[IMPORTANT] Bzgl. aktueller Virenverseuchung durch Aless[HELP]

[Diablo_]

Hi,

lest euch da bitte den letzten Post (von mir, ganz unten) durch.



Es ist zu euren Gunsten.

Grüße

[weddingmaho]

Leute kann nicht taskmanager auf machen bitte hilft mal

[weddingmaho]

OTL logfile created on: 7/18/2011 10:21:02 PM - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Velican Sert\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3.00 Gb Total Physical Memory | 1.98 Gb Available Physical Memory | 66.11% Memory free
6.00 Gb Paging File | 4.63 Gb Available in Paging File | 77.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 900.41 Gb Total Space | 833.10 Gb Free Space | 92.52% Space Free | Partition Type: NTFS
Drive D: | 30.00 Gb Total Space | 11.40 Gb Free Space | 38.01% Space Free | Partition Type: NTFS

Computer Name: VELICANSERT-PC | User Name: Velican Sert | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Velican Sert\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Common Files\WUDHost.exe ()
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\GamersFirst\LIVE!\Live.exe (GamersFirst)
PRC - C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\msconfig.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)


========== Modules (SafeList) ==========

MOD - C:\Users\Velican Sert\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6 975e2bd6f2b2\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (TeamViewer6) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (MSCamSvc) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
SRV - (sftvsa) -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (MBAMSwissArmy) -- C:\Windows\System32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (amdkmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (amdkmdap) -- C:\Windows\System32\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV - (ddsxeiservice) -- C:\Program Files\sXe Injected\ddsxei.sys ()
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (MSHUSBVideo) -- C:\Windows\System32\drivers\nx6000.sys (Microsoft Corporation)
DRV - (AtiHdmiService) -- C:\Windows\System32\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV - (Sftvol) -- C:\Windows\System32\drivers\Sftvollh.sys (Microsoft Corporation)
DRV - (Sftredir) -- C:\Windows\System32\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV - (Sftplay) -- C:\Windows\System32\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV - (Sftfs) -- C:\Windows\System32\drivers\Sftfslh.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\..\URLSearchHook: {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {7846ae31-bea2-438a-8f5e-2d899361656c} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)


[2011/06/01 19:15:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Velican Sert\AppData\Roaming\mozilla\Firefox\extensions
[2011/06/01 19:15:23 | 000,000,000 | ---D | M] (XfireXO) -- C:\Users\Velican Sert\AppData\Roaming\mozilla\Firefox\extensions\{5 e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2011/01/15 12:08:39 | 000,238,776 | ---- | M] (Pando Networks) -- C:\Program Files\mozilla firefox\plugins\npPandoWebInst.dll

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\s wg.dll (Google Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKCU\..\Toolbar\WebBrowser: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Driver] C:\Windows\System32\svss.exe ()
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Microsoft © Coperation 2007] C:\Users\Velican Sert\AppData\Roaming\Microsoft\Windows\Templates\e xplorer.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Adobe Reader Driver] C:\Users\Velican Sert\AppData\Roaming\svss.exe ()
O4 - HKCU..\Run: [Microsoft © Coperation 2007] C:\Users\Velican Sert\AppData\Roaming\Microsoft\Windows\Templates\e xplorer.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Steam] C:\Program Files\Valve\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [svchost.exe] File not found
O4 - HKCU..\Run: [winupdater] C:\Windupdt\winupdate.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Users\Velican Sert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cs Serverlari.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer\Run: Windows-Network Component = "C:\Program Files\Common Files\WUDHost.exe" ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableTaskMgr = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableRegistryTools = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: EnableLUA = 0
O8 - Extra context menu item: Free YouTube Download - C:\Users\Velican Sert\AppData\Roaming\DVDVideoSoftIEHelpers\freeyou tubedownload.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Velican Sert\AppData\Roaming\DVDVideoSoftIEHelpers\freeyou tubetomp3converter.htm ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183 CA64F05FDD98.dll (Google Inc.)
O9 - Extra Button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - File not found
O9 - Extra 'Tools' menuitem : eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - File not found
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_24)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (Reg Error: Key error.)
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windupdt\winupdate.exe) - C:\Windupdt\winupdate.exe ()
O20 - HKLM Winlogon: UserInit - (C:\Windupdt\winupdate.exe) - C:\Windupdt\winupdate.exe ()
O20 - HKLM Winlogon: UserInit - (C:\Windupdt\winupdate.exe) - C:\Windupdt\winupdate.exe ()
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.ex e (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/18 22:16:01 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Roaming\Malwarebytes
[2011/07/18 22:15:43 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/07/18 22:15:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/07/18 22:15:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/07/18 22:15:40 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/07/18 22:15:40 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/07/18 14:57:07 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{0771B284-1548-4033-AA3A-BBE76098C3B9}
[2011/07/18 10:39:30 | 000,152,064 | -H-- | C] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\explorer.exe
[2011/07/18 10:39:26 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\taskshow.exe
[2011/07/18 10:36:02 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{870329E3-F6EC-4223-8159-D0755C9349B0}
[2011/07/17 12:23:34 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{92F55DFD-FFF2-4BAE-A4EB-193EC5A32BC3}
[2011/07/17 11:35:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{7404839F-E12B-4948-9E02-52D57970711F}
[2011/07/16 11:33:12 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{8E6B3CF3-B426-4454-A575-6C8AF370AE9A}
[2011/07/15 16:51:41 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{CC7FB19B-BD61-4D96-B338-0E2535279BB7}
[2011/07/15 11:46:12 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{9D0B6E6F-AB20-4511-AD71-24E5888A0B01}
[2011/07/14 16:49:05 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{A626C525-DBF5-4714-9DA3-9ECEE1F9491D}
[2011/07/13 18:57:33 | 000,000,000 | ---D | C] -- C:\Windupdt
[2011/07/13 18:07:47 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{71C2EB54-02B7-494A-9527-60D495E38DF0}
[2011/07/13 16:40:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{16DC8A02-F16B-45F6-A0A5-7AEEEB397344}
[2011/07/13 11:51:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2011/07/13 11:51:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2011/07/13 11:51:00 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2011/07/13 11:51:00 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/07/13 11:50:44 | 002,334,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/07/13 11:40:26 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{517C003D-B032-42E9-B8F7-DCE68D1D1804}
[2011/07/12 14:14:57 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{087E2697-9B35-41AE-A505-CB459E3B2EE1}
[2011/07/12 14:04:04 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{B64B1F77-9722-497B-ABCA-51CC233B454B}
[2011/07/12 12:29:08 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E9CB0339-3B77-4BC0-8E22-FEF08BEA0351}
[2011/07/12 11:41:01 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{F0CBCF8B-AAE7-490C-A2B5-43F9F142FB3E}
[2011/07/11 10:31:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{B73F0CC7-A56F-4AE5-ADDC-4F4055E2CFA1}
[2011/07/10 16:24:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
[2011/07/10 11:07:35 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{14F6F28E-5AAF-4F15-9B54-127EF6B472D1}
[2011/07/09 16:20:29 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{0074712D-6828-46DE-A18B-28D00773B878}
[2011/07/09 15:28:42 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{39301A3D-A7FF-4A6E-B787-E7227BA0A9F0}
[2011/07/08 10:48:59 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{4ABFE2CB-AE77-4514-B54E-40779A15BB36}
[2011/07/07 11:44:28 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{D24C1BE6-FB77-4F27-878C-64AF9ED37F12}
[2011/07/07 11:41:34 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{70AC89CE-C9D1-42B2-97C7-AD60D47CD907}
[2011/07/06 11:34:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{8D72ADC5-A1B6-4A19-B185-CA5DD846BBDB}
[2011/07/05 11:32:45 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{6DD74DC0-9C8F-452B-9C38-0D86F5857F58}
[2011/07/05 11:02:03 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{20A988BE-6F67-4E2B-82D6-0126BFE91693}
[2011/07/04 14:47:49 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{9C57C05E-3FE5-4053-A765-F22B7193E0F6}
[2011/07/04 11:47:35 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{1FABEDFB-13D5-4FA0-BCB8-BD21B7F06690}
[2011/07/04 10:58:50 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{4332E37C-DE58-4706-8691-6E3783799772}
[2011/07/03 12:12:44 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E44B90D6-C918-4C2B-97F6-85E1A78C950D}
[2011/07/03 09:48:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{49A90243-4DFB-4709-81D6-7BFA24B75C68}
[2011/07/02 12:46:01 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{3E92CB3E-2305-446D-BBA7-8F6C99D16EC2}
[2011/07/02 10:03:58 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{171C30FD-8879-46F2-A15E-134ECD3574B5}
[2011/07/01 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{17B6EFE6-3A82-4F7B-9EA7-A04F527EA744}
[2011/06/30 21:37:24 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{DEE1AEBF-9CBB-4A15-BE11-9742A5EFB7BB}
[2011/06/30 16:49:40 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{D079DDF5-7E7A-482F-AD88-1A334821C6B8}
[2011/06/30 14:26:58 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{919980A5-1F88-46DF-87FF-5E207A6D1408}
[2011/06/30 10:44:10 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{023C1956-1B3B-4472-AF79-D9836C4592FB}
[2011/06/29 10:10:11 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{525E2B8E-67B6-4374-B3AF-3B5D64F9B4E4}
[2011/06/29 09:44:35 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2011/06/29 09:44:35 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2011/06/29 09:44:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2011/06/29 09:44:35 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2011/06/29 09:44:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2011/06/29 09:44:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2011/06/29 09:36:19 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{250E1412-7EA8-4A5E-8BA5-682DDC82EC6B}
[2011/06/28 21:07:50 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{B88DBB54-1F39-40D4-847A-30A9D67EC75B}
[2011/06/28 07:48:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{FE038A3A-F52B-48FE-8B6A-DBA5EB88EE0D}
[2011/06/27 21:31:31 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{21ADA242-1632-4982-A5BF-C51F5EA8488B}
[2011/06/27 19:16:01 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/06/27 08:43:29 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E72CA8F1-DECB-42D4-85DA-5FBB7246A2AF}
[2011/06/26 09:46:28 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{168006C6-E0BB-4817-8046-41FB4F22F29F}
[2011/06/26 09:44:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{CCABC83D-32B3-4CBC-BF42-127028EE6BC4}
[2011/06/25 20:03:10 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\PunkBuster
[2011/06/25 19:59:19 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011/06/25 19:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2011/06/25 10:18:20 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{6C18F5F0-8854-4BD5-9763-B922BCD6D600}
[2011/06/24 11:20:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E3D00A1E-80EB-44A5-88A9-05C57B30557B}
[2011/06/23 15:22:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{F2D97316-9700-4765-8CA4-567F72BB1218}
[2011/06/22 22:27:44 | 077,683,512 | ---- | C] (K2 Network, Inc.) -- C:\Users\Velican Sert\APB_Reloaded_Installer.exe
[2011/06/22 22:27:35 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\GamersFirst LIVE!
[2011/06/22 22:27:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GamersFirst
[2011/06/22 12:58:27 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{1195C523-C861-480C-916B-265E0EF189CF}
[2011/06/21 18:48:57 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{CEC52BA9-A8C2-438B-BF63-0231E1B252F7}
[2011/06/20 12:01:29 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{49F19CA2-3584-4CFA-8EA4-AA5C5B509E6F}
[2011/06/19 13:21:19 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{50F5868B-AFAC-49E5-820B-EA5383380BAD}
[2011/06/19 11:42:57 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{598C2F20-1E1D-47E1-9F4C-90728BD5B6CC}
[2 C:\Users\Velican Sert\AppData\Local\*.tmp files -> C:\Users\Velican Sert\AppData\Local\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/18 22:15:43 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/18 21:46:16 | 000,009,888 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/07/18 21:46:16 | 000,009,888 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/07/18 21:39:07 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/18 21:38:53 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2011/07/18 21:38:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/07/18 21:38:46 | 2415,321,088 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/18 17:37:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/18 10:40:02 | 000,026,624 | -H-- | M] () -- C:\Program Files\Common Files\WUDHost.exe
[2011/07/18 10:40:02 | 000,026,624 | -H-- | M] () -- C:\Windows\System32\svss.exe
[2011/07/18 10:40:02 | 000,026,624 | -H-- | M] () -- C:\Users\Velican Sert\AppData\Roaming\svss.exe
[2011/07/18 10:39:29 | 000,152,064 | -H-- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\explorer.exe
[2011/07/18 10:39:29 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\taskshow.exe
[2011/07/14 17:37:44 | 000,002,741 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/07/13 16:39:49 | 000,265,640 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/07/12 14:05:47 | 000,001,697 | ---- | M] () -- C:\WarRock.ini
[2011/07/10 22:11:45 | 000,001,135 | ---- | M] () -- C:\Users\Public\Desktop\War Rock.lnk
[2011/07/10 21:57:59 | 814,041,040 | ---- | M] () -- C:\Users\Velican Sert\Desktop\War_Rock_20110307_G1.exe
[2011/07/10 17:11:01 | 000,001,126 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
[2011/07/10 17:11:01 | 000,001,092 | ---- | M] () -- C:\Users\Public\Desktop\GamersFirst LIVE!.lnk
[2011/07/10 16:24:22 | 000,000,945 | ---- | M] () -- C:\Users\Public\Desktop\Metin2.lnk
[2011/07/09 16:28:32 | 000,141,200 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/07/09 16:28:23 | 000,281,656 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2011/07/09 16:26:49 | 000,281,200 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/06/27 19:16:13 | 000,001,988 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/06/26 09:56:41 | 001,416,274 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011/06/26 09:56:41 | 000,688,032 | ---- | M] () -- C:\Windows\System32\perfh006.dat
[2011/06/26 09:56:41 | 000,379,058 | ---- | M] () -- C:\Windows\System32\perfh008.dat
[2011/06/26 09:56:41 | 000,366,036 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011/06/26 09:56:41 | 000,353,200 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/06/26 09:56:41 | 000,299,742 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/06/26 09:56:41 | 000,291,374 | ---- | M] () -- C:\Windows\System32\perfc006.dat
[2011/06/26 09:56:41 | 000,051,580 | ---- | M] () -- C:\Windows\System32\perfc008.dat
[2011/06/26 09:56:41 | 000,044,354 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/06/26 09:56:41 | 000,037,606 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/06/26 09:56:41 | 000,008,860 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2011/06/26 09:56:41 | 000,008,802 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2011/06/26 09:56:41 | 000,008,640 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
[2011/06/26 09:56:41 | 000,008,548 | ---- | M] () -- C:\Windows\System32\perfh010.dat
[2011/06/26 09:56:41 | 000,008,470 | ---- | M] () -- C:\Windows\System32\prfh0816.dat
[2011/06/26 09:56:41 | 000,008,386 | ---- | M] () -- C:\Windows\System32\perfh00E.dat
[2011/06/26 09:56:41 | 000,008,200 | ---- | M] () -- C:\Windows\System32\perfh01F.dat
[2011/06/26 09:56:41 | 000,006,904 | ---- | M] () -- C:\Windows\System32\perfc00E.dat
[2011/06/26 09:56:41 | 000,006,626 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2011/06/26 09:56:41 | 000,006,542 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
[2011/06/26 09:56:41 | 000,006,438 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2011/06/26 09:56:41 | 000,006,306 | ---- | M] () -- C:\Windows\System32\perfc01F.dat
[2011/06/26 09:56:41 | 000,006,300 | ---- | M] () -- C:\Windows\System32\prfc0816.dat
[2011/06/26 09:56:41 | 000,006,220 | ---- | M] () -- C:\Windows\System32\perfc010.dat
[2011/06/25 20:01:05 | 000,138,056 | ---- | M] () -- C:\Users\Velican Sert\AppData\Roaming\PnkBstrK.sys
[2011/06/25 19:44:30 | 000,001,377 | ---- | M] () -- C:\Users\Velican Sert\Desktop\APB Reloaded.lnk
[2011/06/25 19:36:28 | 3805,508,496 | ---- | M] () -- C:\Users\Velican Sert\Client1.5.0.562750.7z
[2011/06/25 19:35:11 | 077,683,512 | ---- | M] (K2 Network, Inc.) -- C:\Users\Velican Sert\APB_Reloaded_Installer.exe
[2 C:\Users\Velican Sert\AppData\Local\*.tmp files -> C:\Users\Velican Sert\AppData\Local\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/18 22:15:43 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/18 11:48:53 | 000,026,624 | -H-- | C] () -- C:\Users\Velican Sert\AppData\Roaming\svss.exe
[2011/07/18 10:40:04 | 000,026,624 | -H-- | C] () -- C:\Program Files\Common Files\WUDHost.exe
[2011/07/18 10:40:04 | 000,026,624 | -H-- | C] () -- C:\Windows\System32\svss.exe
[2011/07/10 22:11:45 | 000,001,135 | ---- | C] () -- C:\Users\Public\Desktop\War Rock.lnk
[2011/07/10 21:37:41 | 814,041,040 | ---- | C] () -- C:\Users\Velican Sert\Desktop\War_Rock_20110307_G1.exe
[2011/07/10 16:24:22 | 000,000,945 | ---- | C] () -- C:\Users\Public\Desktop\Metin2.lnk
[2011/06/25 20:03:14 | 000,281,656 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2011/06/25 20:01:05 | 000,141,200 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/06/25 20:01:05 | 000,138,056 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\PnkBstrK.sys
[2011/06/25 20:00:50 | 000,281,656 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011/06/25 20:00:50 | 000,281,200 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2011/06/25 20:00:47 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2011/06/25 19:44:30 | 000,001,377 | ---- | C] () -- C:\Users\Velican Sert\Desktop\APB Reloaded.lnk
[2011/06/22 22:27:44 | 3805,508,496 | ---- | C] () -- C:\Users\Velican Sert\Client1.5.0.562750.7z
[2011/06/22 22:27:07 | 000,001,126 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
[2011/06/22 22:27:07 | 000,001,092 | ---- | C] () -- C:\Users\Public\Desktop\GamersFirst LIVE!.lnk
[2011/06/10 14:05:16 | 000,000,000 | ---- | C] () -- C:\Users\Velican Sert\AppData\Local\{D7578C5A-9A6B-4B2D-A6A5-ACE31C7393D1}
[2011/06/09 14:02:31 | 000,000,000 | ---- | C] () -- C:\Users\Velican Sert\AppData\Local\{1831DD17-CBED-4C26-9955-BE5E34929EC0}
[2011/06/03 16:43:33 | 000,233,012 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/06/03 16:43:33 | 000,003,929 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2011/05/08 17:02:13 | 000,003,584 | ---- | C] () -- C:\Users\Velican Sert\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/24 17:14:42 | 000,061,440 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\chrtmp
[2011/02/24 17:14:40 | 000,201,728 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\Warlord Client HooK.exe
[2011/01/24 21:54:44 | 000,000,168 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\delme.bat
[2010/09/10 20:59:30 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2010/09/10 20:57:58 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/09/10 20:32:27 | 000,285,034 | ---- | C] () -- C:\Windows\System32\perfi01F.dat
[2010/09/10 20:32:27 | 000,037,160 | ---- | C] () -- C:\Windows\System32\perfd01F.dat
[2010/09/10 20:32:27 | 000,008,200 | ---- | C] () -- C:\Windows\System32\perfh01F.dat
[2010/09/10 20:32:27 | 000,006,306 | ---- | C] () -- C:\Windows\System32\perfc01F.dat
[2010/09/10 20:16:49 | 000,336,656 | ---- | C] () -- C:\Windows\System32\prfi0816.dat
[2010/09/10 20:16:49 | 000,040,548 | ---- | C] () -- C:\Windows\System32\prfd0816.dat
[2010/09/10 20:16:49 | 000,008,470 | ---- | C] () -- C:\Windows\System32\prfh0816.dat
[2010/09/10 20:16:49 | 000,006,300 | ---- | C] () -- C:\Windows\System32\prfc0816.dat
[2010/09/10 20:07:45 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2010/09/10 20:07:45 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2010/09/10 20:07:45 | 000,008,802 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2010/09/10 20:07:45 | 000,006,626 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2010/09/10 19:58:50 | 000,341,322 | ---- | C] () -- C:\Windows\System32\perfi013.dat
[2010/09/10 19:58:50 | 000,043,068 | ---- | C] () -- C:\Windows\System32\perfd013.dat
[2010/09/10 19:58:50 | 000,008,860 | ---- | C] () -- C:\Windows\System32\perfh013.dat
[2010/09/10 19:58:50 | 000,006,438 | ---- | C] () -- C:\Windows\System32\perfc013.dat
[2010/09/10 19:49:24 | 000,335,478 | ---- | C] () -- C:\Windows\System32\perfi010.dat
[2010/09/10 19:49:24 | 000,037,534 | ---- | C] () -- C:\Windows\System32\perfd010.dat
[2010/09/10 19:49:24 | 000,008,548 | ---- | C] () -- C:\Windows\System32\perfh010.dat
[2010/09/10 19:49:24 | 000,006,220 | ---- | C] () -- C:\Windows\System32\perfc010.dat
[2010/09/10 19:40:19 | 000,287,518 | ---- | C] () -- C:\Windows\System32\perfi00E.dat
[2010/09/10 19:40:19 | 000,048,094 | ---- | C] () -- C:\Windows\System32\perfd00E.dat
[2010/09/10 19:40:19 | 000,008,386 | ---- | C] () -- C:\Windows\System32\perfh00E.dat
[2010/09/10 19:40:19 | 000,006,904 | ---- | C] () -- C:\Windows\System32\perfc00E.dat
[2010/09/10 19:31:46 | 000,353,200 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2010/09/10 19:31:46 | 000,344,522 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2010/09/10 19:31:46 | 000,044,354 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2010/09/10 19:31:46 | 000,038,160 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2010/09/10 19:22:48 | 000,341,432 | ---- | C] () -- C:\Windows\System32\perfi00A.dat
[2010/09/10 19:22:48 | 000,041,390 | ---- | C] () -- C:\Windows\System32\perfd00A.dat
[2010/09/10 19:22:48 | 000,008,640 | ---- | C] () -- C:\Windows\System32\perfh00A.dat
[2010/09/10 19:22:48 | 000,006,542 | ---- | C] () -- C:\Windows\System32\perfc00A.dat
[2010/09/10 19:13:23 | 000,379,058 | ---- | C] () -- C:\Windows\System32\perfh008.dat
[2010/09/10 19:13:23 | 000,369,984 | ---- | C] () -- C:\Windows\System32\perfi008.dat
[2010/09/10 19:13:23 | 000,051,580 | ---- | C] () -- C:\Windows\System32\perfc008.dat
[2010/09/10 19:13:23 | 000,045,182 | ---- | C] () -- C:\Windows\System32\perfd008.dat
[2010/09/10 19:04:26 | 001,416,274 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2010/09/10 19:04:26 | 000,366,036 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2010/09/10 19:04:26 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2010/09/10 19:04:26 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2010/09/10 18:55:05 | 000,688,032 | ---- | C] () -- C:\Windows\System32\perfh006.dat
[2010/09/10 18:55:05 | 000,306,636 | ---- | C] () -- C:\Windows\System32\perfi006.dat
[2010/09/10 18:55:05 | 000,291,374 | ---- | C] () -- C:\Windows\System32\perfc006.dat
[2010/09/10 18:55:05 | 000,039,236 | ---- | C] () -- C:\Windows\System32\perfd006.dat
[2009/07/14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 06:33:53 | 000,265,640 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 04:05:48 | 000,299,742 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 04:05:48 | 000,037,606 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 02:55:09 | 000,587,776 | ---- | C] () -- C:\Windows\System32\hpotscl1.dll
[2009/07/14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

< End of report >

[weddingmaho]

OTL logfile created on: 7/18/2011 10:21:02 PM - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Velican Sert\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3.00 Gb Total Physical Memory | 1.98 Gb Available Physical Memory | 66.11% Memory free
6.00 Gb Paging File | 4.63 Gb Available in Paging File | 77.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 900.41 Gb Total Space | 833.10 Gb Free Space | 92.52% Space Free | Partition Type: NTFS
Drive D: | 30.00 Gb Total Space | 11.40 Gb Free Space | 38.01% Space Free | Partition Type: NTFS

Computer Name: VELICANSERT-PC | User Name: Velican Sert | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Velican Sert\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Common Files\WUDHost.exe ()
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\GamersFirst\LIVE!\Live.exe (GamersFirst)
PRC - C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\msconfig.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)


========== Modules (SafeList) ==========

MOD - C:\Users\Velican Sert\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6 975e2bd6f2b2\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (TeamViewer6) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (MSCamSvc) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
SRV - (sftvsa) -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (MBAMSwissArmy) -- C:\Windows\System32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (amdkmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (amdkmdap) -- C:\Windows\System32\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV - (ddsxeiservice) -- C:\Program Files\sXe Injected\ddsxei.sys ()
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (MSHUSBVideo) -- C:\Windows\System32\drivers\nx6000.sys (Microsoft Corporation)
DRV - (AtiHdmiService) -- C:\Windows\System32\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV - (Sftvol) -- C:\Windows\System32\drivers\Sftvollh.sys (Microsoft Corporation)
DRV - (Sftredir) -- C:\Windows\System32\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV - (Sftplay) -- C:\Windows\System32\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV - (Sftfs) -- C:\Windows\System32\drivers\Sftfslh.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\..\URLSearchHook: {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {7846ae31-bea2-438a-8f5e-2d899361656c} - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)


[2011/06/01 19:15:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Velican Sert\AppData\Roaming\mozilla\Firefox\extensions
[2011/06/01 19:15:23 | 000,000,000 | ---D | M] (XfireXO) -- C:\Users\Velican Sert\AppData\Roaming\mozilla\Firefox\extensions\{5 e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2011/01/15 12:08:39 | 000,238,776 | ---- | M] (Pando Networks) -- C:\Program Files\mozilla firefox\plugins\npPandoWebInst.dll

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\s wg.dll (Google Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKCU\..\Toolbar\WebBrowser: (vShare Toolbar) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Driver] C:\Windows\System32\svss.exe ()
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Microsoft © Coperation 2007] C:\Users\Velican Sert\AppData\Roaming\Microsoft\Windows\Templates\e xplorer.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Adobe Reader Driver] C:\Users\Velican Sert\AppData\Roaming\svss.exe ()
O4 - HKCU..\Run: [Microsoft © Coperation 2007] C:\Users\Velican Sert\AppData\Roaming\Microsoft\Windows\Templates\e xplorer.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Steam] C:\Program Files\Valve\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [svchost.exe] File not found
O4 - HKCU..\Run: [winupdater] C:\Windupdt\winupdate.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Users\Velican Sert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Cs Serverlari.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer\Run: Windows-Network Component = "C:\Program Files\Common Files\WUDHost.exe" ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableTaskMgr = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableRegistryTools = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: EnableLUA = 0
O8 - Extra context menu item: Free YouTube Download - C:\Users\Velican Sert\AppData\Roaming\DVDVideoSoftIEHelpers\freeyou tubedownload.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Velican Sert\AppData\Roaming\DVDVideoSoftIEHelpers\freeyou tubetomp3converter.htm ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183 CA64F05FDD98.dll (Google Inc.)
O9 - Extra Button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - File not found
O9 - Extra 'Tools' menuitem : eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - File not found
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_24)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (Reg Error: Key error.)
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windupdt\winupdate.exe) - C:\Windupdt\winupdate.exe ()
O20 - HKLM Winlogon: UserInit - (C:\Windupdt\winupdate.exe) - C:\Windupdt\winupdate.exe ()
O20 - HKLM Winlogon: UserInit - (C:\Windupdt\winupdate.exe) - C:\Windupdt\winupdate.exe ()
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.ex e (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/18 22:16:01 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Roaming\Malwarebytes
[2011/07/18 22:15:43 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/07/18 22:15:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/07/18 22:15:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/07/18 22:15:40 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/07/18 22:15:40 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/07/18 14:57:07 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{0771B284-1548-4033-AA3A-BBE76098C3B9}
[2011/07/18 10:39:30 | 000,152,064 | -H-- | C] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\explorer.exe
[2011/07/18 10:39:26 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\taskshow.exe
[2011/07/18 10:36:02 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{870329E3-F6EC-4223-8159-D0755C9349B0}
[2011/07/17 12:23:34 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{92F55DFD-FFF2-4BAE-A4EB-193EC5A32BC3}
[2011/07/17 11:35:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{7404839F-E12B-4948-9E02-52D57970711F}
[2011/07/16 11:33:12 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{8E6B3CF3-B426-4454-A575-6C8AF370AE9A}
[2011/07/15 16:51:41 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{CC7FB19B-BD61-4D96-B338-0E2535279BB7}
[2011/07/15 11:46:12 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{9D0B6E6F-AB20-4511-AD71-24E5888A0B01}
[2011/07/14 16:49:05 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{A626C525-DBF5-4714-9DA3-9ECEE1F9491D}
[2011/07/13 18:57:33 | 000,000,000 | ---D | C] -- C:\Windupdt
[2011/07/13 18:07:47 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{71C2EB54-02B7-494A-9527-60D495E38DF0}
[2011/07/13 16:40:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{16DC8A02-F16B-45F6-A0A5-7AEEEB397344}
[2011/07/13 11:51:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2011/07/13 11:51:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2011/07/13 11:51:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2011/07/13 11:51:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2011/07/13 11:51:00 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2011/07/13 11:51:00 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/07/13 11:50:44 | 002,334,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/07/13 11:40:26 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{517C003D-B032-42E9-B8F7-DCE68D1D1804}
[2011/07/12 14:14:57 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{087E2697-9B35-41AE-A505-CB459E3B2EE1}
[2011/07/12 14:04:04 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{B64B1F77-9722-497B-ABCA-51CC233B454B}
[2011/07/12 12:29:08 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E9CB0339-3B77-4BC0-8E22-FEF08BEA0351}
[2011/07/12 11:41:01 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{F0CBCF8B-AAE7-490C-A2B5-43F9F142FB3E}
[2011/07/11 10:31:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{B73F0CC7-A56F-4AE5-ADDC-4F4055E2CFA1}
[2011/07/10 16:24:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
[2011/07/10 11:07:35 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{14F6F28E-5AAF-4F15-9B54-127EF6B472D1}
[2011/07/09 16:20:29 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{0074712D-6828-46DE-A18B-28D00773B878}
[2011/07/09 15:28:42 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{39301A3D-A7FF-4A6E-B787-E7227BA0A9F0}
[2011/07/08 10:48:59 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{4ABFE2CB-AE77-4514-B54E-40779A15BB36}
[2011/07/07 11:44:28 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{D24C1BE6-FB77-4F27-878C-64AF9ED37F12}
[2011/07/07 11:41:34 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{70AC89CE-C9D1-42B2-97C7-AD60D47CD907}
[2011/07/06 11:34:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{8D72ADC5-A1B6-4A19-B185-CA5DD846BBDB}
[2011/07/05 11:32:45 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{6DD74DC0-9C8F-452B-9C38-0D86F5857F58}
[2011/07/05 11:02:03 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{20A988BE-6F67-4E2B-82D6-0126BFE91693}
[2011/07/04 14:47:49 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{9C57C05E-3FE5-4053-A765-F22B7193E0F6}
[2011/07/04 11:47:35 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{1FABEDFB-13D5-4FA0-BCB8-BD21B7F06690}
[2011/07/04 10:58:50 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{4332E37C-DE58-4706-8691-6E3783799772}
[2011/07/03 12:12:44 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E44B90D6-C918-4C2B-97F6-85E1A78C950D}
[2011/07/03 09:48:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{49A90243-4DFB-4709-81D6-7BFA24B75C68}
[2011/07/02 12:46:01 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{3E92CB3E-2305-446D-BBA7-8F6C99D16EC2}
[2011/07/02 10:03:58 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{171C30FD-8879-46F2-A15E-134ECD3574B5}
[2011/07/01 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{17B6EFE6-3A82-4F7B-9EA7-A04F527EA744}
[2011/06/30 21:37:24 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{DEE1AEBF-9CBB-4A15-BE11-9742A5EFB7BB}
[2011/06/30 16:49:40 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{D079DDF5-7E7A-482F-AD88-1A334821C6B8}
[2011/06/30 14:26:58 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{919980A5-1F88-46DF-87FF-5E207A6D1408}
[2011/06/30 10:44:10 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{023C1956-1B3B-4472-AF79-D9836C4592FB}
[2011/06/29 10:10:11 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{525E2B8E-67B6-4374-B3AF-3B5D64F9B4E4}
[2011/06/29 09:44:35 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2011/06/29 09:44:35 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2011/06/29 09:44:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2011/06/29 09:44:35 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2011/06/29 09:44:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2011/06/29 09:44:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2011/06/29 09:36:19 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{250E1412-7EA8-4A5E-8BA5-682DDC82EC6B}
[2011/06/28 21:07:50 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{B88DBB54-1F39-40D4-847A-30A9D67EC75B}
[2011/06/28 07:48:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{FE038A3A-F52B-48FE-8B6A-DBA5EB88EE0D}
[2011/06/27 21:31:31 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{21ADA242-1632-4982-A5BF-C51F5EA8488B}
[2011/06/27 19:16:01 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/06/27 08:43:29 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E72CA8F1-DECB-42D4-85DA-5FBB7246A2AF}
[2011/06/26 09:46:28 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{168006C6-E0BB-4817-8046-41FB4F22F29F}
[2011/06/26 09:44:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{CCABC83D-32B3-4CBC-BF42-127028EE6BC4}
[2011/06/25 20:03:10 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\PunkBuster
[2011/06/25 19:59:19 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011/06/25 19:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2011/06/25 10:18:20 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{6C18F5F0-8854-4BD5-9763-B922BCD6D600}
[2011/06/24 11:20:56 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{E3D00A1E-80EB-44A5-88A9-05C57B30557B}
[2011/06/23 15:22:38 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{F2D97316-9700-4765-8CA4-567F72BB1218}
[2011/06/22 22:27:44 | 077,683,512 | ---- | C] (K2 Network, Inc.) -- C:\Users\Velican Sert\APB_Reloaded_Installer.exe
[2011/06/22 22:27:35 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\GamersFirst LIVE!
[2011/06/22 22:27:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GamersFirst
[2011/06/22 12:58:27 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{1195C523-C861-480C-916B-265E0EF189CF}
[2011/06/21 18:48:57 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{CEC52BA9-A8C2-438B-BF63-0231E1B252F7}
[2011/06/20 12:01:29 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{49F19CA2-3584-4CFA-8EA4-AA5C5B509E6F}
[2011/06/19 13:21:19 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{50F5868B-AFAC-49E5-820B-EA5383380BAD}
[2011/06/19 11:42:57 | 000,000,000 | ---D | C] -- C:\Users\Velican Sert\AppData\Local\{598C2F20-1E1D-47E1-9F4C-90728BD5B6CC}
[2 C:\Users\Velican Sert\AppData\Local\*.tmp files -> C:\Users\Velican Sert\AppData\Local\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/18 22:15:43 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/18 21:46:16 | 000,009,888 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/07/18 21:46:16 | 000,009,888 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/07/18 21:39:07 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/18 21:38:53 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2011/07/18 21:38:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/07/18 21:38:46 | 2415,321,088 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/18 17:37:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/18 10:40:02 | 000,026,624 | -H-- | M] () -- C:\Program Files\Common Files\WUDHost.exe
[2011/07/18 10:40:02 | 000,026,624 | -H-- | M] () -- C:\Windows\System32\svss.exe
[2011/07/18 10:40:02 | 000,026,624 | -H-- | M] () -- C:\Users\Velican Sert\AppData\Roaming\svss.exe
[2011/07/18 10:39:29 | 000,152,064 | -H-- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\explorer.exe
[2011/07/18 10:39:29 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\taskshow.exe
[2011/07/14 17:37:44 | 000,002,741 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/07/13 16:39:49 | 000,265,640 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/07/12 14:05:47 | 000,001,697 | ---- | M] () -- C:\WarRock.ini
[2011/07/10 22:11:45 | 000,001,135 | ---- | M] () -- C:\Users\Public\Desktop\War Rock.lnk
[2011/07/10 21:57:59 | 814,041,040 | ---- | M] () -- C:\Users\Velican Sert\Desktop\War_Rock_20110307_G1.exe
[2011/07/10 17:11:01 | 000,001,126 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
[2011/07/10 17:11:01 | 000,001,092 | ---- | M] () -- C:\Users\Public\Desktop\GamersFirst LIVE!.lnk
[2011/07/10 16:24:22 | 000,000,945 | ---- | M] () -- C:\Users\Public\Desktop\Metin2.lnk
[2011/07/09 16:28:32 | 000,141,200 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/07/09 16:28:23 | 000,281,656 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2011/07/09 16:26:49 | 000,281,200 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/06/27 19:16:13 | 000,001,988 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/06/26 09:56:41 | 001,416,274 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011/06/26 09:56:41 | 000,688,032 | ---- | M] () -- C:\Windows\System32\perfh006.dat
[2011/06/26 09:56:41 | 000,379,058 | ---- | M] () -- C:\Windows\System32\perfh008.dat
[2011/06/26 09:56:41 | 000,366,036 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011/06/26 09:56:41 | 000,353,200 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/06/26 09:56:41 | 000,299,742 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/06/26 09:56:41 | 000,291,374 | ---- | M] () -- C:\Windows\System32\perfc006.dat
[2011/06/26 09:56:41 | 000,051,580 | ---- | M] () -- C:\Windows\System32\perfc008.dat
[2011/06/26 09:56:41 | 000,044,354 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/06/26 09:56:41 | 000,037,606 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/06/26 09:56:41 | 000,008,860 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2011/06/26 09:56:41 | 000,008,802 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2011/06/26 09:56:41 | 000,008,640 | ---- | M] () -- C:\Windows\System32\perfh00A.dat
[2011/06/26 09:56:41 | 000,008,548 | ---- | M] () -- C:\Windows\System32\perfh010.dat
[2011/06/26 09:56:41 | 000,008,470 | ---- | M] () -- C:\Windows\System32\prfh0816.dat
[2011/06/26 09:56:41 | 000,008,386 | ---- | M] () -- C:\Windows\System32\perfh00E.dat
[2011/06/26 09:56:41 | 000,008,200 | ---- | M] () -- C:\Windows\System32\perfh01F.dat
[2011/06/26 09:56:41 | 000,006,904 | ---- | M] () -- C:\Windows\System32\perfc00E.dat
[2011/06/26 09:56:41 | 000,006,626 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2011/06/26 09:56:41 | 000,006,542 | ---- | M] () -- C:\Windows\System32\perfc00A.dat
[2011/06/26 09:56:41 | 000,006,438 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2011/06/26 09:56:41 | 000,006,306 | ---- | M] () -- C:\Windows\System32\perfc01F.dat
[2011/06/26 09:56:41 | 000,006,300 | ---- | M] () -- C:\Windows\System32\prfc0816.dat
[2011/06/26 09:56:41 | 000,006,220 | ---- | M] () -- C:\Windows\System32\perfc010.dat
[2011/06/25 20:01:05 | 000,138,056 | ---- | M] () -- C:\Users\Velican Sert\AppData\Roaming\PnkBstrK.sys
[2011/06/25 19:44:30 | 000,001,377 | ---- | M] () -- C:\Users\Velican Sert\Desktop\APB Reloaded.lnk
[2011/06/25 19:36:28 | 3805,508,496 | ---- | M] () -- C:\Users\Velican Sert\Client1.5.0.562750.7z
[2011/06/25 19:35:11 | 077,683,512 | ---- | M] (K2 Network, Inc.) -- C:\Users\Velican Sert\APB_Reloaded_Installer.exe
[2 C:\Users\Velican Sert\AppData\Local\*.tmp files -> C:\Users\Velican Sert\AppData\Local\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/18 22:15:43 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/07/18 11:48:53 | 000,026,624 | -H-- | C] () -- C:\Users\Velican Sert\AppData\Roaming\svss.exe
[2011/07/18 10:40:04 | 000,026,624 | -H-- | C] () -- C:\Program Files\Common Files\WUDHost.exe
[2011/07/18 10:40:04 | 000,026,624 | -H-- | C] () -- C:\Windows\System32\svss.exe
[2011/07/10 22:11:45 | 000,001,135 | ---- | C] () -- C:\Users\Public\Desktop\War Rock.lnk
[2011/07/10 21:37:41 | 814,041,040 | ---- | C] () -- C:\Users\Velican Sert\Desktop\War_Rock_20110307_G1.exe
[2011/07/10 16:24:22 | 000,000,945 | ---- | C] () -- C:\Users\Public\Desktop\Metin2.lnk
[2011/06/25 20:03:14 | 000,281,656 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2011/06/25 20:01:05 | 000,141,200 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011/06/25 20:01:05 | 000,138,056 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\PnkBstrK.sys
[2011/06/25 20:00:50 | 000,281,656 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011/06/25 20:00:50 | 000,281,200 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2011/06/25 20:00:47 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2011/06/25 19:44:30 | 000,001,377 | ---- | C] () -- C:\Users\Velican Sert\Desktop\APB Reloaded.lnk
[2011/06/22 22:27:44 | 3805,508,496 | ---- | C] () -- C:\Users\Velican Sert\Client1.5.0.562750.7z
[2011/06/22 22:27:07 | 000,001,126 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
[2011/06/22 22:27:07 | 000,001,092 | ---- | C] () -- C:\Users\Public\Desktop\GamersFirst LIVE!.lnk
[2011/06/10 14:05:16 | 000,000,000 | ---- | C] () -- C:\Users\Velican Sert\AppData\Local\{D7578C5A-9A6B-4B2D-A6A5-ACE31C7393D1}
[2011/06/09 14:02:31 | 000,000,000 | ---- | C] () -- C:\Users\Velican Sert\AppData\Local\{1831DD17-CBED-4C26-9955-BE5E34929EC0}
[2011/06/03 16:43:33 | 000,233,012 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/06/03 16:43:33 | 000,003,929 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2011/05/08 17:02:13 | 000,003,584 | ---- | C] () -- C:\Users\Velican Sert\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/24 17:14:42 | 000,061,440 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\chrtmp
[2011/02/24 17:14:40 | 000,201,728 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\Warlord Client HooK.exe
[2011/01/24 21:54:44 | 000,000,168 | ---- | C] () -- C:\Users\Velican Sert\AppData\Roaming\delme.bat
[2010/09/10 20:59:30 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2010/09/10 20:57:58 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/09/10 20:32:27 | 000,285,034 | ---- | C] () -- C:\Windows\System32\perfi01F.dat
[2010/09/10 20:32:27 | 000,037,160 | ---- | C] () -- C:\Windows\System32\perfd01F.dat
[2010/09/10 20:32:27 | 000,008,200 | ---- | C] () -- C:\Windows\System32\perfh01F.dat
[2010/09/10 20:32:27 | 000,006,306 | ---- | C] () -- C:\Windows\System32\perfc01F.dat
[2010/09/10 20:16:49 | 000,336,656 | ---- | C] () -- C:\Windows\System32\prfi0816.dat
[2010/09/10 20:16:49 | 000,040,548 | ---- | C] () -- C:\Windows\System32\prfd0816.dat
[2010/09/10 20:16:49 | 000,008,470 | ---- | C] () -- C:\Windows\System32\prfh0816.dat
[2010/09/10 20:16:49 | 000,006,300 | ---- | C] () -- C:\Windows\System32\prfc0816.dat
[2010/09/10 20:07:45 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2010/09/10 20:07:45 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2010/09/10 20:07:45 | 000,008,802 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2010/09/10 20:07:45 | 000,006,626 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2010/09/10 19:58:50 | 000,341,322 | ---- | C] () -- C:\Windows\System32\perfi013.dat
[2010/09/10 19:58:50 | 000,043,068 | ---- | C] () -- C:\Windows\System32\perfd013.dat
[2010/09/10 19:58:50 | 000,008,860 | ---- | C] () -- C:\Windows\System32\perfh013.dat
[2010/09/10 19:58:50 | 000,006,438 | ---- | C] () -- C:\Windows\System32\perfc013.dat
[2010/09/10 19:49:24 | 000,335,478 | ---- | C] () -- C:\Windows\System32\perfi010.dat
[2010/09/10 19:49:24 | 000,037,534 | ---- | C] () -- C:\Windows\System32\perfd010.dat
[2010/09/10 19:49:24 | 000,008,548 | ---- | C] () -- C:\Windows\System32\perfh010.dat
[2010/09/10 19:49:24 | 000,006,220 | ---- | C] () -- C:\Windows\System32\perfc010.dat
[2010/09/10 19:40:19 | 000,287,518 | ---- | C] () -- C:\Windows\System32\perfi00E.dat
[2010/09/10 19:40:19 | 000,048,094 | ---- | C] () -- C:\Windows\System32\perfd00E.dat
[2010/09/10 19:40:19 | 000,008,386 | ---- | C] () -- C:\Windows\System32\perfh00E.dat
[2010/09/10 19:40:19 | 000,006,904 | ---- | C] () -- C:\Windows\System32\perfc00E.dat
[2010/09/10 19:31:46 | 000,353,200 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2010/09/10 19:31:46 | 000,344,522 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2010/09/10 19:31:46 | 000,044,354 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2010/09/10 19:31:46 | 000,038,160 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2010/09/10 19:22:48 | 000,341,432 | ---- | C] () -- C:\Windows\System32\perfi00A.dat
[2010/09/10 19:22:48 | 000,041,390 | ---- | C] () -- C:\Windows\System32\perfd00A.dat
[2010/09/10 19:22:48 | 000,008,640 | ---- | C] () -- C:\Windows\System32\perfh00A.dat
[2010/09/10 19:22:48 | 000,006,542 | ---- | C] () -- C:\Windows\System32\perfc00A.dat
[2010/09/10 19:13:23 | 000,379,058 | ---- | C] () -- C:\Windows\System32\perfh008.dat
[2010/09/10 19:13:23 | 000,369,984 | ---- | C] () -- C:\Windows\System32\perfi008.dat
[2010/09/10 19:13:23 | 000,051,580 | ---- | C] () -- C:\Windows\System32\perfc008.dat
[2010/09/10 19:13:23 | 000,045,182 | ---- | C] () -- C:\Windows\System32\perfd008.dat
[2010/09/10 19:04:26 | 001,416,274 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2010/09/10 19:04:26 | 000,366,036 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2010/09/10 19:04:26 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2010/09/10 19:04:26 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2010/09/10 18:55:05 | 000,688,032 | ---- | C] () -- C:\Windows\System32\perfh006.dat
[2010/09/10 18:55:05 | 000,306,636 | ---- | C] () -- C:\Windows\System32\perfi006.dat
[2010/09/10 18:55:05 | 000,291,374 | ---- | C] () -- C:\Windows\System32\perfc006.dat
[2010/09/10 18:55:05 | 000,039,236 | ---- | C] () -- C:\Windows\System32\perfd006.dat
[2009/07/14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 06:33:53 | 000,265,640 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 04:05:48 | 000,299,742 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 04:05:48 | 000,037,606 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 02:55:09 | 000,587,776 | ---- | C] () -- C:\Windows\System32\hpotscl1.dll
[2009/07/14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

< End of report >

[Diablo_]

Leute, das bringt nichts, es macht die ganze Sache nurnoch unübersichtlicher.

Lest meinen Post oben.

Grüße

[Zepp']

@weddingmaho
1. Doppelpost Lösch ma einen post
2. Pack das in einen Spoiler... D:

[_xAtomicx_]

Quote:

Originally Posted by .Tierra'

Nein!

Dort wird nur das system auf "Werkeinstellungen" gestelt! Der Virus auf der Festplatte bleibt!

Nein, ich bin Clear und so hats mir auch Diabolo geraten ,Wichtigsten PW´s sind geändert und ja ^^

[~kau~]

Mein OTL Log..

Code:

OTL logfile created on: 18.07.2011 23:08:52 - Run 1
OTL by OldTimer - Version 3.2.26.1     Folder = C:\Dokumente und Einstellungen\alex\Eigene Dateien\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,49 Gb Total Physical Memory | 2,29 Gb Available Physical Memory | 65,47% Memory free
5,33 Gb Paging File | 4,05 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 195,31 Gb Total Space | 29,55 Gb Free Space | 15,13% Space Free | Partition Type: NTFS
Drive D: | 221,57 Gb Total Space | 169,85 Gb Free Space | 76,66% Space Free | Partition Type: NTFS
Drive F: | 48,83 Gb Total Space | 48,76 Gb Free Space | 99,87% Space Free | Partition Type: NTFS
 
Computer Name: LOL | User Name: alex | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011.07.18 23:08:43 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Downloads\OTL.exe
PRC - [2011.07.08 09:31:38 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2011.07.01 20:20:50 | 000,484,008 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avscan.exe
PRC - [2011.07.01 20:20:50 | 000,400,040 | ---- | M] (Avira GmbH) -- c:\Programme\Avira\AntiVir Desktop\avcenter.exe
PRC - [2011.07.01 20:20:50 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.06.30 22:21:10 | 002,588,784 | ---- | M] (GamersFirst) -- C:\Programme\GamersFirst\LIVE!\Live.exe
PRC - [2011.05.29 01:53:06 | 003,077,528 | ---- | M] () -- C:\Programme\Pando Networks\Media Booster\PMB.exe
PRC - [2011.05.25 17:29:48 | 001,336,712 | ---- | M] (LogMeIn Inc.) -- C:\Programme\LogMeIn Hamachi\hamachi-2.exe
PRC - [2011.05.11 13:31:34 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2011.01.07 13:12:22 | 000,505,576 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jucheck.exe
PRC - [2011.01.07 13:12:22 | 000,253,672 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
PRC - [2010.08.03 10:05:54 | 000,358,472 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\LGDevAgt.exe
PRC - [2010.08.03 10:03:46 | 003,649,096 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\G-series Software\LGDCore.exe
PRC - [2010.08.03 09:44:06 | 000,498,760 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\Applets\LCDRSS.exe
PRC - [2010.08.03 09:43:56 | 000,477,768 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\Applets\LCDPop3.exe
PRC - [2010.08.03 09:43:18 | 001,809,992 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
PRC - [2010.08.03 09:43:02 | 000,522,824 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\Applets\LCDMedia.exe
PRC - [2010.08.03 09:42:52 | 000,523,848 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\Applets\LCDCountdown.exe
PRC - [2010.08.03 09:42:42 | 000,676,424 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\GamePanel Software\Applets\LCDClock.exe
PRC - [2010.08.02 17:09:32 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.05.04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Programme\Nero\Update\NASvc.exe
PRC - [2010.04.22 16:05:26 | 001,011,712 | ---- | M] (Gigabyte Technology CO., LTD.) -- C:\Programme\Gigabyte\smart6\timelock\AlarmClock.exe
PRC - [2010.01.14 23:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009.10.21 06:12:50 | 000,106,496 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2009.10.15 15:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- C:\Programme\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009.10.15 15:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Programme\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009.10.13 17:39:46 | 000,114,688 | ---- | M] (Gigabyte Technology CO., LTD.) -- C:\Programme\Gigabyte\smart6\timelock\TimeMgmtDaemon.exe
PRC - [2009.08.18 12:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVC.EXE
PRC - [2009.08.18 12:29:22 | 000,183,152 | ---- | M] (Microsoft Corporation) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVCM.EXE
PRC - [2009.06.17 17:13:06 | 000,068,136 | ---- | M] () -- C:\Programme\Gigabyte\EnergySaver2\des2svr.exe
PRC - [2008.04.14 04:22:45 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.11.09 16:32:40 | 000,435,712 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft Visual Studio 9.0\Common7\IDE\VCExpress.exe
PRC - [2005.02.17 08:15:20 | 000,081,920 | ---- | M] (InstallShield Software Corporation) -- C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011.07.18 23:08:43 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Downloads\OTL.exe
MOD - [2010.08.23 18:11:46 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] --  -- (rewt)
SRV - File not found [On_Demand | Stopped] --  -- (AppMgmt)
SRV - [2011.07.01 20:20:50 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.06.29 20:54:21 | 003,435,096 | ---- | M] () [Auto | Running] -- c:\Programme\Gemeinsame Dateien\Akamai\netsession_win_e477fed.dll -- (Akamai)
SRV - [2011.05.25 17:29:48 | 001,336,712 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Programme\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011.05.11 13:31:34 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011.03.31 18:20:34 | 008,146,944 | ---- | M] () [Auto | Stopped] -- C:\Programme\MySQL\MySQL Server 5.5\bin\mysqld.exe -- (MySQL)
SRV - [2010.11.30 18:03:00 | 004,023,760 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2010.11.21 11:49:24 | 000,247,608 | ---- | M] () [Disabled | Stopped] -- C:\Programme\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2010.10.18 00:42:38 | 000,075,496 | ---- | M] (SANDBOXIE L.T.D) [Disabled | Stopped] -- C:\Programme\Sandboxie\SbieSvc.exe -- (SbieSvc)
SRV - [2010.06.25 19:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Programme\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2010.05.04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Programme\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010.04.06 17:30:38 | 000,031,272 | ---- | M] () [Disabled | Stopped] -- C:\WINDOWS\system32\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV - [2009.10.15 15:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Programme\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.10.13 17:39:46 | 000,114,688 | ---- | M] (Gigabyte Technology CO., LTD.) [Auto | Running] -- C:\Programme\Gigabyte\smart6\timelock\TimeMgmtDaemon.exe -- (Smart TimeLock)
SRV - [2009.08.18 12:29:22 | 001,529,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009.06.17 17:13:06 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Programme\Gigabyte\EnergySaver2\des2svr.exe -- (DES2 Service)
SRV - [2005.04.04 01:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [Disabled | Stopped] -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011.07.18 12:18:57 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2011.07.01 20:20:51 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.07.01 20:20:51 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011.04.20 04:41:56 | 006,537,728 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2011.01.01 19:00:38 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\etdrv.sys -- (etdrv)
DRV - [2010.10.18 00:42:34 | 000,124,648 | ---- | M] (SANDBOXIE L.T.D) [Kernel | On_Demand | Stopped] -- C:\Programme\Sandboxie\SbieDrv.sys -- (SbieDrv)
DRV - [2010.06.25 19:07:14 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2010.06.17 16:27:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010.06.17 16:26:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2010.04.27 12:56:44 | 000,019,496 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AppleCharger.sys -- (AppleCharger)
DRV - [2010.04.03 11:02:54 | 000,240,608 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\RsFx0150.sys -- (RsFx0150)
DRV - [2010.03.26 12:21:26 | 005,883,936 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010.03.08 12:41:48 | 000,220,112 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2010.02.11 14:02:15 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2010.01.27 10:58:32 | 000,098,928 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2009.11.23 17:37:18 | 000,014,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LGVirHid.sys -- (LGVirHid)
DRV - [2009.11.23 17:37:08 | 000,019,720 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV - [2009.11.18 01:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009.11.18 01:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009.10.26 17:19:02 | 000,136,704 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV - [2009.10.26 17:19:00 | 000,058,240 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nusb3hub.sys -- (nusb3hub)
DRV - [2009.03.18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008.05.16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)
DRV - [2008.05.16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)
DRV - [2008.05.16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)
DRV - [2008.02.12 04:42:38 | 000,232,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\VMM.sys -- (vmm)
DRV - [2008.02.05 02:50:44 | 000,059,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMNetSrv.sys -- (VPCNetS2)
DRV - [2008.01.09 11:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri)
DRV - [2006.11.02 08:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006.05.01 13:49:00 | 000,097,184 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE26mdm.sys -- (SE26mdm)
DRV - [2006.05.01 13:48:56 | 000,009,360 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE26mdfl.sys -- (SE26mdfl)
DRV - [2006.05.01 13:48:04 | 000,061,600 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE26bus.sys -- (SE26bus) Sony Ericsson Device 038 Driver driver (WDM)
DRV - [2003.10.15 17:52:50 | 000,174,530 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ov519vid.sys -- (ovt519)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F6 1C 8B A0 9C C0 CB 01  [binary data]
IE - HKCU\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\1105272345\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Programme\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=IEFM1&q="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.de/"
FF - prefs.js..extensions.enabledItems: :5.0.31.0
FF - prefs.js..extensions.enabledItems: :1.0
FF - prefs.js..extensions.enabledItems: :1.0.4
FF - prefs.js..keyword.URL: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.2.6&q="
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Programme\GamersFirst\LIVE!\nplivelauncher.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Programme\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=4.0: C:\Programme\MSN Toolbar\Platform\4.0.0357.1\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Programme\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Dokumente und Einstellungen\alex\Lokale Einstellungen\Anwendungsdaten\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Programme\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\: C:\Programme\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.05.05 21:03:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\: C:\Programme\MSN Toolbar\Platform\4.0.0357.1\Firefox [2011.05.05 21:04:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2011.05.07 03:34:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011.07.12 21:26:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2011.06.17 18:10:59 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\: C:\Programme\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.05.05 21:03:30 | 000,000,000 | ---D | M]
 
[2010.12.07 07:26:13 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Extensions
[2011.07.18 13:15:08 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\extensions
[2011.06.20 18:39:43 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.03.25 22:30:44 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\extensions\
[2011.03.25 21:06:11 | 000,000,000 | ---D | M] (Battlefield Play4Free) -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\extensions\
[2011.05.03 14:27:23 | 000,002,400 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\searchplugins\askcom.xml
[2010.12.24 22:29:32 | 000,001,819 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\searchplugins\bing.xml
[2011.07.18 18:23:07 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\searchplugins\icqplugin-1.xml
[2011.07.11 15:41:37 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\searchplugins\icqplugin-2.xml
[2011.06.20 10:45:18 | 000,000,168 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\searchplugins\icqplugin.gif
[2011.06.20 10:45:18 | 000,000,618 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\searchplugins\icqplugin.src
[2011.06.05 11:50:45 | 000,001,056 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Mozilla\Firefox\Profiles\7g98rf6h.default\searchplugins\icqplugin.xml
[2011.07.12 21:26:23 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.06.01 19:21:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011.05.03 14:47:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
File not found (No name found) -- 
() (No name found) -- C:\DOKUMENTE UND EINSTELLUNGEN\ALEX\ANWENDUNGSDATEN\MOZILLA\FIREFOX\PROFILES\7G98RF6H.DEFAULT\EXTENSIONS\.XPI
[2011.05.03 14:46:58 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAMME\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011.07.08 09:31:38 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2011.05.03 14:46:57 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll
[2010.01.01 10:00:00 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.01.01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2010.01.01 10:00:00 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2010.01.01 10:00:00 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2010.01.01 10:00:00 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2010.01.01 10:00:00 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2011.07.11 18:18:38 | 000,000,917 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 cadb.nflavor.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\1105272345\ICQToolBar.dll (ICQ)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [36X Raid Configurer] C:\WINDOWS\System32\xRaidSetup.exe (Gigabyte Technology Corp.)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BCU] C:\Programme\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [Launch LCDMon] C:\Programme\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LGDCore] C:\Programme\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LgDeviceAgent] C:\Programme\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Programme\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\GamersFirst LIVE!.lnk = C:\Programme\GamersFirst\LIVE!\Live.exe (GamersFirst)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Programme\ICQ7.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Programme\ICQ7.5\ICQ.exe (ICQ, LLC.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 () - http://www.schueler.cc/onmouseout=
O24 - Desktop Components:1 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\alex\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\alex\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Programme\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.11.30 19:11:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{fa0b49fe-fca6-11df-93a4-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{fa0b49fe-fca6-11df-93a4-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{fa0b49fe-fca6-11df-93a4-806d6172696f}\Shell\AutoRun\command - "" = E:\Run.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011.07.18 21:49:23 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\ID Changer Ultimate Bug Fix
[2011.07.18 13:22:00 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\iAcc [v0.7]
[2011.07.18 13:20:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\iAcc [v0.8]
[2011.07.18 13:20:25 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Lokale Einstellungen\Anwendungsdaten\iAcc
[2011.07.18 13:20:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\iAcc [v0.9]
[2011.07.18 13:05:18 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Zeus TF2 Base
[2011.07.18 13:03:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\generic_loader
[2011.07.16 12:04:12 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Th4natoS Debugger Bypass
[2011.07.16 11:50:03 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Th4natoS Debugger Bypass Source
[2011.07.16 09:49:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\StrideLogger
[2011.07.15 15:12:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\worldedit-4.6
[2011.07.15 13:23:14 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\S4 Hack by Asplayer v0.1
[2011.07.14 20:52:55 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Dokumente und Einstellungen\alex\Desktop\Minecraftc.exe
[2011.07.13 20:06:35 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\smallD3D
[2011.07.12 21:45:22 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\WarHAx Menu 1.1
[2011.07.12 21:42:14 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Shad0wBase
[2011.07.12 19:01:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Detours
[2011.07.12 14:05:06 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\alex\Recent
[2011.07.12 03:01:53 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\ZaneSlaymanD3Dbase
[2011.07.12 01:21:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Flamers Base
[2011.07.11 21:04:50 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Multihack By Giommi®
[2011.07.11 20:28:32 | 000,000,000 | ---D | C] -- C:\Programme\Process Hacker 2
[2011.07.11 20:28:32 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Process Hacker 2
[2011.07.11 19:04:35 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Project
[2011.07.11 17:38:16 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\SkillerD3D
[2011.07.11 17:09:00 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Obfuscator v1.3.8e
[2011.07.11 13:58:27 | 000,000,000 | ---D | C] -- C:\Programme\PServer
[2011.07.10 19:34:17 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Technology & Mr.Sh00t D3D
[2011.07.10 19:25:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\WarHook v2.0
[2011.07.10 18:22:18 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\g_BHD
[2011.07.09 10:16:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\D3Dbase
[2011.07.06 22:07:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MicrosoftCop
[2011.07.06 21:46:25 | 000,000,000 | ---D | C] -- C:\Programme\Bifrost
[2011.07.06 21:11:07 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Wireshark
[2011.07.06 21:06:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\WinPcap
[2011.07.06 21:06:27 | 000,000,000 | ---D | C] -- C:\Programme\WinPcap
[2011.07.06 21:06:05 | 000,000,000 | ---D | C] -- C:\Programme\Wireshark
[2011.07.04 15:23:20 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\S4 League Suspender
[2011.07.03 21:13:27 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Benoit934-trainer
[2011.07.03 15:24:05 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\karraka-d3d9-base
[2011.07.02 18:40:33 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\LogMeIn Hamachi
[2011.07.02 18:40:32 | 000,000,000 | ---D | C] -- C:\Programme\LogMeIn Hamachi
[2011.07.02 17:25:01 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Public
[2011.07.02 17:19:54 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\CyberRazzer D3D9 Base
[2011.07.01 23:40:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Skype
[2011.07.01 22:37:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Skype
[2011.07.01 22:37:36 | 000,000,000 | R--D | C] -- C:\Programme\Skype
[2011.07.01 16:49:00 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\Unity
[2011.06.30 16:36:07 | 000,000,000 | -HSD | C] -- C:\found.002
[2011.06.28 21:35:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\core_drop
[2011.06.26 17:14:47 | 001,629,696 | ---- | C] (Microsoft Corporation) -- C:\Dokumente und Einstellungen\alex\Desktop\d3d9.dll
[2011.06.26 17:14:47 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\d3d9
[2011.06.26 15:35:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\Stud_PE
[2011.06.25 23:09:16 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\PointerDll
[2011.06.25 21:51:27 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\X7
[2011.06.25 15:01:57 | 000,000,000 | -HSD | C] -- C:\found.001
[2011.06.23 16:11:59 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\rapluancher
[2011.06.23 16:08:08 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\RappelzRepack
[2011.06.22 14:45:08 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\alex\Desktop\xKarraKa Sprited + UD
[2011.06.19 21:41:53 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Nexon
[2011.06.19 20:46:41 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Nexon
[2011.06.19 20:44:54 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonEU
[2011.06.19 19:09:53 | 000,446,464 | ---- | C] (NEXON Inc.) -- C:\WINDOWS\NEXON_EU_DownloaderUpdater.exe
[2011.06.19 19:09:53 | 000,000,000 | ---D | C] -- C:\Nexon
[2011.01.01 15:26:55 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\hpeD.dll
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011.07.18 22:41:00 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011.07.18 21:50:50 | 000,001,090 | ---- | M] () -- C:\WINDOWS\IDChanger.ini
[2011.07.18 19:41:00 | 000,001,082 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011.07.18 12:53:07 | 1368,416,812 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\clip0017.avi
[2011.07.18 12:19:04 | 000,000,238 | ---- | M] () -- C:\WINDOWS\tasks\Game_Booster_Startup.job
[2011.07.18 12:18:57 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys
[2011.07.18 12:18:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011.07.16 22:31:37 | 755,272,661 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\S4Client3.exe
[2011.07.16 22:31:10 | 755,612,629 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\S4Client.exe.dmp
[2011.07.16 20:44:16 | 000,000,982 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\SciTE.session
[2011.07.16 19:39:47 | 772,030,091 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\S4Client2.exe
[2011.07.16 18:49:11 | 000,000,140 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.2
[2011.07.16 18:49:11 | 000,000,080 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.0
[2011.07.16 18:49:11 | 000,000,060 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.1
[2011.07.16 18:49:11 | 000,000,020 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.4
[2011.07.16 18:49:11 | 000,000,020 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.3
[2011.07.16 18:49:10 | 000,001,164 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR
[2011.07.16 15:28:31 | 000,892,332 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\IMG_16072011_152838.png
[2011.07.15 12:34:02 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.07.14 22:21:18 | 000,140,024 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011.07.14 22:21:13 | 000,280,768 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2011.07.14 20:53:21 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Dokumente und Einstellungen\alex\Desktop\Minecraftc.exe
[2011.07.14 13:07:24 | 003,518,571 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\D3DDDDDDDDDD.rar
[2011.07.14 13:03:21 | 000,251,933 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\IceVisionzX Pre-Alpha 0.2.png
[2011.07.14 09:47:05 | 000,128,504 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.07.13 16:00:44 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011.07.12 22:53:27 | 006,370,666 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\PointerDll.rar
[2011.07.12 21:26:24 | 000,000,696 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
[2011.07.12 19:40:26 | 000,000,060 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Runner.au3
[2011.07.12 16:50:34 | 000,002,477 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Suspender.au3
[2011.07.12 16:49:05 | 000,289,297 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Suspender.exe
[2011.07.12 16:41:28 | 000,073,747 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Scannen0001.jpg
[2011.07.12 14:05:52 | 000,003,992 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\cc_20110712_140550.reg
[2011.07.12 11:02:08 | 000,002,241 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Skype.lnk
[2011.07.12 02:10:50 | 000,000,454 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\HardBase.FM.asx
[2011.07.11 20:33:26 | 003,261,035 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\PointerDll.rar
[2011.07.11 20:31:48 | 066,125,307 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\S4Client.exe.dmp
[2011.07.11 20:28:32 | 000,001,659 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Process Hacker 2.lnk
[2011.07.11 18:52:07 | 003,296,585 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Project.zip
[2011.07.11 18:18:38 | 000,000,917 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.07.11 18:15:07 | 000,000,794 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\War Rock.lnk
[2011.07.11 18:02:40 | 000,000,718 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Verknüpfung mit WRLauncher.lnk
[2011.07.11 17:17:37 | 000,295,619 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Changer by Kauknochen[x32].exe
[2011.07.11 17:17:23 | 000,792,771 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Changer by Kauknochen[x64].exe
[2011.07.11 17:15:38 | 000,045,692 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Runner-obfuscated.au3
[2011.07.11 17:15:26 | 000,045,717 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Runner-Sicherheitskopie.au3
[2011.07.11 17:15:26 | 000,045,717 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Runner.au3
[2011.07.11 15:17:43 | 000,030,208 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.07.11 14:21:38 | 000,000,853 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\WarRock PServer.lnk
[2011.07.11 14:17:52 | 000,000,777 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\WR Pserver.lnk
[2011.07.11 14:06:03 | 000,000,779 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\GamersFirst LIVE!.lnk
[2011.07.11 14:06:03 | 000,000,751 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\GamersFirst LIVE!.lnk
[2011.07.11 13:46:09 | 004,072,341 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\NikM Project V.I.P. v2.1 (Artillery).png
[2011.07.10 15:29:56 | 000,610,362 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2011.07.10 15:29:56 | 000,561,204 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.07.10 15:29:56 | 000,137,626 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2011.07.10 15:29:56 | 000,110,838 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.07.08 20:40:52 | 000,000,035 | ---- | M] () -- C:\WINDOWS\WindowsSystem1337.ini
[2011.07.07 21:51:08 | 000,019,872 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\cc_20110707_215106.reg
[2011.07.06 22:11:46 | 000,280,768 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.ex0
[2011.07.06 21:06:28 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\-1
[2011.07.05 21:19:01 | 000,427,539 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\ich habe kein cpu Oo.jpg
[2011.07.05 19:58:42 | 000,300,921 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\funny D.exe
[2011.07.05 19:58:32 | 000,000,106 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\funny D.au3
[2011.07.05 19:54:22 | 000,315,569 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Fragebogen.exe
[2011.07.05 19:50:20 | 000,027,579 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\SIMPLE~1.au3
[2011.07.05 19:50:05 | 000,314,259 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Simple gamestarter.exe
[2011.07.05 19:35:00 | 000,300,977 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\funny D.exe
[2011.07.04 22:49:03 | 000,000,816 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\versuch nr2.au3
[2011.07.04 20:38:00 | 000,000,218 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\lustig.vbs
[2011.07.03 20:43:45 | 000,001,121 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\AutoIt v3 Script (neu) (2).au3
[2011.07.03 20:08:20 | 000,029,195 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\STRING~2.au3
[2011.07.03 20:07:58 | 000,812,339 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\String-Float Value List [x64].exe
[2011.07.03 18:57:16 | 000,000,881 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\AutoIt v3 Script (neu).au3
[2011.07.03 14:53:31 | 000,001,553 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\test.au3
[2011.07.02 22:43:01 | 000,387,774 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\sicherung.png
[2011.07.01 22:35:57 | 000,032,768 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\skype-extras (justenstinkt).support
[2011.07.01 20:20:51 | 000,138,192 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2011.07.01 20:20:51 | 000,066,616 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2011.07.01 18:08:23 | 000,023,478 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\cc_20110701_180820.reg
[2011.07.01 06:11:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2011.07.01 00:56:30 | 000,045,568 | ---- | M] () -- C:\zYan_IDChanger.dll
[2011.06.28 16:12:11 | 000,028,084 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\scanner.au3
[2011.06.28 14:51:29 | 000,001,702 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\tracks.rar
[2011.06.28 14:50:12 | 000,001,702 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Track01.rar
[2011.06.27 18:49:09 | 000,000,097 | ---- | M] () -- C:\WINDOWS\cyt.ini
[2011.06.26 22:13:58 | 000,455,339 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Video call snapshot 3.png
[2011.06.26 16:18:41 | 268,172,032 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.2
[2011.06.26 16:18:41 | 240,067,296 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.1
[2011.06.26 16:18:41 | 154,012,192 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.4
[2011.06.26 16:18:41 | 111,156,864 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.3
[2011.06.26 16:18:41 | 038,501,920 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.0
[2011.06.26 16:17:04 | 000,001,161 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR
[2011.06.25 22:19:08 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.3
[2011.06.25 22:19:08 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.2
[2011.06.25 22:19:08 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.1
[2011.06.25 22:19:08 | 000,000,000 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.0
[2011.06.25 21:51:20 | 000,062,791 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\X7.rar
[2011.06.25 21:25:04 | 000,050,688 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\XtrapBypass.dll
[2011.06.23 15:26:03 | 000,001,435 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\IDCAS.ini
[2011.06.22 15:27:29 | 001,152,923 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\wirtschaft20001.pdf
[2011.06.22 15:26:32 | 001,180,498 | ---- | M] () -- C:\Dokumente und Einstellungen\alex\Desktop\Wirtschaft10001.pdf
[2011.06.19 20:46:41 | 000,001,524 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Combat Arms EU.lnk
[2011.06.19 19:09:53 | 000,446,464 | ---- | M] (NEXON Inc.) -- C:\WINDOWS\NEXON_EU_DownloaderUpdater.exe
[2011.06.19 19:09:53 | 000,000,235 | ---- | M] () -- C:\WINDOWS\System32\nxEuUninstall.bat
[8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011.07.18 12:48:24 | 1368,416,812 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\clip0017.avi
[2011.07.16 22:31:23 | 755,272,661 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\S4Client3.exe
[2011.07.16 22:30:48 | 755,612,629 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\S4Client.exe.dmp
[2011.07.16 19:39:14 | 772,030,091 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\S4Client2.exe
[2011.07.16 18:49:10 | 000,000,140 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.2
[2011.07.16 18:49:10 | 000,000,060 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.1
[2011.07.16 18:49:10 | 000,000,020 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.4
[2011.07.16 18:49:10 | 000,000,020 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.3
[2011.07.16 18:48:12 | 000,001,164 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR
[2011.07.16 18:48:12 | 000,000,080 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z.PTR.0
[2011.07.16 15:28:18 | 000,892,332 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\IMG_16072011_152838.png
[2011.07.14 13:06:57 | 003,518,571 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\D3DDDDDDDDDD.rar
[2011.07.14 13:03:13 | 000,251,933 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\IceVisionzX Pre-Alpha 0.2.png
[2011.07.13 16:00:43 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011.07.12 21:26:24 | 000,000,696 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk
[2011.07.12 16:49:04 | 000,289,297 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\Suspender.exe
[2011.07.12 16:41:26 | 000,073,747 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Scannen0001.jpg
[2011.07.12 14:05:51 | 000,003,992 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\cc_20110712_140550.reg
[2011.07.12 02:10:49 | 000,000,454 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\HardBase.FM.asx
[2011.07.11 20:32:30 | 003,261,035 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\PointerDll.rar
[2011.07.11 20:31:43 | 066,125,307 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\S4Client.exe.dmp
[2011.07.11 20:28:32 | 000,001,659 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\Process Hacker 2.lnk
[2011.07.11 18:39:19 | 003,296,585 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\Project.zip
[2011.07.11 18:15:07 | 000,000,794 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\War Rock.lnk
[2011.07.11 18:02:40 | 000,000,718 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\Verknüpfung mit WRLauncher.lnk
[2011.07.11 14:20:56 | 000,000,853 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\WarRock PServer.lnk
[2011.07.11 14:06:48 | 000,000,777 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\WR Pserver.lnk
[2011.07.11 14:04:43 | 000,000,779 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\GamersFirst LIVE!.lnk
[2011.07.11 14:04:43 | 000,000,751 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\GamersFirst LIVE!.lnk
[2011.07.11 13:44:34 | 004,072,341 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\NikM Project V.I.P. v2.1 (Artillery).png
[2011.07.07 21:51:07 | 000,019,872 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\cc_20110707_215106.reg
[2011.07.07 19:37:52 | 000,045,568 | ---- | C] () -- C:\zYan_IDChanger.dll
[2011.07.07 19:37:52 | 000,027,648 | ---- | C] () -- C:\zYan_X.dll
[2011.07.07 06:06:23 | 000,000,035 | ---- | C] () -- C:\WINDOWS\WindowsSystem1337.ini
[2011.07.06 21:06:28 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\-1
[2011.07.06 21:06:14 | 000,001,461 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Wireshark.lnk
[2011.07.05 21:18:15 | 000,427,539 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\ich habe kein cpu Oo.jpg
[2011.07.05 19:58:41 | 000,300,921 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\funny D.exe
[2011.07.05 19:53:57 | 000,315,569 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Fragebogen.exe
[2011.07.05 19:50:19 | 000,027,579 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\SIMPLE~1.au3
[2011.07.05 19:49:34 | 000,314,259 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\Simple gamestarter.exe
[2011.07.05 19:33:27 | 000,300,977 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\funny D.exe
[2011.07.05 19:29:10 | 000,000,106 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\funny D.au3
[2011.07.04 22:49:03 | 000,000,816 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\versuch nr2.au3
[2011.07.04 20:37:59 | 000,000,218 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\lustig.vbs
[2011.07.03 20:43:45 | 000,001,121 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\AutoIt v3 Script (neu) (2).au3
[2011.07.03 20:08:19 | 000,029,195 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\STRING~2.au3
[2011.07.03 20:07:19 | 000,812,339 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\String-Float Value List [x64].exe
[2011.07.03 18:25:30 | 000,000,881 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\AutoIt v3 Script (neu).au3
[2011.07.02 22:40:47 | 000,387,774 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\sicherung.png
[2011.07.01 23:40:48 | 000,002,241 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Skype.lnk
[2011.07.01 22:35:57 | 000,032,768 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\skype-extras (justenstinkt).support
[2011.07.01 18:08:22 | 000,023,478 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\cc_20110701_180820.reg
[2011.06.28 14:51:29 | 000,001,702 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\tracks.rar
[2011.06.28 14:50:12 | 000,001,702 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Track01.rar
[2011.06.26 22:11:00 | 000,455,339 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\Video call snapshot 3.png
[2011.06.26 16:17:04 | 268,172,032 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.2
[2011.06.26 16:17:04 | 240,067,296 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.1
[2011.06.26 16:17:04 | 154,012,192 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.4
[2011.06.26 16:17:04 | 111,156,864 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.3
[2011.06.26 16:17:04 | 038,501,920 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR.0
[2011.06.26 16:17:04 | 000,001,161 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z  addy.PTR
[2011.06.25 23:06:12 | 006,370,666 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\PointerDll.rar
[2011.06.25 22:19:08 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.3
[2011.06.25 22:19:08 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.2
[2011.06.25 22:19:08 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.1
[2011.06.25 22:19:08 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Eigene Dateien\z addy.PTR.0
[2011.06.25 21:51:19 | 000,062,791 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\X7.rar
[2011.06.25 21:25:03 | 000,050,688 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\XtrapBypass.dll
[2011.06.22 17:51:02 | 000,001,435 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\IDCAS.ini
[2011.06.22 15:27:09 | 001,152,923 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\wirtschaft20001.pdf
[2011.06.22 15:26:11 | 001,180,498 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Desktop\Wirtschaft10001.pdf
[2011.06.19 20:46:41 | 000,001,524 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Combat Arms EU.lnk
[2011.06.19 19:09:53 | 000,000,235 | ---- | C] () -- C:\WINDOWS\System32\nxEuUninstall.bat
[2011.06.16 20:42:20 | 000,000,097 | ---- | C] () -- C:\WINDOWS\cyt.ini
[2011.05.27 21:54:09 | 000,001,090 | ---- | C] () -- C:\WINDOWS\IDChanger.ini
[2011.05.27 21:52:39 | 000,000,105 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011.05.26 20:39:43 | 000,000,000 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\chrtmp
[2011.05.26 20:39:30 | 001,443,840 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\SMS Terrorist.exe
[2011.05.24 15:22:09 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2011.05.24 15:22:08 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2011.05.07 15:29:22 | 001,589,248 | ---- | C] () -- C:\WINDOWS\System32\libmysql_d.dll
[2011.05.05 20:56:32 | 000,238,251 | ---- | C] () -- C:\WINDOWS\hpoins52.dat
[2011.05.05 20:56:32 | 000,001,333 | ---- | C] () -- C:\WINDOWS\hpomdl52.dat
[2011.05.03 14:41:04 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
[2011.04.25 18:53:04 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2011.04.19 22:10:32 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\OVDecode.dll
[2011.04.17 20:56:07 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WB.ini
[2011.04.08 13:28:58 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2011.04.07 17:16:00 | 000,021,504 | ---- | C] () -- C:\WINDOWS\jestertb.dll
[2011.04.03 13:50:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\Access.dat
[2011.03.13 16:20:03 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2011.02.28 02:32:07 | 001,124,265 | ---- | C] () -- C:\WINDOWS\S4 League Hack Patch 27 By Christo76 V2.exe
[2011.02.20 16:59:31 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011.01.27 19:12:36 | 000,002,184 | ---- | C] () -- C:\WINDOWS\Sandboxie.ini
[2011.01.25 18:07:03 | 002,336,384 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2011.01.25 18:07:03 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2011.01.25 18:07:03 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2011.01.25 18:07:03 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2011.01.25 18:07:03 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2010.12.26 03:33:04 | 004,405,378 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-436374069-1682526488-839522115-1004-0.dat
[2010.12.26 03:33:04 | 000,141,106 | ---- | C] () -- C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-System.dat
[2010.12.21 22:19:16 | 000,200,704 | ---- | C] () -- C:\WINDOWS\sel3110.exe
[2010.12.21 22:19:16 | 000,040,960 | ---- | C] () -- C:\WINDOWS\CleanDev.exe
[2010.12.21 22:19:16 | 000,032,528 | ---- | C] () -- C:\WINDOWS\amcap.exe
[2010.12.14 18:29:02 | 000,140,024 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010.12.14 18:29:01 | 000,138,056 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Anwendungsdaten\PnkBstrK.sys
[2010.12.14 18:28:44 | 000,280,768 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010.12.14 18:28:43 | 002,434,856 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_bc2.exe
[2010.12.14 18:28:43 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2010.12.12 13:23:47 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010.12.07 07:26:11 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010.12.05 00:57:24 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010.12.03 15:35:46 | 000,030,208 | ---- | C] () -- C:\Dokumente und Einstellungen\alex\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.11.30 22:17:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010.11.30 22:17:55 | 000,233,012 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010.11.30 19:54:14 | 000,024,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\GVTDrv.sys
[2010.11.30 19:50:57 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\CommCmd.dll
[2010.11.30 19:48:45 | 000,031,272 | ---- | C] () -- C:\WINDOWS\System32\AppleChargerSrv.exe
[2010.11.30 19:48:45 | 000,019,496 | ---- | C] () -- C:\WINDOWS\System32\drivers\AppleCharger.sys
[2010.11.30 19:46:57 | 000,072,304 | R--- | C] () -- C:\WINDOWS\System32\XSrvSetup.exe
[2010.11.30 19:46:52 | 000,080,416 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2010.11.30 19:38:36 | 000,207,400 | R--- | C] () -- C:\WINDOWS\GSetup.exe
[2010.11.30 19:38:36 | 000,000,010 | ---- | C] () -- C:\WINDOWS\GSetup.ini
[2010.11.30 19:13:21 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010.11.30 19:09:11 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.11.30 19:02:00 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010.11.30 19:00:43 | 000,128,504 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.10.14 02:36:44 | 000,179,263 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010.06.25 19:03:12 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2009.06.07 13:27:20 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\vbzlib1.dll
[2008.05.26 23:23:36 | 000,016,834 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008.05.26 23:23:34 | 000,024,188 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008.05.26 23:23:32 | 000,016,568 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008.05.26 22:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008.05.26 22:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2004.08.04 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004.08.04 14:00:00 | 000,610,362 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2004.08.04 14:00:00 | 000,561,204 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004.08.04 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004.08.04 14:00:00 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2004.08.04 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004.08.04 14:00:00 | 000,137,626 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2004.08.04 14:00:00 | 000,110,838 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004.08.04 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004.08.04 14:00:00 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2004.08.04 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004.08.04 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004.08.04 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004.08.04 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2001.09.04 01:54:42 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001.09.04 01:52:52 | 000,004,520 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
 
[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2011.03.02 23:07:35 | 000,000,000 | ---D | M](C:\DOKUME~1??lex) -- C:\DOKUME~1耀䑣lex
[2011.03.02 23:07:35 | 000,000,000 | ---D | C](C:\DOKUME~1??lex) -- C:\DOKUME~1耀䑣lex

< End of report >

[_xAtomicx_]

^Infiziert.

[Zepp']

Quote:

Originally Posted by _xAtomicx_

^Infiziert.

Wer ist Infiziert? Elitepvpers Board? oder whin zeigst du?

b2t:
Hab eine frage.
1. Was heißt Important?
2. Gehört das nicht ehe in die WarRock Section anstadt WarRock hack seaction?
3. Sticky reicht doch oder?

[_xAtomicx_]

der Thread über mir .

[theitfan1337]

#closed