Ok hier die geforderten logs:
OTl-fix-log: Code:
All processes killed
========== OTL ==========
========== SERVICES/DRIVERS ==========
========== FILES ==========
C:\Windows\Mnabea.exe moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
User: ***
->Temp folder emptied: 301993041 bytes
->Temporary Internet Files folder emptied: 59692714 bytes
->Java cache emptied: 8092426 bytes
->FireFox cache emptied: 68442907 bytes
->Google Chrome cache emptied: 32564366 bytes
->Flash cache emptied: 116808 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 311296 bytes
%systemroot%\System32 .tmp files removed: 3175472 bytes
%systemroot%\System32 (64bit) .tmp files removed: 508928 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 66016 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50434 bytes
RecycleBin emptied: 2097 bytes
Total Files Cleaned = 453,00 mb
OTL by OldTimer - Version 3.2.7.0 log created on 06292010_224303
Files\Folders moved on Reboot...
C:\Users\***\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot... Hier der Super anti spyware log: Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 06/29/2010 at 11:28 PM
Application Version : 4.39.1002
Core Rules Database Version : 5134
Trace Rules Database Version: 2946
Scan type : Complete Scan
Total Scan Time : 00:36:04
Memory items scanned : 550
Memory threats detected : 0
Registry items scanned : 14970
Registry threats detected : 2
File items scanned : 38876
File threats detected : 175
Trojan.Agent/Gen-FraudLoad
C:\SPIELE\WORMS WORLD PARTY\WWP.EXE
(x86) HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\wwp.exe
(x86) HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\wwp.exe#Path
C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\TEAM17\WORMS WORLD PARTY\WORMS WORLD PARTY.LNK
C:\USERS\***\APPDATA\LOCAL\MICROSOFT\WINDOWS\GAMEEXPLORER\{FB1C1E48-806A-41BA-81F4-60603EFFFC39}\PLAYTASKS\0\SPIELEN.LNK
Adware.Tracking Cookie
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@collective-media[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@webmasterplan[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@shop.zanox[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@fastclick[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@myroitracking[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@revenue[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@trafficare[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@zbox.zanox[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ad.adition[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@tracking.mindshare[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@casalemedia[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@revsci[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@mtvn.112.2o7[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@www.mktrack[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@www.zanox-affiliate[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@unitymedia[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@server.cpmstar[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ar.atwola[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@adviva[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@adserver.adtechus[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@smartadserver[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@tracking.mlsat02[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@yieldmanager[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@adbrite[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ads.myadplatform[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ad.adnet[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ads.pointroll[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@doubleclick[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@content.yieldmanager[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@tradedoubler[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@www.windowsmedia[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ad.trigami[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ads.smartadx[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@cdn5.specificclick[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@247realmedia[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@adtech[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@apmebf[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@smartadx[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@2o7[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@media6degrees[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@eas.apm.emediate[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@yadro[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@msnportal.112.2o7[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@specificclick[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@guj.122.2o7[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@kontera[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ad.yieldmanager[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@im.banner.t-online[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@clicksor[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@questionmarket[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@zanox[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@eaeacom.112.2o7[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@tribalfusion[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@www.etracker[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ads.creative-serving[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@atdmt[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@mediaplex[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@serving-sys[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@viacom.adbureau[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@bs.serving-sys[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@pro-market[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@adfarm1.adition[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@indiads[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@dmtracker[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@tracking.quisma[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ad.zanox[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@tracking.hannoversche[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ads.ad4game[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@ad.adc-serv[1].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@zedo[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@atwola[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@content.yieldmanager[3].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@overture[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@pointroll[2].txt
C:\Users\***\AppData\Roaming\Microsoft\Windows\Cookies\***@trackinggroup[2].txt
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adfarm1.adition.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.doubleclick.net [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.richmedia.yahoo.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.content.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
questions.netq.ch [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.adfarm1.adition.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.content.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.bs.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.vip.clickzs.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.sextapesonly.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.yadro.ru [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.usenext.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.usenext.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
statse.webtrendslive.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
server.lon.liveperson.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
server.lon.liveperson.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.revsci.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
uk.sitestat.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
uk.sitestat.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.imrworldwide.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.imrworldwide.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.deutschepostag.112.2o7.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.etracker.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.4stats.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.webstats4u.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.rambler.ru [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.xiti.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.co2stats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.co2stats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.xxx-spoof.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.xxx-spoof.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.mediafire.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.mediafire.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.mediafire.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
de.sitestat.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.etracker.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.etracker.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
questions.netq.ch [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.youporn.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.youporn.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.youporn.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.youporn.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www7.addfreestats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.statcounter.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.adscendmedia.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
da-tracking.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.histats.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
de.sitestat.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.revsci.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.revsci.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.revsci.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.revsci.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
s03.flagcounter.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
click.mediadome.ru [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.adfarm1.adition.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.adfarm1.adition.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.overture.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.overture.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.multimediaxis.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.multimediaxis.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
tracking.gameforge.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.adlegend.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.doubleclick.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
www.etracker.de [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
de.sitestat.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.vodafonegroup.122.2o7.net [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.statcounter.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
.clickaider.com [ C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\djznzq1w.default\cookies.sqlite ]
Trojan.Agent/Gen-CDesc[Gen]
C:\_OTL\MOVEDFILES\06292010_224303\C_WINDOWS\MNABEA.EXE Hier der Estlog: Code:
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6211
# api_version=3.0.2
# EOSSerial=1787c3ab60f93f48ac34b36213c54b58
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2010-06-30 01:44:01
# local_time=2010-06-30 03:44:01 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7600 NT
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=1797 16775141 100 94 523284 20241154 73207 0
# compatibility_mode=5893 16776573 100 94 161155 29529740 0 0
# compatibility_mode=7937 16777213 100 100 1612919 13456595 0 0
# compatibility_mode=8192 67108863 100 0 113 113 0 0
# scanned=260005
# found=3
# cleaned=3
# scan_time=5551
C:\Users\***\Desktop\Downloads\WWP_Colour_Fix_for_Vista_v1.1.zip probably a variant of Win32/Agent trojan (deleted - quarantined) 00000000000000000000000000000000 C
C:\Users\***\Downloads\Garmin Unlock Generator v.1.5 FINAL.rar a variant of Win32/Adware.Virtumonde.NDI application (deleted - quarantined) 00000000000000000000000000000000 C
C:\Users\***\Downloads\Nero.9.MULTiLANGUAGE.DVD-RESTORE\nero9.iso Win32/Toolbar.AskSBar application (deleted - quarantined) 00000000000000000000000000000000 C Hier der Otl-log: Code:
OTL logfile created on: 30.06.2010 15:58:35 - Run 2
OTL by OldTimer - Version 3.2.7.0 Folder = C:\Users\Sebi\Desktop\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 65,00% Memory free
8,00 Gb Paging File | 7,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 180,76 Gb Free Space | 38,82% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: SEBI-PC
Current User Name: Sebi
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Minimal
Quick Scan
========== Processes (SafeList) ==========
PRC - C:\Users\Sebi\Desktop\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe (Crawler.com)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE ()
PRC - C:\Program Files (x86)\Launchy\Launchy.exe ()
========== Modules (SafeList) ==========
MOD - C:\Users\Sebi\Desktop\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV:64bit: - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SRV:64bit: - (UmRdpService) -- C:\Windows\SysNative\umrdp.dll (Microsoft Corporation)
SRV:64bit: - (PeerDistSvc) -- C:\Windows\SysNative\PeerDistSvc.dll (Microsoft Corporation)
SRV:64bit: - (CscService) -- C:\Windows\SysNative\cscsvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (msvsmon90) -- C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe (Microsoft Corporation)
SRV - (Akamai) -- c:\program files (x86)\common files\akamai\rswin_3725.dll ()
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (sp_rssrv) -- C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe (Crawler.com)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (TeamViewer5) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (npggsvc) -- C:\Windows\SysWow64\GameMon.des (INCA Internet Co., Ltd.)
SRV - (VSS) -- C:\Windows\Vss [2009.07.14 05:20:14 | 000,000,000 | ---D | M]
SRV - (MSDTC) -- C:\Windows\SysWOW64\Msdtc [2009.07.14 05:20:14 | 000,000,000 | ---D | M]
SRV - (vds) -- C:\Windows\SysWOW64\wbem\vds.mof ()
SRV - (MSSQL$SQLEXPRESS) SQL Server (SQLEXPRESS) -- c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (SQLAgent$SQLEXPRESS) SQL Server-Agent (SQLEXPRESS) -- c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE (Microsoft Corporation)
SRV - (ES lite Service) -- C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE ()
SRV - (Microsoft Office Groove Audit Service) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
SRV - (MSSQLServerADHelper100) -- c:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV:64bit: - (dc3d) MS Hardware Device Detection Driver (USB) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira GmbH)
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira GmbH)
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys ()
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (RtNdPt60) -- C:\Windows\SysNative\drivers\RtNdPt60.sys (Realtek )
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (vmbus) -- C:\Windows\SysNative\drivers\vmbus.sys (Microsoft Corporation)
DRV:64bit: - (storflt) -- C:\Windows\SysNative\drivers\vmstorfl.sys (Microsoft Corporation)
DRV:64bit: - (storvsc) -- C:\Windows\SysNative\drivers\storvsc.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (s3cap) -- C:\Windows\SysNative\drivers\vms3cap.sys (Microsoft Corporation)
DRV:64bit: - (VMBusHID) -- C:\Windows\SysNative\drivers\VMBusHID.sys (Microsoft Corporation)
DRV:64bit: - (CSC) -- C:\Windows\SysNative\drivers\csc.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (grmnusb) -- C:\Windows\SysNative\drivers\grmnusb.sys (GARMIN Corp.)
DRV:64bit: - (KMWDFILTER) -- C:\Windows\SysNative\drivers\KMWDFILTER.sys (Windows (R) Codename Longhorn DDK provider)
DRV:64bit: - (TEAM) Realtek Virtual Miniport Driver for Teaming (NDIS 6.0) -- C:\Windows\SysNative\drivers\RtTeam60.sys (Realtek Corporation)
DRV:64bit: - (RTTEAMPT) Realtek Teaming Protocol Driver (NDIS 6.0) -- C:\Windows\SysNative\drivers\RtTeam60.sys (Realtek Corporation)
DRV:64bit: - (RTVLANPT) Realtek Vlan Protocol Driver (NDIS 6.2) -- C:\Windows\SysNative\drivers\RtVlan60.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) Server 2003 DDK provider)
DRV - (SASDIFSV) -- C:\Programme\SUPERAntiSpyware\sasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASKUTIL) -- C:\Programme\SUPERAntiSpyware\saskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (CSC) -- C:\Windows\CSC [2010.01.22 01:12:00 | 000,000,000 | ---D | M]
DRV - (mpsdrv) -- C:\Windows\SysWOW64\wbem\mpsdrv.mof ()
DRV - (Tcpip) -- C:\Windows\SysWOW64\wbem\tcpip.mof ()
DRV - (MOUSEWDFilter) -- C:\Windows\SysWOW64\drivers\MOUSEWD.SYS ()
DRV - (NPPTNT2) -- C:\Windows\SysWOW64\npptNT2.sys (INCA Internet Co., Ltd.)
DRV - (ASPI) -- C:\Windows\SysWOW64\drivers\ASPI32.SYS (Adaptec)
DRV - (zlportio) -- C:\Spiele\Ultrastar\Ultrastar\zlportio.sys (SpecoSoft)
DRV - (TVicPort) -- C:\Windows\SysWOW64\drivers\TVICPORT.SYS ()
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.ask.com?o=14597&l=dis
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5B 11 36 E8 CD C9 CA 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2
FF - prefs.js..extensions.enabledItems: {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}:2.9.2
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7.3
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.10
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.9
FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.8
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.3
FF - prefs.js..extensions.enabledItems: {7BDB48D1-CD94-4B99-A5A4-E418B9EE6532}:0.9.1
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.06.27 16:54:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.06.27 16:54:41 | 000,000,000 | ---D | M]
[2010.04.18 20:27:46 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\mozilla\Extensions
[2010.06.29 22:28:41 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions
[2010.04.18 20:35:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
[2010.05.24 22:57:14 | 000,000,000 | ---D | M] (Stylish) -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}
[2010.06.28 19:03:53 | 000,000,000 | ---D | M] (Destroy the Web) -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\{7BDB48D1-CD94-4B99-A5A4-E418B9EE6532}
[2010.04.28 20:22:59 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.05.30 18:59:34 | 000,000,000 | ---D | M] (Web Developer) -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
[2010.05.01 13:26:23 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.05.30 08:25:08 | 000,000,000 | ---D | M] (DownThemAll!) -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2010.06.27 17:01:35 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\mozilla\Firefox\Profiles\djznzq1w.default\extensions\personas@christopher.beard
[2010.06.21 18:29:20 | 000,002,354 | ---- | M] () -- C:\Users\Sebi\AppData\Roaming\Mozilla\FireFox\Profiles\djznzq1w.default\searchplugins\ecosia.xml
[2010.06.21 18:26:48 | 000,002,314 | ---- | M] () -- C:\Users\Sebi\AppData\Roaming\Mozilla\FireFox\Profiles\djznzq1w.default\searchplugins\forestle-de.xml
[2010.06.29 22:28:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions
[2010.05.24 21:06:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.05.24 21:05:59 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2010.04.01 18:54:38 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.04.01 18:54:38 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2010.04.01 18:54:38 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2010.04.01 18:54:38 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2010.04.01 18:54:38 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2010.04.14 20:58:25 | 000,000,872 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 71i.de
O1 - Hosts: 127.0.0.1 adicqserver.71i.de
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll ()
O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutorun = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm ()
O8:64bit: - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm ()
O8:64bit: - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm ()
O8:64bit: - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm ()
O8 - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm ()
O8 - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm ()
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: Programsand - {abaf9c46-b4e9-478c-ac93-a56dd5b7168c} - C:\Program Files (x86)\Common Files\Programs\Programsand.dll File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{62209535-0751-11df-a420-00241d8dea96}\Shell - "" = AutoRun
O33 - MountPoints2\{62209535-0751-11df-a420-00241d8dea96}\Shell\AutoRun\command - "" = H:\Setup.exe -- File not found
O33 - MountPoints2\{7f89f060-0fe2-11df-9897-00241d8dea96}\Shell - "" = AutoRun
O33 - MountPoints2\{7f89f060-0fe2-11df-9897-00241d8dea96}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 90 Days ==========
[2010.06.30 14:09:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2010.06.29 22:49:03 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\SUPERAntiSpyware.com
[2010.06.29 22:49:03 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2010.06.29 22:48:58 | 000,000,000 | ---D | C] -- C:\ProgramData\!SASCORE
[2010.06.29 22:48:57 | 000,000,000 | ---D | C] -- C:\Programme\SUPERAntiSpyware
[2010.06.29 22:47:42 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\Antivirus
[2010.06.29 22:43:03 | 000,000,000 | ---D | C] -- C:\_OTL
[2010.06.29 22:24:15 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2010.06.29 22:24:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Smart PC Solutions
[2010.06.29 20:25:31 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\Malwarebytes
[2010.06.29 20:25:22 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.06.29 20:25:21 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010.06.29 20:25:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.06.29 20:25:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.06.28 22:17:13 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\ImTOO
[2010.06.28 22:16:00 | 000,000,000 | ---D | C] -- C:\Programme\ImTOO
[2010.06.28 22:14:44 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\ImTOO Video Converter Ultimate v6.0.3 (Build 0430)
[2010.06.28 21:46:52 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010.06.27 21:34:05 | 000,000,000 | ---D | C] -- C:\ProgramData\2DBoy
[2010.06.27 21:33:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WorldOfGoo
[2010.06.27 16:25:28 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2010.06.27 13:16:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Gameforge4D
[2010.06.26 10:07:59 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\0052_Another_Code_Two_Memories_PROPER_EUR_NDS-TRM
[2010.06.24 18:58:46 | 000,000,000 | ---D | C] -- C:\ProgramData\NOS
[2010.06.23 18:27:16 | 000,000,000 | R--D | C] -- C:\Users\Sebi\Documents\Scanned Documents
[2010.06.23 18:27:16 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Documents\Fax
[2010.06.20 21:28:33 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\Media Player Classic
[2010.06.20 21:22:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XviD
[2010.06.20 21:22:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Gabest
[2010.06.20 21:22:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AutoGK
[2010.06.20 14:00:05 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\SSBR
[2010.06.20 14:00:04 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\SSBRumble Demo 0.8
[2010.06.19 19:53:47 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\408002942 Wölkchen
[2010.06.19 19:37:29 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\Usb backup
[2010.06.15 15:13:07 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\Counter Ops
[2010.06.12 14:19:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PC Inspector File Recovery
[2010.06.12 13:46:45 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\bilder
[2010.06.11 23:01:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2010.06.11 23:01:32 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010.06.11 23:01:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2010.06.11 23:00:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2010.06.11 22:59:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2010.06.09 21:27:45 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\Alles Atze
[2010.06.08 23:04:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DDVideoDPGAVI
[2010.06.08 23:04:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Programs
[2010.06.01 22:11:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2010.06.01 16:06:06 | 002,610,008 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2010.06.01 16:06:06 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2010.06.01 16:06:06 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2010.06.01 16:06:06 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2010.06.01 16:06:06 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2010.06.01 16:06:05 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2010.06.01 16:06:05 | 001,733,464 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll
[2010.06.01 16:06:05 | 000,372,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2010.06.01 16:06:05 | 000,335,192 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2010.06.01 16:06:05 | 000,335,192 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2010.06.01 16:06:05 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2010.06.01 16:06:05 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2010.06.01 16:06:05 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2010.06.01 16:06:05 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2010.06.01 16:06:05 | 000,099,016 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2010.06.01 16:06:05 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2010.06.01 16:06:04 | 001,325,328 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2010.06.01 16:06:04 | 001,178,384 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2010.06.01 16:06:04 | 001,110,800 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2010.06.01 16:06:04 | 000,504,592 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2010.06.01 16:06:04 | 000,489,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2010.06.01 16:06:04 | 000,474,896 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2010.06.01 16:06:04 | 000,330,656 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2010.06.01 16:06:04 | 000,315,152 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2010.06.01 16:06:04 | 000,268,560 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2010.06.01 16:06:04 | 000,265,488 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2010.06.01 16:06:04 | 000,123,664 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2010.06.01 16:06:04 | 000,123,152 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2010.06.01 16:06:04 | 000,122,128 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2010.06.01 16:01:04 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2010.06.01 16:01:04 | 000,000,000 | ---D | C] -- C:\Programme\Realtek
[2010.05.22 14:25:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PhoenixBit
[2010.05.22 11:57:13 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Local\Apple Computer
[2010.05.22 11:57:12 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\Apple Computer
[2010.05.22 11:57:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2010.05.22 11:56:53 | 000,000,000 | ---D | C] -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2010.05.22 11:56:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010.05.22 11:55:58 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Local\Apple
[2010.05.22 11:55:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2010.05.20 20:33:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
[2010.05.20 20:23:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2010.05.19 21:48:51 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\Audacity
[2010.05.19 21:47:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
[2010.05.15 20:42:24 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\USB stick
[2010.05.13 17:09:50 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\apptest
[2010.05.13 10:21:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OnlineControl
[2010.05.12 17:41:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2010.05.12 17:41:26 | 000,276,480 | ---- | C] (Hewlett Packard Corporation) -- C:\Windows\SysWow64\hpcc3094.DLL
[2010.05.10 18:40:16 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Documents\Downloads
[2010.05.10 18:39:22 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Local\Google
[2010.05.07 20:02:49 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\NVIDIA
[2010.05.07 20:02:47 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Documents\EA Games
[2010.05.07 19:50:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2010.05.02 09:51:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity
[2010.05.01 13:35:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VLMC
[2010.04.30 16:56:41 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\dvdcss
[2010.04.30 16:49:39 | 001,435,272 | ---- | C] (Macromedia, Inc.) -- C:\Windows\SysWow64\Flash.ocx
[2010.04.30 16:45:23 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\NeroDigital(TM)
[2010.04.30 13:54:01 | 000,000,000 | ---D | C] -- C:\Medion
[2010.04.25 14:28:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Crazy Machines II
[2010.04.25 14:26:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010.04.23 22:19:29 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Documents\BewerbungsMaster
[2010.04.23 22:19:29 | 000,000,000 | ---D | C] -- C:\ProgramData\BewerbungsMaster
[2010.04.23 22:18:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BEWERBUNGSMASTER
[2010.04.22 15:15:23 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Desktop\Dolphin
[2010.04.22 14:56:59 | 000,064,616 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2010.04.22 14:56:59 | 000,056,424 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010.04.21 21:39:11 | 000,050,688 | ---- | C] (Realtek Corporation) -- C:\Windows\SysNative\drivers\RtTeam60.sys
[2010.04.21 21:39:11 | 000,027,136 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\RtNdPt60.sys
[2010.04.21 21:39:11 | 000,024,064 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\drivers\RtVlan60.sys
[2010.04.21 21:38:00 | 000,295,424 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2010.04.21 21:38:00 | 000,097,792 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2010.04.21 21:31:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2010.04.20 20:32:48 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Documents\Clonk reg key
[2010.04.20 14:59:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2010.04.19 20:06:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AutoHotkey
[2010.04.18 20:27:40 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\Mozilla
[2010.04.18 20:27:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010.04.18 19:42:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2010.04.18 13:42:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Garmin GPS Plugin
[2010.04.18 12:31:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Think Tanks
[2010.04.18 12:11:19 | 000,000,000 | ---D | C] -- C:\Users\Sebi\Documents\Mein Garmin
[2010.04.18 12:11:19 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\GARMIN
[2010.04.18 12:11:19 | 000,000,000 | ---D | C] -- C:\ProgramData\GARMIN
[2010.04.18 12:10:21 | 000,000,000 | ---D | C] -- C:\Programme\DIFX
[2010.04.18 12:10:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Garmin
[2010.04.16 13:45:55 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\Dev-Cpp
[2010.04.16 13:45:44 | 000,000,000 | ---D | C] -- C:\Programme\Dev-Cpp
[2010.04.15 16:38:21 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\TeamViewer
[2010.04.15 16:38:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2010.04.14 20:45:27 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\McLoad
[2010.04.05 18:29:55 | 000,000,000 | ---D | C] -- C:\Programme\TeraCopy
[2010.04.05 17:59:56 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\TeraCopy
[2010.04.05 14:34:35 | 000,000,000 | ---D | C] -- C:\Users\Sebi\AppData\Roaming\TuneUp Software
[2010.04.05 14:34:05 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2010.04.05 14:34:02 | 000,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2002.11.11 03:00:10 | 000,073,728 | ---- | C] ( ) -- C:\Windows\SysWow64\SlpV24.dll
========== Files - Modified Within 90 Days ==========
[2010.06.30 15:58:56 | 003,145,728 | -HS- | M] () -- C:\Users\Sebi\ntuser.dat
[2010.06.30 15:49:01 | 000,001,114 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1035008423-2702467771-726374958-1000UA.job
[2010.06.30 14:06:29 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.06.30 14:06:29 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.06.30 14:01:09 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.06.30 14:01:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.06.30 14:01:01 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.30 00:11:35 | 010,104,778 | -H-- | M] () -- C:\Users\Sebi\AppData\Local\IconCache.db
[2010.06.30 00:00:20 | 000,000,392 | ---- | M] () -- C:\Windows\tasks\NeroLiveEpgUpdate-Sebi-PC_Sebi.job
[2010.06.29 22:48:58 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010.06.29 22:24:13 | 000,001,330 | ---- | M] () -- C:\Users\Sebi\Desktop\Smart Data Recovery.lnk
[2010.06.29 20:25:25 | 000,001,009 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.29 18:49:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1035008423-2702467771-726374958-1000Core.job
[2010.06.28 22:15:43 | 000,002,165 | ---- | M] () -- C:\Users\Public\Desktop\ImTOO Video Converter Ultimate 6.lnk
[2010.06.28 22:02:45 | 000,109,616 | ---- | M] () -- C:\Users\Sebi\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.06.27 21:33:53 | 000,001,917 | ---- | M] () -- C:\Users\Public\Desktop\World of Goo.lnk
[2010.06.27 20:20:51 | 000,419,336 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.06.27 11:45:45 | 002,259,074 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.06.27 11:45:45 | 000,712,450 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2010.06.27 11:45:45 | 000,675,208 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.06.27 11:45:45 | 000,492,918 | ---- | M] () -- C:\Windows\SysNative\perfh00B.dat
[2010.06.27 11:45:45 | 000,151,600 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2010.06.27 11:45:45 | 000,128,616 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.06.27 11:45:45 | 000,103,638 | ---- | M] () -- C:\Windows\SysNative\perfc00B.dat
[2010.06.26 20:48:16 | 001,021,898 | ---- | M] () -- C:\Users\Sebi\Desktop\SL382099.jpg
[2010.06.26 14:07:42 | 000,000,083 | ---- | M] () -- C:\Windows\wp.INI
[2010.06.24 13:24:54 | 000,019,215 | ---- | M] () -- C:\Users\Sebi\Desktop\Meine Spiele.jpg
[2010.06.20 22:19:39 | 000,000,566 | ---- | M] () -- C:\Users\Sebi\AppData\Roaming\AutoGK.ini
[2010.06.20 14:18:37 | 001,067,294 | ---- | M] () -- C:\Users\Sebi\Desktop\Kircliche TrauungParty22 05 2010 175.jpg
[2010.06.19 16:27:18 | 1055,306,184 | ---- | M] () -- C:\Users\Sebi\Desktop\Mein Film.wmv
[2010.06.19 16:06:08 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2010.06.19 15:51:33 | 000,151,843 | ---- | M] () -- C:\Users\Sebi\Desktop\Ultraviolet.jpg
[2010.06.17 15:06:03 | 000,000,098 | ---- | M] () -- C:\Users\Sebi\Desktop\Flagge_Sebastian.vrs
[2010.06.15 21:24:21 | 000,107,184 | ---- | M] () -- C:\Users\Sebi\Desktop\3DS.png
[2010.06.15 21:14:38 | 000,031,458 | ---- | M] () -- C:\Users\Sebi\Desktop\DS Vergleich.jpg
[2010.06.15 21:13:32 | 000,015,317 | ---- | M] () -- C:\Users\Sebi\Desktop\ctr_hardware.jpg
[2010.06.12 14:19:53 | 000,001,858 | ---- | M] () -- C:\Users\Public\Desktop\PC Inspector File Recovery.lnk
[2010.06.11 22:59:03 | 000,000,020 | ---- | M] () -- C:\Windows\Àù¾
[2010.06.11 22:49:43 | 041,043,920 | ---- | M] () -- C:\Users\Sebi\Desktop\06 Baby Got Back.wav
[2010.06.11 13:44:24 | 000,002,354 | ---- | M] () -- C:\Users\Sebi\Desktop\Google Chrome.lnk
[2010.06.10 17:37:31 | 384,269,034 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010.06.09 20:38:03 | 000,000,083 | ---- | M] () -- C:\Windows\wwp.INI
[2010.06.08 22:31:58 | 000,027,648 | ---- | M] () -- C:\Users\Sebi\Desktop\Franze_bewerbung.doc
[2010.06.01 22:03:03 | 000,176,502 | ---- | M] () -- C:\Users\Sebi\Desktop\stille.wav
[2010.06.01 16:10:46 | 000,058,853 | ---- | M] () -- C:\Users\Sebi\Documents\Unbenannt (2).wma
[2010.05.23 18:48:28 | 000,020,891 | ---- | M] () -- C:\Users\Sebi\Documents\Telefonbuch.jpg
[2010.05.13 14:15:12 | 000,000,220 | ---- | M] () -- C:\Windows\scrantic.ini
[2010.05.12 23:16:06 | 000,014,236 | ---- | M] () -- C:\Users\Sebi\Desktop\Fast fertig.gif
[2010.05.12 23:01:29 | 000,012,593 | ---- | M] () -- C:\Users\Sebi\Desktop\anonymous_monkey-320x240.gif
[2010.05.12 17:41:51 | 000,000,000 | ---- | M] () -- C:\Windows\HPMProp.INI
[2010.05.10 19:37:36 | 001,789,601 | ---- | M] () -- C:\Users\Sebi\Desktop\Serviceanleitung_deutsch_FY50QT.pdf
[2010.05.02 18:52:02 | 000,042,040 | ---- | M] () -- C:\Users\Sebi\Documents\Dokument.ncd
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.04.29 15:39:28 | 000,024,664 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010.04.27 20:52:26 | 002,610,008 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2010.04.27 20:52:20 | 000,335,192 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2010.04.27 20:52:14 | 001,733,464 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll
[2010.04.27 20:52:10 | 000,335,192 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2010.04.27 13:50:46 | 000,330,656 | ---- | M] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2010.04.26 18:43:27 | 000,072,323 | ---- | M] () -- C:\Users\Sebi\Documents\Unbenannt.wma
[2010.04.23 22:25:03 | 000,000,003 | ---- | M] () -- C:\Users\Sebi\Documents\bmm.cfg
[2010.04.19 20:06:39 | 000,001,352 | ---- | M] () -- C:\Users\Sebi\Documents\AutoHotkey.ahk
[2010.04.18 20:27:41 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010.04.18 20:27:35 | 000,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.04.15 16:38:18 | 000,001,162 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 5.lnk
[2010.04.14 17:56:00 | 000,318,808 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2010.04.07 20:57:51 | 000,009,216 | ---- | M] () -- C:\Users\Sebi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.04.04 00:55:31 | 000,064,616 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2010.04.04 00:55:31 | 000,056,424 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2010.04.04 00:55:31 | 000,009,832 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2010.04.03 18:41:38 | 000,276,196 | ---- | M] () -- C:\Windows\SysNative\NvApps.xml
[2010.04.03 18:41:38 | 000,066,714 | ---- | M] () -- C:\Windows\SysNative\NvwsApps.xml
========== Files Created - No Company Name ==========
[2010.06.29 22:48:58 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2010.06.29 22:24:13 | 000,001,330 | ---- | C] () -- C:\Users\Sebi\Desktop\Smart Data Recovery.lnk
[2010.06.29 20:25:25 | 000,001,009 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.28 22:15:43 | 000,002,165 | ---- | C] () -- C:\Users\Public\Desktop\ImTOO Video Converter Ultimate 6.lnk
[2010.06.27 21:33:53 | 000,001,917 | ---- | C] () -- C:\Users\Public\Desktop\World of Goo.lnk
[2010.06.26 20:48:15 | 001,021,898 | ---- | C] () -- C:\Users\Sebi\Desktop\SL382099.jpg
[2010.06.26 20:21:47 | 067,108,864 | ---- | C] () -- C:\Users\Sebi\Desktop\Ace Atorny.nds.nds
[2010.06.26 14:07:42 | 000,000,083 | ---- | C] () -- C:\Windows\wp.INI
[2010.06.24 13:22:37 | 000,019,215 | ---- | C] () -- C:\Users\Sebi\Desktop\Meine Spiele.jpg
[2010.06.20 22:19:39 | 000,000,566 | ---- | C] () -- C:\Users\Sebi\AppData\Roaming\AutoGK.ini
[2010.06.20 22:13:08 | 067,108,864 | ---- | C] () -- C:\Users\Sebi\Desktop\DK Jungle Climber.nds
[2010.06.20 14:17:36 | 001,067,294 | ---- | C] () -- C:\Users\Sebi\Desktop\Kircliche TrauungParty22 05 2010 175.jpg
[2010.06.19 16:08:29 | 1055,306,184 | ---- | C] () -- C:\Users\Sebi\Desktop\Mein Film.wmv
[2010.06.19 15:51:33 | 000,151,843 | ---- | C] () -- C:\Users\Sebi\Desktop\Ultraviolet.jpg
[2010.06.19 15:40:31 | 735,971,328 | ---- | C] () -- C:\Users\Sebi\Desktop\Ultraviolet.avi
[2010.06.16 20:01:54 | 000,000,098 | ---- | C] () -- C:\Users\Sebi\Desktop\Flagge_Sebastian.vrs
[2010.06.15 21:19:35 | 000,107,184 | ---- | C] () -- C:\Users\Sebi\Desktop\3DS.png
[2010.06.15 21:14:38 | 000,031,458 | ---- | C] () -- C:\Users\Sebi\Desktop\DS Vergleich.jpg
[2010.06.15 21:13:32 | 000,015,317 | ---- | C] () -- C:\Users\Sebi\Desktop\ctr_hardware.jpg
[2010.06.12 14:19:54 | 000,006,200 | ---- | C] () -- C:\Windows\SysWow64\INT13EXT.VXD
[2010.06.12 14:19:53 | 000,001,858 | ---- | C] () -- C:\Users\Public\Desktop\PC Inspector File Recovery.lnk
[2010.06.11 22:59:02 | 000,000,020 | ---- | C] () -- C:\Windows\Àù¾
[2010.06.11 22:49:40 | 041,043,920 | ---- | C] () -- C:\Users\Sebi\Desktop\06 Baby Got Back.wav
[2010.06.09 20:36:33 | 000,000,083 | ---- | C] () -- C:\Windows\wwp.INI
[2010.06.08 22:31:58 | 000,027,648 | ---- | C] () -- C:\Users\Sebi\Desktop\Franze_bewerbung.doc
[2010.06.01 21:58:29 | 000,176,502 | ---- | C] () -- C:\Users\Sebi\Desktop\stille.wav
[2010.06.01 16:10:46 | 000,058,853 | ---- | C] () -- C:\Users\Sebi\Documents\Unbenannt (2).wma
[2010.05.27 22:24:37 | 000,006,528 | ---- | C] () -- C:\Windows\SysWow64\drivers\MOUSEWD.SYS
[2010.05.19 19:56:55 | 000,020,891 | ---- | C] () -- C:\Users\Sebi\Documents\Telefonbuch.jpg
[2010.05.13 14:14:18 | 000,000,220 | ---- | C] () -- C:\Windows\scrantic.ini
[2010.05.12 23:06:10 | 000,014,236 | ---- | C] () -- C:\Users\Sebi\Desktop\Fast fertig.gif
[2010.05.12 22:59:19 | 000,012,593 | ---- | C] () -- C:\Users\Sebi\Desktop\anonymous_monkey-320x240.gif
[2010.05.12 17:41:51 | 000,000,000 | ---- | C] () -- C:\Windows\HPMProp.INI
[2010.05.10 19:37:36 | 001,789,601 | ---- | C] () -- C:\Users\Sebi\Desktop\Serviceanleitung_deutsch_FY50QT.pdf
[2010.05.10 18:39:55 | 000,002,354 | ---- | C] () -- C:\Users\Sebi\Desktop\Google Chrome.lnk
[2010.05.10 18:39:24 | 000,001,114 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1035008423-2702467771-726374958-1000UA.job
[2010.05.10 18:39:23 | 000,001,062 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1035008423-2702467771-726374958-1000Core.job
[2010.05.02 18:52:02 | 000,042,040 | ---- | C] () -- C:\Users\Sebi\Documents\Dokument.ncd
[2010.04.26 18:43:27 | 000,072,323 | ---- | C] () -- C:\Users\Sebi\Documents\Unbenannt.wma
[2010.04.23 22:24:59 | 000,000,003 | ---- | C] () -- C:\Users\Sebi\Documents\bmm.cfg
[2010.04.22 14:56:59 | 000,009,832 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2010.04.21 21:38:00 | 000,067,584 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2010.04.19 20:06:39 | 000,001,352 | ---- | C] () -- C:\Users\Sebi\Documents\AutoHotkey.ahk
[2010.04.18 20:27:41 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.04.18 20:27:35 | 000,001,939 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.04.15 16:38:18 | 000,001,162 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 5.lnk
[2010.04.03 18:41:38 | 000,276,196 | ---- | C] () -- C:\Windows\SysNative\NvApps.xml
[2010.04.03 18:41:38 | 000,066,714 | ---- | C] () -- C:\Windows\SysNative\NvwsApps.xml
[2010.03.21 18:36:38 | 000,240,640 | ---- | C] () -- C:\Windows\SysWow64\NMOCOD.DLL
[2010.03.21 18:36:38 | 000,004,080 | ---- | C] () -- C:\Windows\SysWow64\drivers\TVICPORT.SYS
[2010.02.25 21:42:16 | 000,000,269 | ---- | C] () -- C:\Windows\pwc62ud.INI
[2010.02.20 15:00:11 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010.02.02 13:30:27 | 000,000,224 | ---- | C] () -- C:\Windows\SIERRA.INI
[2010.01.29 15:15:25 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.01.25 21:14:55 | 000,142,592 | ---- | C] () -- C:\Windows\SysWow64\drivers\sp_rsdrv2.sys
[2010.01.23 11:35:15 | 002,286,846 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010.01.22 16:14:50 | 000,001,018 | ---- | C] () -- C:\Windows\disney.ini
[2010.01.21 18:39:44 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.01.25 23:10:48 | 000,179,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2009.01.09 01:01:22 | 000,629,760 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2002.10.16 00:54:04 | 000,153,088 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
========== LOP Check ==========
[2010.06.01 22:03:06 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Audacity
[2010.04.20 20:26:58 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Clonk Rage
[2010.01.22 17:44:12 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\DAEMON Tools Lite
[2010.04.16 14:50:37 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Dev-Cpp
[2010.01.22 17:07:44 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Disney Interactive Studios
[2010.03.28 13:58:55 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Free Download Manager
[2010.04.18 12:12:07 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\GARMIN
[2010.02.13 22:07:20 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\gtk-2.0
[2010.06.29 22:28:24 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\ICQ
[2010.06.28 22:17:13 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\ImTOO
[2010.02.06 17:01:10 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\IrfanView
[2010.02.09 17:16:41 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Launchy
[2010.02.24 22:53:15 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\LEGO Interactive
[2010.04.18 19:41:24 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\McLoad
[2010.06.28 22:43:54 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Spyware Terminator
[2010.04.20 14:57:03 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\TeamViewer
[2010.01.22 22:41:51 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\Teeworlds
[2010.06.19 19:31:18 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\TeraCopy
[2010.04.05 14:34:35 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\TuneUp Software
[2010.06.28 21:59:58 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\uTorrent
[2010.02.14 11:14:14 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\vghd
[2010.02.01 20:21:11 | 000,000,000 | ---D | M] -- C:\Users\Sebi\AppData\Roaming\VitySoft
[2010.05.24 09:43:17 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report > |