OTL logfile created on: 27.05.2012 19:14:00 - Run 1
OTL by OldTimer - Version 3.2.43.2     Folder = C:\Dokumente und Einstellungen\Leo\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
1,98 Gb Total Physical Memory | 1,26 Gb Available Physical Memory | 63,39% Memory free
3,83 Gb Paging File | 3,27 Gb Available in Paging File | 85,31% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 449,74 Gb Total Space | 309,82 Gb Free Space | 68,89% Space Free | Partition Type: NTFS
Drive D: | 16,00 Gb Total Space | 11,14 Gb Free Space | 69,64% Space Free | Partition Type: NTFS
Drive K: | 15,10 Gb Total Space | 15,10 Gb Free Space | 100,00% Space Free | Partition Type: FAT32
 
Computer Name: PC-FK10 | User Name: Leo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - C:\Dokumente und Einstellungen\Leo\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Gemeinsame Dateien\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
PRC - C:\Programme\Application Updater\ApplicationUpdater.exe (Spigot, Inc.)
PRC - C:\Programme\SaferSurf\SaferSurfServices.exe (Nutzwerk)
PRC - C:\Programme\SaferSurf\SaferSurfTray.exe (Nutzwerk)
PRC - C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\Akamai\netsession_win.exe (Akamai Technologies, Inc)
PRC - C:\Programme\Microsoft\BingBar\7.1.382.0\SeaPort.EXE (Microsoft Corporation.)
PRC - C:\Programme\Microsoft\BingBar\7.1.382.0\BBSvc.EXE (Microsoft Corporation.)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Programme\Microsoft Security Client\msseces.exe (Microsoft Corporation)
PRC - c:\Programme\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
PRC - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
PRC - C:\Programme\CyberLink\YouCam\YCMMirage.exe (CyberLink)
PRC - C:\WINDOWS\Webcam\S6000\S6000Mnt.exe (Alcor Micro, Corp.)
PRC - C:\Programme\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG)
PRC - C:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Programme\CDBurnerXP\NMSAccessU.exe ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
PRC - C:\Programme\Gemeinsame Dateien\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
PRC - C:\WINDOWS\SMINST\Scheduler.exe ()
PRC - C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE (Microsoft Corporation)
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d5b7368bde0f65aa15d9f46b498cc89\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\3bba1b8b0b5ef0be238b011cc7a0575e\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\995fcf39ead2c2a53e084505c2c67d49\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\8ca00132a08c69697adf1cda32ebd835\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\e4b5afc4da43b1c576f9322f9f2e1bfe\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\e337c89bc9f81b69d7237aa70e935900\mscorlib.ni.dll ()
MOD - c:\Programme\Gemeinsame Dateien\Akamai\netsession_win_6c825ce.dll ()
MOD - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.DEU ()
MOD - C:\Programme\CDBurnerXP\NMSAccessU.exe ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\WINDOWS\SMINST\Scheduler.exe ()
MOD - C:\WINDOWS\system32\pdfcmnnt.dll ()
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - (0242281250168345mcinstcleanup) McAfee Application Installer Cleanup (0242281250168345) -- C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\024228~1.EXE C:\PROGRA~1\GEMEIN~1\McAfee\INSTAL~1\cleanup.ini File not found
SRV - (Application Updater) -- C:\Programme\Application Updater\ApplicationUpdater.exe (Spigot, Inc.)
SRV - (MozillaMaintenance) -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (SaferSurfServices) -- C:\Programme\SaferSurf\SaferSurfServices.exe (Nutzwerk)
SRV - (BBUpdate) -- C:\Programme\Microsoft\BingBar\7.1.382.0\SeaPort.EXE (Microsoft Corporation.)
SRV - (BBSvc) -- C:\Programme\Microsoft\BingBar\7.1.382.0\BBSvc.EXE (Microsoft Corporation.)
SRV - (SkypeUpdate) -- C:\Programme\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (MBAMService) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (Akamai) -- c:\programme\gemeinsame dateien\akamai/netsession_win_6c825ce.dll ()
SRV - (MsMpSvc) -- c:\Programme\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (CodeMeter.exe) -- C:\Programme\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG)
SRV - (McComponentHostService) -- C:\Programme\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.)
SRV - (FLEXnet Licensing Service) -- C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (NMSAccessU) -- C:\Programme\CDBurnerXP\NMSAccessU.exe ()
SRV - (Autodesk Licensing Service) -- C:\Programme\Gemeinsame Dateien\Autodesk Shared\Service\AdskScSrv.exe (Autodesk)
SRV - (PSI_SVC_2) -- C:\Programme\Gemeinsame Dateien\Protexis\License Service\PsiService_2.exe (Protexis Inc.)
SRV - (IviRegMgr) -- C:\Programme\Gemeinsame Dateien\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
SRV - (IDriverT) -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (ose) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (MDM) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE (Microsoft Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - (WDICA) --  File not found
DRV - (PDRFRAME) --  File not found
DRV - (PDRELI) --  File not found
DRV - (PDFRAME) --  File not found
DRV - (PDCOMP) --  File not found
DRV - (PCIDump) --  File not found
DRV - (lbrtfdc) --  File not found
DRV - (i2omgmt) --  File not found
DRV - (Changer) --  File not found
DRV - (MpKsl739f6db8) -- c:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft\Microsoft Antimalware\Definition Updates\{3658BB2E-5537-4737-9BAA-F00C10BD0CD2}\MpKsl739f6db8.sys (Microsoft Corporation)
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (atksgt) -- C:\WINDOWS\system32\drivers\atksgt.sys ()
DRV - (lirsgt) -- C:\WINDOWS\system32\drivers\lirsgt.sys ()
DRV - (clwvd) -- C:\WINDOWS\system32\drivers\clwvd.sys (CyberLink Corporation)
DRV - (S6000KNT) -- C:\WINDOWS\system32\drivers\S6000KNT.sys (Windows (R) Win 7 DDK provider)
DRV - (NVHDA) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation)
DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (FSLX) -- C:\WINDOWS\system32\drivers\fslx.sys (Symantec Corp.)
DRV - (WIBUKEY) -- C:\WINDOWS\system32\drivers\WibuKey.sys (WIBU-SYSTEMS AG)
DRV - (Wibukey2) -- C:\WINDOWS\system32\drivers\Wibukey2.sys (WIBU-SYSTEMS AG)
DRV - (HECI) Intel(R) -- C:\WINDOWS\system32\drivers\HECI.sys (Intel Corporation)
DRV - (regi) -- C:\WINDOWS\system32\drivers\regi.sys (InterVideo)
DRV - (IFXTPM) -- C:\WINDOWS\system32\drivers\ifxtpm.sys (Infineon Technologies AG)
DRV - (iAimFP4) -- C:\WINDOWS\system32\drivers\wVchNTxx.sys (Intel(R) Corporation)
DRV - (iAimFP3) -- C:\WINDOWS\system32\drivers\wSiINTxx.sys (Intel(R) Corporation)
DRV - (iAimTV5) -- C:\WINDOWS\system32\drivers\wATV10nt.sys (Intel(R) Corporation)
DRV - (iAimTV4) -- C:\WINDOWS\system32\drivers\wCh7xxNT.sys (Intel(R) Corporation)
DRV - (iAimTV6) -- C:\WINDOWS\system32\drivers\wATV06nt.sys (Intel(R) Corporation)
DRV - (iAimTV3) -- C:\WINDOWS\system32\drivers\wATV04nt.sys (Intel(R) Corporation)
DRV - (iAimTV1) -- C:\WINDOWS\system32\drivers\wATV02NT.sys (Intel(R) Corporation)
DRV - (iAimTV0) -- C:\WINDOWS\system32\drivers\wATV01nt.sys (Intel(R) Corporation)
DRV - (iAimFP7) -- C:\WINDOWS\system32\drivers\wADV09NT.sys (Intel(R) Corporation)
DRV - (iAimFP5) -- C:\WINDOWS\system32\drivers\wADV07nt.sys (Intel(R) Corporation)
DRV - (iAimFP6) -- C:\WINDOWS\system32\drivers\wADV08NT.sys (Intel(R) Corporation)
DRV - (i81x) -- C:\WINDOWS\system32\drivers\i81xnt5.sys (Intel(R) Corporation)
DRV - (iAimFP0) -- C:\WINDOWS\system32\drivers\wADV01nt.sys (Intel(R) Corporation)
DRV - (iAimFP1) -- C:\WINDOWS\system32\drivers\wADV02NT.sys (Intel(R) Corporation)
DRV - (iAimFP2) -- C:\WINDOWS\system32\drivers\wADV05NT.sys (Intel(R) Corporation)
DRV - (Symmpi) -- C:\WINDOWS\system32\drivers\symmpi.sys (LSI Logic)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
 
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
 
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
 
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\URLSearchHook: {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\5.8\pdfforgeToolbarIE.dll (Spigot, Inc.)
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\SearchScopes,DefaultScope = {5D817FAE-3D59-437D-B002-BB1FA64A435C}
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\SearchScopes\{5D817FAE-3D59-437D-B002-BB1FA64A435C}: "URL" = http://www.google.de/search?q={searchTerms}
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\SearchScopes\{9976425D-6F49-47CC-9D36-E6A0561C7A98}: "URL" = http://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=971163&p={searchTerms}
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\SearchScopes\{9C190D8D-27BF-4739-AC85-FE8F93AE444F}: "URL" = http://search.softonic.com/MON00015/tb_v1?q={searchTerms}&SearchSource=4&cc=
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050&SSPV=IEAUTOBR
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163&ilc=12"
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "http://search.softonic.com/MON00015/tb_v1?SearchSource=13&cc="
FF - prefs.js..keyword.URL: "http://de.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=971163&p="
FF - prefs.js..network.proxy.http: "95.215.48.146"
FF - prefs.js..network.proxy.http_port: 8080
FF - prefs.js..network.proxy.no_proxies_on: "localhost, 127.0.0.1, stealthy.co"
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.type: 0
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Programme\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Programme\Virtual Earth 3D\ [2009.10.27 09:45:42 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Programme\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Programme\Mozilla Firefox\components [2012.05.11 15:38:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2012.02.04 13:38:28 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{1650a312-02bc-40ee-977e-83f158701739}: C:\Programme\SiteAdvisor\6173\FF\
 
[2012.02.04 13:31:57 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Mozilla\Extensions
[2012.05.23 14:30:34 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Mozilla\Firefox\Profiles\890fqd3r.default\extensions
[2012.05.23 14:30:39 | 000,000,000 | ---D | M] (DVDVideoSoftTB) -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Mozilla\Firefox\Profiles\890fqd3r.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2012.02.18 18:59:12 | 000,000,000 | ---D | M] () -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Mozilla\Firefox\Profiles\890fqd3r.default\extensions\ffxtlbra@softonic.com
[2012.05.15 14:24:38 | 000,000,000 | ---D | M] (Yontoo) -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Mozilla\Firefox\Profiles\890fqd3r.default\extensions\plugin@yontoo.com
[2012.02.18 18:59:10 | 000,002,060 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Mozilla\Firefox\Profiles\890fqd3r.default\searchplugins\softonic.xml
[2012.02.04 13:31:29 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2012.05.15 14:27:59 | 000,181,880 | ---- | M] () (No name found) -- C:\DOKUMENTE UND EINSTELLUNGEN\LEO\ANWENDUNGSDATEN\MOZILLA\FIREFOX\PROFILES\890FQD3R.DEFAULT\EXTENSIONS\STEALTHYEXTENSION@GMAIL.COM.XPI
[2012.05.26 17:51:25 | 000,000,000 | ---D | M] (Widgi Toolbar Platform) -- C:\PROGRAMME\GEMEINSAME DATEIEN\SPIGOT\WTXPCOM
[2012.05.26 17:51:25 | 000,000,000 | ---D | M] (pdfforge Toolbar) -- C:\PROGRAMME\PDFFORGE TOOLBAR\FF
[2012.05.11 15:38:29 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2012.03.20 16:24:54 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.03.20 16:24:54 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2012.03.20 16:24:54 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2012.03.20 16:24:54 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.03.20 16:24:54 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.03.20 16:24:54 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2006.02.28 04:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\5.8\pdfforgeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Programme\Microsoft\BingBar\7.1.382.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Programme\Softonic\softonic\1.5.11.5\bh\softonic.dll (Softonic.com)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Programme\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Programme\Softonic\softonic\1.5.11.5\softonicTlbr.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Programme\Microsoft\BingBar\7.1.382.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\5.8\pdfforgeToolbarIE.dll (Spigot, Inc.)
O3 - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - C:\Programme\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] c:\Programme\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Programme\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [Reminder] C:\WINDOWS\CREATOR\Remind_XP.exe ()
O4 - HKLM..\Run: [S6000Mnt] C:\WINDOWS\System32\S6000Rmv.dll (Alcor)
O4 - HKLM..\Run: [SaferSurf Tray] C:\Programme\SaferSurf\SaferSurfTray.exe (Nutzwerk)
O4 - HKLM..\Run: [Scheduler] C:\WINDOWS\SMINST\Scheduler.exe ()
O4 - HKLM..\Run: [SearchSettings] C:\Programme\Gemeinsame Dateien\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [SetRefresh] C:\Programme\Compaq\SetRefresh\SetRefresh.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [WatchDog] C:\Programme\InterVideo\DVD8SESD\DVDCheck.exe (InterVideo Inc.)
O4 - HKLM..\Run: [YouCam Mirage] C:\Programme\CyberLink\YouCam\YCMMirage.exe (CyberLink)
O4 - HKLM..\Run: [YouCam Tray] C:\Programme\CyberLink\YouCam\YouCam.exe (CyberLink Corp.)
O4 - HKU\.DEFAULT..\Run: [DWQueuedReporting] c:\Programme\Gemeinsame Dateien\Microsoft Shared\DW\DWTRIG20.EXE (Microsoft Corporation)
O4 - HKU\S-1-5-18..\Run: [DWQueuedReporting] c:\Programme\Gemeinsame Dateien\Microsoft Shared\DW\DWTRIG20.EXE (Microsoft Corporation)
O4 - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012..\Run: [Akamai NetSession Interface] C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012..\Run: [Inspector] C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Protector-fsqa.exe File not found
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\AutoCAD-Startbeschleuniger.lnk = C:\Programme\Gemeinsame Dateien\Autodesk Shared\acstart16.exe (Autodesk, Inc)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk = C:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\jstoewing\Startmenü\Programme\Autostart\CodeMeter Control Center.lnk = C:\Programme\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)
O4 - Startup: C:\Dokumente und Einstellungen\PC-FK10\Startmenü\Programme\Autostart\fuk.bat ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-4210027913-3577610600-1204173210-1012\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O16 - DPF: {00134F72-5284-44F7-95A8-52A619F70751} https://192.168.1.2:4343/officescan/console/ClientInstall/WinNTChk.cab (ObjWinNTCheck Class)
O16 - DPF: {08D75BC1-D2B5-11D1-88FC-0080C859833B} https://192.168.1.2:4343/officescan/console/ClientInstall/setup.cab (OfficeScan Corp Edition Web-Deployment SetupCtrl Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1250168744578 (WUWebControl Class)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {9BBB3919-F518-4D06-8209-299FC243FC44} https://192.168.1.2:4343/SMB/console/html/root/AtxEnc.cab (Encrypt Class)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.100.6 212.6.108.140
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E8C6E40A-D4E8-4D1E-98F4-A734ECB2278F}: DhcpNameServer = 192.168.100.6 212.6.108.140
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O27 - HKLM IFEO\guardxkickoff.exe: Debugger - C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
O27 - HKLM IFEO\mcmpeng.exe: Debugger - C:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004.04.30 17:01:00 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (MACHINE BootExecut)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012.05.27 19:12:46 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Leo\Desktop\OTL.exe
[2012.05.27 18:56:40 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Protexis
[2012.05.27 14:12:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Malwarebytes
[2012.05.27 14:11:10 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\Leo\IECompatCache
[2012.05.27 14:10:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\PriceGong
[2012.05.26 22:18:00 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2012.05.26 17:51:25 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Spigot
[2012.05.26 17:51:25 | 000,000,000 | ---D | C] -- C:\Programme\Application Updater
[2012.05.26 17:51:24 | 000,000,000 | ---D | C] -- C:\Programme\pdfforge Toolbar
[2012.05.26 15:28:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
[2012.05.26 15:28:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2012.05.26 15:28:10 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012.05.26 15:28:10 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2012.05.23 20:43:04 | 000,000,000 | ---D | C] -- C:\266982615e22b94c9a3c052c4506ed
[2012.05.23 20:29:05 | 010,063,000 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Dokumente und Einstellungen\Leo\Desktop\mbam-setup-1.61.0.1400.exe
[2012.05.23 20:27:26 | 000,000,000 | ---D | C] -- C:\Programme\SaferSurf
[2012.05.23 20:27:26 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\SaferSurf
[2012.05.23 20:27:26 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Nutzwerk
[2012.05.23 15:52:23 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Eigene Dateien\AVS4YOU
[2012.05.23 15:50:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\vlc
[2012.05.23 15:49:16 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\VideoLAN
[2012.05.23 15:47:19 | 000,000,000 | ---D | C] -- C:\Programme\VideoLAN
[2012.05.23 15:12:52 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVS4YOU
[2012.05.23 15:12:40 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\AVS4YOU
[2012.05.23 15:12:19 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Startmenü\Programme\AVS4YOU
[2012.05.23 15:11:48 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\AVS4YOU
[2012.05.23 15:11:12 | 011,137,024 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\libmfxsw32.dll
[2012.05.23 15:11:06 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\AVSMedia
[2012.05.23 15:11:02 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GdiPlus.dll
[2012.05.23 15:11:02 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3a.dll
[2012.05.23 15:11:02 | 000,000,000 | ---D | C] -- C:\Programme\AVS4YOU
[2012.05.23 14:40:42 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Apple Computer
[2012.05.23 14:30:30 | 000,000,000 | ---D | C] -- C:\Programme\Conduit
[2012.05.23 14:30:29 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\DVDVideoSoftTB
[2012.05.23 14:30:28 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\Conduit
[2012.05.23 14:30:27 | 000,000,000 | ---D | C] -- C:\Programme\DVDVideoSoftTB
[2012.05.23 14:30:09 | 002,557,952 | ---- | C] (Nokia Corporation and/or its subsidiary(-ies)) -- C:\WINDOWS\System32\QtCore4.dll
[2012.05.23 14:30:09 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\DVDVideoSoft
[2012.05.23 14:30:03 | 000,772,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100.dll
[2012.05.23 14:30:03 | 000,419,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp100.dll
[2012.05.23 14:30:03 | 000,136,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atl100.dll
[2012.05.23 14:30:03 | 000,080,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcm100u.dll
[2012.05.23 14:30:03 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\DVDVideoSoft
[2012.05.23 14:30:02 | 004,421,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc100u.dll
[2012.05.23 14:30:02 | 000,000,000 | ---D | C] -- C:\Programme\DVDVideoSoft
[2012.05.23 14:28:52 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\DVDVideoSoft
[2012.05.23 13:35:02 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\OpenOffice.org
[2012.05.23 13:26:24 | 000,000,000 | --SD | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\OpenOffice.org 3.4
[2012.05.23 13:25:04 | 000,000,000 | ---D | C] -- C:\Programme\OpenOffice.org 3
[2012.05.23 13:24:12 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Desktop\OpenOffice.org 3.4 (de) Installation Files
[2012.05.18 15:15:50 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\Search Settings
[2012.05.15 14:24:37 | 000,000,000 | ---D | C] -- C:\Programme\Yontoo
[2012.05.15 14:24:36 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Tarma Installer
[2012.05.12 17:49:37 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Desktop\Wechseldatenträger (I)
[2012.05.12 16:02:44 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Desktop\BAHN383
[2012.05.11 15:38:35 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Mozilla
[2012.05.11 15:38:34 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Maintenance Service
[2012.05.09 07:10:43 | 000,000,000 | ---D | C] -- C:\Programme\Analog Devices
[2012.04.30 15:59:26 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\sixteen tons entertainment
[2012.04.30 15:22:06 | 000,000,000 | ---D | C] -- C:\Programme\sixteen tons entertainment
[2012.04.28 10:34:22 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\TeamViewer
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012.05.27 19:14:00 | 000,000,418 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{A051A6F5-BCFA-4D27-87B2-59A288E29F01}.job
[2012.05.27 19:11:26 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Leo\Desktop\OTL.exe
[2012.05.27 19:09:00 | 000,000,386 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2012.05.27 19:04:01 | 000,001,090 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012.05.27 19:04:00 | 000,001,086 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012.05.27 18:58:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012.05.27 18:58:55 | 2129,969,152 | -HS- | M] () -- C:\hiberfil.sys
[2012.05.27 14:08:51 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012.05.26 22:18:01 | 000,002,855 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.pif
[2012.05.24 07:25:17 | 000,017,920 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.05.23 20:29:16 | 010,063,000 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Dokumente und Einstellungen\Leo\Desktop\mbam-setup-1.61.0.1400.exe
[2012.05.23 19:53:16 | 001,671,504 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.05.23 16:14:39 | 000,000,761 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\result.db
[2012.05.23 15:49:17 | 000,000,691 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\VLC media player.lnk
[2012.05.23 15:33:28 | 000,557,008 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\lololololololololol.vep
[2012.05.23 15:12:21 | 000,000,918 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\AVS4YOU Software Navigator.lnk
[2012.05.23 15:11:48 | 000,000,826 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\AVS Video Editor.lnk
[2012.05.23 14:39:33 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2012.05.23 14:39:33 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2012.05.23 14:30:09 | 000,000,906 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\DVDVideoSoft Free Studio.lnk
[2012.05.23 14:30:09 | 000,000,853 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\Free Video Dub.lnk
[2012.05.23 13:26:25 | 000,000,909 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\OpenOffice.org 3.4.lnk
[2012.05.23 13:18:21 | 000,002,243 | ---- | M] () -- C:\Dokumente und Einstellungen\Leo\Desktop\Skype.lnk
[2012.05.18 11:52:00 | 000,001,014 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2012.05.17 19:58:05 | 000,002,516 | -HS- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\KGyGaAvL.sys
[2012.05.12 11:13:27 | 000,542,288 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2012.05.12 11:13:27 | 000,491,346 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012.05.12 11:13:27 | 000,116,710 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2012.05.12 11:13:27 | 000,090,036 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012.05.12 11:11:01 | 000,001,879 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012.05.01 14:49:26 | 000,001,912 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012.04.28 10:50:40 | 000,250,440 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.04.28 10:50:40 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[7 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012.05.27 16:48:41 | 2129,969,152 | -HS- | C] () -- C:\hiberfil.sys
[2012.05.27 00:38:42 | 000,000,386 | -H-- | C] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2012.05.26 15:28:12 | 000,002,855 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Malwarebytes Anti-Malware.pif
[2012.05.23 16:08:31 | 000,000,761 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Anwendungsdaten\result.db
[2012.05.23 15:49:17 | 000,000,691 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\VLC media player.lnk
[2012.05.23 15:33:26 | 000,557,008 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Desktop\lololololololololol.vep
[2012.05.23 15:12:21 | 000,000,918 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Desktop\AVS4YOU Software Navigator.lnk
[2012.05.23 15:11:48 | 000,000,826 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Desktop\AVS Video Editor.lnk
[2012.05.23 14:39:33 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2012.05.23 14:39:33 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2012.05.23 14:30:09 | 000,000,906 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Desktop\DVDVideoSoft Free Studio.lnk
[2012.05.23 14:30:09 | 000,000,853 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Desktop\Free Video Dub.lnk
[2012.05.23 13:26:25 | 000,000,909 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\OpenOffice.org 3.4.lnk
[2012.05.12 16:03:45 | 000,017,920 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.05.01 14:49:23 | 000,001,678 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Security Essentials.lnk
[2012.04.22 14:19:45 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012.02.18 16:04:02 | 000,250,440 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012.02.18 16:03:59 | 000,250,440 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012.02.18 16:03:59 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012.02.18 16:02:31 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2012.02.16 16:54:18 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.02.07 15:35:18 | 000,015,190 | ---- | C] () -- C:\WINDOWS\S6000Twn.ini
[2012.02.07 15:35:17 | 000,076,376 | ---- | C] () -- C:\WINDOWS\System32\S6000DIF.dll
[2012.02.07 15:35:17 | 000,000,099 | ---- | C] () -- C:\WINDOWS\StillMnt.ini
[2012.02.04 18:32:02 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2012.02.04 18:32:01 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2012.02.04 13:08:54 | 000,000,136 | ---- | C] () -- C:\Dokumente und Einstellungen\Leo\Lokale Einstellungen\Anwendungsdaten\fusioncache.dat
[2011.06.15 09:27:50 | 000,011,264 | ---- | C] () -- C:\WINDOWS\DCEBoot.exe
[2011.01.24 18:20:45 | 000,014,516 | ---- | C] () -- C:\WINDOWS\cfgall.ini
[2011.01.24 18:19:20 | 000,520,096 | ---- | C] () -- C:\WINDOWS\System32\prfh0407.dat
[2011.01.24 18:19:20 | 000,109,542 | ---- | C] () -- C:\WINDOWS\System32\prfc0407.dat
[2010.11.11 12:46:55 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2010.11.11 12:45:52 | 000,057,552 | ---- | C] () -- C:\WINDOWS\System32\WkDos.exe
[2010.07.13 17:08:06 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI

< End of report >