OTL logfile created on: 04.03.2012 17:55:49 - Run 1
OTL by OldTimer - Version 3.2.35.1     Folder = C:\
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,93 Gb Total Physical Memory | 2,50 Gb Available Physical Memory | 85,16% Memory free
4,77 Gb Paging File | 4,42 Gb Available in Paging File | 92,69% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 298,08 Gb Total Space | 270,11 Gb Free Space | 90,62% Space Free | Partition Type: NTFS
 
Computer Name: YB-PC | User Name: yb | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012.03.04 17:55:14 | 000,584,704 | ---- | M] (OldTimer Tools) -- C:\OTL.exe
PRC - [2012.03.04 17:29:14 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- c:\Programme\HiJackThis.exe
PRC - [2012.02.19 20:27:54 | 000,924,632 | -H-- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2009.07.21 13:34:28 | 000,185,089 | -H-- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2009.05.13 15:48:18 | 000,108,289 | -H-- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2004.08.04 13:00:00 | 001,035,264 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004.08.04 13:00:00 | 000,401,408 | -H-- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012.02.19 20:27:53 | 001,911,768 | -H-- | M] () -- C:\Programme\Mozilla Firefox\mozjs.dll
MOD - [2009.02.27 17:41:26 | 000,311,296 | ---- | M] () -- C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\pdfshell.DEU
MOD - [2009.01.28 15:03:49 | 000,326,401 | -H-- | M] () -- C:\Programme\Avira\AntiVir Desktop\sqlite3.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] --  -- (HidServ)
SRV - [2009.07.21 13:34:28 | 000,185,089 | -H-- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009.05.13 15:48:18 | 000,108,289 | -H-- | M] (Avira GmbH) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Unknown] --  -- (pxtdrpoc)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (MACNDIS5)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2009.11.25 11:19:02 | 000,056,816 | -H-- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009.10.20 08:13:04 | 002,481,536 | -H-- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2009.05.11 09:12:20 | 000,028,520 | -H-- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.03.30 09:33:03 | 000,096,104 | -H-- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2009.02.13 11:35:01 | 000,011,608 | -H-- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009.01.15 09:51:48 | 000,038,912 | RH-- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
DRV - [2009.01.13 12:10:08 | 005,015,040 | -H-- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Programme\Mozilla Firefox\components [2012.02.19 20:27:54 | 000,000,000 | -H-D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2012.02.15 14:44:18 | 000,000,000 | -H-D | M]
 
[2010.02.24 18:26:33 | 000,000,000 | -H-D | M] (No name found) -- C:\Dokumente und Einstellungen\yb\Anwendungsdaten\Mozilla\Extensions
[2012.01.26 08:14:21 | 000,000,000 | -H-D | M] (No name found) -- C:\Dokumente und Einstellungen\yb\Anwendungsdaten\Mozilla\Firefox\Profiles\i4tk06v4.default\extensions
[2012.01.26 08:14:21 | 000,000,000 | -H-D | M] (Yahoo! Toolbar) -- C:\Dokumente und Einstellungen\yb\Anwendungsdaten\Mozilla\Firefox\Profiles\i4tk06v4.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011.12.05 23:01:27 | 000,000,000 | -H-D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2012.02.19 20:27:54 | 000,134,104 | -H-- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2010.05.21 09:59:36 | 000,411,368 | -H-- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll
[2012.01.19 13:27:01 | 000,001,392 | -H-- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.01.19 13:27:01 | 000,002,252 | -H-- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2012.01.19 13:27:01 | 000,001,153 | -H-- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2012.01.19 13:27:01 | 000,006,805 | -H-- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.01.19 13:27:01 | 000,001,178 | -H-- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.01.19 13:27:01 | 000,001,105 | -H-- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
 
O1 HOSTS File: ([2004.08.04 13:00:00 | 000,000,820 | -H-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Alcmtr] ALCMTR.EX File not found
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [AzMixerSel] C:\Programme\Realtek\Audio\Drivers\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [RTHDCPL] RTHDCPL.EX File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.100.78
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{291678C3-61B6-4847-A935-0D5D6014D089}: DhcpNameServer = 192.168.100.78
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BF38CE80-9791-4EE8-81EA-F14F5795F4CC}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\yb\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\yb\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.02.05 08:00:48 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{4c3cbfea-d0ac-11df-a2c3-00262285f601}\Shell\AutoRun\command - "" = E:\Menu.exe
O33 - MountPoints2\{570a623c-6616-11e1-a7c2-a0a103036c69}\Shell\AutoRun\command - "" = E:\PortableRoboForm.exe
O33 - MountPoints2\{570a623c-6616-11e1-a7c2-a0a103036c69}\Shell\RoboForm2Go\command - "" = E:\PortableRoboForm.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- 0
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- 0
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012.03.04 17:55:31 | 000,584,704 | ---- | C] (OldTimer Tools) -- C:\OTL.exe
[2012.03.04 17:30:21 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Programme\HiJackThis.exe
[2012.03.04 17:26:09 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\yb\Recent
[2012.03.04 17:24:45 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\CCleaner
[2012.03.04 17:24:44 | 000,000,000 | ---D | C] -- C:\Programme\CCleaner
[2012.03.04 17:02:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2012.03.04 17:02:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2012.03.04 10:39:03 | 000,000,000 | -H-D | C] -- C:\Kaspersky Rescue Disk 10.0
[2012.03.03 13:51:10 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\yb\Startmenü\Programme\System Check
[2012.02.28 10:44:36 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\yb\Startmenü\Programme\theHunter
[2012.02.28 10:44:31 | 000,527,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2012.02.28 10:44:31 | 000,239,960 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2012.02.28 10:44:31 | 000,074,072 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2012.02.28 10:44:30 | 002,106,216 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2012.02.28 10:44:30 | 001,998,168 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2012.02.28 10:44:30 | 001,868,128 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2012.02.28 10:44:30 | 000,470,880 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2012.02.28 10:44:30 | 000,248,672 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2012.02.28 10:44:29 | 000,528,216 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2012.02.28 10:44:29 | 000,515,416 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2012.02.28 10:44:29 | 000,238,936 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2012.02.28 10:44:29 | 000,074,072 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2012.02.28 10:44:29 | 000,022,360 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2012.02.28 10:44:28 | 005,501,792 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2012.02.28 10:44:28 | 001,974,616 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2012.02.28 10:44:28 | 000,238,936 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2012.02.28 10:44:27 | 001,892,184 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2012.02.28 10:44:27 | 001,846,632 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2012.02.28 10:44:27 | 000,453,456 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2012.02.28 10:44:27 | 000,453,456 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2012.02.28 10:44:27 | 000,235,344 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2012.02.28 10:44:26 | 004,178,264 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll
[2012.02.28 10:44:26 | 000,517,448 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2012.02.28 10:44:26 | 000,235,352 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2012.02.28 10:44:26 | 000,069,464 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2012.02.28 10:44:26 | 000,022,360 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2012.02.28 10:44:25 | 004,379,984 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2012.02.28 10:44:25 | 002,036,576 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2012.02.28 10:44:25 | 000,514,384 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2012.02.28 10:44:25 | 000,452,440 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2012.02.28 10:44:25 | 000,070,992 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2012.02.28 10:44:24 | 000,509,448 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2012.02.28 10:44:24 | 000,238,088 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2012.02.28 10:44:24 | 000,235,856 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2012.02.28 10:44:24 | 000,068,616 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2012.02.28 10:44:24 | 000,023,376 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2012.02.28 10:44:23 | 003,851,784 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2012.02.28 10:44:23 | 001,493,528 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2012.02.28 10:44:23 | 000,507,400 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2012.02.28 10:44:23 | 000,467,984 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2012.02.28 10:44:23 | 000,065,032 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2012.02.28 10:44:22 | 001,491,992 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2012.02.28 10:44:22 | 000,467,984 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2012.02.28 10:44:22 | 000,238,088 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2012.02.28 10:44:22 | 000,025,608 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2012.02.28 10:44:21 | 003,850,760 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2012.02.28 10:44:21 | 000,479,752 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2012.02.28 10:44:21 | 000,238,088 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2012.02.28 10:44:21 | 000,025,608 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2012.02.28 10:44:20 | 003,786,760 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2012.02.28 10:44:20 | 001,420,824 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2012.02.28 10:44:20 | 000,462,864 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2012.02.28 10:44:20 | 000,267,272 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2012.02.28 10:44:19 | 003,734,536 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2012.02.28 10:44:19 | 001,374,232 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2012.02.28 10:44:19 | 000,444,776 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2012.02.28 10:44:18 | 003,727,720 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2012.02.28 10:44:18 | 001,358,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2012.02.28 10:44:18 | 000,444,776 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2012.02.28 10:44:18 | 000,267,112 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2012.02.28 10:44:18 | 000,266,088 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2012.02.28 10:44:17 | 003,497,832 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2012.02.28 10:44:17 | 001,124,720 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2012.02.28 10:44:17 | 000,443,752 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2012.02.28 10:44:17 | 000,017,928 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2012.02.28 10:44:16 | 003,495,784 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2012.02.28 10:44:16 | 001,123,696 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2012.02.28 10:44:16 | 000,443,752 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2012.02.28 10:44:16 | 000,261,480 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2012.02.28 10:44:16 | 000,081,768 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2012.02.28 10:44:15 | 000,255,848 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2012.02.28 10:44:15 | 000,251,672 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2012.02.28 10:44:14 | 003,426,072 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2012.02.28 10:44:14 | 000,237,848 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2012.02.28 10:44:14 | 000,015,128 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2012.02.28 10:44:13 | 002,414,360 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2012.02.28 10:44:13 | 000,236,824 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2012.02.28 10:44:13 | 000,062,744 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2012.02.28 10:44:12 | 000,230,168 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2012.02.28 10:44:12 | 000,229,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2012.02.28 10:44:12 | 000,062,672 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2012.02.28 10:44:09 | 002,388,176 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2012.02.28 10:44:09 | 002,332,368 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2012.02.28 10:44:09 | 000,230,096 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2012.02.28 10:44:09 | 000,014,032 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2012.02.28 10:44:08 | 002,323,664 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2012.02.28 10:44:08 | 002,319,568 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2012.02.28 10:44:08 | 000,061,136 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2012.02.28 10:44:07 | 002,337,488 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2012.02.28 10:44:07 | 002,297,552 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2012.02.28 10:44:06 | 002,222,800 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2012.02.28 10:41:42 | 000,000,000 | -H-D | C] -- C:\WINDOWS\Logs
[2012.02.28 10:38:41 | 000,000,000 | -H-D | C] -- C:\Programme\theHunter
[2012.02.28 09:49:28 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\yb\Startmenü\Programme\Pro Jäger -Die 3D Entenjagd Simulation
[2012.02.28 09:46:09 | 000,000,000 | -H-D | C] -- C:\Programme\Pro Jäger -Die 3D Entenjagd Simulation
[2012.02.15 14:43:41 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\yb\Anwendungsdaten\MSNInstaller
[2012.02.15 14:29:30 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\yb\Anwendungsdaten\vlc
[2012.02.15 14:29:10 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\VideoLAN
[2012.02.15 14:28:31 | 000,000,000 | -H-D | C] -- C:\Programme\VideoLAN
[2012.02.09 11:13:17 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\yb\Anwendungsdaten\Lite
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Dokumente und Einstellungen\yb\Eigene Dateien\*.tmp files -> C:\Dokumente und Einstellungen\yb\Eigene Dateien\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012.03.04 17:55:14 | 000,584,704 | ---- | M] (OldTimer Tools) -- C:\OTL.exe
[2012.03.04 17:44:46 | 000,302,592 | ---- | M] () -- C:\mjno34k7.exe
[2012.03.04 17:34:39 | 000,000,356 | -H-- | M] () -- C:\WINDOWS\tasks\Registry Reviver-yb-Startup.job
[2012.03.04 17:34:39 | 000,000,272 | -H-- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-861567501-725345543-682003330-1005.job
[2012.03.04 17:34:39 | 000,000,264 | -H-- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-861567501-725345543-682003330-1005.job
[2012.03.04 17:34:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.03.04 17:29:14 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Programme\HiJackThis.exe
[2012.03.04 17:25:56 | 000,094,870 | ---- | M] () -- C:\Dokumente und Einstellungen\yb\Eigene Dateien\cc_20120304_172551.reg
[2012.03.04 17:24:45 | 000,000,654 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
[2012.03.03 13:54:09 | 000,000,440 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\4nVOGbIsiZL6Vt
[2012.03.03 13:51:11 | 000,000,304 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~4nVOGbIsiZL6Vt
[2012.03.03 13:51:11 | 000,000,208 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~4nVOGbIsiZL6Vtr
[2012.03.03 13:51:10 | 000,000,845 | -H-- | M] () -- C:\Dokumente und Einstellungen\yb\Desktop\System Check.lnk
[2012.03.03 13:50:54 | 000,338,432 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\4nVOGbIsiZL6Vt.exe
[2012.03.03 13:36:21 | 000,429,056 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\hTnSpKjCRc.exe
[2012.02.28 09:49:29 | 000,276,307 | -H-- | M] () -- C:\WINDOWS\Pro Jäger -Die 3D Entenjagd Simulation Uninstaller.exe
[2012.02.28 09:49:29 | 000,000,869 | -H-- | M] () -- C:\Dokumente und Einstellungen\yb\Desktop\Pro Jäger - Die 3D Entenjagd Simulation.lnk
[2012.02.18 20:52:43 | 000,012,598 | -H-- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.02.16 20:53:57 | 000,041,472 | -H-- | M] () -- C:\Dokumente und Einstellungen\yb\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.02.11 21:08:57 | 000,415,698 | -H-- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2012.02.11 21:08:57 | 000,400,958 | -H-- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.02.11 21:08:57 | 000,075,384 | -H-- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2012.02.11 21:08:57 | 000,062,620 | -H-- | M] () -- C:\WINDOWS\System32\perfc009.dat
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Dokumente und Einstellungen\yb\Eigene Dateien\*.tmp files -> C:\Dokumente und Einstellungen\yb\Eigene Dateien\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012.03.04 17:45:38 | 000,302,592 | ---- | C] () -- C:\mjno34k7.exe
[2012.03.04 17:25:54 | 000,094,870 | ---- | C] () -- C:\Dokumente und Einstellungen\yb\Eigene Dateien\cc_20120304_172551.reg
[2012.03.04 17:24:45 | 000,000,654 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\CCleaner.lnk
[2012.03.03 13:51:11 | 000,000,304 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~4nVOGbIsiZL6Vt
[2012.03.03 13:51:11 | 000,000,208 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~4nVOGbIsiZL6Vtr
[2012.03.03 13:51:10 | 000,000,845 | -H-- | C] () -- C:\Dokumente und Einstellungen\yb\Desktop\System Check.lnk
[2012.03.03 13:51:02 | 000,000,440 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\4nVOGbIsiZL6Vt
[2012.03.03 13:50:54 | 000,338,432 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\4nVOGbIsiZL6Vt.exe
[2012.03.03 13:39:22 | 000,429,056 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\hTnSpKjCRc.exe
[2012.02.28 09:49:29 | 000,000,869 | -H-- | C] () -- C:\Dokumente und Einstellungen\yb\Desktop\Pro Jäger - Die 3D Entenjagd Simulation.lnk
[2012.02.28 09:49:28 | 000,276,307 | -H-- | C] () -- C:\WINDOWS\Pro Jäger -Die 3D Entenjagd Simulation Uninstaller.exe
[2011.02.28 18:17:55 | 000,000,664 | -H-- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.12.19 08:11:12 | 000,000,050 | -H-- | C] () -- C:\WINDOWS\cdplayer.ini
[2010.03.30 14:31:21 | 000,041,472 | -H-- | C] () -- C:\Dokumente und Einstellungen\yb\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

< End of report >