Weißer Bildschirm, Deutsch/Englische Schrift

cosinus · 25.09.2012, 13:57

Was hat das jetzt mit Linux zu tun? Ich hab nach OTLPE gefragt!
Was hast du jetzt überhaupt vor?!

Keksdose222 · 28.09.2012, 14:10

Aso ich bin jetzt so weit, dass ich auf das OTlPE Zeichen klicken kann.
Aber leider kommt der nächste Schritt nicht? Ich werde nichts gefragt und muss einen Ordner wählen. Ich verzweifle hier geich xD

cosinus · 28.09.2012, 15:26

Du musst den Windows-Ordner auswählen!

Keksdose222 · 29.09.2012, 16:48

Code:

ATTFilter

OTL logfile created on: 9/28/2012 9:44:31 PM - Run 
OTLPE by OldTimer - Version 3.1.48.0     Folder = X:\Programs\OTLPE
Windows Vista (TM) Home Premium  (Version = 6.0.6000) - Type = System
Internet Explorer (Version = 8.0.6001.18904)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 90.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 97.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 207.50 Gb Total Space | 67.12 Gb Free Space | 32.35% Space Free | Partition Type: NTFS
Drive D: | 25.37 Gb Total Space | 12.66 Gb Free Space | 49.89% Space Free | Partition Type: FAT32
Drive X: | 3.73 Gb Total Space | 3.33 Gb Free Space | 89.27% Space Free | Partition Type: FAT
 
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = All Days
Using ControlSet: ControlSet001
 
========== Win32 Services (SafeList) ==========
 
SRV - [2012/05/05 04:47:36 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/04/21 18:01:33 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/02/29 02:50:48 | 000,158,856 | R--- | M] (Skype Technologies) [Auto] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/08/02 00:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011/04/15 05:43:20 | 002,280,312 | ---- | M] (TeamViewer GmbH) [Disabled] -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [2009/04/30 06:23:26 | 000,090,112 | ---- | M] () [Auto] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
SRV - [2009/03/29 15:25:45 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
 
 
========== Driver Services (All) ==========
 
DRV - File not found [Kernel | On_Demand] --  -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand] --  -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand] --  -- (IpInIp)
DRV - File not found [Kernel | On_Demand] --  -- (hwdatacard)
DRV - File not found [Kernel | Disabled] --  -- (blbdrive)
DRV - File not found [Kernel | On_Demand] --  -- (Afc)
DRV - [2012/01/18 00:44:52 | 004,332,960 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam 250(UVC)
DRV - [2011/10/07 00:23:48 | 000,230,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2011/09/13 00:30:10 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/09/02 16:29:40 | 000,016,472 | ---- | M] () [Kernel | On_Demand] -- C:\Windows\System32\pwdrvio.sys -- (pwdrvio)
DRV - [2011/09/02 16:29:36 | 000,011,104 | ---- | M] () [Kernel | On_Demand] -- C:\Windows\System32\pwdspio.sys -- (pwdspio)
DRV - [2011/08/08 00:08:58 | 000,040,016 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/07/10 19:14:00 | 000,023,120 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot] -- C:\Windows\System32\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV - [2010/02/23 09:14:51 | 000,211,968 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10)
DRV - [2010/02/23 09:14:42 | 000,058,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20)
DRV - [2010/02/23 09:14:41 | 000,102,400 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\mrxsmb.sys -- (mrxsmb)
DRV - [2010/02/20 17:30:16 | 000,396,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\http.sys -- (HTTP)
DRV - [2010/02/18 08:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip6)
DRV - [2010/02/18 08:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip)
DRV - [2010/02/18 08:04:38 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel)
DRV - [2010/02/18 08:04:30 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\TUNMP.SYS -- (tunmp)
DRV - [2009/12/11 08:15:49 | 000,306,688 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\srv.sys -- (srv)
DRV - [2009/12/11 08:15:30 | 000,084,992 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet)
DRV - [2009/09/14 05:50:54 | 000,130,048 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\srv2.sys -- (srv2)
DRV - [2009/08/04 16:43:51 | 000,108,768 | ---- | M] (Protect Software GmbH) [Kernel | Auto] -- C:\Windows\System32\drivers\ACEDRV08.sys -- (ACEDRV08)
DRV - [2009/06/15 14:12:26 | 000,408,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ksecdd.sys -- (KSecDD)
DRV - [2009/04/09 07:38:30 | 000,110,592 | ---- | M] (ZTE Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ZTEusbnet.sys -- (ZTEusbnet)
DRV - [2009/04/09 07:38:30 | 000,105,344 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand] -- C:\Windows\System32\drivers\zteusbvoice.sys -- (ZTEusbvoice)
DRV - [2009/04/09 07:38:30 | 000,105,344 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2009/04/09 07:38:30 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2009/04/09 07:38:30 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2009/04/09 07:38:30 | 000,007,680 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand] -- C:\Windows\System32\drivers\massfilter.sys -- (massfilter)
DRV - [2009/03/29 15:38:01 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndproxy.sys -- (NDProxy)
DRV - [2009/03/29 15:38:01 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndistapi.sys -- (NdisTapi)
DRV - [2009/03/29 15:38:00 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\wanarp.sys -- (Wanarpv6)
DRV - [2009/03/29 15:38:00 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wanarp.sys -- (Wanarp)
DRV - [2009/03/29 15:37:57 | 000,070,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\pacer.sys -- (PSched)
DRV - [2009/03/29 15:37:56 | 000,619,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl)
DRV - [2009/03/29 15:33:50 | 000,020,920 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\compbatt.sys -- (Compbatt)
DRV - [2009/03/29 15:33:50 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi)
DRV - [2009/03/29 15:33:49 | 000,258,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\acpi.sys -- (ACPI)
DRV - [2009/03/29 15:33:49 | 000,014,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\CmBatt.sys -- (CmBatt)
DRV - [2009/03/29 15:32:30 | 000,110,080 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\system32\drivers\mrxdav.sys -- (MRxDAV)
DRV - [2009/03/29 15:24:35 | 000,055,296 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\USBSTOR.SYS -- (USBSTOR)
DRV - [2009/03/29 15:22:29 | 001,060,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\ntfs.sys -- (Ntfs)
DRV - [2009/03/29 15:22:28 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\monitor.sys -- (monitor)
DRV - [2009/03/29 15:13:05 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv)
DRV - [2009/03/29 15:01:55 | 000,025,656 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\msahci.sys -- (msahci)
DRV - [2009/03/29 15:01:55 | 000,021,560 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\atapi.sys -- (atapi)
DRV - [2009/03/29 15:01:55 | 000,017,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\intelide.sys -- (intelide)
DRV - [2009/03/29 15:01:54 | 000,211,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\volsnap.sys -- (volsnap)
DRV - [2009/03/29 15:01:54 | 000,154,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP)
DRV - [2009/03/29 14:57:39 | 000,192,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbhub.sys -- (usbhub)
DRV - [2009/03/29 14:57:38 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbehci.sys -- (usbehci)
DRV - [2009/03/29 14:57:38 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbuhci.sys -- (usbuhci)
DRV - [2009/03/29 14:57:37 | 000,073,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbccgp.sys -- (usbccgp)
DRV - [2009/03/29 14:48:55 | 000,224,824 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\clfs.sys -- (CLFS) Common Log (CLFS)
DRV - [2009/03/29 14:48:52 | 000,495,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000)
DRV - [2009/03/29 14:48:51 | 000,034,360 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\mouclass.sys -- (mouclass)
DRV - [2009/03/29 14:48:51 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sermouse.sys -- (sermouse)
DRV - [2009/03/29 14:48:51 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mouhid.sys -- (mouhid)
DRV - [2009/03/29 14:48:50 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\i8042prt.sys -- (i8042prt)
DRV - [2009/03/29 14:48:50 | 000,035,384 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\kbdclass.sys -- (kbdclass)
DRV - [2009/03/29 14:48:50 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid)
DRV - [2009/03/29 14:35:07 | 000,053,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2009/03/29 13:54:06 | 000,012,800 | ---- | M] (Microsoft Corporation) [Recognizer | System] -- C:\Windows\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV - [2009/02/05 13:39:08 | 000,017,064 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot] -- C:\Windows\System32\drivers\SiWinAcc.sys -- (SiFilter)
DRV - [2009/02/05 13:39:00 | 000,012,200 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot] -- C:\Windows\System32\drivers\SiRemFil.sys -- (SiRemFil)
DRV - [2009/02/05 13:38:24 | 000,212,520 | ---- | M] (Silicon Image, Inc) [Kernel | Boot] -- C:\Windows\System32\drivers\Si3531.sys -- (Si3531)
DRV - [2008/02/11 13:36:10 | 002,302,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2007/11/21 05:17:34 | 000,327,168 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\netr28.sys -- (netr28)
DRV - [2006/11/02 08:34:35 | 000,132,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ecache.sys -- (Ecache)
DRV - [2006/11/02 08:34:31 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\qwavedrv.sys -- (QWAVEdrv)
DRV - [2006/11/02 05:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 05:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS)
DRV - [2006/11/02 05:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 05:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 05:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 05:51:30 | 000,290,408 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx)
DRV - [2006/11/02 05:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 05:51:14 | 000,183,912 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\Windows\System32\drivers\fltMgr.sys -- (FltMgr)
DRV - [2006/11/02 05:51:12 | 000,168,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt)
DRV - [2006/11/02 05:51:12 | 000,167,528 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\pcmcia.sys -- (pcmcia)
DRV - [2006/11/02 05:51:09 | 000,160,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC)
DRV - [2006/11/02 05:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 05:50:57 | 000,140,392 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\pci.sys -- (pci)
DRV - [2006/11/02 05:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 05:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 05:50:40 | 000,106,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\nv_agp.sys -- (nv_agp)
DRV - [2006/11/02 05:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 05:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 05:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 05:50:28 | 000,050,792 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\termdd.sys -- (TermDD)
DRV - [2006/11/02 05:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006/11/02 05:50:24 | 000,050,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr)
DRV - [2006/11/02 05:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\isapnp.sys -- (isapnp)
DRV - [2006/11/02 05:50:24 | 000,046,696 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\Windows\System32\drivers\mup.sys -- (Mup)
DRV - [2006/11/02 05:50:23 | 000,049,256 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr)
DRV - [2006/11/02 05:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 05:50:17 | 000,080,488 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\msdsm.sys -- (msdsm)
DRV - [2006/11/02 05:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 05:50:16 | 000,078,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\mpio.sys -- (mpio)
DRV - [2006/11/02 05:50:16 | 000,076,392 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sbp2port.sys -- (sbp2port)
DRV - [2006/11/02 05:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 05:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006/11/02 05:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 05:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 05:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 05:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 05:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 05:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 05:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 05:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 05:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 05:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 05:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 05:50:04 | 000,058,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\gagp30kx.sys -- (gagp30kx)
DRV - [2006/11/02 05:50:04 | 000,058,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\uliagpkx.sys -- (uliagpkx)
DRV - [2006/11/02 05:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 05:49:59 | 000,056,936 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\UAGP35.SYS -- (uagp35)
DRV - [2006/11/02 05:49:59 | 000,054,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\amdagp.sys -- (amdagp)
DRV - [2006/11/02 05:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 05:49:58 | 000,056,424 | ---- | M] (Microsoft Corporation) [File_System | Boot] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo)
DRV - [2006/11/02 05:49:57 | 000,054,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\mountmgr.sys -- (MountMgr)
DRV - [2006/11/02 05:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 05:49:54 | 000,028,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mssmbios.sys -- (mssmbios)
DRV - [2006/11/02 05:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 05:49:52 | 000,054,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\viaagp.sys -- (viaagp)
DRV - [2006/11/02 05:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\disk.sys -- (disk)
DRV - [2006/11/02 05:49:49 | 000,027,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\i2omp.sys -- (i2omp)
DRV - [2006/11/02 05:49:43 | 000,022,632 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk)
DRV - [2006/11/02 05:49:38 | 000,019,560 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\wd.sys -- (Wd)
DRV - [2006/11/02 05:49:35 | 000,018,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\spldr.sys -- (spldr)
DRV - [2006/11/02 05:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006/11/02 05:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006/11/02 05:49:26 | 000,015,464 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\amdide.sys -- (amdide)
DRV - [2006/11/02 05:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006/11/02 05:49:20 | 000,013,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv)
DRV - [2006/11/02 05:49:20 | 000,013,416 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\pciide.sys -- (pciide)
DRV - [2006/11/02 05:49:20 | 000,012,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\swenum.sys -- (swenum)
DRV - [2006/11/02 05:14:58 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbprint.sys -- (usbprint)
DRV - [2006/11/02 05:14:17 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbscan.sys -- (usbscan)
DRV - [2006/11/02 05:04:35 | 000,878,080 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAUTH)
DRV - [2006/11/02 05:04:23 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\WpdUsb.sys -- (WpdUsb)
DRV - [2006/11/02 05:03:00 | 000,242,688 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\rdpdr.sys -- (rdpdr)
DRV - [2006/11/02 05:02:15 | 000,160,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rdpwd.sys -- (RDPWD)
DRV - [2006/11/02 05:02:07 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tssecsrv.sys -- (tssecsrv)
DRV - [2006/11/02 05:02:01 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdtcp.sys -- (TDTCP)
DRV - [2006/11/02 05:02:01 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\tdpipe.sys -- (TDPIPE)
DRV - [2006/11/02 05:02:01 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\RDPENCDD.sys -- (RDPENCDD)
DRV - [2006/11/02 05:02:01 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\RDPCDD.sys -- (RDPCDD)
DRV - [2006/11/02 04:58:52 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\modem.sys -- (Modem)
DRV - [2006/11/02 04:58:43 | 000,270,336 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\system32\drivers\afd.sys -- (AFD)
DRV - [2006/11/02 04:58:26 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ws2ifsl.sys -- (ws2ifsl)
DRV - [2006/11/02 04:58:14 | 000,118,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndiswan.sys -- (NdisWan)
DRV - [2006/11/02 04:58:14 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\raspptp.sys -- (PptpMiniport) WAN-Miniport (PPTP)
DRV - [2006/11/02 04:58:13 | 000,075,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\rasl2tp.sys -- (Rasl2tp) WAN-Miniport (L2TP)
DRV - [2006/11/02 04:58:13 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\rasacd.sys -- (RasAcd)
DRV - [2006/11/02 04:58:12 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\raspppoe.sys -- (RasPppoe)
DRV - [2006/11/02 04:58:10 | 000,017,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\asyncmac.sys -- (AsyncMac)
DRV - [2006/11/02 04:58:09 | 000,099,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT)
DRV - [2006/11/02 04:58:04 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV - [2006/11/02 04:57:47 | 000,027,648 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg)
DRV - [2006/11/02 04:57:35 | 000,068,096 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\tdx.sys -- (tdx)
DRV - [2006/11/02 04:57:30 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy)
DRV - [2006/11/02 04:57:26 | 000,035,840 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\netbios.sys -- (NetBIOS)
DRV - [2006/11/02 04:57:22 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ndisuio.sys -- (Ndisuio)
DRV - [2006/11/02 04:57:20 | 000,184,320 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\netbt.sys -- (netbt)
DRV - [2006/11/02 04:57:10 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\smb.sys -- (Smb)
DRV - [2006/11/02 04:57:04 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM)
DRV - [2006/11/02 04:56:49 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr)
DRV - [2006/11/02 04:56:49 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio)
DRV - [2006/11/02 04:55:24 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\umbus.sys -- (umbus)
DRV - [2006/11/02 04:55:23 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\bthmodem.sys -- (BTHMODEM)
DRV - [2006/11/02 04:55:22 | 000,029,184 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\hidbth.sys -- (HidBth)
DRV - [2006/11/02 04:55:20 | 000,132,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbvideo.sys -- (usbvideo) USB-Videogerät (WDM)
DRV - [2006/11/02 04:55:16 | 000,062,080 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\System32\drivers\ohci1394.sys -- (ohci1394)
DRV - [2006/11/02 04:55:09 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR)
DRV - [2006/11/02 04:55:08 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\circlass.sys -- (circlass)
DRV - [2006/11/02 04:55:05 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\usbohci.sys -- (usbohci)
DRV - [2006/11/02 04:55:04 | 000,071,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB-Audiotreiber (WDM)
DRV - [2006/11/02 04:55:01 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\hidir.sys -- (HidIr)
DRV - [2006/11/02 04:55:01 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\hidusb.sys -- (HidUsb)
DRV - [2006/11/02 04:54:59 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud)
DRV - [2006/11/02 04:54:52 | 000,082,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\WUDFRd.sys -- (WUDFRd)
DRV - [2006/11/02 04:53:56 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\vgapnp.sys -- (vga)
DRV - [2006/11/02 04:53:56 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\vga.sys -- (VgaSave)
DRV - [2006/11/02 04:52:52 | 000,020,608 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\wacompen.sys -- (WacomPen)
DRV - [2006/11/02 04:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\cdrom.sys -- (cdrom)
DRV - [2006/11/02 04:51:40 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sfloppy.sys -- (sfloppy)
DRV - [2006/11/02 04:51:40 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\sffp_sd.sys -- (sffp_sd)
DRV - [2006/11/02 04:51:40 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\system32\drivers\sffp_mmc.sys -- (sffp_mmc)
DRV - [2006/11/02 04:51:38 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\sffdisk.sys -- (sffdisk)
DRV - [2006/11/02 04:51:33 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\System32\drivers\fdc.sys -- (fdc)
DRV - [2006/11/02 04:51:32 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\System32\drivers\flpydisk.sys -- (flpydisk)
DRV - [2006/11/02 04:51:30 | 000,083,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2006/11/02 04:51:30 | 000,079,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\parport.sys -- (Parport)
DRV - [2006/11/02 04:51:25 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\serenum.sys -- (Serenum)
DRV - [2006/11/02 04:51:23 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\Windows\System32\drivers\parvdm.sys -- (Parvdm)
DRV - [2006/11/02 04:51:15 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mskssrv.sys -- (MSKSSRV)
DRV - [2006/11/02 04:51:14 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mspqm.sys -- (MSPQM)
DRV - [2006/11/02 04:51:13 | 000,006,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mstee.sys -- (MSTEE)
DRV - [2006/11/02 04:51:13 | 000,005,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mspclock.sys -- (MSPCLOCK)
DRV - [2006/11/02 04:51:05 | 000,004,608 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\null.sys -- (Null)
DRV - [2006/11/02 04:51:03 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System] -- C:\Windows\System32\drivers\beep.sys -- (Beep)
DRV - [2006/11/02 04:42:03 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\ipmidrv.sys -- (IPMIDRV)
DRV - [2006/11/02 04:33:07 | 000,083,456 | ---- | M] (Microsoft Corporation) [File_System | Auto] -- C:\Windows\system32\drivers\luafv.sys -- (luafv)
DRV - [2006/11/02 04:32:55 | 000,027,648 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace)
DRV - [2006/11/02 04:31:26 | 000,222,208 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\rdbss.sys -- (rdbss)
DRV - [2006/11/02 04:31:12 | 000,069,632 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\bowser.sys -- (bowser)
DRV - [2006/11/02 04:31:04 | 000,074,752 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\dfsc.sys -- (DfsC)
DRV - [2006/11/02 04:30:57 | 000,225,280 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\Windows\System32\drivers\udfs.sys -- (udfs)
DRV - [2006/11/02 04:30:57 | 000,034,816 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\npfs.sys -- (Npfs)
DRV - [2006/11/02 04:30:56 | 000,022,528 | ---- | M] (Microsoft Corporation) [File_System | System] -- C:\Windows\System32\drivers\msfs.sys -- (Msfs)
DRV - [2006/11/02 04:30:50 | 000,070,144 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- C:\Windows\System32\drivers\cdfs.sys -- (cdfs)
DRV - [2006/11/02 04:30:49 | 000,142,336 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- C:\Windows\System32\drivers\fastfat.sys -- (fastfat)
DRV - [2006/11/02 04:30:19 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\viac7.sys -- (ViaC7)
DRV - [2006/11/02 04:30:18 | 000,040,960 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\amdk8.sys -- (AmdK8)
DRV - [2006/11/02 04:30:18 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\intelppm.sys -- (intelppm)
DRV - [2006/11/02 04:30:18 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\crusoe.sys -- (Crusoe)
DRV - [2006/11/02 04:30:18 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\amdk7.sys -- (AmdK7)
DRV - [2006/11/02 04:30:18 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- C:\Windows\system32\drivers\processr.sys -- (Processor)
DRV - [2006/11/02 04:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 04:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 04:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 04:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 04:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 04:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 03:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 03:36:49 | 000,235,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService)
DRV - [2006/11/02 03:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006/11/02 03:30:56 | 000,045,568 | ---- | M] (VIA Technologies, Inc.              ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\fetnd5.sys -- (FETNDIS)
DRV - [2006/11/02 03:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006/11/02 03:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006/11/02 03:10:22 | 000,002,864 | ---- | M] (Microsoft Corporation) [Adapter | On_Demand] -- C:\Windows\System32\WINSOCK.DLL -- (Winsock)
DRV - [2006/11/02 02:37:21 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2006/07/04 00:42:16 | 000,169,600 | ---- | M] (Trident Multimedia Technologies Co.,Ltd) [Kernel | On_Demand] -- C:\Windows\System32\drivers\TridVid.sys -- (TridVid) USB Hybrid TV Receiver (TM6000)
DRV - [2005/04/26 04:01:38 | 000,003,584 | ---- | M] (Trident Microsystem Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\Triddev.sys -- (TridDev) USB Hybrid TV Device (TM6000)
DRV - [2005/03/07 05:52:48 | 000,014,408 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.searchcanvas.com/?ot=6
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\Gast1_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\Gast1_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKU\Gast1_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKU\Gast1_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 30 45 0C 14 DE 0C CD 01  [binary data]
IE - HKU\Gast1_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\Kawaiiju_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKU\Kawaiiju_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\Kawaiiju_ON_C\Software\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\Kawaiiju_ON_C\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKU\Kawaiiju_ON_C\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - Reg Error: Key error. File not found
IE - HKU\Kawaiiju_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..keyword.URL: "hxxp://search.babylon.com/?affID=109986&tt=ol_14dnows_new&babsrc=KW_ss&mntrId=fc3b92ab0000000000000015afbb10ee&q="
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\System32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\System32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0:  File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.709: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.709: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.709: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/04/21 18:01:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
[2011/10/28 08:23:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Extensions
[2012/05/06 10:14:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\extensions
[2012/03/27 19:24:47 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012/03/29 12:13:04 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
[2012/05/06 10:14:59 | 000,000,000 | ---D | M] ("I Want This") -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\extensions\crossriderapp2258@crossrider.com
[2007/04/25 20:52:06 | 000,003,739 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\searchplugins\avg-secure-search.xml
[2012/04/29 13:51:17 | 000,000,950 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\searchplugins\icqplugin-1.xml
[2012/01/16 02:34:14 | 000,000,950 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\searchplugins\icqplugin-2.xml
[2012/03/29 08:41:03 | 000,000,950 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\searchplugins\icqplugin-3.xml
[2012/03/19 14:09:28 | 000,000,168 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\searchplugins\icqplugin.gif
[2012/03/19 14:09:28 | 000,000,618 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\searchplugins\icqplugin.src
[2011/11/19 16:25:33 | 000,001,056 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Mozilla\Firefox\Profiles\nmgin66a.default\searchplugins\icqplugin.xml
[2012/03/30 22:09:22 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- 
[2012/03/31 21:01:17 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2012/04/21 18:01:32 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/03/21 16:42:57 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012/03/29 08:39:35 | 000,002,357 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/03/21 16:42:57 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/03/21 16:42:57 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2012/03/21 16:42:57 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2012/03/21 16:42:57 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2012/03/21 16:42:57 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2006/09/18 17:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (I Want This) - {11111111-1111-1111-1111-110011221158} - C:\Program Files\I Want This\I Want This.dll (215 Apps)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} -  File not found
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} -  File not found
O3 - HKU\Kawaiiju_ON_C\..\Toolbar\WebBrowser: (no name) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No CLSID value found.
O3 - HKU\Kawaiiju_ON_C\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKU\Kawaiiju_ON_C\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} -  File not found
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Y8VtM54wf363aAt] C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O4 - HKU\Gast1_ON_C..\Run: [Y8VtM54wf363aAt] C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe ()
O4 - HKU\Kawaiiju_ON_C..\Run: [ICQ] C:\Program Files\ICQ7.7\ICQ.exe (ICQ, LLC.)
O4 - HKU\Kawaiiju_ON_C..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe (Sony Ericsson Mobile Communications AB)
O4 - HKU\Kawaiiju_ON_C..\Run: [Teefix] C:\Users\Kawaiiju\AppData\Roaming\Ahrae\miuv.exe ()
O4 - HKU\Kawaiiju_ON_C..\Run: [Wuacamisug] C:\Users\Kawaiiju\AppData\Roaming\Pazew\pufoe.exe ()
O4 - HKU\Kawaiiju_ON_C..\Run: [Y8VtM54wf363aAt] C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O4 - HKU\LocalService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\NetworkService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: 37547 = C:\PROGRA~2\LOCALS~1\Temp\msacqip.com
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O7 - HKU\Kawaiiju_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Kawaiiju_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\Kawaiiju_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Kawaiiju\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Word Explorer starten - C:\Program Files\Word Explorer\cnie5.htm ()
O9 - Extra Button: Word Explorer starten - {26231800-6CE9-43d8-9357-5B4DC8CF4561} - C:\Program Files\Word Explorer\cnie5.htm ()
O9 - Extra 'Tools' menuitem : Word Explorer starten - {26231800-6CE9-43d8-9357-5B4DC8CF4561} - C:\Program Files\Word Explorer\cnie5.htm ()
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O20 - HKLM Winlogon: UserInit - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Gast1_ON_C Winlogon: Shell - (C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe) - C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Gast1_ON_C Winlogon: UserInit - (C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe) - C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Kawaiiju_ON_C Winlogon: Shell - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Kawaiiju_ON_C Winlogon: UserInit - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O24 - Desktop WallPaper: 
O24 - Desktop BackupWallPaper: 
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 12:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O33 - MountPoints2\{1e171295-5712-11de-b932-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{1e171295-5712-11de-b932-000ae4ce0302}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{7b1c7078-7337-11de-aa46-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{7b1c7078-7337-11de-aa46-000ae4ce0302}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{94a8e471-f9e9-11de-9978-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{94a8e471-f9e9-11de-9978-000ae4ce0302}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{b6a1f15b-f9d5-11de-9815-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{b6a1f15b-f9d5-11de-9815-0015afbb10ee}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{b6a1f15d-f9d5-11de-9815-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{b6a1f15d-f9d5-11de-9815-0015afbb10ee}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{b89703f0-1c76-11de-a627-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{b89703f0-1c76-11de-a627-806e6f6e6963}\Shell\AutoRun\command - "" = E:\SetupUI.exe
O33 - MountPoints2\{e425ec2d-8bee-11de-a722-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{e425ec2d-8bee-11de-a722-0015afbb10ee}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{e425ec30-8bee-11de-a722-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{e425ec30-8bee-11de-a722-0015afbb10ee}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{ecc2f43b-b5ad-11de-ae2e-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{ecc2f43b-b5ad-11de-ae2e-000ae4ce0302}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{f0f8100f-8bf1-11de-a02e-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{f0f8100f-8bf1-11de-a02e-000ae4ce0302}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG2012\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within All Days ==========
 
[2012/04/12 08:19:54 | 000,419,488 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/03/30 21:45:57 | 000,000,000 | ---D | C] -- C:\Revolution Reloaded
[2012/03/28 14:51:39 | 000,000,000 | ---D | C] -- C:\Users\Kawaiiju\Documents\netfx_setupverifier_new
[2012/03/28 14:30:08 | 000,000,000 | ---D | C] -- C:\Users\Kawaiiju\Documents\dotnetfx_cleanup_tool
[2012/03/21 15:12:14 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012/01/27 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\Gast1\Documents\Eigene Videos
[2012/01/27 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\Gast1\Documents\Eigene Musik
[2012/01/27 18:16:47 | 000,000,000 | -HSD | C] -- C:\Users\Gast1\Documents\Eigene Bilder
[2012/01/27 15:40:08 | 000,000,000 | ---D | C] -- C:\Users\Gast1\Desktop\Fiesta Online(EU_German)
[2012/01/18 03:59:53 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe813B.dll
[2012/01/18 03:54:26 | 000,000,000 | ---D | C] -- C:\Users\Kawaiiju\Documents\Sony Ericsson
[2012/01/18 00:44:52 | 004,332,960 | ---- | C] (Logitech Inc.) -- C:\Windows\System32\drivers\lvuvc.sys
[2012/01/18 00:44:52 | 000,540,960 | ---- | C] (Logitech Inc.) -- C:\Windows\System32\LVUI2RC.dll
[2012/01/18 00:44:40 | 000,545,056 | ---- | C] (Logitech Inc.) -- C:\Windows\System32\LVUI2.dll
[2012/01/18 00:44:26 | 000,307,488 | ---- | C] (Logitech Inc.) -- C:\Windows\System32\lvcodec2.dll
[2012/01/18 00:44:26 | 000,196,896 | ---- | C] (Logitech Inc.) -- C:\Windows\System32\lvci13311044.dll
[2012/01/10 19:52:26 | 000,000,000 | ---D | C] -- C:\Users\Kawaiiju\Desktop\Fiesta Alles
[2011/12/29 12:54:43 | 000,000,000 | ---D | C] -- C:\output
[2011/12/25 15:49:32 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2011/12/25 15:49:32 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2011/12/25 15:49:32 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2011/12/25 15:49:31 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2011/12/25 15:49:31 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2011/12/25 15:49:30 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2011/12/25 15:49:30 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2011/12/25 15:49:29 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2011/12/25 15:49:29 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll
[2011/12/25 15:49:29 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll
[2011/12/25 15:49:29 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll
[2011/12/25 15:49:28 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2011/12/25 15:49:28 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2011/12/25 15:49:28 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll
[2011/12/25 15:49:27 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2011/12/25 15:49:26 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2011/12/25 15:49:26 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2011/12/25 15:49:26 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2011/12/25 15:49:25 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2011/12/25 15:49:24 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2011/12/25 15:49:24 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2011/12/25 15:49:23 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2011/12/25 15:49:23 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2011/12/25 15:49:23 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2011/12/25 15:49:22 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2011/12/25 15:49:22 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2011/12/25 15:49:21 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2011/12/25 15:49:21 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2011/12/25 15:49:20 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2011/12/25 15:49:19 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2011/12/25 15:49:19 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2011/12/25 15:49:19 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2011/12/25 15:49:19 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2011/12/25 15:49:18 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2011/12/25 15:49:18 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2011/12/25 15:49:18 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2011/12/25 15:49:17 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2011/12/25 15:49:17 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2011/12/25 15:49:17 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2011/12/25 15:49:16 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2011/12/25 15:49:16 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2011/12/25 15:49:16 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2011/12/25 15:49:16 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2011/12/25 15:49:15 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2011/12/25 15:49:15 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2011/12/25 15:49:14 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2011/12/25 15:49:14 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2011/12/25 15:49:13 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2011/12/25 15:49:13 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2011/12/25 15:49:12 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2011/12/25 15:49:12 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2011/12/25 15:49:12 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2011/12/25 15:49:11 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2011/12/25 15:49:10 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2011/12/25 15:49:10 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2011/12/25 15:49:09 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2011/12/25 15:49:08 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2011/12/25 15:49:08 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2011/12/25 15:49:08 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2011/12/25 15:49:07 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2011/12/25 15:49:06 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2011/12/25 15:49:06 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2011/12/25 15:49:05 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2011/12/25 15:49:05 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2011/12/25 15:49:05 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2011/12/25 15:49:04 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2011/12/25 15:49:04 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2011/12/25 15:49:03 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2011/12/25 15:49:03 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2011/12/25 15:49:03 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2011/12/25 15:49:02 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2011/12/25 15:49:01 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2011/12/25 15:49:00 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2011/12/25 15:48:59 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2011/12/25 15:48:59 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2011/12/25 15:48:59 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2011/12/25 15:48:58 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2011/12/25 15:48:58 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2011/12/25 15:48:58 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2011/12/25 15:48:57 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2011/12/25 15:48:57 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2011/12/25 15:48:56 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2011/12/25 15:48:29 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2011/12/25 15:48:28 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2011/12/25 15:48:28 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2011/12/25 15:48:24 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2011/12/25 15:48:23 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2011/12/25 15:48:21 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2011/12/25 15:48:19 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2011/12/25 15:48:19 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2011/12/25 15:48:15 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2011/12/24 10:35:31 | 000,000,000 | ---D | C] -- C:\Wow
[2011/11/22 14:31:34 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2011/11/22 14:31:34 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2011/11/22 14:31:34 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2011/10/27 13:56:01 | 004,528,854 | ---- | C] (FileZilla Project) -- C:\Users\Kawaiiju\Documents\FileZilla_3.5.1_win32-setup.exe
[2011/10/27 09:14:44 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/10/07 00:23:48 | 000,230,608 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2011/10/05 13:13:11 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
 
========== Files - Modified Within All Days ==========
 
[2012/09/28 06:43:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/22 13:15:06 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/22 13:15:06 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/22 13:15:04 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/08/06 13:50:00 | 000,000,424 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{B48F2960-5E9F-4CCA-9C0E-231B57765977}.job
[2012/08/06 13:32:11 | 007,168,818 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2012/08/06 13:32:11 | 002,751,768 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/08/06 13:32:11 | 002,270,398 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2012/08/06 13:32:11 | 002,069,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/05/29 15:09:05 | 000,000,426 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{2EF4FBBD-0B50-4BCA-91E4-CF5561AC3EF1}.job
[2012/05/06 10:17:10 | 000,271,360 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe
[2012/05/06 10:17:10 | 000,271,360 | ---- | M] () -- C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe
[2012/05/06 10:15:44 | 007,399,069 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\Again.mp3
[2012/05/06 09:46:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/05/06 09:28:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/05/06 09:02:30 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lvuvc.hs
[2012/05/06 07:00:37 | 000,002,339 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/05/06 06:56:54 | 096,395,231 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm.prepare
[2012/05/05 18:32:41 | 000,465,694 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\Aion0015.jpg
[2012/05/05 18:30:18 | 000,513,797 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\Aion0028.jpg
[2012/05/05 18:07:49 | 000,074,685 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\Nom nom.JPG
[2012/05/05 17:17:20 | 000,042,253 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\DSC_052.JPG
[2012/05/05 16:38:36 | 002,938,529 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\IMG_2446.JPG
[2012/05/05 12:22:06 | 097,215,246 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2012/05/05 12:20:14 | 000,287,166 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2012/05/05 04:47:36 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/05/05 04:47:36 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/05/03 10:53:18 | 000,072,805 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\DSC823.JPG
[2012/05/03 10:51:19 | 000,066,438 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\DSC710.JPG
[2012/05/01 15:19:18 | 000,000,060 | ---- | M] () -- C:\Users\Kawaiiju\Documents\aionmemo_c044f945.dat
[2012/04/20 13:04:07 | 000,130,560 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/17 16:59:12 | 000,002,076 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\AION Free-To-Play.lnk
[2012/04/13 19:02:14 | 000,001,593 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ICQ7.7.lnk
[2012/04/10 00:39:49 | 001,187,840 | -H-- | M] () -- C:\Users\Kawaiiju\Documents\photothumb.db
[2012/04/09 12:07:01 | 000,001,356 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Local\d3d9caps.dat
[2012/04/09 09:36:44 | 000,011,022 | -HS- | M] () -- C:\Users\Kawaiiju\Desktop\Folder.jpg
[2012/04/09 09:36:44 | 000,011,022 | -HS- | M] () -- C:\Users\Kawaiiju\Desktop\AlbumArt_{9B63BF8D-D638-496C-93D3-0BD137D73F0F}_Large.jpg
[2012/04/09 09:36:44 | 000,002,277 | -HS- | M] () -- C:\Users\Kawaiiju\Desktop\AlbumArtSmall.jpg
[2012/04/09 09:36:44 | 000,002,277 | -HS- | M] () -- C:\Users\Kawaiiju\Desktop\AlbumArt_{9B63BF8D-D638-496C-93D3-0BD137D73F0F}_Small.jpg
[2012/04/05 22:32:46 | 000,054,156 | -H-- | M] () -- C:\Windows\QTFont.qfn
[2012/04/05 14:25:42 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012/04/05 14:25:42 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012/03/30 22:10:29 | 000,000,685 | ---- | M] () -- C:\Users\Kawaiiju\Desktop\RevoV8.lnk
[2012/03/30 22:10:08 | 000,000,830 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
[2012/03/30 18:27:09 | 270,777,172 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/03/29 08:39:44 | 000,000,255 | ---- | M] () -- C:\user.js
[2012/03/28 08:27:01 | 000,000,903 | ---- | M] () -- C:\Users\Gast1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/03/20 17:53:26 | 000,001,409 | ---- | M] () -- C:\Windows\QTFont.for
[2012/03/17 09:09:36 | 000,000,428 | ---- | M] () -- C:\Users\Kawaiiju\Documents\Namen.rtf
[2012/02/07 16:24:39 | 000,001,223 | ---- | M] () -- C:\Users\Kawaiiju\Documents\Gespräch.rtf
[2012/02/04 13:12:14 | 000,000,818 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2012.lnk
[2012/02/02 15:22:35 | 000,005,163 | ---- | M] () -- C:\Users\Kawaiiju\Documents\Liebe Kreuz und Quer.rtf
[2012/02/01 16:17:30 | 000,000,898 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2012/02/01 12:42:24 | 000,000,474 | ---- | M] () -- C:\Users\Kawaiiju\Documents\Liebe ftw.rtf
[2012/01/31 13:12:11 | 000,000,386 | ---- | M] () -- C:\Users\Kawaiiju\Documents\hju.rtf
[2012/01/29 08:49:34 | 000,000,315 | ---- | M] () -- C:\Users\Kawaiiju\Documents\alica.rtf
[2012/01/18 03:59:55 | 000,001,953 | ---- | M] () -- C:\Users\Public\Desktop\Sony Ericsson PC Suite 6.0.lnk
[2012/01/18 03:59:53 | 000,148,736 | ---- | M] (Avanquest Software) -- C:\ProgramData\hpe813B.dll
[2012/01/18 00:44:52 | 004,332,960 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\drivers\lvuvc.sys
[2012/01/18 00:44:52 | 000,540,960 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\LVUI2RC.dll
[2012/01/18 00:44:40 | 000,545,056 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\LVUI2.dll
[2012/01/18 00:44:26 | 000,307,488 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\lvcodec2.dll
[2012/01/18 00:44:26 | 000,196,896 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\lvci13311044.dll
[2012/01/18 00:44:00 | 010,920,984 | ---- | M] () -- C:\Windows\System32\LogiDPP.dll
[2012/01/18 00:44:00 | 000,336,408 | ---- | M] () -- C:\Windows\System32\DevManagerCore.dll
[2012/01/18 00:44:00 | 000,104,472 | ---- | M] () -- C:\Windows\System32\LogiDPPApp.exe
[2011/12/25 05:31:32 | 000,234,600 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/12/14 14:47:27 | 000,011,050 | -HS- | M] () -- C:\Users\Kawaiiju\Desktop\AlbumArt_{5534AC98-3B6D-4963-B9F0-B9AEFF74CC51}_Large.jpg
[2011/12/14 14:47:27 | 000,002,360 | -HS- | M] () -- C:\Users\Kawaiiju\Desktop\AlbumArt_{5534AC98-3B6D-4963-B9F0-B9AEFF74CC51}_Small.jpg
[2011/12/11 17:34:09 | 000,000,000 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Local\{2E7DEE47-C943-441E-928B-BD877E1B9928}
[2011/10/28 08:23:02 | 000,000,830 | ---- | M] () -- C:\Users\Kawaiiju\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/10/28 08:23:02 | 000,000,806 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/10/27 13:56:03 | 004,528,854 | ---- | M] (FileZilla Project) -- C:\Users\Kawaiiju\Documents\FileZilla_3.5.1_win32-setup.exe
[2011/10/27 09:15:58 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011/10/15 17:11:13 | 000,004,484 | ---- | M] () -- C:\Users\Kawaiiju\Documents\Fehlermeldung.rtf
[2011/10/07 00:23:48 | 000,230,608 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
 
========== Files Created - No Company Name ==========
 
[2012/05/06 10:21:40 | 000,271,360 | ---- | C] () -- C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe
[2012/05/06 10:17:13 | 000,271,360 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe
[2012/05/05 18:32:20 | 000,465,694 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\Aion0015.jpg
[2012/05/05 18:29:52 | 000,513,797 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\Aion0028.jpg
[2012/05/05 18:07:47 | 000,074,685 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\Nom nom.JPG
[2012/05/05 17:31:39 | 002,938,529 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\IMG_2446.JPG
[2012/05/05 17:17:18 | 000,042,253 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\DSC_052.JPG
[2012/05/03 10:53:15 | 000,072,805 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\DSC823.JPG
[2012/05/03 10:51:16 | 000,066,438 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\DSC710.JPG
[2012/04/30 16:45:40 | 000,000,060 | ---- | C] () -- C:\Users\Kawaiiju\Documents\aionmemo_c044f945.dat
[2012/04/17 16:59:12 | 000,002,076 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\AION Free-To-Play.lnk
[2012/04/13 19:02:14 | 000,001,593 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ICQ7.7.lnk
[2012/04/12 08:19:55 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/04/05 14:25:42 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012/04/05 14:25:42 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012/03/30 22:10:29 | 000,000,685 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\RevoV8.lnk
[2012/03/29 12:12:41 | 000,000,830 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog
[2012/03/29 08:39:43 | 000,000,255 | ---- | C] () -- C:\user.js
[2012/03/28 08:27:25 | 000,000,426 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{2EF4FBBD-0B50-4BCA-91E4-CF5561AC3EF1}.job
[2012/03/28 08:27:01 | 000,000,903 | ---- | C] () -- C:\Users\Gast1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/03/20 17:53:26 | 000,054,156 | -H-- | C] () -- C:\Windows\QTFont.qfn
[2012/03/20 17:53:26 | 000,001,409 | ---- | C] () -- C:\Windows\QTFont.for
[2012/03/18 09:27:28 | 270,777,172 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/02/07 16:24:39 | 000,001,223 | ---- | C] () -- C:\Users\Kawaiiju\Documents\Gespräch.rtf
[2012/02/01 12:42:24 | 000,000,474 | ---- | C] () -- C:\Users\Kawaiiju\Documents\Liebe ftw.rtf
[2012/01/31 13:05:31 | 000,005,163 | ---- | C] () -- C:\Users\Kawaiiju\Documents\Liebe Kreuz und Quer.rtf
[2012/01/29 13:14:42 | 007,399,069 | ---- | C] () -- C:\Users\Kawaiiju\Desktop\Again.mp3
[2012/01/28 08:02:32 | 000,000,898 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2012/01/27 18:16:46 | 000,000,258 | ---- | C] () -- C:\Users\Gast1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/01/27 18:16:46 | 000,000,240 | ---- | C] () -- C:\Users\Gast1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/01/18 03:59:55 | 000,001,953 | ---- | C] () -- C:\Users\Public\Desktop\Sony Ericsson PC Suite 6.0.lnk
[2012/01/18 00:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2012/01/18 00:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2012/01/18 00:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2011/12/14 14:47:27 | 000,011,050 | -HS- | C] () -- C:\Users\Kawaiiju\Desktop\AlbumArt_{5534AC98-3B6D-4963-B9F0-B9AEFF74CC51}_Large.jpg
[2011/12/14 14:47:27 | 000,002,360 | -HS- | C] () -- C:\Users\Kawaiiju\Desktop\AlbumArt_{5534AC98-3B6D-4963-B9F0-B9AEFF74CC51}_Small.jpg
[2011/12/11 17:34:09 | 000,000,000 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Local\{2E7DEE47-C943-441E-928B-BD877E1B9928}
[2011/10/28 08:23:02 | 000,000,830 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/10/28 08:23:02 | 000,000,806 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/10/27 13:47:42 | 000,000,600 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Local\PUTTY.RND
[2011/07/26 00:48:54 | 000,028,418 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2011/01/14 14:01:50 | 028,514,224 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Local\WER3DBA.tmp.secure.hdmp
[2010/08/03 22:23:51 | 000,000,004 | RHS- | C] () -- C:\ProgramData\sysqcl1129139270.dat
[2010/03/05 16:51:18 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/07/31 07:49:21 | 000,021,059 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Roaming\UserTile.png
[2009/07/23 12:17:51 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2009/04/02 13:50:13 | 000,000,265 | ---- | C] () -- C:\Windows\ContWin.ini
[2009/03/29 15:00:37 | 000,130,560 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/03/29 12:52:43 | 000,001,356 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Local\d3d9caps.dat
[2009/02/07 16:13:31 | 000,000,510 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2008/02/11 13:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll
[2008/02/11 13:34:48 | 002,215,364 | ---- | C] () -- C:\Windows\System32\igklg400.bin
[2008/02/11 13:34:48 | 001,971,732 | ---- | C] () -- C:\Windows\System32\igklg450.bin
[2008/02/11 13:34:48 | 000,029,932 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.bin
[2007/04/25 20:26:17 | 000,910,920 | ---- | C] () -- C:\Windows\System32\pwNative.exe
[2007/04/25 20:26:17 | 000,016,472 | ---- | C] () -- C:\Windows\System32\pwdrvio.sys
[2007/04/25 20:26:05 | 000,011,104 | ---- | C] () -- C:\Windows\System32\pwdspio.sys
[2007/04/25 18:03:42 | 000,000,000 | ---- | C] () -- C:\Users\Kawaiiju\AppData\Local\{2D76B0CB-06E3-4F7B-BFB4-47308D4C7EA6}
[2006/12/11 00:06:31 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/02 11:33:31 | 007,168,818 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2006/11/02 11:33:31 | 002,270,398 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2006/11/02 11:33:31 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2006/11/02 11:33:31 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2006/11/02 08:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 08:47:37 | 000,234,600 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 06:33:01 | 002,751,768 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 06:33:01 | 002,069,070 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 06:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 06:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 06:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 06:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 04:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 04:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 03:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 03:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006/11/02 03:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2005/12/15 00:17:00 | 000,159,744 | ---- | C] () -- C:\Windows\System32\EPSPTDV.DLL
 
========== LOP Check ==========
 
[2012/01/27 18:17:48 | 000,000,000 | ---D | M] -- C:\Users\Gast1\AppData\Roaming\AVG2012
[2012/05/01 14:44:41 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Ahrae
[2007/04/25 20:53:00 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\AVG2012
[2012/03/29 08:39:32 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Babylon
[2010/03/19 20:21:53 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Broad Intelligence
[2011/07/20 16:37:52 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\DVDVideoSoft
[2011/06/13 14:16:24 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\DVDVideoSoftIEHelpers
[2012/05/05 18:28:57 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Ewse
[2011/10/27 14:05:38 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\FileZilla
[2009/02/12 15:43:19 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\FOG Downloader
[2009/10/12 20:22:39 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\GetRightToGo
[2011/06/23 04:49:24 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\gtk-2.0
[2012/05/05 15:24:08 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\ICQ
[2009/04/02 13:41:54 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\mp3manager
[2011/10/27 14:33:07 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Notepad++
[2012/05/01 10:26:45 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Pazew
[2010/03/19 20:22:19 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\PeerNetworking
[2009/05/20 11:03:00 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Publish Providers
[2012/05/01 10:36:06 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\qoxqfssh
[2012/03/29 12:11:27 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Sony
[2012/05/01 10:26:45 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Soon
[2009/06/19 13:24:11 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\SYSTEMAX Software Development
[2009/08/18 08:21:31 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\T-Mobile
[2009/08/18 08:40:37 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\T-Mobile Internet Manager
[2007/04/30 09:43:12 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\TeamViewer
[2011/12/29 18:58:05 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\TS3Client
[2009/07/18 12:10:49 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Vodafone
[2012/05/04 16:02:26 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Vuiv
[2012/05/01 14:44:41 | 000,000,000 | ---D | M] -- C:\Users\Kawaiiju\AppData\Roaming\Zeak
[2009/05/03 14:34:00 | 000,000,000 | ---D | M] -- C:\ProgramData\012
[2009/05/01 07:37:00 | 000,000,000 | ---D | M] -- C:\ProgramData\0A1
[2009/04/12 12:48:16 | 000,000,000 | ---D | M] -- C:\ProgramData\10262
[2009/04/15 16:13:18 | 000,000,000 | ---D | M] -- C:\ProgramData\1236A
[2009/04/14 12:49:01 | 000,000,000 | ---D | M] -- C:\ProgramData\128E
[2009/04/28 11:58:01 | 000,000,000 | ---D | M] -- C:\ProgramData\1293
[2009/04/10 09:55:02 | 000,000,000 | ---D | M] -- C:\ProgramData\13A9
[2009/04/13 13:20:22 | 000,000,000 | ---D | M] -- C:\ProgramData\1633B
[2009/04/20 08:42:23 | 000,000,000 | ---D | M] -- C:\ProgramData\17140
[2009/05/04 12:08:23 | 000,000,000 | ---D | M] -- C:\ProgramData\1726
[2009/04/17 14:26:01 | 000,000,000 | ---D | M] -- C:\ProgramData\17E
[2009/04/27 12:35:25 | 000,000,000 | ---D | M] -- C:\ProgramData\1928E
[2009/05/27 08:24:26 | 000,000,000 | ---D | M] -- C:\ProgramData\1A101
[2009/04/30 07:46:27 | 000,000,000 | ---D | M] -- C:\ProgramData\1B354
[2009/05/15 17:42:30 | 000,000,000 | ---D | M] -- C:\ProgramData\1E184
[2009/05/11 13:51:30 | 000,000,000 | ---D | M] -- C:\ProgramData\1E312
[2009/04/14 12:50:31 | 000,000,000 | ---D | M] -- C:\ProgramData\1F350
[2009/04/09 12:15:32 | 000,000,000 | ---D | M] -- C:\ProgramData\2017D
[2009/04/25 02:28:33 | 000,000,000 | ---D | M] -- C:\ProgramData\215C
[2009/04/19 05:26:35 | 000,000,000 | ---D | M] -- C:\ProgramData\231D5
[2009/05/23 06:43:35 | 000,000,000 | ---D | M] -- C:\ProgramData\231DC
[2009/04/29 11:10:36 | 000,000,000 | ---D | M] -- C:\ProgramData\242C9
[2009/05/16 05:11:38 | 000,000,000 | ---D | M] -- C:\ProgramData\26172
[2009/04/09 21:23:38 | 000,000,000 | ---D | M] -- C:\ProgramData\263AB
[2009/04/12 18:08:39 | 000,000,000 | ---D | M] -- C:\ProgramData\271CF
[2009/05/29 12:50:39 | 000,000,000 | ---D | M] -- C:\ProgramData\27256
[2009/05/16 08:57:42 | 000,000,000 | ---D | M] -- C:\ProgramData\2A1BC
[2009/04/19 18:27:43 | 000,000,000 | ---D | M] -- C:\ProgramData\2B281
[2009/06/01 12:59:43 | 000,000,000 | ---D | M] -- C:\ProgramData\2B379
[2009/04/10 04:37:44 | 000,000,000 | ---D | M] -- C:\ProgramData\2C38
[2009/06/06 03:40:44 | 000,000,000 | ---D | M] -- C:\ProgramData\2C384
[2009/04/13 13:35:45 | 000,000,000 | ---D | M] -- C:\ProgramData\2D144
[2009/05/02 06:51:47 | 000,000,000 | ---D | M] -- C:\ProgramData\2F1DA
[2009/05/28 09:26:48 | 000,000,000 | ---D | M] -- C:\ProgramData\30337
[2009/04/11 12:47:04 | 000,000,000 | ---D | M] -- C:\ProgramData\33B8
[2009/04/26 03:55:52 | 000,000,000 | ---D | M] -- C:\ProgramData\346E
[2009/06/14 10:44:55 | 000,000,000 | ---D | M] -- C:\ProgramData\3633F
[2009/05/22 09:30:55 | 000,000,000 | ---D | M] -- C:\ProgramData\37212
[2009/05/21 06:28:55 | 000,000,000 | ---D | M] -- C:\ProgramData\37B3
[2009/05/20 08:49:57 | 000,000,000 | ---D | M] -- C:\ProgramData\391B4
[2009/05/26 07:44:57 | 000,000,000 | ---D | M] -- C:\ProgramData\39210
[2009/04/19 12:59:57 | 000,000,000 | ---D | M] -- C:\ProgramData\3964
[2009/04/13 02:16:59 | 000,000,000 | ---D | M] -- C:\ProgramData\3B1A9
[2009/05/28 15:50:04 | 000,000,000 | ---D | M] -- C:\ProgramData\46B
[2009/04/14 16:43:06 | 000,000,000 | ---D | M] -- C:\ProgramData\63D5
[2009/04/13 13:44:08 | 000,000,000 | ---D | M] -- C:\ProgramData\81E1
[2009/04/09 17:34:08 | 000,000,000 | ---D | M] -- C:\ProgramData\8223
[2009/04/15 14:33:09 | 000,000,000 | ---D | M] -- C:\ProgramData\928E
[2009/06/03 00:35:10 | 000,000,000 | ---D | M] -- C:\ProgramData\A167
[2009/04/14 16:42:10 | 000,000,000 | ---D | M] -- C:\ProgramData\A90
[2009/06/05 08:45:10 | 000,000,000 | ---D | M] -- C:\ProgramData\A95
[2009/03/29 12:43:40 | 000,000,000 | -HSD | M] -- C:\ProgramData\Anwendungsdaten
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
[2012/03/18 09:29:32 | 000,000,000 | ---D | M] -- C:\ProgramData\Avanquest
[2007/04/25 21:10:38 | 000,000,000 | ---D | M] -- C:\ProgramData\AVG2012
[2009/05/02 15:08:11 | 000,000,000 | ---D | M] -- C:\ProgramData\B2C2
[2012/03/29 08:39:32 | 000,000,000 | ---D | M] -- C:\ProgramData\Babylon
[2012/01/16 02:25:47 | 000,000,000 | ---D | M] -- C:\ProgramData\BVRP Software
[2009/06/12 09:02:13 | 000,000,000 | ---D | M] -- C:\ProgramData\C3E7
[2007/04/25 20:51:59 | 000,000,000 | -H-D | M] -- C:\ProgramData\Common Files
[2009/08/04 16:44:14 | 000,000,000 | ---D | M] -- C:\ProgramData\Crenetic
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Desktop
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
[2009/03/29 12:43:40 | 000,000,000 | -HSD | M] -- C:\ProgramData\Dokumente
[2009/05/24 07:01:15 | 000,000,000 | ---D | M] -- C:\ProgramData\F11F
[2009/06/10 13:19:15 | 000,000,000 | ---D | M] -- C:\ProgramData\F1FB
[2009/04/10 05:14:15 | 000,000,000 | ---D | M] -- C:\ProgramData\F2A1
[2009/04/19 17:13:15 | 000,000,000 | ---D | M] -- C:\ProgramData\F2F4
[2009/03/29 12:43:40 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favoriten
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favorites
[2009/05/17 07:11:15 | 000,000,000 | ---D | M] -- C:\ProgramData\FEF
[2011/06/20 13:51:49 | 000,000,000 | ---D | M] -- C:\ProgramData\FileCure
[2007/05/04 13:31:46 | 000,000,000 | ---D | M] -- C:\ProgramData\ICQ
[2012/05/01 10:35:56 | 000,000,000 | ---D | M] -- C:\ProgramData\Local Settings
[2012/05/05 12:22:18 | 000,000,000 | ---D | M] -- C:\ProgramData\MFAData
[2006/11/02 09:02:03 | 000,000,000 | -HSD | M] -- C:\ProgramData\Start Menu
[2009/03/29 12:43:40 | 000,000,000 | -HSD | M] -- C:\ProgramData\Startmenü
[2009/06/19 13:24:11 | 000,000,000 | ---D | M] -- C:\ProgramData\SYSTEMAX Software Development
[2006/11/02 09:02:04 | 000,000,000 | -HSD | M] -- C:\ProgramData\Templates
[2009/07/18 12:09:03 | 000,000,000 | ---D | M] -- C:\ProgramData\Vodafone
[2009/03/29 12:43:40 | 000,000,000 | -HSD | M] -- C:\ProgramData\Vorlagen
[2011/09/01 12:29:22 | 000,000,000 | ---D | M] -- C:\ProgramData\WeGame
[2012/05/05 03:36:12 | 000,032,564 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/05/29 15:09:05 | 000,000,426 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{2EF4FBBD-0B50-4BCA-91E4-CF5561AC3EF1}.job
[2012/08/06 13:50:00 | 000,000,424 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{B48F2960-5E9F-4CCA-9C0E-231B57765977}.job
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 64 bytes -> C:\Users\Kawaiiju\Desktop\Again.mp3:TOC.WMV
< End of report >

cosinus · 01.10.2012, 12:00

Mach einen OTL-Fix über OTLPE, starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code:

ATTFilter

:OTL
DRV - File not found [Kernel | On_Demand] --  -- (Afc)
O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} -  File not found
O3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} -  File not found
O3 - HKU\Kawaiiju_ON_C\..\Toolbar\WebBrowser: (no name) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No CLSID value found.
O3 - HKU\Kawaiiju_ON_C\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll (BearShare)
O3 - HKU\Kawaiiju_ON_C\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} -  File not found
O4 - HKLM..\Run: [Y8VtM54wf363aAt] C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O4 - HKU\Gast1_ON_C..\Run: [Y8VtM54wf363aAt] C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe ()
O4 - HKU\Kawaiiju_ON_C..\Run: [Teefix] C:\Users\Kawaiiju\AppData\Roaming\Ahrae\miuv.exe ()
O4 - HKU\Kawaiiju_ON_C..\Run: [Wuacamisug] C:\Users\Kawaiiju\AppData\Roaming\Pazew\pufoe.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: 37547 = C:\PROGRA~2\LOCALS~1\Temp\msacqip.com
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\Gast1_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O7 - HKU\Kawaiiju_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Kawaiiju_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\Kawaiiju_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O20 - HKLM Winlogon: Shell - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O20 - HKLM Winlogon: UserInit - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Gast1_ON_C Winlogon: Shell - (C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe) - C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Gast1_ON_C Winlogon: UserInit - (C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe) - C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Kawaiiju_ON_C Winlogon: Shell - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O20 - HKU\Kawaiiju_ON_C Winlogon: UserInit - (C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe) - C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe ()
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 12:06:42 | 000,000,053 | ---- | M] () - X:\AUTORUN.INF -- [ FAT ]
O33 - MountPoints2\{1e171295-5712-11de-b932-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{1e171295-5712-11de-b932-000ae4ce0302}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{7b1c7078-7337-11de-aa46-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{7b1c7078-7337-11de-aa46-000ae4ce0302}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{94a8e471-f9e9-11de-9978-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{94a8e471-f9e9-11de-9978-000ae4ce0302}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{b6a1f15b-f9d5-11de-9815-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{b6a1f15b-f9d5-11de-9815-0015afbb10ee}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{b6a1f15d-f9d5-11de-9815-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{b6a1f15d-f9d5-11de-9815-0015afbb10ee}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{b89703f0-1c76-11de-a627-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{b89703f0-1c76-11de-a627-806e6f6e6963}\Shell\AutoRun\command - "" = E:\SetupUI.exe
O33 - MountPoints2\{e425ec2d-8bee-11de-a722-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{e425ec2d-8bee-11de-a722-0015afbb10ee}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{e425ec30-8bee-11de-a722-0015afbb10ee}\Shell - "" = AutoRun
O33 - MountPoints2\{e425ec30-8bee-11de-a722-0015afbb10ee}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{ecc2f43b-b5ad-11de-ae2e-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{ecc2f43b-b5ad-11de-ae2e-000ae4ce0302}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{f0f8100f-8bf1-11de-a02e-000ae4ce0302}\Shell - "" = AutoRun
O33 - MountPoints2\{f0f8100f-8bf1-11de-a02e-000ae4ce0302}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence
:Files
C:\user.js
C:\ProgramData\F11F
C:\ProgramData\F1FB
C:\ProgramData\F2A1
C:\ProgramData\F2F4
C:\Users\Kawaiiju\AppData\Roaming\EPUhelpers.exe
C:\Users\Gast1\AppData\Roaming\EPUhelpers.exe
C:\ProgramData\sysqcl1129139270.dat
C:\ProgramData\ezsidmv.dat
C:\Users\Kawaiiju\AppData\Roaming\qoxqfssh
C:\Users\Kawaiiju\AppData\Roaming\Pazew
C:\Users\Kawaiiju\AppData\Roaming\Vuiv
C:\Users\Kawaiiju\AppData\Roaming\Zeak
C:\ProgramData\012
C:\ProgramData\0A1
C:\ProgramData\10262
C:\ProgramData\1236A
C:\ProgramData\128E
C:\ProgramData\1293
C:\ProgramData\13A9
C:\ProgramData\1633B
C:\ProgramData\17140
C:\ProgramData\1726
C:\ProgramData\17E
C:\ProgramData\1928E
C:\ProgramData\1A101
C:\ProgramData\1B354
C:\ProgramData\1E184
C:\ProgramData\1E312
C:\ProgramData\1F350
C:\ProgramData\2017D
C:\ProgramData\215C
C:\ProgramData\231D5
C:\ProgramData\231DC
C:\ProgramData\242C9
C:\ProgramData\26172
C:\ProgramData\263AB
C:\ProgramData\271CF
C:\ProgramData\27256
C:\ProgramData\2A1BC
C:\ProgramData\2B281
C:\ProgramData\2B379
C:\ProgramData\2C38
C:\ProgramData\2C384
C:\ProgramData\2D144
C:\ProgramData\2F1DA
C:\ProgramData\30337
C:\ProgramData\33B8
C:\ProgramData\346E
C:\ProgramData\3633F
C:\ProgramData\37212
C:\ProgramData\37B3
C:\ProgramData\391B4
C:\ProgramData\39210
C:\ProgramData\3964
C:\ProgramData\3B1A9
C:\ProgramData\46B
C:\ProgramData\63D5
C:\ProgramData\81E1
C:\ProgramData\8223
C:\ProgramData\928E
C:\ProgramData\A167
C:\ProgramData\A90
C:\ProgramData\A95
:Commands
[purity]
[resethosts]

Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!

Danach sollte Windows wieder normal starten - stell uns bitte den Quarantäneordner von OTL zur Verfügung. Dabei bitte so vorgehen:

1.) GANZ WICHTIG!! Virenscanner deaktivieren, der darf das Packen nicht beeinträchtigen!
2.) Ordner movedfiles in C:\_OTL in eine Datei zippen
3.) Die erstellte ZIP-Datei hier hochladen => http://www.trojaner-board.de/54791-a...ner-board.html

Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten!

4.) Wenns erfolgreich war Bescheid sagen
5.) Erst dann wieder den Virenscanner einschalten

25.09.2012, 13:57	#16
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Weißer Bildschirm, Deutsch/Englische Schrift Was hat das jetzt mit Linux zu tun? Ich hab nach OTLPE gefragt! Was hast du jetzt überhaupt vor?! __________________ Logfiles bitte immer in CODE-Tags posten

28.09.2012, 15:26	#18
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Weißer Bildschirm, Deutsch/Englische Schrift Du musst den Windows-Ordner auswählen! __________________ __________________

Weißer Bildschirm, Deutsch/Englische Schrift

Plagegeister aller Art und deren Bekämpfung: Weißer Bildschirm, Deutsch/Englische Schrift