Teil 2 von OTL Code:
O1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Windows Live ID-Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Programme\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Windows Defender] C:\Programme\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - File not found
O9 - Extra 'Tools' menuitem : eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - File not found
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: fritz.box ([]* in Lokales Intranet)
O15 - HKCU\..Trusted Ranges: Range1 ([*] in Lokales Intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{0b09eb12-c56d-11de-bd0f-8dd2945fcc41}\Shell\AutoRun\command - "" = I:\Setup.exe -- File not found
O33 - MountPoints2\{0b09ec41-c56d-11de-bd0f-8dd2945fcc41}\Shell\AutoRun\command - "" = AutoRun\AutoStart.exe
O33 - MountPoints2\{0b09ec41-c56d-11de-bd0f-8dd2945fcc41}\Shell\Explore\Command - "" = AutoRun\AutoStart.exe
O33 - MountPoints2\{0b09ec41-c56d-11de-bd0f-8dd2945fcc41}\Shell\Open\Command - "" = AutoRun\AutoStart.exe
O33 - MountPoints2\{0b09ec45-c56d-11de-bd0f-8dd2945fcc41}\Shell\AutoRun\command - "" = AutoRun\AutoStart.exe
O33 - MountPoints2\{0b09ec45-c56d-11de-bd0f-8dd2945fcc41}\Shell\Explore\Command - "" = AutoRun\AutoStart.exe
O33 - MountPoints2\{0b09ec45-c56d-11de-bd0f-8dd2945fcc41}\Shell\Open\Command - "" = AutoRun\AutoStart.exe
O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\Setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found
========== Files/Folders - Created Within 14 Days ==========
[2009.11.26 13:23:10 | 00,000,000 | ---D | C] -- C:\Users\Paku\AppData\Roaming\Malwarebytes
[2009.11.26 13:23:06 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009.11.26 13:23:04 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009.11.26 13:23:04 | 00,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2009.11.26 13:23:04 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009.11.26 13:19:05 | 00,531,456 | ---- | C] (OldTimer Tools) -- C:\Users\Paku\Desktop\OTL.exe
[2009.11.26 11:49:06 | 00,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Users\Paku\Desktop\HiJackThis.exe
[2009.11.23 16:45:39 | 00,000,000 | ---D | C] -- C:\ProgramData\CanonIJPLM
[2009.11.23 16:43:33 | 00,000,000 | ---D | C] -- C:\Programme\Common Files\CANON
[2009.11.23 16:43:08 | 00,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2009.11.23 16:42:58 | 00,000,000 | -H-D | C] -- C:\Windows\System32\CanonIJ Uninstaller Information
[2009.11.23 16:42:37 | 00,223,744 | ---- | C] (CANON INC.) -- C:\Windows\System32\CNMLM97.DLL
[2009.11.23 16:42:25 | 00,000,000 | -H-D | C] -- C:\Programme\CanonBJ
[2009.11.23 16:41:33 | 00,000,000 | ---D | C] -- C:\Programme\Canon
[2009.11.22 23:35:05 | 00,000,000 | ---D | C] -- C:\Users\Paku\Desktop\Projekt
[2009.11.19 22:34:40 | 00,000,000 | R-SD | C] -- C:\Users\Paku\Documents\My Stationery
[2009.11.17 15:33:59 | 00,000,000 | ---D | C] -- C:\Programme\Windows Portable Devices
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 14 Days ==========
[2009.11.26 13:35:07 | 02,359,296 | -HS- | M] () -- C:\Users\Paku\NTUSER.DAT
[2009.11.26 13:23:08 | 00,000,822 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.11.26 13:19:07 | 00,531,456 | ---- | M] (OldTimer Tools) -- C:\Users\Paku\Desktop\OTL.exe
[2009.11.26 13:15:34 | 00,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009.11.26 13:15:34 | 00,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009.11.26 11:49:09 | 00,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Users\Paku\Desktop\HiJackThis.exe
[2009.11.26 11:22:20 | 01,418,806 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009.11.26 11:22:20 | 00,618,204 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2009.11.26 11:22:20 | 00,586,980 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009.11.26 11:22:20 | 00,122,636 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2009.11.26 11:22:20 | 00,101,052 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009.11.26 11:15:44 | 00,034,800 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2009.11.26 11:15:44 | 00,034,800 | ---- | M] () -- C:\ProgramData\nvModes.001
[2009.11.26 11:15:34 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009.11.26 11:15:33 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009.11.26 11:15:08 | 32,203,73504 | -HS- | M] () -- C:\hiberfil.sys
[2009.11.26 00:29:11 | 00,524,288 | -HS- | M] () -- C:\Users\Paku\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2009.11.26 00:29:11 | 00,065,536 | -HS- | M] () -- C:\Users\Paku\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2009.11.26 00:29:05 | 02,077,881 | -H-- | M] () -- C:\Users\Paku\AppData\Local\IconCache.db
[2009.11.25 16:13:19 | 00,002,379 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2009.11.24 22:21:31 | 13,453,972 | ---- | M] () -- C:\Users\Paku\Desktop\project.rtf
[2009.11.22 22:24:38 | 00,002,231 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2009.11.21 14:48:39 | 00,215,104 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2009.11.21 14:48:39 | 00,215,104 | ---- | M] () -- C:\Windows\System32\PnkBstrB.exe
[2009.11.21 14:21:10 | 00,138,576 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009.11.19 13:55:43 | 00,000,000 | -H-- | M] () -- C:\Users\Paku\Documents\Default.rdp
[2009.11.17 15:28:28 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2009.11.17 15:28:23 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2009.11.26 13:23:08 | 00,000,822 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009.11.24 22:17:57 | 13,453,972 | ---- | C] () -- C:\Users\Paku\Desktop\project.rtf
[2009.11.19 13:55:43 | 00,000,000 | -H-- | C] () -- C:\Users\Paku\Documents\Default.rdp
[2009.11.17 15:28:28 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2009.11.17 15:28:23 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009.11.08 04:37:10 | 00,138,576 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009.11.02 14:27:24 | 00,007,168 | ---- | C] () -- C:\Users\Paku\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.10.30 16:57:39 | 02,077,881 | -H-- | C] () -- C:\Users\Paku\AppData\Local\IconCache.db
[2009.10.30 16:47:07 | 00,097,144 | ---- | C] () -- C:\Users\Paku\AppData\Local\GDIPFONTCACHEV1.DAT
[2009.08.13 16:04:21 | 00,000,032 | ---- | C] () -- C:\Windows\CD_Start.INI
[2009.08.13 07:58:56 | 00,036,864 | ---- | C] () -- C:\Windows\System32\Hooks.dll
[2009.08.11 10:47:54 | 00,034,800 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.08.11 10:47:53 | 00,034,800 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.07.30 07:19:35 | 00,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2009.07.29 11:33:16 | 00,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.07.29 11:33:09 | 00,368,640 | ---- | C] () -- C:\Windows\System32\msjetoledb40.dll
[2008.10.07 08:13:30 | 00,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2008.10.07 08:13:22 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2008.10.07 08:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2008.01.21 03:24:38 | 00,060,124 | ---- | C] () -- C:\Windows\System32\tcpmon.ini
[2006.11.02 13:50:50 | 00,000,174 | -HS- | C] () -- C:\Programme\desktop.ini
[2006.11.02 13:37:35 | 00,037,665 | ---- | C] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
[2006.11.02 13:37:35 | 00,029,779 | ---- | C] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2006.11.02 13:37:35 | 00,026,489 | ---- | C] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2006.11.02 13:37:35 | 00,026,040 | ---- | C] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2006.11.02 13:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 11:33:01 | 01,418,806 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI
[2006.11.02 11:24:31 | 00,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini
[2006.11.02 11:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2006.11.02 11:23:31 | 00,000,144 | ---- | C] () -- C:\Windows\win.ini
[2006.11.02 08:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 08:09:45 | 00,027,097 | ---- | C] () -- C:\Windows\System32\country.sys
[2006.11.02 08:09:44 | 00,042,809 | ---- | C] () -- C:\Windows\System32\KEY01.SYS
[2006.11.02 08:09:44 | 00,042,537 | ---- | C] () -- C:\Windows\System32\KEYBOARD.SYS
[2006.11.02 08:09:42 | 00,009,029 | ---- | C] () -- C:\Windows\System32\ANSI.SYS
[2006.11.02 08:09:41 | 00,004,768 | ---- | C] () -- C:\Windows\System32\HIMEM.SYS
[2006.11.02 08:09:40 | 00,029,274 | ---- | C] () -- C:\Windows\System32\NTDOS412.SYS
[2006.11.02 08:09:38 | 00,029,370 | ---- | C] () -- C:\Windows\System32\NTDOS411.SYS
[2006.11.02 08:09:35 | 00,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS404.SYS
[2006.11.02 08:09:31 | 00,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS804.SYS
[2006.11.02 08:09:29 | 00,027,866 | ---- | C] () -- C:\Windows\System32\NTDOS.SYS
[2006.11.02 08:09:26 | 00,035,536 | ---- | C] () -- C:\Windows\System32\NTIO412.SYS
[2006.11.02 08:09:24 | 00,035,776 | ---- | C] () -- C:\Windows\System32\NTIO411.SYS
[2006.11.02 08:09:23 | 00,034,672 | ---- | C] () -- C:\Windows\System32\NTIO404.SYS
[2006.11.02 08:09:22 | 00,034,672 | ---- | C] () -- C:\Windows\System32\NTIO804.SYS
[2006.11.02 08:09:20 | 00,033,952 | ---- | C] () -- C:\Windows\System32\NTIO.SYS
[2006.11.02 07:25:08 | 00,013,312 | ---- | C] () -- C:\Windows\System32\win87em.dll
========== LOP Check ==========
[2009.11.23 17:27:19 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Adobe
[2009.11.04 13:49:48 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Apple Computer
[2009.11.08 21:25:50 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\DiskAid
[2009.11.05 15:05:12 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\FRITZ!
[2009.11.01 00:21:31 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\GameRanger
[2009.11.02 23:34:28 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Hamachi
[2009.11.07 15:34:04 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\ICQ
[2009.10.30 16:46:46 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Identities
[2009.10.30 16:52:57 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Macromedia
[2009.11.26 13:23:10 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Malwarebytes
[2006.11.02 13:37:34 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Media Center Programs
[2009.11.11 13:23:42 | 00,000,000 | --SD | M] -- C:\Users\Paku\AppData\Roaming\Microsoft
[2009.10.30 17:41:44 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Mozilla
[2009.10.31 15:53:34 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\OpenOffice.org
[2009.11.26 00:29:07 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\Skype
[2009.11.26 00:03:23 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\skypePM
[2009.11.24 17:52:07 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\teamspeak2
[2009.11.02 00:41:05 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\TeamViewer
[2009.11.26 13:35:13 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\uTorrent
[2009.10.31 01:11:53 | 00,000,000 | ---D | M] -- C:\Users\Paku\AppData\Roaming\WinRAR
[2009.11.26 11:15:34 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009.11.26 00:29:15 | 00,032,572 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report > |