OTL Logfile: Code:
OTL logfile created on: 21.10.2011 13:40:07 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\LOLKAS\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,25 Gb Total Physical Memory | 1,38 Gb Available Physical Memory | 42,57% Memory free
6,50 Gb Paging File | 3,58 Gb Available in Paging File | 55,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 900,41 Gb Total Space | 246,46 Gb Free Space | 27,37% Space Free | Partition Type: NTFS
Drive D: | 30,00 Gb Total Space | 15,08 Gb Free Space | 50,25% Space Free | Partition Type: NTFS
Drive E: | 417,91 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: LOLKAS-PC | User Name: LOLKAS | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\LOLKAS\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Riot Games\League of Legends\rads\projects\lol_launcher\releases\0.0.0.33\deploy\LoLLauncher.exe ()
PRC - C:\Users\LOLKAS\AppData\Local\Temp\svshost.exe ()
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Riot Games\League of Legends\rads\system\rads_user_kernel.exe ()
PRC - C:\Programme\Pando Networks\Media Booster\PMB.exe ()
PRC - C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
PRC - C:\Programme\Steam\Steam.exe (Valve Corporation)
PRC - C:\Programme\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
PRC - C:\Programme\LOLReplay\LOLRecorder.exe ()
PRC - C:\Programme\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corp.)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - C:\Programme\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.)
PRC - C:\Programme\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Programme\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Programme\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Programme\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Programme\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Programme\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Programme\avmwlanstick\WLanGUI.exe (AVM Berlin)
PRC - C:\Programme\avmwlanstick\WLanNetService.exe (AVM Berlin)
PRC - C:\Programme\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Microsoft Corporation)
PRC - C:\Programme\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Programme\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Riot Games\League of Legends\rads\projects\lol_air_client\releases\0.0.0.92\deploy\LolClient.exe (Adobe Systems Inc.)
PRC - C:\Programme\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Programme\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe (Advanced Micro Devices)
PRC - C:\Programme\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
PRC - C:\Programme\Nero\Update\NASvc.exe (Nero AG)
PRC - C:\Programme\ICQ6Toolbar\ICQ Service.exe ()
PRC - C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Programme\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Adobe Systems Incorporated)
PRC - C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (StarWind Software)
PRC - C:\Programme\Stardock\MyColors\WBVista.exe ()
PRC - C:\Programme\Stardock\MyColors\VistaSrv.exe (Stardock Corporation)
PRC - C:\Programme\RocketDock\RocketDock.exe ()
========== Modules (No Company Name) ==========
MOD - C:\Windows\System32\Macromed\Flash\NPSWF32.dll ()
MOD - C:\Programme\Steam\bin\libcef.dll ()
MOD - C:\Programme\Steam\bin\avcodec-52.dll ()
MOD - C:\Programme\Steam\bin\chromehtml.dll ()
MOD - C:\Programme\Steam\bin\avformat-52.dll ()
MOD - C:\Programme\Steam\bin\avutil-50.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\1049a76b3de293df726d380932215c91\System.Management.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6e592e424a204aafeadbe22b6b31b9db\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f8196c3588c2229e84516af4b6a0ee60\System.Data.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\3b2cfd85528a27eb71dc41d8067359a1\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\37f2a07f5c1341f788c5a56baa7cde59\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2d5bcbeb9475ef62189f605bcca1cec6\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\abab08afa60a6f06bdde0fcc9649c379\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll ()
MOD - C:\Riot Games\League of Legends\rads\projects\lol_launcher\releases\0.0.0.33\deploy\LoLLauncher.exe ()
MOD - C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\extensions\{abf392ea-1581-49fb-ba19-7136ce3adde4}\components\RadioWMPCoreGecko7.dll ()
MOD - C:\Users\LOLKAS\AppData\Local\Temp\svshost.exe ()
MOD - C:\Programme\Mozilla Firefox\mozjs.dll ()
MOD - C:\Riot Games\League of Legends\rads\system\rads_user_kernel.exe ()
MOD - C:\Programme\Pando Networks\Media Booster\PMB.exe ()
MOD - C:\Programme\SplitMediaLabs\XSplit\avformat-53.dll ()
MOD - C:\Programme\SplitMediaLabs\XSplit\avutil-51.dll ()
MOD - C:\Programme\SplitMediaLabs\XSplit\avcodec-53.dll ()
MOD - C:\Programme\SplitMediaLabs\XSplit\swscale-0.dll ()
MOD - C:\Programme\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Programme\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Programme\TeamSpeak 3 Client\plugins\ts3overlay\DXHook.dll ()
MOD - C:\Programme\LOLReplay\LOLRecorder.exe ()
MOD - C:\Programme\Windows Live\Messenger\ShareAnythingControlRes.dll ()
MOD - C:\Programme\Windows Live\Messenger\en\ShareAnythingControllang.dll.mui ()
MOD - C:\Programme\Windows Live\Shared\en\wliduxloc.dll.mui ()
MOD - C:\Programme\Windows Live\Shared\en\uxctlloc.dll.mui ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ()
MOD - C:\Programme\WinRAR\RarExt.dll ()
MOD - C:\Programme\Notepad++\NppShell_01.dll ()
MOD - C:\Programme\Webcam Simulator\VCamSrc.ax ()
MOD - C:\Programme\Fake Webcam\VCamSrc.ax ()
MOD - C:\Programme\RocketDock\RocketDock.exe ()
MOD - C:\Programme\RocketDock\RocketDock.dll ()
========== Win32 Services (SafeList) ==========
SRV - (wlcrasvc) -- File not found
SRV - (RalinkRegistryWriter) -- File not found
SRV - (Akamai) -- c:\Programme\Common Files\Akamai\netsession_win_807ba95.dll ()
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (Hamachi2Svc) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (npggsvc) -- C:\Windows\System32\GameMon.des (INCA Internet Co., Ltd.)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.)
SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (TeamViewer6) -- C:\Programme\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (TunngleService) -- C:\Programme\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (AVM WLAN Connection Service) -- C:\Programme\avmwlanstick\WLanNetService.exe (AVM Berlin)
SRV - (ZuneWlanCfgSvc) -- C:\Windows\System32\ZuneWlanCfgSvc.exe (Microsoft Corporation)
SRV - (WMZuneComm) -- C:\Program Files\Zune\WMZuneComm.exe (Microsoft Corporation)
SRV - (ZuneNetworkSvc) -- C:\Program Files\Zune\ZuneNss.exe (Microsoft Corporation)
SRV - (sftvsa) -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (TeamViewer5) -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (rpcapd) Remote Packet Capture Protocol v.0 (experimental) -- C:\Program Files\WinPcap\rpcapd.exe (CACE Technologies, Inc.)
SRV - (AMD Reservation Manager) -- C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe (Advanced Micro Devices)
SRV - (MSCamSvc) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
SRV - (NAUpdate) -- C:\Program Files\Nero\Update\NASvc.exe (Nero AG)
SRV - (ICQ Service) -- C:\Programme\ICQ6Toolbar\ICQ Service.exe ()
SRV - (ACDaemon) -- C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (StarWindServiceAE) -- C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (StarWind Software)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (PCPitstop Scheduling) -- C:\Programme\PCPitstop\PCPitstopScheduleService.exe (PC Pitstop LLC)
SRV - (WindowBlinds) -- C:\Programme\Stardock\MyColors\VistaSrv.exe (Stardock Corporation)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
========== Driver Services (SafeList) ==========
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (EuMusDesignVirtualAudioCableWdm) Virtual Audio Cable (WDM) -- C:\Windows\System32\drivers\vrtaucbl.sys (Eugene V. Muzychenko)
DRV - (amdkmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (amdkmdap) -- C:\Windows\System32\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (ESLWireAC) -- C:\Windows\System32\drivers\ESLWireACD.sys (<Turtle Entertainment>)
DRV - (ESLvnic1) -- C:\Windows\System32\drivers\ESLvnic.sys (Turtle Entertainment GmbH)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (winusb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (FWLANUSB) -- C:\Windows\System32\drivers\fwlanusb.sys (AVM GmbH)
DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (truecrypt) -- C:\Windows\System32\drivers\truecrypt.sys (TrueCrypt Foundation)
DRV - (Sftvol) -- C:\Windows\System32\drivers\Sftvollh.sys (Microsoft Corporation)
DRV - (Sftredir) -- C:\Windows\System32\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV - (Sftplay) -- C:\Windows\System32\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV - (Sftfs) -- C:\Windows\System32\drivers\Sftfslh.sys (Microsoft Corporation)
DRV - (epmntdrv) -- C:\Windows\System32\epmntdrv.sys ()
DRV - (EuGdiDrv) -- C:\Windows\System32\EuGdiDrv.sys ()
DRV - (SCREAMINGBDRIVER) -- C:\Windows\System32\drivers\ScreamingBAudio.sys (Screaming Bee LLC)
DRV - (NPF) -- C:\Windows\System32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (taphss) -- C:\Windows\System32\drivers\taphss.sys (AnchorFree Inc)
DRV - (VX3000) -- C:\Windows\System32\drivers\VX3000.sys (Microsoft Corporation)
DRV - (AtiHdmiService) -- C:\Windows\System32\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV - (MHIKEY10) -- C:\Windows\System32\drivers\MHIKEY10.sys (Generic USB smartcard reader)
DRV - (amdiox86) -- C:\Windows\System32\drivers\amdiox86.sys (Advanced Micro Devices)
DRV - (RTL8187B) -- C:\Windows\System32\drivers\wg111v3.sys (NETGEAR Inc. )
DRV - (tap0901t) TAP-Win32 Adapter V9 (Tunngle) -- C:\Windows\System32\drivers\tap0901t.sys (Tunngle.net)
DRV - (netr28u) -- C:\Windows\System32\drivers\netr28u.sys (Ralink Technology Corp.)
DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys ()
DRV - (ss_bmdm) -- C:\Windows\System32\drivers\ss_bmdm.sys (MCCI Corporation)
DRV - (ss_bbus) SAMSUNG USB Mobile Device (WDM) -- C:\Windows\System32\drivers\ss_bbus.sys (MCCI)
DRV - (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) -- C:\Windows\System32\drivers\ss_bmdfl.sys (MCCI Corporation)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Programme\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {6edc3889-b841-4127-a2bf-c5fc48f972c7} - C:\Programme\RadarSync2\prxtbRad0.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKLM\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Programme\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = Autocomplete Pro Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Autocomplete Pro Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Autocomplete Pro Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = Autocomplete Pro Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN, Messenger und Hotmail sowie Nachrichten, Unterhaltung, Video, Sport, Lifestyle, Finanzen, Auto uvm. bei MSN
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 17 E5 CF 16 3D 3E CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = Autocomplete Pro Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = Autocomplete Pro Search
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Programme\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {6edc3889-b841-4127-a2bf-c5fc48f972c7} - C:\Programme\RadarSync2\prxtbRad0.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Programme\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "MyStart Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Softonic-Eng7 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2405280&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "MyStart Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://mystart.incredimail.com/mb68?u=92541570335820295"
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.2.5.2
FF - prefs.js..extensions.enabledItems: {f4e6547e-325b-403c-a3bb-ad29ed37a92f}:3.2.5.2
FF - prefs.js..extensions.enabledItems: {abf392ea-1581-49fb-ba19-7136ce3adde4}:3.2.5.2
FF - prefs.js..extensions.enabledItems: {b80f591e-fe9a-46cf-a13e-180377240586}:3.2.5.2
FF - prefs.js..extensions.enabledItems: {AA994882-F391-4d2e-806F-8908DA4814ED}:2.9.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}:3.2.5.2
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.4.0024
FF - prefs.js..extensions.enabledItems: RAWThumbnailViewer@arcsoft.com.cn:2.0.0.11
FF - prefs.js..extensions.enabledItems: nasanightlaunch@example.com:0.6.20101009
FF - prefs.js..keyword.URL: "www.google.de"
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "www.google.de"
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@thrixxx.com/WebLaunch: C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll ( )
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Program Files\Roblox\Versions\version-5fb0645efa584e24\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@thrixxx.com/WebLaunch: C:\Program Files\thriXXX\WebLaunch\Binaries\npWebLaunch.dll ( )
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2010.09.03 20:33:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\RAWThumbnailViewer@arcsoft.com.cn: C:\Program Files\ArcSoft\RAW Thumbnail Viewer\FireFox Extension
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B728AB94-9BC7-49b7-B76A-422BB31B2FD0}: C:\Program Files\ArcSoft\Video Downloader\Plugin_FireFox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fmconverter@gmail.com: C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [2011.10.16 15:58:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.10.01 17:30:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.10.16 00:52:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.10.01 17:30:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.10.16 00:52:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.10.01 17:30:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.10.16 00:52:49 | 000,000,000 | ---D | M]
[2010.08.07 12:57:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LOLKAS\AppData\Roaming\mozilla\Extensions
[2011.10.21 10:03:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\LOLKAS\AppData\Roaming\mozilla\Firefox\Profiles\76gtpfl5.default\extensions
[2011.10.10 22:11:52 | 000,000,000 | ---D | M] (technobase.fm - We aRe oNe Community Toolbar) -- C:\Users\LOLKAS\AppData\Roaming\mozilla\Firefox\Profiles\76gtpfl5.default\extensions\{abf392ea-1581-49fb-ba19-7136ce3adde4}
[2011.05.01 13:49:29 | 000,002,071 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\absearch-search.xml
[2011.09.02 07:11:00 | 000,001,241 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\abuchak.xml
[2010.12.08 16:46:22 | 000,000,929 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\conduit.xml
[2011.05.01 14:17:25 | 000,002,059 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\daemon-search.xml
[2011.10.20 08:04:52 | 000,000,950 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\icqplugin-1.xml
[2010.10.30 14:29:17 | 000,000,950 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\icqplugin-2.xml
[2010.10.27 19:09:48 | 000,001,056 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\icqplugin.xml
[2011.09.25 16:58:46 | 000,002,207 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\MyStart Search.xml
[2011.10.16 16:04:44 | 000,003,915 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\Mozilla\Firefox\Profiles\76gtpfl5.default\searchplugins\sweetim.xml
[2011.09.08 21:19:43 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.10.15 10:09:20 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010.11.14 20:42:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.11.24 12:44:01 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.02.07 16:18:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011.09.08 21:19:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2011.10.16 15:58:11 | 000,000,000 | ---D | M] (Freemake Video Converter Plugin) -- C:\PROGRAM FILES\FREEMAKE\FREEMAKE VIDEO CONVERTER\BROWSERPLUGIN\FIREFOX
() (No name found) -- C:\USERS\LOLKAS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\76GTPFL5.DEFAULT\EXTENSIONS\{46551EC9-40F0-4E47-8E18-8E5CF550CFB8}.XPI
() (No name found) -- C:\USERS\LOLKAS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\76GTPFL5.DEFAULT\EXTENSIONS\{888D99E7-E8B5-46A3-851E-1EC45DA1E644}.XPI
[2011.10.01 17:30:28 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010.03.27 18:06:04 | 000,067,032 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npContribute.dll
[2011.09.08 21:19:37 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011.03.22 20:38:12 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2006.08.09 12:16:08 | 000,030,408 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npWebLaunch.dll
[2010.03.31 10:09:22 | 010,437,264 | ---- | M] (PDFTron Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\PDFNetC.dll
[2010.04.08 12:36:02 | 000,107,760 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\ScorchPDFWrapper.dll
[2011.03.01 08:55:09 | 000,003,189 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\acpro.xml
[2011.10.01 17:30:26 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.10.01 17:30:26 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011.10.01 17:30:26 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2011.10.01 17:30:26 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.10.01 17:30:26 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.10.01 17:30:26 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2011.10.20 21:48:14 | 000,004,255 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 Registration
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 192.150.18.108
O1 - Hosts: 127.0.0.1 activate.adobe.com:443
O1 - Hosts: 127.0.0.1 serial.alcohol-soft.com # alcohol 120%
O1 - Hosts: 127.0.0.1 alcohol-soft.com # alcohol 120%
O1 - Hosts: 127.0.0.1 images.alcohol-soft.com # alcohol 120%
O1 - Hosts: 127.0.0.1 mermaidconsulting.dk # alcohol 120%
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 adobe.activate.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 86 more lines...
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Programme\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (no name) - {11222041-111B-46E3-BD29-EFB2449479B1} - No CLSID value found.
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Programme\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
O2 - BHO: (RadarSync2 Toolbar) - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - C:\Programme\RadarSync2\prxtbRad0.dll (Conduit Ltd.)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (no name) - {9519AF7E-638D-4933-BAD6-D33D23C79FE5} - No CLSID value found.
O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Programme\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Programme\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O2 - BHO: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Programme\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)
O2 - BHO: (no name) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - No CLSID value found.
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Programme\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Programme\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (RadarSync2 Toolbar) - {6edc3889-b841-4127-a2bf-c5fc48f972c7} - C:\Programme\RadarSync2\prxtbRad0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKLM\..\Toolbar: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Programme\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {F301665A-12F8-4331-804A-5BCBD379668C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Programme\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Softonic-Eng7 Toolbar) - {414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - C:\Programme\Softonic-Eng7\prxtbSof0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (RadarSync2 Toolbar) - {6EDC3889-B841-4127-A2BF-C5FC48F972C7} - C:\Programme\RadarSync2\prxtbRad0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Programme\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [AVMWlanClient] C:\Programme\avmwlanstick\WLanGUI.exe (AVM Berlin)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SweetIM] C:\Programme\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [OldSchoolHack] C:\Users\LOLKAS\AppData\Local\Temp\svshost.exe ()
O4 - HKCU..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: EXIF lesen - C:\Program Files\ArcSoft\RAW Thumbnail Viewer\ArcEXIFM.htm File not found
O8 - Extra context menu item: Free YouTube Download - C:\Users\LOLKAS\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\LOLKAS\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Programme\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - Reg Error: Key error. File not found
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: Range1979 ([http] in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} hxxp://utilities.pcpitstop.com/da2/PCPitStop2.cab (PCPitstop Exam)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0E726A6F-9AD9-45E5-B902-33FB67F186A0}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{41DFF1FF-ADDE-43CB-B635-987EF4FE3E68}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{67397860-EF08-4ECF-9513-02B51CFF90D7}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D8C92793-3532-43F5-8941-ECF6E1CC3466}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Programme\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Users\LOLKAS\AppData\Local\Temp\svshost.exe) -C:\Users\LOLKAS\AppData\Local\Temp\svshost.exe ()
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22 - SharedTaskScheduler: {E31004D1-A431-41B8-826F-E902F9D95C81} - Windows DreamScene - C:\Windows\System32\DreamScene.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010.07.07 11:48:56 | 000,000,078 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{2187e558-a20e-11df-ac9d-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{2187e558-a20e-11df-ac9d-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Start.exe -- [2010.06.10 15:42:51 | 000,822,576 | R--- | M] ()
O33 - MountPoints2\{67c34a39-b02e-11df-8a1b-6c626d4ee6ca}\Shell - "" = AutoRun
O33 - MountPoints2\{67c34a39-b02e-11df-8a1b-6c626d4ee6ca}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\Start.hta
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011.10.21 13:13:52 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{2B3E4476-0433-4E25-9D62-AD845182FA58}
[2011.10.21 08:11:00 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\LOLKAS\Desktop\OTL.exe
[2011.10.21 01:12:56 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{15867176-2DA2-4FCF-9C14-BCF9773FB5AE}
[2011.10.21 01:12:43 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{1B4B6627-0BF0-4FA1-BACF-5F7EBC830FE8}
[2011.10.20 21:53:57 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Malwarebytes
[2011.10.20 21:53:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.10.20 21:53:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.10.20 21:53:41 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.10.20 21:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.10.20 13:12:01 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{DFA4D940-3919-4129-BBE2-68D9C0C9A43B}
[2011.10.20 13:11:39 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{11277DB9-BA54-4C65-8BC6-2C898D24EDCC}
[2011.10.20 13:11:28 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{3CA3784F-18CC-4465-BA89-8B73A1A36B7E}
[2011.10.20 13:10:35 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{D85ABBF1-F34B-460D-A5A2-564EDF1BA46E}
[2011.10.19 18:30:33 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{A3197B2E-14B3-4DAA-A9A2-5ACD0679A6A7}
[2011.10.19 18:30:12 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{5F2D3709-F6A3-45C8-AEE7-D781045F9117}
[2011.10.19 13:36:15 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Image-Line
[2011.10.19 13:29:21 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
[2011.10.19 13:29:21 | 000,000,000 | ---D | C] -- C:\Program Files\ASIO4ALL v2
[2011.10.19 13:28:50 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\Windows\System32\rewire.dll
[2011.10.19 13:28:48 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\Documents\Image-Line
[2011.10.19 13:28:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
[2011.10.19 13:28:38 | 001,554,944 | ---- | C] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) -- C:\Windows\System32\vorbis.acm
[2011.10.19 13:28:38 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
[2011.10.19 13:28:33 | 000,000,000 | ---D | C] -- C:\Program Files\Outsim
[2011.10.19 13:26:02 | 000,000,000 | ---D | C] -- C:\Program Files\Image-Line
[2011.10.19 13:16:23 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\Documents\Eigene Noten
[2011.10.19 13:16:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Obtiv
[2011.10.19 13:16:02 | 000,000,000 | ---D | C] -- C:\Program Files\Obtiv
[2011.10.18 16:39:07 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{407988C2-A62A-4062-82C3-0BC1B81CF28C}
[2011.10.18 16:38:33 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{1A734AEE-6433-4A4C-88EA-A20F0C3CF585}
[2011.10.17 00:49:14 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{C81BF864-5AED-4931-B12B-F387AAF53E95}
[2011.10.17 00:48:40 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{CE65055B-0E4E-4B3D-A88A-B1C99D32EE9D}
[2011.10.16 20:48:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011.10.16 20:47:25 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011.10.16 20:47:24 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2011.10.16 20:44:35 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011.10.16 16:35:17 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2011.10.16 16:35:17 | 000,185,952 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2011.10.16 16:35:17 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2011.10.16 16:35:17 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2011.10.16 16:35:16 | 000,719,872 | ---- | C] (Abysmal Software) -- C:\Windows\System32\devil.dll
[2011.10.16 16:35:16 | 000,308,224 | ---- | C] (The Public) -- C:\Windows\System32\Avisynth.dll
[2011.10.16 16:35:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pepsky
[2011.10.16 16:35:03 | 000,000,000 | ---D | C] -- C:\Program Files\Pepsky
[2011.10.16 16:22:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webcam Simulator
[2011.10.16 16:22:20 | 000,000,000 | ---D | C] -- C:\Program Files\Webcam Simulator
[2011.10.16 16:22:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\wcs
[2011.10.16 16:19:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fake Webcam
[2011.10.16 16:19:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\fwc
[2011.10.16 16:19:52 | 000,000,000 | ---D | C] -- C:\Program Files\Fake Webcam
[2011.10.16 16:11:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\wsm
[2011.10.16 16:04:38 | 000,000,000 | ---D | C] -- C:\ProgramData\SweetIM
[2011.10.16 16:04:38 | 000,000,000 | ---D | C] -- C:\Program Files\SweetIM
[2011.10.16 12:48:09 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{3F76D40D-B17E-480E-A4DD-32373B1B3E2A}
[2011.10.16 12:47:56 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{A168699A-C067-438D-90FA-BE89FEB37547}
[2011.10.16 12:47:44 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{3C4CD795-F212-466F-A9EC-E7504DDF6E45}
[2011.10.16 12:47:04 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{8F3DCDBF-67BE-45F6-96B0-E5EEF1B8B4F5}
[2011.10.16 12:32:13 | 000,000,000 | ---D | C] -- C:\Program Files\data
[2011.10.16 00:53:11 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Sibelius Software
[2011.10.16 00:52:47 | 000,000,000 | ---D | C] -- C:\Program Files\Sibelius Software
[2011.10.14 23:53:11 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bridge Building Game
[2011.10.14 23:53:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bridge Building Game
[2011.10.14 23:53:11 | 000,000,000 | ---D | C] -- C:\Program Files\Bridge Building Game
[2011.10.14 06:44:31 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{B6F6CD71-466D-4B86-8D8B-2D5125BDB10D}
[2011.10.14 06:44:19 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{3D5A406C-C396-4ADA-9379-FDFDD9007F98}
[2011.10.14 03:06:49 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011.10.14 03:06:47 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011.10.14 03:06:47 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.10.14 03:06:47 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011.10.14 03:06:46 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011.10.13 18:17:42 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{38428619-82BE-4FC3-B9BF-8D3A3D1ABDF9}
[2011.10.13 16:41:56 | 000,000,000 | ---D | C] -- C:\Riot Games
[2011.10.13 16:41:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
[2011.10.13 16:28:48 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2011.10.13 16:09:13 | 000,000,000 | ---D | C] -- C:\Program Files\LeagueOfLegends
[2011.10.13 16:05:46 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\ts3overlay
[2011.10.13 06:16:44 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{73A3B06C-D0A2-4C14-98C9-060494167FB0}
[2011.10.13 04:43:32 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2011.10.13 04:43:32 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2011.10.13 04:43:22 | 002,334,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.10.12 18:15:49 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{027E4910-83D8-4EC1-B251-D75B888174C6}
[2011.10.12 18:15:13 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{B969FFD2-08E5-43A8-A3A2-D5972A873054}
[2011.10.12 16:26:20 | 000,000,000 | ---D | C] -- C:\Program Files\Freemake
[2011.10.12 16:23:55 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
[2011.10.11 23:04:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011.10.11 17:29:26 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{6757134B-24FF-4D1A-8B43-1457DDF0FCEC}
[2011.10.11 05:28:14 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{0384B623-D4FE-4C53-B05E-F5CF0D803F54}
[2011.10.10 21:22:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sciface
[2011.10.10 17:27:22 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{868C54FB-AFE3-4A48-A9EC-DC1F1EE453BA}
[2011.10.10 17:27:09 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{F6081467-32DA-4DA0-A4D1-5B163ECF8527}
[2011.10.10 17:26:58 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{411606FC-4693-4273-B6AD-4195169D6EA1}
[2011.10.10 17:26:25 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{4884BE0F-6614-4A9F-A045-AA612A1206C5}
[2011.10.10 05:24:48 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{E599DBE5-EA52-49CD-B686-9C47E8417130}
[2011.10.09 17:22:40 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{2A16378C-B1E8-4C3B-B730-054B03F72E0C}
[2011.10.09 05:20:44 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{B268B25F-3DA5-49AD-972D-0E8E5462517B}
[2011.10.08 17:18:47 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{769C1E98-937A-445A-A3FB-8FB3609754FC}
[2011.10.08 05:17:18 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{955FC81E-D39A-4D10-A6C6-5AEF59DC8865}
[2011.10.07 17:15:52 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{19AFA7DE-5CB4-4EFC-AE16-293BE403922C}
[2011.10.07 05:14:50 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{97E92724-E2E5-445F-8D96-591341CCCA7C}
[2011.10.06 17:13:46 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{A7D3E5D7-E1D9-44BC-A443-38125B7DF4E9}
[2011.10.06 17:13:35 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{CD65BC82-7324-4319-813A-7578D462685D}
[2011.10.06 17:13:23 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{F4981AF0-B33F-4232-9B99-990F78D7FE94}
[2011.10.06 17:12:47 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{07B6DFBC-BFEF-4856-AC03-E2126154FB9A}
[2011.10.05 17:20:24 | 000,355,840 | ---- | C] (Darko Inc.) -- C:\Users\LOLKAS\Desktop\Web.de E-Mail Generator.exe
[2011.10.05 15:40:32 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{3ABFA5C4-EF2F-49EB-98B4-EF45AA260ACD}
[2011.10.05 15:40:21 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{735CB382-3335-4C8C-A5CC-3D5EA4F2F419}
[2011.10.05 15:40:09 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{60FDA7C2-4833-4232-924F-14EDE9E67B84}
[2011.10.05 15:39:35 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{2024D7E4-9F74-4FED-85E9-67B704837F37}
[2011.10.04 20:39:50 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{880AF1D1-3FDC-4F8E-A77F-541D9DC95089}
[2011.10.04 20:39:12 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{46A9461A-1B1B-4815-AF92-CF71FD5752DF}
[2011.10.04 08:38:47 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{5185DF57-9B27-4AD3-AD52-F6537EC9B4F9}
[2011.10.04 08:38:13 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{0D1F3560-1F5C-4ACA-BFAB-6EBC3F12D5CD}
[2011.10.03 20:37:55 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{8FE29072-AA6A-47BF-BF8B-E39ADD7DACB7}
[2011.10.03 20:37:44 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{D177BA64-864D-4416-8EEF-553B49768B0E}
[2011.10.03 20:37:33 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{517636AA-DAFE-4E05-99E9-95327CE8BA53}
[2011.10.03 20:36:58 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{29534349-7D88-4811-8F5D-C8DB14EB0233}
[2011.10.03 18:17:50 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\Enhanceviews_Autowatcher_
[2011.10.03 08:36:21 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{0874F714-FC2F-44DB-9639-D68DF118B09D}
[2011.10.03 08:35:48 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{098EA563-5650-4EFD-834D-B0ADA63A15A6}
[2011.10.02 22:48:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Sincell
[2011.10.02 22:48:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tube Toolbox
[2011.10.02 22:48:46 | 000,000,000 | ---D | C] -- C:\Program Files\Sincell
[2011.10.02 20:35:29 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{FFB4EAB1-B4B2-419B-A931-789B4FF38442}
[2011.10.02 20:34:55 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{801F5817-BEE8-4E84-9D63-F31681C7FEC4}
[2011.10.02 17:08:54 | 000,000,000 | ---D | C] -- C:\Windows\screenshots
[2011.10.02 17:08:54 | 000,000,000 | ---D | C] -- C:\Windows\RoleSettings
[2011.10.02 17:08:54 | 000,000,000 | ---D | C] -- C:\Windows\cache
[2011.10.01 16:51:52 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{4776F866-00C0-4C4D-B21D-34FE272B30BB}
[2011.10.01 16:51:13 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{5017A5DB-EB67-4F3A-9024-94317FFD2FF3}
[2011.10.01 16:12:21 | 000,000,000 | ---D | C] -- C:\PWRD
[2011.10.01 16:12:16 | 000,000,000 | ---D | C] -- C:\ProgramData\PWD
[2011.10.01 16:09:58 | 000,000,000 | ---D | C] -- C:\Program Files\FWDEDownloader78
[2011.10.01 14:26:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
[2011.10.01 14:26:42 | 000,000,000 | ---D | C] -- C:\Program Files\SplitMediaLabs
[2011.10.01 14:24:06 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\SplitMediaLabs
[2011.10.01 04:50:47 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{779BDE7F-8356-473F-8AB1-6C1AE8884077}
[2011.10.01 04:49:55 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{2CC25822-7820-4885-B6C6-151C1E325EEB}
[2011.09.30 16:49:35 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{B9631390-CC63-4A06-B0F4-94918C758268}
[2011.09.30 16:49:10 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{BFE96300-BA80-4401-B30A-11B574248CDC}
[2011.09.30 16:48:43 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{AC00B92F-7CA0-4C86-9E8B-AE0C2E514E16}
[2011.09.29 22:52:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2011.09.29 01:14:01 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{293C2AD6-83B5-4CBC-9E5C-512DC1C80FC0}
[2011.09.29 01:13:25 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{3C377D34-A03E-495F-AA0F-0ECAC7B53F31}
[2011.09.28 13:12:56 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{3223EB04-262B-4611-ABBD-53474D868924}
[2011.09.28 01:11:48 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{0827F251-81BB-4B4F-A40B-EF2CD0C456D1}
[2011.09.27 13:10:48 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{933A8025-CD91-4375-8F22-BE6A028A4F1F}
[2011.09.27 13:10:28 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{89A6DCB3-89B3-47C0-B3B5-3D1B335093C7}
[2011.09.26 21:19:03 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\Ubisoft Game Launcher
[2011.09.26 15:41:19 | 000,445,016 | ---- | C] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2011.09.26 15:41:19 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2011.09.26 13:11:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Codemasters
[2011.09.26 13:10:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Ripple Sound
[2011.09.26 13:10:45 | 019,087,360 | ---- | C] (Intel Corporation / Blue Ripple Sound Limited) -- C:\Windows\System32\mkl_blueripple.dll
[2011.09.26 13:10:45 | 001,302,528 | ---- | C] (Blue Ripple Sound Limited) -- C:\Windows\System32\rapture3d_oal.dll
[2011.09.26 13:10:45 | 000,109,144 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2011.09.26 13:10:43 | 000,000,000 | ---D | C] -- C:\Program Files\BRS
[2011.09.26 12:34:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters
[2011.09.26 12:20:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)
[2011.09.26 07:27:02 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\THQ
[2011.09.26 07:19:56 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steamless Warhammer 40K - Space Marine
[2011.09.26 07:08:49 | 000,000,000 | ---D | C] -- C:\Program Files\Steamless W40K Space Marine
[2011.09.26 07:06:07 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\Documents\Hard Reset
[2011.09.26 07:05:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Wild Hog
[2011.09.26 07:03:29 | 000,000,000 | ---D | C] -- C:\Program Files\Flying Wild Hog
[2011.09.25 17:21:43 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\Documents\Freemake
[2011.09.25 17:21:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
[2011.09.25 17:21:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Freemake
[2011.09.25 17:03:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMedia Recode
[2011.09.25 17:01:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
[2011.09.25 17:01:29 | 000,000,000 | ---D | C] -- C:\Program Files\DealPly
[2011.09.25 17:00:01 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2011.09.25 17:00:00 | 000,000,000 | ---D | C] -- C:\Program Files\IncrediMail_MediaBar_2
[2011.09.25 16:59:38 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\IM
[2011.09.25 16:59:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail
[2011.09.25 16:59:20 | 000,000,000 | ---D | C] -- C:\ProgramData\IncrediMail
[2011.09.25 16:59:20 | 000,000,000 | ---D | C] -- C:\Program Files\IncrediMail
[2011.09.25 16:59:20 | 000,000,000 | ---D | C] -- C:\ProgramData\IM
[2011.09.25 16:58:47 | 000,000,000 | ---D | C] -- C:\Program Files\FoxTabVideoToMP3
[2011.09.25 16:58:47 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FoxTab Video To MP3
[2011.09.25 15:31:10 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011.09.25 11:25:46 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{DD2E452F-BAE1-4A4C-BB58-2F7B82CD0F93}
[2011.09.25 11:25:11 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{BF8AE453-EA9F-453E-A9A0-8D9E404DC755}
[2011.09.24 12:18:56 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\Desktop\craftbukkit
[2011.09.24 12:18:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CraftBukkit
[2011.09.24 12:18:01 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Roaming\.craftbukkit
[2011.09.21 15:11:27 | 000,000,000 | ---D | C] -- C:\Users\LOLKAS\AppData\Local\{A03B2461-1F74-404F-9104-0B26648C7A85}
[2007.08.13 18:46:00 | 000,102,912 | ---- | C] (Albert L Faber) -- C:\Users\LOLKAS\AppData\Local\CDRip.dll
[2007.01.18 22:09:54 | 000,623,616 | ---- | C] (Ivan Bischof ©2003 - 2005) -- C:\Users\LOLKAS\AppData\Local\No23 Recorder.exe
[2006.12.11 20:13:14 | 000,013,872 | ---- | C] (Un4seen Developments) -- C:\Users\LOLKAS\AppData\Local\basscd.dll
[2006.12.11 20:13:12 | 000,097,336 | ---- | C] (Un4seen Developments) -- C:\Users\LOLKAS\AppData\Local\bass.dll
[6 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011.10.21 12:49:51 | 005,254,170 | ---- | M] () -- C:\Users\LOLKAS\Documents\Minecraft Anzeige.mp3
[2011.10.21 08:11:05 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\LOLKAS\Desktop\OTL.exe
[2011.10.20 20:58:07 | 000,015,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.10.20 20:58:07 | 000,015,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.10.20 20:50:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.10.20 20:49:13 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Access.dat
[2011.10.19 17:54:55 | 003,696,392 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.10.19 13:18:34 | 000,000,198 | ---- | M] () -- C:\Windows\musi.ini
[2011.10.18 15:16:14 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011.10.16 16:12:39 | 000,007,168 | ---- | M] () -- C:\Users\LOLKAS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.10.14 20:58:08 | 000,244,871 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-10-14 20_58_05.061507.dmp
[2011.10.14 03:01:44 | 000,707,752 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.10.14 03:01:44 | 000,661,370 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.10.14 03:01:44 | 000,153,086 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.10.14 03:01:44 | 000,125,302 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.09.29 23:10:11 | 000,000,000 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\FileOut.cns
[2011.09.29 23:10:11 | 000,000,000 | ---- | M] () -- C:\Users\LOLKAS\AppData\Roaming\FileIn.cns
[2011.09.26 15:41:19 | 000,445,016 | ---- | M] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2011.09.26 15:41:19 | 000,109,144 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2011.09.25 15:31:08 | 242,627,557 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011.09.22 19:58:39 | 000,125,327 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_58_39.913757.dmp
[2011.09.22 19:57:42 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_57_42.693485.dmp
[2011.09.22 19:56:16 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_56_16.463552.dmp
[2011.09.22 19:56:05 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_56_05.553928.dmp
[2011.09.22 19:55:35 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_35.098187.dmp
[2011.09.22 19:55:24 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_23.955549.dmp
[2011.09.22 19:55:08 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_08.590670.dmp
[2011.09.22 19:55:05 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_04.942462.dmp
[2011.09.22 19:54:57 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_57.310025.dmp
[2011.09.22 19:54:45 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_45.196332.dmp
[2011.09.22 19:54:40 | 000,124,920 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_40.354055.dmp
[2011.09.22 19:54:27 | 000,155,859 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_26.150243.dmp
[2011.09.22 18:32:14 | 000,159,151 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 18_32_13.922136.dmp
[2011.09.22 18:31:55 | 000,161,375 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 18_31_55.685092.dmp
[2011.09.22 18:31:30 | 000,155,859 | ---- | M] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 18_31_29.094572.dmp
[6 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011.10.19 13:16:23 | 000,000,198 | ---- | C] () -- C:\Windows\musi.ini
[2011.10.14 20:58:05 | 000,244,871 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-10-14 20_58_05.061507.dmp
[2011.09.29 22:54:26 | 000,000,000 | ---- | C] () -- C:\Users\LOLKAS\AppData\Roaming\FileOut.cns
[2011.09.29 22:54:26 | 000,000,000 | ---- | C] () -- C:\Users\LOLKAS\AppData\Roaming\FileIn.cns
[2011.09.25 16:59:27 | 000,000,000 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail.lnk
[2011.09.25 15:31:08 | 242,627,557 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011.09.22 19:58:39 | 000,125,327 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_58_39.913757.dmp
[2011.09.22 19:57:42 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_57_42.693485.dmp
[2011.09.22 19:56:16 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_56_16.463552.dmp
[2011.09.22 19:56:05 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_56_05.553928.dmp
[2011.09.22 19:55:35 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_35.098187.dmp
[2011.09.22 19:55:23 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_23.955549.dmp
[2011.09.22 19:55:08 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_08.590670.dmp
[2011.09.22 19:55:04 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_55_04.942462.dmp
[2011.09.22 19:54:57 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_57.310025.dmp
[2011.09.22 19:54:45 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_45.196332.dmp
[2011.09.22 19:54:40 | 000,124,920 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_40.354055.dmp
[2011.09.22 19:54:26 | 000,155,859 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 19_54_26.150243.dmp
[2011.09.22 18:32:13 | 000,159,151 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 18_32_13.922136.dmp
[2011.09.22 18:31:55 | 000,161,375 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 18_31_55.685092.dmp
[2011.09.22 18:31:29 | 000,155,859 | ---- | C] () -- C:\Users\LOLKAS\Documents\ts3_clientui-win32-15001-2011-09-22 18_31_29.094572.dmp
[2011.07.24 18:03:25 | 000,000,029 | ---- | C] () -- C:\Windows\DEBUGSM.INI
[2011.07.24 17:53:54 | 000,111,932 | ---- | C] () -- C:\Windows\System32\EPPICPrinterDB.dat
[2011.07.24 17:53:54 | 000,031,053 | ---- | C] () -- C:\Windows\System32\EPPICPattern131.dat
[2011.07.24 17:53:54 | 000,027,417 | ---- | C] () -- C:\Windows\System32\EPPICPattern121.dat
[2011.07.24 17:53:54 | 000,026,154 | ---- | C] () -- C:\Windows\System32\EPPICPattern1.dat
[2011.07.24 17:53:54 | 000,024,903 | ---- | C] () -- C:\Windows\System32\EPPICPattern3.dat
[2011.07.24 17:53:54 | 000,021,390 | ---- | C] () -- C:\Windows\System32\EPPICPattern5.dat
[2011.07.24 17:53:54 | 000,020,148 | ---- | C] () -- C:\Windows\System32\EPPICPattern2.dat
[2011.07.24 17:53:54 | 000,011,811 | ---- | C] () -- C:\Windows\System32\EPPICPattern4.dat
[2011.07.24 17:53:54 | 000,004,943 | ---- | C] () -- C:\Windows\System32\EPPICPattern6.dat
[2011.07.24 17:53:54 | 000,001,146 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_DU.dat
[2011.07.24 17:53:54 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_PT.dat
[2011.07.24 17:53:54 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_BP.dat
[2011.07.24 17:53:54 | 000,001,136 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_ES.dat
[2011.07.24 17:53:54 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_FR.dat
[2011.07.24 17:53:54 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_CF.dat
[2011.07.24 17:53:54 | 000,001,120 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_IT.dat
[2011.07.24 17:53:54 | 000,001,107 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_GE.dat
[2011.07.24 17:53:54 | 000,001,104 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_EN.dat
[2011.07.24 17:53:54 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
[2011.07.24 17:50:07 | 000,000,025 | ---- | C] () -- C:\Windows\CDE SX400DEFGIPS.ini
[2011.07.17 15:16:54 | 550,895,616 | ---- | C] () -- C:\Program Files\CrossFire_Setup_v1070.exe
[2011.06.23 19:20:17 | 000,023,144 | ---- | C] () -- C:\Windows\War3Unin.dat
[2011.05.24 13:03:24 | 000,276,232 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\ConduitInstaller.exe
[2011.05.22 08:36:33 | 000,000,232 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2011.05.01 14:53:16 | 000,197,120 | ---- | C] () -- C:\Windows\patchw32.dll
[2011.04.25 11:23:39 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2011.04.25 11:23:38 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2011.04.04 08:51:58 | 001,305,680 | ---- | C] () -- C:\Windows\System32\wxmsw28u_vc_custom.dll
[2011.04.03 10:12:23 | 000,000,001 | ---- | C] () -- C:\Windows\System32\SI.bin
[2011.03.27 21:43:08 | 000,096,768 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\Bloson.exe
[2011.03.21 19:56:22 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011.03.21 13:36:30 | 000,026,456 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\bloson.bmp
[2011.03.16 09:06:13 | 000,000,003 | ---- | C] () -- C:\Windows\treeskp.sys
[2011.03.16 09:06:13 | 000,000,003 | ---- | C] () -- C:\Windows\sbacknt.bin
[2011.02.02 00:01:14 | 000,227,586 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011.01.28 19:29:25 | 002,336,384 | ---- | C] () -- C:\Windows\System32\BootMan.exe
[2011.01.28 19:29:25 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
[2011.01.28 19:29:25 | 000,014,848 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
[2011.01.28 19:29:25 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
[2011.01.28 19:29:25 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
[2011.01.22 20:56:58 | 000,007,605 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\Resmon.ResmonCfg
[2011.01.22 19:42:16 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2011.01.21 07:36:02 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2011.01.13 05:03:18 | 000,003,155 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2010.12.25 12:23:37 | 000,001,427 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\RecConfig.xml
[2010.12.21 16:21:52 | 000,000,132 | ---- | C] () -- C:\Users\LOLKAS\AppData\Roaming\Adobe BMP Format CS5 Prefs
[2010.11.13 12:14:46 | 000,062,648 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\toolbar3.bmp
[2010.11.12 12:09:56 | 000,195,108 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\lateral3.bmp
[2010.11.12 11:44:14 | 000,193,744 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\lateral1.bmp
[2010.11.12 11:10:58 | 000,193,744 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\lateral2.bmp
[2010.11.11 09:03:04 | 000,108,316 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2010.10.29 16:06:07 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2010.10.23 17:22:12 | 000,000,000 | ---- | C] () -- C:\Users\LOLKAS\AppData\Roaming\.NANotifyHere
[2010.10.22 20:47:40 | 001,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll
[2010.10.22 03:00:00 | 000,097,360 | ---- | C] () -- C:\Windows\System32\drivers\Fwusb1b.bin
[2010.10.13 12:55:34 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Access.dat
[2010.10.03 09:46:45 | 000,015,412 | ---- | C] () -- C:\Windows\System32\BReWErS.dll
[2010.09.01 19:54:24 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010.09.01 19:54:24 | 000,022,328 | ---- | C] () -- C:\Users\LOLKAS\AppData\Roaming\PnkBstrK.sys
[2010.09.01 19:54:10 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2010.09.01 19:54:07 | 000,669,184 | ---- | C] () -- C:\Windows\System32\pbsvc.exe
[2010.09.01 19:54:07 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2010.08.28 20:40:26 | 000,101,072 | ---- | C] () -- C:\Windows\UTP.exe
[2010.08.28 10:14:58 | 000,000,039 | ---- | C] () -- C:\Windows\Audiocut.ini
[2010.08.28 10:07:38 | 000,000,005 | ---- | C] () -- C:\Windows\System32\SySCut.dat
[2010.08.28 10:07:27 | 000,003,082 | ---- | C] () -- C:\Windows\System32\affv11300p2now.sys
[2010.08.28 10:05:38 | 000,000,134 | ---- | C] () -- C:\ProgramData\xlink.sys
[2010.08.28 10:05:38 | 000,000,000 | ---- | C] () -- C:\Windows\System32\ntUsrrP_1_0.dll
[2010.08.24 19:33:00 | 000,034,308 | ---- | C] () -- C:\Windows\System32\bassmod.dll
[2010.08.21 19:55:29 | 000,007,168 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.08.15 21:27:12 | 000,000,048 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010.08.08 13:38:33 | 000,000,884 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\RT3070_{67397860-EF08-4ECF-9513-02B51CFF90D7}_sta
[2010.08.08 13:38:25 | 000,001,717 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\RT3070_{67397860-EF08-4ECF-9513-02B51CFF90D7}_prof
[2010.08.07 13:41:40 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.06.25 19:03:12 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll
[2010.06.15 12:01:12 | 000,057,904 | ---- | C] () -- C:\Windows\System32\wbload.dll
[2010.03.26 21:04:54 | 000,041,872 | ---- | C] () -- C:\Windows\System32\xfcodec.dll
[2009.07.14 10:47:43 | 000,707,752 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2009.07.14 10:47:43 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2009.07.14 10:47:43 | 000,153,086 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2009.07.14 10:47:43 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2009.07.14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 06:33:53 | 003,696,392 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.07.14 04:05:48 | 000,661,370 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009.07.14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009.07.14 04:05:48 | 000,125,302 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009.07.14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009.07.14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009.07.14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009.07.14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.06.26 17:21:02 | 000,015,498 | ---- | C] () -- C:\Windows\VX3000.ini
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2007.08.13 18:46:00 | 000,155,136 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\lame_enc.dll
[2006.10.26 02:06:48 | 000,064,000 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\vorbisenc.dll
[2006.10.26 02:06:48 | 000,019,456 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\vorbisfile.dll
[2006.10.26 02:06:46 | 000,143,872 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\vorbis.dll
[2006.10.26 02:06:36 | 000,015,872 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\ogg.dll
[2005.08.23 23:34:06 | 000,029,184 | ---- | C] () -- C:\Users\LOLKAS\AppData\Local\no23xwrapper.dll
[2005.04.08 04:16:43 | 000,037,683 | -H-- | C] () -- C:\Users\LOLKAS\AppData\Roaming\logs.dat
[2003.08.07 14:01:50 | 000,484,352 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2002.03.13 13:15:06 | 000,057,344 | ---- | C] () -- C:\Windows\System32\mupkernps11.dll
< End of report > --- --- --- |