Trojaner-Board - OTL-Scan auswerten

Hallo,
könnte jemand bitte diesen OTL-Scan auswerten und schauen, ob irgendetwas verdächtig ist?

Scan:

OTL logfile created on: 30.12.2012 17:40:00 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Benni\Desktop
Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16453)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3,20 Gb Total Physical Memory | 2,47 Gb Available Physical Memory | 77,13% Memory free
6,32 Gb Paging File | 5,55 Gb Available in Paging File | 87,85% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 744,87 Gb Total Space | 669,90 Gb Free Space | 89,94% Space Free | Partition Type: NTFS
Drive D: | 7,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: BM | User Name: Benni | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Benni\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Programme\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation)
PRC - C:\Programme\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Programme\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Programme\CheckPoint\ZAForceField\ISWSVC.exe (Check Point Software Technologies)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhostex.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\dasHost.exe (Microsoft Corporation)
PRC - C:\Windows\DAODx.exe ()

========== Modules (No Company Name) ==========

MOD - C:\Windows\DAODx.exe ()

========== Services (SafeList) ==========

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (nvUpdatusService) -- C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Programme\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (vsmon) -- C:\Programme\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies LTD)
SRV - (IswSvc) -- C:\Programme\CheckPoint\ZAForceField\ISWSVC.exe (Check Point Software Technologies)
SRV - (PrintNotify) -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll (Microsoft Corporation)
SRV - (WSService) -- C:\Windows\System32\WSService.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV - (WMPNetworkSvc) -- C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
SRV - (WiaRpc) -- C:\Windows\System32\wiarpc.dll (Microsoft Corporation)
SRV - (Wcmsvc) -- C:\Windows\System32\wcmsvc.dll (Microsoft Corporation)
SRV - (VaultSvc) -- C:\Windows\System32\vaultsvc.dll (Microsoft Corporation)
SRV - (TimeBroker) -- C:\Windows\System32\TimeBrokerServer.dll (Microsoft Corporation)
SRV - (SystemEventsBroker) -- C:\Windows\System32\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
SRV - (svsvc) -- C:\Windows\System32\svsvc.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (netprofm) -- C:\Windows\System32\netprofmsvc.dll (Microsoft Corporation)
SRV - (NcaSvc) -- C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)
SRV - (NcdAutoSetup) -- C:\Windows\System32\NcdAutoSetup.dll (Microsoft Corporation)
SRV - (LSM) -- C:\Windows\System32\lsm.dll (Microsoft Corporation)
SRV - (KeyIso) -- C:\Windows\System32\keyiso.dll (Microsoft Corporation)
SRV - (fhsvc) -- C:\Windows\System32\fhsvc.dll (Microsoft Corporation)
SRV - (EFS) -- C:\Windows\System32\efssvc.dll (Microsoft Corporation)
SRV - (DsmSvc) -- C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
SRV - (DeviceAssociationService) -- C:\Windows\System32\das.dll (Microsoft Corporation)
SRV - (BrokerInfrastructure) -- C:\Windows\System32\bisrv.dll (Microsoft Corporation)
SRV - (AudioEndpointBuilder) -- C:\Windows\System32\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV - (AllUserInstallAgent) -- C:\Windows\System32\AUInstallAgent.dll (Microsoft Corporation)
SRV - (vmicvss) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmictimesync) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicshutdown) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicrdv) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmickvpexchange) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)
SRV - (vmicheartbeat) -- C:\Windows\System32\icsvc.dll (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (PnkBstrK) -- C:\Windows\System32\Drivers\PnkBstrK.sys ()
DRV - (nvlddmkm) -- C:\Windows\System32\Drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (ISWKL) -- C:\Programme\CheckPoint\ZAForceField\ISWKL.sys (Check Point Software Technologies)
DRV - (Vsdatant) -- C:\Windows\System32\Drivers\vsdatant.sys (Check Point Software Technologies LTD)
DRV - (KLIF) -- C:\Windows\System32\Drivers\klif.sys (Kaspersky Lab)
DRV - (condrv) -- C:\Windows\System32\Drivers\condrv.sys (Microsoft Corporation)
DRV - (acpiex) -- C:\Windows\System32\Drivers\acpiex.sys (Microsoft Corporation)
DRV - (TPM) -- C:\Windows\System32\Drivers\tpm.sys (Microsoft Corporation)
DRV - (dam) -- C:\Windows\System32\Drivers\dam.sys (Microsoft Corporation)
DRV - (LSI_SSS) -- C:\Windows\System32\Drivers\lsi_sss.sys (LSI Corporation)
DRV - (EhStorTcgDrv) -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV - (EhStorClass) -- C:\Windows\System32\Drivers\EhStorClass.sys (Microsoft Corporation)
DRV - (3ware) -- C:\Windows\System32\Drivers\3ware.sys (LSI)
DRV - (USBHUB3) -- C:\Windows\System32\Drivers\USBHUB3.SYS (Microsoft Corporation)
DRV - (VSTXRAID) -- C:\Windows\System32\Drivers\VSTXRAID.SYS (VIA Corporation)
DRV - (USBXHCI) -- C:\Windows\System32\Drivers\USBXHCI.SYS (Microsoft Corporation)
DRV - (UCX01000) -- C:\Windows\System32\Drivers\UCX01000.SYS (Microsoft Corporation)
DRV - (VerifierExt) -- C:\Windows\System32\Drivers\VerifierExt.sys (Microsoft Corporation)
DRV - (UASPStor) -- C:\Windows\System32\Drivers\uaspstor.sys (Microsoft Corporation)
DRV - (storahci) -- C:\Windows\System32\Drivers\storahci.sys (Microsoft Corporation)
DRV - (spaceport) -- C:\Windows\System32\Drivers\spaceport.sys (Microsoft Corporation)
DRV - (GPIOClx0101) -- C:\Windows\System32\Drivers\msgpioclx.sys (Microsoft Corporation)
DRV - (mvumis) -- C:\Windows\System32\Drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV - (sdstor) -- C:\Windows\System32\Drivers\sdstor.sys (Microsoft Corporation)
DRV - (msgpiowin32) -- C:\Windows\System32\Drivers\msgpiowin32.sys (Microsoft Corporation)
DRV - (WFPLWFS) -- C:\Windows\System32\Drivers\wfplwfs.sys (Microsoft Corporation)
DRV - (CLFS) -- C:\Windows\System32\Drivers\clfs.sys (Microsoft Corporation)
DRV - (terminpt) -- C:\Windows\System32\Drivers\terminpt.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\Drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (pdc) -- C:\Windows\System32\Drivers\pdc.sys (Microsoft Corporation)
DRV - (cnghwassist) -- C:\Windows\System32\Drivers\cnghwassist.sys (Microsoft Corporation)
DRV - (WdFilter) -- C:\Windows\System32\Drivers\WdFilter.sys (Microsoft Corporation)
DRV - (vmbus) -- C:\Windows\System32\Drivers\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\Drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\Drivers\storvsc.sys (Microsoft Corporation)
DRV - (WdBoot) -- C:\Windows\System32\Drivers\WdBoot.sys (Microsoft Corporation)
DRV - (BasicDisplay) -- C:\Windows\System32\Drivers\BasicDisplay.sys (Microsoft Corporation)
DRV - (mshidumdf) -- C:\Windows\System32\Drivers\mshidumdf.sys (Microsoft Corporation)
DRV - (HyperVideo) -- C:\Windows\System32\Drivers\HyperVideo.sys (Microsoft Corporation)
DRV - (BasicRender) -- C:\Windows\System32\Drivers\BasicRender.sys (Microsoft Corporation)
DRV - (BthAvrcpTg) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\Drivers\vms3cap.sys (Microsoft Corporation)
DRV - (npsvctrig) -- C:\Windows\System32\Drivers\npsvctrig.sys (Microsoft Corporation)
DRV - (FxPPM) -- C:\Windows\System32\Drivers\fxppm.sys (Microsoft Corporation)
DRV - (kdnic) -- C:\Windows\System32\Drivers\kdnic.sys (Microsoft Corporation)
DRV - (acpitime) -- C:\Windows\System32\Drivers\acpitime.sys (Microsoft Corporation)
DRV - (gencounter) -- C:\Windows\System32\Drivers\vmgencounter.sys (Microsoft Corporation)
DRV - (acpipagr) -- C:\Windows\System32\Drivers\acpipagr.sys (Microsoft Corporation)
DRV - (WpdUpFltr) -- C:\Windows\System32\Drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\Drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (bthhfhid) -- C:\Windows\System32\Drivers\BthhfHid.sys (Microsoft Corporation)
DRV - (hyperkbd) -- C:\Windows\System32\Drivers\hyperkbd.sys (Microsoft Corporation)
DRV - (SerCx) -- C:\Windows\System32\Drivers\SerCx.sys (Microsoft Corporation)
DRV - (SpbCx) -- C:\Windows\System32\Drivers\SpbCx.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\Drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (BthHFEnum) -- C:\Windows\System32\Drivers\bthhfenum.sys (Microsoft Corporation)
DRV - (hidi2c) -- C:\Windows\System32\Drivers\hidi2c.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\Drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (dmvsc) -- C:\Windows\System32\Drivers\dmvsc.sys (Microsoft Corporation)
DRV - (wpcfltr) -- C:\Windows\System32\Drivers\wpcfltr.sys (Microsoft Corporation)
DRV - (NdisImPlatform) -- C:\Windows\System32\Drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV - (MsLldp) -- C:\Windows\System32\Drivers\mslldp.sys (Microsoft Corporation)
DRV - (Ndu) -- C:\Windows\System32\Drivers\Ndu.sys (Microsoft Corporation)
DRV - (NVHDA) -- C:\Windows\System32\Drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (amd_xata) -- C:\Windows\System32\Drivers\amd_xata.sys (Advanced Micro Devices)
DRV - (amd_sata) -- C:\Windows\System32\Drivers\amd_sata.sys (Advanced Micro Devices)
DRV - (usbfilter) -- C:\Windows\System32\Drivers\usbfilter.sys (Advanced Micro Devices)
DRV - (RTL8168) -- C:\Windows\System32\Drivers\Rt630x86.sys (Realtek )

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3862765558-994450306-422521421-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
IE - HKU\S-1-5-21-3862765558-994450306-422521421-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
IE - HKU\S-1-5-21-3862765558-994450306-422521421-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = DE 36 16 9D F8 E4 CD 01 [binary data]
IE - HKU\S-1-5-21-3862765558-994450306-422521421-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3862765558-994450306-422521421-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-3862765558-994450306-422521421-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.2: C:\Program Files\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker [2012.12.28 14:16:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.12.30 17:15:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 16.0.2\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012.12.28 14:00:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2012.12.29 15:56:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Benni\AppData\Roaming\mozilla\Extensions
[2012.12.30 17:15:34 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2012.11.29 09:26:57 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.11.29 10:19:31 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.11.29 10:19:31 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012.11.29 10:19:31 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2012.11.29 10:19:32 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.11.29 10:19:31 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.11.29 10:19:31 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2012.07.26 05:17:20 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (ZoneAlarm Security Engine Registrar) - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Programme\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Programme\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O3 - HKU\S-1-5-21-3862765558-994450306-422521421-1001\..\Toolbar\WebBrowser: (ZoneAlarm Security Engine) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Programme\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
O4 - HKLM..\Run: [ISW] File not found
O4 - HKLM..\Run: [ZoneAlarm] C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1BB68922-8B86-4FAE-A8C6-C0A5305DF178}: DhcpNameServer = 192.168.2.1
O20 - AppInit_DLLs: (C:\PROGRA~1\NVIDIA~1\3DVISI~1\nvStInit.dll) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.07.26 07:52:25 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008.11.15 10:52:50 | 000,161,088 | R--- | M] (Take-Two Interactive Software, Inc.) - D:\Autorun.exe -- [ UDF ]
O32 - AutoRun File - [2008.10.11 18:03:48 | 000,000,054 | R--- | M] () - D:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{97f98269-5124-11e2-af9b-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{97f98269-5124-11e2-af9b-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Autorun.exe -- [2008.11.15 10:52:50 | 000,161,088 | R--- | M] (Take-Two Interactive Software, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012.12.30 17:31:09 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Benni\Desktop\OTL.exe
[2012.12.30 17:14:49 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012.12.30 15:33:46 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\OpenOffice.org
[2012.12.30 15:13:32 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2012.12.30 15:08:43 | 000,000,000 | R--D | C] -- C:\Windows\BrowserChoice
[2012.12.29 22:28:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Canneverbe Limited
[2012.12.29 22:28:51 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Canneverbe Limited
[2012.12.29 16:52:04 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Opera
[2012.12.29 16:52:04 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Opera
[2012.12.29 16:47:45 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2012.12.29 16:06:41 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Malwarebytes
[2012.12.29 16:05:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.12.29 16:05:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.12.29 16:04:53 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012.12.29 16:04:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.12.29 16:04:41 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Programs
[2012.12.29 15:56:35 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Mozilla
[2012.12.29 15:21:34 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Logs
[2012.12.29 15:18:24 | 002,881,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012.12.29 15:18:23 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012.12.29 15:18:23 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2012.12.29 15:18:23 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UXInit.dll
[2012.12.29 15:18:23 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2012.12.29 15:18:23 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012.12.29 15:18:23 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2012.12.29 15:18:22 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012.12.29 15:18:22 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2012.12.29 15:17:20 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2012.12.29 15:12:31 | 002,400,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2012.12.29 15:12:19 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2012.12.29 15:12:01 | 008,854,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\twinui.dll
[2012.12.29 15:11:55 | 003,401,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012.12.29 15:11:03 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2012.12.29 15:11:03 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnathlp.dll
[2012.12.29 15:11:03 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnsvr.exe
[2012.12.29 15:11:03 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnhupnp.dll
[2012.12.29 15:11:03 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnhpast.dll
[2012.12.29 15:11:03 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnlobby.dll
[2012.12.29 15:11:03 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnaddr.dll
[2012.12.29 15:02:08 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012.12.29 15:02:08 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2012.12.29 15:02:08 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012.12.29 15:02:08 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2012.12.29 14:31:38 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012.12.29 08:51:16 | 000,000,000 | ---D | C] -- C:\Program Files\DontSleep
[2012.12.28 21:25:39 | 000,000,000 | ---D | C] -- C:\Program Files\Eieruhr
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\Programme
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2012.12.28 20:30:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2012.12.28 20:27:49 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012.12.28 20:27:24 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012.12.28 20:26:44 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012.12.28 19:57:02 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\PunkBuster
[2012.12.28 19:56:58 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Battlefield 3
[2012.12.28 19:53:36 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\ESN
[2012.12.28 19:53:32 | 000,000,000 | ---D | C] -- C:\Program Files\Battlelog Web Plugins
[2012.12.28 19:52:03 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core
[2012.12.28 19:51:38 | 000,000,000 | -H-D | C] -- C:\Program Files\Common Files\EAInstaller
[2012.12.28 19:51:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
[2012.12.28 19:50:53 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2012.12.28 19:50:53 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2012.12.28 19:50:53 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2012.12.28 19:50:53 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2012.12.28 19:50:53 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2012.12.28 19:50:52 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2012.12.28 19:50:52 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll
[2012.12.28 19:50:52 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2012.12.28 19:50:52 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2012.12.28 19:50:52 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll
[2012.12.28 19:50:51 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2012.12.28 19:50:51 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2012.12.28 19:50:51 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll
[2012.12.28 19:50:51 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2012.12.28 19:50:51 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll
[2012.12.28 19:50:50 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2012.12.28 19:50:50 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2012.12.28 19:50:50 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2012.12.28 19:50:50 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2012.12.28 19:50:50 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2012.12.28 19:50:50 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2012.12.28 19:50:50 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2012.12.28 19:50:50 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2012.12.28 19:50:50 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2012.12.28 19:50:49 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2012.12.28 19:50:49 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2012.12.28 19:50:49 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2012.12.28 19:50:49 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2012.12.28 19:50:49 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2012.12.28 19:50:49 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2012.12.28 19:50:49 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2012.12.28 19:50:49 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2012.12.28 19:50:49 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2012.12.28 19:50:49 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2012.12.28 19:50:49 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2012.12.28 19:50:48 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2012.12.28 19:50:48 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2012.12.28 19:50:48 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2012.12.28 19:50:48 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2012.12.28 19:50:43 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2012.12.28 19:50:43 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2012.12.28 19:50:43 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2012.12.28 19:12:37 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Origin
[2012.12.28 19:12:36 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Origin
[2012.12.28 19:12:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2012.12.28 19:12:27 | 000,000,000 | ---D | C] -- C:\Program Files\Origin Games
[2012.12.28 19:12:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2012.12.28 19:12:19 | 000,000,000 | ---D | C] -- C:\Program Files\Origin
[2012.12.28 18:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\Minieieruhr
[2012.12.28 18:51:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2012.12.28 18:36:41 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2012.12.28 18:36:39 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2012.12.28 18:35:29 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2012.12.28 18:34:19 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2012.12.28 18:32:44 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2012.12.28 18:32:41 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2012.12.28 18:32:21 | 000,000,000 | -HSD | C] -- C:\ProgramData\SecuROM
[2012.12.28 18:31:39 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2012.12.28 18:30:43 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2012.12.28 18:29:53 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2012.12.28 18:29:25 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Games for Windows - LIVE Demos
[2012.12.28 18:29:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\xlive
[2012.12.28 18:29:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
[2012.12.28 18:29:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2012.12.28 18:29:04 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2012.12.28 18:26:44 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2012.12.28 18:26:19 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2012.12.28 18:25:23 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2012.12.28 18:24:19 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2012.12.28 18:24:17 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2012.12.28 18:23:28 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2012.12.28 18:22:14 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2012.12.28 18:21:07 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2012.12.28 18:21:05 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2012.12.28 18:20:16 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2012.12.28 18:19:00 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2012.12.28 18:17:53 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2012.12.28 18:17:51 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2012.12.28 18:17:02 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2012.12.28 18:14:59 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2012.12.28 18:14:57 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2012.12.28 18:13:51 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2012.12.28 18:13:50 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2012.12.28 18:13:35 | 000,000,000 | RH-D | C] -- C:\Users\Benni\AppData\Roaming\SecuROM
[2012.12.28 18:12:59 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2012.12.28 18:11:46 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2012.12.28 18:11:11 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2012.12.28 18:09:28 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2012.12.28 18:07:36 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Diagnostics
[2012.12.28 17:31:39 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2012.12.28 17:31:11 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2012.12.28 17:30:49 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2012.12.28 17:30:21 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2012.12.28 17:30:01 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2012.12.28 17:29:34 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2012.12.28 17:26:48 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Rockstar Games
[2012.12.28 17:22:06 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2012.12.28 17:21:36 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2012.12.28 17:21:35 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2012.12.28 17:21:12 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2012.12.28 17:20:50 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2012.12.28 17:20:21 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2012.12.28 17:20:00 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2012.12.28 17:19:46 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2012.12.28 17:19:31 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2012.12.28 17:11:39 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2012.12.28 17:11:39 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2012.12.28 17:11:39 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2012.12.28 17:11:38 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2012.12.28 16:36:46 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012.12.28 16:36:45 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012.12.28 16:36:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\XPSViewer
[2012.12.28 16:34:48 | 000,778,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2012.12.28 16:34:48 | 000,102,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2012.12.28 16:34:48 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2012.12.28 16:31:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2012.12.28 16:31:51 | 000,000,000 | ---D | C] -- C:\Program Files\Rockstar Games
[2012.12.28 16:22:19 | 000,552,040 | ---- | C] (Realtek ) -- C:\Windows\System32\drivers\Rt630x86.sys
[2012.12.28 16:22:18 | 000,100,896 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\System32\RTNUninst32.dll
[2012.12.28 16:22:14 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012.12.28 16:22:14 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2012.12.28 16:21:28 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2012.12.28 16:21:19 | 000,044,160 | R--- | C] (Advanced Micro Devices) -- C:\Windows\System32\drivers\usbfilter.sys
[2012.12.28 16:21:17 | 000,070,784 | ---- | C] (Advanced Micro Devices) -- C:\Windows\System32\drivers\amd_sata.sys
[2012.12.28 16:21:17 | 000,034,944 | ---- | C] (Advanced Micro Devices) -- C:\Windows\System32\drivers\amd_xata.sys
[2012.12.28 16:21:09 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012.12.28 16:20:34 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2012.12.28 16:18:07 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2012.12.28 16:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2012.12.28 16:01:28 | 000,062,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2012.12.28 16:01:27 | 003,984,744 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2012.12.28 16:01:27 | 002,869,608 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2012.12.28 16:01:27 | 002,557,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2012.12.28 16:01:27 | 000,108,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2012.12.28 16:00:59 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2012.12.28 15:50:41 | 020,335,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2012.12.28 15:50:41 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2012.12.28 15:50:41 | 015,122,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2012.12.28 15:50:41 | 012,603,960 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2012.12.28 15:50:41 | 009,373,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2012.12.28 15:50:41 | 007,819,016 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2012.12.28 15:50:41 | 006,149,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvopencl.dll
[2012.12.28 15:50:41 | 002,606,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2012.12.28 15:50:41 | 002,496,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2012.12.28 15:50:41 | 001,874,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2012.12.28 15:50:41 | 001,011,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll
[2012.12.28 15:50:41 | 000,889,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco32.dll
[2012.12.28 15:50:41 | 000,884,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdagenco3220103.dll
[2012.12.28 15:50:41 | 000,841,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvumdshim.dll
[2012.12.28 15:50:41 | 000,201,136 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvinit.dll
[2012.12.28 15:50:41 | 000,149,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys
[2012.12.28 15:50:41 | 000,028,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdap32.dll
[2012.12.28 15:49:42 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012.12.28 15:45:08 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\fontconfig
[2012.12.28 15:45:05 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\gegl-0.2
[2012.12.28 15:45:05 | 000,000,000 | ---D | C] -- C:\Users\Benni\.gimp-2.8
[2012.12.28 15:24:42 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Macromedia
[2012.12.28 14:56:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2012.12.28 14:34:25 | 000,000,000 | ---D | C] -- C:\Program Files\Autoruns
[2012.12.28 14:33:22 | 000,000,000 | ---D | C] -- C:\Program Files\AIDA
[2012.12.28 14:32:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2012.12.28 14:32:43 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2012.12.28 14:31:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012.12.28 14:31:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012.12.28 14:31:21 | 000,821,736 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2012.12.28 14:31:21 | 000,746,984 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2012.12.28 14:31:21 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2012.12.28 14:31:18 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2012.12.28 14:31:18 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2012.12.28 14:31:18 | 000,093,672 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2012.12.28 14:31:12 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012.12.28 14:27:42 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP
[2012.12.28 14:26:56 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
[2012.12.28 14:26:43 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2012.12.28 14:23:37 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CnPack IDE Wizards
[2012.12.28 14:23:37 | 000,000,000 | ---D | C] -- C:\Program Files\CnPack
[2012.12.28 14:21:27 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
[2012.12.28 14:20:09 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\WinRAR
[2012.12.28 14:20:09 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012.12.28 14:20:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012.12.28 14:19:49 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012.12.28 14:16:58 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\ForceField Shared Files
[2012.12.28 14:16:58 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\CheckPoint
[2012.12.28 14:16:48 | 000,558,936 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\klif.sys
[2012.12.28 14:16:48 | 000,075,096 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\klflt.sys
[2012.12.28 14:16:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2012.12.28 14:16:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
[2012.12.28 14:01:58 | 000,000,000 | ---D | C] -- C:\Program Files\CheckPoint
[2012.12.28 14:01:57 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
[2012.12.28 14:00:55 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\IrfanView
[2012.12.28 14:00:54 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2012.12.28 14:00:02 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2012.12.28 13:57:11 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012.12.28 13:54:12 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Zaun_SDW
[2012.12.28 13:54:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\WinkelSchere
[2012.12.28 13:54:10 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinkwart
[2012.12.28 13:54:10 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2012.12.28 13:54:04 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Jugendweihe
[2012.12.28 13:54:03 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Gemeinsame Videos
[2012.12.28 13:54:02 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Fotos
[2012.12.28 13:52:17 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Brenner
[2012.12.28 13:52:17 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\BFBC2
[2012.12.28 13:51:23 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Battlefield 2
[2012.12.28 13:49:10 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Bad Company 2
[2012.12.28 13:49:09 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Backup
[2012.12.28 13:49:09 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Accounts
[2012.12.28 13:48:14 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\WINDOWS8_ISO_+_KEY
[2012.12.28 13:48:14 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Visual Studio 2010
[2012.12.28 13:47:56 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Solid Works
[2012.12.28 13:47:36 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Software
[2012.12.28 13:47:36 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Shaders
[2012.12.28 13:47:30 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\SDW
[2012.12.28 13:47:26 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Schule
[2012.12.28 13:47:26 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Rockstar Games
[2012.12.28 13:47:07 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\My Games
[2012.12.28 13:47:07 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Matheolympiade
[2012.12.28 13:47:07 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Hitman Blood Money
[2012.12.28 13:47:07 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\EreihenVB
[2012.12.28 13:47:07 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\E-Reihe
[2012.12.28 13:47:04 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\Delphi
[2012.12.28 13:47:04 | 000,000,000 | ---D | C] -- C:\Users\Benni\Documents\CnWizards
[2012.12.28 13:45:28 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Mozilla
[2012.12.28 13:45:19 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012.12.28 13:45:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012.12.28 13:41:29 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Macromedia
[2012.12.28 13:39:47 | 000,000,000 | R--D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012.12.28 13:39:47 | 000,000,000 | R--D | C] -- C:\Users\Benni\Searches
[2012.12.28 13:39:47 | 000,000,000 | R--D | C] -- C:\Users\Benni\Contacts
[2012.12.28 13:39:47 | 000,000,000 | R--D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012.12.28 13:39:45 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Adobe
[2012.12.28 13:39:25 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\VirtualStore
[2012.12.28 13:39:22 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache
[2012.12.28 13:39:22 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Packages
[2012.12.28 13:39:19 | 000,000,000 | --SD | C] -- C:\Users\Benni\AppData\Roaming\Microsoft
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Videos
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Saved Games
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Pictures
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Music
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Links
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Favorites
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Downloads
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Documents
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\Desktop
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012.12.28 13:39:19 | 000,000,000 | R--D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Vorlagen
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\AppData\Local\Verlauf
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\AppData\Local\Temporary Internet Files
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Startmenü
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\SendTo
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Recent
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Netzwerkumgebung
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Lokale Einstellungen
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Documents\Eigene Videos
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Documents\Eigene Musik
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Eigene Dateien
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Documents\Eigene Bilder
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Druckumgebung
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Cookies
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\AppData\Local\Anwendungsdaten
[2012.12.28 13:39:19 | 000,000,000 | -HSD | C] -- C:\Users\Benni\Anwendungsdaten
[2012.12.28 13:39:19 | 000,000,000 | -H-D | C] -- C:\Users\Benni\AppData
[2012.12.28 13:39:19 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Temp
[2012.12.28 13:39:19 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Local\Microsoft
[2012.12.28 13:39:19 | 000,000,000 | ---D | C] -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012.12.28 13:39:11 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012.12.28 13:37:19 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2012.11.30 22:43:52 | 000,438,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvStreaming.exe

========== Files - Modified Within 30 Days ==========

[2012.12.30 17:31:10 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Benni\Desktop\OTL.exe
[2012.12.30 17:15:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.12.30 16:48:41 | 000,139,048 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012.12.30 16:48:15 | 000,282,296 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012.12.30 15:49:57 | 000,138,056 | ---- | M] () -- C:\Users\Benni\AppData\Roaming\PnkBstrK.sys
[2012.12.30 15:49:36 | 002,434,856 | ---- | M] () -- C:\Windows\System32\pbsvc_bc2.exe
[2012.12.30 15:17:07 | 000,751,892 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2012.12.30 15:17:07 | 000,710,046 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.12.30 15:17:07 | 000,155,620 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2012.12.30 15:17:07 | 000,132,416 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.12.30 15:12:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.12.30 15:09:48 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2012.12.30 15:09:45 | 2746,228,736 | -HS- | M] () -- C:\hiberfil.sys
[2012.12.29 22:41:47 | 000,280,904 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012.12.29 19:13:44 | 000,001,795 | ---- | M] () -- C:\Users\Benni\Desktop\LaunchGTAIV - Verknüpfung.lnk
[2012.12.29 16:51:53 | 000,001,775 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2012.12.28 22:09:55 | 095,023,320 | ---- | M] () -- C:\ProgramData\23lldnur.pad
[2012.12.28 22:07:24 | 000,002,890 | ---- | M] () -- C:\ProgramData\dsgsdgdsgdsgw.js
[2012.12.28 20:29:12 | 000,052,435 | ---- | M] () -- C:\Windows\System32\license.rtf
[2012.12.28 19:12:30 | 000,000,937 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
[2012.12.28 18:11:46 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2012.12.28 16:19:34 | 000,016,649 | ---- | M] () -- C:\Windows\Ascd_tmp.ini
[2012.12.28 16:19:25 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
[2012.12.28 15:06:22 | 000,000,569 | -H-- | M] () -- C:\Windows\System32\BTImages.dat
[2012.12.28 14:31:13 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2012.12.28 14:31:13 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2012.12.28 14:31:13 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2012.12.28 14:31:13 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2012.12.28 14:31:13 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2012.12.28 14:31:13 | 000,093,672 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2012.12.28 14:18:22 | 000,415,877 | ---- | M] () -- C:\Windows\System32\drivers\vsconfig.xml
[2012.12.28 13:44:27 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2012.12.28 13:40:37 | 000,000,658 | ---- | M] () -- C:\Users\Benni\Desktop\Bibliotheken.lnk
[2012.12.28 13:40:33 | 000,000,413 | ---- | M] () -- C:\Users\Benni\Desktop\CD-Laufwerk.lnk
[2012.12.28 13:40:27 | 000,000,512 | ---- | M] () -- C:\Users\Benni\Desktop\Lokaler Datenträger (C).lnk
[2012.12.16 09:20:01 | 000,035,328 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012.12.16 08:57:09 | 000,300,032 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012.12.14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012.12.03 16:39:40 | 020,335,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2012.12.03 16:39:40 | 017,559,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2012.12.03 16:39:40 | 015,122,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2012.12.03 16:39:40 | 012,603,960 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2012.12.03 16:39:40 | 009,373,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2012.12.03 16:39:40 | 007,819,016 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2012.12.03 16:39:40 | 006,149,904 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvopencl.dll
[2012.12.03 16:39:40 | 002,606,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2012.12.03 16:39:40 | 002,496,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2012.12.03 16:39:40 | 001,874,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2012.12.03 16:39:40 | 001,011,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll
[2012.12.03 16:39:40 | 000,889,192 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco32.dll
[2012.12.03 16:39:40 | 000,841,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvumdshim.dll
[2012.12.03 16:39:40 | 000,201,136 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvinit.dll
[2012.12.03 16:39:40 | 000,011,545 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2012.12.01 05:38:18 | 002,869,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2012.12.01 05:38:13 | 003,984,744 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2012.12.01 05:37:56 | 003,663,213 | ---- | M] () -- C:\Windows\System32\nvcoproc.bin
[2012.12.01 05:37:55 | 002,557,288 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2012.12.01 05:37:55 | 000,108,392 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2012.12.01 05:37:55 | 000,062,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2012.11.30 22:43:52 | 000,438,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvStreaming.exe

========== Files Created - No Company Name ==========

[2012.12.30 17:17:35 | 000,001,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.12.30 15:49:36 | 002,434,856 | ---- | C] () -- C:\Windows\System32\pbsvc_bc2.exe
[2012.12.29 19:13:17 | 000,001,795 | ---- | C] () -- C:\Users\Benni\Desktop\LaunchGTAIV - Verknüpfung.lnk
[2012.12.29 16:51:53 | 000,001,787 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2012.12.29 16:51:53 | 000,001,775 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2012.12.29 08:34:33 | 000,032,768 | ---- | C] () -- C:\Windows\System32\drivers\sp_rsdrv2.sys
[2012.12.28 22:09:55 | 095,023,320 | ---- | C] () -- C:\ProgramData\23lldnur.pad
[2012.12.28 22:07:24 | 000,002,890 | ---- | C] () -- C:\ProgramData\dsgsdgdsgdsgw.js
[2012.12.28 20:29:59 | 2746,228,736 | -HS- | C] () -- C:\hiberfil.sys
[2012.12.28 20:27:25 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
[2012.12.28 19:57:06 | 000,282,296 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2012.12.28 19:51:21 | 000,139,048 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012.12.28 19:51:21 | 000,138,056 | ---- | C] () -- C:\Users\Benni\AppData\Roaming\PnkBstrK.sys
[2012.12.28 19:51:05 | 000,282,296 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012.12.28 19:51:05 | 000,280,904 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2012.12.28 19:51:05 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012.12.28 19:12:30 | 000,000,937 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk
[2012.12.28 18:44:00 | 000,000,604 | ---- | C] () -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CD-Laufwerk.lnk
[2012.12.28 16:22:19 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2012.12.28 16:19:26 | 000,032,768 | R--- | C] () -- C:\Windows\DAODx.exe
[2012.12.28 16:19:22 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012.12.28 16:19:21 | 000,016,649 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2012.12.28 16:19:20 | 000,010,296 | ---- | C] () -- C:\Windows\System32\drivers\ASUSHWIO.SYS
[2012.12.28 16:01:28 | 003,663,213 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2012.12.28 15:50:41 | 000,011,545 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2012.12.28 15:24:32 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.12.28 15:06:22 | 000,000,569 | -H-- | C] () -- C:\Windows\System32\BTImages.dat
[2012.12.28 14:27:43 | 000,001,845 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
[2012.12.28 14:22:45 | 000,001,045 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
[2012.12.28 14:17:00 | 000,415,877 | ---- | C] () -- C:\Windows\System32\drivers\vsconfig.xml
[2012.12.28 14:00:04 | 000,002,044 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2012.12.28 13:54:16 | 001,590,791 | ---- | C] () -- C:\Users\Public\Documents\Zabeltitz85.JPG
[2012.12.28 13:54:16 | 001,122,315 | ---- | C] () -- C:\Users\Public\Documents\Zabeltitz32.JPG
[2012.12.28 13:54:15 | 021,175,133 | ---- | C] () -- C:\Users\Public\Documents\vlc-1.1.11-win32.exe
[2012.12.28 13:54:15 | 016,901,609 | ---- | C] () -- C:\Users\Public\Documents\Waterfall - (1920 x 1080).mp4
[2012.12.28 13:54:15 | 011,798,904 | ---- | C] () -- C:\Users\Public\Documents\Operation Flashpoint Dragon Rising v1.02 NoDVD Crack.rar
[2012.12.28 13:54:15 | 000,919,340 | ---- | C] () -- C:\Users\Public\Documents\Vaalankurkku_railway_bridge.jpg
[2012.12.28 13:54:15 | 000,587,147 | ---- | C] () -- C:\Users\Public\Documents\ShuttlePlumeAtSunset.jpg
[2012.12.28 13:54:13 | 046,463,488 | ---- | C] () -- C:\Users\Public\Documents\Leuchter.avi
[2012.12.28 13:54:13 | 012,949,926 | ---- | C] () -- C:\Users\Public\Documents\Hallucii - (480 x 360).mp4
[2012.12.28 13:54:13 | 003,093,563 | ---- | C] () -- C:\Users\Public\Documents\Dyson_Vac.wmv
[2012.12.28 13:54:13 | 001,055,120 | ---- | C] () -- C:\Users\Public\Documents\Benjamins erster schwarzer Fuffi_2.JPG
[2012.12.28 13:54:13 | 000,172,440 | ---- | C] () -- C:\Users\Public\Documents\FRONT.JPG
[2012.12.28 13:54:13 | 000,167,373 | ---- | C] () -- C:\Users\Public\Documents\GARDEN.JPG
[2012.12.28 13:54:13 | 000,000,135 | ---- | C] () -- C:\Users\Public\Documents\Kinder-Soldaten der Stasi Erich Mielkes perverse Kinder-Armee spielt in einem geheimen Archiv-Film Krieg - Politik - Bild.de.URL
[2012.12.28 13:54:12 | 001,031,566 | ---- | C] () -- C:\Users\Public\Documents\Benjamins erster schwarzer Fuffi.JPG
[2012.12.28 13:54:12 | 000,097,315 | ---- | C] () -- C:\Users\Public\Documents\08 (1).jpg
[2012.12.28 13:44:27 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2012.12.28 13:40:37 | 000,000,658 | ---- | C] () -- C:\Users\Benni\Desktop\Bibliotheken.lnk
[2012.12.28 13:40:33 | 000,000,413 | ---- | C] () -- C:\Users\Benni\Desktop\CD-Laufwerk.lnk
[2012.12.28 13:40:27 | 000,000,512 | ---- | C] () -- C:\Users\Benni\Desktop\Lokaler Datenträger (C).lnk
[2012.12.28 13:39:45 | 000,001,438 | ---- | C] () -- C:\Users\Benni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012.07.26 09:41:52 | 000,751,892 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2012.07.26 09:41:52 | 000,305,546 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2012.07.26 09:41:52 | 000,155,620 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2012.07.26 09:41:52 | 000,040,390 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2012.07.26 07:55:27 | 000,710,046 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2012.07.26 07:55:27 | 000,296,742 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2012.07.26 07:55:27 | 000,132,416 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2012.07.26 07:55:27 | 000,033,362 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2012.07.26 07:53:47 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2012.07.26 07:53:46 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2012.07.26 07:03:55 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012.07.26 02:20:38 | 000,071,680 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2012.07.26 02:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2012.07.26 01:48:53 | 000,083,968 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2012.07.25 21:41:36 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012.07.25 21:24:47 | 000,526,068 | ---- | C] () -- C:\Windows\System32\staticurllist.bin
[2012.07.14 03:00:46 | 000,043,882 | ---- | C] () -- C:\Windows\System32\srms.dat
[2012.06.06 13:06:16 | 000,159,232 | ---- | C] () -- C:\Windows\System32\clinfo.exe
[2012.06.02 21:25:24 | 000,008,192 | ---- | C] () -- C:\Windows\System32\settings.dat
[2012.06.02 15:31:24 | 001,520,828 | ---- | C] () -- C:\Windows\System32\WpcNBModel.bin
[2012.06.02 15:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2011.09.28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat

========== ZeroAccess Check ==========

[2012.12.28 17:15:43 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.10.11 06:07:29 | 017,560,576 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012.07.26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2012.07.26 04:20:13 | 000,354,304 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012.12.29 22:28:51 | 000,000,000 | ---D | M] -- C:\Users\Benni\AppData\Roaming\Canneverbe Limited
[2012.12.28 14:16:58 | 000,000,000 | ---D | M] -- C:\Users\Benni\AppData\Roaming\CheckPoint
[2012.12.28 14:00:55 | 000,000,000 | ---D | M] -- C:\Users\Benni\AppData\Roaming\IrfanView
[2012.12.30 15:33:46 | 000,000,000 | ---D | M] -- C:\Users\Benni\AppData\Roaming\OpenOffice.org
[2012.12.29 16:52:04 | 000,000,000 | ---D | M] -- C:\Users\Benni\AppData\Roaming\Opera
[2012.12.28 19:18:15 | 000,000,000 | ---D | M] -- C:\Users\Benni\AppData\Roaming\Origin

========== Purity Check ==========

< End of report >