Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
BKA-Trojaner Windows XP readme[1].exe

BKA-Trojaner Windows XP readme[1].exe


Log-Analyse und Auswertung: BKA-Trojaner Windows XP readme[1].exe

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 26.04.2011, 19:51   #1
lui87
 
BKA-Trojaner Windows XP readme[1].exe - Standard

BKA-Trojaner Windows XP readme[1].exe


Ich hab mir gestern den BKA-trojaner eingefangen.

Die Symptome sind dieselben wie in anderen Threads beschrieben:

-die Dateien auf dem Desktop sind nicht sichtbar
-Taskmanager lässt sich im normalen Modus nicht aufrufen
-Programme lassen sich nur über den Taskmanager starten

obwohl ich mbam meine festplatte scannen und die infizierten dateien löschen ließ, sind die dateien auf dem desktop weiterhin unsichtbar. bei neustart des PCs erscheint auch wieder die "offizielle Mitteilung des Bundeskriminalamts"

LOG OTL:

Code:
ATTFilter
OTL logfile created on: 26.04.2011 20:16:55 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = F:\
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 76,00% Memory free
7,00 Gb Paging File | 6,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): C:\pagefile.sys 4414 8828 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 144,05 Gb Total Space | 18,92 Gb Free Space | 13,14% Space Free | Partition Type: NTFS
Drive F: | 119,60 Mb Total Space | 117,66 Mb Free Space | 98,37% Space Free | Partition Type: FAT
 
Computer Name: L2 | User Name: Bassti | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2011.04.26 20:19:48 | 000,580,608 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
PRC - [2010.12.20 18:08:46 | 000,963,976 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2010.06.02 16:58:20 | 000,246,520 | ---- | M] () -- C:\Programme\ICQ6Toolbar\ICQ Service.exe
PRC - [2008.10.15 14:31:50 | 000,068,865 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe
PRC - [2008.10.15 14:29:58 | 000,151,297 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe
PRC - [2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008.02.18 11:16:30 | 000,110,592 | ---- | M] (Apple, Inc.) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2008.01.07 12:08:50 | 000,019,456 | ---- | M] (Lenovo Group Limited) -- c:\Programme\Lenovo\System Update\SUService.exe
PRC - [2007.11.19 15:23:04 | 001,122,304 | ---- | M] (Lenovo Group Limited) -- c:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe
PRC - [2007.09.26 18:34:46 | 000,644,408 | ---- | M] (Lenovo Group Limited) -- C:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe
PRC - [2007.05.22 18:52:46 | 000,569,344 | ---- | M] () -- C:\Programme\Lenovo\Rescue and Recovery\rrpservice.exe
PRC - [2007.05.22 18:45:54 | 000,022,016 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Lenovo\Logger\logmon.exe
PRC - [2007.05.22 17:27:40 | 000,045,056 | ---- | M] () -- C:\Programme\Lenovo\Rescue and Recovery\ADM\IUService.exe
PRC - [2007.01.30 05:01:26 | 000,108,080 | ---- | M] (Lenovo Group Limited) -- C:\WINDOWS\system32\IPSSVC.EXE
PRC - [2006.11.02 20:40:12 | 000,174,656 | ---- | M] () -- C:\WINDOWS\system32\PSIService.exe
PRC - [2006.08.10 02:08:14 | 000,010,240 | R--- | M] (E-MU Systems) -- C:\WINDOWS\system32\emaudsv.exe
PRC - [2006.05.23 21:08:06 | 000,622,700 | ---- | M] (Diskeeper Corporation) -- C:\Programme\Diskeeper Corporation\Diskeeper\DkService.exe
 
 
========== Modules (SafeList) ==========
 
MOD - [2011.04.26 20:19:48 | 000,580,608 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
MOD - [2010.08.23 18:11:46 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV - File not found [Auto | Stopped] --  -- (PnkBstrA)
SRV - File not found [Disabled | Stopped] --  -- (HidServ)
SRV - File not found [On_Demand | Stopped] --  -- (FirebirdServerMAGIXInstance)
SRV - [2010.06.02 16:58:20 | 000,246,520 | ---- | M] () [Auto | Running] -- C:\Programme\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.05.20 18:09:17 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008.10.15 14:31:50 | 000,068,865 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe -- (AntiVirScheduler)
SRV - [2008.10.15 14:29:58 | 000,151,297 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe -- (AntiVirService)
SRV - [2008.02.18 11:16:30 | 000,110,592 | ---- | M] (Apple, Inc.) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2008.01.07 12:08:50 | 000,019,456 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- c:\Programme\Lenovo\System Update\SUService.exe -- (SUService)
SRV - [2007.11.19 15:23:04 | 001,122,304 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- c:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe -- (TVT Scheduler)
SRV - [2007.09.26 18:34:46 | 000,644,408 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe -- (ThinkVantage Registry Monitor Service)
SRV - [2007.05.22 18:52:46 | 000,569,344 | ---- | M] () [Auto | Running] -- C:\Programme\Lenovo\Rescue and Recovery\rrpservice.exe -- (TVT Backup Protection Service)
SRV - [2007.05.22 17:27:40 | 000,045,056 | ---- | M] () [Auto | Running] -- C:\Programme\Lenovo\Rescue and Recovery\ADM\IUService.exe -- (tvtnetwk)
SRV - [2007.01.30 05:01:26 | 000,108,080 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\WINDOWS\system32\IPSSVC.EXE -- (IPSSVC)
SRV - [2006.11.02 20:40:12 | 000,174,656 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing)
SRV - [2006.10.26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006.08.10 02:08:14 | 000,010,240 | R--- | M] (E-MU Systems) [Auto | Running] -- C:\WINDOWS\system32\emaudsv.exe -- (emaudsv)
SRV - [2006.05.23 21:08:06 | 000,622,700 | ---- | M] (Diskeeper Corporation) [Auto | Running] -- C:\Programme\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper)
SRV - [2005.11.14 01:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2010.02.11 14:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009.06.29 19:00:50 | 000,112,640 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2009.05.27 16:12:50 | 000,075,096 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2009.05.27 16:12:49 | 000,052,056 | ---- | M] (Avira GmbH) [File_System | On_Demand | Running] -- C:\Programme\Avira\AntiVir PersonalEdition Classic\avgntflt.sys -- (avgntflt)
DRV - [2009.05.27 16:12:48 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\Avira\AntiVir PersonalEdition Classic\avgio.sys -- (avgio)
DRV - [2009.04.14 07:40:31 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.04.14 07:24:34 | 000,215,872 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2009.04.09 14:38:30 | 000,102,400 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2009.02.10 17:23:02 | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Programme\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2009.01.14 23:25:24 | 000,022,304 | ---- | M] (Doug Fetter Software Wizardry) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbkt1x1.sys -- (USBKT1X1)
DRV - [2009.01.14 23:25:24 | 000,013,504 | ---- | M] (MIDIMAN) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\uks11ldr.sys -- (UKS11LDR)
DRV - [2008.08.20 03:12:29 | 000,099,840 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ACEDRV06.sys -- (ACEDRV06)
DRV - [2007.11.08 19:03:26 | 000,021,248 | ---- | M] (AVIRA GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2007.05.01 10:29:20 | 000,017,792 | ---- | M] (Winbond Electronics Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tpm.sys -- (TPM)
DRV - [2007.03.13 04:12:00 | 000,255,232 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2007.03.02 10:53:18 | 001,972,224 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007.02.19 07:56:46 | 000,021,376 | ---- | M] (Lenovo (United States) Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\psadd.sys -- (psadd)
DRV - [2007.01.30 12:57:50 | 004,474,368 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.11.06 10:23:24 | 000,012,080 | ---- | M] (Lenovo Group Limited) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PROCDD.SYS -- (PROCDD)
DRV - [2006.08.10 02:08:12 | 000,142,208 | R--- | M] (E-MU Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\emusba10.sys -- (emusba10)
DRV - [2006.04.17 09:54:12 | 000,014,336 | R--- | M] (YAMAHA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ymidusb.sys -- (YMIDUSB)
DRV - [2006.01.27 03:01:06 | 000,031,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Dokumente und Einstellungen\Bassti\Lokale Einstellungen\Temp\cdiskdun.sys -- (cdiskdun)
DRV - [2005.05.09 21:08:40 | 000,033,792 | ---- | M] (Team H2O) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cledx.sys -- (CLEDX)
DRV - [2004.04.01 17:30:46 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003.08.29 10:30:16 | 000,148,724 | ---- | M] (Terratec Electronic GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dmx6fire.sys -- (dmxfire)
DRV - [2003.07.22 15:07:50 | 000,403,968 | ---- | M] (Sensaura Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dmxsens.sys -- (dmxsens)
DRV - [2003.02.11 13:25:14 | 000,009,216 | ---- | M] (Primax Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PELUSBLF.SYS -- (pelusblf)
DRV - [2003.01.10 13:55:32 | 000,016,384 | ---- | M] (Primax Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PELMOUSE.SYS -- (pelmouse)
DRV - [2001.08.18 05:33:12 | 000,322,432 | ---- | M] (Matrox Graphics Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\G400m.sys -- (G400)
DRV - [2001.08.17 12:13:12 | 000,016,925 | ---- | M] (Winbond Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w940nd.sys -- (w89c940)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/3000desktop [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/
IE - HKCU\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "YouTube-Videosuche"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://google.de/"
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.6&q="
FF - prefs.js..network.proxy.type: 4
 
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Programme\Real\RealPlayer\browserrecord [2007.12.22 15:19:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011.03.27 03:42:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2011.03.24 13:25:57 | 000,000,000 | ---D | M]
 
[2009.08.13 08:20:01 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Extensions
[2011.04.26 14:45:33 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\extensions
[2010.06.11 02:36:07 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.06.17 17:36:04 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.09.01 23:37:57 | 000,001,639 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\discogs-search.xml
[2011.04.24 00:53:30 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin-1.xml
[2010.10.28 17:19:29 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin-2.xml
[2010.10.28 23:13:43 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin-3.xml
[2010.12.10 22:21:01 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin-4.xml
[2011.03.03 00:51:55 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin-5.xml
[2011.03.09 23:39:56 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin-6.xml
[2011.03.24 13:26:24 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin-7.xml
[2010.06.17 17:36:04 | 000,000,168 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin.gif
[2010.06.17 17:36:05 | 000,000,618 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin.src
[2010.06.25 00:15:06 | 000,001,056 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\icqplugin.xml
[2009.10.19 07:58:31 | 000,009,941 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\mywebsearch.xml
[2010.08.24 03:54:52 | 000,002,057 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Mozilla\Firefox\Profiles\kohb6lnt.default\searchplugins\youtube-videosuche.xml
[2011.04.26 14:45:33 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.02.12 14:06:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011.02.12 14:06:27 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAMME\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.02.12 14:06:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2008.08.07 14:53:06 | 001,271,760 | ---- | M] (1 mal 1 Software GmbH) -- C:\Programme\Mozilla Firefox\plugins\NpFv501.dll
[2010.09.11 12:07:23 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.09.11 12:07:23 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.09.11 12:07:23 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.09.11 12:07:23 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.09.11 12:07:23 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2008.01.21 22:56:23 | 000,223,065 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1	007guard.com
O1 - Hosts: 127.0.0.1	www.007guard.com
O1 - Hosts: 127.0.0.1	008i.com
O1 - Hosts: 127.0.0.1	008k.com
O1 - Hosts: 127.0.0.1	www.008k.com
O1 - Hosts: 127.0.0.1	00hq.com
O1 - Hosts: 127.0.0.1	www.00hq.com
O1 - Hosts: 127.0.0.1	010402.com
O1 - Hosts: 127.0.0.1	032439.com
O1 - Hosts: 127.0.0.1	www.032439.com
O1 - Hosts: 127.0.0.1	1001-search.info
O1 - Hosts: 127.0.0.1	www.1001-search.info
O1 - Hosts: 127.0.0.1	100888290cs.com
O1 - Hosts: 127.0.0.1	www.100888290cs.com
O1 - Hosts: 127.0.0.1	100sexlinks.com
O1 - Hosts: 127.0.0.1	www.100sexlinks.com
O1 - Hosts: 127.0.0.1	10sek.com
O1 - Hosts: 127.0.0.1	www.10sek.com
O1 - Hosts: 127.0.0.1	123topsearch.com
O1 - Hosts: 127.0.0.1	www.123topsearch.com
O1 - Hosts: 127.0.0.1	132.com
O1 - Hosts: 127.0.0.1	www.132.com
O1 - Hosts: 127.0.0.1	136136.net
O1 - Hosts: 127.0.0.1	www.136136.net
O1 - Hosts: 7826 more lines...
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Programme\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (no name) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - No CLSID value found.
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\alcwzrd.exe (RealTek Semicoductor Corp.)
O4 - HKLM..\Run: [H2O] C:\Programme\Syncrosoft\POS\H2O\cledx.exe (Team H2O)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [LPManager] C:\Programme\Lenovo\LenovoCare\LPMGR.EXE (Lenovo Group Limited)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Programme\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SoundMan.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [StartCCC] C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKCU..\Run: [SystemData.exe]  File not found
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\DMX 6fire 2496 ControlPanel.lnk = C:\Programme\TerraTec\DMX 6fire\DMX6Fire.exe (TerraTec Electronic GmbH)
O4 - Startup: C:\Dokumente und Einstellungen\Bassti\Startmenü\Programme\Autostart\Dropbox.lnk = C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Dropbox\bin\Dropbox.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O8 - Extra context menu item: Öffnen mit WordPerfect - C:\Programme\WordPerfect Office X3\Programs\WPLauncher.hta ()
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} -  File not found
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} -  File not found
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} hxxp://www.king.com/ctl/kingcomie.cab (king.com)
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab (MySpace Uploader Control)
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} hxxp://static.pe.studivz.net/photouploader/ImageUploader5.cab?nocache=1223834234 (Image Uploader Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} hxxp://lads.myspace.com/upload/MySpaceUploader2.cab (MySpace Uploader Control)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ic32pp {BBCA9F81-8F4F-11D2-90FF-0080C83D3571} - C:\WINDOWS\wc98pp.dll ()
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (C:\Dokumente und Einstellungen\Bassti\Lokale Einstellungen\Temporary Internet Files\Content.IE5\NC6QDL0Z\readme[1].exe) -  File not found
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Bassti\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Bassti\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.01.27 04:18:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE      .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
O33 - MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\Shell - "" = AutoRun
O33 - MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\Shell - "" = AutoRun
O33 - MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\Shell - "" = AutoRun
O33 - MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe
O33 - MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\Shell - "" = AutoRun
O33 - MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\Shell - "" = AutoRun
O33 - MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\Shell - "" = AutoRun
O33 - MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\Shell - "" = AutoRun
O33 - MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\Shell - "" = AutoRun
O33 - MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\Shell - "" = AutoRun
O33 - MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\Shell - "" = AutoRun
O33 - MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\Shell - "" = AutoRun
O33 - MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\Shell - "" = AutoRun
O33 - MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\Shell - "" = AutoRun
O33 - MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\Shell - "" = AutoRun
O33 - MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\Shell - "" = AutoRun
O33 - MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe
O33 - MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\Shell - "" = AutoRun
O33 - MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.04.26 19:28:21 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\Bassti\Recent
[2011.04.26 19:15:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\CCleaner
[2011.04.26 14:43:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Malwarebytes
[2011.04.26 14:43:51 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.04.26 14:43:51 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
[2011.04.26 14:43:50 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2011.04.26 14:43:47 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.04.26 14:43:47 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.04.14 15:28:52 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011.04.14 04:57:15 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Bassti\Desktop\Das_Kraftfuttermischwerk_-_Am_Ende_der_Kirschallee
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2011.04.26 20:01:01 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011.04.26 19:15:45 | 000,000,661 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
[2011.04.26 19:12:41 | 000,000,224 | RHS- | M] () -- C:\boot.ini
[2011.04.26 19:06:41 | 000,025,261 | ---- | M] () -- C:\WINDOWS\System32\PROCDB.INI
[2011.04.26 19:06:41 | 000,002,278 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.04.26 19:06:26 | 000,000,480 | ---- | M] () -- C:\WINDOWS\System32\IPSCtrl.INI
[2011.04.26 19:06:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.04.26 19:06:17 | 2951,925,760 | -HS- | M] () -- C:\hiberfil.sys
[2011.04.26 14:43:52 | 000,000,763 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.26 09:49:54 | 000,444,456 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.04.26 09:49:53 | 000,462,760 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2011.04.26 09:49:53 | 000,085,764 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2011.04.26 09:49:53 | 000,072,332 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.04.18 21:09:54 | 000,000,471 | ---- | M] () -- C:\WINDOWS\System32\Datei4
[2011.04.18 21:09:54 | 000,000,471 | ---- | M] () -- C:\WINDOWS\System32\Datei2
[2011.04.18 21:09:54 | 000,000,470 | ---- | M] () -- C:\WINDOWS\System32\Datei3
[2011.04.18 21:09:54 | 000,000,470 | ---- | M] () -- C:\WINDOWS\System32\Datei1
[2011.04.18 21:09:54 | 000,000,469 | ---- | M] () -- C:\WINDOWS\System32\Datei7
[2011.04.18 21:09:54 | 000,000,469 | ---- | M] () -- C:\WINDOWS\System32\Datei5
[2011.04.18 21:09:54 | 000,000,468 | ---- | M] () -- C:\WINDOWS\System32\Datei0
[2011.04.18 21:09:54 | 000,000,467 | ---- | M] () -- C:\WINDOWS\System32\Datei9
[2011.04.18 21:09:54 | 000,000,467 | ---- | M] () -- C:\WINDOWS\System32\Datei8
[2011.04.18 21:09:54 | 000,000,467 | ---- | M] () -- C:\WINDOWS\System32\Datei10
[2011.04.18 21:09:54 | 000,000,465 | ---- | M] () -- C:\WINDOWS\System32\Datei6
[2011.04.14 16:11:38 | 002,909,000 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.04.08 20:16:00 | 000,021,706 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Eigene Dateien\AnmzulmBAMA.pdf
[2011.04.08 09:47:52 | 086,596,710 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Desktop\PG Podcast 033.mp3
[2011.04.06 13:45:06 | 014,186,665 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Desktop\ 1_Ransom - Ransom.MP3
[2011.04.05 21:56:15 | 008,874,000 | ---- | M] () -- C:\Dokumente und Einstellungen\Bassti\Desktop\schein drügt.mp3
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011.04.26 19:15:45 | 000,000,661 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
[2011.04.26 14:43:52 | 000,000,763 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.26 09:55:44 | 2951,925,760 | -HS- | C] () -- C:\hiberfil.sys
[2011.04.08 21:00:16 | 086,596,710 | ---- | C] () -- C:\Dokumente und Einstellungen\Bassti\Desktop\PG Podcast 033.mp3
[2011.04.08 20:16:00 | 000,021,706 | ---- | C] () -- C:\Dokumente und Einstellungen\Bassti\Eigene Dateien\AnmzulmBAMA.pdf
[2011.04.06 13:38:29 | 014,186,665 | ---- | C] () -- C:\Dokumente und Einstellungen\Bassti\Desktop\ 1_Ransom - Ransom.MP3
[2011.04.05 21:55:20 | 008,874,000 | ---- | C] () -- C:\Dokumente und Einstellungen\Bassti\Desktop\schein drügt.mp3
[2011.01.10 20:38:56 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.01.05 12:52:45 | 000,000,245 | ---- | C] () -- C:\WINDOWS\BUHL.INI
[2011.01.05 12:51:01 | 000,000,066 | ---- | C] () -- C:\WINDOWS\wiso.ini
[2010.12.30 15:56:24 | 000,000,056 | ---- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010.01.07 13:05:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iplayer.INI
[2009.10.06 06:02:58 | 000,000,036 | ---- | C] () -- C:\WINDOWS\rasqervy.dll
[2009.10.06 06:02:55 | 000,000,008 | ---- | C] () -- C:\WINDOWS\sdfinacs.dll
[2009.10.06 06:02:51 | 000,000,004 | ---- | C] () -- C:\WINDOWS\sdfixwcs.dll
[2009.08.13 19:28:36 | 000,116,224 | ---- | C] () -- C:\Dokumente und Einstellungen\Bassti\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.08.13 07:55:48 | 000,000,146 | ---- | C] () -- C:\Dokumente und Einstellungen\Bassti\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2009.04.14 12:10:58 | 000,054,272 | ---- | C] () -- C:\WINDOWS\System32\Kernelo2.dll
[2009.03.08 02:37:00 | 000,000,032 | ---- | C] () -- C:\WINDOWS\CD_Start.INI
[2009.02.21 20:16:50 | 000,000,413 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2009.02.19 02:22:45 | 000,069,632 | R--- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2009.02.19 02:22:45 | 000,036,864 | R--- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2008.12.16 05:14:53 | 000,120,200 | ---- | C] () -- C:\WINDOWS\System32\DLLDEV32i.dll
[2008.11.06 18:37:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008.11.06 18:33:02 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2008.09.11 23:15:56 | 000,000,400 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.09.05 16:48:43 | 000,000,652 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2008.08.22 22:56:01 | 000,000,229 | ---- | C] () -- C:\WINDOWS\ULEAD32.INI
[2008.08.20 07:34:16 | 000,000,472 | ---- | C] () -- C:\WINDOWS\Videodeluxe.INI
[2008.08.20 02:54:22 | 000,007,119 | ---- | C] () -- C:\WINDOWS\mgxoschk.ini
[2008.07.27 00:45:43 | 000,137,472 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008.07.27 00:45:36 | 000,111,928 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2008.07.11 20:29:26 | 000,051,712 | ---- | C] () -- C:\WINDOWS\wc98pp.dll
[2008.07.07 03:21:22 | 000,073,216 | ---- | C] () -- C:\WINDOWS\cadkasdeinst01.exe
[2008.03.28 00:57:51 | 000,001,142 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2008.03.28 00:56:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2008.03.13 13:07:07 | 000,000,127 | ---- | C] () -- C:\WINDOWS\XGUSB.INI
[2008.01.24 03:45:20 | 000,000,032 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ezsid.dat
[2008.01.19 02:13:48 | 000,394,240 | ---- | C] () -- C:\WINDOWS\System32\Smab.dll
[2008.01.19 02:13:48 | 000,240,128 | ---- | C] () -- C:\WINDOWS\System32\x.264.exe
[2008.01.19 02:13:48 | 000,066,560 | ---- | C] () -- C:\WINDOWS\MOTA113.exe
[2008.01.19 02:13:48 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2008.01.19 02:13:47 | 000,502,784 | ---- | C] () -- C:\WINDOWS\x2.64.exe
[2008.01.19 02:13:47 | 000,217,073 | ---- | C] () -- C:\WINDOWS\meta4.exe
[2008.01.07 13:28:37 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2008.01.07 13:28:37 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
[2008.01.07 13:28:37 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
[2008.01.07 13:28:37 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2008.01.07 13:28:37 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2008.01.07 13:28:37 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2008.01.07 13:28:37 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2008.01.07 13:28:37 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2008.01.07 13:28:37 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2008.01.07 13:28:37 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat
[2008.01.07 13:28:37 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2008.01.07 13:28:37 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2008.01.07 13:28:37 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2008.01.07 13:28:37 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2008.01.07 13:28:37 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2008.01.07 13:28:37 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat
[2008.01.07 13:28:37 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat
[2008.01.07 13:28:37 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2008.01.07 13:28:37 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008.01.07 13:24:35 | 000,000,027 | ---- | C] () -- C:\WINDOWS\CDE SPR360DEFGIPS.ini
[2008.01.06 17:24:36 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2007.12.13 20:16:29 | 000,002,319 | R--- | C] () -- C:\WINDOWS\System32\emaud.ini
[2007.12.13 20:16:29 | 000,000,035 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2007.12.13 14:28:05 | 000,004,236 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2007.12.13 14:28:05 | 000,000,088 | RHS- | C] () -- C:\WINDOWS\System32\0BB0539641.sys
[2007.12.12 13:25:20 | 000,000,305 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\addr_file.html
[2007.10.19 20:41:13 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dat
[2007.10.19 20:41:13 | 000,147,685 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2007.10.19 13:25:55 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2007.10.19 13:07:15 | 000,114,688 | ---- | C] () -- C:\WINDOWS\desktopset.exe
[2007.10.19 13:01:09 | 000,000,040 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2007.10.19 12:56:05 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2007.10.19 12:51:41 | 000,005,528 | ---- | C] () -- C:\WINDOWS\System32\Setup2k.ini
[2007.10.19 12:51:41 | 000,000,296 | ---- | C] () -- C:\WINDOWS\System32\presetup.ini
[2007.10.19 12:51:40 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\FSRremoC.DLL
[2007.10.19 12:51:40 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\FSRremoS.EXE
[2007.10.19 12:47:23 | 000,000,138 | ---- | C] () -- C:\WINDOWS\System32\Softkbd.exe.config
[2007.03.02 14:59:39 | 000,025,261 | ---- | C] () -- C:\WINDOWS\System32\PROCDB.INI
[2007.03.02 14:59:28 | 000,000,480 | ---- | C] () -- C:\WINDOWS\System32\IPSCtrl.INI
[2006.11.02 20:40:12 | 000,174,656 | ---- | C] () -- C:\WINDOWS\System32\PSIService.exe
[2006.08.10 02:08:16 | 000,003,072 | R--- | C] () -- C:\WINDOWS\System32\emcoinst.dll
[2006.07.20 02:59:36 | 000,000,763 | R--- | C] () -- C:\WINDOWS\emasio.dat
[2006.06.19 17:36:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2006.06.10 07:17:56 | 000,000,830 | R--- | C] () -- C:\WINDOWS\System32\drivers\emusba10.dat
[2006.01.27 19:18:01 | 000,000,849 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2006.01.27 19:05:14 | 000,002,963 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006.01.27 04:25:08 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2006.01.27 04:15:11 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2006.01.27 03:01:44 | 000,462,760 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2006.01.27 03:01:44 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2006.01.27 03:01:44 | 000,085,764 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2006.01.27 03:01:44 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2006.01.27 03:01:24 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006.01.27 03:01:21 | 000,444,456 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006.01.27 03:01:21 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006.01.27 03:01:21 | 000,072,332 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006.01.27 03:01:21 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006.01.27 03:01:19 | 000,004,547 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006.01.27 03:01:17 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006.01.27 03:01:15 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2006.01.27 03:01:08 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006.01.27 03:01:08 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006.01.27 03:01:02 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006.01.27 03:00:53 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006.01.26 19:09:45 | 000,004,335 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2006.01.26 19:08:46 | 002,909,000 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2003.08.12 18:16:44 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\CoInst.dll
[2002.10.03 15:42:27 | 000,000,034 | ---- | C] () -- C:\WINDOWS\Q3version.ini
[2001.08.07 05:16:34 | 000,045,056 | ---- | C] () -- C:\WINDOWS\OTS_UI.EXE
 
========== LOP Check ==========
 
[2007.10.19 13:03:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Borland
[2009.04.14 11:41:38 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Cakewalk
[2009.10.07 11:36:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\EPSON
[2010.06.17 17:36:21 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ICQ
[2010.06.09 14:58:29 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Last.fm
[2007.10.19 13:02:09 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lenovo
[2008.12.16 05:17:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\MAGIX
[2007.10.19 13:04:10 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC-Doctor
[2008.01.22 15:01:40 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SecTaskMan
[2008.07.12 15:23:37 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\T-Online
[2008.01.07 13:34:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\UDL
[2010.08.13 18:38:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Vodafone
[2010.12.10 22:15:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{0AEBF1A0-ACF3-4096-A94E-50C0AFEA6A18}
[2010.11.23 23:45:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{2F1A850B-9DA6-4E4A-AB2A-E9005D72D5B2}
[2011.02.07 01:13:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4275E5EA-6E30-48EB-A209-F964539CBE1C}
[2010.11.23 23:45:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{47960B9E-9E4E-438D-AA0C-2F495913AD7E}
[2010.11.23 23:30:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{51753DAD-2BAB-4BB2-A4AA-CAAEF5AA972B}
[2010.11.23 23:07:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{6268CC84-62BB-4890-B980-FC891FC3470E}
[2010.11.23 22:50:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{B5F0C192-874D-49A8-88D7-8431E3714756}
[2011.02.07 01:14:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{BF329843-149E-4A5A-82A1-0250286442D0}
[2010.12.10 22:22:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{C5A0D307-9319-4B00-9734-C0F4B0454A7B}
[2010.11.24 02:03:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{E6F7E8AE-5D26-4508-A961-B0231A24CCAE}
[2010.03.04 21:39:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Bytemobile
[2011.04.25 10:18:11 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Dropbox
[2011.04.25 18:52:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\ICQ
[2011.01.24 04:01:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\iZotope
[2009.10.08 10:22:38 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Leadertech
[2010.07.25 10:29:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\SoundSpectrum
[2009.11.07 18:37:20 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Steinberg
[2010.03.04 21:39:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Vodafone
[2010.03.05 20:49:46 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Vodafone Mobile Connect
[2011.03.18 01:09:34 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\VST3 Presets
[2009.08.14 18:43:42 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Bassti\Anwendungsdaten\Waves Audio
 
========== Purity Check ==========
 
 

< End of report >
MBAM-LOG vor löschen der infizierten Dateien:

Code:
ATTFilter
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 6447

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

26.04.2011 17:56:58
mbam-log-2011-04-26 (17-56-58).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|F:\|)
Durchsuchte Objekte: 461542
Laufzeit: 3 Stunde(n), 6 Minute(n), 52 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 13
Infizierte Registrierungswerte: 3
Infizierte Dateiobjekte der Registrierung: 9
Infizierte Verzeichnisse: 1
Infizierte Dateien: 5

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_CLASSES_ROOT\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\rundll32.exe (Trojan.Agent) -> Value: rundll32.exe -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WAB (Trojan.Dropper) -> Value: WAB -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\syscheckrt.exe (Trojan.SpyEyes) -> Value: syscheckrt.exe -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\wave1 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\mixer1 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\aux1 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\wave2 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\mixer2 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\aux2 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Midi1 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\midi2 (Hijack.Sound) -> Bad: (C:\DOKUME~1\LOCALS~1\ANWEND~1\MACROM~1\Common\06dbc04a1.dll) Good: (wdmaud.drv) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> Quarantined and deleted successfully.

Infizierte Verzeichnisse:
c:\syscheckrt (Trojan.SpyEyes) -> Quarantined and deleted successfully.

Infizierte Dateien:
c:\programme\windows live\messenger\riched20.dll (PUP.FunWebProducts) -> Not selected for removal.
c:\programme\windows live\messenger\msimg32.dll (PUP.FunWebProducts) -> Not selected for removal.
c:\WINDOWS\msacm32.drv (Trojan.Agent) -> Quarantined and deleted successfully.
c:\WINDOWS\wuasirvy.dll (Trojan.Banker) -> Quarantined and deleted successfully.
c:\syscheckrt\config.bin (Trojan.SpyEyes) -> Quarantined and deleted successfully.
zweiter Scan:

Code:
ATTFilter
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 6447

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

26.04.2011 19:38:04
mbam-log-2011-04-26 (19-38-04).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 192185
Laufzeit: 7 Minute(n), 42 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
ich hoffe dass mir geholfen werden kann
danke schonmal im vorraus

Alt 27.04.2011, 20:21   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
BKA-Trojaner Windows XP readme[1].exe - Standard

BKA-Trojaner Windows XP readme[1].exe


Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code:
ATTFilter
:OTL
[2010.12.10 22:15:06 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{0AEBF1A0-ACF3-4096-A94E-50C0AFEA6A18}
[2010.11.23 23:45:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{2F1A850B-9DA6-4E4A-AB2A-E9005D72D5B2}
[2011.02.07 01:13:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4275E5EA-6E30-48EB-A209-F964539CBE1C}
[2010.11.23 23:45:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{47960B9E-9E4E-438D-AA0C-2F495913AD7E}
[2010.11.23 23:30:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{51753DAD-2BAB-4BB2-A4AA-CAAEF5AA972B}
[2010.11.23 23:07:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{6268CC84-62BB-4890-B980-FC891FC3470E}
[2010.11.23 22:50:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{B5F0C192-874D-49A8-88D7-8431E3714756}
[2011.02.07 01:14:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{BF329843-149E-4A5A-82A1-0250286442D0}
[2010.12.10 22:22:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{C5A0D307-9319-4B00-9734-C0F4B0454A7B}
[2010.11.24 02:03:02 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{E6F7E8AE-5D26-4508-A961-B0231A24CCAE}
[2011.04.18 21:09:54 | 000,000,471 | ---- | M] () -- C:\WINDOWS\System32\Datei4
[2011.04.18 21:09:54 | 000,000,471 | ---- | M] () -- C:\WINDOWS\System32\Datei2
[2011.04.18 21:09:54 | 000,000,470 | ---- | M] () -- C:\WINDOWS\System32\Datei3
[2011.04.18 21:09:54 | 000,000,470 | ---- | M] () -- C:\WINDOWS\System32\Datei1
[2011.04.18 21:09:54 | 000,000,469 | ---- | M] () -- C:\WINDOWS\System32\Datei7
[2011.04.18 21:09:54 | 000,000,469 | ---- | M] () -- C:\WINDOWS\System32\Datei5
[2011.04.18 21:09:54 | 000,000,468 | ---- | M] () -- C:\WINDOWS\System32\Datei0
[2011.04.18 21:09:54 | 000,000,467 | ---- | M] () -- C:\WINDOWS\System32\Datei9
[2011.04.18 21:09:54 | 000,000,467 | ---- | M] () -- C:\WINDOWS\System32\Datei8
[2011.04.18 21:09:54 | 000,000,467 | ---- | M] () -- C:\WINDOWS\System32\Datei10
[2011.04.18 21:09:54 | 000,000,465 | ---- | M] () -- C:\WINDOWS\System32\Datei6
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.01.27 04:18:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE      .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
O33 - MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\Shell - "" = AutoRun
O33 - MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\Shell - "" = AutoRun
O33 - MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\Shell - "" = AutoRun
O33 - MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe
O33 - MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\Shell - "" = AutoRun
O33 - MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\Shell - "" = AutoRun
O33 - MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\Shell - "" = AutoRun
O33 - MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\Shell - "" = AutoRun
O33 - MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\Shell - "" = AutoRun
O33 - MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\Shell - "" = AutoRun
O33 - MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\Shell - "" = AutoRun
O33 - MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\Shell - "" = AutoRun
O33 - MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\Shell - "" = AutoRun
O33 - MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\Shell - "" = AutoRun
O33 - MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\Shell - "" = AutoRun
O33 - MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\Shell - "" = AutoRun
O33 - MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\Shell - "" = AutoRun
O33 - MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe
O33 - MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\Shell - "" = AutoRun
O33 - MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\Shell - "" = AutoRun
O33 - MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O4 - HKCU..\Run: [SystemData.exe]  File not found
O4 - HKLM..\Run: [H2O] C:\Programme\Syncrosoft\POS\H2O\cledx.exe (Team H2O)
:Commands
[purity]
[resethosts]
[emptytemp]
Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.
__________________

__________________
Alt 28.04.2011, 16:36   #3
lui87
 
BKA-Trojaner Windows XP readme[1].exe - Standard

BKA-Trojaner Windows XP readme[1].exe


danke für die schnelle hilfe

hier der log:

Code:
ATTFilter
All processes killed
========== OTL ==========
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{0AEBF1A0-ACF3-4096-A94E-50C0AFEA6A18} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{2F1A850B-9DA6-4E4A-AB2A-E9005D72D5B2} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4275E5EA-6E30-48EB-A209-F964539CBE1C} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{47960B9E-9E4E-438D-AA0C-2F495913AD7E} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{51753DAD-2BAB-4BB2-A4AA-CAAEF5AA972B} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{6268CC84-62BB-4890-B980-FC891FC3470E} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{B5F0C192-874D-49A8-88D7-8431E3714756} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{BF329843-149E-4A5A-82A1-0250286442D0} folder moved successfully.
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{C5A0D307-9319-4B00-9734-C0F4B0454A7B} folder moved successfully.
Folder move failed. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{E6F7E8AE-5D26-4508-A961-B0231A24CCAE} scheduled to be moved on reboot.
C:\WINDOWS\system32\Datei4 moved successfully.
C:\WINDOWS\system32\Datei2 moved successfully.
C:\WINDOWS\system32\Datei3 moved successfully.
C:\WINDOWS\system32\Datei1 moved successfully.
C:\WINDOWS\system32\Datei7 moved successfully.
C:\WINDOWS\system32\Datei5 moved successfully.
C:\WINDOWS\system32\Datei0 moved successfully.
C:\WINDOWS\system32\Datei9 moved successfully.
C:\WINDOWS\system32\Datei8 moved successfully.
C:\WINDOWS\system32\Datei10 moved successfully.
C:\WINDOWS\system32\Datei6 moved successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
C:\AUTOEXEC.BAT moved successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{093a4a96-2053-11df-a339-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{093a4a96-2053-11df-a339-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{093a4a96-2053-11df-a339-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{093a4a96-2053-11df-a339-001617fa4910}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE      .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f44c-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f44c-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f44c-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f44c-b162-11df-a419-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f45d-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f45d-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f45d-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f45d-b162-11df-a419-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f467-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f467-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f467-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f467-b162-11df-a419-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f47f-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f47f-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f47f-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f47f-b162-11df-a419-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f480-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f480-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f480-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f480-b162-11df-a419-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f481-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f481-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f481-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f481-b162-11df-a419-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f483-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f483-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{19a6f483-b162-11df-a419-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{19a6f483-b162-11df-a419-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb01-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb01-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb01-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb01-a95b-11df-a413-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb07-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb07-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb07-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb07-a95b-11df-a413-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb08-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb08-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e68fb08-a95b-11df-a413-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1e68fb08-a95b-11df-a413-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1f59c71c-c2a0-11df-a42f-a98a0b1c9b30}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2814408e-bf45-11df-a429-b69bf5bdad88}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2814408e-bf45-11df-a429-b69bf5bdad88}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2814408e-bf45-11df-a429-b69bf5bdad88}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2814408e-bf45-11df-a429-b69bf5bdad88}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30b2e81c-c2f0-11df-a430-f1bcee201f98}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46a9-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46a9-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46a9-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46a9-a6f8-11df-a40f-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46aa-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46aa-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46aa-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46aa-a6f8-11df-a40f-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46b1-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46b1-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f46b1-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f46b1-a6f8-11df-a40f-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f472c-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f472c-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f472c-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f472c-a6f8-11df-a40f-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f474a-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f474a-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{353f474a-a6f8-11df-a40f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{353f474a-a6f8-11df-a40f-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4a7e0a8a-e1ab-11de-a2bf-001617fa4910}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4eee0b18-ae4c-11df-a414-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4eee0b18-ae4c-11df-a414-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4eee0b18-ae4c-11df-a414-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4eee0b18-ae4c-11df-a414-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5b3cf757-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5b3cf757-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b3cf757-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5b3cf757-bbe5-11df-a424-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5b3cf75f-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5b3cf75f-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b3cf75f-bbe5-11df-a424-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5b3cf75f-bbe5-11df-a424-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c050ec6-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c050ec6-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c050ec6-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c050ec6-b510-11df-a41c-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c050ed5-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c050ed5-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c050ed5-b510-11df-a41c-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c050ed5-b510-11df-a41c-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c589464-bf11-11df-a428-c0034ccd5b82}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c589464-bf11-11df-a428-c0034ccd5b82}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c589464-bf11-11df-a428-c0034ccd5b82}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5c589464-bf11-11df-a428-c0034ccd5b82}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{60820f18-b014-11df-a416-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{60820f18-b014-11df-a416-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{60820f18-b014-11df-a416-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{60820f18-b014-11df-a416-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62d6be9c-beb7-11df-a427-bebfde039404}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62d6be9c-beb7-11df-a427-bebfde039404}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{62d6be9c-beb7-11df-a427-bebfde039404}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{62d6be9c-beb7-11df-a427-bebfde039404}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6601285a-c48e-11df-a432-f7c36c7c7bb3}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6610ac5a-bfe6-11df-a42b-c3162b98b9fe}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{739232ea-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{739232ea-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{739232ea-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{739232ea-72fe-11df-a3b6-001617fa4910}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{739232ee-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{739232ee-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{739232ee-72fe-11df-a3b6-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{739232ee-72fe-11df-a3b6-001617fa4910}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{829433f0-b81c-11df-a420-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{829433f0-b81c-11df-a420-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{829433f0-b81c-11df-a420-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{829433f0-b81c-11df-a420-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{87755424-7601-11df-a3bb-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{87755424-7601-11df-a3bb-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{87755424-7601-11df-a3bb-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{87755424-7601-11df-a3bb-001617fa4910}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ac14e4e-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ac14e4e-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ac14e4e-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ac14e4e-bcf1-11df-a425-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ac14e4f-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ac14e4f-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8ac14e4f-bcf1-11df-a425-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ac14e4f-bcf1-11df-a425-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8b0d0da0-c0e0-11df-a42d-f208e877c25c}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8e51b405-b04d-11df-a417-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8e51b405-b04d-11df-a417-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8e51b405-b04d-11df-a417-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8e51b405-b04d-11df-a417-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400c94-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400c94-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400c94-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400c94-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cac-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cac-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cac-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cac-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cb0-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cb0-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cb0-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cb0-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cea-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cea-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cea-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cea-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cf4-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cf4-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400cf4-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400cf4-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d04-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d04-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d04-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d04-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d46-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d46-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d46-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d46-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d74-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d74-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d74-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d74-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d99-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d99-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400d99-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400d99-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400da8-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400da8-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400da8-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400da8-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400db7-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400db7-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400db7-c33a-11df-a431-b585401a5883}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400db7-c33a-11df-a431-b585401a5883}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400e49-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400e49-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400e49-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400e49-c33a-11df-a431-001e101f905a}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400e57-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400e57-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a400e57-c33a-11df-a431-001e101f905a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9a400e57-c33a-11df-a431-001e101f905a}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a30cfc84-bf83-11df-a42a-d6a303e9dbf9}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a925d9e8-a090-11df-a404-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a925d9e8-a090-11df-a404-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a925d9e8-a090-11df-a404-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a925d9e8-a090-11df-a404-001617fa4910}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b9617e-b8dc-11df-a421-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b9617e-b8dc-11df-a421-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b9617e-b8dc-11df-a421-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b9617e-b8dc-11df-a421-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b9618f-b8dc-11df-a421-001e101f8c05}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b9618f-b8dc-11df-a421-001e101f8c05}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b9618f-b8dc-11df-a421-001e101f8c05}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b9618f-b8dc-11df-a421-001e101f8c05}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b96199-b8dc-11df-a421-001e101f87b2}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b96199-b8dc-11df-a421-001e101f87b2}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b96199-b8dc-11df-a421-001e101f87b2}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a9b96199-b8dc-11df-a421-001e101f87b2}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa5093f0-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa5093f0-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa5093f0-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa5093f0-b684-11df-a41f-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa5093f4-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa5093f4-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa5093f4-b684-11df-a41f-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa5093f4-b684-11df-a41f-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b47b81cc-ba86-11df-a422-001e101f19a3}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b47b81cc-ba86-11df-a422-001e101f19a3}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b47b81cc-ba86-11df-a422-001e101f19a3}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b47b81cc-ba86-11df-a422-001e101f19a3}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b69aad48-a866-11df-a412-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b69aad48-a866-11df-a412-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b69aad48-a866-11df-a412-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b69aad48-a866-11df-a412-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcdaec0a-aedc-11df-a415-9f778ea8a3fd}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcdaec2c-aedc-11df-a415-001e101fea86}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcdaec2c-aedc-11df-a415-001e101fea86}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bcdaec2c-aedc-11df-a415-001e101fea86}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bcdaec2c-aedc-11df-a415-001e101fea86}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de39317c-b445-11df-a41b-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de39317c-b445-11df-a41b-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de39317c-b445-11df-a41b-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de39317c-b445-11df-a41b-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de9fbd7a-c1b5-11df-a42e-f85bf5045515}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e1eec258-ef58-11de-a2d8-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e1eec258-ef58-11de-a2d8-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e1eec258-ef58-11de-a2d8-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e1eec258-ef58-11de-a2d8-001617fa4910}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9294-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9294-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9294-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9294-b298-11df-a41a-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a92ea-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a92ea-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a92ea-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a92ea-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a92f9-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a92f9-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a92f9-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a92f9-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a930d-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a930d-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a930d-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a930d-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9319-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9319-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9319-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9319-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9320-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9320-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9320-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9320-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9330-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9330-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9330-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9330-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a933f-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a933f-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a933f-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a933f-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9362-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9362-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a9362-b298-11df-a41a-001e101f3356}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a9362-b298-11df-a41a-001e101f3356}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a93b8-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a93b8-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a93b8-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a93b8-b298-11df-a41a-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a93c3-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a93c3-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e26a93c3-b298-11df-a41a-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e26a93c3-b298-11df-a41a-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9336c8a-27c5-11df-a348-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9336c8a-27c5-11df-a348-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9336c8a-27c5-11df-a348-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9336c8a-27c5-11df-a348-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481513-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481513-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481513-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481513-a6d2-11df-a40e-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481514-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481514-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481514-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481514-a6d2-11df-a40e-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481516-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481516-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e9481516-a6d2-11df-a40e-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9481516-a6d2-11df-a40e-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f57896da-c09c-11df-a42c-ca77b98ee728}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f57896da-c09c-11df-a42c-ca77b98ee728}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f57896da-c09c-11df-a42c-ca77b98ee728}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f57896da-c09c-11df-a42c-ca77b98ee728}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f97a7b52-27c4-11df-a347-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f97a7b52-27c4-11df-a347-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f97a7b52-27c4-11df-a347-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f97a7b52-27c4-11df-a347-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8c-bd8a-11df-a426-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8d-bd8a-11df-a426-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d8e-bd8a-11df-a426-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d92-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d92-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d92-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d92-bd8a-11df-a426-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d96-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d96-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fb5c8d96-bd8a-11df-a426-001617fa4910}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fb5c8d96-bd8a-11df-a426-001617fa4910}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SystemData.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\H2O deleted successfully.
C:\Programme\Syncrosoft\POS\H2O\cledx.exe moved successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
[EMPTYTEMP]
 
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes
 
User: All Users
 
User: Bassti
->Temp folder emptied: 1786672254 bytes
->Temporary Internet Files folder emptied: 24571074 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 55653703 bytes
->Flash cache emptied: 7295 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
 
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 11360889 bytes
 
User: NetworkService
->Temp folder emptied: 83144 bytes
->Temporary Internet Files folder emptied: 1176759 bytes
 
User: SX
->Temp folder emptied: 37518390 bytes
->Temporary Internet Files folder emptied: 41970140 bytes
->Java cache emptied: 929822 bytes
->FireFox cache emptied: 47398042 bytes
->Flash cache emptied: 7243 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 19569 bytes
%systemroot%\System32 .tmp files removed: 3249243 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 13670581 bytes
RecycleBin emptied: 3106973 bytes
 
Total Files Cleaned = 1.934,00 mb
 
 
OTL by OldTimer - Version 3.2.22.3 log created on 04282011_172023

Files\Folders moved on Reboot...
Folder move failed. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{E6F7E8AE-5D26-4508-A961-B0231A24CCAE} scheduled to be moved on reboot.

Registry entries deleted on Reboot...
mein PC fährt jetzt auch wieder normal hoch....auf meinem desktop seh ich aber leider immer noch nichts
__________________
Alt 28.04.2011, 18:45   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
BKA-Trojaner Windows XP readme[1].exe - Standard

BKA-Trojaner Windows XP readme[1].exe


Bitte nun dieses Tool von Kaspersky ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html

Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, bitte unhide ausführen:
Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop.
Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern )
Vista und 7 User müssen das Tool per Rechtsklick als Administrator ausführen!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 29.04.2011, 12:46   #5
lui87
 
BKA-Trojaner Windows XP readme[1].exe - Standard

BKA-Trojaner Windows XP readme[1].exe


Code:
ATTFilter
2011/04/29 13:41:35.0921 1596	TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/04/29 13:41:35.0937 1596	================================================================================
2011/04/29 13:41:35.0937 1596	SystemInfo:
2011/04/29 13:41:35.0937 1596	
2011/04/29 13:41:35.0937 1596	OS Version: 5.1.2600 ServicePack: 3.0
2011/04/29 13:41:35.0937 1596	Product type: Workstation
2011/04/29 13:41:35.0937 1596	ComputerName: L2
2011/04/29 13:41:35.0937 1596	UserName: Bassti
2011/04/29 13:41:35.0937 1596	Windows directory: C:\WINDOWS
2011/04/29 13:41:35.0937 1596	System windows directory: C:\WINDOWS
2011/04/29 13:41:35.0937 1596	Processor architecture: Intel x86
2011/04/29 13:41:35.0937 1596	Number of processors: 1
2011/04/29 13:41:35.0937 1596	Page size: 0x1000
2011/04/29 13:41:35.0937 1596	Boot type: Normal boot
2011/04/29 13:41:35.0937 1596	================================================================================
2011/04/29 13:41:36.0484 1596	Initialize success
2011/04/29 13:41:39.0750 1864	================================================================================
2011/04/29 13:41:39.0750 1864	Scan started
2011/04/29 13:41:39.0750 1864	Mode: Manual; 
2011/04/29 13:41:39.0750 1864	================================================================================
2011/04/29 13:41:41.0437 1864	abp480n5        (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
2011/04/29 13:41:41.0546 1864	ac97intc        (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
2011/04/29 13:41:41.0656 1864	ACEDRV06        (44010948bde6ade50dd1386657c73e83) C:\WINDOWS\system32\drivers\ACEDRV06.sys
2011/04/29 13:41:41.0812 1864	ACPI            (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/04/29 13:41:41.0906 1864	ACPIEC          (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/04/29 13:41:41.0968 1864	adfs            (6d7f09cd92a9fef3a8efce66231fdd79) C:\WINDOWS\system32\drivers\adfs.sys
2011/04/29 13:41:42.0015 1864	adpu160m        (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
2011/04/29 13:41:42.0062 1864	aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/04/29 13:41:42.0125 1864	AFD             (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys
2011/04/29 13:41:42.0171 1864	agp440          (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
2011/04/29 13:41:42.0203 1864	agpCPQ          (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
2011/04/29 13:41:42.0234 1864	Aha154x         (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
2011/04/29 13:41:42.0281 1864	aic78u2         (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
2011/04/29 13:41:42.0312 1864	aic78xx         (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
2011/04/29 13:41:42.0359 1864	AliIde          (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
2011/04/29 13:41:42.0390 1864	alim1541        (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
2011/04/29 13:41:42.0406 1864	amdagp          (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
2011/04/29 13:41:42.0437 1864	amsint          (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
2011/04/29 13:41:42.0500 1864	asc             (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
2011/04/29 13:41:42.0515 1864	asc3350p        (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
2011/04/29 13:41:42.0546 1864	asc3550         (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
2011/04/29 13:41:42.0593 1864	AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/04/29 13:41:42.0687 1864	atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/04/29 13:41:42.0875 1864	ati2mtag        (6b618c7764e03a78599d74e31b8ab17b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2011/04/29 13:41:42.0937 1864	Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/04/29 13:41:42.0968 1864	audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/04/29 13:41:43.0187 1864	avgio           (87828ecd657f81503465ac705e845076) C:\Programme\Avira\AntiVir PersonalEdition Classic\avgio.sys
2011/04/29 13:41:43.0203 1864	avgntflt        (fcb30820bed1d3feb55e3dd55a3f947f) C:\Programme\Avira\AntiVir PersonalEdition Classic\avgntflt.sys
2011/04/29 13:41:43.0250 1864	avipbb          (0b09df022250fb7ba91fb932eac6ea9b) C:\WINDOWS\system32\DRIVERS\avipbb.sys
2011/04/29 13:41:43.0265 1864	Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/04/29 13:41:43.0359 1864	cbidf           (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
2011/04/29 13:41:43.0375 1864	cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/04/29 13:41:43.0406 1864	CCDECODE        (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/04/29 13:41:43.0453 1864	cd20xrnt        (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
2011/04/29 13:41:43.0468 1864	Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/04/29 13:41:43.0515 1864	Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/04/29 13:41:43.0828 1864	Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/04/29 13:41:44.0000 1864	CLEDX           (b53f9635457b56dcffef750e18aec6cb) C:\WINDOWS\system32\DRIVERS\cledx.sys
2011/04/29 13:41:44.0015 1864	CmdIde          (c687f81290303d90099b027a6474f99f) C:\WINDOWS\system32\DRIVERS\cmdide.sys
2011/04/29 13:41:44.0062 1864	Cpqarray        (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
2011/04/29 13:41:44.0093 1864	dac2w2k         (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
2011/04/29 13:41:44.0140 1864	dac960nt        (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
2011/04/29 13:41:44.0187 1864	Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/04/29 13:41:44.0250 1864	dmboot          (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
2011/04/29 13:41:44.0296 1864	dmio            (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
2011/04/29 13:41:44.0328 1864	dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/04/29 13:41:44.0359 1864	DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/04/29 13:41:44.0453 1864	dmxfire         (3f575a79fbbc68c0d0a23f1e33ea9d12) C:\WINDOWS\system32\drivers\dmx6fire.sys
2011/04/29 13:41:44.0500 1864	dmxsens         (a3a16fa252225f2ffe5efc76b3279756) C:\WINDOWS\system32\drivers\dmxsens.sys
2011/04/29 13:41:44.0546 1864	dpti2o          (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
2011/04/29 13:41:44.0578 1864	drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/04/29 13:41:44.0656 1864	E100B           (a6de5342417fec3c0aa8efebb899c431) C:\WINDOWS\system32\DRIVERS\e100b325.sys
2011/04/29 13:41:44.0765 1864	emusba10        (e829a5cbcc67cd9ec78bb6580f52f92b) C:\WINDOWS\system32\DRIVERS\emusba10.sys
2011/04/29 13:41:44.0859 1864	ewusbnet        (13d0f39d356e70f0a5e80d7771382245) C:\WINDOWS\system32\DRIVERS\ewusbnet.sys
2011/04/29 13:41:44.0906 1864	Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/04/29 13:41:44.0937 1864	Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
2011/04/29 13:41:44.0968 1864	Fips            (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
2011/04/29 13:41:45.0000 1864	Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2011/04/29 13:41:45.0031 1864	FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/04/29 13:41:45.0140 1864	Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/04/29 13:41:45.0171 1864	Ftdisk          (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/04/29 13:41:45.0218 1864	G400            (33d00f8cb70ac5f7a8101f79d5273615) C:\WINDOWS\system32\DRIVERS\G400m.sys
2011/04/29 13:41:45.0328 1864	GEARAspiWDM     (5dc17164f66380cbfefd895c18467773) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2011/04/29 13:41:45.0421 1864	Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/04/29 13:41:45.0453 1864	HDAudBus        (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/04/29 13:41:45.0500 1864	HidUsb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/04/29 13:41:45.0531 1864	hpn             (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
2011/04/29 13:41:45.0609 1864	HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/04/29 13:41:45.0750 1864	hwdatacard      (8adf5ef39e896a65beded878494ee2b6) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
2011/04/29 13:41:45.0859 1864	i2omgmt         (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
2011/04/29 13:41:45.0906 1864	i2omp           (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
2011/04/29 13:41:45.0937 1864	i8042prt        (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/04/29 13:41:46.0000 1864	iaStor          (309c4d86d989fb1fcf64bd30dc81c51b) C:\WINDOWS\system32\DRIVERS\iaStor.sys
2011/04/29 13:41:46.0062 1864	Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/04/29 13:41:46.0109 1864	ini910u         (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
2011/04/29 13:41:46.0343 1864	IntcAzAudAddService (b29781b9a90cd55fc5d859c0b1c243bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011/04/29 13:41:46.0593 1864	IntelIde        (69c4e3c9e67a1f103b94e14fdd5f3213) C:\WINDOWS\system32\DRIVERS\intelide.sys
2011/04/29 13:41:46.0718 1864	Ip6Fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/04/29 13:41:46.0812 1864	IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/04/29 13:41:46.0890 1864	IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/04/29 13:41:47.0156 1864	IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/04/29 13:41:47.0171 1864	IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/04/29 13:41:47.0234 1864	IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/04/29 13:41:47.0296 1864	isapnp          (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/04/29 13:41:47.0484 1864	ISODrive        (0ae61463adda697a6291155ce6b08aaf) C:\Programme\UltraISO\drivers\ISODrive.sys
2011/04/29 13:41:47.0531 1864	Kbdclass        (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/04/29 13:41:47.0562 1864	kbdhid          (b6d6c117d771c98130497265f26d1882) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2011/04/29 13:41:47.0593 1864	kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/04/29 13:41:47.0703 1864	KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/04/29 13:41:47.0843 1864	mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/04/29 13:41:47.0937 1864	Modem           (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
2011/04/29 13:41:48.0031 1864	Mouclass        (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/04/29 13:41:48.0109 1864	mouhid          (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/04/29 13:41:48.0140 1864	MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/04/29 13:41:48.0203 1864	mraid35x        (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
2011/04/29 13:41:48.0218 1864	MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/04/29 13:41:48.0312 1864	MRxSmb          (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/04/29 13:41:48.0375 1864	Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/04/29 13:41:48.0421 1864	MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/04/29 13:41:48.0453 1864	MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/04/29 13:41:48.0515 1864	MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/04/29 13:41:48.0593 1864	mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/04/29 13:41:48.0671 1864	MSTEE           (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/04/29 13:41:48.0703 1864	Mup             (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/04/29 13:41:48.0765 1864	NABTSFEC        (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/04/29 13:41:48.0828 1864	NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/04/29 13:41:48.0953 1864	NdisIP          (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/04/29 13:41:49.0015 1864	NdisTapi        (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/04/29 13:41:49.0046 1864	Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/04/29 13:41:49.0078 1864	NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/04/29 13:41:49.0125 1864	NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/04/29 13:41:49.0171 1864	NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/04/29 13:41:49.0218 1864	NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/04/29 13:41:49.0328 1864	Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/04/29 13:41:49.0390 1864	Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/04/29 13:41:49.0515 1864	Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/04/29 13:41:49.0625 1864	nv              (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
2011/04/29 13:41:49.0859 1864	NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/04/29 13:41:49.0921 1864	NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/04/29 13:41:50.0015 1864	Parport         (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
2011/04/29 13:41:50.0046 1864	PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/04/29 13:41:50.0109 1864	ParVdm          (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/04/29 13:41:50.0171 1864	PCI             (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/04/29 13:41:50.0250 1864	PCIIde          (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/04/29 13:41:50.0343 1864	Pcmcia          (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/04/29 13:41:50.0515 1864	pelmouse        (e541a80cdffd6077c761b4578efc0450) C:\WINDOWS\system32\DRIVERS\pelmouse.sys
2011/04/29 13:41:50.0546 1864	pelusblf        (6432858a4493e906a7d61b9b17a0672a) C:\WINDOWS\system32\DRIVERS\pelusblf.sys
2011/04/29 13:41:50.0578 1864	perc2           (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
2011/04/29 13:41:50.0656 1864	perc2hib        (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
2011/04/29 13:41:50.0750 1864	pfc             (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
2011/04/29 13:41:50.0828 1864	pmem            (dedef40e1d05842639491365cb2c069e) C:\WINDOWS\System32\drivers\pmemnt.sys
2011/04/29 13:41:50.0937 1864	PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/04/29 13:41:51.0000 1864	PROCDD          (c9ca089787aa4ca892f2173a8e15c1b0) C:\WINDOWS\system32\DRIVERS\PROCDD.SYS
2011/04/29 13:41:51.0062 1864	Processor       (2cb55427c58679f49ad600fccba76360) C:\WINDOWS\system32\DRIVERS\processr.sys
2011/04/29 13:41:51.0125 1864	psadd           (651d3abc1d82d61b6cfb40cb947b3db3) C:\WINDOWS\system32\DRIVERS\psadd.sys
2011/04/29 13:41:51.0171 1864	PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/04/29 13:41:51.0281 1864	Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/04/29 13:41:51.0375 1864	PxHelp20        (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2011/04/29 13:41:51.0406 1864	ql1080          (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
2011/04/29 13:41:51.0421 1864	Ql10wnt         (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
2011/04/29 13:41:51.0453 1864	ql12160         (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
2011/04/29 13:41:51.0500 1864	ql1240          (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
2011/04/29 13:41:51.0515 1864	ql1280          (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
2011/04/29 13:41:51.0562 1864	RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/04/29 13:41:51.0656 1864	Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/04/29 13:41:51.0750 1864	RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/04/29 13:41:51.0843 1864	Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/04/29 13:41:51.0937 1864	Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/04/29 13:41:51.0984 1864	RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/04/29 13:41:52.0015 1864	rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/04/29 13:41:52.0062 1864	RDPWD           (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/04/29 13:41:52.0109 1864	redbook         (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/04/29 13:41:52.0218 1864	Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/04/29 13:41:52.0296 1864	serenum         (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
2011/04/29 13:41:52.0328 1864	Serial          (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
2011/04/29 13:41:52.0375 1864	Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/04/29 13:41:52.0500 1864	sisagp          (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
2011/04/29 13:41:52.0531 1864	SLIP            (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/04/29 13:41:52.0593 1864	Sparrow         (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
2011/04/29 13:41:52.0656 1864	splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/04/29 13:41:52.0765 1864	sptd            (71e276f6d189413266ea22171806597b) C:\WINDOWS\system32\Drivers\sptd.sys
2011/04/29 13:41:52.0765 1864	Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b
2011/04/29 13:41:52.0781 1864	sptd - detected Locked file (1)
2011/04/29 13:41:52.0796 1864	sr              (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/04/29 13:41:52.0890 1864	Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/04/29 13:41:53.0000 1864	ssmdrv          (71d609c5dff067906d930bde031c4cfe) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
2011/04/29 13:41:53.0062 1864	streamip        (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/04/29 13:41:53.0109 1864	swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/04/29 13:41:53.0140 1864	swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/04/29 13:41:53.0234 1864	symc810         (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
2011/04/29 13:41:53.0296 1864	symc8xx         (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
2011/04/29 13:41:53.0390 1864	sym_hi          (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
2011/04/29 13:41:53.0406 1864	sym_u3          (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
2011/04/29 13:41:53.0468 1864	sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/04/29 13:41:53.0578 1864	Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/04/29 13:41:53.0671 1864	Tcpip6          (4e53bbcc4be37d7a4bd6ef1098c89ff7) C:\WINDOWS\system32\DRIVERS\tcpip6.sys
2011/04/29 13:41:53.0750 1864	TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/04/29 13:41:53.0812 1864	TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/04/29 13:41:53.0890 1864	TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/04/29 13:41:53.0968 1864	TosIde          (d213a9247dc347f305a2d4cc9b951487) C:\WINDOWS\system32\DRIVERS\toside.sys
2011/04/29 13:41:54.0046 1864	TPM             (a147180fc61769bf4eb6ff94d499970c) C:\WINDOWS\system32\DRIVERS\tpm.sys
2011/04/29 13:41:54.0156 1864	truecrypt       (db0815523ac07445a2f09dcd2acea8c3) C:\WINDOWS\system32\drivers\truecrypt.sys
2011/04/29 13:41:54.0250 1864	tunmp           (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
2011/04/29 13:41:54.0359 1864	tvtfilter       (49258a02a1e8d304ed88b0f1c56b1738) C:\WINDOWS\system32\DRIVERS\tvtfilter.sys
2011/04/29 13:41:54.0453 1864	TVTPktFilter    (6c60a5209be2fa1f94bb98a056418f66) C:\WINDOWS\system32\DRIVERS\tvtpktfilter.sys
2011/04/29 13:41:54.0546 1864	Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/04/29 13:41:54.0609 1864	UKS11LDR        (620ce857a21205399afc47e576a35884) C:\WINDOWS\system32\drivers\uks11ldr.sys
2011/04/29 13:41:54.0687 1864	ultra           (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
2011/04/29 13:41:54.0796 1864	Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/04/29 13:41:54.0906 1864	USBAAPL         (f340199e8cb097e1acd58a967c665919) C:\WINDOWS\system32\Drivers\usbaapl.sys
2011/04/29 13:41:55.0000 1864	usbaudio        (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
2011/04/29 13:41:55.0109 1864	usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/04/29 13:41:55.0218 1864	usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/04/29 13:41:55.0312 1864	usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/04/29 13:41:55.0406 1864	USBKT1X1        (219e776dfadb932e7f82ac1d8e3f654e) C:\WINDOWS\system32\drivers\usbkt1x1.sys
2011/04/29 13:41:55.0437 1864	usbohci         (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
2011/04/29 13:41:55.0531 1864	usbprint        (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/04/29 13:41:55.0593 1864	usbscan         (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/04/29 13:41:55.0656 1864	USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/04/29 13:41:55.0703 1864	usbuhci         (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/04/29 13:41:55.0796 1864	VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/04/29 13:41:55.0875 1864	viaagp          (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
2011/04/29 13:41:55.0937 1864	ViaIde          (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
2011/04/29 13:41:56.0000 1864	VolSnap         (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/04/29 13:41:56.0062 1864	w89c940         (f4ae73d3a0f8049fe60280a878df9aca) C:\WINDOWS\system32\DRIVERS\w940nd.sys
2011/04/29 13:41:56.0125 1864	Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/04/29 13:41:56.0171 1864	wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/04/29 13:41:56.0328 1864	WpdUsb          (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
2011/04/29 13:41:56.0421 1864	WS2IFSL         (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2011/04/29 13:41:56.0484 1864	WSTCODEC        (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/04/29 13:41:56.0562 1864	WudfPf          (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2011/04/29 13:41:56.0609 1864	WudfRd          (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
2011/04/29 13:41:56.0703 1864	YMIDUSB         (4888399e41c4b71ce4ae71568b78cc8e) C:\WINDOWS\system32\Drivers\ymidusb.sys
2011/04/29 13:41:56.0781 1864	yukonwxp        (886215e6f3bf5a9d1ba99afd6b478e74) C:\WINDOWS\system32\DRIVERS\yk51x86.sys
2011/04/29 13:41:56.0984 1864	================================================================================
2011/04/29 13:41:56.0984 1864	Scan finished
2011/04/29 13:41:56.0984 1864	================================================================================
2011/04/29 13:41:57.0000 2872	Detected object count: 1
2011/04/29 13:42:04.0531 2872	Locked file(sptd) - User select action: Skip
unhide habe ich auch laufen lassen, seh auf meinem desktop aber immer noch nichts


Alt 29.04.2011, 12:57   #6
lui87
 
BKA-Trojaner Windows XP readme[1].exe - Standard

BKA-Trojaner Windows XP readme[1].exe


Code:
ATTFilter
2011/04/29 13:55:03.0078 3404	TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/04/29 13:55:03.0218 3404	================================================================================
2011/04/29 13:55:03.0218 3404	SystemInfo:
2011/04/29 13:55:03.0218 3404	
2011/04/29 13:55:03.0218 3404	OS Version: 5.1.2600 ServicePack: 3.0
2011/04/29 13:55:03.0218 3404	Product type: Workstation
2011/04/29 13:55:03.0218 3404	ComputerName: L2
2011/04/29 13:55:03.0218 3404	UserName: Bassti
2011/04/29 13:55:03.0218 3404	Windows directory: C:\WINDOWS
2011/04/29 13:55:03.0218 3404	System windows directory: C:\WINDOWS
2011/04/29 13:55:03.0218 3404	Processor architecture: Intel x86
2011/04/29 13:55:03.0218 3404	Number of processors: 1
2011/04/29 13:55:03.0218 3404	Page size: 0x1000
2011/04/29 13:55:03.0218 3404	Boot type: Normal boot
2011/04/29 13:55:03.0218 3404	================================================================================
2011/04/29 13:55:05.0421 3404	Initialize success
2011/04/29 13:55:08.0406 3424	================================================================================
2011/04/29 13:55:08.0406 3424	Scan started
2011/04/29 13:55:08.0406 3424	Mode: Manual; 
2011/04/29 13:55:08.0406 3424	================================================================================
2011/04/29 13:55:10.0890 3424	abp480n5        (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
2011/04/29 13:55:10.0921 3424	ac97intc        (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
2011/04/29 13:55:11.0015 3424	ACEDRV06        (44010948bde6ade50dd1386657c73e83) C:\WINDOWS\system32\drivers\ACEDRV06.sys
2011/04/29 13:55:11.0171 3424	ACPI            (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/04/29 13:55:11.0203 3424	ACPIEC          (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/04/29 13:55:11.0265 3424	adfs            (6d7f09cd92a9fef3a8efce66231fdd79) C:\WINDOWS\system32\drivers\adfs.sys
2011/04/29 13:55:11.0312 3424	adpu160m        (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
2011/04/29 13:55:11.0406 3424	aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/04/29 13:55:11.0468 3424	AFD             (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys
2011/04/29 13:55:11.0546 3424	agp440          (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
2011/04/29 13:55:11.0656 3424	agpCPQ          (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
2011/04/29 13:55:11.0671 3424	Aha154x         (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
2011/04/29 13:55:11.0703 3424	aic78u2         (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
2011/04/29 13:55:11.0734 3424	aic78xx         (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
2011/04/29 13:55:11.0765 3424	AliIde          (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
2011/04/29 13:55:11.0796 3424	alim1541        (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
2011/04/29 13:55:11.0890 3424	amdagp          (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
2011/04/29 13:55:11.0906 3424	amsint          (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
2011/04/29 13:55:11.0968 3424	asc             (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
2011/04/29 13:55:12.0000 3424	asc3350p        (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
2011/04/29 13:55:12.0031 3424	asc3550         (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
2011/04/29 13:55:12.0125 3424	AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/04/29 13:55:12.0234 3424	atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/04/29 13:55:12.0421 3424	ati2mtag        (6b618c7764e03a78599d74e31b8ab17b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2011/04/29 13:55:12.0531 3424	Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/04/29 13:55:12.0562 3424	audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/04/29 13:55:12.0781 3424	avgio           (87828ecd657f81503465ac705e845076) C:\Programme\Avira\AntiVir PersonalEdition Classic\avgio.sys
2011/04/29 13:55:12.0859 3424	avgntflt        (fcb30820bed1d3feb55e3dd55a3f947f) C:\Programme\Avira\AntiVir PersonalEdition Classic\avgntflt.sys
2011/04/29 13:55:12.0968 3424	avipbb          (0b09df022250fb7ba91fb932eac6ea9b) C:\WINDOWS\system32\DRIVERS\avipbb.sys
2011/04/29 13:55:12.0984 3424	Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/04/29 13:55:13.0109 3424	cbidf           (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
2011/04/29 13:55:13.0140 3424	cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/04/29 13:55:13.0187 3424	CCDECODE        (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/04/29 13:55:13.0218 3424	cd20xrnt        (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
2011/04/29 13:55:13.0250 3424	Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/04/29 13:55:13.0281 3424	Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/04/29 13:55:13.0546 3424	Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/04/29 13:55:13.0687 3424	CLEDX           (b53f9635457b56dcffef750e18aec6cb) C:\WINDOWS\system32\DRIVERS\cledx.sys
2011/04/29 13:55:13.0718 3424	CmdIde          (c687f81290303d90099b027a6474f99f) C:\WINDOWS\system32\DRIVERS\cmdide.sys
2011/04/29 13:55:13.0765 3424	Cpqarray        (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
2011/04/29 13:55:13.0796 3424	dac2w2k         (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
2011/04/29 13:55:13.0843 3424	dac960nt        (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
2011/04/29 13:55:13.0875 3424	Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/04/29 13:55:13.0953 3424	dmboot          (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
2011/04/29 13:55:14.0078 3424	dmio            (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
2011/04/29 13:55:14.0156 3424	dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/04/29 13:55:14.0218 3424	DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/04/29 13:55:14.0312 3424	dmxfire         (3f575a79fbbc68c0d0a23f1e33ea9d12) C:\WINDOWS\system32\drivers\dmx6fire.sys
2011/04/29 13:55:14.0343 3424	dmxsens         (a3a16fa252225f2ffe5efc76b3279756) C:\WINDOWS\system32\drivers\dmxsens.sys
2011/04/29 13:55:14.0390 3424	dpti2o          (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
2011/04/29 13:55:14.0437 3424	drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/04/29 13:55:14.0468 3424	E100B           (a6de5342417fec3c0aa8efebb899c431) C:\WINDOWS\system32\DRIVERS\e100b325.sys
2011/04/29 13:55:14.0562 3424	emusba10        (e829a5cbcc67cd9ec78bb6580f52f92b) C:\WINDOWS\system32\DRIVERS\emusba10.sys
2011/04/29 13:55:14.0671 3424	ewusbnet        (13d0f39d356e70f0a5e80d7771382245) C:\WINDOWS\system32\DRIVERS\ewusbnet.sys
2011/04/29 13:55:14.0718 3424	Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/04/29 13:55:14.0765 3424	Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
2011/04/29 13:55:14.0796 3424	Fips            (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
2011/04/29 13:55:14.0843 3424	Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2011/04/29 13:55:14.0921 3424	FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/04/29 13:55:15.0046 3424	Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/04/29 13:55:15.0062 3424	Ftdisk          (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/04/29 13:55:15.0156 3424	G400            (33d00f8cb70ac5f7a8101f79d5273615) C:\WINDOWS\system32\DRIVERS\G400m.sys
2011/04/29 13:55:15.0359 3424	GEARAspiWDM     (5dc17164f66380cbfefd895c18467773) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2011/04/29 13:55:15.0453 3424	Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/04/29 13:55:15.0578 3424	HDAudBus        (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/04/29 13:55:15.0671 3424	HidUsb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/04/29 13:55:15.0765 3424	hpn             (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
2011/04/29 13:55:15.0875 3424	HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/04/29 13:55:16.0000 3424	hwdatacard      (8adf5ef39e896a65beded878494ee2b6) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
2011/04/29 13:55:16.0093 3424	i2omgmt         (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
2011/04/29 13:55:16.0171 3424	i2omp           (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
2011/04/29 13:55:16.0281 3424	i8042prt        (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/04/29 13:55:16.0406 3424	iaStor          (309c4d86d989fb1fcf64bd30dc81c51b) C:\WINDOWS\system32\DRIVERS\iaStor.sys
2011/04/29 13:55:16.0562 3424	Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/04/29 13:55:16.0625 3424	ini910u         (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
2011/04/29 13:55:16.0859 3424	IntcAzAudAddService (b29781b9a90cd55fc5d859c0b1c243bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011/04/29 13:55:17.0046 3424	IntelIde        (69c4e3c9e67a1f103b94e14fdd5f3213) C:\WINDOWS\system32\DRIVERS\intelide.sys
2011/04/29 13:55:17.0140 3424	Ip6Fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/04/29 13:55:17.0234 3424	IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/04/29 13:55:17.0250 3424	IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/04/29 13:55:17.0359 3424	IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/04/29 13:55:17.0421 3424	IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/04/29 13:55:17.0468 3424	IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/04/29 13:55:17.0531 3424	isapnp          (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/04/29 13:55:17.0718 3424	ISODrive        (0ae61463adda697a6291155ce6b08aaf) C:\Programme\UltraISO\drivers\ISODrive.sys
2011/04/29 13:55:17.0750 3424	Kbdclass        (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/04/29 13:55:17.0765 3424	kbdhid          (b6d6c117d771c98130497265f26d1882) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2011/04/29 13:55:17.0812 3424	kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/04/29 13:55:17.0921 3424	KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/04/29 13:55:18.0078 3424	mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/04/29 13:55:18.0109 3424	Modem           (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
2011/04/29 13:55:18.0140 3424	Mouclass        (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/04/29 13:55:18.0218 3424	mouhid          (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/04/29 13:55:18.0296 3424	MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/04/29 13:55:18.0359 3424	mraid35x        (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
2011/04/29 13:55:18.0375 3424	MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/04/29 13:55:18.0468 3424	MRxSmb          (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/04/29 13:55:18.0531 3424	Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/04/29 13:55:18.0593 3424	MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/04/29 13:55:18.0625 3424	MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/04/29 13:55:18.0671 3424	MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/04/29 13:55:18.0765 3424	mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/04/29 13:55:18.0828 3424	MSTEE           (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/04/29 13:55:18.0843 3424	Mup             (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/04/29 13:55:18.0906 3424	NABTSFEC        (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/04/29 13:55:18.0968 3424	NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/04/29 13:55:19.0031 3424	NdisIP          (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/04/29 13:55:19.0078 3424	NdisTapi        (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/04/29 13:55:19.0109 3424	Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/04/29 13:55:19.0140 3424	NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/04/29 13:55:19.0187 3424	NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/04/29 13:55:19.0265 3424	NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/04/29 13:55:19.0359 3424	NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/04/29 13:55:19.0484 3424	Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/04/29 13:55:19.0546 3424	Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/04/29 13:55:19.0656 3424	Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/04/29 13:55:19.0750 3424	nv              (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
2011/04/29 13:55:19.0906 3424	NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/04/29 13:55:19.0953 3424	NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/04/29 13:55:20.0062 3424	Parport         (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
2011/04/29 13:55:20.0093 3424	PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/04/29 13:55:20.0140 3424	ParVdm          (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/04/29 13:55:20.0203 3424	PCI             (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/04/29 13:55:20.0703 3424	PCIIde          (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/04/29 13:55:20.0890 3424	Pcmcia          (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/04/29 13:55:21.0046 3424	pelmouse        (e541a80cdffd6077c761b4578efc0450) C:\WINDOWS\system32\DRIVERS\pelmouse.sys
2011/04/29 13:55:21.0140 3424	pelusblf        (6432858a4493e906a7d61b9b17a0672a) C:\WINDOWS\system32\DRIVERS\pelusblf.sys
2011/04/29 13:55:21.0187 3424	perc2           (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
2011/04/29 13:55:21.0203 3424	perc2hib        (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
2011/04/29 13:55:21.0281 3424	pfc             (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys
2011/04/29 13:55:21.0390 3424	pmem            (dedef40e1d05842639491365cb2c069e) C:\WINDOWS\System32\drivers\pmemnt.sys
2011/04/29 13:55:21.0500 3424	PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/04/29 13:55:21.0546 3424	PROCDD          (c9ca089787aa4ca892f2173a8e15c1b0) C:\WINDOWS\system32\DRIVERS\PROCDD.SYS
2011/04/29 13:55:21.0578 3424	Processor       (2cb55427c58679f49ad600fccba76360) C:\WINDOWS\system32\DRIVERS\processr.sys
2011/04/29 13:55:21.0609 3424	psadd           (651d3abc1d82d61b6cfb40cb947b3db3) C:\WINDOWS\system32\DRIVERS\psadd.sys
2011/04/29 13:55:21.0687 3424	PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/04/29 13:55:21.0703 3424	Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/04/29 13:55:21.0796 3424	PxHelp20        (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2011/04/29 13:55:21.0843 3424	ql1080          (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
2011/04/29 13:55:21.0859 3424	Ql10wnt         (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
2011/04/29 13:55:21.0890 3424	ql12160         (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
2011/04/29 13:55:21.0906 3424	ql1240          (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
2011/04/29 13:55:21.0953 3424	ql1280          (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
2011/04/29 13:55:21.0984 3424	RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/04/29 13:55:22.0078 3424	Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/04/29 13:55:22.0109 3424	RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/04/29 13:55:22.0140 3424	Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/04/29 13:55:22.0234 3424	Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/04/29 13:55:22.0343 3424	RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/04/29 13:55:22.0375 3424	rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/04/29 13:55:22.0421 3424	RDPWD           (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/04/29 13:55:22.0531 3424	redbook         (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/04/29 13:55:22.0640 3424	Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/04/29 13:55:22.0718 3424	serenum         (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
2011/04/29 13:55:22.0828 3424	Serial          (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
2011/04/29 13:55:23.0000 3424	Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/04/29 13:55:23.0125 3424	sisagp          (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
2011/04/29 13:55:23.0140 3424	SLIP            (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/04/29 13:55:23.0218 3424	Sparrow         (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
2011/04/29 13:55:23.0265 3424	splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/04/29 13:55:23.0312 3424	sr              (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/04/29 13:55:23.0406 3424	Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/04/29 13:55:23.0531 3424	ssmdrv          (71d609c5dff067906d930bde031c4cfe) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
2011/04/29 13:55:23.0593 3424	streamip        (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/04/29 13:55:23.0656 3424	swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/04/29 13:55:23.0687 3424	swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/04/29 13:55:23.0781 3424	symc810         (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
2011/04/29 13:55:23.0843 3424	symc8xx         (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
2011/04/29 13:55:23.0875 3424	sym_hi          (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
2011/04/29 13:55:23.0890 3424	sym_u3          (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
2011/04/29 13:55:23.0984 3424	sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/04/29 13:55:24.0093 3424	Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/04/29 13:55:24.0218 3424	Tcpip6          (4e53bbcc4be37d7a4bd6ef1098c89ff7) C:\WINDOWS\system32\DRIVERS\tcpip6.sys
2011/04/29 13:55:24.0281 3424	TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/04/29 13:55:24.0343 3424	TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/04/29 13:55:24.0375 3424	TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/04/29 13:55:24.0453 3424	TosIde          (d213a9247dc347f305a2d4cc9b951487) C:\WINDOWS\system32\DRIVERS\toside.sys
2011/04/29 13:55:24.0515 3424	TPM             (a147180fc61769bf4eb6ff94d499970c) C:\WINDOWS\system32\DRIVERS\tpm.sys
2011/04/29 13:55:24.0625 3424	truecrypt       (db0815523ac07445a2f09dcd2acea8c3) C:\WINDOWS\system32\drivers\truecrypt.sys
2011/04/29 13:55:24.0718 3424	tunmp           (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
2011/04/29 13:55:24.0812 3424	tvtfilter       (49258a02a1e8d304ed88b0f1c56b1738) C:\WINDOWS\system32\DRIVERS\tvtfilter.sys
2011/04/29 13:55:24.0875 3424	TVTPktFilter    (6c60a5209be2fa1f94bb98a056418f66) C:\WINDOWS\system32\DRIVERS\tvtpktfilter.sys
2011/04/29 13:55:24.0953 3424	Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/04/29 13:55:25.0015 3424	UKS11LDR        (620ce857a21205399afc47e576a35884) C:\WINDOWS\system32\drivers\uks11ldr.sys
2011/04/29 13:55:25.0093 3424	ultra           (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
2011/04/29 13:55:25.0187 3424	Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/04/29 13:55:25.0296 3424	USBAAPL         (f340199e8cb097e1acd58a967c665919) C:\WINDOWS\system32\Drivers\usbaapl.sys
2011/04/29 13:55:25.0390 3424	usbaudio        (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
2011/04/29 13:55:25.0500 3424	usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/04/29 13:55:25.0562 3424	usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/04/29 13:55:25.0640 3424	usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/04/29 13:55:25.0734 3424	USBKT1X1        (219e776dfadb932e7f82ac1d8e3f654e) C:\WINDOWS\system32\drivers\usbkt1x1.sys
2011/04/29 13:55:25.0765 3424	usbohci         (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
2011/04/29 13:55:25.0796 3424	usbprint        (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/04/29 13:55:25.0843 3424	usbscan         (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/04/29 13:55:25.0906 3424	USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/04/29 13:55:25.0937 3424	usbuhci         (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/04/29 13:55:25.0968 3424	VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/04/29 13:55:26.0062 3424	viaagp          (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
2011/04/29 13:55:26.0109 3424	ViaIde          (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
2011/04/29 13:55:26.0171 3424	VolSnap         (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/04/29 13:55:26.0265 3424	w89c940         (f4ae73d3a0f8049fe60280a878df9aca) C:\WINDOWS\system32\DRIVERS\w940nd.sys
2011/04/29 13:55:26.0328 3424	Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/04/29 13:55:26.0375 3424	wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/04/29 13:55:26.0531 3424	WpdUsb          (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
2011/04/29 13:55:26.0625 3424	WS2IFSL         (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2011/04/29 13:55:26.0703 3424	WSTCODEC        (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/04/29 13:55:26.0781 3424	WudfPf          (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2011/04/29 13:55:26.0812 3424	WudfRd          (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
2011/04/29 13:55:26.0921 3424	YMIDUSB         (4888399e41c4b71ce4ae71568b78cc8e) C:\WINDOWS\system32\Drivers\ymidusb.sys
2011/04/29 13:55:27.0000 3424	yukonwxp        (886215e6f3bf5a9d1ba99afd6b478e74) C:\WINDOWS\system32\DRIVERS\yk51x86.sys
2011/04/29 13:55:27.0218 3424	================================================================================
2011/04/29 13:55:27.0218 3424	Scan finished
2011/04/29 13:55:27.0218 3424	================================================================================
auf meinem desktop sehe ich weiterhin nix. malwarebytes hat auch nix mehr gefunden

Alt 29.04.2011, 19:43   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
BKA-Trojaner Windows XP readme[1].exe - Standard

BKA-Trojaner Windows XP readme[1].exe


Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Lade dir ComboFix hier herunter auf deinen Desktop. Benenne es beim Runterladen um in cofi.exe.
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte cofi.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!
Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.
__________________
Logfiles bitte immer in CODE-Tags posten

Antwort

Themen zu BKA-Trojaner Windows XP readme[1].exe
0x00000001, adobe, antivir, aufrufe, avgntflt.sys, avira, bho, bka-trojaner windows xp, c:\windows\system32\rundll32.exe, desktop, einstellungen, error, explorer, festplatte, firefox, format, infizierte, lenovo, location, logfile, monitor, mozilla, msimg32.dll, neustart, oldtimer, pdf, plug-in, pup.funwebproducts, ransom, realtek, registry, rundll, scan, searchplugins, searchscopes, shell32.dll, software, sptd.sys, temp, windows, windows xp


« Trojaner 18145076 | AntiVir meldet TR/Kazy.mekml.1, OTLogfile »


Ähnliche Themen: BKA-Trojaner Windows XP readme[1].exe


  1. Windows 7 SP 1 mit Trojaner infiziert - Windows Update Fehlercode 8007002
    Log-Analyse und Auswertung - 11.09.2015 (60)
  2. Windows 7: Trojaner - Windows Updates, Firewall defekt
    Log-Analyse und Auswertung - 20.03.2015 (24)
  3. Windows 7: Nach BKA Trojaner Fehlermeldung beim Starten, Windows Sicherheitscenter kann nicht gestartet werden
    Log-Analyse und Auswertung - 18.11.2014 (9)
  4. *.LOCKED - README TO UNLOCK.txt - Verschlüsselungs - Virus
    Plagegeister aller Art und deren Bekämpfung - 17.04.2014 (7)
  5. Windows-Verschlüsselungs-Trojaner unter Windows 7 auf einem MAC
    Log-Analyse und Auswertung - 14.06.2012 (3)
  6. windows verschlüsselungs Flirtfever-Trojaner, Windows XP
    Log-Analyse und Auswertung - 13.06.2012 (1)
  7. Nach BKA Trojaner, Windows Firewall deaktiviert sich (Windows XP)
    Plagegeister aller Art und deren Bekämpfung - 10.06.2012 (1)
  8. Willkomen bei Windows Update, Sie haben sich mit einen Windows-Verschlüsselungs Trojaner infiziert.
    Log-Analyse und Auswertung - 06.06.2012 (1)
  9. UKash Windows Secure Trojaner mit Windows XP eingefangen
    Plagegeister aller Art und deren Bekämpfung - 05.06.2012 (1)
  10. Windows 7 hat einen Windows Update Trojaner
    Plagegeister aller Art und deren Bekämpfung - 29.05.2012 (5)
  11. Windows Notfall Sicherheits Update Center - Windows XP Trojaner
    Log-Analyse und Auswertung - 21.05.2012 (2)
  12. Windows 7 (64bit) Virus/Trojaner (evtl. Windows Verschlüsselungs Trojaner)
    Plagegeister aller Art und deren Bekämpfung - 07.05.2012 (19)
  13. Infiziert mit Windows-Verschlüsselungs Trojaner -Mail mit Telefonrechnung - windows vista
    Plagegeister aller Art und deren Bekämpfung - 06.05.2012 (12)
  14. "Willkommen bei Windows Update Sie haben sich mit einen Windows-Verschlüsselungs Trojaner infiziert.
    Log-Analyse und Auswertung - 27.04.2012 (3)
  15. 'Windows Security Center' Trojaner - Windows-Benutzer gesperrt !
    Log-Analyse und Auswertung - 16.03.2012 (5)
  16. Windows Vista Home Premium 32-Bit Trojaner Windows gesperrt 50€ zahlen.
    Log-Analyse und Auswertung - 23.01.2012 (1)
  17. Trojaner Fake.AV c:\Users\Sexgott\AppData\Roaming\microsoft\Windows\start menu\Programs\windows reco
    Mülltonne - 28.04.2011 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema BKA-Trojaner Windows XP readme[1].exe - Ich hab mir gestern den BKA-trojaner eingefangen. Die Symptome sind dieselben wie in anderen Threads beschrieben: -die Dateien auf dem Desktop sind nicht sichtbar -Taskmanager lässt sich im normalen Modus - BKA-Trojaner Windows XP readme[1].exe...
Archiv
Du betrachtest: BKA-Trojaner Windows XP readme[1].exe auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130