PDM.Trojan.generic - Einige Ordner und Dateien sowie nicht sichtbar

fixxxxxi · 01.06.2011, 23:28

Hallo,

ich besuchte eine Seite im Internet, wo Kasperskey Alarm schlug:

GDI Client DLL Proaktiver Schutz
In die Quarantäne verschoben: PDM.Trojan.generic
C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\0.38087114455728854.EXE
Aktion wurde den Einstellungen entsprechend gewählt.

Plötzlich öffnete sich ein Fenster, wo irgendwas von defekten Festplattensektoren usw. stand. Sag mir nach einer Microsoft Anwendung aus. Da klickte ich auf Fehlerbehebung. Dann stand dort, das die Fehler nicht behoben werden könnten.

Die Dateien konnte ich mit UNHIDE wieder sichtbar machen. Wie entferne ich die infizierten Dateien sinnvoll?

Hier ist der LOG von Malewarebytes:

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Datenbank Version: 6750

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

02.06.2011 00:22:24
mbam-log-2011-06-02 (00-22-10).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 185517
Laufzeit: 11 Minute(n), 0 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 2
Infizierte Registrierungswerte: 2
Infizierte Dateiobjekte der Registrierung: 1
Infizierte Verzeichnisse: 1
Infizierte Dateien: 6

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_CLASSES_ROOT\CLSID\{OF7OS5JU-3X27-3BA3-IQ3F-48FKK0G522HP} (Trojan.Downloader) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{OF7OS5JU-3X27-3BA3-IQ3F-48FKK0G522HP} (Trojan.Downloader) -> No action taken.

Infizierte Registrierungswerte:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Policies (Trojan.Downloader) -> Value: Policies -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Policies (Trojan.Downloader) -> Value: Policies -> No action taken.

Infizierte Dateiobjekte der Registrierung:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop\NoChangingWallPaper (PUM.Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.

Infizierte Verzeichnisse:
c:\programdata\MPK (Refog.Keylogger) -> No action taken.

Infizierte Dateien:
c:\programdata\40820472.exe (Trojan.FakeMS) -> No action taken.
c:\Users\fixxxxxi\AppData\Local\Temp\jar_cache6166870869270142075.tmp (Trojan.FakeMS) -> No action taken.
c:\Users\fixxxxxi\downloads\roulette software dan0_21.exe (PUP.Casino) -> No action taken.
c:\Windows\System32\install\server.exe (Trojan.Downloader) -> No action taken.
c:\Windows\SysWOW64\install\server.exe (Trojan.Downloader) -> No action taken.
c:\programdata\MPK\mpk.db (Refog.Keylogger) -> No action taken.

kira · 01.06.2011, 23:50

Hallo und Herzlich Willkommen!

Bevor wir unsere Zusammenarbeit beginnen, [Bitte Vollständig lesen]:

Zitat:

"Fernbehandlungen/Fernhilfe" und die damit verbundenen Haftungsrisken:
- da die Fehlerprüfung und Handlung werden über große Entfernungen durchgeführt, besteht keine Haftung unsererseits für die daraus entstehenden Folgen.
- also, jede Haftung für die daraus entstandene Schäden wird ausgeschlossen, ANWEISUNGEN UND DEREN BEFOLGUNG, ERFOLGT AUF DEINE EIGENE VERANTWORTUNG!
Charakteristische Merkmale/Profilinformationen:
- aus der verwendeten Loglisten oder Logdateien - wie z.B. deinen Realnamen, Seriennummer in Programm etc)- kannst Du herauslöschen oder durch [X] ersetzen
Die Systemprüfung und Bereinigung:
- kann einige Zeit in Anspruch nehmen (je nach Art der Infektion), kann aber sogar so stark kompromittiert sein, so dass eine wirkungsvolle technische Säuberung ist nicht mehr möglich bzw Du es neu installieren musst
Ich empfehle Dir die Anweisungen erst einmal komplett durchzulesen, bevor du es anwendest, weil wenn du etwas falsch machst, kann es wirklich gefährlich werden. Wenn du meinen Anweisungen Schritt für Schritt folgst, kann eigentlich nichts schief gehen.
Innerhalb der Betreuungszeit:
- ohne Abspräche bitte nicht auf eigene Faust handeln!- bei Problemen nachfragen.
Die Reihenfolge:
- genau so wie beschrieben bitte einhalten, nicht selbst die Reihenfolge wählen!
GECRACKTE SOFTWARE werden hier nicht geduldet!!!!
Ansonsten unsere Forumsregeln:
- Bitte erst lesen, dann posten!-> Für alle Hilfesuchenden! Was muss ich vor der Eröffnung eines Themas beachten?

Alle Logfile mit einem vBCode Tag eingefügen, das bietet hier eine gute Übersicht, erleichtert mir die Arbeit! Falls das Logfile zu groß, teile es in mehrere Teile auf.

Sobald Du diesen Einführungstext gelesen hast, kannst Du beginnen

Für Vista und Win7:
Wichtig: Alle Befehle bitte als Administrator ausführen! rechte Maustaste auf die Eingabeaufforderung und "als Administrator ausführen" auswählen
Auf der angewählten Anwendung einen Rechtsklick (rechte Maustaste) und "Als Administrator ausführen" wählen!

Ich mach dir einen Vorschlag:
Wenn du glaubst zu kennen die Zeitpunkt wo dein System noch einwandfrei funktioniert hat, die Systemwiederherstellung ist einen Versuch Wert!:

- Gibt es einen "relativ einfachen Weg",wenn eine frische Infektion vorliegt, oder mal bestimmte Probleme bekommt man auch gelöst, was man sogleich ausprobieren sollte. Dies bietet Dir die Möglichkeit, Systemänderungen am Computer ohne Auswirkung auf persönliche Dateien, wie z. B. E-Mails, Dokumente oder Fotos, rückgängig zu machen.

Zitat:

-> Systemwiederherstellung
► Bitte wähle das älteste verfügbare Datum für die Wiederherstellung von Windows aus, wo dein Rechner noch einwandfrei funktioniert hat!

Du musst dich als Administrator oder als Benutzer mit Administratorrechten anmelden.
Die Systemwiederherstellung lässt sich unter Windows Vista/XP/7 wie folgt aufrufen:
► Start → Alle Programme → Zubehör → Systemprogramme → Systemwiederherstellung

->Eine Schritt-für-Schritt-Anleitung zum Einsatz der Systemwiederherstellung unter Windows XP
->Systemwiederherstellung unter Windows Vista
->Unter Win 7
► Falls nötig, kannst Du es im abgesicherten Modus auch tun - (Link bitte unbedingt anklicken & lesen!)

Die Systemwiederherstellung ist nur ein "Notlösung", das Problem wird damit nie 100%ig beseitigt, da dem Zeitpunkt des Eindringen des Trojaners nicht mehr feststellen kann. Aber man kann damit die Funktionsfähigkeit eines Computersystems erhöhen.
(Kannst noch immer bis zum heutigen Zeitpunkt rückgängig machen, falls liefert nicht das gewünschte Ergebnis)

► berichte mir auch, ob die SWH funktioniert hat, bzw ob Du das System auf einen früheren Wiederherstellungspunkt zurückstellen können?

1.
Systemscan mit OTL

Lade (falls noch nicht vorhanden) OTL von Oldtimer herunter und speichere es auf Deinem Desktop.

Doppelklick auf die OTL.exe
Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
Oben findest Du ein Kästchen mit Ausgabe.
Wähle bitte Standard-Ausgabe
Unter Extra-Registrierung wähle bitte Benutze SafeList.
Mache Häckchen bei LOP- und Purity-Prüfung.
Klicke nun auf Scan links oben.
Wenn der Scan beendet wurde werden zwei Logfiles erstellt.
Du findest die Logfiles auf Deinem Desktop => OTL.txt und Extras.txt
Poste die Logfiles in Code-Tags hier in den Thread.

2.
Bitte Versteckte - und Systemdateien sichtbar machen den Link hier anklicken:
System-Dateien und -Ordner unter XP und Vista sichtbar machen
Am Ende unserer Arbeit, kannst wieder rückgängig machen!

3.
→ Lade Dir HJTscanlist.zip herunter
→ entpacke die Datei auf deinem Desktop
→ Bei WindowsXP Home musst vor dem Scan zusätzlich tasklist.zip installieren
→ per Doppelklick starten
→ Wähle dein Betriebsystem aus - bei Win7 wähle Vista
→ Wenn Du gefragt wirst, die Option "Einstellung" (1) - scanlist" wählen
→ Nach kurzer Zeit sollte sich Dein Editor öffnen und die Datei hjtscanlist.txt präsentieren
→ Bitte kopiere den Inhalt hier in Deinen Thread.
** Falls es klappt auf einmal nicht, kannst den Text in mehrere Teile teilen und so posten

4.
Ich würde gerne noch all deine installierten Programme sehen:
Lade dir das Tool Ccleaner herunter
→ Download
installieren (Software-Lizenzvereinbarung lesen, falls angeboten wird "Füge CCleaner Yahoo! Toolbar hinzu" abwählen)→ starten→ falls nötig - unter Options settings-> "german" einstellen
dann klick auf "Extra (um die installierten Programme auch anzuzeigen)→ weiter auf "Als Textdatei speichern..."
wird eine Textdatei (*.txt) erstellt, kopiere dazu den Inhalt und füge ihn da ein

Zitat:

Damit dein Thread übersichtlicher und schön lesbar bleibt, am besten nutze den Code-Tags für deinen Post:
→ vor dein Log schreibst Du (also am Anfang des Logfiles):[code]
hier kommt dein Logfile rein - z.B hjtsanlist o. sonstiges
→ dahinter - also am Ende der Logdatei: [/code]

** Möglichst nicht ins internet gehen, kein Online-Banking, File-sharing, Chatprogramme usw

gruß
kira

fixxxxxi · 02.06.2011, 11:04

Eine Systemwiederherstellung konnte NICHT erfolgreich abgeschlossen werden. Ich habe diverse Systemwiederherstellungspunkte ausprobiert - alle ohne Erfolg.

Desweiteren habe ich im Anschluss an meinen gestern geöffneten Thread in dem Programm Malewarebytes auf entfernen geklickt, woraufhin ich den Rechner zum vollständigen entfernen neu starten sollte.

Ich hoffe dieses "voreilige" Handeln hat sich zu keinem Nachteil geäußert.

hjtscanlist.txt - TEIL 1

Code:

ATTFilter

 
                        $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 
                        º                                    º 
                                    hjtscanlist v2.0              
                        º                                    º 
                        $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 

Microsoft Windows [Version 6.1.7601]
 
 
C:

  02.06.2011 11:53     C:\Program Files --------- 8192   
       C:\pagefile.sys ---------    
       C:\hiberfil.sys ---------    
  02.06.2011 00:37     C:\ProgramData --------- 20480   
  02.06.2011 00:09     C:\Program Files (x86) --------- 32768   
  01.06.2011 12:41     C:\Windows --------- 32768   
  01.06.2011 12:39     C:\ESE --------- 4096   
  01.06.2011 12:39     C:\Photoshop CS 4 --------- 4096   
  01.06.2011 11:40     C:\System Volume Information --------- 28672   
  31.05.2011 09:51     C:\Tactical Ops --------- 81920   
  01.05.2011 08:07     C:\Boot --------- 4096   
  25.03.2011 00:52     C:\Temp --------- 0   
  05.02.2011 18:13     C:\Users --------- 4096   
  16.12.2010 18:36     C:\$Recycle.Bin --------- 4096   
  20.11.2010 14:40     C:\bootmgr --------- 383786   
  09.09.2010 03:41     C:\rules.qdb --------- 20   
  15.02.2010 01:04     C:\MAGIX --------- 0   
  18.01.2010 23:06     C:\MSOCache --------- 0   
  18.01.2010 22:55     C:\ATI --------- 0   
  18.01.2010 22:31     C:\Recovery --------- 0   
  18.01.2010 22:31     C:\Programme --------- 0   
  18.01.2010 22:31     C:\Dokumente und Einstellungen --------- 0   
  18.01.2010 22:20     C:\BOOTSECT.BAK --------- 8192   
  14.07.2009 07:08     C:\Documents and Settings --------- 0   
----------------------------------------

 
C:\Windows

  02.06.2011 11:40     C:\Windows\WindowsUpdate.log --------- 1381024   
  02.06.2011 11:30     C:\Windows\setupact.log --------- 109275   
  02.06.2011 11:30     C:\Windows\bootstat.dat --------- 67584   
  02.06.2011 11:30     C:\Windows\PFRO.log --------- 375604   
  14.05.2011 20:09     C:\Windows\win.ini --------- 1501   
  29.04.2011 23:56     C:\Windows\IE9_main.log --------- 2673   
  25.04.2011 00:10     C:\Windows\wiso.ini --------- 661   
  26.03.2011 14:14     C:\Windows\msxml4-KB973685-enu.LOG --------- 260056   
  26.03.2011 12:34     C:\Windows\DPINST.LOG --------- 21682   
  25.02.2011 08:19     C:\Windows\explorer.exe --------- 2871808   
  14.01.2011 15:01     C:\Windows\DirectX.log --------- 192128   
  16.12.2010 16:35     C:\Windows\OneProc.dat --------- 36   
  10.12.2010 13:14     C:\Windows\Persona_Header_TEMPLATE(2).png --------- 244907   
  29.11.2010 18:40     C:\Windows\ulead32.ini --------- 206   
  20.11.2010 15:25     C:\Windows\splwow64.exe --------- 67072   
  20.11.2010 15:24     C:\Windows\bfsvc.exe --------- 71168   
  20.11.2010 14:21     C:\Windows\twain_32.dll --------- 51200   
  08.11.2010 14:51     C:\Windows\gdrv.sys --------- 23080   
  11.10.2010 22:00     C:\Windows\videodeLuxe.INI --------- 52   
  09.09.2010 03:41     C:\Windows\iun6002.exe --------- 737280   
  29.07.2010 19:26     C:\Windows\nsreg.dat --------- 0   
  23.06.2010 19:09     C:\Windows\LDPINST.LOG --------- 9359   
  23.06.2010 19:09     C:\Windows\LkmdfCoInst.log --------- 277   
  28.04.2010 18:45     C:\Windows\RtlExUpd.dll --------- 1251872   
  25.04.2010 15:19     C:\Windows\Bimmel&Bommel.LOG --------- 1847   
  04.04.2010 14:44     C:\Windows\ODBC.INI --------- 400   
  02.03.2010 22:57     C:\Windows\atiogl.xml --------- 20692   
  16.02.2010 01:50     C:\Windows\msxml4-KB973688-enu.LOG --------- 283870   
  16.02.2010 01:50     C:\Windows\msxml4-KB954430-enu.LOG --------- 288124   
  15.02.2010 00:54     C:\Windows\magix.ini --------- 88   
  18.01.2010 22:58     C:\Windows\ativpsrm.bin --------- 0   
  18.01.2010 22:50     C:\Windows\GSetup.ini --------- 10   
  18.01.2010 22:44     C:\Windows\DIFxAPI.dll --------- 525792   
  18.01.2010 22:27     C:\Windows\DtcInstall.log --------- 1774   
  18.01.2010 22:27     C:\Windows\TSSysprep.log --------- 1313   
  13.08.2009 16:28     C:\Windows\emMON.exe --------- 80896   
  14.07.2009 06:54     C:\Windows\WindowsShell.Manifest --------- 749   
  14.07.2009 06:51     C:\Windows\setuperr.log --------- 0   
  14.07.2009 03:39     C:\Windows\write.exe --------- 10240   
  14.07.2009 03:39     C:\Windows\regedit.exe --------- 427008   
  14.07.2009 03:39     C:\Windows\notepad.exe --------- 193536   
  14.07.2009 03:39     C:\Windows\HelpPane.exe --------- 733696   
  14.07.2009 03:39     C:\Windows\hh.exe --------- 16896   
  14.07.2009 03:39     C:\Windows\fveupdate.exe --------- 15360   
  14.07.2009 03:14     C:\Windows\winhlp32.exe --------- 9728   
  14.07.2009 03:14     C:\Windows\twunk_32.exe --------- 31232   
  14.07.2009 01:06     C:\Windows\mib.bin --------- 43131   
  10.06.2009 23:41     C:\Windows\twunk_16.exe --------- 49680   
  10.06.2009 23:41     C:\Windows\twain.dll --------- 94784   
  10.06.2009 23:08     C:\Windows\system.ini --------- 219   
  10.06.2009 22:52     C:\Windows\WMSysPr9.prx --------- 316640   
  10.06.2009 22:36     C:\Windows\msdfmap.ini --------- 1405   
  10.06.2009 22:31     C:\Windows\Starter.xml --------- 48201   
  10.06.2009 22:30     C:\Windows\Professional.xml --------- 53551   
  14.11.2007 09:18     C:\Windows\USetup.iss --------- 553   
  21.06.2007 08:34     C:\Windows\GSetup.exe --------- 203328   
  09.12.2005 15:35     C:\Windows\Instexec.exe --------- 245824   
  13.08.2004 13:33     C:\Windows\mgxoschk.ini --------- 1208   
  08.12.2000 22:59     C:\Windows\UnGins.exe --------- 122880   
  29.10.1998 16:45     C:\Windows\IsUninst.exe --------- 306688   
  21.10.1998 19:43     C:\Windows\IsUn0407.exe --------- 328704   
----------------------------------------

 
C:\Windows\System

 06.10.2002 19:37      C:\Windows\System\zlib.dll --------- 53760 
 14.08.2002 12:25      C:\Windows\System\CORE.DLL --------- 499712 
----------------------------------------

 
C:\Windows\System32

 02.06.2011 11:55     C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 --------- 14640  
 02.06.2011 11:55     C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 --------- 14640  
 02.06.2011 11:49     C:\Windows\system32\config --------- 40960  
 02.06.2011 00:09     C:\Windows\system32\drivers --------- 81920  
 01.06.2011 12:41     C:\Windows\system32\wbem --------- 65536  
 01.06.2011 12:38     C:\Windows\system32\catroot2 --------- 32768  
 01.06.2011 12:38     C:\Windows\system32\Tasks --------- 12288  
 01.06.2011 12:38     C:\Windows\system32\DriverStore --------- 4096  
 25.05.2011 08:49     C:\Windows\system32\catroot --------- 4096  
 15.05.2011 19:32     C:\Windows\system32\perfh009.dat --------- 618714  
 15.05.2011 19:32     C:\Windows\system32\perfc009.dat --------- 107034  
 15.05.2011 19:32     C:\Windows\system32\perfh007.dat --------- 657438  
 15.05.2011 19:32     C:\Windows\system32\perfc007.dat --------- 130810  
 15.05.2011 19:32     C:\Windows\system32\PerfStringBackup.INI --------- 1507106  
 11.05.2011 01:21     C:\Windows\system32\MRT.exe --------- 44548040  
 03.05.2011 17:45     C:\Windows\system32\FNTCACHE.DAT --------- 421832  
 30.04.2011 01:07     C:\Windows\system32\da-DK --------- 0  
 30.04.2011 01:07     C:\Windows\system32\de-DE --------- 327680  
 30.04.2011 01:07     C:\Windows\system32\oobe --------- 4096  
 30.04.2011 01:07     C:\Windows\system32\migration --------- 0  
 30.04.2011 01:07     C:\Windows\system32\AdvancedInstallers --------- 0  
 30.04.2011 01:07     C:\Windows\system32\Setup --------- 0  
 30.04.2011 01:07     C:\Windows\system32\cs-CZ --------- 0  
 30.04.2011 01:07     C:\Windows\system32\manifeststore --------- 0  
 30.04.2011 01:07     C:\Windows\system32\es-ES --------- 0  
 30.04.2011 01:07     C:\Windows\system32\sppui --------- 0  
 30.04.2011 01:07     C:\Windows\system32\migwiz --------- 4096  
 30.04.2011 01:07     C:\Windows\system32\Dism --------- 0  
 30.04.2011 01:06     C:\Windows\system32\Boot --------- 0  
 29.04.2011 23:52     C:\Windows\system32\msclmd.dll --------- 175616  
 29.04.2011 23:45     C:\Windows\system32\SPReview --------- 0  
 29.04.2011 23:43     C:\Windows\system32\EventProviders --------- 4096  
 09.04.2011 09:02     C:\Windows\system32\ntoskrnl.exe --------- 5562240  
 09.04.2011 08:58     C:\Windows\system32\poqexec.exe --------- 142336  
 12.03.2011 14:08     C:\Windows\system32\XpsPrint.dll --------- 1465344  
 11.03.2011 08:34     C:\Windows\system32\mfc42u.dll --------- 1359872  
 11.03.2011 08:34     C:\Windows\system32\mfc42.dll --------- 1395712  
 11.03.2011 08:33     C:\Windows\system32\esent.dll --------- 2565632  
 11.03.2011 08:30     C:\Windows\system32\fsutil.exe --------- 96768  
 08.03.2011 08:29     C:\Windows\system32\inetcomm.dll --------- 976896  
 07.03.2011 08:31     C:\Windows\system32\wininet.dll --------- 1188864  
 07.03.2011 08:31     C:\Windows\system32\urlmon.dll --------- 1491456  
 07.03.2011 08:29     C:\Windows\system32\mshtml.dll --------- 8995328  
 07.03.2011 08:29     C:\Windows\system32\jsproxy.dll --------- 64512  
 07.03.2011 08:28     C:\Windows\system32\ieui.dll --------- 247808  
 07.03.2011 08:28     C:\Windows\system32\ieframe.dll --------- 12260352  
 07.03.2011 06:24     C:\Windows\system32\mshtml.tlb --------- 1638912  
 03.03.2011 08:24     C:\Windows\system32\dnsrslvr.dll --------- 183296  
 03.03.2011 08:24     C:\Windows\system32\dnsapi.dll --------- 357888  
 03.03.2011 08:21     C:\Windows\system32\dnscacheugc.exe --------- 30208  
 03.03.2011 05:52     C:\Windows\system32\win32k.sys --------- 3135488  
 24.02.2011 08:15     C:\Windows\system32\XpsGdiConverter.dll --------- 476160  
 19.02.2011 14:05     C:\Windows\system32\FntCache.dll --------- 1139200  
 19.02.2011 14:04     C:\Windows\system32\DWrite.dll --------- 1544192  
 19.02.2011 14:04     C:\Windows\system32\d2d1.dll --------- 902656  
 19.02.2011 14:03     C:\Windows\system32\atmlib.dll --------- 46080  
 19.02.2011 11:00     C:\Windows\system32\atmfd.dll --------- 367616  
 18.02.2011 12:56     C:\Windows\system32\vbscript.dll --------- 613376  
 18.02.2011 12:54     C:\Windows\system32\jscript.dll --------- 919040  
 18.02.2011 12:51     C:\Windows\system32\prevhost.exe --------- 31232  
 12.02.2011 13:34     C:\Windows\system32\FXSCOVER.exe --------- 267776  
 05.02.2011 19:10     C:\Windows\system32\winload.efi --------- 642944  
 05.02.2011 19:10     C:\Windows\system32\kdusb.dll --------- 20352  
 05.02.2011 19:10     C:\Windows\system32\kd1394.dll --------- 19328  
 05.02.2011 19:10     C:\Windows\system32\kdcom.dll --------- 17792  
 05.02.2011 19:06     C:\Windows\system32\winresume.exe --------- 518672  
 05.02.2011 19:06     C:\Windows\system32\winload.exe --------- 605552  
 05.02.2011 19:06     C:\Windows\system32\winresume.efi --------- 566208  
 05.02.2011 00:49     C:\Windows\system32\wfp --------- 0  
 02.02.2011 18:11     C:\Windows\system32\MpSigStub.exe --------- 270720  
 14.01.2011 17:23     C:\Windows\system32\appmgmt --------- 0  
 14.01.2011 16:40     C:\Windows\system32\DRVSTORE --------- 0  
 07.01.2011 15:02     C:\Windows\system32\mfc100chs.dll --------- 36176  
 07.01.2011 15:02     C:\Windows\system32\mfc100cht.dll --------- 36176  
 07.01.2011 15:02     C:\Windows\system32\mfc100deu.dll --------- 64336  
 07.01.2011 15:02     C:\Windows\system32\mfc100enu.dll --------- 55120  
 07.01.2011 15:02     C:\Windows\system32\mfc100esn.dll --------- 63824  
 07.01.2011 15:02     C:\Windows\system32\mfc100fra.dll --------- 64336  
 07.01.2011 15:02     C:\Windows\system32\mfc100.dll --------- 5493576  
 07.01.2011 15:02     C:\Windows\system32\mfc100jpn.dll --------- 43856  
 07.01.2011 15:02     C:\Windows\system32\mfc100kor.dll --------- 43344  
 07.01.2011 15:02     C:\Windows\system32\mfc100rus.dll --------- 60752  
 07.01.2011 15:02     C:\Windows\system32\mfc100u.dll --------- 5523280  
 07.01.2011 15:02     C:\Windows\system32\mfcm100u.dll --------- 91472  
 07.01.2011 15:02     C:\Windows\system32\msvcp100.dll --------- 608080  
 07.01.2011 15:02     C:\Windows\system32\msvcr100.dll --------- 827728  
 07.01.2011 15:02     C:\Windows\system32\mfc100ita.dll --------- 62288  
 07.01.2011 15:02     C:\Windows\system32\vcomp100.dll --------- 57168  
 07.01.2011 15:02     C:\Windows\system32\mfcm100.dll --------- 91472  
 07.01.2011 15:02     C:\Windows\system32\atl100.dll --------- 158536  
 05.01.2011 23:23     C:\Windows\system32\FsExService64.exe --------- 25960  
 25.12.2010 03:32     C:\Windows\system32\NDF --------- 0  
 23.12.2010 12:42     C:\Windows\system32\sbe.dll --------- 1118720  
 23.12.2010 12:42     C:\Windows\system32\EncDec.dll --------- 723968  
 23.12.2010 12:42     C:\Windows\system32\CPFilters.dll --------- 961024  
 23.12.2010 12:36     C:\Windows\system32\mpg2splt.ax --------- 259072  
 17.12.2010 13:42     C:\Windows\system32\winsrv.dll --------- 214016  
 17.12.2010 13:40     C:\Windows\system32\kerberos.dll --------- 715776  
 20.11.2010 15:44     C:\Windows\system32\Narrator.exe --------- 1077248  
 20.11.2010 15:44     C:\Windows\system32\NAPHLPR.DLL --------- 133632  
----------------------------------------

 
C:\Windows\Prefetch

 02.06.2011 11:56     C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-AA7A1FDD.pf --------- 79944  
 02.06.2011 11:56     C:\Windows\Prefetch\CONHOST.EXE-3218E401.pf --------- 19208  
 02.06.2011 11:52     C:\Windows\Prefetch\DLLHOST.EXE-71214090.pf --------- 28444  
 02.06.2011 11:52     C:\Windows\Prefetch\WINRAR.EXE-6F42D4E7.pf --------- 65406  
 02.06.2011 11:50     C:\Windows\Prefetch\DLLHOST.EXE-FF915DF9.pf --------- 108282  
 02.06.2011 11:50     C:\Windows\Prefetch\SPPSVC.EXE-CBE91656.pf --------- 44546  
 02.06.2011 11:50     C:\Windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf --------- 158942  
 02.06.2011 11:50     C:\Windows\Prefetch\AUDIODG.EXE-D0D776AC.pf --------- 108612  
 02.06.2011 11:47     C:\Windows\Prefetch\AVP.EXE-F749A601.pf --------- 312044  
 02.06.2011 11:45     C:\Windows\Prefetch\TASKENG.EXE-5BAF290C.pf --------- 125710  
 02.06.2011 11:45     C:\Windows\Prefetch\DLLHOST.EXE-FA51C347.pf --------- 35092  
 02.06.2011 11:44     C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-E5D641DD.pf --------- 51082  
 02.06.2011 11:43     C:\Windows\Prefetch\OUTLOOK.EXE-5EF11CAE.pf --------- 316708  
 02.06.2011 11:43     C:\Windows\Prefetch\FIREFOX.EXE-FBBD985A.pf --------- 213780  
 02.06.2011 11:42     C:\Windows\Prefetch\BUBBLES.SCR-8E3A7BBC.pf --------- 100410  
 02.06.2011 11:41     C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-AFAD3EF9.pf --------- 175200  
 02.06.2011 11:41     C:\Windows\Prefetch\GOOGLEUPDATE.EXE-648FB068.pf --------- 42020  
 02.06.2011 11:39     C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf --------- 304430  
 02.06.2011 11:38     C:\Windows\Prefetch\ReadyBoot --------- 4096  
 02.06.2011 11:38     C:\Windows\Prefetch\WUAUCLT.EXE-830BCC14.pf --------- 26544  
 02.06.2011 11:35     C:\Windows\Prefetch\NASVC.EXE-F15DC70A.pf --------- 27446  
 02.06.2011 11:35     C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-4DC4C4A1.pf --------- 24756  
 02.06.2011 11:34     C:\Windows\Prefetch\WMIADAP.EXE-369DF1CD.pf --------- 21108  
 02.06.2011 11:34     C:\Windows\Prefetch\MSCORSVW.EXE-98F0699A.pf --------- 69932  
 02.06.2011 11:34     C:\Windows\Prefetch\MSCORSVW.EXE-FAA88858.pf --------- 42184  
 02.06.2011 11:34     C:\Windows\Prefetch\WMI64.EXE-D9920F1F.pf --------- 22998  
 02.06.2011 11:33     C:\Windows\Prefetch\DLLHOST.EXE-53B78AD0.pf --------- 109968  
 02.06.2011 11:33     C:\Windows\Prefetch\WMPSHARE.EXE-37B6A86F.pf --------- 94742  
 02.06.2011 11:33     C:\Windows\Prefetch\SVCHOST.EXE-DB4C36D7.pf --------- 49158  
 02.06.2011 11:33     C:\Windows\Prefetch\WMPSHARE.EXE-73C9F24C.pf --------- 37952  
 02.06.2011 11:33     C:\Windows\Prefetch\WMPNETWK.EXE-BD0344CA.pf --------- 108720  
 02.06.2011 11:33     C:\Windows\Prefetch\SVCHOST.EXE-4D8DA32A.pf --------- 23612  
 02.06.2011 11:33     C:\Windows\Prefetch\WUDFHOST.EXE-81420B07.pf --------- 22846  
 02.06.2011 11:32     C:\Windows\Prefetch\WMPNSCFG.EXE-DF1DD51A.pf --------- 38176  
 02.06.2011 11:32     C:\Windows\Prefetch\SVCHOST.EXE-18D06B2E.pf --------- 20714  
 02.06.2011 11:32     C:\Windows\Prefetch\SEARCHINDEXER.EXE-77D27BAC.pf --------- 202028  
 02.06.2011 11:32     C:\Windows\Prefetch\TASKHOST.EXE-437C05A8.pf --------- 32362  
 02.06.2011 11:32     C:\Windows\Prefetch\LULNCHR.EXE-55D40ECA.pf --------- 65776  
 02.06.2011 11:32     C:\Windows\Prefetch\LOGITECHUPDATE.EXE-2CD78E2C.pf --------- 31198  
 02.06.2011 11:32     C:\Windows\Prefetch\LULNCHR.EXE-36CDD24F.pf --------- 49902  
 02.06.2011 11:32     C:\Windows\Prefetch\LOGITECHUPDATE.EXE-2D5AFC89.pf --------- 42112  
 02.06.2011 11:32     C:\Windows\Prefetch\LULNCHR.EXE-D8AA315F.pf --------- 108920  
 02.06.2011 01:21     C:\Windows\Prefetch\AgGlFaultHistory.db --------- 0  
 02.06.2011 01:21     C:\Windows\Prefetch\AgGlGlobalHistory.db --------- 4303983  
 02.06.2011 01:21     C:\Windows\Prefetch\AgRobust.db --------- 332336  
 02.06.2011 01:21     C:\Windows\Prefetch\PfSvPerfStats.bin --------- 584  
 02.06.2011 01:21     C:\Windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf --------- 80092  
 02.06.2011 01:14     C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-78000DE6.pf --------- 169814  
 02.06.2011 01:13     C:\Windows\Prefetch\ESEREG.EXE-96E5375E.pf --------- 69468  
 02.06.2011 00:51     C:\Windows\Prefetch\PSPAD.EXE-32FBACDF.pf --------- 141142  
 02.06.2011 00:40     C:\Windows\Prefetch\CCC.EXE-000FEDE2.pf --------- 151568  
 02.06.2011 00:40     C:\Windows\Prefetch\KHALMNPR.EXE-B598A5C1.pf --------- 37940  
 02.06.2011 00:40     C:\Windows\Prefetch\LDCONFIG.EXE-32BA5CED.pf --------- 15272  
 02.06.2011 00:40     C:\Windows\Prefetch\CLISTART.EXE-15972E63.pf --------- 21062  
 02.06.2011 00:40     C:\Windows\Prefetch\ICQ.EXE-2418C290.pf --------- 359494  
 02.06.2011 00:40     C:\Windows\Prefetch\LVCOMSX.EXE-705F021B.pf --------- 21362  
 02.06.2011 00:40     C:\Windows\Prefetch\G35.EXE-23915AA1.pf --------- 38616  
 02.06.2011 00:40     C:\Windows\Prefetch\RUNONCE.EXE-21038459.pf --------- 47860  
 02.06.2011 00:40     C:\Windows\Prefetch\ISUSPM.EXE-805F23E9.pf --------- 44294  
 02.06.2011 00:40     C:\Windows\Prefetch\SETPOINT.EXE-7EEABF0C.pf --------- 44150  
 02.06.2011 00:40     C:\Windows\Prefetch\LGDCORE.EXE-4D598107.pf --------- 36448  
 02.06.2011 00:40     C:\Windows\Prefetch\LCDMON.EXE-9E98354C.pf --------- 32804  
 02.06.2011 00:40     C:\Windows\Prefetch\LGDEVAGT.EXE-389DD0CF.pf --------- 36504  
 02.06.2011 00:39     C:\Windows\Prefetch\RAVCPL64.EXE-61B16716.pf --------- 37282  
 02.06.2011 00:39     C:\Windows\Prefetch\SKYTEL.EXE-8712BF30.pf --------- 27210  
 02.06.2011 00:37     C:\Windows\Prefetch\REGEDIT.EXE-32FE412B.pf --------- 21088  
 02.06.2011 00:32     C:\Windows\Prefetch\AgGlFgAppHistory.db --------- 2420700  
 02.06.2011 00:26     C:\Windows\Prefetch\SVCHOST.EXE-93CEEE07.pf --------- 348024  
 02.06.2011 00:09     C:\Windows\Prefetch\REGSVR32.EXE-A65A209D.pf --------- 31236  
 02.06.2011 00:09     C:\Windows\Prefetch\REGSVR32.EXE-55A4EE79.pf --------- 22958  
 02.06.2011 00:02     C:\Windows\Prefetch\MSFEEDSSYNC.EXE-1F01ED17.pf --------- 104428  
 01.06.2011 23:58     C:\Windows\Prefetch\CALC.EXE-AC08706A.pf --------- 36118  
 01.06.2011 13:30     C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-160469114-3446120962-2742097914-1001.db --------- 1241110  
 01.06.2011 13:30     C:\Windows\Prefetch\AgGlUAD_S-1-5-21-160469114-3446120962-2742097914-1001.db --------- 2360493  
 01.06.2011 12:43     C:\Windows\Prefetch\MOBSYNC.EXE-D8BC6ED2.pf --------- 49212  
 01.06.2011 12:43     C:\Windows\Prefetch\MOM.EXE-8CC21E02.pf --------- 61550  
 01.06.2011 12:42     C:\Windows\Prefetch\ATICUSTOMERCARE.EXE-BD9AD024.pf --------- 20234  
 01.06.2011 12:42     C:\Windows\Prefetch\SVCHOST.EXE-8FD92526.pf --------- 22444  
 01.06.2011 12:42     C:\Windows\Prefetch\VSSVC.EXE-04D079CC.pf --------- 44220  
 01.06.2011 11:28     C:\Windows\Prefetch\TASKMGR.EXE-72398DC0.pf --------- 59316  
 01.06.2011 11:20     C:\Windows\Prefetch\UAAIHFWFHQ.EXE-074D5864.pf --------- 23542  
 01.06.2011 11:20     C:\Windows\Prefetch\0.38087114455728854.EXE-75B41B29.pf --------- 38440  
 01.06.2011 11:20     C:\Windows\Prefetch\JAVA.EXE-E3C0BFD0.pf --------- 164230  
 01.06.2011 11:20     C:\Windows\Prefetch\JP2LAUNCHER.EXE-713231C9.pf --------- 21476  
 01.06.2011 10:57     C:\Windows\Prefetch\SETUP_WM.EXE-0E4CB6C8.pf --------- 36734  
 01.06.2011 10:56     C:\Windows\Prefetch\AGENT.EXE-083208F7.pf --------- 34838  
 01.06.2011 10:56     C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf --------- 4031150  
 31.05.2011 22:34     C:\Windows\Prefetch\AGENTRANSACK.EXE-6E7B9F66.pf --------- 33734  
 31.05.2011 21:22     C:\Windows\Prefetch\Layout.ini --------- 1541638  
 31.05.2011 20:46     C:\Windows\Prefetch\WERFAULT.EXE-0897AE09.pf --------- 34850  
 31.05.2011 20:34     C:\Windows\Prefetch\OIS.EXE-C2975C46.pf --------- 72932  
 31.05.2011 20:10     C:\Windows\Prefetch\MSIEXEC.EXE-B5AFA339.pf --------- 69658  
 31.05.2011 20:10     C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B0E2BA8C.pf --------- 96466  
 31.05.2011 20:10     C:\Windows\Prefetch\GOOGLEUPDATESETUP.EXE-B2F32537.pf --------- 28784  
 31.05.2011 20:02     C:\Windows\Prefetch\TS3CLIENT_WIN64.EXE-DE5E204A.pf --------- 162990  
 31.05.2011 18:58     C:\Windows\Prefetch\RUNDLL32.EXE-125D4518.pf --------- 464458  
 31.05.2011 17:57     C:\Windows\Prefetch\DLLHOST.EXE-896DB558.pf --------- 23212  
 31.05.2011 15:50     C:\Windows\Prefetch\PHOTOSHOP.EXE-61D79C33.pf --------- 265452  
 31.05.2011 14:59     C:\Windows\Prefetch\FILEZILLA.EXE-0A3877B9.pf --------- 135360  
 31.05.2011 14:56     C:\Windows\Prefetch\WERFAULT.EXE-B7E27BE5.pf --------- 17972  
 31.05.2011 14:52     C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-31D604ED.pf --------- 25728  
 31.05.2011 09:48     C:\Windows\Prefetch\MPAS-D_BD1.EXE-B82677C3.pf --------- 60044  
 31.05.2011 09:48     C:\Windows\Prefetch\MPMINISIGSTUB.EXE-A8871E34.pf --------- 6880  
 31.05.2011 09:48     C:\Windows\Prefetch\MPSIGSTUB.EXE-7C60A359.pf --------- 32422  
 31.05.2011 09:43     C:\Windows\Prefetch\TACTICALOPS.EXE-5A760B31.pf --------- 202366  
 31.05.2011 09:43     C:\Windows\Prefetch\RUNDLL32.EXE-E1160A93.pf --------- 32924  
 30.05.2011 22:00     C:\Windows\Prefetch\OIS.EXE-9A00A52B.pf --------- 83432  
 30.05.2011 21:47     C:\Windows\Prefetch\WMPLAYER.EXE-61D40ED1.pf --------- 82164  
 30.05.2011 20:18     C:\Windows\Prefetch\PHOTOSHOPCS4PORTABLE.EXE-5B57F73F.pf --------- 90336  
 30.05.2011 20:16     C:\Windows\Prefetch\AgCx_SC1.db --------- 816465  
 30.05.2011 20:15     C:\Windows\Prefetch\DLLHOST.EXE-72B00420.pf --------- 22574  
 30.05.2011 20:15     C:\Windows\Prefetch\WMPSIDESHOWGADGET.EXE-F596B537.pf --------- 50154  
 30.05.2011 20:15     C:\Windows\Prefetch\UTILMAN.EXE-6DAF08F5.pf --------- 50596  
 30.05.2011 20:15     C:\Windows\Prefetch\AgCx_SC1.db.trx --------- 149308  
 30.05.2011 20:15     C:\Windows\Prefetch\RUNDLL32.EXE-4362343E.pf --------- 22930  
 30.05.2011 20:15     C:\Windows\Prefetch\RUNDLL32.EXE-F2AD021A.pf --------- 13066  
 30.05.2011 17:49     C:\Windows\Prefetch\RUNDLL32.EXE-AFD98684.pf --------- 12890  
 30.05.2011 17:30     C:\Windows\Prefetch\LPREMOVE.EXE-F992050D.pf --------- 2148  
 30.05.2011 11:34     C:\Windows\Prefetch\PING.EXE-B29F6629.pf --------- 18278  
 30.05.2011 11:34     C:\Windows\Prefetch\W32TM.EXE-5D2265F4.pf --------- 19134  
 30.05.2011 11:34     C:\Windows\Prefetch\CSC.EXE-6F2C7122.pf --------- 52858  
 30.05.2011 11:34     C:\Windows\Prefetch\CVTRES.EXE-6280F3A8.pf --------- 12454  
 30.05.2011 11:34     C:\Windows\Prefetch\SDIAGNHOST.EXE-67CD1457.pf --------- 150876  
 29.05.2011 14:26     C:\Windows\Prefetch\AITAGENT.EXE-AB818914.pf --------- 1190  
 29.05.2011 13:56     C:\Windows\Prefetch\AUTOSHUTDOWN.EXE-F031F636.pf --------- 28538  
 29.05.2011 11:02     C:\Windows\Prefetch\SC.EXE-BC6DAF49.pf --------- 562  
 29.05.2011 00:12     C:\Windows\Prefetch\SVCHOST.EXE-8DA0BAAD.pf --------- 18436  
 29.05.2011 00:12     C:\Windows\Prefetch\DEFRAG.EXE-738093E8.pf --------- 67154  
 28.05.2011 13:03     C:\Windows\Prefetch\RUNDLL32.EXE-FE033984.pf --------- 31530  
 27.05.2011 13:23     C:\Windows\Prefetch\RUNDLL32.EXE-62053597.pf --------- 47348  
 27.05.2011 13:22     C:\Windows\Prefetch\SPLWOW64.EXE-FBA11EAB.pf --------- 27520  
 27.05.2011 13:22     C:\Windows\Prefetch\CNMSE8Z.EXE-FED3F5C8.pf --------- 11876  
 27.05.2011 11:24     C:\Windows\Prefetch\ACRORD32.EXE-1D063164.pf --------- 178804  
 27.05.2011 11:07     C:\Windows\Prefetch\MPMINISIGSTUB.EXE-59D3F361.pf --------- 6888  
 26.05.2011 09:11     C:\Windows\Prefetch\RUNDLL32.EXE-1022D35C.pf --------- 36408  
 26.05.2011 09:07     C:\Windows\Prefetch\MSIEXEC.EXE-F3744DFD.pf --------- 34504  
 26.05.2011 09:07     C:\Windows\Prefetch\GOOGLEEARTH.EXE-11A6A720.pf --------- 26262  
 26.05.2011 09:06     C:\Windows\Prefetch\GOOGLEEARTH-WIN-BUNDLE-6.0.3.-52DF15C0.pf --------- 63956  
 25.05.2011 22:13     C:\Windows\Prefetch\RUNDLL32.EXE-6D3B8202.pf --------- 31852  
 25.05.2011 15:57     C:\Windows\Prefetch\RUNDLL32.EXE-223BCB75.pf --------- 2160  
 12.05.2011 09:15     C:\Windows\Prefetch\AgCx_SC4.db --------- 401313  
 14.03.2011 12:52     C:\Windows\Prefetch\AgCx_S1_S-1-5-21-160469114-3446120962-2742097914-1001.snp.db --------- 3461327  
 07.07.2010 16:12     C:\Windows\Prefetch\AgCx_SC3_DA1DBA53ECDF8D3F.db --------- 642236  
 20.06.2010 14:15     C:\Windows\Prefetch\AgCx_SC2.db --------- 801935  
 18.01.2010 22:23     C:\Windows\Prefetch\AgAppLaunch.db --------- 334168  
----------------------------------------

 
C:\Windows\Tasks

 02.06.2011 11:30     C:\Windows\Tasks\SA.DAT --------- 6  
 01.06.2011 10:55     C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job --------- 1114  
 01.06.2011 10:55     C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job --------- 1110  
 25.03.2011 12:58     C:\Windows\Tasks\SCHEDLGU.TXT --------- 32640  
----------------------------------------

 
C:\Windows\Temp

 02.06.2011 11:48     C:\Windows\Temp\MpCmdRun.log --------- 302656  
 02.06.2011 11:30     C:\Windows\Temp\logishrd --------- 8192  
 31.05.2011 09:48     C:\Windows\Temp\MpSigStub.log --------- 479000  
 26.05.2011 09:08     C:\Windows\Temp\is9943.tmp --------- 0  
 26.05.2011 09:07     C:\Windows\Temp\is4327.tmp --------- 0  
 26.05.2011 09:07     C:\Windows\Temp\._msige60 --------- 24576  
 17.05.2011 16:49     C:\Windows\Temp\klsF868.tmp --------- 96172  
 17.05.2011 16:49     C:\Windows\Temp\kls6BD9.tmp --------- 96172  
 10.05.2011 19:29     C:\Windows\Temp\MPTelemetrySubmit --------- 0  
 01.05.2011 08:46     C:\Windows\Temp\TMP000000DFFD14C4B076D5B424 --------- 524288  
 29.04.2011 00:13     C:\Windows\Temp\Microsoft Visual C++ 2010  x64 Redistributable Setup_20110429_001308489.html --------- 99754  
 29.04.2011 00:13     C:\Windows\Temp\Microsoft Visual C++ 2010  x64 Redistributable Setup_20110429_001308489-Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319-MSP0.txt --------- 308002  
 29.04.2011 00:13     C:\Windows\Temp\Microsoft Visual C++ 2010  x64 Redistributable Setup_20110429_001308489-MSI_vc_red.msi.txt --------- 344230  
 29.04.2011 00:13     C:\Windows\Temp\Microsoft Visual C++ 2010  x64 Redistributable Setup_10.0.30319 --------- 0  
 29.04.2011 00:13     C:\Windows\Temp\dd_vcredistUI2B09.txt --------- 13794  
 29.04.2011 00:13     C:\Windows\Temp\dd_vcredistMSI2B09.txt --------- 430658  
 29.04.2011 00:12     C:\Windows\Temp\dd_vcredistUI27AA.txt --------- 13762  
 29.04.2011 00:12     C:\Windows\Temp\dd_vcredistMSI27AA.txt --------- 417566  
 22.04.2011 13:52     C:\Windows\Temp\Silverlight0.log --------- 2272  
 22.04.2011 13:52     C:\Windows\Temp\SilverlightMSI.log --------- 2654466  
 22.04.2011 12:36     C:\Windows\Temp\klsB11E.tmp --------- 95848  
 22.04.2011 12:36     C:\Windows\Temp\klsB697.tmp --------- 95848  
 22.04.2011 12:36     C:\Windows\Temp\kls424B.tmp --------- 95848  
 15.04.2011 00:54     C:\Windows\Temp\KB2446708_20110415_004930537.html --------- 54968  
 15.04.2011 00:54     C:\Windows\Temp\KB2446708_20110415_004930537-Microsoft .NET Framework 4 Client Profile-MSP0.txt --------- 9180674  
 15.04.2011 00:49     C:\Windows\Temp\KB2446708_10.0.30319 --------- 0  
 15.04.2011 00:49     C:\Windows\Temp\dd_clwireg.txt --------- 5310  
 26.03.2011 03:36     C:\Windows\Temp\TMP00000094E0848BAEB86D3E4E --------- 524288  
 11.03.2011 01:23     C:\Windows\Temp\TMP000000EE496C7A4F2B668305 --------- 524288  
 02.03.2011 01:28     C:\Windows\Temp\TMP00000083461D3A64AC223053 --------- 524288  
 17.02.2011 12:39     C:\Windows\Temp\kls4E0C.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\kls31E6.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\klsB7AD.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\klsCB4C.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\kls663B.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\klsA1AC.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\klsCE0A.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\kls32DA.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\klsD14.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\klsFB4B.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\kls480E.tmp --------- 92725  
 17.02.2011 12:39     C:\Windows\Temp\klsF265.tmp --------- 92725  
 16.02.2011 00:45     C:\Windows\Temp\kls7EDE.tmp --------- 92716  
 16.02.2011 00:45     C:\Windows\Temp\kls6A50.tmp --------- 92716  
 04.02.2011 00:56     C:\Windows\Temp\kls2F40.tmp --------- 92635  
 04.02.2011 00:56     C:\Windows\Temp\kls6B18.tmp --------- 92635  
 04.02.2011 00:56     C:\Windows\Temp\kls4EED.tmp --------- 92635  
 28.01.2011 01:52     C:\Windows\Temp\TMP0000009B47F23AF7B5389053 --------- 524288  
 27.01.2011 17:19     C:\Windows\Temp\klsF49C.tmp --------- 92626  
 26.01.2011 21:20     C:\Windows\Temp\kls4CE5.tmp --------- 92644  
 28.12.2010 19:23     C:\Windows\Temp\kls6EAE.tmp --------- 92518  
 28.12.2010 19:23     C:\Windows\Temp\kls577F.tmp --------- 92518  
 28.12.2010 19:23     C:\Windows\Temp\klsE054.tmp --------- 92518  
 28.12.2010 19:23     C:\Windows\Temp\klsC0FB.tmp --------- 92518  
 21.12.2010 17:04     C:\Windows\Temp\kls2D81.tmp --------- 92536  
 29.11.2010 17:31     C:\Windows\Temp\TMP00000073F2848D4AB69522C7 --------- 524288  
 27.11.2010 01:33     C:\Windows\Temp\TMP00000204F82BFF6BD6343353 --------- 524288  
 25.11.2010 23:30     C:\Windows\Temp\TMP000000EBA66AA8A4D7DB0F97 --------- 524288  
 24.11.2010 10:33     C:\Windows\Temp\WER8A8.tmp.WERInternalMetadata.xml --------- 3630  
 23.11.2010 23:58     C:\Windows\Temp\TMP0000011FCABCED51D621A7C5 --------- 524288  
 23.11.2010 00:06     C:\Windows\Temp\TMP000005A16BB0F277FD2612E0 --------- 524288  
 21.11.2010 00:09     C:\Windows\Temp\WERE274.tmp.WERInternalMetadata.xml --------- 3630  
 10.11.2010 01:16     C:\Windows\Temp\TMP000000C1427E30F4ED7EFCAC --------- 524288  
 08.11.2010 01:40     C:\Windows\Temp\TMP000001317817E306F31FC55F --------- 524288  
 31.10.2010 14:37     C:\Windows\Temp\TMP000000367A85CF19E1D7AB0D --------- 524288  
 30.10.2010 03:36     C:\Windows\Temp\TMP0000009669A33DCCF2AD8374 --------- 524288  
 29.10.2010 01:44     C:\Windows\Temp\TMP0000035CF75CEA7088CA0F7E --------- 524288  
 29.10.2010 01:44     C:\Windows\Temp\TMP0000035BBDA21C737065CDA0 --------- 524288  
 23.10.2010 02:20     C:\Windows\Temp\TMP00000052687E8045F945672F --------- 524288  
 15.10.2010 13:31     C:\Windows\Temp\fwtsqmfile00.sqm --------- 608  
 14.10.2010 00:57     C:\Windows\Temp\TMP0000008783863C19F98D3F77 --------- 524288  
 14.10.2010 00:55     C:\Windows\Temp\KB2160841_20101014_005411878.html --------- 55266  
 14.10.2010 00:55     C:\Windows\Temp\KB2160841_20101014_005411878-Microsoft .NET Framework 4 Client Profile-MSP0.txt --------- 4788192  
 14.10.2010 00:54     C:\Windows\Temp\KB2160841_10.0.30319 --------- 0  
 12.10.2010 02:50     C:\Windows\Temp\TMP00000646D46279B2F7979946 --------- 524288  
 11.10.2010 21:26     C:\Windows\Temp\mgxgroups --------- 0  
 11.10.2010 21:25     C:\Windows\Temp\_FbMsiLog.txt --------- 293588  
 11.10.2010 21:24     C:\Windows\Temp\mgxlicense --------- 0  
 11.10.2010 21:22     C:\Windows\Temp\mgxmbkgstd.bmp --------- 3148854  
 07.10.2010 01:25     C:\Windows\Temp\WERCADE.tmp.WERInternalMetadata.xml --------- 3630  
 28.09.2010 04:04     C:\Windows\Temp\TMP0000064FC8C17CAAEB97D9D0 --------- 524288  
 25.09.2010 08:05     C:\Windows\Temp\is7974.tmp --------- 0  
 25.09.2010 08:03     C:\Windows\Temp\isF18F.tmp --------- 0  
 25.09.2010 08:03     C:\Windows\Temp\._msige52 --------- 0  
 25.09.2010 03:31     C:\Windows\Temp\TMP000001F7347F2BFC01801CBD --------- 524288  
 21.09.2010 12:39     C:\Windows\Temp\GUR645D.tmp --------- 0  
 21.09.2010 12:39     C:\Windows\Temp\GUR6104.tmp --------- 0  
 19.09.2010 23:50     C:\Windows\Temp\TMP000001190B63F475C70B8D61 --------- 524288  
 16.09.2010 05:32     C:\Windows\Temp\TMP000005A03648EBEC98B41F90 --------- 524288  
 16.09.2010 00:14     C:\Windows\Temp\kls72AB.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\kls55D5.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\kls726E.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\klsA398.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\klsAB3.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\kls270D.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\kls2A0A.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\kls6EFE.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\klsD194.tmp --------- 91240  
 16.09.2010 00:14     C:\Windows\Temp\klsD09C.tmp --------- 91240  
 15.09.2010 23:42     C:\Windows\Temp\AVSETUP_4c913db6 --------- 0  
 01.09.2010 01:09     C:\Windows\Temp\WER7623.tmp.WERInternalMetadata.xml --------- 3630  
 30.08.2010 01:41     C:\Windows\Temp\TMP0000018DE0FEEC37E18ACA34 --------- 524288  
 29.08.2010 03:33     C:\Windows\Temp\TMP000005B88E7A432923C2BE9C --------- 524288  
 25.08.2010 13:38     C:\Windows\Temp\WERECFE.tmp.WERInternalMetadata.xml --------- 3630  
 20.08.2010 04:21     C:\Windows\Temp\TMP0000005254C8AD7A13224DE7 --------- 524288  
 20.08.2010 04:21     C:\Windows\Temp\TMP0000005177AA8C75CA124E53 --------- 524288  
 19.08.2010 13:37     C:\Windows\Temp\TMP00000026894EDA0D00DDC450 --------- 524288  
 12.08.2010 18:48     C:\Windows\Temp\GUR6354.tmp --------- 0  
 12.08.2010 18:48     C:\Windows\Temp\GUR6103.tmp --------- 0  
 08.08.2010 13:35     C:\Windows\Temp\TMP0000006BEFB6AA061D3A147F --------- 524288  
 07.08.2010 11:02     C:\Windows\Temp\fwtsqmfile19.sqm --------- 608  
 03.08.2010 02:11     C:\Windows\Temp\TMP00000102673ECCD18F69C147 --------- 524288  
 01.08.2010 23:40     C:\Windows\Temp\TMP0000005649951EEC53358755 --------- 524288  
 31.07.2010 09:38     C:\Windows\Temp\TMP000000EBD37AB77EAB49FC97 --------- 524288  
 31.07.2010 09:38     C:\Windows\Temp\fwtsqmfile18.sqm --------- 608  
 26.07.2010 22:53     C:\Windows\Temp\TMP0000005E1A1341BAC782250B --------- 524288  
 17.07.2010 13:34     C:\Windows\Temp\fwtsqmfile17.sqm --------- 608  
 14.07.2010 17:10     C:\Windows\Temp\WER7F33.tmp.WERInternalMetadata.xml --------- 3630  
 11.07.2010 19:16     C:\Windows\Temp\TMP0000009A5ED18C73611AB817 --------- 524288  
 09.07.2010 13:37     C:\Windows\Temp\fwtsqmfile16.sqm --------- 608  
 07.07.2010 05:38     C:\Windows\Temp\fwtsqmfile15.sqm --------- 608  
 01.07.2010 22:16     C:\Windows\Temp\TMP0000006065E5EF0CCBD63DAD --------- 524288  
 28.06.2010 17:23     C:\Windows\Temp\fwtsqmfile14.sqm --------- 608  
 27.06.2010 22:06     C:\Windows\Temp\fwtsqmfile13.sqm --------- 608  
 27.06.2010 00:07     C:\Windows\Temp\dd_dotNetFx40LP_Client_x86_x64de_decompression_log.txt --------- 2121  
 27.06.2010 00:07     C:\Windows\Temp\TMP000000EDA626F57592047064 --------- 524288  
 27.06.2010 00:07     C:\Windows\Temp\dd_dotNetFx40_Client_x86_x64_decompression_log.txt --------- 1980  
 27.06.2010 00:07     C:\Windows\Temp\Microsoft .NET Framework 4 Client Profile Setup_20100627_000528195.html --------- 577530  
 27.06.2010 00:07     C:\Windows\Temp\TFR11CA.tmp --------- 3048  
 27.06.2010 00:07     C:\Windows\Temp\dd_SetupUtility.txt --------- 660  
 27.06.2010 00:07     C:\Windows\Temp\Microsoft .NET Framework 4 Client Profile Setup_20100627_000528195-MSI_netfx_Core_x64.msi.txt --------- 7204720  
 27.06.2010 00:05     C:\Windows\Temp\Microsoft .NET Framework 4 Client Profile Setup_4.0.30319 --------- 0  
 26.06.2010 10:18     C:\Windows\Temp\fwtsqmfile12.sqm --------- 608  
 25.06.2010 02:51     C:\Windows\Temp\fwtsqmfile11.sqm --------- 608  
 23.06.2010 19:09     C:\Windows\Temp\lnonpnpsamp.log --------- 0  
 19.06.2010 19:01     C:\Windows\Temp\fwtsqmfile10.sqm --------- 608  
 18.06.2010 13:18     C:\Windows\Temp\fwtsqmfile09.sqm --------- 608  
 16.06.2010 23:40     C:\Windows\Temp\fwtsqmfile08.sqm --------- 608  
 16.06.2010 00:04     C:\Windows\Temp\fwtsqmfile07.sqm --------- 608  
 11.06.2010 23:35     C:\Windows\Temp\fwtsqmfile06.sqm --------- 608  
 11.06.2010 23:31     C:\Windows\Temp\WER8050.tmp.WERInternalMetadata.xml --------- 3630  
 11.06.2010 13:26     C:\Windows\Temp\fwtsqmfile05.sqm --------- 608  
 11.06.2010 12:14     C:\Windows\Temp\fwtsqmfile04.sqm --------- 608  
 10.06.2010 13:36     C:\Windows\Temp\fwtsqmfile03.sqm --------- 608  
 09.06.2010 13:35     C:\Windows\Temp\fwtsqmfile02.sqm --------- 608  
 08.06.2010 06:14     C:\Windows\Temp\fwtsqmfile01.sqm --------- 608  
 08.04.2010 01:21     C:\Windows\Temp\dd_ATL90SP1_KB973924UI10A0.txt --------- 13876  
 08.04.2010 01:21     C:\Windows\Temp\dd_ATL90SP1_KB973924MSI10A0.txt --------- 233258  
 07.04.2010 11:51     C:\Windows\Temp\chrome_frame_installer.log --------- 289  
 07.04.2010 11:51     C:\Windows\Temp\chrome_9271 --------- 0  
 06.04.2010 23:51     C:\Windows\Temp\chrome_32035 --------- 0  
 06.04.2010 18:51     C:\Windows\Temp\chrome_6026 --------- 0  
 05.04.2010 20:08     C:\Windows\Temp\SDIAG_8f4f98a4-39e2-4fe9-9b56-62f8a1949cbe --------- 0  
 05.04.2010 19:51     C:\Windows\Temp\chrome_30545 --------- 0  
 05.04.2010 14:51     C:\Windows\Temp\chrome_4536 --------- 0  
 04.04.2010 21:51     C:\Windows\Temp\chrome_1290 --------- 0  
 04.04.2010 16:51     C:\Windows\Temp\chrome_8042 --------- 0  
 04.04.2010 11:51     C:\Windows\Temp\chrome_14801 --------- 0  
 03.04.2010 22:51     C:\Windows\Temp\chrome_25812 --------- 0  
 03.04.2010 17:51     C:\Windows\Temp\chrome_32568 --------- 0  
 02.04.2010 00:51     C:\Windows\Temp\chrome_9317 --------- 0  
 01.04.2010 19:51     C:\Windows\Temp\chrome_16076 --------- 0  
 01.04.2010 14:51     C:\Windows\Temp\chrome_22890 --------- 0  
 01.04.2010 01:36     C:\Windows\Temp\dmiwu --------- 0  
 01.04.2010 01:28     C:\Windows\Temp\CamServr.log --------- 1266  
 01.04.2010 01:28     C:\Windows\Temp\CamWizrd.log --------- 40755  
 31.03.2010 17:14     C:\Windows\Temp\LgDSetup.txt --------- 10448  
 31.03.2010 17:13     C:\Windows\Temp\InstExec.log --------- 7414  
 21.03.2010 19:59     C:\Windows\Temp\FXSAPIDebugLogFile.txt --------- 0  
 21.03.2010 19:59     C:\Windows\Temp\FXSTIFFDebugLogFile.txt --------- 0  
 06.03.2010 14:56     C:\Windows\Temp\MSI1.tmp --------- 142848  
 06.03.2010 14:16     C:\Windows\Temp\Amd64 --------- 0  
 06.03.2010 14:16     C:\Windows\Temp\PRNXPX64 --------- 0  
 06.03.2010 14:16     C:\Windows\Temp\PRN2KXP --------- 0  
 18.01.2010 23:48     C:\Windows\Temp\History --------- 0  
 18.01.2010 23:48     C:\Windows\Temp\Cookies --------- 0  
 18.01.2010 23:48     C:\Windows\Temp\Temporary Internet Files --------- 0  
 18.08.2009 12:06     C:\Windows\Temp\mgxfonts.exe --------- 1056920  
 19.01.2009 10:54     C:\Windows\Temp\mgx3rdlogos.ini --------- 715  
 19.01.2009 10:53     C:\Windows\Temp\mgx3rdlogos.bmp --------- 332934  
----------------------------------------

fixxxxxi · 02.06.2011, 11:05

hjtscanlist.txt - TEIL 2

Code:

ATTFilter

 
C:\Users\fixxxxxi\AppData\Local\Temp

 02.06.2011 11:52     C:\Users\fixxxxxi\AppData\Local\Temp\hjtscanlist.zip --------- 2097  
 02.06.2011 11:43     C:\Users\fixxxxxi\AppData\Local\Temp\~DF256F35E4B326675D.TMP --------- 512  
 02.06.2011 11:43     C:\Users\fixxxxxi\AppData\Local\Temp\806868.od --------- 134  
 02.06.2011 11:43     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4FD4.tmp.cvr --------- 0  
 02.06.2011 11:31     C:\Users\fixxxxxi\AppData\Local\Temp\WPDNSE --------- 0  
 02.06.2011 00:41     C:\Users\fixxxxxi\AppData\Local\Temp\~DF3F8D3E0BF3582097.TMP --------- 147456  
 02.06.2011 00:10     C:\Users\fixxxxxi\AppData\Local\Temp\~DF9FEFFB18FB92198C.TMP --------- 147456  
 02.06.2011 00:09     C:\Users\fixxxxxi\AppData\Local\Temp\~DF3EB5DD5F91757332.TMP --------- 147456  
 01.06.2011 23:58     C:\Users\fixxxxxi\AppData\Local\Temp\142959.od --------- 134  
 01.06.2011 23:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2700.tmp --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\._msige52 --------- 24576  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\._msigeplugin52 --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\A2C5.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\44BE.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\5966.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\61B0.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\2F2B.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\43A5.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\CProgram Files (x86)Opera --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\d7a32cc5-a54a-42c1-a636-4c9fca65f582 --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\D39B4B65_3692_4292_833F_2C81D15845EB --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\e8aca7c4-fd83-43f6-a0e4-4344f9a50377 --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\D826.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\e3c74ee6-7482-4280-b9c3-f233b390296e --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\hotcorex64 --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\ICD1.tmp --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\KiesInstall --------- 20480  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\FA27.dir --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\nsh75F5.tmp --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\nsa540.tmp --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\nslEB79.tmp --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\nsbCD4F.tmp --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\nsj1B21.tmp --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\page-speed --------- 98304  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\nssA3C2.tmp --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\smtmp --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\teamspeak_temp_0 --------- 4096  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\swtlib-32 --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\UDK-7bf417c3-8d6b-48dd-aac5-ac08062ccf1c --------- 0  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\UpdateWizard_65468 --------- 49152  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\UpdateWizard_69920 --------- 24576  
 01.06.2011 12:38     C:\Users\fixxxxxi\AppData\Local\Temp\{FACFCA8D-5A0A-4DD2-AE68-B637F7AE4E51} --------- 4096  
 01.06.2011 11:32     C:\Users\fixxxxxi\AppData\Local\Temp\hsperfdata_fixxxxxi --------- 0  
 01.06.2011 11:20     C:\Users\fixxxxxi\AppData\Local\Temp\java_install_reg.log --------- 129265  
 01.06.2011 11:15     C:\Users\fixxxxxi\AppData\Local\Temp\1272156.od --------- 134  
 01.06.2011 11:15     C:\Users\fixxxxxi\AppData\Local\Temp\CVR695C.tmp.cvr --------- 0  
 01.06.2011 10:57     C:\Users\fixxxxxi\AppData\Local\Temp\wmsetup.log --------- 37668  
 31.05.2011 20:38     C:\Users\fixxxxxi\AppData\Local\Temp\21008202.od --------- 134  
 31.05.2011 20:38     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8F4A.tmp.cvr --------- 0  
 31.05.2011 19:09     C:\Users\fixxxxxi\AppData\Local\Temp\amt.log --------- 40914  
 31.05.2011 19:09     C:\Users\fixxxxxi\AppData\Local\Temp\csxs-PHSP.log --------- 1644  
 31.05.2011 19:08     C:\Users\fixxxxxi\AppData\Local\Temp\15589866.od --------- 134  
 31.05.2011 19:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE1DA.tmp.cvr --------- 0  
 31.05.2011 15:50     C:\Users\fixxxxxi\AppData\Local\Temp\TWAIN.LOG --------- 1308  
 31.05.2011 15:50     C:\Users\fixxxxxi\AppData\Local\Temp\Twain001.Mtx --------- 5  
 31.05.2011 15:50     C:\Users\fixxxxxi\AppData\Local\Temp\Twunk001.MTX --------- 156  
 31.05.2011 09:40     C:\Users\fixxxxxi\AppData\Local\Temp\194283.od --------- 134  
 31.05.2011 09:40     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF6CC.tmp.cvr --------- 0  
 31.05.2011 03:05     C:\Users\fixxxxxi\AppData\Local\Temp\36103514.od --------- 134  
 31.05.2011 03:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE55A.tmp.cvr --------- 0  
 31.05.2011 00:36     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-11 --------- 0  
 30.05.2011 12:05     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-10 --------- 0  
 30.05.2011 10:13     C:\Users\fixxxxxi\AppData\Local\Temp\394635.od --------- 134  
 30.05.2011 10:13     C:\Users\fixxxxxi\AppData\Local\Temp\CVR56C.tmp.cvr --------- 0  
 29.05.2011 23:32     C:\Users\fixxxxxi\AppData\Local\Temp\175532.od --------- 134  
 29.05.2011 23:32     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAD6D.tmp.cvr --------- 0  
 29.05.2011 11:12     C:\Users\fixxxxxi\AppData\Local\Temp\763593.od --------- 134  
 29.05.2011 11:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA6C9.tmp.cvr --------- 0  
 29.05.2011 00:27     C:\Users\fixxxxxi\AppData\Local\Temp\1886520.od --------- 134  
 29.05.2011 00:27     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC938.tmp.cvr --------- 0  
 28.05.2011 11:47     C:\Users\fixxxxxi\AppData\Local\Temp\3040007.od --------- 134  
 28.05.2011 11:47     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6307.tmp.cvr --------- 0  
 28.05.2011 11:01     C:\Users\fixxxxxi\AppData\Local\Temp\271051.od --------- 134  
 28.05.2011 11:01     C:\Users\fixxxxxi\AppData\Local\Temp\CVR22CB.tmp --------- 0  
 27.05.2011 11:04     C:\Users\fixxxxxi\AppData\Local\Temp\478314.od --------- 134  
 27.05.2011 11:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4C6A.tmp --------- 0  
 26.05.2011 12:07     C:\Users\fixxxxxi\AppData\Local\Temp\11161060.od --------- 134  
 26.05.2011 12:07     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4DD4.tmp.cvr --------- 0  
 26.05.2011 09:53     C:\Users\fixxxxxi\AppData\Local\Temp\3101284.od --------- 134  
 26.05.2011 09:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVR5264.tmp.cvr --------- 0  
 26.05.2011 09:05     C:\Users\fixxxxxi\AppData\Local\Temp\219867.od --------- 134  
 26.05.2011 09:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVR5ADB.tmp.cvr --------- 0  
 25.05.2011 21:28     C:\Users\fixxxxxi\AppData\Local\Temp\banlist.html --------- 0  
 25.05.2011 20:42     C:\Users\fixxxxxi\AppData\Local\Temp\25957193.od --------- 134  
 25.05.2011 20:42     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1349.tmp.cvr --------- 0  
 25.05.2011 14:31     C:\Users\fixxxxxi\AppData\Local\Temp\3702590.od --------- 134  
 25.05.2011 14:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7F3E.tmp.cvr --------- 0  
 25.05.2011 13:43     C:\Users\fixxxxxi\AppData\Local\Temp\782469.od --------- 134  
 25.05.2011 13:43     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF085.tmp.cvr --------- 0  
 25.05.2011 09:02     C:\Users\fixxxxxi\AppData\Local\Temp\1365071.od --------- 134  
 25.05.2011 09:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD44F.tmp --------- 0  
 24.05.2011 09:23     C:\Users\fixxxxxi\AppData\Local\Temp\968672.od --------- 134  
 24.05.2011 09:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC7E0.tmp.cvr --------- 0  
 24.05.2011 00:53     C:\Users\fixxxxxi\AppData\Local\Temp\3338546.od --------- 134  
 24.05.2011 00:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF122.tmp.cvr --------- 0  
 24.05.2011 00:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB318.tmp --------- 0  
 23.05.2011 10:46     C:\Users\fixxxxxi\AppData\Local\Temp\RESICO.dll --------- 77824  
 23.05.2011 10:12     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-7 --------- 0  
 23.05.2011 09:37     C:\Users\fixxxxxi\AppData\Local\Temp\324622.od --------- 134  
 23.05.2011 09:37     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF40E.tmp --------- 0  
 23.05.2011 00:03     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-5 --------- 0  
 22.05.2011 23:24     C:\Users\fixxxxxi\AppData\Local\Temp\Setup Log 2011-05-22 #001.txt --------- 609278  
 22.05.2011 22:02     C:\Users\fixxxxxi\AppData\Local\Temp\337508.od --------- 134  
 22.05.2011 22:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2654.tmp.cvr --------- 0  
 22.05.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-4 --------- 0  
 22.05.2011 13:17     C:\Users\fixxxxxi\AppData\Local\Temp\8913179.od --------- 134  
 22.05.2011 13:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVR11B.tmp.cvr --------- 0  
 22.05.2011 00:56     C:\Users\fixxxxxi\AppData\Local\Temp\694282.od --------- 134  
 22.05.2011 00:56     C:\Users\fixxxxxi\AppData\Local\Temp\CVR980A.tmp.cvr --------- 0  
 21.05.2011 11:23     C:\Users\fixxxxxi\AppData\Local\Temp\2690518.od --------- 134  
 21.05.2011 11:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVRDD6.tmp.cvr --------- 0  
 21.05.2011 00:02     C:\Users\fixxxxxi\AppData\Local\Temp\1018265.od --------- 134  
 21.05.2011 00:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8999.tmp.cvr --------- 0  
 20.05.2011 12:39     C:\Users\fixxxxxi\AppData\Local\Temp\1837488.od --------- 134  
 20.05.2011 12:39     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9B0.tmp.cvr --------- 0  
 20.05.2011 09:17     C:\Users\fixxxxxi\AppData\Local\Temp\648168.od --------- 134  
 20.05.2011 09:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE3E8.tmp.cvr --------- 0  
 19.05.2011 09:23     C:\Users\fixxxxxi\AppData\Local\Temp\1012571.od --------- 134  
 19.05.2011 09:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVR734B.tmp.cvr --------- 0  
 19.05.2011 00:15     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-3 --------- 0  
 19.05.2011 00:01     C:\Users\fixxxxxi\AppData\Local\Temp\25519875.od --------- 134  
 19.05.2011 00:01     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6703.tmp.cvr --------- 0  
 18.05.2011 22:04     C:\Users\fixxxxxi\AppData\Local\Temp\tmp-bi1.xpi --------- 0  
 18.05.2011 20:44     C:\Users\fixxxxxi\AppData\Local\Temp\13673082.od --------- 134  
 18.05.2011 20:44     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA27A.tmp.cvr --------- 0  
 18.05.2011 17:59     C:\Users\fixxxxxi\AppData\Local\Temp\3753134.od --------- 134  
 18.05.2011 17:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVR44AE.tmp.cvr --------- 0  
 18.05.2011 17:05     C:\Users\fixxxxxi\AppData\Local\Temp\536815.od --------- 134  
 18.05.2011 17:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2FE5.tmp.cvr --------- 0  
 18.05.2011 12:31     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-2 --------- 0  
 18.05.2011 11:26     C:\Users\fixxxxxi\AppData\Local\Temp\1084050.od --------- 134  
 18.05.2011 11:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8A92.tmp.cvr --------- 0  
 18.05.2011 11:23     C:\Users\fixxxxxi\AppData\Local\Temp\FA27.tmp --------- 0  
 17.05.2011 21:58     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-18 --------- 4715064  
 17.05.2011 21:36     C:\Users\fixxxxxi\AppData\Local\Temp\mediaget_installer.exe --------- 9460536  
 17.05.2011 21:09     C:\Users\fixxxxxi\AppData\Local\Temp\88234.od --------- 134  
 17.05.2011 21:09     C:\Users\fixxxxxi\AppData\Local\Temp\CVR588A.tmp.cvr --------- 0  
 17.05.2011 16:36     C:\Users\fixxxxxi\AppData\Local\Temp\300801.od --------- 134  
 17.05.2011 16:36     C:\Users\fixxxxxi\AppData\Local\Temp\CVR96D2.tmp.cvr --------- 0  
 17.05.2011 12:12     C:\Users\fixxxxxi\AppData\Local\Temp\dd_vcredistUI503D.txt --------- 13334  
 17.05.2011 12:12     C:\Users\fixxxxxi\AppData\Local\Temp\dd_vcredistMSI503D.txt --------- 356680  
 17.05.2011 12:10     C:\Users\fixxxxxi\AppData\Local\Temp\2679301.od --------- 134  
 17.05.2011 12:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE205.tmp.cvr --------- 0  
 17.05.2011 09:08     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp-1 --------- 0  
 17.05.2011 09:05     C:\Users\fixxxxxi\AppData\Local\Temp\5869444.od --------- 134  
 17.05.2011 09:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8F84.tmp.cvr --------- 0  
 17.05.2011 09:02     C:\Users\fixxxxxi\AppData\Local\Temp\dd_vcredistUI3F5B.txt --------- 14390  
 17.05.2011 09:02     C:\Users\fixxxxxi\AppData\Local\Temp\dd_vcredistMSI3F5B.txt --------- 357064  
 17.05.2011 09:02     C:\Users\fixxxxxi\AppData\Local\Temp\kgsystray.cab --------- 1948748  
 17.05.2011 09:01     C:\Users\fixxxxxi\AppData\Local\Temp\kumacomm.cab --------- 162035  
 17.05.2011 09:01     C:\Users\fixxxxxi\AppData\Local\Temp\skin_kgi.cab --------- 439  
 17.05.2011 09:01     C:\Users\fixxxxxi\AppData\Local\Temp\MissionHelper.cab --------- 2414212  
 17.05.2011 09:01     C:\Users\fixxxxxi\AppData\Local\Temp\msdtadmin --------- 0  
 17.05.2011 08:40     C:\Users\fixxxxxi\AppData\Local\Temp\4418104.od --------- 134  
 17.05.2011 08:40     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6A38.tmp.cvr --------- 0  
 17.05.2011 07:53     C:\Users\fixxxxxi\AppData\Local\Temp\1581085.od --------- 134  
 17.05.2011 07:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVR201D.tmp.cvr --------- 0  
 17.05.2011 07:37     C:\Users\fixxxxxi\AppData\Local\Temp\590058.od --------- 134  
 17.05.2011 07:37     C:\Users\fixxxxxi\AppData\Local\Temp\CVREA.tmp.cvr --------- 0  
 16.05.2011 21:38     C:\Users\fixxxxxi\AppData\Local\Temp\998531.od --------- 134  
 16.05.2011 21:38     C:\Users\fixxxxxi\AppData\Local\Temp\998499.cvr --------- 2072  
 16.05.2011 08:48     C:\Users\fixxxxxi\AppData\Local\Temp\674376.od --------- 134  
 16.05.2011 08:48     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4A48.tmp --------- 0  
 15.05.2011 16:04     C:\Users\fixxxxxi\AppData\Local\Temp\20867707.od --------- 134  
 15.05.2011 16:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6A7B.tmp.cvr --------- 0  
 15.05.2011 14:23     C:\Users\fixxxxxi\AppData\Local\Temp\14804666.od --------- 134  
 15.05.2011 14:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE6BA.tmp.cvr --------- 0  
 15.05.2011 10:31     C:\Users\fixxxxxi\AppData\Local\Temp\863465.od --------- 134  
 15.05.2011 10:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2CE9.tmp.cvr --------- 0  
 14.05.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\16622109.od --------- 134  
 14.05.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA21D.tmp.cvr --------- 0  
 14.05.2011 20:51     C:\Users\fixxxxxi\AppData\Local\Temp\8519339.od --------- 134  
 14.05.2011 20:51     C:\Users\fixxxxxi\AppData\Local\Temp\CVRFEAB.tmp.cvr --------- 0  
 14.05.2011 18:37     C:\Users\fixxxxxi\AppData\Local\Temp\477097.od --------- 134  
 14.05.2011 18:37     C:\Users\fixxxxxi\AppData\Local\Temp\CVR476B.tmp.cvr --------- 0  
 14.05.2011 09:42     C:\Users\fixxxxxi\AppData\Local\Temp\1284839.od --------- 134  
 14.05.2011 09:42     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9AE7.tmp --------- 0  
 14.05.2011 00:08     C:\Users\fixxxxxi\AppData\Local\Temp\2566419.od --------- 134  
 14.05.2011 00:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2913.tmp.cvr --------- 0  
 13.05.2011 13:13     C:\Users\fixxxxxi\AppData\Local\Temp\plugtmp --------- 0  
 13.05.2011 12:58     C:\Users\fixxxxxi\AppData\Local\Temp\8834477.od --------- 134  
 13.05.2011 12:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVRCD9D.tmp.cvr --------- 0  
 13.05.2011 10:45     C:\Users\fixxxxxi\AppData\Local\Temp\878223.od --------- 134  
 13.05.2011 10:45     C:\Users\fixxxxxi\AppData\Local\Temp\CVR668F.tmp.cvr --------- 0  
 12.05.2011 20:51     C:\Users\fixxxxxi\AppData\Local\Temp\7026706.od --------- 134  
 12.05.2011 20:51     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3812.tmp.cvr --------- 0  
 12.05.2011 19:00     C:\Users\fixxxxxi\AppData\Local\Temp\VBE --------- 0  
 12.05.2011 18:57     C:\Users\fixxxxxi\AppData\Local\Temp\168855.od --------- 134  
 12.05.2011 18:57     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9359.tmp.cvr --------- 0  
 12.05.2011 09:20     C:\Users\fixxxxxi\AppData\Local\Temp\672333.od --------- 134  
 12.05.2011 09:20     C:\Users\fixxxxxi\AppData\Local\Temp\CVR424D.tmp --------- 0  
 11.05.2011 12:26     C:\Users\fixxxxxi\AppData\Local\Temp\1022492.od --------- 134  
 11.05.2011 12:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9A1C.tmp.cvr --------- 0  
 10.05.2011 20:39     C:\Users\fixxxxxi\AppData\Local\Temp\4912159.od --------- 134  
 10.05.2011 20:39     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF41F.tmp.cvr --------- 0  
 10.05.2011 20:07     C:\Users\fixxxxxi\AppData\Local\Temp\2950400.od --------- 134  
 10.05.2011 20:07     C:\Users\fixxxxxi\AppData\Local\Temp\CVR500.tmp.cvr --------- 0  
 10.05.2011 08:11     C:\Users\fixxxxxi\AppData\Local\Temp\389596.od --------- 134  
 10.05.2011 08:11     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF1BD.tmp.cvr --------- 0  
 09.05.2011 21:19     C:\Users\fixxxxxi\AppData\Local\Temp\8458124.od --------- 134  
 09.05.2011 21:19     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF8C.tmp.cvr --------- 0  
 09.05.2011 19:33     C:\Users\fixxxxxi\AppData\Local\Temp\2154607.od --------- 134  
 09.05.2011 19:33     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE06F.tmp.cvr --------- 0  
 08.05.2011 20:47     C:\Users\fixxxxxi\AppData\Local\Temp\Messenger Companion --------- 0  
 08.05.2011 20:44     C:\Users\fixxxxxi\AppData\Local\Temp\5426135.od --------- 134  
 08.05.2011 20:44     C:\Users\fixxxxxi\AppData\Local\Temp\CVRCBD7.tmp.cvr --------- 0  
 08.05.2011 20:30     C:\Users\fixxxxxi\AppData\Local\Temp\StructuredQuery.log --------- 20107  
 08.05.2011 20:10     C:\Users\fixxxxxi\AppData\Local\Temp\3391570.od --------- 134  
 08.05.2011 20:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC052.tmp.cvr --------- 0  
 07.05.2011 21:21     C:\Users\fixxxxxi\AppData\Local\Temp\OIS --------- 0  
 07.05.2011 21:02     C:\Users\fixxxxxi\AppData\Local\Temp\3838669.od --------- 134  
 07.05.2011 21:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR92CD.tmp.cvr --------- 0  
 07.05.2011 08:27     C:\Users\fixxxxxi\AppData\Local\Temp\541151.od --------- 134  
 07.05.2011 08:27     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4172.tmp.cvr --------- 0  
 06.05.2011 09:50     C:\Users\fixxxxxi\AppData\Local\Temp\687558.od --------- 134  
 06.05.2011 09:50     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7DC6.tmp.cvr --------- 0  
 05.05.2011 22:02     C:\Users\fixxxxxi\AppData\Local\Temp\FRONTPG.log --------- 23049  
 05.05.2011 09:16     C:\Users\fixxxxxi\AppData\Local\Temp\339832.od --------- 134  
 05.05.2011 09:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2F78.tmp.cvr --------- 0  
 05.05.2011 00:22     C:\Users\fixxxxxi\AppData\Local\Temp\7404057.od --------- 134  
 05.05.2011 00:22     C:\Users\fixxxxxi\AppData\Local\Temp\CVRFA19.tmp.cvr --------- 0  
 04.05.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\msohtmlclip1 --------- 0  
 04.05.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\msohtmlclip --------- 0  
 04.05.2011 22:54     C:\Users\fixxxxxi\AppData\Local\Temp\2147806.od --------- 134  
 04.05.2011 22:54     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC5DE.tmp.cvr --------- 0  
 04.05.2011 22:52     C:\Users\fixxxxxi\AppData\Local\Temp\Setup Log 2011-05-04 #001.txt --------- 20029  
 04.05.2011 22:46     C:\Users\fixxxxxi\AppData\Local\Temp\MessengerCache --------- 0  
 04.05.2011 22:23     C:\Users\fixxxxxi\AppData\Local\Temp\307041.od --------- 134  
 04.05.2011 22:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAEB5.tmp.cvr --------- 0  
 04.05.2011 16:43     C:\Users\fixxxxxi\AppData\Local\Temp\23386172.od --------- 134  
 04.05.2011 16:43     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD83C.tmp.cvr --------- 0  
 04.05.2011 16:09     C:\Users\fixxxxxi\AppData\Local\Temp\21362121.od --------- 134  
 04.05.2011 16:09     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF5C9.tmp.cvr --------- 0  
 04.05.2011 13:17     C:\Users\fixxxxxi\AppData\Local\Temp\11053731.od --------- 134  
 04.05.2011 13:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAAA3.tmp.cvr --------- 0  
 04.05.2011 11:40     C:\Users\fixxxxxi\AppData\Local\Temp\liveticker.html --------- 0  
 04.05.2011 10:27     C:\Users\fixxxxxi\AppData\Local\Temp\819083.od --------- 134  
 04.05.2011 10:27     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7F6C.tmp.cvr --------- 0  
 03.05.2011 23:21     C:\Users\fixxxxxi\AppData\Local\Temp\20164845.od --------- 134  
 03.05.2011 23:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB0ED.tmp.cvr --------- 0  
 03.05.2011 22:28     C:\Users\fixxxxxi\AppData\Local\Temp\sctmp.jpg --------- 112193  
 03.05.2011 15:46     C:\Users\fixxxxxi\AppData\Local\Temp\18077910.od --------- 134  
 03.05.2011 15:46     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD8D6.tmp.cvr --------- 0  
 03.05.2011 13:07     C:\Users\fixxxxxi\AppData\Local\Temp\ESE Banlist _ Bannliste  .ÿ ¯ ÿCheaterbook.htm --------- 0  
 03.05.2011 11:22     C:\Users\fixxxxxi\AppData\Local\Temp\CVR580E.tmp --------- 0  
 03.05.2011 11:11     C:\Users\fixxxxxi\AppData\Local\Temp\CVRCD3D.tmp --------- 0  
 03.05.2011 10:56     C:\Users\fixxxxxi\AppData\Local\Temp\718852.od --------- 134  
 03.05.2011 10:56     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF804.tmp.cvr --------- 0  
 02.05.2011 13:02     C:\Users\fixxxxxi\AppData\Local\Temp\7223470.od --------- 134  
 02.05.2011 13:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR38AE.tmp.cvr --------- 0  
 02.05.2011 12:29     C:\Users\fixxxxxi\AppData\Local\Temp\5221603.od --------- 134  
 02.05.2011 12:29     C:\Users\fixxxxxi\AppData\Local\Temp\CVRACE3.tmp --------- 0  
 02.05.2011 11:55     C:\Users\fixxxxxi\AppData\Local\Temp\3185774.od --------- 134  
 02.05.2011 11:55     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9C6E.tmp.cvr --------- 0  
 01.05.2011 08:30     C:\Users\fixxxxxi\AppData\Local\Temp\1274216.od --------- 134  
 01.05.2011 08:30     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6113.tmp.cvr --------- 0  
 30.04.2011 00:01     C:\Users\fixxxxxi\AppData\Local\Temp\MSI30b95.LOG --------- 892  
 29.04.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\274483.od --------- 134  
 29.04.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2FF5.tmp.cvr --------- 0  
 29.04.2011 13:06     C:\Users\fixxxxxi\AppData\Local\Temp\341236.od --------- 134  
 29.04.2011 13:06     C:\Users\fixxxxxi\AppData\Local\Temp\CVR34F4.tmp.cvr --------- 0  
 28.04.2011 23:45     C:\Users\fixxxxxi\AppData\Local\Temp\508937.od --------- 134  
 28.04.2011 23:45     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC409.tmp.cvr --------- 0  
 28.04.2011 23:41     C:\Users\fixxxxxi\AppData\Local\Temp\260350.od --------- 134  
 28.04.2011 23:41     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF8B0.tmp.cvr --------- 0  
 28.04.2011 09:19     C:\Users\fixxxxxi\AppData\Local\Temp\798803.od --------- 134  
 28.04.2011 09:19     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3053.tmp.cvr --------- 0  
 27.04.2011 21:30     C:\Users\fixxxxxi\AppData\Local\Temp\755232.od --------- 134  
 27.04.2011 21:30     C:\Users\fixxxxxi\AppData\Local\Temp\CVR85F1.tmp.cvr --------- 0  
 27.04.2011 13:08     C:\Users\fixxxxxi\AppData\Local\Temp\11346951.od --------- 134  
 27.04.2011 13:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2407.tmp.cvr --------- 0  
 27.04.2011 10:10     C:\Users\fixxxxxi\AppData\Local\Temp\667434.od --------- 134  
 27.04.2011 10:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2F2A.tmp.cvr --------- 0  
 27.04.2011 10:09     C:\Users\fixxxxxi\AppData\Local\Temp\610619.od --------- 134  
 27.04.2011 10:09     C:\Users\fixxxxxi\AppData\Local\Temp\CVR513B.tmp.cvr --------- 0  
 27.04.2011 00:17     C:\Users\fixxxxxi\AppData\Local\Temp\10067696.od --------- 134  
 27.04.2011 00:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9EF0.tmp.cvr --------- 0  
 26.04.2011 23:14     C:\Users\fixxxxxi\AppData\Local\Temp\avatar --------- 3211  
 26.04.2011 15:31     C:\Users\fixxxxxi\AppData\Local\Temp\16859776.od --------- 134  
 26.04.2011 15:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4280.tmp.cvr --------- 0  
 26.04.2011 11:19     C:\Users\fixxxxxi\AppData\Local\Temp\1771890.od --------- 134  
 26.04.2011 11:19     C:\Users\fixxxxxi\AppData\Local\Temp\CVR972.tmp.cvr --------- 0  
 26.04.2011 01:06     C:\Users\fixxxxxi\AppData\Local\Temp\8218210.od --------- 134  
 26.04.2011 01:06     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6662.tmp.cvr --------- 0  
 25.04.2011 12:22     C:\Users\fixxxxxi\AppData\Local\Temp\1772764.od --------- 134  
 25.04.2011 12:22     C:\Users\fixxxxxi\AppData\Local\Temp\CVRCDC.tmp.cvr --------- 0  
 25.04.2011 00:32     C:\Users\fixxxxxi\AppData\Local\Temp\KiesInstall.Log --------- 11112  
 25.04.2011 00:04     C:\Users\fixxxxxi\AppData\Local\Temp\1103441.od --------- 134  
 25.04.2011 00:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD24D.tmp.cvr --------- 0  
 24.04.2011 11:34     C:\Users\fixxxxxi\AppData\Local\Temp\1541102.od --------- 134  
 24.04.2011 11:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVR83DF.tmp.cvr --------- 0  
 22.04.2011 12:27     C:\Users\fixxxxxi\AppData\Local\Temp\584098.od --------- 134  
 22.04.2011 12:27     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE80D.tmp.cvr --------- 0  
 20.04.2011 10:20     C:\Users\fixxxxxi\AppData\Local\Temp\734686.od --------- 134  
 20.04.2011 10:20     C:\Users\fixxxxxi\AppData\Local\Temp\CVR35DE.tmp --------- 0  
 19.04.2011 21:46     C:\Users\fixxxxxi\AppData\Local\Temp\246809.od --------- 134  
 19.04.2011 21:46     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC3EA.tmp.cvr --------- 0  
 19.04.2011 17:44     C:\Users\fixxxxxi\AppData\Local\Temp\7833886.od --------- 134  
 19.04.2011 17:44     C:\Users\fixxxxxi\AppData\Local\Temp\CVR891E.tmp.cvr --------- 0  
 19.04.2011 15:39     C:\Users\fixxxxxi\AppData\Local\Temp\313343.od --------- 134  
 19.04.2011 15:39     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC7FF.tmp --------- 0  
 19.04.2011 07:21     C:\Users\fixxxxxi\AppData\Local\Temp\2053051.od --------- 134  
 19.04.2011 07:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVR53BB.tmp.cvr --------- 0  
 19.04.2011 06:58     C:\Users\fixxxxxi\AppData\Local\Temp\634081.od --------- 134  
 19.04.2011 06:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVRACE1.tmp.cvr --------- 0  
 18.04.2011 08:23     C:\Users\fixxxxxi\AppData\Local\Temp\3141158.od --------- 134  
 18.04.2011 08:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVREE26.tmp.cvr --------- 0  
 18.04.2011 07:53     C:\Users\fixxxxxi\AppData\Local\Temp\1360609.od --------- 134  
 18.04.2011 07:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC2E1.tmp.cvr --------- 0  
 17.04.2011 07:34     C:\Users\fixxxxxi\AppData\Local\Temp\1028420.od --------- 134  
 17.04.2011 07:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB144.tmp.cvr --------- 0  
 16.04.2011 21:11     C:\Users\fixxxxxi\AppData\Local\Temp\11632011.od --------- 134  
 16.04.2011 21:11     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7D8B.tmp.cvr --------- 0  
 16.04.2011 18:59     C:\Users\fixxxxxi\AppData\Local\Temp\3684603.od --------- 134  
 16.04.2011 18:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVR38FB.tmp.cvr --------- 0  
 16.04.2011 18:00     C:\Users\fixxxxxi\AppData\Local\Temp\173145.od --------- 134  
 16.04.2011 18:00     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA3CD.tmp.cvr --------- 0  
 16.04.2011 07:42     C:\Users\fixxxxxi\AppData\Local\Temp\1330189.od --------- 134  
 16.04.2011 07:42     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4C0D.tmp.cvr --------- 0  
 16.04.2011 07:35     C:\Users\fixxxxxi\AppData\Local\Temp\905929.od --------- 134  
 16.04.2011 07:35     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD28A.tmp.cvr --------- 0  
 15.04.2011 23:22     C:\Users\fixxxxxi\AppData\Local\Temp\9260266.od --------- 134  
 15.04.2011 23:22     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4CEA.tmp.cvr --------- 0  
 15.04.2011 08:35     C:\Users\fixxxxxi\AppData\Local\Temp\592398.od --------- 134  
 15.04.2011 08:35     C:\Users\fixxxxxi\AppData\Local\Temp\CVR83A.tmp.cvr --------- 0  
 15.04.2011 00:48     C:\Users\fixxxxxi\AppData\Local\Temp\Outlook-Protokoll --------- 28672  
 15.04.2011 00:41     C:\Users\fixxxxxi\AppData\Local\Temp\2095452.od --------- 134  
 15.04.2011 00:41     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF95C.tmp.cvr --------- 0  
 15.04.2011 00:08     C:\Users\fixxxxxi\AppData\Local\Temp\96486.od --------- 134  
 15.04.2011 00:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7869.tmp.cvr --------- 0  
 14.04.2011 13:18     C:\Users\fixxxxxi\AppData\Local\Temp\5487225.od --------- 134  
 14.04.2011 13:18     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBA79.tmp.cvr --------- 0  
 13.04.2011 13:05     C:\Users\fixxxxxi\AppData\Local\Temp\7140930.cvr --------- 2024  
 13.04.2011 11:03     C:\Users\fixxxxxi\AppData\Local\Temp\3215289.od --------- 134  
 13.04.2011 11:03     C:\Users\fixxxxxi\AppData\Local\Temp\CVRFB9.tmp.cvr --------- 0  
 13.04.2011 10:45     C:\Users\fixxxxxi\AppData\Local\Temp\2157353.od --------- 134  
 13.04.2011 10:45     C:\Users\fixxxxxi\AppData\Local\Temp\CVREB19.tmp.cvr --------- 0  
 13.04.2011 00:30     C:\Users\fixxxxxi\AppData\Local\Temp\11039457.od --------- 134  
 13.04.2011 00:30     C:\Users\fixxxxxi\AppData\Local\Temp\CVR72E1.tmp.cvr --------- 0  
 12.04.2011 22:03     C:\Users\fixxxxxi\AppData\Local\Temp\2179489.od --------- 134  
 12.04.2011 22:03     C:\Users\fixxxxxi\AppData\Local\Temp\CVR41A1.tmp --------- 0  
 12.04.2011 14:47     C:\Users\fixxxxxi\AppData\Local\Temp\9653997.od --------- 134  
 12.04.2011 14:47     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4EED.tmp.cvr --------- 0  
 12.04.2011 10:48     C:\Users\fixxxxxi\AppData\Local\Temp\597546.od --------- 134  
 12.04.2011 10:48     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1E2A.tmp.cvr --------- 0  
 11.04.2011 23:00     C:\Users\fixxxxxi\AppData\Local\Temp\38814015.od --------- 134  
 11.04.2011 23:00     C:\Users\fixxxxxi\AppData\Local\Temp\CVR413F.tmp.cvr --------- 0  
 11.04.2011 20:48     C:\Users\fixxxxxi\AppData\Local\Temp\30909897.od --------- 134  
 11.04.2011 20:48     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA5C9.tmp.cvr --------- 0  
 11.04.2011 19:34     C:\Users\fixxxxxi\AppData\Local\Temp\26454150.od --------- 134  
 11.04.2011 19:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA886.tmp.cvr --------- 0  
 11.04.2011 19:25     C:\Users\fixxxxxi\AppData\Local\Temp\25894995.manifest --------- 3044  
 11.04.2011 19:25     C:\Users\fixxxxxi\AppData\Local\Temp\25894902.cvr --------- 2196  
 11.04.2011 15:58     C:\Users\fixxxxxi\AppData\Local\Temp\13524319.od --------- 134  
 11.04.2011 15:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVR5D5F.tmp.cvr --------- 0  
 11.04.2011 13:26     C:\Users\fixxxxxi\AppData\Local\Temp\4392660.od --------- 134  
 11.04.2011 13:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6D4.tmp.cvr --------- 0  
 11.04.2011 12:31     C:\Users\fixxxxxi\AppData\Local\Temp\1075829.od --------- 134  
 11.04.2011 12:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6A66.tmp.cvr --------- 0  
 10.04.2011 23:02     C:\Users\fixxxxxi\AppData\Local\Temp\15397298.od --------- 134  
 10.04.2011 23:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF1B2.tmp.cvr --------- 0  
 10.04.2011 22:52     C:\Users\fixxxxxi\AppData\Local\Temp\14786476.od --------- 134  
 10.04.2011 22:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9FAC.tmp.cvr --------- 0  
 10.04.2011 21:33     C:\Users\fixxxxxi\AppData\Local\Temp\10084762.od --------- 134  
 10.04.2011 21:33     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE19A.tmp.cvr --------- 0  
 10.04.2011 18:50     C:\Users\fixxxxxi\AppData\Local\Temp\291207.od --------- 134  
 10.04.2011 18:50     C:\Users\fixxxxxi\AppData\Local\Temp\CVR705E.tmp --------- 0  
 10.04.2011 07:31     C:\Users\fixxxxxi\AppData\Local\Temp\900016.od --------- 134  
 10.04.2011 07:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBAE5.tmp --------- 0  
 09.04.2011 20:21     C:\Users\fixxxxxi\AppData\Local\Temp\254125.od --------- 134  
 09.04.2011 20:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE0AD.tmp.cvr --------- 0  
 09.04.2011 20:21     C:\Users\fixxxxxi\AppData\Local\Temp\245701.od --------- 134  
 09.04.2011 20:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBE8D.tmp.cvr --------- 0  
 09.04.2011 07:53     C:\Users\fixxxxxi\AppData\Local\Temp\2239066.od --------- 134  
 09.04.2011 07:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2A5A.tmp.cvr --------- 0  
 08.04.2011 20:45     C:\Users\fixxxxxi\AppData\Local\Temp\27807131.od --------- 134  
 08.04.2011 20:45     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4D9B.tmp.cvr --------- 0  
 08.04.2011 15:12     C:\Users\fixxxxxi\AppData\Local\Temp\7819316.od --------- 134  
 08.04.2011 15:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVR5034.tmp.cvr --------- 0  
 08.04.2011 13:14     C:\Users\fixxxxxi\AppData\Local\Temp\755419.od --------- 134  
 08.04.2011 13:14     C:\Users\fixxxxxi\AppData\Local\Temp\CVR86DB.tmp.cvr --------- 0  
 07.04.2011 19:50     C:\Users\fixxxxxi\AppData\Local\Temp\divC8E9.tmp --------- 4096  
 07.04.2011 19:50     C:\Users\fixxxxxi\AppData\Local\Temp\div8D60.tmp --------- 0  
 07.04.2011 19:49     C:\Users\fixxxxxi\AppData\Local\Temp\divB2BC.tmp --------- 0  
 07.04.2011 19:49     C:\Users\fixxxxxi\AppData\Local\Temp\438971.od --------- 134  
 07.04.2011 19:49     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9C1F.tmp.cvr --------- 0  
 07.04.2011 05:39     C:\Users\fixxxxxi\AppData\Local\Temp\1933881.od --------- 134  
 07.04.2011 05:39     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8239.tmp.cvr --------- 0  
 07.04.2011 05:21     C:\Users\fixxxxxi\AppData\Local\Temp\833404.od --------- 134  
 07.04.2011 05:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB77C.tmp.cvr --------- 0  
 07.04.2011 05:08     C:\Users\fixxxxxi\AppData\Local\Temp\div57C0.tmp --------- 0  
 06.04.2011 15:49     C:\Users\fixxxxxi\AppData\Local\Temp\242643.od --------- 134  
 06.04.2011 15:49     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB3D3.tmp.cvr --------- 0  
 06.04.2011 15:46     C:\Users\fixxxxxi\AppData\Local\Temp\div9405.tmp --------- 0  
 06.04.2011 05:23     C:\Users\fixxxxxi\AppData\Local\Temp\1377956.od --------- 134  
 06.04.2011 05:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6A4.tmp.cvr --------- 0  
 06.04.2011 05:01     C:\Users\fixxxxxi\AppData\Local\Temp\divACA3.tmp --------- 0  
 05.04.2011 23:56     C:\Users\fixxxxxi\AppData\Local\Temp\div81FB.tmp --------- 0  
 05.04.2011 23:31     C:\Users\fixxxxxi\AppData\Local\Temp\312672.od --------- 134  
 05.04.2011 23:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC560.tmp --------- 0  
 05.04.2011 09:23     C:\Users\fixxxxxi\AppData\Local\Temp\765418.od --------- 134  
 05.04.2011 09:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVRADEA.tmp --------- 0  
 05.04.2011 09:23     C:\Users\fixxxxxi\AppData\Local\Temp\A2C5.tmp --------- 0  
 05.04.2011 09:12     C:\Users\fixxxxxi\AppData\Local\Temp\divD603.tmp --------- 0  
 04.04.2011 23:26     C:\Users\fixxxxxi\AppData\Local\Temp\15221469.od --------- 134  
 04.04.2011 23:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVR42DD.tmp.cvr --------- 0  
 04.04.2011 19:55     C:\Users\fixxxxxi\AppData\Local\Temp\2523409.od --------- 134  
 04.04.2011 19:55     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8111.tmp.cvr --------- 0  
 04.04.2011 19:55     C:\Users\fixxxxxi\AppData\Local\Temp\~GE7034.kmz --------- 2435  
 04.04.2011 19:55     C:\Users\fixxxxxi\AppData\Local\Temp\~GE7035.tmp --------- 0  
 04.04.2011 19:55     C:\Users\fixxxxxi\AppData\Local\Temp\~GE7034.tmp --------- 0  
 04.04.2011 19:53     C:\Users\fixxxxxi\AppData\Local\Temp\~GE30E2.kmz --------- 552  
 04.04.2011 19:53     C:\Users\fixxxxxi\AppData\Local\Temp\~GE30E3.tmp --------- 0  
 04.04.2011 19:53     C:\Users\fixxxxxi\AppData\Local\Temp\~GE30E2.tmp --------- 0  
 04.04.2011 19:17     C:\Users\fixxxxxi\AppData\Local\Temp\236903.od --------- 134  
 04.04.2011 19:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9D57.tmp --------- 0  
 04.04.2011 19:14     C:\Users\fixxxxxi\AppData\Local\Temp\divC715.tmp --------- 0  
 04.04.2011 14:52     C:\Users\fixxxxxi\AppData\Local\Temp\div7F0E.tmp --------- 0  
 04.04.2011 14:15     C:\Users\fixxxxxi\AppData\Local\Temp\12246655.od --------- 134  
 04.04.2011 14:15     C:\Users\fixxxxxi\AppData\Local\Temp\CVRDE7F.tmp.cvr --------- 0  
 04.04.2011 11:08     C:\Users\fixxxxxi\AppData\Local\Temp\996471.od --------- 134  
 04.04.2011 11:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3468.tmp.cvr --------- 0  
 04.04.2011 00:29     C:\Users\fixxxxxi\AppData\Local\Temp\3320777.od --------- 134  
 04.04.2011 00:29     C:\Users\fixxxxxi\AppData\Local\Temp\CVRABC9.tmp.cvr --------- 0  
 03.04.2011 23:40     C:\Users\fixxxxxi\AppData\Local\Temp\404307.od --------- 134  
 03.04.2011 23:40     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2B53.tmp.cvr --------- 0  
 03.04.2011 23:35     C:\Users\fixxxxxi\AppData\Local\Temp\div9CBB.tmp --------- 0  
 03.04.2011 10:32     C:\Users\fixxxxxi\AppData\Local\Temp\divA341.tmp --------- 0  
 02.04.2011 23:57     C:\Users\fixxxxxi\AppData\Local\Temp\1247337.od --------- 134  
 02.04.2011 23:57     C:\Users\fixxxxxi\AppData\Local\Temp\CVR869.tmp.cvr --------- 0  
 02.04.2011 23:37     C:\Users\fixxxxxi\AppData\Local\Temp\divB163.tmp --------- 0  
 02.04.2011 12:16     C:\Users\fixxxxxi\AppData\Local\Temp\2573236.od --------- 134  
 02.04.2011 12:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVR43B4.tmp.cvr --------- 0  
 02.04.2011 12:04     C:\Users\fixxxxxi\AppData\Local\Temp\divB911.tmp --------- 0  
 02.04.2011 11:54     C:\Users\fixxxxxi\AppData\Local\Temp\1256057.od --------- 134  
 02.04.2011 11:54     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2A79.tmp.cvr --------- 0  
 02.04.2011 00:33     C:\Users\fixxxxxi\AppData\Local\Temp\3189768.od --------- 134  
 02.04.2011 00:33     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAC08.tmp.cvr --------- 0  
 01.04.2011 23:41     C:\Users\fixxxxxi\AppData\Local\Temp\divAACF.tmp --------- 0  
 01.04.2011 13:05     C:\Users\fixxxxxi\AppData\Local\Temp\11469443.od --------- 134  
 01.04.2011 13:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVR273.tmp.cvr --------- 0  
 01.04.2011 12:12     C:\Users\fixxxxxi\AppData\Local\Temp\adb.log --------- 622  
 01.04.2011 11:13     C:\Users\fixxxxxi\AppData\Local\Temp\divB865.tmp --------- 0  
 01.04.2011 10:45     C:\Users\fixxxxxi\AppData\Local\Temp\3057135.od --------- 134  
 01.04.2011 10:45     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA5EF.tmp.cvr --------- 0  
 01.04.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\50162948.od --------- 134  
 01.04.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6D04.tmp.cvr --------- 0  
 01.04.2011 00:40     C:\Users\fixxxxxi\AppData\Local\Temp\48843647.od --------- 134  
 01.04.2011 00:40     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4B7F.tmp.cvr --------- 0  
 31.03.2011 23:47     C:\Users\fixxxxxi\AppData\Local\Temp\45628186.od --------- 134  
 31.03.2011 23:47     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3B1A.tmp.cvr --------- 0  
 31.03.2011 15:58     C:\Users\fixxxxxi\AppData\Local\Temp\17511361.od --------- 134  
 31.03.2011 15:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVR33C1.tmp.cvr --------- 0  
 31.03.2011 15:01     C:\Users\fixxxxxi\AppData\Local\Temp\14068544.od --------- 134  
 31.03.2011 15:01     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAB40.tmp.cvr --------- 0  
 31.03.2011 11:19     C:\Users\fixxxxxi\AppData\Local\Temp\778663.od --------- 134  
 31.03.2011 11:19     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE1A7.tmp.cvr --------- 0  
 31.03.2011 11:08     C:\Users\fixxxxxi\AppData\Local\Temp\divAD00.tmp --------- 0  
 30.03.2011 13:49     C:\Users\fixxxxxi\AppData\Local\Temp\11359821.od --------- 134  
 30.03.2011 13:49     C:\Users\fixxxxxi\AppData\Local\Temp\CVR564D.tmp.cvr --------- 0  
 30.03.2011 13:24     C:\Users\fixxxxxi\AppData\Local\Temp\9840121.od --------- 134  
 30.03.2011 13:24     C:\Users\fixxxxxi\AppData\Local\Temp\CVR25F9.tmp.cvr --------- 0  
 30.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\pic8.png --------- 4252  
 30.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\pic7.png --------- 4014  
 30.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\pic6.png --------- 18225  
 30.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\pic5.png --------- 4569  
 30.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\pic4.png --------- 4272  
 30.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\pic3.png --------- 18225  
 30.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\pic2.png --------- 4331  
 30.03.2011 11:11     C:\Users\fixxxxxi\AppData\Local\Temp\div74C1.tmp --------- 0  
 30.03.2011 10:52     C:\Users\fixxxxxi\AppData\Local\Temp\738742.od --------- 134  
 30.03.2011 10:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVR45B6.tmp.cvr --------- 0  
 29.03.2011 09:34     C:\Users\fixxxxxi\AppData\Local\Temp\1450216.od --------- 134  
 29.03.2011 09:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVR20E8.tmp.cvr --------- 0  
 29.03.2011 09:29     C:\Users\fixxxxxi\AppData\Local\Temp\1154719.od --------- 134  
 29.03.2011 09:29     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9E8F.tmp.cvr --------- 0  
 29.03.2011 09:19     C:\Users\fixxxxxi\AppData\Local\Temp\6779.tmp --------- 311456  
 29.03.2011 09:19     C:\Users\fixxxxxi\AppData\Local\Temp\5966.tmp --------- 0  
 29.03.2011 09:11     C:\Users\fixxxxxi\AppData\Local\Temp\divA7B3.tmp --------- 0  
 28.03.2011 23:53     C:\Users\fixxxxxi\AppData\Local\Temp\wecerr.txt --------- 11869  
 28.03.2011 20:40     C:\Users\fixxxxxi\AppData\Local\Temp\727120.od --------- 134  
 28.03.2011 20:40     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1850.tmp.cvr --------- 0  
 28.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\div7FB9.tmp --------- 0  
 28.03.2011 11:06     C:\Users\fixxxxxi\AppData\Local\Temp\3511660.od --------- 134  
 28.03.2011 11:06     C:\Users\fixxxxxi\AppData\Local\Temp\CVR956C.tmp.cvr --------- 0  
 28.03.2011 10:39     C:\Users\fixxxxxi\AppData\Local\Temp\1890264.od --------- 134  
 28.03.2011 10:39     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD7D8.tmp.cvr --------- 0  
 28.03.2011 10:22     C:\Users\fixxxxxi\AppData\Local\Temp\865041.od --------- 134  
 28.03.2011 10:22     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3311.tmp.cvr --------- 0  
 28.03.2011 10:19     C:\Users\fixxxxxi\AppData\Local\Temp\641179.od --------- 134  
 28.03.2011 10:19     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC89B.tmp.cvr --------- 0  
 28.03.2011 10:09     C:\Users\fixxxxxi\AppData\Local\Temp\divB6B2.tmp --------- 0  
 27.03.2011 23:38     C:\Users\fixxxxxi\AppData\Local\Temp\16992315.od --------- 134  
 27.03.2011 23:38     C:\Users\fixxxxxi\AppData\Local\Temp\CVR482B.tmp.cvr --------- 0  
 27.03.2011 23:38     C:\Users\fixxxxxi\AppData\Local\Temp\CVR482C.tmp.cvr --------- 0  
 27.03.2011 19:01     C:\Users\fixxxxxi\AppData\Local\Temp\387522.od --------- 134  
 27.03.2011 19:01     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE9B2.tmp --------- 0  
 27.03.2011 18:56     C:\Users\fixxxxxi\AppData\Local\Temp\div194A.tmp --------- 0  
 27.03.2011 10:22     C:\Users\fixxxxxi\AppData\Local\Temp\1643189.od --------- 134  
 27.03.2011 10:22     C:\Users\fixxxxxi\AppData\Local\Temp\CVR12B5.tmp.cvr --------- 0  
 27.03.2011 09:56     C:\Users\fixxxxxi\AppData\Local\Temp\div4EF9.tmp --------- 0  
 27.03.2011 02:04     C:\Users\fixxxxxi\AppData\Local\Temp\4306516.od --------- 134  
 27.03.2011 02:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB654.tmp.cvr --------- 0  
 27.03.2011 02:02     C:\Users\fixxxxxi\AppData\Local\Temp\4164321.od --------- 134  
 27.03.2011 02:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8AE1.tmp.cvr --------- 0  
 27.03.2011 00:55     C:\Users\fixxxxxi\AppData\Local\Temp\178870.od --------- 134  
 27.03.2011 00:55     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBA68.tmp.cvr --------- 0  
 27.03.2011 00:53     C:\Users\fixxxxxi\AppData\Local\Temp\divE954.tmp --------- 0  
 26.03.2011 13:54     C:\Users\fixxxxxi\AppData\Local\Temp\divEBC4.tmp --------- 0  
 26.03.2011 12:42     C:\Users\fixxxxxi\AppData\Local\Temp\1112209.od --------- 134  
 26.03.2011 12:42     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF891.tmp.cvr --------- 0  
 26.03.2011 12:34     C:\Users\fixxxxxi\AppData\Local\Temp\_HTC_Installer.log --------- 317708  
 26.03.2011 12:34     C:\Users\fixxxxxi\AppData\Local\Temp\ddinstaller.log --------- 20410  
 26.03.2011 12:33     C:\Users\fixxxxxi\AppData\Local\Temp\DMI39B5.tmp --------- 0  
 26.03.2011 12:32     C:\Users\fixxxxxi\AppData\Local\Temp\alexa --------- 0  
 26.03.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\2150660.od --------- 134  
 26.03.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD104.tmp.cvr --------- 0  
 26.03.2011 00:53     C:\Users\fixxxxxi\AppData\Local\Temp\~C62E.tmp --------- 91648  
 26.03.2011 00:43     C:\Users\fixxxxxi\AppData\Local\Temp\973493.od --------- 134  
 26.03.2011 00:43     C:\Users\fixxxxxi\AppData\Local\Temp\CVRDAB5.tmp.cvr --------- 0  
 26.03.2011 00:28     C:\Users\fixxxxxi\AppData\Local\Temp\divF44C.tmp --------- 0  
 25.03.2011 13:44     C:\Users\fixxxxxi\AppData\Local\Temp\doc-10.pdf --------- 12823  
 25.03.2011 13:15     C:\Users\fixxxxxi\AppData\Local\Temp\1026283.od --------- 134  
 25.03.2011 13:15     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA8EB.tmp.cvr --------- 0  
 25.03.2011 12:59     C:\Users\fixxxxxi\AppData\Local\Temp\div9AC8.tmp --------- 0  
 25.03.2011 02:10     C:\Users\fixxxxxi\AppData\Local\Temp\doc-18.pdf --------- 12961  
 25.03.2011 01:41     C:\Users\fixxxxxi\AppData\Local\Temp\ge5236 --------- 0  
 25.03.2011 00:32     C:\Users\fixxxxxi\AppData\Local\Temp\818147.od --------- 134  
 25.03.2011 00:32     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7BE3.tmp.cvr --------- 0  
 25.03.2011 00:19     C:\Users\fixxxxxi\AppData\Local\Temp\div849A.tmp --------- 0  
 24.03.2011 14:25     C:\Users\fixxxxxi\AppData\Local\Temp\doc-35.pdf --------- 6390  
 24.03.2011 12:59     C:\Users\fixxxxxi\AppData\Local\Temp\doc-20.pdf --------- 6306  
 24.03.2011 12:39     C:\Users\fixxxxxi\AppData\Local\Temp\doc-11.pdf --------- 6085  
 24.03.2011 11:56     C:\Users\fixxxxxi\AppData\Local\Temp\198324.od --------- 134  
 24.03.2011 11:56     C:\Users\fixxxxxi\AppData\Local\Temp\CVR694.tmp.cvr --------- 0  
 24.03.2011 11:53     C:\Users\fixxxxxi\AppData\Local\Temp\div7AF9.tmp --------- 0  
 24.03.2011 01:45     C:\Users\fixxxxxi\AppData\Local\Temp\3782509.od --------- 134  
 24.03.2011 01:45     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB75D.tmp.cvr --------- 0  
 24.03.2011 01:10     C:\Users\fixxxxxi\AppData\Local\Temp\1686495.od --------- 134  
 24.03.2011 01:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBBDF.tmp.cvr --------- 0  
 24.03.2011 01:05     C:\Users\fixxxxxi\AppData\Local\Temp\1421449.od --------- 134  
 24.03.2011 01:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB089.tmp.cvr --------- 0  
 24.03.2011 00:48     C:\Users\fixxxxxi\AppData\Local\Temp\363076.od --------- 134  
 24.03.2011 00:48     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8A44.tmp.cvr --------- 0  
 24.03.2011 00:42     C:\Users\fixxxxxi\AppData\Local\Temp\div81AD.tmp --------- 0  
 23.03.2011 14:10     C:\Users\fixxxxxi\AppData\Local\Temp\7594768.od --------- 134  
 23.03.2011 14:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE310.tmp.cvr --------- 0  
 23.03.2011 14:06     C:\Users\fixxxxxi\AppData\Local\Temp\7377240.od --------- 134  
 23.03.2011 14:06     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9158.tmp.cvr --------- 0  
 23.03.2011 13:34     C:\Users\fixxxxxi\AppData\Local\Temp\div8499.tmp --------- 0  
 23.03.2011 13:26     C:\Users\fixxxxxi\AppData\Local\Temp\4979286.od --------- 134  
 23.03.2011 13:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVRFA56.tmp.cvr --------- 0  
 23.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\4788996.od --------- 134  
 23.03.2011 13:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1304.tmp.cvr --------- 0  
 23.03.2011 13:15     C:\Users\fixxxxxi\AppData\Local\Temp\4345314.od --------- 134  
 23.03.2011 13:15     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4DE2.tmp.cvr --------- 0  
 23.03.2011 13:12     C:\Users\fixxxxxi\AppData\Local\Temp\4129798.od --------- 134  
 23.03.2011 13:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVR406.tmp.cvr --------- 0  
 23.03.2011 13:05     C:\Users\fixxxxxi\AppData\Local\Temp\3739811.od --------- 134  
 23.03.2011 13:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVR10A3.tmp.cvr --------- 0  
 23.03.2011 13:04     C:\Users\fixxxxxi\AppData\Local\Temp\3684774.od --------- 134  
 23.03.2011 13:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVR39A6.tmp.cvr --------- 0  
 23.03.2011 12:57     C:\Users\fixxxxxi\AppData\Local\Temp\3252901.od --------- 134  
 23.03.2011 12:57     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA2A5.tmp.cvr --------- 0  
 23.03.2011 12:55     C:\Users\fixxxxxi\AppData\Local\Temp\3119926.od --------- 134  
 23.03.2011 12:55     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9B36.tmp.cvr --------- 0  
 23.03.2011 12:53     C:\Users\fixxxxxi\AppData\Local\Temp\3006622.od --------- 134  
 23.03.2011 12:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE08F.tmp.cvr --------- 0  
 23.03.2011 12:47     C:\Users\fixxxxxi\AppData\Local\Temp\2671392.od --------- 134  
 23.03.2011 12:47     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC320.tmp.cvr --------- 0  
 23.03.2011 12:47     C:\Users\fixxxxxi\AppData\Local\Temp\2618507.od --------- 134  
 23.03.2011 12:47     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF48B.tmp --------- 0  
 23.03.2011 12:25     C:\Users\fixxxxxi\AppData\Local\Temp\1294137.od --------- 134  
 23.03.2011 12:25     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBF39.tmp.cvr --------- 0  
 23.03.2011 01:52     C:\Users\fixxxxxi\AppData\Local\Temp\28114203.od --------- 134  
 23.03.2011 01:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVRFD1B.tmp.cvr --------- 0  
 23.03.2011 00:38     C:\Users\fixxxxxi\AppData\Local\Temp\23705381.od --------- 134  
 23.03.2011 00:38     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB725.tmp.cvr --------- 0  
 22.03.2011 22:26     C:\Users\fixxxxxi\AppData\Local\Temp\15787441.od --------- 134  
 22.03.2011 22:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE5B1.tmp.cvr --------- 0  
 22.03.2011 22:03     C:\Users\fixxxxxi\AppData\Local\Temp\14412121.od --------- 134  
 22.03.2011 22:03     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE959.tmp.cvr --------- 0  
 22.03.2011 21:32     C:\Users\fixxxxxi\AppData\Local\Temp\12509813.od --------- 134  
 22.03.2011 21:32     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE275.tmp.cvr --------- 0  
 22.03.2011 21:17     C:\Users\fixxxxxi\AppData\Local\Temp\11646613.od --------- 134  
 22.03.2011 21:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB695.tmp.cvr --------- 0  
 22.03.2011 19:58     C:\Users\fixxxxxi\AppData\Local\Temp\create.html --------- 0  
 22.03.2011 18:56     C:\Users\fixxxxxi\AppData\Local\Temp\3185540.od --------- 134  
 22.03.2011 18:56     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9B84.tmp.cvr --------- 0  
 22.03.2011 18:36     C:\Users\fixxxxxi\AppData\Local\Temp\1951744.od --------- 134  
 22.03.2011 18:36     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC800.tmp --------- 0  
 22.03.2011 18:04     C:\Users\fixxxxxi\AppData\Local\Temp\div99ED.tmp --------- 0  
 22.03.2011 15:30     C:\Users\fixxxxxi\AppData\Local\Temp\17510581.od --------- 134  
 22.03.2011 15:30     C:\Users\fixxxxxi\AppData\Local\Temp\CVR30A6.tmp.cvr --------- 0  
 22.03.2011 10:51     C:\Users\fixxxxxi\AppData\Local\Temp\799723.od --------- 134  
 22.03.2011 10:51     C:\Users\fixxxxxi\AppData\Local\Temp\CVR33DB.tmp.cvr --------- 0  
 22.03.2011 10:39     C:\Users\fixxxxxi\AppData\Local\Temp\divDD5.tmp --------- 0  
 22.03.2011 01:42     C:\Users\fixxxxxi\AppData\Local\Temp\47228382.od --------- 134  
 22.03.2011 01:42     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA5DE.tmp.cvr --------- 0  
 21.03.2011 23:44     C:\Users\fixxxxxi\AppData\Local\Temp\ge1928 --------- 0  
 21.03.2011 19:17     C:\Users\fixxxxxi\AppData\Local\Temp\24175802.od --------- 134  
 21.03.2011 19:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE4BA.tmp.cvr --------- 0  
 21.03.2011 19:17     C:\Users\fixxxxxi\AppData\Local\Temp\24158595.od --------- 134  
 21.03.2011 19:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA183.tmp.cvr --------- 0  
 21.03.2011 17:10     C:\Users\fixxxxxi\AppData\Local\Temp\16527650.od --------- 134  
 21.03.2011 17:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3122.tmp.cvr --------- 0  
 21.03.2011 16:35     C:\Users\fixxxxxi\AppData\Local\Temp\14425272.od --------- 134  
 21.03.2011 16:35     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1CB8.tmp.cvr --------- 0  
 21.03.2011 16:18     C:\Users\fixxxxxi\AppData\Local\Temp\nppLocalization --------- 16384  
 21.03.2011 15:20     C:\Users\fixxxxxi\AppData\Local\Temp\9902740.od --------- 134  
 21.03.2011 15:20     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1A94.tmp.cvr --------- 0  
 21.03.2011 15:12     C:\Users\fixxxxxi\AppData\Local\Temp\t8o4mmng.bmp --------- 4150  
 21.03.2011 15:10     C:\Users\fixxxxxi\AppData\Local\Temp\u6qjm5z4.bmp --------- 4150  
 21.03.2011 13:16     C:\Users\fixxxxxi\AppData\Local\Temp\2462070.od --------- 134  
 21.03.2011 13:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9166.tmp.cvr --------- 0  
 21.03.2011 12:36     C:\Users\fixxxxxi\AppData\Local\Temp\div96D2.tmp --------- 0  
 21.03.2011 01:25     C:\Users\fixxxxxi\AppData\Local\Temp\8184015.od --------- 134  
 21.03.2011 01:25     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE0BF.tmp.cvr --------- 0  
 21.03.2011 01:20     C:\Users\fixxxxxi\AppData\Local\Temp\7882917.od --------- 134  
 21.03.2011 01:20     C:\Users\fixxxxxi\AppData\Local\Temp\CVR48A5.tmp --------- 0  
 21.03.2011 00:51     C:\Users\fixxxxxi\AppData\Local\Temp\6123522.od --------- 134  
 21.03.2011 00:51     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7002.tmp.cvr --------- 0  
 21.03.2011 00:41     C:\Users\fixxxxxi\AppData\Local\Temp\5503294.od --------- 134  
 21.03.2011 00:41     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF93E.tmp.cvr --------- 0  
 21.03.2011 00:16     C:\Users\fixxxxxi\AppData\Local\Temp\4051657.od --------- 134  
 21.03.2011 00:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD2C9.tmp.cvr --------- 0  
 21.03.2011 00:12     C:\Users\fixxxxxi\AppData\Local\Temp\3799154.od --------- 134  
 21.03.2011 00:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF872.tmp.cvr --------- 0  
 20.03.2011 23:29     C:\Users\fixxxxxi\AppData\Local\Temp\1184952.od --------- 134  
 20.03.2011 23:29     C:\Users\fixxxxxi\AppData\Local\Temp\CVR14B8.tmp.cvr --------- 0  
 20.03.2011 23:10     C:\Users\fixxxxxi\AppData\Local\Temp\divA19B.tmp --------- 0  
 20.03.2011 14:17     C:\Users\fixxxxxi\AppData\Local\Temp\4721276.od --------- 134  
 20.03.2011 14:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA7C.tmp.cvr --------- 0  
 20.03.2011 13:29     C:\Users\fixxxxxi\AppData\Local\Temp\divA044.tmp --------- 0  
 20.03.2011 13:10     C:\Users\fixxxxxi\AppData\Local\Temp\676295.od --------- 134  
 20.03.2011 13:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVR51C7.tmp --------- 0  
 20.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\6524632.od --------- 134  
 20.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8ED8.tmp.cvr --------- 0  
 20.03.2011 00:55     C:\Users\fixxxxxi\AppData\Local\Temp\1073474.od --------- 134  
 20.03.2011 00:55     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6142.tmp.cvr --------- 0  
 20.03.2011 00:38     C:\Users\fixxxxxi\AppData\Local\Temp\divB837.tmp --------- 0  
 19.03.2011 13:04     C:\Users\fixxxxxi\AppData\Local\Temp\4387964.od --------- 134  
 19.03.2011 13:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF47C.tmp.cvr --------- 0  
 19.03.2011 12:37     C:\Users\fixxxxxi\AppData\Local\Temp\2785319.od --------- 134  
 19.03.2011 12:37     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8027.tmp.cvr --------- 0  
 19.03.2011 11:52     C:\Users\fixxxxxi\AppData\Local\Temp\divD0E5.tmp --------- 0  
 19.03.2011 01:39     C:\Users\fixxxxxi\AppData\Local\Temp\4292211.od --------- 134  
 19.03.2011 01:39     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7E73.tmp.cvr --------- 0  
 19.03.2011 01:04     C:\Users\fixxxxxi\AppData\Local\Temp\2220908.od --------- 134  
 19.03.2011 01:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE36C.tmp.cvr --------- 0  
 19.03.2011 00:39     C:\Users\fixxxxxi\AppData\Local\Temp\732346.od --------- 134  
 19.03.2011 00:39     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2CBA.tmp.cvr --------- 0  
 19.03.2011 00:29     C:\Users\fixxxxxi\AppData\Local\Temp\divE2CF.tmp --------- 0  
 18.03.2011 14:17     C:\Users\fixxxxxi\AppData\Local\Temp\2046.html --------- 0  
 18.03.2011 14:02     C:\Users\fixxxxxi\AppData\Local\Temp\90bbvq60.bmp --------- 262198  
 18.03.2011 14:02     C:\Users\fixxxxxi\AppData\Local\Temp\q2mn7hfo.bmp --------- 262198  
 18.03.2011 12:44     C:\Users\fixxxxxi\AppData\Local\Temp\878800.od --------- 134  
 18.03.2011 12:44     C:\Users\fixxxxxi\AppData\Local\Temp\CVR68D0.tmp.cvr --------- 0  
 18.03.2011 12:30     C:\Users\fixxxxxi\AppData\Local\Temp\div9848.tmp --------- 0  
 18.03.2011 02:05     C:\Users\fixxxxxi\AppData\Local\Temp\4867745.od --------- 134  
 18.03.2011 02:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVR46A1.tmp.cvr --------- 0  
 18.03.2011 00:56     C:\Users\fixxxxxi\AppData\Local\Temp\701208.od --------- 134  
 18.03.2011 00:45     C:\Users\fixxxxxi\AppData\Local\Temp\div8DBD.tmp --------- 0  
 17.03.2011 12:41     C:\Users\fixxxxxi\AppData\Local\Temp\div92DC.tmp --------- 0  
 17.03.2011 11:50     C:\Users\fixxxxxi\AppData\Local\Temp\537111.od --------- 134  
 17.03.2011 11:50     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3217.tmp.cvr --------- 0  
 17.03.2011 00:48     C:\Users\fixxxxxi\AppData\Local\Temp\divAE77.tmp --------- 0  
 16.03.2011 14:17     C:\Users\fixxxxxi\AppData\Local\Temp\div9E51.tmp --------- 0  
 16.03.2011 11:44     C:\Users\fixxxxxi\AppData\Local\Temp\1507874.od --------- 134  
 16.03.2011 11:44     C:\Users\fixxxxxi\AppData\Local\Temp\CVR222.tmp.cvr --------- 0  
 16.03.2011 11:20     C:\Users\fixxxxxi\AppData\Local\Temp\divFFD1.tmp --------- 0  
 16.03.2011 00:59     C:\Users\fixxxxxi\AppData\Local\Temp\8750938.od --------- 134  
 16.03.2011 00:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVR875A.tmp.cvr --------- 0  
 16.03.2011 00:58     C:\Users\fixxxxxi\AppData\Local\Temp\8710362.od --------- 134  
 16.03.2011 00:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE8DA.tmp.cvr --------- 0  
 16.03.2011 00:26     C:\Users\fixxxxxi\AppData\Local\Temp\amtconfig.log --------- 1065  
 15.03.2011 22:34     C:\Users\fixxxxxi\AppData\Local\Temp\divD43F.tmp --------- 0  
 15.03.2011 20:16     C:\Users\fixxxxxi\AppData\Local\Temp\35764102.od --------- 134  
 15.03.2011 20:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB786.tmp.cvr --------- 0  
 15.03.2011 18:00     C:\Users\fixxxxxi\AppData\Local\Temp\sjkicpg1.bmp --------- 5214  
 15.03.2011 16:09     C:\Users\fixxxxxi\AppData\Local\Temp\8d1hopqv.bmp --------- 2354  
 15.03.2011 14:59     C:\Users\fixxxxxi\AppData\Local\Temp\cg34rorq.bmp --------- 2758  
 15.03.2011 13:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE1E9.tmp --------- 0  
 15.03.2011 10:28     C:\Users\fixxxxxi\AppData\Local\Temp\470374.od --------- 134  
 15.03.2011 10:28     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2D66.tmp.cvr --------- 0  
 15.03.2011 10:21     C:\Users\fixxxxxi\AppData\Local\Temp\div82E5.tmp --------- 0  
 14.03.2011 22:59     C:\Users\fixxxxxi\AppData\Local\Temp\40711378.od --------- 134  
 14.03.2011 22:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVR34D2.tmp.cvr --------- 0  
 14.03.2011 22:32     C:\Users\fixxxxxi\AppData\Local\Temp\39121618.od --------- 134  
 14.03.2011 22:32     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF2D2.tmp.cvr --------- 0  
 14.03.2011 18:10     C:\Users\fixxxxxi\AppData\Local\Temp\23418199.od --------- 134  
 14.03.2011 18:10     C:\Users\fixxxxxi\AppData\Local\Temp\CVR5557.tmp.cvr --------- 0  
 14.03.2011 17:50     C:\Users\fixxxxxi\AppData\Local\Temp\2027.html --------- 0  
 14.03.2011 14:01     C:\Users\fixxxxxi\AppData\Local\Temp\8480510.od --------- 134  
 14.03.2011 14:01     C:\Users\fixxxxxi\AppData\Local\Temp\CVR66FE.tmp.cvr --------- 0  
 14.03.2011 13:21     C:\Users\fixxxxxi\AppData\Local\Temp\s6acg1jh.bmp --------- 30854  
 14.03.2011 13:15     C:\Users\fixxxxxi\AppData\Local\Temp\5677297.od --------- 134  
 14.03.2011 13:15     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA0F1.tmp.cvr --------- 0  
 14.03.2011 13:09     C:\Users\fixxxxxi\AppData\Local\Temp\5308292.od --------- 134  
 14.03.2011 13:09     C:\Users\fixxxxxi\AppData\Local\Temp\CVRFF84.tmp.cvr --------- 0  
 14.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\divE8D9.tmp --------- 0  
 14.03.2011 12:41     C:\Users\fixxxxxi\AppData\Local\Temp\divD1BF.tmp --------- 0  
 14.03.2011 12:16     C:\Users\fixxxxxi\AppData\Local\Temp\2163265.od --------- 134  
 14.03.2011 12:16     C:\Users\fixxxxxi\AppData\Local\Temp\2163234.cvr --------- 2200  
 14.03.2011 12:14     C:\Users\fixxxxxi\AppData\Local\Temp\2065125.od --------- 134  
 14.03.2011 12:14     C:\Users\fixxxxxi\AppData\Local\Temp\2065094.cvr --------- 2140  
 14.03.2011 12:09     C:\Users\fixxxxxi\AppData\Local\Temp\75e4939031a7f716a87d3ad43cd5be77-3.dlc --------- 6340  
 14.03.2011 12:07     C:\Users\fixxxxxi\AppData\Local\Temp\ACSMC.part01.rar --------- 504365056  
 14.03.2011 12:04     C:\Users\fixxxxxi\AppData\Local\Temp\75e4939031a7f716a87d3ad43cd5be77-2.dlc --------- 6340  
 14.03.2011 12:03     C:\Users\fixxxxxi\AppData\Local\Temp\75e4939031a7f716a87d3ad43cd5be77-1.dlc --------- 6340  
 14.03.2011 11:57     C:\Users\fixxxxxi\AppData\Local\Temp\75e4939031a7f716a87d3ad43cd5be77.dlc --------- 6340  
 14.03.2011 11:46     C:\Users\fixxxxxi\AppData\Local\Temp\375868.od --------- 134  
 14.03.2011 11:46     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBC3C.tmp.cvr --------- 0  
 14.03.2011 00:21     C:\Users\fixxxxxi\AppData\Local\Temp\42903301.od --------- 134  
 14.03.2011 00:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA705.tmp.cvr --------- 0  
 13.03.2011 23:45     C:\Users\fixxxxxi\AppData\Local\Temp\40733733.od --------- 134  
 13.03.2011 23:45     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8C25.tmp.cvr --------- 0  
 13.03.2011 23:13     C:\Users\fixxxxxi\AppData\Local\Temp\38870987.od --------- 134  
 13.03.2011 23:13     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1FCB.tmp.cvr --------- 0  
 13.03.2011 21:27     C:\Users\fixxxxxi\AppData\Local\Temp\32457568.od --------- 134  
 13.03.2011 21:27     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4360.tmp.cvr --------- 0  
 13.03.2011 21:14     C:\Users\fixxxxxi\AppData\Local\Temp\31676627.od --------- 134  
 13.03.2011 21:14     C:\Users\fixxxxxi\AppData\Local\Temp\CVR58D3.tmp.cvr --------- 0  
 13.03.2011 20:52     C:\Users\fixxxxxi\AppData\Local\Temp\30392785.od --------- 134  
 13.03.2011 20:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC1D1.tmp.cvr --------- 0  
 13.03.2011 19:11     C:\Users\fixxxxxi\AppData\Local\Temp\24340929.od --------- 134  
 13.03.2011 19:11     C:\Users\fixxxxxi\AppData\Local\Temp\CVR69C1.tmp.cvr --------- 0  
 13.03.2011 14:10     C:\Users\fixxxxxi\AppData\Local\Temp\6235781.od --------- 0  
 13.03.2011 12:31     C:\Users\fixxxxxi\AppData\Local\Temp\341174.od --------- 134  
 13.03.2011 12:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVR34B6.tmp.cvr --------- 0  
 13.03.2011 12:26     C:\Users\fixxxxxi\AppData\Local\Temp\div908B.tmp --------- 0  
 13.03.2011 12:04     C:\Users\fixxxxxi\AppData\Local\Temp\div9B93.tmp --------- 0  
 13.03.2011 01:00     C:\Users\fixxxxxi\AppData\Local\Temp\16687801.od --------- 134  
 13.03.2011 01:00     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA2B9.tmp.cvr --------- 0  
 12.03.2011 22:14     C:\Users\fixxxxxi\AppData\Local\Temp\CVR873A.tmp --------- 0  
 12.03.2011 20:22     C:\Users\fixxxxxi\AppData\Local\Temp\div9443.tmp --------- 0  
 12.03.2011 17:05     C:\Users\fixxxxxi\AppData\Local\Temp\13625236.od --------- 134  
 12.03.2011 17:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE794.tmp.cvr --------- 0  
 12.03.2011 14:24     C:\Users\fixxxxxi\AppData\Local\Temp\jfs3ynan.bmp --------- 370722  
 12.03.2011 14:04     C:\Users\fixxxxxi\AppData\Local\Temp\vo6tms62.bmp --------- 129386  
 12.03.2011 14:03     C:\Users\fixxxxxi\AppData\Local\Temp\f4o3vtuj.bmp --------- 370722  
 12.03.2011 13:51     C:\Users\fixxxxxi\AppData\Local\Temp\w144p5vd.bmp --------- 40054  
 12.03.2011 13:51     C:\Users\fixxxxxi\AppData\Local\Temp\6l0506nv.bmp --------- 24390  
 12.03.2011 13:44     C:\Users\fixxxxxi\AppData\Local\Temp\1601038.od --------- 134  
 12.03.2011 13:44     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6E0E.tmp.cvr --------- 0  
 12.03.2011 13:19     C:\Users\fixxxxxi\AppData\Local\Temp\divAD4E.tmp --------- 0  
 12.03.2011 01:34     C:\Users\fixxxxxi\AppData\Local\Temp\19071574.od --------- 134  
 12.03.2011 01:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVR247.tmp.cvr --------- 0  
 12.03.2011 01:34     C:\Users\fixxxxxi\AppData\Local\Temp\19044024.od --------- 134  
 12.03.2011 01:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVR96B8.tmp.cvr --------- 0  
 11.03.2011 21:34     C:\Users\fixxxxxi\AppData\Local\Temp\4662620.od --------- 134  
 11.03.2011 21:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVR255C.tmp.cvr --------- 0  
 11.03.2011 20:28     C:\Users\fixxxxxi\AppData\Local\Temp\709757.od --------- 134  
 11.03.2011 20:28     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD47D.tmp.cvr --------- 0  
 11.03.2011 20:17     C:\Users\fixxxxxi\AppData\Local\Temp\divA1CA.tmp --------- 0  
 11.03.2011 15:13     C:\Users\fixxxxxi\AppData\Local\Temp\2537387.od --------- 134  
 11.03.2011 15:13     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB79B.tmp.cvr --------- 0  
 11.03.2011 14:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9EED.tmp --------- 0  
 11.03.2011 14:31     C:\Users\fixxxxxi\AppData\Local\Temp\divB3C4.tmp --------- 0  
 11.03.2011 12:59     C:\Users\fixxxxxi\AppData\Local\Temp\3934392.od --------- 134  
 11.03.2011 12:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8B8.tmp.cvr --------- 0  
 11.03.2011 12:40     C:\Users\fixxxxxi\AppData\Local\Temp\Web-Crawl_errors_Nicht_gefunden_www_cheatervz_com_20110311T104052Z.csv --------- 463  
 11.03.2011 12:31     C:\Users\fixxxxxi\AppData\Local\Temp\2254542.od --------- 134  
 11.03.2011 12:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVR66CE.tmp.cvr --------- 0  
 11.03.2011 12:24     C:\Users\fixxxxxi\AppData\Local\Temp\divBFB5.tmp --------- 0  
 11.03.2011 01:09     C:\Users\fixxxxxi\AppData\Local\Temp\jar_cache3246076219259964724.tmp --------- 7756  
 11.03.2011 01:09     C:\Users\fixxxxxi\AppData\Local\Temp\jar_cache6507239037146717762.tmp --------- 7756  
 11.03.2011 01:09     C:\Users\fixxxxxi\AppData\Local\Temp\jar_cache8359190864039314451.tmp --------- 7756  
 11.03.2011 00:36     C:\Users\fixxxxxi\AppData\Local\Temp\45736248.od --------- 134  
 11.03.2011 00:36     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE138.tmp.cvr --------- 0  
 10.03.2011 22:59     C:\Users\fixxxxxi\AppData\Local\Temp\39909345.od --------- 134  
 10.03.2011 22:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF7E1.tmp.cvr --------- 0  
 10.03.2011 22:08     C:\Users\fixxxxxi\AppData\Local\Temp\36840400.od --------- 134  
 10.03.2011 22:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVR23C0.tmp.cvr --------- 0  
 10.03.2011 20:25     C:\Users\fixxxxxi\AppData\Local\Temp\30654258.od --------- 134  
 10.03.2011 20:25     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBF32.tmp.cvr --------- 0  
 10.03.2011 19:23     C:\Users\fixxxxxi\AppData\Local\Temp\26927192.od --------- 134  
 10.03.2011 19:23     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE058.tmp.cvr --------- 0  
 10.03.2011 18:50     C:\Users\fixxxxxi\AppData\Local\Temp\24974168.od --------- 134  
 10.03.2011 18:50     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1358.tmp.cvr --------- 0  
 10.03.2011 18:50     C:\Users\fixxxxxi\AppData\Local\Temp\24971813.od --------- 134  
 10.03.2011 18:50     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA25.tmp.cvr --------- 0  
 10.03.2011 16:24     C:\Users\fixxxxxi\AppData\Local\Temp\16187708.od --------- 134  
 10.03.2011 16:24     C:\Users\fixxxxxi\AppData\Local\Temp\CVR13C.tmp.cvr --------- 0  
 10.03.2011 12:08     C:\Users\fixxxxxi\AppData\Local\Temp\818974.od --------- 134  
 10.03.2011 12:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVR7F1E.tmp.cvr --------- 0  
 10.03.2011 11:56     C:\Users\fixxxxxi\AppData\Local\Temp\div3D1E.tmp --------- 0  
 09.03.2011 11:53     C:\Users\fixxxxxi\AppData\Local\Temp\1879500.od --------- 134  
 09.03.2011 11:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVRADBC.tmp.cvr --------- 0  
 09.03.2011 11:51     C:\Users\fixxxxxi\AppData\Local\Temp\1774760.od --------- 134  
 09.03.2011 11:51     C:\Users\fixxxxxi\AppData\Local\Temp\CVR14A8.tmp.cvr --------- 0  
 09.03.2011 11:22     C:\Users\fixxxxxi\AppData\Local\Temp\div9F98.tmp --------- 0  
 08.03.2011 23:24     C:\Users\fixxxxxi\AppData\Local\Temp\12077769.od --------- 134  
 08.03.2011 23:24     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4AC9.tmp.cvr --------- 0  
 08.03.2011 22:44     C:\Users\fixxxxxi\AppData\Local\Temp\pv3d7740.bmp --------- 1960054  
 08.03.2011 20:56     C:\Users\fixxxxxi\AppData\Local\Temp\3183169.od --------- 134  
 08.03.2011 20:56     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9241.tmp.cvr --------- 0  
 08.03.2011 20:04     C:\Users\fixxxxxi\AppData\Local\Temp\divF5B.tmp --------- 0  
 08.03.2011 14:46     C:\Users\fixxxxxi\AppData\Local\Temp\eoubjp3k.bmp --------- 1057090  
 08.03.2011 14:31     C:\Users\fixxxxxi\AppData\Local\Temp\oqgys6gz.bmp --------- 39938  
 08.03.2011 14:17     C:\Users\fixxxxxi\AppData\Local\Temp\kwe1jdtb.bmp --------- 83878  
 08.03.2011 13:40     C:\Users\fixxxxxi\AppData\Local\Temp\4t1452d4.bmp --------- 30246  
 08.03.2011 13:36     C:\Users\fixxxxxi\AppData\Local\Temp\sjtz5p36.bmp --------- 36634  
 08.03.2011 13:04     C:\Users\fixxxxxi\AppData\Local\Temp\saslPrep_4760 --------- 0  
 08.03.2011 12:47     C:\Users\fixxxxxi\AppData\Local\Temp\qiwb6o67.bmp --------- 101238  
 08.03.2011 12:21     C:\Users\fixxxxxi\AppData\Local\Temp\4764988.od --------- 134  
 08.03.2011 12:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB53C.tmp.cvr --------- 0  
 08.03.2011 12:02     C:\Users\fixxxxxi\AppData\Local\Temp\divB99D.tmp --------- 0  
 08.03.2011 11:04     C:\Users\fixxxxxi\AppData\Local\Temp\157093.od --------- 134  
 08.03.2011 11:04     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6595.tmp.cvr --------- 0  
 07.03.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\10853473.od --------- 134  
 07.03.2011 23:06     C:\Users\fixxxxxi\AppData\Local\Temp\CVR9C61.tmp.cvr --------- 0  
 07.03.2011 21:13     C:\Users\fixxxxxi\AppData\Local\Temp\4098941.od --------- 134  
 07.03.2011 21:13     C:\Users\fixxxxxi\AppData\Local\Temp\CVR8B7D.tmp.cvr --------- 0  
 07.03.2011 20:48     C:\Users\fixxxxxi\AppData\Local\Temp\4.html --------- 0  
 07.03.2011 20:21     C:\Users\fixxxxxi\AppData\Local\Temp\983243.od --------- 134  
 07.03.2011 20:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVRCB.tmp.cvr --------- 0  
 07.03.2011 20:06     C:\Users\fixxxxxi\AppData\Local\Temp\divB460.tmp --------- 0  
 07.03.2011 16:01     C:\Users\fixxxxxi\AppData\Local\Temp\14198805.od --------- 134  
 07.03.2011 16:01     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA805.tmp.cvr --------- 0  
 07.03.2011 15:17     C:\Users\fixxxxxi\AppData\Local\Temp\11589454.od --------- 134  
 07.03.2011 15:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD74E.tmp.cvr --------- 0  
 07.03.2011 14:46     C:\Users\fixxxxxi\AppData\Local\Temp\9710204.od --------- 134  
 07.03.2011 14:46     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2A7C.tmp.cvr --------- 0  
 07.03.2011 13:47     C:\Users\fixxxxxi\AppData\Local\Temp\2040.html --------- 0  
 07.03.2011 13:47     C:\Users\fixxxxxi\AppData\Local\Temp\ESE Banlist _ Bannliste  .ÿ ¯ ÿNews.htm --------- 0  
 07.03.2011 12:53     C:\Users\fixxxxxi\AppData\Local\Temp\statistik.html --------- 0  
 07.03.2011 12:19     C:\Users\fixxxxxi\AppData\Local\Temp\881390.od --------- 134  
 07.03.2011 12:19     C:\Users\fixxxxxi\AppData\Local\Temp\CVR72EE.tmp.cvr --------- 0  
 07.03.2011 12:17     C:\Users\fixxxxxi\AppData\Local\Temp\43A5.tmp --------- 0  
 07.03.2011 12:06     C:\Users\fixxxxxi\AppData\Local\Temp\divB559.tmp --------- 0  
 06.03.2011 21:20     C:\Users\fixxxxxi\AppData\Local\Temp\212878.od --------- 134  
 06.03.2011 21:20     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3F8E.tmp.cvr --------- 0  
 06.03.2011 21:17     C:\Users\fixxxxxi\AppData\Local\Temp\div8FC0.tmp --------- 0  
 06.03.2011 09:55     C:\Users\fixxxxxi\AppData\Local\Temp\709196.od --------- 134  
 06.03.2011 09:55     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD24C.tmp --------- 0  
 06.03.2011 09:44     C:\Users\fixxxxxi\AppData\Local\Temp\divD430.tmp --------- 0  
 06.03.2011 00:15     C:\Users\fixxxxxi\AppData\Local\Temp\8657993.od --------- 134  
 06.03.2011 00:15     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1C49.tmp.cvr --------- 0  
 05.03.2011 22:29     C:\Users\fixxxxxi\AppData\Local\Temp\2254432.od --------- 134  
 05.03.2011 22:29     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6660.tmp --------- 0  
 05.03.2011 21:52     C:\Users\fixxxxxi\AppData\Local\Temp\div9943.tmp --------- 0  
 05.03.2011 11:46     C:\Users\fixxxxxi\AppData\Local\Temp\divBBDF.tmp --------- 0  
 05.03.2011 11:05     C:\Users\fixxxxxi\AppData\Local\Temp\1239864.od --------- 134  
 05.03.2011 11:05     C:\Users\fixxxxxi\AppData\Local\Temp\CVREB38.tmp.cvr --------- 0  
 05.03.2011 02:37     C:\Users\fixxxxxi\AppData\Local\Temp\7009436.od --------- 134  
 05.03.2011 02:37     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF48D.tmp.cvr --------- 0  
 05.03.2011 02:37     C:\Users\fixxxxxi\AppData\Local\Temp\7009171.od --------- 134  
 05.03.2011 02:37     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF393.tmp.cvr --------- 0  
 05.03.2011 02:29     C:\Users\fixxxxxi\AppData\Local\Temp\6545084.od --------- 134  
 05.03.2011 02:29     C:\Users\fixxxxxi\AppData\Local\Temp\CVRDEBC.tmp.cvr --------- 0  
 05.03.2011 02:29     C:\Users\fixxxxxi\AppData\Local\Temp\6544912.od --------- 134  
 05.03.2011 02:29     C:\Users\fixxxxxi\AppData\Local\Temp\CVRDE10.tmp.cvr --------- 0  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\6477582.od --------- 134  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD6FF.tmp.cvr --------- 0  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\6477379.od --------- 134  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD643.tmp.cvr --------- 0  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\6440204.od --------- 134  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\CVR450C.tmp.cvr --------- 0  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\6440033.od --------- 134  
 05.03.2011 02:28     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4461.tmp.cvr --------- 0  
 05.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\6350270.od --------- 134  
 05.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE5BE.tmp.cvr --------- 0  
 05.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\6349786.od --------- 134  
 05.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE3DA.tmp.cvr --------- 0  
 05.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\6338351.od --------- 134  
 05.03.2011 02:26     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB72F.tmp.cvr --------- 0  
 05.03.2011 00:51     C:\Users\fixxxxxi\AppData\Local\Temp\615517.od --------- 134  
 05.03.2011 00:51     C:\Users\fixxxxxi\AppData\Local\Temp\CVR645D.tmp --------- 0  
 05.03.2011 00:41     C:\Users\fixxxxxi\AppData\Local\Temp\div8362.tmp --------- 0  
 04.03.2011 11:31     C:\Users\fixxxxxi\AppData\Local\Temp\524958.od --------- 134  
 04.03.2011 11:31     C:\Users\fixxxxxi\AppData\Local\Temp\CVR29E.tmp.cvr --------- 0  
 04.03.2011 11:23     C:\Users\fixxxxxi\AppData\Local\Temp\div88CE.tmp --------- 0  
 03.03.2011 22:00     C:\Users\fixxxxxi\AppData\Local\Temp\4075947.od --------- 134  
 03.03.2011 22:00     C:\Users\fixxxxxi\AppData\Local\Temp\CVR31AB.tmp.cvr --------- 0  
 03.03.2011 20:55     C:\Users\fixxxxxi\AppData\Local\Temp\203019.od --------- 134  
 03.03.2011 20:55     C:\Users\fixxxxxi\AppData\Local\Temp\CVR18FC.tmp.cvr --------- 0  
 03.03.2011 20:52     C:\Users\fixxxxxi\AppData\Local\Temp\div8D42.tmp --------- 0  
 03.03.2011 07:01     C:\Users\fixxxxxi\AppData\Local\Temp\niy5wm5p.lqv --------- 5546  
 03.03.2011 06:57     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-17 --------- 5705268  
 03.03.2011 06:53     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-16 --------- 5705268  
 03.03.2011 06:52     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-15 --------- 5830996  
 03.03.2011 06:50     C:\Users\fixxxxxi\AppData\Local\Temp\5bxoe2kt.nml --------- 5546  
 03.03.2011 06:34     C:\Users\fixxxxxi\AppData\Local\Temp\830237.od --------- 134  
 03.03.2011 06:34     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAB1D.tmp.cvr --------- 0  
 03.03.2011 06:21     C:\Users\fixxxxxi\AppData\Local\Temp\divDF75.tmp --------- 0  
 02.03.2011 20:32     C:\Users\fixxxxxi\AppData\Local\Temp\kji32wzo.bep --------- 5546  
 02.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\mbmkxymd.jzq --------- 6802  
 02.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\eww52dll.u1v --------- 6357  
 02.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\2oy1a223.kof --------- 5328  
 02.03.2011 18:16     C:\Users\fixxxxxi\AppData\Local\Temp\531635.od --------- 134  
 02.03.2011 18:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1CB3.tmp.cvr --------- 0  
 02.03.2011 18:14     C:\Users\fixxxxxi\AppData\Local\Temp\407459.od --------- 134  
 02.03.2011 18:14     C:\Users\fixxxxxi\AppData\Local\Temp\CVR37A3.tmp.cvr --------- 0  
 02.03.2011 18:07     C:\Users\fixxxxxi\AppData\Local\Temp\div8361.tmp --------- 0  
 02.03.2011 17:27     C:\Users\fixxxxxi\AppData\Local\Temp\22444019.od --------- 134  
 02.03.2011 17:27     C:\Users\fixxxxxi\AppData\Local\Temp\CVR77F3.tmp.cvr --------- 0  
 02.03.2011 17:27     C:\Users\fixxxxxi\AppData\Local\Temp\22441352.od --------- 134  
 02.03.2011 17:27     C:\Users\fixxxxxi\AppData\Local\Temp\CVR6D88.tmp.cvr --------- 0  
 02.03.2011 15:35     C:\Users\fixxxxxi\AppData\Local\Temp\15732264.od --------- 134  
 02.03.2011 15:35     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE28.tmp.cvr --------- 0  
 02.03.2011 14:43     C:\Users\fixxxxxi\AppData\Local\Temp\24huyfdn.bmp --------- 765654  
 02.03.2011 14:41     C:\Users\fixxxxxi\AppData\Local\Temp\xumfy2mi.bmp --------- 946454  
 02.03.2011 13:02     C:\Users\fixxxxxi\AppData\Local\Temp\6506380.od --------- 134  
 02.03.2011 13:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR478C.tmp.cvr --------- 0  
 02.03.2011 13:02     C:\Users\fixxxxxi\AppData\Local\Temp\6506068.od --------- 134  
 02.03.2011 13:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVR4654.tmp.cvr --------- 0  
 02.03.2011 12:57     C:\Users\fixxxxxi\AppData\Local\Temp\6202209.od --------- 134  
 02.03.2011 12:57     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA361.tmp.cvr --------- 0  
 02.03.2011 12:57     C:\Users\fixxxxxi\AppData\Local\Temp\6202038.od --------- 134  
 02.03.2011 12:57     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA2B6.tmp.cvr --------- 0  
 02.03.2011 12:56     C:\Users\fixxxxxi\AppData\Local\Temp\6176344.od --------- 134  
 02.03.2011 12:56     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3E58.tmp.cvr --------- 0  
 02.03.2011 12:56     C:\Users\fixxxxxi\AppData\Local\Temp\6176173.od --------- 134  
 02.03.2011 12:56     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3DAD.tmp.cvr --------- 0  
 02.03.2011 12:54     C:\Users\fixxxxxi\AppData\Local\Temp\6021482.od --------- 134  
 02.03.2011 12:54     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE16A.tmp.cvr --------- 0  
 02.03.2011 12:54     C:\Users\fixxxxxi\AppData\Local\Temp\6021326.od --------- 134  
 02.03.2011 12:54     C:\Users\fixxxxxi\AppData\Local\Temp\CVRE0CE.tmp.cvr --------- 0  
 02.03.2011 12:53     C:\Users\fixxxxxi\AppData\Local\Temp\6012621.od --------- 134  
 02.03.2011 12:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBECD.tmp.cvr --------- 0  
 02.03.2011 12:53     C:\Users\fixxxxxi\AppData\Local\Temp\6012450.od --------- 134  
 02.03.2011 12:53     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBE22.tmp.cvr --------- 0  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\5942124.od --------- 134  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAB6C.tmp.cvr --------- 0  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\5941953.od --------- 134  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVRAAC1.tmp.cvr --------- 0  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\5910534.od --------- 134  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVR3006.tmp.cvr --------- 0  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\5909068.od --------- 134  
 02.03.2011 12:52     C:\Users\fixxxxxi\AppData\Local\Temp\CVR2A4C.tmp.cvr --------- 0  
 02.03.2011 11:44     C:\Users\fixxxxxi\AppData\Local\Temp\divB28D.tmp --------- 0  
 02.03.2011 11:25     C:\Users\fixxxxxi\AppData\Local\Temp\712253.od --------- 134  
 02.03.2011 11:25     C:\Users\fixxxxxi\AppData\Local\Temp\CVRDE3D.tmp.cvr --------- 0  
 02.03.2011 01:21     C:\Users\fixxxxxi\AppData\Local\Temp\20220334.od --------- 134  
 02.03.2011 01:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVR89AE.tmp.cvr --------- 0  
 02.03.2011 01:21     C:\Users\fixxxxxi\AppData\Local\Temp\20220147.od --------- 134  
 02.03.2011 01:21     C:\Users\fixxxxxi\AppData\Local\Temp\CVR88F3.tmp.cvr --------- 0  
 02.03.2011 01:17     C:\Users\fixxxxxi\AppData\Local\Temp\19970795.od --------- 134  
 02.03.2011 01:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBAEB.tmp.cvr --------- 0  
 02.03.2011 01:17     C:\Users\fixxxxxi\AppData\Local\Temp\19970483.od --------- 134  
 02.03.2011 01:17     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB9B3.tmp.cvr --------- 0  
 02.03.2011 01:16     C:\Users\fixxxxxi\AppData\Local\Temp\19900751.od --------- 134  
 02.03.2011 01:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA94F.tmp.cvr --------- 0  
 02.03.2011 01:16     C:\Users\fixxxxxi\AppData\Local\Temp\19900517.od --------- 134  
 02.03.2011 01:16     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA865.tmp.cvr --------- 0  
 02.03.2011 01:13     C:\Users\fixxxxxi\AppData\Local\Temp\19715843.od --------- 134  
 02.03.2011 01:13     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD703.tmp.cvr --------- 0  
 02.03.2011 01:13     C:\Users\fixxxxxi\AppData\Local\Temp\19715624.od --------- 134  
 02.03.2011 01:13     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD628.tmp.cvr --------- 0  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\19655423.od --------- 134  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVREAFF.tmp.cvr --------- 0  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\19655221.od --------- 134  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVREA35.tmp.cvr --------- 0  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\19638466.od --------- 134  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA8A3.tmp.cvr --------- 0  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\19638263.od --------- 134  
 02.03.2011 01:12     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA7F7.tmp.cvr --------- 0  
 02.03.2011 01:11     C:\Users\fixxxxxi\AppData\Local\Temp\19575223.od --------- 134  
 02.03.2011 01:11     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB1B7.tmp.cvr --------- 0  
 02.03.2011 01:11     C:\Users\fixxxxxi\AppData\Local\Temp\19574958.od --------- 134  
 02.03.2011 01:11     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB0AE.tmp.cvr --------- 0  
 02.03.2011 01:08     C:\Users\fixxxxxi\AppData\Local\Temp\19396852.od --------- 134  
 02.03.2011 01:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF8F4.tmp.cvr --------- 0  
 02.03.2011 01:08     C:\Users\fixxxxxi\AppData\Local\Temp\19396618.od --------- 134  
 02.03.2011 01:08     C:\Users\fixxxxxi\AppData\Local\Temp\CVRF80A.tmp.cvr --------- 0  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\19120324.od --------- 134  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC0B5.tmp.cvr --------- 0  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\19120137.od --------- 134  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\CVRC009.tmp.cvr --------- 0  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\19112493.od --------- 134  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA22D.tmp.cvr --------- 0  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\19112275.od --------- 134  
 02.03.2011 01:03     C:\Users\fixxxxxi\AppData\Local\Temp\CVRA153.tmp.cvr --------- 0  
 02.03.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\19061060.od --------- 134  
 02.03.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD944.tmp.cvr --------- 0  
 02.03.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\19060841.od --------- 134  
 02.03.2011 01:02     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD869.tmp.cvr --------- 0  
 02.03.2011 00:59     C:\Users\fixxxxxi\AppData\Local\Temp\18864686.od --------- 134  
 02.03.2011 00:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVRDA1E.tmp.cvr --------- 0  
 02.03.2011 00:59     C:\Users\fixxxxxi\AppData\Local\Temp\18864498.od --------- 134  
 02.03.2011 00:59     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD972.tmp.cvr --------- 0  
 02.03.2011 00:58     C:\Users\fixxxxxi\AppData\Local\Temp\18791942.od --------- 134  
 02.03.2011 00:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBDF7.tmp.cvr --------- 0  
 02.03.2011 00:58     C:\Users\fixxxxxi\AppData\Local\Temp\18791443.od --------- 134  
 02.03.2011 00:58     C:\Users\fixxxxxi\AppData\Local\Temp\CVRBC13.tmp.cvr --------- 0  
 02.03.2011 00:36     C:\Users\fixxxxxi\AppData\Local\Temp\17521782.od --------- 134  
 02.03.2011 00:36     C:\Users\fixxxxxi\AppData\Local\Temp\CVR5C67.tmp.cvr --------- 0  
 02.03.2011 00:36     C:\Users\fixxxxxi\AppData\Local\Temp\17520097.od --------- 134  
 02.03.2011 00:36     C:\Users\fixxxxxi\AppData\Local\Temp\CVR55D2.tmp.cvr --------- 0  
 01.03.2011 23:00     C:\Users\fixxxxxi\AppData\Local\Temp\11734301.od --------- 134  
 01.03.2011 23:00     C:\Users\fixxxxxi\AppData\Local\Temp\CVRD1D.tmp.cvr --------- 0  
 01.03.2011 22:14     C:\Users\fixxxxxi\AppData\Local\Temp\8983816.od --------- 134  
 01.03.2011 22:14     C:\Users\fixxxxxi\AppData\Local\Temp\CVR1508.tmp.cvr --------- 0  
 01.03.2011 21:36     C:\Users\fixxxxxi\AppData\Local\Temp\6687544.od --------- 134  
 01.03.2011 21:36     C:\Users\fixxxxxi\AppData\Local\Temp\CVRB38.tmp.cvr --------- 0  
 01.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-14 --------- 2696640  
 01.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-13 --------- 2700492  
 01.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-12 --------- 2700492  
 01.03.2011 20:29     C:\Users\fixxxxxi\AppData\Local\Temp\clipboardcache-11 --------- 2700492  
----------------------------------------

 
C:\Program Files

 02.06.2011 11:53     C:\Program Files\CCleaner --------- 0  
 01.06.2011 12:38     C:\Program Files\Common Files --------- 4096  
 01.06.2011 12:38     C:\Program Files\Defraggler --------- 4096  
 01.06.2011 12:38     C:\Program Files\DivX --------- 0  
 01.06.2011 12:38     C:\Program Files\DIFX --------- 0  
 01.06.2011 12:38     C:\Program Files\EslWire --------- 0  
 01.06.2011 12:38     C:\Program Files\Logitech --------- 4096  
 01.06.2011 12:38     C:\Program Files\Internet Explorer --------- 4096  
 01.06.2011 12:38     C:\Program Files\Microsoft Games --------- 4096  
 01.06.2011 12:38     C:\Program Files\Realtek --------- 0  
 01.06.2011 12:38     C:\Program Files\TeamSpeak 3 Client --------- 8192  
 01.06.2011 12:38     C:\Program Files\Windows Sidebar --------- 4096  
 01.06.2011 12:38     C:\Program Files\WinRAR --------- 4096  
 30.04.2011 01:08     C:\Program Files\Windows Mail --------- 4096  
 30.04.2011 01:08     C:\Program Files\DVD Maker --------- 4096  
 30.04.2011 01:08     C:\Program Files\Windows Portable Devices --------- 0  
 30.04.2011 01:08     C:\Program Files\Windows Media Player --------- 4096  
 30.04.2011 01:08     C:\Program Files\Windows Photo Viewer --------- 4096  
 30.04.2011 01:08     C:\Program Files\Windows Defender --------- 4096  
 25.12.2010 00:52     C:\Program Files\ATI Technologies --------- 0  
 19.06.2010 19:00     C:\Program Files\VMLite --------- 0  
 20.01.2010 01:40     C:\Program Files\Canon --------- 0  
 20.01.2010 01:39     C:\Program Files\CanonBJ --------- 0  
 18.01.2010 23:08     C:\Program Files\Microsoft Office --------- 0  
 18.01.2010 22:55     C:\Program Files\ATI --------- 0  
 18.01.2010 22:31     C:\Program Files\Windows NT --------- 4096  
 18.01.2010 22:31     C:\Program Files\Gemeinsame Dateien --------- 0  
 14.07.2009 07:32     C:\Program Files\Reference Assemblies --------- 0  
 14.07.2009 07:32     C:\Program Files\MSBuild --------- 0  
 14.07.2009 07:09     C:\Program Files\Uninstall Information --------- 0  
 14.07.2009 06:54     C:\Program Files\desktop.ini --------- 174  
----------------------------------------

 
C:\ProgramData\.. 

fixxxxxi    
Public    
Mcx1-FIXXXXXI-PC    
Default    
All Users    
Default User    
desktop.ini    
----------------------------------------

 
C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
::1 localhost
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com:443
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 192.150.18.108
127.0.0.1 adobeereg.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate.adobe.com

----------------------------------------

 

Abbildname                     PID Sitzungsname       Sitz.-Nr. Speichernutzung
========================= ======== ================ =========== ===============
System Idle Process              0 Services                   0            24 K
System                           4 Services                   0         1.660 K
smss.exe                       356 Services                   0         1.176 K
csrss.exe                      508 Services                   0         4.824 K
wininit.exe                    572 Services                   0         4.948 K
csrss.exe                      600 Console                    1         8.024 K
winlogon.exe                   652 Console                    1         7.708 K
services.exe                   700 Services                   0         9.740 K
lsass.exe                      708 Services                   0        13.740 K
lsm.exe                        720 Services                   0         6.304 K
svchost.exe                    828 Services                   0        10.628 K
svchost.exe                    916 Services                   0         8.844 K
atiesrxx.exe                   992 Services                   0         4.596 K
svchost.exe                    384 Services                   0        24.952 K
svchost.exe                    512 Services                   0       142.424 K
svchost.exe                   1092 Services                   0        42.772 K
svchost.exe                   1220 Services                   0        17.872 K
WUDFHost.exe                  1316 Services                   0         9.488 K
atieclxx.exe                  1412 Console                    1         6.216 K
WUDFHost.exe                  1508 Services                   0         8.152 K
svchost.exe                   1572 Services                   0        19.048 K
spoolsv.exe                   1720 Services                   0        14.264 K
svchost.exe                   1756 Services                   0        23.740 K
aavus.exe                     1900 Services                   0         5.172 K
taskhost.exe                  1940 Console                    1        15.268 K
dwm.exe                       1452 Console                    1        29.000 K
explorer.exe                  1800 Console                    1        64.508 K
svchost.exe                   1620 Services                   0        14.208 K
avp.exe                       2076 Services                   0       157.880 K
svchost.exe                   2244 Services                   0        20.644 K
ijplmsvc.exe                  2308 Services                   0         3.736 K
svchost.exe                   2352 Services                   0         5.028 K
LVPrcSrv.exe                  2428 Services                   0         6.244 K
LVPrS64H.exe                  2464 Services                   0         4.400 K
MDM.EXE                       2504 Services                   0         5.548 K
PassThruSvr.exe               2552 Services                   0         3.296 K
svchost.exe                   2664 Services                   0        16.936 K
TeamViewer_Service.exe        2756 Services                   0         3.760 K
VMLiteService.exe             2804 Services                   0         6.304 K
WLIDSVC.EXE                   3008 Services                   0        15.132 K
RAVCpl64.exe                  3044 Console                    1        10.816 K
LGDevAgt.exe                  2348 Console                    1         7.656 K
LCDMon.exe                    2592 Console                    1        14.628 K
LGDCore.exe                   2956 Console                    1        43.556 K
ICQ.exe                       1428 Console                    1        22.880 K
G35.exe                       1516 Console                    1        20.088 K
LVCOMSX.EXE                    848 Console                    1         5.712 K
avp.exe                       1376 Console                    1         5.876 K
mbamgui.exe                   1076 Console                    1         7.480 K
KHALMNPR.exe                  1984 Console                    1        12.172 K
MOM.exe                       3268 Console                    1         6.196 K
SetPointII.exe                3664 Console                    1        13.800 K
WLIDSVCM.EXE                  3860 Services                   0         3.736 K
wmplayer.exe                  3952 Console                    1        46.996 K
CCC.exe                       3444 Console                    1        10.136 K
taskhost.exe                  3656 Services                   0        13.084 K
SearchIndexer.exe             4708 Services                   0        77.404 K
svchost.exe                   3236 Services                   0        29.612 K
WUDFHost.exe                  5036 Services                   0         6.428 K
svchost.exe                   4960 Services                   0         5.648 K
wmpnetwk.exe                  2532 Services                   0         8.636 K
SearchProtocolHost.exe        1392 Services                   0        10.792 K
svchost.exe                   5216 Services                   0        16.212 K
dllhost.exe                   5936 Services                   0         7.348 K
GoogleUpdate.exe              4776 Services                   0         2.608 K
mbamservice.exe               4844 Services                   0        45.072 K
NASvc.exe                     5592 Services                   0         5.860 K
firefox.exe                   4652 Console                    1       178.608 K
OUTLOOK.EXE                   2900 Console                    1       102.328 K
OTL.exe                       2788 Console                    1        23.316 K
audiodg.exe                   4108 Services                   0        15.580 K
cmd.exe                       2912 Console                    1         4.004 K
conhost.exe                    592 Console                    1         5.660 K
SearchFilterHost.exe          5724 Services                   0        16.792 K
dllhost.exe                   5484 Console                    1         6.100 K
tasklist.exe                  5452 Console                    1         6.188 K
WmiPrvSE.exe                  6056 Services                   0         6.832 K

 
***** Ende des Scans 02.06.2011 um 11:56:35,66 ***

fixxxxxi · 02.06.2011, 11:07

ccleaner - install.txt

Code:

ATTFilter

AAVUpdateManager	Akademische Arbeitsgemeinschaft	07.04.2011	14,5MB	12.00.0000
AC3Filter (remove only)		11.12.2010		
Adobe AIR	Adobe Systems Inc.	25.03.2011		2.5.1.17730
Adobe Flash Player 10 ActiveX	Adobe Systems Incorporated	13.05.2010		10.0.45.2
Adobe Flash Player 10 Plugin	Adobe Systems Incorporated	17.05.2011	6,00MB	10.3.181.14
Adobe Reader 9.3.3 - Deutsch	Adobe Systems Incorporated	09.07.2010	285MB	9.3.3
Agent Ransack Version 1.7.3		06.06.2010		
Akamai NetSession Interface		16.05.2011		
ANNO 1404	Ubisoft	21.03.2010		1.02.0000
ATI Catalyst Install Manager	ATI Technologies, Inc.	23.12.2010	22,4MB	3.0.804.0
Auto Shutdown	Entru	29.10.2010	1,11MB	1.0.0
AVIConverter 5.1.6		12.01.2011		5.1.6
BILD-Steuer 2010	Akademische Arbeitsgemeinschaft Verlag	07.04.2011	231MB	15.13
Call of Duty: Black Ops	Treyarch	21.11.2010		
Call of Duty: Black Ops - Multiplayer	Treyarch	21.11.2010		
Canon MX310 series		19.01.2010		
Canon MX310 series Benutzerregistrierung		19.01.2010		
Canon My Printer		19.01.2010		
CCleaner	Piriform	01.06.2011		3.07
CheckDrive	Abelssoft	03.05.2011	28,2MB	3.0
Counter-Strike	Valve	06.03.2010		
Counter-Strike: Source	Valve	18.01.2010		
Day of Defeat: Source	Valve	09.04.2010		
Defraggler	Piriform	31.03.2011		2.03
DiRT 2	Codemasters	18.01.2010		
DivX-Setup	DivX, LLC	06.04.2011		2.4.1.4
Easy Macro Recorder 3.83	GoldSolution Software, Inc.	26.07.2010		
ESE Account Manager (remove only)		17.01.2010		
ESE Account Manager 2.0.0.4	ESE-Protect	15.05.2011		2.0.0.4
ESL Wire 1.9.2	Turtle Entertainment GmbH	10.01.2011	61,8MB	
EVEREST Ultimate Edition v4.60	Lavalys, Inc.	18.01.2010		4.60
FileZilla Client 3.4.0		08.05.2011		3.4.0
Free YouTube to MP3 Converter version 3.8	DVDVideoSoft Limited.	05.08.2010	32,1MB	
Google Earth	Google	25.05.2011	84,6MB	6.0.3.2197
Half-Life 2: Deathmatch	Valve	11.12.2010		
HijackThis 2.0.2	TrendMicro	18.01.2010		2.0.2
HTC BMP USB Driver	HTC	25.03.2011	0,28MB	1.0.5375
HTC Driver Installer	HTC Corporation	25.03.2011	1,87MB	3.0.0.005
HTC Sync	HTC	25.03.2011	36,4MB	3.0.5511
ICQ7.5	ICQ	29.04.2011		7.5
J2SE Runtime Environment 5.0 Update 17	Sun Microsystems, Inc.	18.04.2010	146,8MB	1.5.0.170
Java(TM) 6 Update 15	Sun Microsystems, Inc.	31.01.2010	95,0MB	6.0.150
JDownloader	AppWork UG (haftungsbeschränkt)	10.12.2010		
Kaspersky Internet Security 2011	Kaspersky Lab	14.09.2010		11.0.1.400
LiveZilla	LiveZilla GmbH	01.03.2011		
Logitech G35	Logitech	15.03.2010	5,05MB	1.0.152
Logitech GamePanel Software 3.03.133	Logitech Inc.	24.04.2010	17,9MB	3.03.133
Logitech SetPoint 6.0	Logitech	22.06.2010	39,1MB	6.00.68
Logitech Webcam Software	Logitech Inc.	31.03.2010	44,4MB	12.10.1113
Logitech Webcam Software-Treiberpaket	Logitech Inc.	31.03.2010		12.10.1110
MAGIX Video deLuxe 2005 PLUS	MAGIX AG	14.02.2010		4.5.0.76
Malwarebytes' Anti-Malware Version 1.51.0.1200	Malwarebytes Corporation	01.06.2011	13,8MB	1.51.0.1200
Media Player Codec Pack 3.9.6	Media Player Codec Pack	11.12.2010		
Microsoft .NET Framework 4 Client Profile	Microsoft Corporation	26.06.2010	38,8MB	4.0.30319
Microsoft Chart Controls for Microsoft .NET Framework 3.5	Microsoft Corporation	06.04.2010	6,92MB	3.5.0.0
Microsoft Games for Windows - LIVE Redistributable	Microsoft Corporation	05.05.2011	31,3MB	3.5.88.0
Microsoft Games for Windows Marketplace	Microsoft Corporation	05.05.2011	6,04MB	3.5.50.0
Microsoft Office 2007 Primary Interop Assemblies	Microsoft Corporation	10.05.2011	15,1MB	12.0.4518.1014
Microsoft Office Enterprise 2007	Microsoft Corporation	18.01.2010		12.0.6425.1000
Microsoft Office FrontPage 2003	Microsoft Corporation	14.04.2011	367MB	11.0.8173.0
Microsoft Office Live Add-in 1.5	Microsoft Corporation	25.05.2010	0,50MB	2.0.4024.1
Microsoft Silverlight	Microsoft Corporation	21.04.2011	154,1MB	4.0.60310.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053	Microsoft Corporation	18.01.2010	0,25MB	8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable	Microsoft Corporation	25.05.2010	2,69MB	8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64)	Microsoft Corporation	13.01.2011	0,61MB	8.0.59192
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175	Microsoft Corporation	28.04.2011	0,57MB	8.0.51011
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148	Microsoft Corporation	07.04.2010	0,20MB	9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570	Microsoft Corporation	28.04.2011	0,77MB	9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570	Microsoft Corporation	28.04.2011	0,58MB	9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17	Microsoft Corporation	17.01.2010	0,77MB	9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148	Microsoft Corporation	17.01.2010	0,77MB	9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022	Microsoft Corporation	26.09.2010	1,42MB	9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17	Microsoft Corporation	06.04.2010	0,58MB	9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148	Microsoft Corporation	13.01.2011	0,57MB	9.0.30729.4148
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319	Microsoft Corporation	28.04.2011	13,7MB	10.0.30319
Microsoft Visual Studio 2010 Tools for Office Runtime (x64)	Microsoft Corporation	26.10.2010		10.0.30319
Mozilla Firefox 4.0.1 (x86 de)	Mozilla	01.05.2011	30,7MB	4.0.1
MSXML 4.0 SP2 (KB954430)	Microsoft Corporation	15.02.2010	1,28MB	4.20.9870.0
MSXML 4.0 SP2 (KB973688)	Microsoft Corporation	15.02.2010	1,33MB	4.20.9876.0
MSXML 4.0 SP3 Parser	Microsoft Corporation	25.03.2011	1,48MB	4.30.2100.0
MSXML 4.0 SP3 Parser (KB973685)	Microsoft Corporation	25.03.2011	1,53MB	4.30.2107.0
MyFreeCodec		04.08.2010		
Nero BackItUp 10	Nero AG	13.01.2011	109,4MB	5.6.11000.11.100
Nero Burning ROM 10	Nero AG	13.01.2011	167,7MB	10.2.11000.12.100
Nero BurnRights 10	Nero AG	13.01.2011	6,14MB	4.2.10300.0.102
Nero DiscSpeed 10	Nero AG	13.01.2011	7,22MB	6.2.10300.1.100
Nero Express 10	Nero AG	13.01.2011	164,8MB	10.2.11100.12.100
Nero InfoTool 10	Nero AG	13.01.2011	8,07MB	7.2.10300.5.100
Nero Multimedia Suite 10	Nero AG	13.01.2011	1.590MB	10.5.10500
Nero Recode 10	Nero AG	13.01.2011	92,3MB	4.8.10400.3.100
Nero RescueAgent 10	Nero AG	13.01.2011	6,53MB	3.2.10600.7.100
Nero SoundTrax 10	Nero AG	13.01.2011	95,0MB	4.8.10200.1.100
Nero StartSmart 10	Nero AG	13.01.2011	142,6MB	10.2.11100.10.100
Nero Update	Nero AG	13.01.2011	1,44MB	1.0.0018
Nero Vision 10	Nero AG	13.01.2011	223MB	7.2.14700.9.100
Nero WaveEditor 10	Nero AG	13.01.2011	76,4MB	5.8.10400.2.100
NNScript	ESNation	19.06.2010		4.22
Opera 11.10	Opera Software ASA	06.05.2011		11.10.2092
Paragon Partition Manager™ 11 Professional	Paragon Software	13.01.2011	144,8MB	90.00.0003
PDF24 Creator 2.8.5	PDF24.org	21.09.2010		
PIXMA Extended Survey Program		19.01.2010		
PSPad editor	Jan Fiala	25.01.2010		
Realtek High Definition Audio Driver	Realtek Semiconductor Corp.	17.01.2010		6.0.1.5780
SAMSUNG USB Driver for Mobile Phones	SAMSUNG Electronics Co., Ltd.	24.03.2011	21,3MB	1.3.2250.0
ScanRn/ScanRnServer		02.05.2011		
Source SDK Base 2006	Valve	11.12.2010		
Steam	Valve Corporation	17.01.2010	1,49MB	1.0.0.0
Tactical Ops	Infogrames	06.04.2010		
TeamSpeak 2 RC2	Dominating Bytes Design	18.01.2010		2.0.32.60
TeamSpeak 3 Client	TeamSpeak Systems GmbH	17.01.2010		
TeamViewer 5	TeamViewer GmbH	18.01.2010		5.0.7687 
TerraTec Grabby V5.09.0813.00		10.10.2010		5.09.0813.00
Ulead GIF Animator 5	Ulead System	18.01.2010		
Uninstall 1.0.0.1		05.08.2010	10,6MB	
Update Manager B08.1027.1	GIGABYTE	17.01.2010	4,17MB	1.00.0000
Vertus Fluid Mask 3 3.0.2		08.08.2010		3.0.2
VLC media player 1.0.5	VideoLAN Team	06.05.2010		1.0.5
VMLite Workstation	VMLite	18.06.2010	60,7MB	3.1.2
Windows Live Essentials	Microsoft Corporation	16.12.2010		15.4.3508.1109
Windows Media Center Add-in for Silverlight	Microsoft Corporation	21.05.2010	0,24MB	4.7.2.0
WinRAR		18.01.2010

fixxxxxi · 02.06.2011, 11:14

OTL.txt

OTL Logfile:
OTL EXTRAS Logfile:

Code:

ATTFilter

OTL logfile created on: 02.06.2011 11:48:58 - Run 1
OTL by OldTimer - Version 3.2.23.0     Folder = C:\Users\fixxxxxi\Desktop
64bit- An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
4,00 Gb Total Physical Memory | 2,01 Gb Available Physical Memory | 50,27% Memory free
8,00 Gb Paging File | 5,72 Gb Available in Paging File | 71,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 48,64 Gb Free Space | 33,21% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 95,87 Gb Free Space | 98,18% Space Free | Partition Type: NTFS
Drive E: | 53,94 Gb Total Space | 20,65 Gb Free Space | 38,28% Space Free | Partition Type: NTFS
 
Computer Name: FIXXXXXI-PC | User Name: fixxxxxi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2011.06.02 11:47:39 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\fixxxxxi\Desktop\OTL.exe
PRC - [2011.05.29 09:11:28 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011.05.29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011.05.02 11:55:26 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011.05.01 16:16:18 | 000,124,216 | ---- | M] (ICQ, LLC.) -- C:\Program Files (x86)\ICQ7.5\ICQ.exe
PRC - [2010.11.20 14:17:56 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
PRC - [2010.09.16 15:06:22 | 000,080,896 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2010.09.16 00:12:16 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
PRC - [2010.05.04 13:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2010.01.12 16:57:44 | 000,185,640 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2009.10.07 01:47:22 | 000,125,464 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
PRC - [2009.06.30 10:50:42 | 001,811,728 | ---- | M] (Logitech(c)) -- C:\Program Files (x86)\Logitech\G35\G35.exe
PRC - [2008.10.24 16:35:44 | 000,128,296 | ---- | M] () -- C:\Program Files (x86)\AAVUpdateManager\aavus.exe
PRC - [2007.04.13 09:20:22 | 000,097,432 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
PRC - [2005.12.09 15:32:18 | 000,225,280 | ---- | M] (Logitech Inc.) -- C:\Windows\SysWOW64\LVCOMSX.EXE
 
 
========== Modules (SafeList) ==========
 
MOD - [2011.06.02 11:47:39 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\fixxxxxi\Desktop\OTL.exe
MOD - [2010.11.20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - [2010.03.03 06:12:12 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010.01.29 23:18:20 | 000,357,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2009.12.07 12:34:22 | 000,426,584 | ---- | M] (VMLite, Inc.) [Auto | Running] -- C:\Program Files\VMLite\VMLite Workstation\VMLiteService.exe -- (VMLiteService)
SRV:64bit: - [2009.10.07 01:47:10 | 000,191,000 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:41:19 | 000,045,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lpdsvc.dll -- (LPDSVC)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011.05.29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.05.17 12:09:15 | 003,275,864 | ---- | M] () [Auto | Running] -- C:/Program Files (x86)/Common Files/Akamai/netsession_win_8832f4b.dll -- (Akamai)
SRV - [2010.11.21 19:00:48 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.09.16 15:06:22 | 000,080,896 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2010.09.16 00:12:16 | 000,352,976 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe -- (AVP)
SRV - [2010.05.04 13:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.01.12 16:57:44 | 000,185,640 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008.10.24 16:35:44 | 000,128,296 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\AAVUpdateManager\aavus.exe -- (AAV UpdateService)
SRV - [2007.04.13 09:20:22 | 000,097,432 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE -- (IJPLMSVC)
SRV - [2005.12.09 15:37:42 | 000,081,920 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- c:\program files (x86)\common files\logitech\lvmvfm\LVPrcSrv.exe -- (LVPrcSrv)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2011.05.29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011.05.22 23:23:55 | 000,053,312 | ---- | M] (microOLAP Technologies LTD) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pssdk42.sys -- (PSSDK42)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.01.04 17:11:16 | 000,016,392 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TFsExDisk.sys -- (TFsExDisk)
DRV:64bit: - [2011.01.03 10:38:36 | 000,177,128 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2011.01.03 10:38:36 | 000,157,160 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV:64bit: - [2011.01.03 10:38:36 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV:64bit: - [2010.12.21 07:55:02 | 000,172,104 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdm.sys -- (sscdmdm)
DRV:64bit: - [2010.12.21 07:55:02 | 000,136,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV:64bit: - [2010.12.21 07:55:02 | 000,019,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV:64bit: - [2010.12.08 12:53:38 | 000,169,656 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\ESLWireACD.sys -- (ESLWireAC)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.09.16 00:12:16 | 000,556,120 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF)
DRV:64bit: - [2010.09.15 10:42:12 | 000,020,552 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dgderdrv.sys -- (dgderdrv)
DRV:64bit: - [2010.06.25 17:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2010.06.09 17:44:00 | 000,011,864 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kl2.sys -- (kl2)
DRV:64bit: - [2010.06.09 17:43:56 | 000,460,888 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (KL1)
DRV:64bit: - [2010.06.07 17:16:24 | 000,025,528 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ESLvnic.sys -- (ESLvnic1)
DRV:64bit: - [2010.05.20 16:26:48 | 000,037,392 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hotcore3.sys -- (hotcore3)
DRV:64bit: - [2010.04.22 19:07:36 | 000,027,736 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6)
DRV:64bit: - [2010.03.22 17:41:37 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2010.03.22 17:41:36 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2010.03.03 06:23:10 | 006,402,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2010.03.03 06:23:10 | 006,402,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010.03.03 05:07:32 | 000,188,928 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010.01.19 01:17:02 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.01.11 11:52:28 | 000,147,560 | ---- | M] (VMLite, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vmlitediskmp.sys -- (vmlitediskmp)
DRV:64bit: - [2009.12.06 13:14:36 | 000,014,936 | ---- | M] (VMLite, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vmlitedrv.sys -- (vmlitedrv)
DRV:64bit: - [2009.12.06 13:05:58 | 000,147,928 | ---- | M] (VMLite, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:64bit: - [2009.11.10 13:53:16 | 000,058,384 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2009.11.10 13:53:00 | 000,056,336 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2009.11.10 11:44:34 | 000,655,424 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\emBDA64.sys -- (USB28xxBGA)
DRV:64bit: - [2009.11.10 11:44:34 | 000,624,448 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\emOEM64.sys -- (USB28xxOEM)
DRV:64bit: - [2009.11.02 20:27:10 | 000,022,544 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt)
DRV:64bit: - [2009.11.01 20:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009.10.27 12:10:18 | 000,030,208 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motmodem.sys -- (motmodem)
DRV:64bit: - [2009.10.07 01:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon)
DRV:64bit: - [2009.10.07 01:45:50 | 000,030,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64)
DRV:64bit: - [2009.07.14 15:36:28 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.19 17:07:44 | 000,020,992 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motccgp.sys -- (motccgp)
DRV:64bit: - [2009.06.10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009.06.10 22:35:53 | 000,051,712 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rtnic64.sys -- (RTL8023x64)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.28 12:07:14 | 000,376,848 | ---- | M] (Logitech) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ladfSBVMamd64.sys -- (LADF_SBVM)
DRV:64bit: - [2009.05.28 12:07:14 | 000,061,712 | ---- | M] (Logitech) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ladfDHP2amd64.sys -- (LADF_DHP2)
DRV:64bit: - [2009.05.08 11:56:26 | 000,053,632 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motodrv.sys -- (MotDev)
DRV:64bit: - [2009.03.02 00:05:32 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009.01.29 17:18:12 | 000,009,216 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\motccgpfl.sys -- (motccgpfl)
DRV:64bit: - [2008.12.25 11:30:52 | 000,190,496 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2008.09.17 15:14:00 | 000,012,744 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Entech64.sys -- (ENTECH64)
DRV:64bit: - [2007.05.11 18:30:50 | 000,050,208 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2007.05.11 17:31:02 | 003,612,704 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) Logitech QuickCam Pro 5000(UVC)
DRV:64bit: - [2007.05.11 17:29:08 | 001,361,952 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvpopf64.sys -- (lvpopf64)
DRV - [2010.11.08 14:51:47 | 000,023,080 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2010.03.04 00:56:04 | 000,002,996 | ---- | M] (Buzz) [Kernel | System | Stopped] -- C:\Windows\SysWOW64\drivers\hwinterface.sys -- (hwinterface)
DRV - [2005.12.09 15:37:42 | 002,400,256 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\LVMVdrv.sys -- (lvmvdrv)
DRV - [2005.12.09 15:37:42 | 000,016,768 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\LVPrcMon.sys -- (LVPrcMon)
DRV - [2005.12.09 15:35:54 | 002,174,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\Lvckap.sys -- (Lvckap)
DRV - [2004.06.22 16:44:50 | 000,005,632 | ---- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\Entech64.sys -- (ENTECH64)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
IE - HKLM\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 82 FE 8B D8 EA 45 CB 01  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://www.fixxxxxi.de/?key=g43t%A71!RT4562Rfsdafj!!sj1We"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: toolbar@alexa.com:1.54
FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.1.1
FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.5
FF - prefs.js..extensions.enabledItems: tabscope@xuldev.org:1.1
FF - prefs.js..extensions.enabledItems: {AE37D527-6604-461c-8102-975CF8053A2F}:0.5.3.1
FF - prefs.js..extensions.enabledItems: guiconfig@slosd.net:1.1.4
FF - prefs.js..extensions.enabledItems: inspector@mozilla.org:2.0.9
FF - prefs.js..extensions.enabledItems: {c4d362ec-1cff-4ca0-9031-99a8fad7995a}:1.14.2011022201
FF - prefs.js..extensions.enabledItems: {446c03e0-2c35-11db-a98b-0800200c9a66}:0.6.1.14
FF - prefs.js..extensions.enabledItems: DeviceDetection@logitech.com:1.20.0.66
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}:5.0.17
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2
FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.1.400
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.1.400
FF - prefs.js..extensions.enabledItems: {e3f6c2cc-d8db-498c-af6c-499fb211db97}:1.10.2
FF - prefs.js..extensions.enabledItems: {c07d1a49-9894-49ff-a594-38960ede8fb9}:3.1.3
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.6.2
FF - prefs.js..extensions.enabledItems: {ec8030f7-c20a-464f-9b0e-13a3a9e97384}:1.0
FF - prefs.js..extensions.enabledItems: {ea2b95c2-9be8-48ed-bdd1-5fcd2ad0ff99}:0.3.8.1
FF - prefs.js..extensions.enabledItems: {e968fc70-8f95-4ab9-9e79-304de2a71ee1}:0.7.3
FF - prefs.js..network.proxy.backup.ftp: "194.29.178.14"
FF - prefs.js..network.proxy.backup.ftp_port: 3127
FF - prefs.js..network.proxy.backup.gopher: "194.29.178.14"
FF - prefs.js..network.proxy.backup.gopher_port: 3127
FF - prefs.js..network.proxy.backup.socks: "194.29.178.14"
FF - prefs.js..network.proxy.backup.socks_port: 3127
FF - prefs.js..network.proxy.backup.ssl: "194.29.178.14"
FF - prefs.js..network.proxy.backup.ssl_port: 3127
FF - prefs.js..network.proxy.ftp: "87.120.139.82"
FF - prefs.js..network.proxy.ftp_port: 8085
FF - prefs.js..network.proxy.gopher: "87.120.139.82"
FF - prefs.js..network.proxy.gopher_port: 8085
FF - prefs.js..network.proxy.http: "87.120.139.82"
FF - prefs.js..network.proxy.http_port: 8085
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "87.120.139.82"
FF - prefs.js..network.proxy.socks_port: 8085
FF - prefs.js..network.proxy.ssl: "87.120.139.82"
FF - prefs.js..network.proxy.ssl_port: 8085
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "chrome://browser-region/locale/region.properties"
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.06.01 12:39:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.06.01 12:39:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\THBExt [2010.09.15 23:46:12 | 000,000,000 | ---D | M]
 
[2010.01.18 22:40:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Extensions
[2011.05.26 09:53:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (Favicon Picker 2) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{446c03e0-2c35-11db-a98b-0800200c9a66}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (BBCode) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{AE37D527-6604-461c-8102-975CF8053A2F}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (Page Speed) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (User Agent Switcher) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (Edit Cookies) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{ea2b95c2-9be8-48ed-bdd1-5fcd2ad0ff99}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] ("Google PageRank Status") -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (Разпознаване на устройство Logitech) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\DeviceDetection@logitech.com
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (gui:config) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\guiconfig@slosd.net
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\inspector@mozilla.org
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (Last tab close button) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\last-tab-close-button@victor.sacharin
[2011.06.01 12:38:38 | 000,000,000 | ---D | M] (Personas) -- C:\Users\fixxxxxi\AppData\Roaming\mozilla\Firefox\Profiles\7o29uhqj.default\extensions\personas@christopher.beard
[2010.05.26 14:07:45 | 000,002,059 | ---- | M] () -- C:\Users\fixxxxxi\AppData\Roaming\Mozilla\Firefox\Profiles\7o29uhqj.default\searchplugins\daemon-search.xml
[2011.05.31 09:45:05 | 000,001,056 | ---- | M] () -- C:\Users\fixxxxxi\AppData\Roaming\Mozilla\Firefox\Profiles\7o29uhqj.default\searchplugins\icqplugin.xml
[2010.06.13 23:54:02 | 000,003,915 | ---- | M] () -- C:\Users\fixxxxxi\AppData\Roaming\Mozilla\Firefox\Profiles\7o29uhqj.default\searchplugins\sweetim.xml
[2011.03.26 13:25:44 | 000,001,490 | ---- | M] () -- C:\Users\fixxxxxi\AppData\Roaming\Mozilla\Firefox\Profiles\7o29uhqj.default\searchplugins\web-search-powered-by-google.xml
[2011.03.23 13:50:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2011.06.01 12:39:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}
[2011.06.01 12:39:04 | 000,000,000 | ---D | M] (Anti-Banner) -- C:\Program Files (x86)\mozilla firefox\extensions\KavAntiBanner@Kaspersky.ru
[2011.06.01 12:39:04 | 000,000,000 | ---D | M] (Modul zur Link-Untersuchung) -- C:\Program Files (x86)\mozilla firefox\extensions\linkfilter@kaspersky.ru
File not found (No name found) -- 
() (No name found) -- C:\USERS\FIXXXXXI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7O29UHQJ.DEFAULT\EXTENSIONS\{C07D1A49-9894-49FF-A594-38960EDE8FB9}.XPI
() (No name found) -- C:\USERS\FIXXXXXI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7O29UHQJ.DEFAULT\EXTENSIONS\{C4D362EC-1CFF-4CA0-9031-99A8FAD7995A}.XPI
() (No name found) -- C:\USERS\FIXXXXXI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7O29UHQJ.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
() (No name found) -- C:\USERS\FIXXXXXI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7O29UHQJ.DEFAULT\EXTENSIONS\{DC572301-7619-498C-A57D-39143191B318}.XPI
() (No name found) -- C:\USERS\FIXXXXXI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7O29UHQJ.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI
() (No name found) -- C:\USERS\FIXXXXXI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7O29UHQJ.DEFAULT\EXTENSIONS\TABSCOPE@XULDEV.ORG.XPI
() (No name found) -- C:\USERS\FIXXXXXI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7O29UHQJ.DEFAULT\EXTENSIONS\TOOLBAR@ALEXA.COM.XPI
[2011.05.02 11:55:26 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.03.23 13:50:47 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.03.23 13:50:47 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011.03.23 13:50:47 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2011.03.23 13:50:47 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.03.23 13:50:47 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.03.23 13:50:47 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2010.04.11 16:30:26 | 000,001,543 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts:        127.0.0.1 3dns-3.adobe.com
O1 - Hosts:        127.0.0.1 3dns-2.adobe.com
O1 - Hosts:        127.0.0.1 activate.adobe.com
O1 - Hosts:        127.0.0.1 activate.adobe.com:443
O1 - Hosts:        127.0.0.1 activate-sea.adobe.com
O1 - Hosts:        127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts:        127.0.0.1 activate.wip3.adobe.com
O1 - Hosts:        127.0.0.1 192.150.18.108
O1 - Hosts:        127.0.0.1 adobeereg.com
O1 - Hosts:        127.0.0.1 adobe-dns.adobe.com
O1 - Hosts:        127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts:        127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts:        127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts:        127.0.0.1 ereg.adobe.com
O1 - Hosts:        127.0.0.1 practivate.adobe.com
O1 - Hosts:        127.0.0.1 wip3.adobe.com
O1 - Hosts:        127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts:        127.0.0.1 activate.adobe.com
O2:64bit: - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\ievkbd.dll (Kaspersky Lab ZAO)
O2:64bit: - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [Launch LCDMon] C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ATICustomerCare] c:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [Logitech G35] C:\Program Files (x86)\Logitech\G35\G35.exe (Logitech(c))
O4 - HKLM..\Run: [LVCOMSX] C:\Windows\SysWOW64\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [ICQ] C:\Program Files (x86)\ICQ7.5\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [ISUSPM Startup]  File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\fixxxxxi\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8:64bit: - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\fixxxxxi\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm ()
O9:64bit: - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O9:64bit: - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files (x86)\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_17-windows-i586.cab (Java Plug-in 1.5.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~2\x64\sbhook64.dll) - C:\PROGRA~2\KASPER~1\KASPER~2\x64\sbhook64.dll (Kaspersky Lab ZAO)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~2\x64\kloehk.dll) - C:\PROGRA~2\KASPER~1\KASPER~2\x64\kloehk.dll (Kaspersky Lab ZAO)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~2\mzvkbd3.dll) - C:\PROGRA~2\KASPER~1\KASPER~2\mzvkbd3.dll (Kaspersky Lab ZAO)
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~2\sbhook.dll) - C:\PROGRA~2\KASPER~1\KASPER~2\sbhook.dll (Kaspersky Lab ZAO)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:64bit: - Winlogon\Notify\klogon: DllName - Reg Error: Key error. - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - Reg Error: Key error. - c:\Program Files\Common Files\logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 0
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.06.02 11:53:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011.06.02 11:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.06.02 11:52:54 | 003,096,424 | ---- | C] (Piriform Ltd) -- C:\Users\fixxxxxi\Desktop\ccsetup307.exe
[2011.06.02 11:47:41 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\fixxxxxi\Desktop\OTL.exe
[2011.06.02 00:09:51 | 000,000,000 | ---D | C] -- C:\Users\fixxxxxi\AppData\Roaming\Malwarebytes
[2011.06.02 00:09:39 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.06.02 00:09:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.06.02 00:09:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.06.02 00:09:35 | 000,025,912 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.06.02 00:09:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.06.01 11:28:06 | 000,000,000 | ---D | C] -- C:\Users\fixxxxxi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 Recovery
[2011.05.25 08:49:27 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2011.05.25 08:49:16 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2011.05.25 08:49:16 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2011.05.22 23:23:55 | 000,053,312 | ---- | C] (microOLAP Technologies LTD) -- C:\Windows\SysNative\drivers\pssdk42.sys
[2011.05.22 23:23:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Paessler
[2011.05.22 23:19:42 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011.05.22 23:19:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PRTG Network Monitor
[2011.05.18 11:23:59 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.05.17 12:09:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Akamai
[2011.05.17 11:58:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kuma Games
[2011.05.16 23:18:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESE
[2011.05.16 08:37:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Logishrd
[2011.05.10 19:31:15 | 005,562,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011.05.10 19:31:13 | 003,967,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011.05.10 19:31:13 | 003,912,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011.05.10 19:30:36 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2011.05.10 19:30:36 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2011.05.09 19:42:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
[2011.05.06 10:47:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
[2011.05.04 22:52:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CheckDrive
[2011.05.04 22:52:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CheckDrive
[2011.05.03 21:34:33 | 000,000,000 | ---D | C] -- C:\Users\fixxxxxi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ScanRn
[2011.05.03 21:34:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Laryon
[9 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2011.06.02 11:55:26 | 000,014,640 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.06.02 11:55:26 | 000,014,640 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.06.02 11:53:28 | 000,000,792 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.06.02 11:52:52 | 003,096,424 | ---- | M] (Piriform Ltd) -- C:\Users\fixxxxxi\Desktop\ccsetup307.exe
[2011.06.02 11:47:39 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\fixxxxxi\Desktop\OTL.exe
[2011.06.02 11:30:38 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs
[2011.06.02 11:30:37 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.06.02 11:30:32 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2011.06.02 00:12:37 | 000,606,105 | ---- | M] () -- C:\Users\fixxxxxi\Desktop\unhide.exe
[2011.06.02 00:09:39 | 000,001,119 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.06.01 10:55:11 | 000,001,114 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.06.01 10:55:11 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.05.31 19:09:03 | 000,986,605 | ---- | M] () -- C:\Users\fixxxxxi\Desktop\dyn_server_image_small.psd
[2011.05.31 19:08:38 | 001,115,144 | ---- | M] () -- C:\Users\fixxxxxi\Desktop\dyn_server_image.psd
[2011.05.29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.05.29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.05.24 00:15:29 | 000,152,233 | ---- | M] () -- C:\Windows\SysNative\drivers\klin.dat
[2011.05.22 23:23:55 | 000,053,312 | ---- | M] (microOLAP Technologies LTD) -- C:\Windows\SysNative\drivers\pssdk42.sys
[2011.05.18 11:23:59 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.05.17 21:47:50 | 000,000,600 | ---- | M] () -- C:\Users\fixxxxxi\AppData\Local\PUTTY.RND
[2011.05.16 23:18:32 | 000,000,563 | ---- | M] () -- C:\Users\Public\Desktop\ESE Account Manager.lnk
[2011.05.15 20:02:23 | 000,001,096 | ---- | M] () -- C:\Users\fixxxxxi\Desktop\Öffentlich.lnk
[2011.05.15 19:32:05 | 001,507,106 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.05.15 19:32:05 | 000,657,438 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2011.05.15 19:32:05 | 000,618,714 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.05.15 19:32:05 | 000,130,810 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2011.05.15 19:32:05 | 000,107,034 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.05.05 21:54:11 | 000,001,285 | ---- | M] () -- C:\Users\fixxxxxi\Desktop\Agent Ransack.lnk
[2011.05.04 22:52:36 | 000,001,859 | ---- | M] () -- C:\Users\fixxxxxi\Desktop\CheckDrive.lnk
[2011.05.03 17:45:50 | 000,421,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[9 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011.06.02 11:53:28 | 000,000,792 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.06.02 11:52:18 | 000,030,259 | ---- | C] () -- C:\Users\fixxxxxi\Desktop\hjtscanlist.bat
[2011.06.02 00:23:42 | 000,002,937 | ---- | C] () -- C:\Users\Public\Desktop\Nero Burning ROM 10.lnk
[2011.06.02 00:23:42 | 000,002,451 | ---- | C] () -- C:\Users\Public\Desktop\Paragon Partition Manager™ 11 Professional.lnk
[2011.06.02 00:23:42 | 000,001,996 | ---- | C] () -- C:\Users\Public\Desktop\Ulead GIF.lnk
[2011.06.02 00:23:42 | 000,001,972 | ---- | C] () -- C:\Users\Public\Desktop\Logitech-Webkamera-Software.lnk
[2011.06.02 00:23:42 | 000,001,949 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.06.02 00:23:42 | 000,001,878 | ---- | C] () -- C:\Users\Public\Desktop\PDF24 Editor.lnk
[2011.06.02 00:23:42 | 000,001,839 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2011.06.02 00:23:42 | 000,001,735 | ---- | C] () -- C:\Users\Public\Desktop\MAGIX TV Videorecorder.lnk
[2011.06.02 00:23:42 | 000,001,172 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer.lnk
[2011.06.02 00:23:42 | 000,001,021 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3.lnk
[2011.06.02 00:23:42 | 000,001,018 | ---- | C] () -- C:\Users\Public\Desktop\LiveZilla Server Admin.lnk
[2011.06.02 00:23:42 | 000,000,835 | ---- | C] () -- C:\Users\Public\Desktop\MAGIX Video deLuxe 2005 PLUS.lnk
[2011.06.02 00:23:41 | 000,001,975 | ---- | C] () -- C:\Users\Public\Desktop\BILD-Steuer 2010.lnk
[2011.06.02 00:23:41 | 000,001,694 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2011.06.02 00:23:41 | 000,001,092 | ---- | C] () -- C:\Users\Public\Desktop\HTC Sync.lnk
[2011.06.02 00:23:41 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2011.06.02 00:23:41 | 000,001,021 | ---- | C] () -- C:\Users\Public\Desktop\LiveZilla Client.lnk
[2011.06.02 00:23:41 | 000,000,563 | ---- | C] () -- C:\Users\Public\Desktop\ESE Account Manager.lnk
[2011.06.02 00:12:39 | 000,606,105 | ---- | C] () -- C:\Users\fixxxxxi\Desktop\unhide.exe
[2011.06.02 00:09:39 | 000,001,119 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.05.31 17:40:10 | 000,986,605 | ---- | C] () -- C:\Users\fixxxxxi\Desktop\dyn_server_image_small.psd
[2011.05.30 12:17:03 | 001,115,144 | ---- | C] () -- C:\Users\fixxxxxi\Desktop\dyn_server_image.psd
[2011.05.15 20:02:23 | 000,001,096 | ---- | C] () -- C:\Users\fixxxxxi\Desktop\Öffentlich.lnk
[2011.05.04 22:52:36 | 000,001,859 | ---- | C] () -- C:\Users\fixxxxxi\Desktop\CheckDrive.lnk
[2011.04.09 20:43:05 | 000,007,613 | ---- | C] () -- C:\Users\fixxxxxi\AppData\Local\Resmon.ResmonCfg
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.01.26 18:23:07 | 000,554,496 | ---- | C] () -- C:\Windows\SysWow64\dvmsg.dll
[2011.01.04 17:10:56 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2011.01.04 17:10:56 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2011.01.04 17:10:56 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2011.01.04 17:10:56 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2010.12.16 16:34:06 | 000,000,036 | ---- | C] () -- C:\Windows\OneProc.dat
[2010.10.11 21:22:46 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2010.09.15 11:24:12 | 000,006,656 | ---- | C] () -- C:\Users\fixxxxxi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.07.29 19:26:22 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.07.23 20:14:46 | 000,000,056 | ---- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2010.07.08 11:37:49 | 000,000,600 | ---- | C] () -- C:\Users\fixxxxxi\AppData\Local\PUTTY.RND
[2010.05.25 22:48:59 | 000,001,456 | ---- | C] () -- C:\Users\fixxxxxi\AppData\Local\Adobe Für Web speichern 11.0 Prefs
[2010.05.24 21:33:00 | 004,670,829 | ---- | C] () -- C:\Windows\SysWow64\libavcodec.dll
[2010.05.24 21:33:00 | 001,529,856 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll
[2010.05.24 21:33:00 | 001,447,921 | ---- | C] () -- C:\Windows\SysWow64\ffmpegmt.dll
[2010.05.24 21:33:00 | 000,877,385 | ---- | C] () -- C:\Windows\SysWow64\ff_x264.dll
[2010.05.24 21:33:00 | 000,810,113 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010.05.24 21:33:00 | 000,336,384 | ---- | C] () -- C:\Windows\SysWow64\ff_libfaad2.dll
[2010.05.24 21:33:00 | 000,324,096 | ---- | C] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll
[2010.05.24 21:33:00 | 000,248,320 | ---- | C] () -- C:\Windows\SysWow64\ff_kernelDeint.dll
[2010.05.24 21:33:00 | 000,216,576 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll
[2010.05.24 21:33:00 | 000,151,552 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll
[2010.05.24 21:33:00 | 000,145,408 | ---- | C] () -- C:\Windows\SysWow64\libmpeg2_ff.dll
[2010.05.24 21:33:00 | 000,139,944 | ---- | C] () -- C:\Windows\SysWow64\libmplayer.dll
[2010.05.24 21:33:00 | 000,121,856 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll
[2010.05.24 21:33:00 | 000,116,736 | ---- | C] () -- C:\Windows\SysWow64\ff_tremor.dll
[2010.05.24 21:33:00 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010.05.24 21:33:00 | 000,100,864 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll
[2010.05.24 21:33:00 | 000,097,792 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll
[2010.05.19 22:59:20 | 000,150,528 | ---- | C] () -- C:\Windows\SysWow64\mkx.dll
[2010.05.19 22:59:10 | 000,109,568 | ---- | C] () -- C:\Windows\SysWow64\avi.dll
[2010.05.19 22:59:02 | 000,141,824 | ---- | C] () -- C:\Windows\SysWow64\mp4.dll
[2010.05.19 22:58:52 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\ogm.dll
[2010.05.19 22:58:24 | 000,113,152 | ---- | C] () -- C:\Windows\SysWow64\dsmux.exe
[2010.05.19 22:58:18 | 000,154,112 | ---- | C] () -- C:\Windows\SysWow64\ts.dll
[2010.05.19 22:58:08 | 000,249,856 | ---- | C] () -- C:\Windows\SysWow64\dxr.dll
[2010.05.19 22:57:42 | 000,097,792 | ---- | C] () -- C:\Windows\SysWow64\avs.dll
[2010.05.19 22:57:38 | 000,137,728 | ---- | C] () -- C:\Windows\SysWow64\mkv2vfr.exe
[2010.05.19 22:57:26 | 000,093,184 | ---- | C] () -- C:\Windows\SysWow64\avss.dll
[2010.05.19 22:57:20 | 000,358,400 | ---- | C] () -- C:\Windows\SysWow64\gdsmux.exe
[2010.05.19 22:55:40 | 000,080,384 | ---- | C] () -- C:\Windows\SysWow64\mkzlib.dll
[2010.05.19 22:55:36 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\mkunicode.dll
[2010.04.16 18:26:00 | 000,000,410 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010.04.04 14:44:45 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI
[2010.03.31 17:13:26 | 000,000,719 | R--- | C] () -- C:\Windows\SysWow64\InstExec.ini
[2010.03.25 03:46:27 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys
[2010.03.04 19:13:30 | 000,122,880 | ---- | C] () -- C:\Windows\UnGins.exe
[2010.02.23 18:15:02 | 000,001,105 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2010.02.20 12:32:00 | 000,000,760 | ---- | C] () -- C:\Users\fixxxxxi\AppData\Roaming\setup_ldm.iss
[2010.02.15 02:07:28 | 000,000,052 | ---- | C] () -- C:\Windows\videodeLuxe.INI
[2010.02.15 01:01:45 | 000,019,968 | ---- | C] () -- C:\Windows\SysWow64\cpuinf32.dll
[2010.02.15 00:54:38 | 000,000,088 | ---- | C] () -- C:\Windows\magix.ini
[2010.02.15 00:54:37 | 000,001,208 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2010.02.01 14:03:42 | 000,000,661 | ---- | C] () -- C:\Windows\wiso.ini
[2010.01.22 00:53:10 | 001,499,556 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010.01.19 01:10:19 | 000,116,736 | ---- | C] () -- C:\Windows\SysWow64\redmonnt.dll
[2010.01.19 01:04:19 | 000,000,206 | ---- | C] () -- C:\Windows\ulead32.ini
[2010.01.18 22:58:41 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010.01.18 22:42:59 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2009.08.11 23:21:26 | 000,087,552 | ---- | C] () -- C:\Windows\SysWow64\ac3config.exe
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.14 01:16:42 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\vr86fmd.dll
[2009.07.14 01:16:42 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\grcauth2.dll
[2009.07.14 01:16:42 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\grcauth1.dll
[2009.07.14 01:16:42 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\clauth2.dll
[2009.07.14 01:16:42 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\clauth1.dll
[2009.07.14 01:16:42 | 000,000,204 | ---- | C] () -- C:\Windows\SysWow64\qzqeiwt.dll
[2009.07.14 01:16:42 | 000,000,100 | ---- | C] () -- C:\Windows\SysWow64\prsgrc.dll
[2009.07.14 01:16:42 | 000,000,072 | ---- | C] () -- C:\Windows\SysWow64\ssprs.dll
[2009.07.14 01:16:42 | 000,000,016 | ---- | C] () -- C:\Windows\SysWow64\ubl9clt.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009.06.07 18:24:04 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2009.05.20 14:04:42 | 000,045,568 | ---- | C] () -- C:\Windows\SysWow64\spdifer_config.exe
[2009.01.11 00:15:44 | 000,159,744 | ---- | C] () -- C:\Windows\SysWow64\mmfinfo.dll
[2008.11.06 17:37:32 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2007.10.13 11:30:20 | 000,000,137 | ---- | C] () -- C:\Windows\SysWow64\Registration.ini
[2007.06.21 08:34:08 | 000,203,328 | R--- | C] () -- C:\Windows\GSetup.exe
[2005.12.09 15:37:42 | 002,400,256 | ---- | C] () -- C:\Windows\SysWow64\drivers\LVMVdrv.sys
[2005.12.09 15:37:42 | 000,016,768 | ---- | C] () -- C:\Windows\SysWow64\drivers\LVPrcMon.sys
[2005.12.09 15:35:54 | 002,174,464 | ---- | C] () -- C:\Windows\SysWow64\drivers\Lvckap.sys
[2003.05.10 00:36:30 | 000,151,744 | ---- | C] () -- C:\Windows\SysWow64\ir32.dll
 
========== LOP Check ==========
 
[2010.09.28 19:09:57 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\.minecraft
[2011.01.14 15:21:59 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Autodesk
[2011.06.01 12:38:41 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Buhl Data Service
[2010.02.26 01:44:30 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Canon
[2010.10.23 21:38:04 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\ClipMagic
[2010.01.19 01:37:18 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\DAEMON Tools Lite
[2010.06.23 18:51:10 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Dexpot
[2010.03.06 13:31:07 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\DMT Software
[2011.01.14 17:09:35 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Dropbox
[2010.05.20 19:28:08 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\DVDVideoSoftIEHelpers
[2011.06.01 12:38:41 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Easy Macro Recorder
[2011.06.01 00:39:55 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\FileZilla
[2010.02.18 20:19:07 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Gadu-Gadu 10
[2010.03.21 19:59:44 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\GARMIN
[2011.06.01 12:38:40 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\gtk-2.0
[2011.03.30 13:22:59 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\HTC
[2011.03.26 12:37:58 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2011.06.02 11:43:51 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\ICQ
[2010.03.16 18:41:27 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Leadertech
[2010.10.11 21:26:01 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\MAGIX
[2011.06.01 12:38:35 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\NoNameScript
[2011.06.01 12:38:31 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Notepad++
[2010.02.27 12:55:36 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Octoshape
[2010.01.19 00:15:37 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Opera
[2011.03.30 13:22:59 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Outlook
[2010.02.24 13:30:39 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\PE Explorer
[2011.04.25 00:32:18 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Samsung
[2010.03.06 13:17:24 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\SQLite Administrator
[2010.03.02 23:46:57 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\TeamViewer
[2010.03.29 17:08:13 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Thinstall
[2011.03.21 16:33:34 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Tobit
[2011.06.01 12:38:30 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\TS3Client
[2010.01.18 23:29:36 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\TuneUp Software
[2010.03.22 17:43:51 | 000,000,000 | ---D | M] -- C:\Users\fixxxxxi\AppData\Roaming\Ubisoft
[2011.03.25 12:58:29 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 357 bytes -> C:\ProgramData\TEMP:9A870F8B

< End of report >

--- --- ---

--- --- ---

Extras.txt

OTL EXTRAS Logfile:

Code:

ATTFilter

OTL Extras logfile created on: 02.06.2011 11:48:58 - Run 1
OTL by OldTimer - Version 3.2.23.0     Folder = C:\Users\fixxxxxi\Desktop
64bit- An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
4,00 Gb Total Physical Memory | 2,01 Gb Available Physical Memory | 50,27% Memory free
8,00 Gb Paging File | 5,72 Gb Available in Paging File | 71,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,48 Gb Total Space | 48,64 Gb Free Space | 33,21% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 95,87 Gb Free Space | 98,18% Space Free | Partition Type: NTFS
Drive E: | 53,94 Gb Total Space | 20,65 Gb Free Space | 38,28% Space Free | Partition Type: NTFS
 
Computer Name: FIXXXXXI-PC | User Name: fixxxxxi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.js [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"UACDisableNotify" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX310_series" = Canon MX310 series
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{29FEDD0D-5E72-4D31-A266-EB8EFA608AF8}" = VMLite Workstation
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{659996B5-9284-EB7D-8F0E-9FA910ADE2B4}" = AMD Drag and Drop Transcoding
"{6CC95B76-D380-46B2-9022-9353938E48BA}" = Logitech GamePanel Software 3.03.133
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{987FE247-4E69-4A2E-A961-D14F901FDBF6}" = Logitech Webcam Software
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{BD430C50-784F-32CD-87E7-A8C47EE6107F}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{D01D10FC-9454-4C51-9A31-34F9FC1EFFCF}" = Logitech G35
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319
"{EEBAEA5A-07C3-22AD-1E2F-7482BE5C1582}" = ATI Catalyst Install Manager
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F61833FE-70D2-06F8-6A53-58BC8DCD0D6C}" = WMV9/VC-1 Video Playback
"{FA16AE79-DEFE-CEC4-9213-0CE361C8D627}" = ccc-utility64
"CanonMyPrinter" = Canon My Printer
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"ESL Wire_is1" = ESL Wire 1.9.2
"lvdrivers_12.10" = Logitech Webcam Software-Treiberpaket
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"SP6" = Logitech SetPoint 6.0
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"WinRAR archiver" = WinRAR
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}" = Messenger Companion
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0513EE35-E0FB-4166-B663-BD1AE3A803DE}" = Anno 1404
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0EDBEB2B-7C8D-42E6-8312-0F84394A3223}" = Windows Media Center Add-in for Silverlight
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{220688FD-4E64-4810-B31A-32C3895DFDFA}_is1" = Auto Shutdown
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java(TM) 6 Update 15
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{3248F0A8-6813-11D6-A77B-00B0D0150170}" = J2SE Runtime Environment 5.0 Update 17
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{38E45772-7CD6-8400-693C-1D268E6D1850}" = ccc-core-static
"{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}" = ANNO 1404
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{41785C66-90F2-40CE-8CB5-1C94BFC97280}" = Microsoft Chart Controls for Microsoft .NET Framework 3.5
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4E25C468-7745-4051-8B37-4A2C6635BA8B}" = Update Manager B08.1027.1
"{50120000-1105-0000-0000-0000000FF1CE}" = Microsoft Office 2007 Primary Interop Assemblies
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{5645FB61-898F-4F59-AF80-52FEF3D63A64}" = HTC Sync
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Internet Security 2011
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6AB57823-3580-4CE0-9CF0-072E2A39460C}" = Catalyst Control Center - Branding
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}" = ICQ7.5
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1" = PDF24 Creator 2.8.5
"{8320F92E-6E12-FB6F-B7A7-2C37D86507C1}" = Catalyst Control Center InstallProxy
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{87788F6B-90DC-3702-E4E2-BAAC54F6DC06}" = Catalyst Control Center Graphics Previews Common
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AF3E926-ED59-11D4-A44B-0000E86D2305}" = Ulead GIF Animator 5
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISE_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0407-1000-0000000FF1CE}_ENTERPRISE_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISE_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90170407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{A35001F0-F1E4-11DD-A38B-005056C00008}" = Paragon Partition Manager™ 11 Professional
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.3 - Deutsch
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B83513EC-2E4D-4621-816D-4CCF397BE702}_is1" = CheckDrive
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C4C91E02-D4E2-481E-BCBA-7D90CC8D43E1}" = LiveZilla
"{C7340571-7773-4A8C-9EBC-4E4243B38C76}" = Microsoft XML Parser
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DF6FE172-006A-4324-AF7F-ACFE4BA290FE}" = AAVUpdateManager
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E7D293C9-732D-4E22-905D-2615FED321A4}" = BILD-Steuer 2010
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"AC3Filter" = AC3Filter (remove only)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agent Ransack_is1" = Agent Ransack Version 1.7.3
"Akamai" = Akamai NetSession Interface
"AVIConverter" = AVIConverter 5.1.6
"Canon MX310 series Benutzerregistrierung" = Canon MX310 series Benutzerregistrierung
"CANONIJPLM100" = PIXMA Extended Survey Program
"DivX Setup.divx.com" = DivX-Setup
"Easy Macro Recorder_is1" = Easy Macro Recorder 3.83
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESE Account Manager" = ESE Account Manager 2.0.0.4
"ESE_Registration" = ESE Account Manager (remove only)
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.60
"FileZilla Client" = FileZilla Client 3.4.0
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.8
"HijackThis" = HijackThis 2.0.2
"InstallShield_{4E25C468-7745-4051-8B37-4A2C6635BA8B}" = Update Manager B08.1027.1
"InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}" = Kaspersky Internet Security 2011
"JDownloader" = JDownloader
"LiveZilla" = LiveZilla
"MAGIX Video deLuxe 2005 PLUS" = MAGIX Video deLuxe 2005 PLUS
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware Version 1.51.0.1200
"Media Player - Codec Pack" = Media Player Codec Pack 3.9.6
"Mozilla Firefox 4.0.1 (x86 de)" = Mozilla Firefox 4.0.1 (x86 de)
"MyFreeCodec" = MyFreeCodec
"Opera 11.10.2092" = Opera 11.10
"PSPad editor_is1" = PSPad editor
"Steam App 10" = Counter-Strike
"Steam App 12840" = DiRT 2
"Steam App 215" = Source SDK Base 2006
"Steam App 240" = Counter-Strike: Source
"Steam App 300" = Day of Defeat: Source
"Steam App 320" = Half-Life 2: Deathmatch
"Steam App 42700" = Call of Duty: Black Ops
"Steam App 42710" = Call of Duty: Black Ops - Multiplayer
"Tactical Ops" = Tactical Ops
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TeamViewer 5" = TeamViewer 5
"TerraTec Grabby" = TerraTec Grabby V5.09.0813.00
"Uninstall_is1" = Uninstall 1.0.0.1
"VertusFluidMask3" = Vertus Fluid Mask 3 3.0.2
"VLC media player" = VLC media player 1.0.5
"WinLiveSuite" = Windows Live Essentials
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"MyFreeCodec" = MyFreeCodec
"NoNameScript" = NNScript
"ScanRn/ScanRnServer" = ScanRn/ScanRnServer
 
========== Last 10 Event Log Errors ==========
 
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
 
< End of report >

--- --- ---

[/CODE]

kira · 02.06.2011, 13:59

erklärungsbedürftige Ausnahmen in die hosts eingetragen, aber ein pro Argument wäre vielleicht von dir hilfreich...Ob es sich um eine nicht ganz legale Aktion handelt?:

Code:

ATTFilter

O1 - Hosts:        127.0.0.1 3dns-3.adobe.com
O1 - Hosts:        127.0.0.1 3dns-2.adobe.com
O1 - Hosts:        127.0.0.1 activate.adobe.com
O1 - Hosts:        127.0.0.1 activate.adobe.com:443
O1 - Hosts:        127.0.0.1 activate-sea.adobe.com
O1 - Hosts:        127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts:        127.0.0.1 activate.wip3.adobe.com
O1 - Hosts:        127.0.0.1 192.150.18.108
O1 - Hosts:        127.0.0.1 adobeereg.com
O1 - Hosts:        127.0.0.1 adobe-dns.adobe.com
O1 - Hosts:        127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts:        127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts:        127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts:        127.0.0.1 ereg.adobe.com
O1 - Hosts:        127.0.0.1 practivate.adobe.com
O1 - Hosts:        127.0.0.1 wip3.adobe.com
O1 - Hosts:        127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts:        127.0.0.1 activate.adobe.com

Ich möchte dich darauf hinweisen, dass wir bei Verwendung von Keygens & Cracks keine Beihilfe leisten wollen! -> Forumregel:- Cracks, Keygens und andere illegale Software

PDM.Trojan.generic - Einige Ordner und Dateien sowie nicht sichtbar

Log-Analyse und Auswertung: PDM.Trojan.generic - Einige Ordner und Dateien sowie nicht sichtbar