nameless91 | 15.12.2011 16:05 | 8. OTL.exe ausgeführt ... hier sowohl OTL.txt als auch Extras.txt:
OTL Logfile: Code:
OTL logfile created on: 15.12.2011 15:53:30 - Run 3
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\***\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,98 Gb Total Physical Memory | 2,19 Gb Available Physical Memory | 54,94% Memory free
7,96 Gb Paging File | 6,05 Gb Available in Paging File | 75,96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 1811,92 Gb Total Space | 1600,08 Gb Free Space | 88,31% Space Free | Partition Type: NTFS
Drive D: | 50,00 Gb Total Space | 25,49 Gb Free Space | 50,99% Space Free | Partition Type: NTFS
Computer Name: ***-PC | User Name: *** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011.12.11 15:22:50 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\***\Downloads\OTL.exe
PRC - [2011.10.19 16:56:01 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2011.10.19 16:55:48 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011.10.19 16:55:48 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.08.11 22:51:47 | 000,243,360 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10v_ActiveX.exe
PRC - [2011.08.03 12:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011.06.06 20:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011.05.26 00:32:46 | 000,443,688 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe
PRC - [2011.04.30 08:32:54 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011.04.30 08:32:50 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2011.03.11 13:08:32 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2011.03.11 13:08:31 | 000,326,168 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010.09.14 05:45:56 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2010.09.14 05:45:44 | 000,508,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2010.05.14 06:02:56 | 000,075,048 | ---- | M] (cyberlink) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe
PRC - [2010.03.10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2009.08.30 22:03:42 | 001,654,784 | ---- | M] (Voyetra Turtle Beach, Inc.) -- C:\Program Files (x86)\Turtle Beach\AudioAdvantageMicro\TBAA.exe
PRC - [2009.07.06 14:22:04 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
PRC - [2009.01.26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008.09.19 09:22:04 | 000,548,864 | ---- | M] (BL) -- C:\Program Files (x86)\lg_fwupdate\fwupdate.exe
========== Modules (No Company Name) ==========
MOD - [2011.12.02 11:40:57 | 000,492,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\e8339b699235ebf2f904ccb8383de342\IAStorUtil.ni.dll
MOD - [2011.12.02 11:40:57 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\33cecc66284ef59208b639ec72b0f565\IAStorCommon.ni.dll
MOD - [2011.12.02 11:33:34 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b2622080e047040fa044dd21a04ff10d\System.Runtime.Remoting.ni.dll
MOD - [2011.12.02 11:33:13 | 012,433,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6e592e424a204aafeadbe22b6b31b9db\System.Windows.Forms.ni.dll
MOD - [2011.12.02 11:33:08 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\3b2cfd85528a27eb71dc41d8067359a1\System.Drawing.ni.dll
MOD - [2011.12.02 11:32:58 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d7a64c28cf0c90e6c48af4f7d6f9ed41\WindowsBase.ni.dll
MOD - [2011.12.02 11:32:55 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\130ad4d9719e566ca933ac7158a04203\System.Xml.ni.dll
MOD - [2011.12.02 11:32:52 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2d5bcbeb9475ef62189f605bcca1cec6\System.Configuration.ni.dll
MOD - [2011.12.02 11:32:51 | 007,963,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\abab08afa60a6f06bdde0fcc9649c379\System.ni.dll
MOD - [2011.12.02 11:32:45 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
MOD - [2011.05.16 15:03:17 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2010.11.13 01:08:41 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.04.22 12:42:56 | 007,745,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
MOD - [2010.04.22 12:42:54 | 002,121,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
MOD - [2010.04.22 12:42:54 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2011.08.12 00:38:04 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2010.09.23 02:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2011.12.09 14:49:42 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.10.19 16:56:01 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011.10.19 16:55:48 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.08.03 12:50:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011.06.06 20:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.04.30 08:32:54 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
SRV - [2011.03.11 13:08:32 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2011.03.11 13:08:31 | 000,326,168 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2010.09.14 05:45:56 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2010.09.14 05:45:44 | 000,508,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010.05.14 14:02:54 | 000,246,256 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe -- (CLKMSVC10_9EC60124)
SRV - [2010.03.18 21:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.05.21 21:35:32 | 000,923,136 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009.01.26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011.12.09 12:46:20 | 000,130,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2011.12.04 01:16:28 | 000,279,616 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.10.19 16:56:15 | 000,097,312 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2011.10.19 16:56:15 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2011.07.22 17:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS -- (SASDIFSV)
DRV:64bit: - [2011.07.12 22:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS -- (SASKUTIL)
DRV:64bit: - [2011.07.08 00:21:28 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2011.06.02 18:32:50 | 000,401,896 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2011.06.02 18:32:50 | 000,128,488 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2011.05.17 06:55:28 | 000,533,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.04.26 19:07:36 | 000,557,848 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011.03.11 13:08:31 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel(R)
DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.25 14:59:00 | 000,694,888 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTL8192su.sys -- (RTL8192su)
DRV:64bit: - [2010.11.21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.09.23 21:03:06 | 000,129,008 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:64bit: - [2010.09.14 05:45:52 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2010.09.14 05:45:50 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2010.09.14 05:45:48 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2010.09.14 05:45:44 | 000,760,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2009.09.08 17:45:24 | 001,306,624 | ---- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CM10264.sys -- (USBAU)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009.06.10 21:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\KavAntiBanner@Kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\KavAntiBanner@kaspersky.ru
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.12.01 16:07:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011.12.02 12:14:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.12.01 16:07:57 | 000,000,000 | ---D | M]
[2011.12.02 12:14:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Extensions
O1 HOSTS File: ([2011.12.14 11:36:10 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (VshareComplete) - {08337871-0e50-4031-9110-3bd21ca3c065} - C:\Users\***\AppData\Roaming\VshareComplete\64\VshareComplete64.dll (SimplyGen)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (VshareComplete) - {08337871-0e50-4031-9110-3bd21ca3c065} - C:\Users\***\AppData\Roaming\VshareComplete\VshareComplete.dll (SimplyGen)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [MedionReminder] C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe (CyberLink)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LGODDFU] C:\Program Files (x86)\lg_fwupdate\fwupdate.exe (BL)
O4 - HKLM..\Run: [MDS_Menu] C:\Program Files (x86)\CyberLink\MediaShow4\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RemoteControl9] C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Turtle Beach Audio Advantage Micro] C:\Program Files (x86)\Turtle Beach\AudioAdvantageMicro\TBAA.exe (Voyetra Turtle Beach, Inc.)
O4 - HKLM..\Run: [UpdatePPShortCut] C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Valve\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4:64bit: - HKLM..\RunOnce: [MedionReminder] C:\Program Files (x86)\CyberLink\PowerRecover\Reminder.exe (CyberLink)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm ()
O8:64bit: - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm ()
O8:64bit: - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm ()
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm ()
O8 - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm ()
O8 - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm ()
O9:64bit: - Extra Button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 File not found
O9:64bit: - Extra 'Tools' menuitem : eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 File not found
O9 - Extra Button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 File not found
O9 - Extra 'Tools' menuitem : eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 File not found
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 10.0.0)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 10.0.0)
O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5B90CD70-E56C-4456-B65F-11601705E13B}: DhcpNameServer = 192.168.244.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{63A3E769-8B26-4CC2-8F44-87F53971FE65}: DhcpNameServer = 192.168.178.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011.12.15 12:07:02 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\SUPERAntiSpyware.com
[2011.12.15 12:06:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2011.12.15 12:06:39 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011.12.15 12:06:39 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011.12.14 11:22:37 | 000,000,000 | ---D | C] -- C:\_OTL
[2011.12.14 10:18:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Malwarebytes
[2011.12.14 10:17:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.12.14 10:17:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.12.14 10:17:42 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.12.14 10:17:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.12.14 10:13:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2011.12.14 10:13:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2011.12.14 10:13:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG Tool Kit
[2011.12.14 10:13:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2011.12.14 10:13:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
[2011.12.11 18:58:58 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.12.11 18:58:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.12.11 18:51:11 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2011.12.11 16:42:15 | 000,000,000 | R--D | C] -- C:\MSOCache
[2011.12.11 01:41:40 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011.12.10 13:07:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Deutsch)
[2011.12.09 20:25:59 | 000,000,000 | ---D | C] -- C:\Anna-Lenas Scheiss Fuckin Shit Ordner
[2011.12.09 16:06:43 | 000,000,000 | ---D | C] -- C:\Another American Experience
[2011.12.09 15:24:11 | 000,000,000 | ---D | C] -- C:\ProgramData\VirtualizedApplications
[2011.12.09 13:18:44 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\T-Online
[2011.12.09 13:18:44 | 000,000,000 | ---D | C] -- C:\ProgramData\T-Online
[2011.12.09 13:15:31 | 000,000,000 | ---D | C] -- C:\T-Online
[2011.12.09 13:13:55 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\SoftGrid Client
[2011.12.09 13:13:54 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\SoftGrid Client
[2011.12.09 13:13:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011.12.09 13:13:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Application Virtualization Client
[2011.12.09 13:13:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2011.12.09 13:13:01 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\TP
[2011.12.09 13:08:00 | 000,000,000 | ---D | C] -- C:\An American Experience
[2011.12.09 08:57:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Jackpot Capital
[2011.12.08 18:07:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intertops Casino
[2011.12.08 18:01:37 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Diagnostics
[2011.12.08 15:25:43 | 000,000,000 | ---D | C] -- C:\projax
[2011.12.08 14:41:14 | 000,000,000 | ---D | C] -- C:\itunes
[2011.12.08 13:58:18 | 000,000,000 | ---D | C] -- C:\various
[2011.12.08 13:33:55 | 000,000,000 | ---D | C] -- C:\unknowntitle
[2011.12.08 13:32:05 | 000,000,000 | ---D | C] -- C:\uni
[2011.12.08 11:57:00 | 000,000,000 | R--D | C] -- C:\Beatles
[2011.12.08 01:18:59 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\vlc
[2011.12.08 01:18:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2011.12.08 00:43:49 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Free Download Manager
[2011.12.08 00:43:48 | 000,000,000 | ---D | C] -- C:\ProgramData\FreeDownloadManager.ORG
[2011.12.08 00:43:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Free Download Manager
[2011.12.08 00:24:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2011.12.08 00:23:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\JDownloader
[2011.12.06 23:43:34 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\NVIDIA
[2011.12.06 23:40:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2011.12.06 21:27:29 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\VshareComplete
[2011.12.06 21:27:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VshareComplete
[2011.12.06 21:26:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\vShare.tv plugin
[2011.12.06 16:27:29 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\Meine Paletten
[2011.12.06 16:27:27 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\Corel
[2011.12.06 16:27:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Protexis
[2011.12.06 16:27:16 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Corel
[2011.12.05 19:25:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Go Wild Casino
[2011.12.05 19:25:55 | 000,000,000 | ---D | C] -- C:\Microgaming
[2011.12.05 19:25:55 | 000,000,000 | ---D | C] -- C:\ProgramData\MGS
[2011.12.04 22:07:47 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CasinoClub
[2011.12.04 22:07:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CasinoClub
[2011.12.04 15:49:36 | 000,000,000 | ---D | C] -- C:\bay
[2011.12.04 14:58:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WS_FTP
[2011.12.04 14:58:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TMPGEnc Plus 2.5
[2011.12.04 14:58:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TMPGEnc
[2011.12.04 14:58:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\smartripper
[2011.12.04 14:58:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iPhoto Plus 4
[2011.12.04 14:58:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FrontPage Express
[2011.12.04 14:58:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\audiograbber
[2011.12.04 14:56:12 | 000,000,000 | ---D | C] -- C:\maike
[2011.12.04 14:56:01 | 000,000,000 | ---D | C] -- C:\len
[2011.12.04 14:55:59 | 000,000,000 | ---D | C] -- C:\job
[2011.12.04 14:53:16 | 000,000,000 | ---D | C] -- C:\files
[2011.12.04 14:53:16 | 000,000,000 | ---D | C] -- C:\bentus
[2011.12.04 14:53:16 | 000,000,000 | ---D | C] -- C:\alfotto
[2011.12.04 14:53:14 | 000,000,000 | ---D | C] -- C:\tyschan
[2011.12.04 14:53:08 | 000,000,000 | ---D | C] -- C:\trade
[2011.12.04 14:53:06 | 000,000,000 | ---D | C] -- C:\snes
[2011.12.04 14:52:57 | 000,000,000 | ---D | C] -- C:\shirt
[2011.12.04 14:34:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iNetBet Casino
[2011.12.04 14:30:08 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe
[2011.12.04 01:43:02 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\Rockstar Games
[2011.12.04 01:41:39 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Rockstar Games
[2011.12.04 01:32:55 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2011.12.04 01:31:50 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive
[2011.12.04 01:31:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
[2011.12.04 01:16:28 | 000,279,616 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2011.12.04 01:16:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2011.12.04 01:15:46 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\DAEMON Tools Lite
[2011.12.04 01:15:42 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2011.12.03 19:29:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lucky18 Casino
[2011.12.02 18:01:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Slotastic
[2011.12.02 15:43:06 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\CyberLink
[2011.12.02 15:41:44 | 000,115,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSINET.OCX
[2011.12.02 15:41:44 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Vb6stkit.dll
[2011.12.02 15:41:44 | 000,102,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VB6KO.DLL
[2011.12.02 15:41:44 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wbemdisp.tlb
[2011.12.02 15:41:44 | 000,016,384 | ---- | C] (CST) -- C:\Windows\SysWow64\lgfwunis.exe
[2011.12.02 15:41:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\lg_fwupdate
[2011.12.02 15:39:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\CyberLink
[2011.12.02 15:38:57 | 000,029,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3a.dll
[2011.12.02 15:36:26 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Cyberlink
[2011.12.02 15:34:47 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
[2011.12.02 15:34:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LightScribe
[2011.12.02 15:34:38 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
[2011.12.02 15:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
[2011.12.02 13:22:33 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\GTA San Andreas User Files
[2011.12.02 13:13:08 | 000,000,000 | ---D | C] -- C:\The Folder
[2011.12.02 12:29:07 | 000,000,000 | ---D | C] -- C:\thunderbird
[2011.12.02 12:14:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Thunderbird
[2011.12.02 12:14:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Thunderbird
[2011.12.02 12:14:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Mozilla
[2011.12.02 12:14:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2011.12.02 10:43:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2011.12.02 10:17:34 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011.12.02 10:17:34 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011.12.02 10:17:33 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011.12.02 10:17:33 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011.12.02 10:17:32 | 002,309,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011.12.02 10:17:32 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011.12.02 10:17:32 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011.12.02 10:17:31 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011.12.02 10:17:31 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011.12.02 07:35:47 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2011.12.02 07:35:47 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2011.12.02 07:35:47 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2011.12.02 07:35:47 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2011.12.02 07:35:39 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011.12.02 07:35:39 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2011.12.01 21:35:42 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\GTA San Andreas User Files
[2011.12.01 21:35:38 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2011.12.01 21:21:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rockstar Games
[2011.12.01 21:09:15 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\CyberLink
[2011.12.01 20:38:29 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\WinRAR
[2011.12.01 20:38:22 | 000,000,000 | ---D | C] -- C:\Program Files\Formats
[2011.12.01 20:35:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2011.12.01 18:56:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve
[2011.12.01 18:56:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Valve
[2011.12.01 18:32:10 | 000,000,000 | ---D | C] -- C:\torrent
[2011.12.01 18:25:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Azureus
[2011.12.01 18:24:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Azureus
[2011.12.01 18:24:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Azureus
[2011.12.01 16:59:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Windows Live Writer
[2011.12.01 16:59:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Windows Live Writer
[2011.12.01 16:57:25 | 000,000,000 | ---D | C] -- C:\Casino
[2011.12.01 16:45:58 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG
[2011.12.01 16:45:29 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\HP
[2011.12.01 16:45:28 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\HP
[2011.12.01 16:08:18 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Yahoo!
[2011.12.01 16:08:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yahoo!
[2011.12.01 16:06:43 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Product Assistant
[2011.12.01 16:06:26 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\spool
[2011.12.01 16:05:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\HP
[2011.12.01 16:05:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Hewlett-Packard
[2011.12.01 16:04:54 | 000,000,000 | ---D | C] -- C:\Windows\hpoj4500g510n-z
[2011.12.01 16:04:03 | 000,902,656 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpwwiax9.dll
[2011.12.01 16:04:03 | 000,742,912 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\SysNative\hpwtscl5.dll
[2011.12.01 16:04:03 | 000,551,424 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hppldcoi.dll
[2011.12.01 16:04:03 | 000,503,296 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\SysNative\hpwvst01.dll
[2011.12.01 16:03:55 | 000,642,360 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpzids40.dll
[2011.12.01 16:03:49 | 000,136,704 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\hpf3l092.dll
[2011.12.01 16:03:33 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2011.12.01 16:03:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
[2011.12.01 16:01:57 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011.12.01 15:31:53 | 000,000,000 | ---D | C] -- C:\rou
[2011.12.01 14:55:10 | 000,200,704 | ---- | C] (C-Media) -- C:\Windows\SysWow64\cmpa102.dll
[2011.12.01 14:54:08 | 000,524,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\difxapi.dll
[2011.12.01 14:53:56 | 001,306,624 | ---- | C] (C-Media Electronics Inc) -- C:\Windows\SysNative\drivers\CM10264.sys
[2011.12.01 14:53:56 | 000,323,584 | ---- | C] (Voyetra Turtle Beach) -- C:\Windows\AAMicroUninstall.exe
[2011.12.01 14:53:56 | 000,315,392 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\System\Fltr102.dll
[2011.12.01 14:53:56 | 000,229,376 | ---- | C] (Voyetra Turtle Beach, Inc.) -- C:\Windows\SysWow64\TBMicro.cpl
[2011.12.01 14:53:56 | 000,032,768 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\SysWow64\C102Prop.dll
[2011.12.01 14:53:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Turtle Beach
[2011.12.01 14:53:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Turtle Beach
[2011.12.01 14:41:56 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Adobe
[2011.12.01 14:37:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2011.12.01 14:36:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2011.12.01 14:26:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011.12.01 14:06:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011.12.01 14:06:18 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.12.01 10:21:04 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\photoOptimizeHistoryDataBase
[2011.12.01 10:21:03 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Ashampoo Photo Optimizer Medion
[2011.12.01 10:20:49 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Avira
[2011.12.01 10:19:52 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\watchmi
[2011.12.01 10:15:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2011.12.01 10:15:34 | 000,130,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2011.12.01 10:15:34 | 000,097,312 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2011.12.01 10:15:34 | 000,027,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avkmgr.sys
[2011.12.01 10:15:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2011.12.01 10:15:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2011.12.01 09:41:26 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Adobe
[2011.12.01 08:39:14 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Intel Corporation
[2011.12.01 08:39:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Medion Reminder
[2011.12.01 08:39:11 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Power2Go
[2011.12.01 08:38:50 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011.12.01 08:38:50 | 000,000,000 | R--D | C] -- C:\Users\***\Searches
[2011.12.01 08:38:50 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011.12.01 08:38:43 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Identities
[2011.12.01 08:38:41 | 000,000,000 | R--D | C] -- C:\Users\***\Contacts
[2011.12.01 08:38:41 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011.12.01 08:38:40 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\VirtualStore
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Vorlagen
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\AppData\Local\Verlauf
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\AppData\Local\Temporary Internet Files
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Startmenü
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\SendTo
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Recent
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Netzwerkumgebung
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Lokale Einstellungen
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Documents\Eigene Videos
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Documents\Eigene Musik
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Eigene Dateien
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Documents\Eigene Bilder
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Druckumgebung
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Cookies
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\AppData\Local\Anwendungsdaten
[2011.12.01 08:38:34 | 000,000,000 | -HSD | C] -- C:\Users\***\Anwendungsdaten
[2011.12.01 08:38:33 | 000,000,000 | --SD | C] -- C:\Users\***\AppData\Roaming\Microsoft
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Videos
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Saved Games
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Pictures
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Music
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Links
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Favorites
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Downloads
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Documents
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\Desktop
[2011.12.01 08:38:33 | 000,000,000 | R--D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011.12.01 08:38:33 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Temp
[2011.12.01 08:38:33 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Microsoft
[2011.12.01 08:38:33 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Media Center Programs
[2011.12.01 08:38:33 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Macromedia
[2011.12.01 08:38:33 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover
[2011.12.01 08:38:33 | 000,000,000 | ---D | C] -- C:\Users\***\AppData
[2011.12.01 08:35:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mediathek
[2011.12.01 08:34:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Corel
[2011.12.01 08:34:38 | 000,000,000 | ---D | C] -- C:\Program Files\PlayReady
[2011.12.01 08:34:28 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Corel
[2011.12.01 08:34:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Protexis
[2011.12.01 08:34:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel
[2011.12.01 08:33:54 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Essentials X5
[2011.12.01 08:33:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Corel
[2011.12.01 08:33:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Partner
[2011.12.01 08:32:27 | 000,000,000 | ---D | C] -- C:\ProgramData\TvdPersonal
[2011.12.01 08:19:12 | 000,000,000 | -HSD | C] -- C:\Recovery
[2011.12.01 08:19:12 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2011.12.01 08:19:08 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
========== Files - Modified Within 30 Days ==========
[2011.12.15 13:00:50 | 000,017,152 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.12.15 13:00:50 | 000,017,152 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.12.15 12:58:09 | 001,500,018 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.12.15 12:58:09 | 000,654,372 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2011.12.15 12:58:09 | 000,616,254 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.12.15 12:58:09 | 000,129,986 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2011.12.15 12:58:09 | 000,106,376 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.12.15 12:54:13 | 000,000,271 | ---- | M] () -- C:\Windows\lgfwup.ini
[2011.12.15 12:53:30 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.12.15 12:53:28 | 3206,787,072 | -HS- | M] () -- C:\hiberfil.sys
[2011.12.15 12:06:41 | 000,001,812 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011.12.15 12:01:27 | 000,014,380 | ---- | M] () -- C:\Users\***\Documents\cc_20111215_120124.reg
[2011.12.14 11:41:36 | 000,000,630 | ---- | M] () -- C:\Users\***\Documents\bericht.rtf
[2011.12.14 11:36:10 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2011.12.14 10:17:45 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.12.14 10:10:56 | 000,684,297 | ---- | M] () -- C:\Users\***\Desktop\unhide.exe
[2011.12.12 22:42:56 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111212_224254.reg
[2011.12.12 22:42:47 | 000,010,300 | ---- | M] () -- C:\Users\***\Documents\cc_20111212_224244.reg
[2011.12.11 17:57:42 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111211_175739.reg
[2011.12.11 17:57:14 | 000,021,334 | ---- | M] () -- C:\Users\***\Documents\cc_20111211_175707.reg
[2011.12.11 02:38:04 | 000,001,574 | ---- | M] () -- C:\Users\***\Desktop\eMail.lnk
[2011.12.10 06:35:11 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011.12.10 03:01:02 | 001,526,060 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011.12.09 12:46:20 | 000,130,760 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2011.12.09 10:58:00 | 000,391,792 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.12.08 15:12:27 | 000,000,600 | ---- | M] () -- C:\Users\***\PUTTY.RND
[2011.12.08 02:14:17 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111208_021415.reg
[2011.12.08 02:14:05 | 000,001,378 | ---- | M] () -- C:\Users\***\Documents\cc_20111208_021403.reg
[2011.12.08 00:24:06 | 000,001,161 | ---- | M] () -- C:\prefs.js
[2011.12.06 21:43:52 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111206_214350.reg
[2011.12.06 12:28:52 | 000,001,186 | ---- | M] () -- C:\Users\***\Documents\cc_20111206_122849.reg
[2011.12.05 19:27:06 | 000,001,749 | ---- | M] () -- C:\Users\Public\Desktop\Go Wild Casino.lnk
[2011.12.04 22:07:47 | 000,000,750 | ---- | M] () -- C:\Users\***\Desktop\CasinoClub.lnk
[2011.12.04 18:18:53 | 000,002,023 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.12.04 01:55:47 | 000,000,740 | ---- | M] () -- C:\Users\***\Documents\cc_20111204_015545.reg
[2011.12.04 01:32:55 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2011.12.04 01:16:28 | 000,279,616 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2011.12.02 18:02:08 | 000,001,884 | ---- | M] () -- C:\Users\Public\Desktop\Slotastic.lnk
[2011.12.02 16:38:24 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111202_163822.reg
[2011.12.02 16:38:10 | 000,029,470 | ---- | M] () -- C:\Users\***\Documents\cc_20111202_163807.reg
[2011.12.02 15:38:55 | 000,029,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3a.dll
[2011.12.02 12:04:11 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111202_120408.reg
[2011.12.02 12:04:00 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111202_120357.reg
[2011.12.02 12:03:49 | 000,000,206 | ---- | M] () -- C:\Users\***\Documents\cc_20111202_120347.reg
[2011.12.02 12:03:38 | 000,001,060 | ---- | M] () -- C:\Users\***\Documents\cc_20111202_120335.reg
[2011.12.02 12:03:20 | 000,038,304 | ---- | M] () -- C:\Users\***\Documents\cc_20111202_120311.reg
[2011.12.01 21:51:08 | 000,001,221 | ---- | M] () -- C:\Users\***\Desktop\GTA San Andreas.lnk
[2011.12.01 16:45:25 | 000,241,431 | ---- | M] () -- C:\Windows\hpwins28.dat
[2011.12.01 16:17:49 | 000,159,772 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011.12.01 16:17:49 | 000,159,772 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011.12.01 16:06:39 | 000,001,355 | ---- | M] () -- C:\Users\Public\Desktop\HP Solution Center.lnk
[2011.12.01 16:06:05 | 000,002,103 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011.12.01 14:55:10 | 000,000,135 | ---- | M] () -- C:\Windows\Cm102.ini.imi
[2011.12.01 14:55:10 | 000,000,133 | ---- | M] () -- C:\Windows\System\Dlap.pfx
[2011.12.01 14:55:10 | 000,000,107 | ---- | M] () -- C:\Windows\Cm102.ini.cfl
[2011.12.01 14:54:25 | 000,000,084 | ---- | M] () -- C:\Windows\System\Cm102.ini
[2011.12.01 14:37:02 | 000,001,262 | ---- | M] () -- C:\Users\***\Desktop\Spybot - Search & Destroy.lnk
[2011.12.01 14:10:03 | 000,093,158 | ---- | M] () -- C:\Users\***\Documents\cc_20111201_140954.reg
[2011.12.01 10:15:38 | 000,002,070 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
========== Files Created - No Company Name ==========
[2011.12.15 12:06:41 | 000,001,812 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011.12.15 12:01:26 | 000,014,380 | ---- | C] () -- C:\Users\***\Documents\cc_20111215_120124.reg
[2011.12.14 10:17:45 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.12.14 10:16:02 | 000,000,630 | ---- | C] () -- C:\Users\***\Documents\bericht.rtf
[2011.12.14 10:13:16 | 000,002,309 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Office 2010.lnk
[2011.12.14 10:13:16 | 000,002,070 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2011.12.14 10:13:16 | 000,002,023 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.12.14 10:13:16 | 000,001,943 | ---- | C] () -- C:\Users\Public\Desktop\MEDION Serviceportal.lnk
[2011.12.14 10:13:16 | 000,001,884 | ---- | C] () -- C:\Users\Public\Desktop\Slotastic.lnk
[2011.12.14 10:13:16 | 000,001,749 | ---- | C] () -- C:\Users\Public\Desktop\Go Wild Casino.lnk
[2011.12.14 10:13:16 | 000,001,355 | ---- | C] () -- C:\Users\Public\Desktop\HP Solution Center.lnk
[2011.12.14 10:13:14 | 000,002,103 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
[2011.12.14 10:13:13 | 000,002,490 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011.12.14 10:13:13 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011.12.14 10:13:13 | 000,002,360 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2011.12.14 10:13:13 | 000,002,309 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
[2011.12.14 10:13:13 | 000,002,102 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2011.12.14 10:13:13 | 000,001,970 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2011.12.14 10:13:13 | 000,001,949 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
[2011.12.14 10:13:13 | 000,001,928 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2011.12.14 10:13:13 | 000,001,547 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2011.12.14 10:13:13 | 000,001,462 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[2011.12.14 10:13:13 | 000,001,378 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[2011.12.14 10:13:13 | 000,001,352 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
[2011.12.14 10:13:13 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011.12.14 10:13:13 | 000,001,330 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
[2011.12.14 10:13:13 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011.12.14 10:13:13 | 000,001,309 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[2011.12.14 10:13:13 | 000,001,246 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
[2011.12.14 10:13:13 | 000,001,210 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
[2011.12.14 10:13:13 | 000,001,060 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
[2011.12.14 10:10:52 | 000,684,297 | ---- | C] () -- C:\Users\***\Desktop\unhide.exe
[2011.12.12 22:42:55 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111212_224254.reg
[2011.12.12 22:42:46 | 000,010,300 | ---- | C] () -- C:\Users\***\Documents\cc_20111212_224244.reg
[2011.12.11 17:57:40 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111211_175739.reg
[2011.12.11 17:57:12 | 000,021,334 | ---- | C] () -- C:\Users\***\Documents\cc_20111211_175707.reg
[2011.12.11 02:38:04 | 000,001,574 | ---- | C] () -- C:\Users\***\Desktop\eMail.lnk
[2011.12.10 06:35:11 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011.12.09 13:13:19 | 001,526,060 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011.12.08 15:12:27 | 000,000,600 | ---- | C] () -- C:\Users\***\PUTTY.RND
[2011.12.08 02:14:16 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111208_021415.reg
[2011.12.08 02:14:04 | 000,001,378 | ---- | C] () -- C:\Users\***\Documents\cc_20111208_021403.reg
[2011.12.08 00:24:06 | 000,001,161 | ---- | C] () -- C:\prefs.js
[2011.12.06 21:43:51 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111206_214350.reg
[2011.12.06 12:28:51 | 000,001,186 | ---- | C] () -- C:\Users\***\Documents\cc_20111206_122849.reg
[2011.12.04 22:07:47 | 000,000,750 | ---- | C] () -- C:\Users\***\Desktop\CasinoClub.lnk
[2011.12.04 01:55:46 | 000,000,740 | ---- | C] () -- C:\Users\***\Documents\cc_20111204_015545.reg
[2011.12.02 16:38:23 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111202_163822.reg
[2011.12.02 16:38:09 | 000,029,470 | ---- | C] () -- C:\Users\***\Documents\cc_20111202_163807.reg
[2011.12.02 15:41:46 | 000,000,271 | ---- | C] () -- C:\Windows\lgfwup.ini
[2011.12.02 12:04:09 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111202_120408.reg
[2011.12.02 12:03:59 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111202_120357.reg
[2011.12.02 12:03:48 | 000,000,206 | ---- | C] () -- C:\Users\***\Documents\cc_20111202_120347.reg
[2011.12.02 12:03:36 | 000,001,060 | ---- | C] () -- C:\Users\***\Documents\cc_20111202_120335.reg
[2011.12.02 12:03:16 | 000,038,304 | ---- | C] () -- C:\Users\***\Documents\cc_20111202_120311.reg
[2011.12.01 21:51:08 | 000,001,221 | ---- | C] () -- C:\Users\***\Desktop\GTA San Andreas.lnk
[2011.12.01 16:13:37 | 3206,787,072 | -HS- | C] () -- C:\hiberfil.sys
[2011.12.01 16:02:09 | 000,241,431 | ---- | C] () -- C:\Windows\hpwins28.dat
[2011.12.01 14:55:10 | 000,787,456 | ---- | C] () -- C:\Windows\SysNative\Cmeau102.exe
[2011.12.01 14:55:10 | 000,143,360 | ---- | C] () -- C:\Windows\Vmix102.dll
[2011.12.01 14:55:10 | 000,000,133 | ---- | C] () -- C:\Windows\System\Dlap.pfx
[2011.12.01 14:55:10 | 000,000,107 | ---- | C] () -- C:\Windows\Cm102.ini.cfl
[2011.12.01 14:54:44 | 000,000,135 | ---- | C] () -- C:\Windows\Cm102.ini.imi
[2011.12.01 14:54:25 | 000,359,424 | ---- | C] () -- C:\Windows\SysNative\CmiInstallResAll64.dll
[2011.12.01 14:54:25 | 000,000,494 | ---- | C] () -- C:\Windows\Cm102.ini.cfg
[2011.12.01 14:54:25 | 000,000,084 | ---- | C] () -- C:\Windows\System\Cm102.ini
[2011.12.01 14:54:07 | 000,000,449 | ---- | C] () -- C:\Windows\cm102.ini
[2011.12.01 14:37:02 | 000,001,262 | ---- | C] () -- C:\Users\***\Desktop\Spybot - Search & Destroy.lnk
[2011.12.01 14:10:01 | 000,093,158 | ---- | C] () -- C:\Users\***\Documents\cc_20111201_140954.reg
[2011.12.01 08:38:56 | 000,001,409 | ---- | C] () -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011.12.01 08:38:51 | 000,001,260 | ---- | C] () -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2009.08.18 08:18:40 | 000,000,418 | ---- | C] () -- C:\Windows\hpwmdl28.dat
[2009.07.14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 22:59:36 | 000,982,196 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2009.07.13 22:59:36 | 000,139,824 | ---- | C] () -- C:\Windows\SysWow64\igfcg500.bin
[2009.07.13 22:59:36 | 000,097,448 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2009.07.13 22:59:35 | 000,417,344 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2008.10.22 05:29:06 | 000,173,550 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
========== LOP Check ==========
[2011.12.15 12:00:56 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Azureus
[2011.12.15 12:00:56 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\DAEMON Tools Lite
[2011.12.15 12:00:56 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Free Download Manager
[2011.12.14 11:22:38 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\SoftGrid Client
[2011.12.09 13:18:44 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\T-Online
[2011.12.02 12:14:09 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Thunderbird
[2011.12.09 13:14:01 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\TP
[2011.12.06 21:27:29 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\VshareComplete
[2011.12.01 16:59:03 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Windows Live Writer
[2011.12.11 01:42:05 | 000,029,506 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report > --- --- --- |