-DA011306B1D8}
[2011.11.14 16:03:40 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{0EEB6B07-8439-47CD-8759-04B494505FB7}
[2011.11.14 14:29:40 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1B69C0EE-5846-44F6-83F1-3B064BCF690A}
[2011.11.14 14:27:57 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{762D5548-4BD2-4C98-AB3E-9FE79C2B84D9}
[2011.11.13 15:17:23 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{35435EF3-53D5-4AB6-A4CE-CB0C214B9C09}
[2011.11.13 15:17:09 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{D302DE92-1598-4483-AF1D-8E84F8192A85}
[2011.11.13 14:33:03 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{27DB50D0-02CB-4F41-812D-7B8754C36BF0}
[2011.11.13 14:32:50 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{8C8DAB5D-90B9-4F7A-B19D-2AD892F56D67}
[2011.11.13 13:18:33 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{4372BC45-A686-4E80-AE78-24D1A7C5994A}
[2011.11.13 13:18:18 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{B68D8283-9BC9-467A-8F10-FEF760C9CB99}
[2011.11.13 12:56:23 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{42610124-5D52-4F19-8A30-7252F6F7E6EC}
[2011.11.13 12:56:09 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{EDCDEF4A-5F8F-471E-8319-5E5CD338278D}
[2011.11.13 12:54:32 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{F9666043-505C-4272-AFE5-A67FE7500DC8}
[2011.11.13 12:54:17 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{DDAC1F9A-67D5-4196-85B0-1A81413DD02B}
[2011.11.13 12:36:46 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{185504B5-99D4-4D7E-A203-80C08E1C8554}
[2011.11.13 12:36:29 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{B7D194BA-3C4C-47FD-AB83-B93990A59725}
[2011.11.13 12:29:49 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7AA8F424-D47D-4456-B43C-C31CCC1B718E}
[2011.11.13 12:29:35 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{F421CE2A-EA11-4E43-B5AF-A3307D9E5174}
[2011.11.12 19:52:38 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6F525A96-9ED2-4F2E-B4F5-A61763313D34}
[2011.11.12 19:52:25 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6F1A8AA0-AFE1-4B46-868C-7B3F80332CAC}
[2011.11.12 19:51:05 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{048B269E-08AE-4E26-B0A5-1FFB18BAC444}
[2011.11.12 19:50:51 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{5B0D0A27-89DD-48D9-B578-9EC8259E397E}
[2011.11.12 14:50:46 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C3C77542-BFF4-4E40-9952-8E392B9E4713}
[2011.11.12 14:50:34 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{65B6A6D6-242D-4E97-A3BF-49FC932CC0F6}
[2011.11.12 13:19:55 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A2F8DF2A-D886-46A8-B108-20BFB1EA2948}
[2011.11.12 13:19:41 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{9FAE0E7D-40EE-498A-8A83-04E8372D1E82}
[2011.11.12 13:03:10 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{DB5E64D5-ECDE-4F1D-A4A2-4A9B27711F06}
[2011.11.12 13:02:56 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6CD59EC4-8AF8-4EC1-A542-B3A884C74CA0}
[2011.11.12 11:49:44 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{76F12B75-4768-43DA-80A3-ED6E09F5DF7B}
[2011.11.12 11:49:31 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C1E72741-17D3-4718-89F1-99FFCCD2CF05}
[2011.11.12 11:47:02 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7F813307-5E26-4D49-82D3-BF6631EAE10C}
[2011.11.12 11:46:50 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{EB2D0D42-B736-4DDC-B2C8-25DEABE05A48}
[2011.11.11 23:30:20 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C1990A61-E414-4B84-AE74-CC48E695D11A}
[2011.11.11 23:30:06 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{6C688380-C9CD-42FA-A5B3-7C95E4D2E6A1}
[2011.11.11 23:03:07 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{CC8F94E2-1D27-4E6B-AB94-87E6A82B02B8}
[2011.11.11 23:02:46 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{FC8B326A-0251-46D1-89DB-C61C85AA3F86}
[2011.11.11 22:37:48 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{E3534ECE-7487-4AB3-AF5A-62364EEE2537}
[2011.11.11 22:37:36 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{73754AAB-1504-46A0-8602-DB78A3D30F5C}
[2011.11.11 22:27:46 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{72C46EF3-2C30-405C-8F58-00331CFEF5EC}
[2011.11.11 22:27:33 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A65A5A9D-E282-4524-A717-554796EFA42B}
[2011.11.11 21:57:55 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{7E8F805F-9EEA-46B8-89F5-6CBA27DA0EF9}
[2011.11.11 21:57:41 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{FF1702D2-136B-4B20-8F2D-8D38E4044B0E}
[2011.11.11 20:41:14 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{49AAE674-50E8-405A-BB94-8DFC5A24B304}
[2011.11.11 20:41:01 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{11679638-F885-480F-8027-E27F291F3E72}
[2011.11.11 19:03:53 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{844A6A25-5440-4F6D-96AC-A928524A61E7}
[2011.11.11 19:03:41 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{9E9ECB42-82D8-48EF-A1F1-8E4D4D7B81F3}
[2011.11.11 12:12:09 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1510E5D7-D4D0-43B5-B454-21EBCD967B0E}
[2011.11.11 12:11:56 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{A4D57FE1-0920-4A5F-8CDA-B90951CA089D}
[2011.11.09 14:15:47 | 002,339,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.11.09 14:10:19 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{0171B51E-0443-4193-ABAA-E47CEAD33902}
[2011.11.07 18:40:15 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{1BDDCCCC-3856-4A9A-9610-1D6BEF413BC7}
[2011.11.07 18:40:03 | 000,000,000 | ---D | C] -- C:\Users\Home\AppData\Local\{C9353EA2-B2E5-4A73-9C08-9EC5B4C7CF84}
[2011.05.27 13:43:14 | 000,196,608 | ---- | C] ( ) -- C:\Windows\System32\csnp2uvc.dll
[2008.08.11 20:45:20 | 000,155,648 | ---- | C] (ASUS) -- C:\Program Files\Common Files\MSIactionall.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011.12.07 16:37:16 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Home\Desktop\OTL.exe
[2011.12.07 16:07:28 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.12.07 16:07:20 | 2616,549,376 | -HS- | M] () -- C:\hiberfil.sys
[2011.12.07 16:04:59 | 000,001,090 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.12.07 16:04:59 | 000,000,244 | -H-- | M] () -- C:\Windows\tasks\{810401E2-DDE0-454e-B0E2-AA89C9E5967C}.job
[2011.12.07 16:04:54 | 000,000,282 | -H-- | M] () -- C:\Windows\tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
[2011.12.07 16:04:47 | 000,000,304 | -HS- | M] () -- C:\Windows\tasks\Uuznavpxle.job
[2011.12.07 15:44:28 | 000,000,214 | ---- | M] () -- C:\Windows\tasks\RegistryBooster.job
[2011.12.07 15:44:26 | 000,001,758 | ---- | M] () -- C:\Users\Home\Desktop\Uniblue RegistryBooster.lnk
[2011.12.07 14:34:02 | 000,000,234 | -H-- | M] () -- C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2011.12.07 12:38:52 | 027,678,403 | ---- | M] () -- C:\Users\Home\Desktop\starone_odhani_ep162_2_high.failed-conv.flv
[2011.12.07 12:19:54 | 020,389,376 | ---- | M] () -- C:\Users\Home\Desktop\starone_odhani_ep165_5_high.failed-conv.flv
[2011.12.07 12:00:07 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.12.06 19:18:48 | 000,024,672 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.12.06 19:18:48 | 000,024,672 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.12.04 16:27:24 | 000,001,456 | ---- | M] () -- C:\Users\Home\AppData\Local\Adobe Save for Web 12.0 Prefs
[2011.12.02 15:09:13 | 000,654,166 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.12.02 15:09:13 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.12.02 15:09:13 | 000,130,006 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.12.02 15:09:13 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.12.01 17:31:59 | 000,000,132 | ---- | M] () -- C:\Users\Home\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.11.30 16:30:19 | 000,001,799 | ---- | M] () -- C:\Users\Home\Desktop\GeoGebra.lnk
[2011.11.20 17:51:35 | 000,027,617 | -HS- | M] () -- C:\Users\Home\Desktop\Folder.jpg
[2011.11.20 17:51:35 | 000,007,500 | -HS- | M] () -- C:\Users\Home\Desktop\AlbumArtSmall.jpg
[2011.11.18 20:01:05 | 001,520,824 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.11.14 18:41:51 | 000,010,755 | -HS- | M] () -- C:\Users\Home\Desktop\AlbumArt_{8DE56412-543A-4B52-AAE8-F23DFF157DF6}_Large.jpg
[2011.11.14 18:41:48 | 000,002,829 | -HS- | M] () -- C:\Users\Home\Desktop\AlbumArt_{8DE56412-543A-4B52-AAE8-F23DFF157DF6}_Small.jpg
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011.12.07 15:44:28 | 000,000,214 | ---- | C] () -- C:\Windows\tasks\RegistryBooster.job
[2011.12.07 15:44:26 | 000,001,758 | ---- | C] () -- C:\Users\Home\Desktop\Uniblue RegistryBooster.lnk
[2011.12.07 12:36:30 | 027,678,403 | ---- | C] () -- C:\Users\Home\Desktop\starone_odhani_ep162_2_high.failed-conv.flv
[2011.12.07 12:18:07 | 020,389,376 | ---- | C] () -- C:\Users\Home\Desktop\starone_odhani_ep165_5_high.failed-conv.flv
[2011.11.30 16:30:19 | 000,001,799 | ---- | C] () -- C:\Users\Home\Desktop\GeoGebra.lnk
[2011.11.14 18:41:51 | 000,010,755 | -HS- | C] () -- C:\Users\Home\Desktop\AlbumArt_{8DE56412-543A-4B52-AAE8-F23DFF157DF6}_Large.jpg
[2011.11.14 18:41:51 | 000,002,829 | -HS- | C] () -- C:\Users\Home\Desktop\AlbumArt_{8DE56412-543A-4B52-AAE8-F23DFF157DF6}_Small.jpg
[2011.11.04 22:14:52 | 000,031,758 | ---- | C] () -- C:\Users\Home\AppData\Roaming\UserTile.png
[2011.07.05 13:34:15 | 000,000,132 | ---- | C] () -- C:\Users\Home\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.06.22 21:30:51 | 000,000,132 | ---- | C] () -- C:\Users\Home\AppData\Roaming\Adobe AIFF Format CS5 Prefs
[2011.06.07 21:26:47 | 000,001,456 | ---- | C] () -- C:\Users\Home\AppData\Local\Adobe Save for Web 12.0 Prefs
[2011.06.07 20:46:41 | 000,000,132 | ---- | C] () -- C:\Users\Home\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011.05.29 11:44:58 | 000,000,048 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011.05.27 15:58:13 | 000,008,704 | ---- | C] () -- C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.05.27 13:43:14 | 001,759,872 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2011.05.27 13:43:14 | 000,028,544 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2011.05.27 13:43:14 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini
[2011.05.23 20:31:45 | 000,000,017 | ---- | C] () -- C:\Users\Home\AppData\Local\resmon.resmoncfg
[2011.05.09 14:42:15 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011.05.09 13:51:21 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.09.15 10:55:52 | 000,179,200 | ---- | C] () -- C:\Windows\System32\NB Key 1.exe
[2010.05.26 23:30:15 | 000,528,896 | ---- | C] () -- C:\Windows\System32\RegisterDialog.dll
[2009.12.03 08:27:30 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009.07.14 10:04:11 | 000,654,166 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2009.07.14 10:04:11 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2009.07.14 10:04:11 | 000,130,006 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2009.07.14 10:04:11 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2009.07.14 05:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 05:33:53 | 001,520,824 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.07.14 03:05:48 | 000,616,008 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009.07.14 03:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009.07.14 03:05:48 | 000,106,388 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009.07.14 03:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009.07.14 03:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009.07.14 03:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009.07.14 01:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009.07.14 00:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.06.18 18:29:04 | 000,197,654 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2009.04.08 09:31:56 | 000,106,496 | ---- | C] () -- C:\Program Files\Common Files\CPInstallAction.dll
[2009.02.18 16:55:22 | 000,294,912 | ---- | C] () -- C:\Windows\System32\ATIODE.exe
[2009.02.03 19:52:04 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe
[2008.05.22 07:35:54 | 000,051,962 | ---- | C] () -- C:\Program Files\Common Files\banner.jpg
[2007.12.15 14:55:30 | 005,423,104 | ---- | C] () -- C:\Windows\System32\tlpsplib10.dll
========== LOP Check ==========
[2011.05.28 12:11:41 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\AnvSoft
[2011.05.22 16:19:35 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\Canneverbe Limited
[2011.05.22 16:57:05 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2011.08.08 13:03:49 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\DVDVideoSoft
[2011.08.08 13:03:40 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.08.10 22:45:37 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\gtk-2.0
[2011.05.28 12:10:16 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\OpenCandy
[2011.05.24 20:37:11 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\PDAppFlex
[2011.05.25 17:51:47 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\Publish Providers
[2011.08.22 22:39:09 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\Sony
[2011.06.03 15:15:50 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\Sony Creative Software
[2011.08.23 14:42:14 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\Sony Creative Software Inc
[2011.05.31 19:47:56 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011.05.09 14:40:57 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\TuneUp Software
[2011.12.07 15:44:27 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\Uniblue
[2011.06.22 12:34:51 | 000,000,000 | ---D | M] -- C:\Users\Home\AppData\Roaming\Windows Live Writer
[2011.12.07 15:44:28 | 000,000,214 | ---- | M] () -- C:\Windows\Tasks\RegistryBooster.job
[2011.10.30 12:00:39 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011.12.07 16:04:47 | 000,000,304 | -HS- | M] () -- C:\Windows\Tasks\Uuznavpxle.job
[2011.12.07 14:34:02 | 000,000,234 | -H-- | M] () -- C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2011.12.07 16:04:59 | 000,000,244 | -H-- | M] () -- C:\Windows\Tasks\{810401E2-DDE0-454e-B0E2-AA89C9E5967C}.job
[2011.12.07 16:04:54 | 000,000,282 | -H-- | M] () -- C:\Windows\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:89EAFAFC
< End of report > --- --- --- |