DDDAlexDDD | 11.09.2010 20:30 | sooo hier einmal das von Malwarebytes:
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 1
Infizierte Registrierungswerte: 1
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 1
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
HKEY_CURRENT_USER\Software\victim (Malware.Trace) -> No action taken.
Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mdrestat (Trojan.Agent.U) -> No action taken.
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
C:\Users\MeinUserName\AppData\Roaming\chrtmp (Malware.Trace) -> No action taken.
Und hier OTL Logdatei1:OTL Logfile: Code:
OTL logfile created on: 11.09.2010 20:51:58 - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\Alex und Corinna\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 41,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 69,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 97,74 Gb Total Space | 12,73 Gb Free Space | 13,03% Space Free | Partition Type: NTFS
Drive D: | 489,64 Gb Total Space | 438,26 Gb Free Space | 89,51% Space Free | Partition Type: NTFS
Drive E: | 7,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ALEX-CORINNASPC
Current User Name: Alex und Corinna
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Users\Alex und Corinna\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.)
PRC - C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Programme\Emsisoft Anti-Malware\a2service.exe (Emsi Software GmbH)
PRC - C:\Programme\Motorola\MotoConnectService\MotoConnectService.exe ()
PRC - C:\Programme\Motorola\MotoConnectService\MotoConnect.exe (Motorola)
PRC - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO)
PRC - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtblfs.exe (Kaspersky Lab ZAO)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Programme\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\Programme\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
PRC - C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
PRC - C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Programme\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Programme\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
PRC - C:\Programme\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
PRC - C:\Programme\Fujitsu Siemens Computers\Energy Settings\EnergySettings.exe (Fujitsu Siemens Computers GmbH)
PRC - C:\Programme\Fujitsu Siemens Computers\Key Configuration Tool\KeyConfigurationTool.exe (Fujitsu Siemens Computers GmbH)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe (Fujitsu Siemens Computers)
PRC - C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)
PRC - C:\Programme\Canon\IJPLM\ijplmsvc.exe ()
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Programme\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.)
========== Modules (SafeList) ==========
MOD - C:\Users\Alex und Corinna\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Programme\Emsisoft Anti-Malware\a2hooks32.dll (Emsi Software GmbH)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (Akamai) -- c:\Programme\Common Files\Akamai\rswin_3746.dll ()
SRV - (GoogleDesktopManager-051210-111108) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
SRV - (a2AntiMalware) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe (Emsi Software GmbH)
SRV - (MotoConnect Service) -- C:\Programme\Motorola\MotoConnectService\MotoConnectService.exe ()
SRV - (AVP) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO)
SRV - (Hamachi2Svc) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ACDaemon) -- C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (TeamViewer5) -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (npggsvc) -- C:\Windows\System32\GameMon.des (INCA Internet Co., Ltd.)
SRV - (SBSDWSCService) -- C:\Programme\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
SRV - (TestHandler) -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe (Fujitsu Siemens Computers)
SRV - (IJPLMSVC) -- C:\Programme\Canon\IJPLM\ijplmsvc.exe ()
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (FSCLBaseUpdaterService) -- C:\Program Files\Fujitsu Siemens Computers\FSCLounge\FSCWBaseUpdaterService\2\FSCWBaseUpdaterService.exe ()
SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation)
SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
========== Driver Services (SafeList) ==========
DRV - (XDva343) -- C:\Windows\System32\XDva343.sys File not found
DRV - (oflpydin) -- C:\Users\ALEXUN~1\AppData\Local\Temp\oflpydin.sys File not found
DRV - (NwlnkFwd) -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- C:\Windows\System32\DRIVERS\nwlnkflt.sys File not found
DRV - (IpInIp) -- C:\Windows\System32\DRIVERS\ipinip.sys File not found
DRV - (EagleNT) -- C:\Users\ALEXUN~1\AppData\Local\Temp\EagleNT.sys File not found
DRV - (KLIF) -- C:\Windows\System32\drivers\klif.sys (Kaspersky Lab)
DRV - (a2injectiondriver) -- C:\Programme\Emsisoft Anti-Malware\a2dix86.sys (Emsi Software GmbH)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (a2acc) -- C:\Programme\Emsisoft Anti-Malware\a2accx86.sys (Emsi Software GmbH)
DRV - (kl2) -- C:\Windows\System32\drivers\kl2.sys (Kaspersky Lab ZAO)
DRV - (KL1) -- C:\Windows\system32\DRIVERS\kl1.sys (Kaspersky Lab ZAO)
DRV - (a2util) -- C:\Programme\Emsisoft Anti-Malware\a2util32.sys (Emsi Software GmbH)
DRV - (MBAMSwissArmy) -- C:\Windows\System32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (KLIM6) -- C:\Windows\System32\drivers\klim6.sys (Kaspersky Lab ZAO)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (klmouflt) -- C:\Windows\System32\drivers\klmouflt.sys (Kaspersky Lab)
DRV - (motmodem) -- C:\Windows\System32\drivers\motmodem.sys (Motorola)
DRV - (ithsgt) -- C:\Windows\System32\drivers\ithsgt.sys ()
DRV - (lilsgt) -- C:\Windows\System32\drivers\lilsgt.sys ()
DRV - (RMCAST) RMCAST (Pgm) -- C:\Windows\System32\drivers\rmcast.sys (Microsoft Corporation)
DRV - (winusb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (netr28u) -- C:\Windows\System32\drivers\netr28u.sys (Ralink Technology Corp.)
DRV - (nvsmu) -- C:\Windows\System32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (ahcix86s) -- C:\Windows\system32\drivers\ahcix86s.sys (AMD Technologies Inc.)
DRV - (JRAID) -- C:\Windows\system32\drivers\jraid.sys (JMicron Technology Corp.)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (iaStor) -- C:\Windows\system32\drivers\iastor.sys (Intel Corporation)
DRV - (Afc) -- C:\Windows\System32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (BLKWGU(Belkin)) Belkin Wireless G USB Network Adapter(Belkin) -- C:\Windows\System32\drivers\BLKWGU.sys (Belkin Corporation)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/skins7/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaultthis.engineName: "2Shared Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2447621&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.param.yahoo-fr: "moz2-ytff-ffpro"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "moz2-ytff-ffpro"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledItems: {ef468e5b-5b30-4136-a833-7f2e3a31afdf}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:2.0.0.3
FF - prefs.js..extensions.enabledItems: multipletab@piro.sakura.ne.jp:0.5.2010070301
FF - prefs.js..extensions.enabledItems: {EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.10
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.11
FF - prefs.js..extensions.enabledItems: {64161300-e22b-11db-8314-0800200c9a66}:0.9.5.6
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.0.232
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=skins7&tb_ver=2.0.0.2&q="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "data:text/plain,keyword.URL=hxxp://de.search.yahoo.com/search?ei=UTF-8&fr=ffpro&type=moz35awe&p="
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.09.09 19:09:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.09.09 19:09:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\THBExt [2010.09.01 12:48:10 | 000,000,000 | ---D | M]
[2009.08.30 12:05:51 | 000,000,000 | ---D | M] -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Extensions
[2010.09.11 20:41:54 | 000,000,000 | ---D | M] -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions
[2010.04.30 19:03:49 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.08.15 21:17:02 | 000,000,000 | ---D | M] (Stylish) -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}
[2010.08.22 11:29:23 | 000,000,000 | ---D | M] (Speed Dial) -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\{64161300-e22b-11db-8314-0800200c9a66}
[2010.06.28 10:49:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.08.20 13:53:07 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.04.04 22:53:00 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2010.08.20 13:53:03 | 000,000,000 | ---D | M] (2Shared Toolbar) -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\{ef468e5b-5b30-4136-a833-7f2e3a31afdf}
[2010.07.05 18:14:41 | 000,000,000 | ---D | M] -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\multipletab@piro.sakura.ne.jp
[2010.08.22 11:29:23 | 000,000,000 | ---D | M] -- C:\Users\Alex und Corinna\AppData\Roaming\mozilla\Firefox\Profiles\mxpup8ml.default\extensions\sam@samfind.com
[2009.11.20 19:21:26 | 000,000,917 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\conduit.xml
[2010.09.11 10:43:20 | 000,000,950 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-1.xml
[2010.02.20 13:48:26 | 000,000,954 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-2.xml
[2010.03.16 18:04:49 | 000,000,943 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-3.xml
[2010.03.23 23:39:00 | 000,000,943 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-4.xml
[2010.04.09 16:52:03 | 000,000,943 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-5.xml
[2010.06.27 13:10:12 | 000,000,943 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-6.xml
[2010.08.01 15:25:59 | 000,000,950 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-7.xml
[2010.09.09 19:10:05 | 000,000,950 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin-8.xml
[2010.06.28 10:49:31 | 000,000,168 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin.gif
[2010.06.28 10:49:31 | 000,000,618 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin.src
[2010.04.22 13:33:22 | 000,000,945 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\icqplugin.xml
[2009.12.05 00:15:51 | 000,003,915 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Mozilla\FireFox\Profiles\mxpup8ml.default\searchplugins\sweetim.xml
[2010.09.03 18:44:29 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2009.09.05 21:53:54 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Programme\Mozilla Firefox\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2009.12.04 00:12:51 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.04.30 22:26:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.09.03 18:44:29 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010.09.01 12:49:39 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010.07.17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.08.02 18:11:03 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2009.10.02 16:36:29 | 000,002,487 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\discount24.xml
[2010.08.02 18:11:03 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.08.02 18:11:03 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.08.02 18:11:03 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.08.02 18:11:03 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2009.11.16 12:19:00 | 000,352,008 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 12067 more lines...
O2 - BHO: (GigagetIEHelper Class) - {111CAA23-6F4F-42AC-8555-B48C1D87BBAB} - C:\Windows\System32\gigagetbho_v10.dll (Giganology Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2011\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Programme\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2011\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [EnergySettings] C:\Programme\Fujitsu Siemens Computers\Energy Settings\EnergySettings.exe (Fujitsu Siemens Computers GmbH)
O4 - HKLM..\Run: [FSCRecovery] c:\Programme\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe (Fujitsu Siemens Computers GmbH)
O4 - HKLM..\Run: [Gigaget] C:\Program Files\Giganology\Gigaget\GigagetShell.exe (Giganology Inc.)
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe ( )
O4 - HKLM..\Run: [KeyConfiguration] C:\Program Files\Fujitsu Siemens Computers\Key Configuration Tool\KeyConfigurationTool.exe (Fujitsu Siemens Computers GmbH)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SweetIM] C:\Programme\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [fukkuukkkk.exe] C:\fukkuukkkk.exe\fukkuukkkk.exe File not found
O4 - HKCU..\Run: [ICQ] C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [MdReSTAT] C:\Users\ALEXUN~1\AppData\Local\Temp\attretup.DLL File not found
O4 - HKCU..\Run: [Picasa Media Detector] C:\Programme\Picasa2\PicasaMediaDetector.exe (Google Inc.)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [Wallpaper4U] C:\Program Files\Wallpaper4U\Wallpaper4U.exe File not found
O4 - HKCU..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Users\Alex und Corinna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FIFA 10-Registrierung.lnk = D:\Fifa10\Support\EAregister.exe (Leader Technologies)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O8 - Extra context menu item: &Download All by Gigaget - C:\Programme\Giganology\Gigaget\getAllurl.htm ()
O8 - Extra context menu item: &Download by Gigaget - C:\Programme\Giganology\Gigaget\geturl.htm ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Programme\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]http in Lokales Intranet)
O15 - HKCU\..Trusted Ranges: GD ([http] in Lokales Intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Programme\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Programme\Kaspersky Lab\Kaspersky Anti-Virus 2011\mzvkbd3.dll (Kaspersky Lab ZAO)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - C:\Windows\system32\klogon.dll - C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop WallPaper: C:\Users\Alex und Corinna\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Alex und Corinna\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.09.04 08:10:22 | 000,214,408 | R--- | M] (Konami Digital Entertainment Co., Ltd.) - E:\autorun.exe -- [ UDF ]
O32 - AutoRun File - [2009.09.04 08:10:22 | 000,000,047 | R--- | M] () - E:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{cc2a18fe-2a64-11de-8504-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{cc2a18fe-2a64-11de-8504-806e6f6e6963}\Shell\AutoRun\command - "" = E:\autorun.exe -- [2009.09.04 08:10:22 | 000,214,408 | R--- | M] (Konami Digital Entertainment Co., Ltd.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010.09.11 20:48:23 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\Alex und Corinna\Desktop\OTL.exe
[2010.09.11 18:32:52 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\AppData\Roaming\Malwarebytes
[2010.09.11 18:32:35 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.09.11 18:32:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.09.11 18:32:33 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.09.11 18:32:33 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.09.11 17:23:55 | 002,933,760 | ---- | C] (www.fifacz.com) -- C:\Users\Alex und Corinna\Desktop\editor.exe
[2010.09.11 11:38:27 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Money ML 2010 Tool by MxSoniC
[2010.09.10 17:08:42 | 000,078,336 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\Agent.OMZ.Fix.exe
[2010.09.10 17:08:41 | 000,087,552 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\VACFix.exe
[2010.09.10 17:08:41 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\IEDFix.C.exe
[2010.09.10 17:08:41 | 000,082,432 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\404Fix.exe
[2010.09.10 17:08:41 | 000,080,384 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\o4Patch.exe
[2010.09.10 17:08:40 | 000,289,144 | ---- | C] (S!Ri) -- C:\Windows\System32\VCCLSID.exe
[2010.09.10 17:08:40 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\IEDFix.exe
[2010.09.10 17:08:40 | 000,079,360 | ---- | C] (SteelWerX) -- C:\Windows\System32\swxcacls.exe
[2010.09.10 17:08:39 | 000,288,417 | ---- | C] (S!Ri) -- C:\Windows\System32\SrchSTS.exe
[2010.09.10 17:08:39 | 000,135,168 | ---- | C] (SteelWerX) -- C:\Windows\System32\swreg.exe
[2010.09.10 17:08:39 | 000,053,248 | ---- | C] (hxxp://www.beyondlogic.org) -- C:\Windows\System32\Process.exe
[2010.09.10 17:01:59 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\AppData\Roaming\vlc
[2010.09.10 17:01:26 | 000,000,000 | ---D | C] -- C:\Programme\VideoLAN
[2010.09.07 21:07:34 | 001,235,456 | ---- | C] (CheatHappens) -- C:\Users\Alex und Corinna\Desktop\Pro Evolution Soccer 2010 Trainer.exe
[2010.09.07 19:02:32 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\PES2010Patch103
[2010.09.06 17:01:02 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Documents\PESEdit
[2010.09.06 16:57:55 | 000,000,000 | ---D | C] -- C:\Programme\PESEdit
[2010.09.05 19:22:54 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Documents\Vokabeln2
[2010.09.03 18:45:44 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.09.03 18:44:15 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.09.03 18:44:15 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.09.03 18:44:15 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.09.03 16:48:04 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Neuer Ordner
[2010.09.03 16:05:58 | 000,000,000 | ---D | C] -- C:\Programme\DIFX
[2010.09.03 16:04:58 | 000,000,000 | ---D | C] -- C:\Programme\T4E Player
[2010.09.01 12:47:19 | 000,000,000 | ---D | C] -- C:\Programme\Kaspersky Lab
[2010.09.01 12:47:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2010.09.01 12:46:55 | 000,475,224 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\klif.sys
[2010.09.01 12:34:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
[2010.09.01 11:43:43 | 104,076,528 | ---- | C] (Kaspersky Lab) -- C:\Users\Alex und Corinna\Desktop\kav11.0.0.232de.exe
[2010.08.31 22:08:16 | 000,000,000 | ---D | C] -- C:\Programme\Emsisoft Anti-Malware
[2010.08.31 22:08:16 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Documents\Anti-Malware
[2010.08.31 16:41:42 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC30U.DLL
[2010.08.31 16:41:42 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCO30U.DLL
[2010.08.31 16:41:42 | 000,133,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCANS32.DLL
[2010.08.31 16:41:42 | 000,133,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCO30.DLL
[2010.08.31 16:41:42 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCUIW32.DLL
[2010.08.31 16:41:42 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCUIA32.DLL
[2010.08.31 16:41:42 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCD30.DLL
[2010.08.31 16:41:42 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCN30U.DLL
[2010.08.31 16:41:42 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFCN30.DLL
[2010.08.31 16:41:41 | 000,322,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC30.DLL
[2010.08.31 16:41:41 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC30DEU.DLL
[2010.08.31 16:41:41 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CTL3DNT.DLL
[2010.08.31 16:41:41 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CTL3D95.DLL
[2010.08.31 16:41:26 | 000,000,000 | ---D | C] -- C:\Programme\Brief-Druckerei
[2010.08.30 16:41:39 | 000,000,000 | ---D | C] -- C:\Programme\Apollox Tools
[2010.08.30 15:09:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\pack
[2010.08.30 15:09:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\icon
[2010.08.30 15:04:07 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Neuer Ordner (4)
[2010.08.30 15:00:37 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Lead-Rain2
[2010.08.28 21:25:19 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Chucky
[2010.08.26 15:06:41 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Documents\FM10_temp
[2010.08.26 15:06:27 | 000,000,000 | ---D | C] -- C:\Programme\Fifa Master
[2010.08.26 13:02:33 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Chucky (2Good Client)
[2010.08.22 13:58:19 | 000,679,936 | ---- | C] (Generated by JEDI) -- C:\Windows\System32\D3DX81ab.dll
[2010.08.22 13:58:18 | 000,000,000 | ---D | C] -- C:\Programme\Cheat Engine
[2010.08.21 18:50:43 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Pservermt2-Client by Justin 18.08.10
[2010.08.21 08:13:54 | 000,000,000 | ---D | C] -- C:\Programme\LogMeIn Hamachi
[2010.08.18 18:01:46 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Documents\Unregelmäßige Verben
[2010.08.17 22:20:49 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Documents\Vokabeln
[2010.08.17 22:12:33 | 000,000,000 | ---D | C] -- C:\Programme\Teachmaster 4.3
[2010.08.17 22:05:07 | 000,000,000 | ---D | C] -- C:\Programme\Belearn 7
[2010.08.17 13:54:42 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Neuer Ordner (3)
[2010.08.15 08:56:28 | 000,000,000 | ---D | C] -- C:\Users\Alex und Corinna\Desktop\Metin2
[2010.08.13 16:01:14 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\MSSoap
[2010.08.13 16:01:14 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Motorola Shared
[2010.08.13 16:01:14 | 000,000,000 | ---D | C] -- C:\Programme\Motorola
[2010.08.13 14:03:24 | 003,600,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.08.13 14:03:23 | 003,548,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.08.13 13:36:55 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.08.13 13:36:55 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010.08.13 13:36:55 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.08.13 13:36:55 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.08.13 13:36:55 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.08.13 13:36:55 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.08.13 13:36:55 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010.08.13 13:36:55 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.08.13 13:36:55 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010.08.13 13:36:55 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010.08.13 13:36:55 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010.08.13 13:36:55 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010.08.13 13:36:55 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.08.13 13:36:55 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.08.13 13:36:55 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010.08.13 13:36:51 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010.08.13 13:36:47 | 002,037,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.08.13 13:36:41 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
========== Files - Modified Within 30 Days ==========
[2010.09.11 21:21:49 | 008,126,464 | -HS- | M] () -- C:\Users\Alex und Corinna\NTUSER.DAT
[2010.09.11 20:48:34 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\Alex und Corinna\Desktop\OTL.exe
[2010.09.11 20:22:01 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.09.11 20:22:00 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.09.11 20:10:56 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.11 20:10:56 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.11 18:32:38 | 000,000,824 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.11 18:00:00 | 000,000,464 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Registration.job
[2010.09.11 17:15:58 | 000,001,436 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\T4EPlayer.conf
[2010.09.11 10:10:57 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.09.11 10:10:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.09.10 22:56:46 | 000,524,288 | -HS- | M] () -- C:\Users\Alex und Corinna\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010.09.10 22:56:46 | 000,065,536 | -HS- | M] () -- C:\Users\Alex und Corinna\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010.09.10 22:56:18 | 004,700,556 | -H-- | M] () -- C:\Users\Alex und Corinna\AppData\Local\IconCache.db
[2010.09.10 21:51:03 | 000,000,440 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{FD9BE6BC-8F12-4671-89C2-5B865B98E93A}.job
[2010.09.10 17:17:45 | 001,555,806 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.09.10 17:17:45 | 000,668,882 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2010.09.10 17:17:45 | 000,629,526 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.09.10 17:17:45 | 000,144,952 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2010.09.10 17:17:45 | 000,118,890 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.09.10 17:09:01 | 000,006,898 | ---- | M] () -- C:\Windows\System32\tmp.reg
[2010.09.06 22:24:11 | 000,000,366 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Vokabeln2.aw
[2010.09.06 22:24:11 | 000,000,062 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Vokabeln2.kk
[2010.09.06 18:32:41 | 000,006,887 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Vokabeln2.vok2
[2010.09.06 17:01:29 | 000,001,062 | ---- | M] () -- C:\Users\Public\Desktop\2010 FIFA World Cup.lnk
[2010.09.03 16:04:59 | 000,000,829 | ---- | M] () -- C:\Users\Alex und Corinna\Desktop\T4E Player.lnk
[2010.09.03 13:48:48 | 000,000,768 | ---- | M] () -- C:\Users\Alex und Corinna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FIFA 10-Registrierung.lnk
[2010.09.01 13:29:58 | 000,113,933 | ---- | M] () -- C:\Windows\System32\drivers\klin.dat
[2010.09.01 13:29:57 | 000,097,549 | ---- | M] () -- C:\Windows\System32\drivers\klick.dat
[2010.09.01 12:46:55 | 000,475,224 | ---- | M] (Kaspersky Lab) -- C:\Windows\System32\drivers\klif.sys
[2010.09.01 12:25:43 | 104,076,528 | ---- | M] (Kaspersky Lab) -- C:\Users\Alex und Corinna\Desktop\kav11.0.0.232de.exe
[2010.08.31 22:08:33 | 000,000,816 | ---- | M] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
[2010.08.31 16:41:44 | 000,000,766 | ---- | M] () -- C:\Users\Alex und Corinna\Desktop\Brief-Druckerei.lnk
[2010.08.30 16:41:44 | 000,001,331 | ---- | M] () -- C:\Users\Public\Desktop\Apollox Realistic Gameplay Switcher.lnk
[2010.08.26 16:27:37 | 000,000,681 | ---- | M] () -- C:\Users\Public\Desktop\ArtMoney SE v7.32.lnk
[2010.08.26 15:06:29 | 000,001,056 | ---- | M] () -- C:\Users\Alex und Corinna\Desktop\MM 10.lnk
[2010.08.22 13:58:20 | 000,000,798 | ---- | M] () -- C:\Users\Alex und Corinna\Desktop\Cheat Engine.lnk
[2010.08.19 19:16:36 | 000,000,312 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Vokabeln.aw
[2010.08.19 19:16:36 | 000,000,056 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Vokabeln.kk
[2010.08.18 20:25:19 | 000,000,046 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Unregelmäßige Verben.kk
[2010.08.18 17:55:36 | 000,005,542 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Unregelmäßige Verben.vok2
[2010.08.17 22:40:09 | 000,006,074 | ---- | M] () -- C:\Users\Alex und Corinna\Documents\Vokabeln.vok2
[2010.08.17 22:12:33 | 000,000,906 | ---- | M] () -- C:\Users\Alex und Corinna\Desktop\Teachmaster 4.3.lnk
[2010.08.13 16:09:49 | 000,298,120 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.08.13 16:02:27 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_motmodem_01007.Wdf
========== Files Created - No Company Name ==========
[2010.09.11 18:32:38 | 000,000,824 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.10 17:09:01 | 000,006,898 | ---- | C] () -- C:\Windows\System32\tmp.reg
[2010.09.10 17:08:40 | 000,075,776 | ---- | C] () -- C:\Windows\System32\WS2Fix.exe
[2010.09.10 17:08:39 | 000,051,200 | ---- | C] () -- C:\Windows\System32\dumphive.exe
[2010.09.10 17:08:39 | 000,040,960 | ---- | C] () -- C:\Windows\System32\swsc.exe
[2010.09.06 17:01:29 | 000,001,062 | ---- | C] () -- C:\Users\Public\Desktop\2010 FIFA World Cup.lnk
[2010.09.05 19:25:39 | 000,000,366 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Vokabeln2.aw
[2010.09.05 19:23:09 | 000,000,062 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Vokabeln2.kk
[2010.09.05 19:21:53 | 000,006,887 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Vokabeln2.vok2
[2010.09.03 16:04:59 | 000,000,829 | ---- | C] () -- C:\Users\Alex und Corinna\Desktop\T4E Player.lnk
[2010.09.01 12:49:09 | 000,113,933 | ---- | C] () -- C:\Windows\System32\drivers\klin.dat
[2010.09.01 12:49:09 | 000,097,549 | ---- | C] () -- C:\Windows\System32\drivers\klick.dat
[2010.08.31 22:08:33 | 000,000,816 | ---- | C] () -- C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
[2010.08.31 16:41:44 | 000,000,766 | ---- | C] () -- C:\Users\Alex und Corinna\Desktop\Brief-Druckerei.lnk
[2010.08.31 16:41:41 | 000,001,161 | ---- | C] () -- C:\Windows\DB Adress.dat
[2010.08.31 16:41:41 | 000,000,567 | ---- | C] () -- C:\Windows\DB Absender.dat
[2010.08.30 16:41:44 | 000,001,331 | ---- | C] () -- C:\Users\Public\Desktop\Apollox Realistic Gameplay Switcher.lnk
[2010.08.26 16:27:37 | 000,000,681 | ---- | C] () -- C:\Users\Public\Desktop\ArtMoney SE v7.32.lnk
[2010.08.26 15:06:29 | 000,001,056 | ---- | C] () -- C:\Users\Alex und Corinna\Desktop\MM 10.lnk
[2010.08.22 13:58:20 | 000,000,798 | ---- | C] () -- C:\Users\Alex und Corinna\Desktop\Cheat Engine.lnk
[2010.08.22 13:58:19 | 001,970,176 | ---- | C] () -- C:\Windows\System32\d3dx9.dll
[2010.08.18 17:48:22 | 000,000,046 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Unregelmäßige Verben.kk
[2010.08.18 17:33:11 | 000,005,542 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Unregelmäßige Verben.vok2
[2010.08.17 22:33:34 | 000,000,312 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Vokabeln.aw
[2010.08.17 22:18:10 | 000,000,056 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Vokabeln.kk
[2010.08.17 22:17:37 | 000,006,074 | ---- | C] () -- C:\Users\Alex und Corinna\Documents\Vokabeln.vok2
[2010.08.17 22:12:33 | 000,000,906 | ---- | C] () -- C:\Users\Alex und Corinna\Desktop\Teachmaster 4.3.lnk
[2010.08.13 16:02:27 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_motmodem_01007.Wdf
[2010.08.02 17:28:34 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2010.08.01 17:49:25 | 000,000,363 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2010.06.02 21:47:04 | 000,045,056 | ---- | C] () -- C:\Users\Alex und Corinna\AppData\Roaming\chrtmp
[2010.04.30 18:27:59 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.02.02 16:07:56 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.10.10 16:24:33 | 000,162,432 | ---- | C] () -- C:\Windows\System32\drivers\ithsgt.sys
[2009.10.10 16:24:21 | 000,012,032 | ---- | C] () -- C:\Windows\System32\drivers\lilsgt.sys
[2009.10.06 15:39:43 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.09.13 16:05:27 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009.09.13 16:05:27 | 000,022,328 | ---- | C] () -- C:\Users\Alex und Corinna\AppData\Roaming\PnkBstrK.sys
[2009.09.13 16:05:09 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2009.08.22 20:55:38 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009.06.20 14:06:15 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2009.06.04 18:38:13 | 000,000,009 | ---- | C] () -- C:\Users\Alex und Corinna\AppData\Roaming\mdb.bin
[2009.06.04 17:53:08 | 000,000,104 | ---- | C] () -- C:\Users\Alex und Corinna\AppData\Local\fusioncache.dat
[2009.06.03 17:49:07 | 000,029,184 | ---- | C] () -- C:\Users\Alex und Corinna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.03 12:00:22 | 000,000,342 | ---- | C] () -- C:\Windows\{9A3BC157-B94F-4EFD-ABA9-1E56DEB00655}_WiseFW.ini
[2008.04.25 14:23:38 | 000,012,288 | ---- | C] () -- C:\Windows\System32\EvOnlDiag.dll
[2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2003.01.07 17:05:08 | 000,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI
< End of report > --- --- --- |