| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Google leitet auf 95p.com umWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
31.12.2011, 14:41
| #1 |
| |  Google leitet auf 95p.com um Guten Mittag, ich habe seit dem 29.12.2011 das Problem, dass wenn ich auf Google gehe und etwas suche ich immer auf 95p.com umgeleitet werde. Ich kann schlecht nach dem Problem googeln, da ich ja nie auf die richtige Seite umgeleitet werde. Ich bin ein absoluter Laie, habe mich aber schon in diesem Forum ein wenig darüber informiert. Allerdings sollten einige Nutzer Dateien scannen, die ich gar nicht besitze. Deshalb habe ich einen neuen Thread eröffnet. Wie ich bereits lesen konnte benötige ich OTP. Dieses Programm besitze ich nun und habe den Scan laufen gelassen. Hier die beiden .txt Dokumente : OTL.txt OTL logfile created on: 31.12.2011 14:23:28 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Dokumente und Einstellungen\LS\Desktop Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 1023,48 Mb Total Physical Memory | 241,84 Mb Available Physical Memory | 23,63% Memory free 2,40 Gb Paging File | 1,73 Gb Available in Paging File | 71,79% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme Drive C: | 93,16 Gb Total Space | 58,28 Gb Free Space | 62,56% Space Free | Partition Type: NTFS Drive D: | 90,22 Gb Total Space | 88,39 Gb Free Space | 97,98% Space Free | Partition Type: NTFS Drive E: | 2,93 Gb Total Space | 0,67 Gb Free Space | 22,96% Space Free | Partition Type: FAT32 Drive J: | 229,02 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: LS-DE4328611CA3 | User Name: LS | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Dokumente und Einstellungen\LS\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Programme\Application Updater\ApplicationUpdater.exe (Spigot, Inc.) PRC - C:\Programme\Gemeinsame Dateien\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.) PRC - C:\Programme\Microsoft Security Client\msseces.exe (Microsoft Corporation) PRC - C:\Programme\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation) PRC - C:\Programme\Gemeinsame Dateien\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.) PRC - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) PRC - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) PRC - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) PRC - C:\Programme\OpenOffice.org 3\program\soffice.bin (OpenOffice.org) PRC - C:\Programme\OpenOffice.org 3\program\soffice.exe (OpenOffice.org) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIEDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\mHotkey.exe (Chicony) PRC - C:\WINDOWS\CNYHKey.exe (Chicony) PRC - C:\WINDOWS\system32\PRISMSTA.exe (Intersil Americas Inc.) PRC - C:\WINDOWS\Dit.exe (ICSI Technology Ltd.) ========== Modules (No Company Name) ========== MOD - C:\Programme\Mozilla Firefox\mozjs.dll () MOD - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.DEU () MOD - C:\Programme\ICQ7.2\MDb.dll () MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () MOD - C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\zlib1.dll () MOD - C:\Programme\OpenOffice.org 3\program\libxml2.dll () MOD - \\?\globalroot\systemroot\system32\mswsock.dll () MOD - C:\WINDOWS\CNYUSB.dll () MOD - C:\WINDOWS\HKCYDLL.dll () MOD - C:\WINDOWS\PIC.dll () MOD - C:\WINDOWS\HIDMNT.dll () ========== Win32 Services (SafeList) ========== SRV - (AppMgmt) -- File not found SRV - (MBAMService) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) SRV - (Application Updater) -- C:\Programme\Application Updater\ApplicationUpdater.exe (Spigot, Inc.) SRV - (MsMpSvc) -- C:\Programme\Microsoft Security Client\Antimalware\MsMpEng.exe (Microsoft Corporation) SRV - (Apple Mobile Device) -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) SRV - (npggsvc) -- C:\WINDOWS\System32\GameMon.des (INCA Internet Co., Ltd.) ========== Driver Services (SafeList) ========== DRV - (MBAMProtector) -- File not found DRV - (zfdlztba) -- C:\WINDOWS\system32\drivers\zfdlztba.sys (Microsoft Corporation) DRV - (CardReaderFilter) -- C:\WINDOWS\system32\drivers\USBCRFT.SYS (ICSI Technology Ltd.) DRV - (MpKsl797c42db) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft\Microsoft Antimalware\Definition Updates\{FC5C73B7-2ABE-45E6-AF90-65110728E3E4}\MpKsl797c42db.sys (Microsoft Corporation) DRV - (MBAMSwissArmy) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys (Malwarebytes Corporation) DRV - (ActionReplayDS) -- C:\WINDOWS\system32\drivers\ActionReplayDS.sys (Thesycon GmbH, Germany) DRV - (NPPTNT2) -- C:\WINDOWS\system32\npptNT2.sys (INCA Internet Co., Ltd.) DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.) DRV - (PRISM_A00) -- C:\WINDOWS\system32\drivers\PRISMA00.sys () DRV - (UKBFLT) -- C:\WINDOWS\system32\drivers\UKBFLT.sys (Chicony) DRV - (USBCamera) DSC Still Image Capture (CA100) -- C:\WINDOWS\system32\drivers\Bulk533.sys (USB BULK) DRV - (Ca533av) -- C:\WINDOWS\system32\drivers\Ca533av.sys (Digital Camera) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Programme\YouTube Downloader Toolbar\IE\4.9\youtubedownloaderToolbarIE.dll (Spigot, Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Yahoo" FF - prefs.js..browser.search.defaulturl: "hxxp://go.mail.ru/search?fr=fftb&utf8in&q=" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12" FF - prefs.js..browser.search.selectedEngine: "Yahoo" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "google.de" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906 FF - prefs.js..extensions.enabledItems: youtubedownloader@mybrowserbar.com:4.6 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26 FF - prefs.js..keyword.URL: "hxxp://de.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonEU\NGM\npNxGameeu.dll (Nexon) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011.12.25 18:52:05 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2011.12.25 18:54:20 | 000,000,000 | ---D | M] [2010.11.12 15:03:56 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Extensions [2011.12.31 12:41:17 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\au9nf9xx.default\extensions [2010.12.20 19:42:45 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\au9nf9xx.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011.11.29 18:21:00 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions [2010.11.12 15:12:35 | 000,000,000 | ---D | M] (CS Lite) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions\{00084897-021a-4361-8423-083407a033e0} [2011.11.29 18:21:01 | 000,000,000 | ---D | M] (Спутник @Mail.Ru) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions\{37964A3C-4EE8-47b1-8321-34DE2C39BA4D} [2010.11.12 15:12:36 | 000,000,000 | ---D | M] (JonDoFox) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions\{437be45a-4114-11dd-b9ab-71d256d89593} [2010.11.12 15:12:36 | 000,000,000 | ---D | M] (NoScript) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2010.11.12 15:12:35 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010.11.12 15:12:37 | 000,000,000 | ---D | M] (ProfileSwitcher) -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4} [2010.11.12 15:12:37 | 000,000,000 | ---D | M] ("UnPlug") -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\JonDoFox\extensions\unplug@compunach [2011.12.25 18:42:26 | 000,001,533 | ---- | M] () -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Mozilla\Firefox\Profiles\au9nf9xx.default\searchplugins\mailru---.xml [2011.12.25 18:59:30 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2010.12.30 09:30:45 | 000,000,000 | ---D | M] (Skype extension) -- C:\Programme\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2011.12.31 12:41:17 | 000,000,000 | ---D | M] (Widgi Toolbar Platform) -- C:\PROGRAMME\GEMEINSAME DATEIEN\SPIGOT\WTXPCOM [2011.12.31 12:41:17 | 000,000,000 | ---D | M] (YouTube Downloader Toolbar) -- C:\PROGRAMME\YOUTUBE DOWNLOADER TOOLBAR\FF [2011.12.21 08:42:29 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll [2011.05.04 03:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\mozilla firefox\plugins\npdeployJava1.dll [2011.12.21 06:08:50 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml [2011.12.21 06:02:40 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml [2011.12.21 06:08:50 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml [2011.12.21 06:08:50 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml [2011.12.21 06:08:50 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml [2011.12.21 06:08:50 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2004.08.04 13:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (no name) - {8984B388-A5BB-4DF7-B274-77B879E179DB} - No CLSID value found. O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Programme\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programme\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O2 - BHO: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Programme\YouTube Downloader Toolbar\IE\4.9\youtubedownloaderToolbarIE.dll (Spigot, Inc.) O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Programme\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (no name) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - No CLSID value found. O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programme\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (YouTube Downloader Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Programme\YouTube Downloader Toolbar\IE\4.9\youtubedownloaderToolbarIE.dll (Spigot, Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {09900DE8-1DCA-443F-9243-26FF581438AF} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programme\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ATICCC] C:\Programme\ATI Technologies\ATI.ACE\CLIStart.exe () O4 - HKLM..\Run: [CHotkey] C:\WINDOWS\mHotkey.exe (Chicony) O4 - HKLM..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd File not found O4 - HKLM..\Run: [Dit] C:\WINDOWS\Dit.exe (ICSI Technology Ltd.) O4 - HKLM..\Run: [ledpointer] C:\WINDOWS\CNYHKey.exe (Chicony) O4 - HKLM..\Run: [MSC] C:\Programme\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [Prism_Utility] C:\WINDOWS\System32\PRISMSTA.exe (Intersil Americas Inc.) O4 - HKLM..\Run: [SearchSettings] C:\Programme\Gemeinsame Dateien\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKCU..\Run: [EPSON SX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [ICQ] C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O4 - HKCU..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe File not found O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\phase-6 Reminder.lnk = C:\Programme\phase-6\phase-6\reminder\reminder.exe (phase-6) O4 - Startup: C:\Dokumente und Einstellungen\LS\Startmenü\Programme\Autostart\OpenOffice.org 3.2.lnk = C:\Programme\OpenOffice.org 3\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Programme\ICQ7.2\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Programme\Bonjour\mdnsNSP.dll File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Programme\Bonjour\mdnsNSP.dll File not found O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1288512572424 (WUWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1288512565877 (MUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-1_3_1_18-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.16.0.cab (SysInfo Class) O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} hxxp://3dlifeplayer.dl.3dvia.com/player/install/3DVIA_player_installer.exe (Reg Error: Key error.) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{21F0AF92-4B29-44B1-8958-74F004C0CE1B}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Gemeinsame Dateien\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKCU Winlogon: Shell - (C:\Dokumente und Einstellungen\LS\Lokale Einstellungen\Anwendungsdaten\6b32a130\X) -C:\Dokumente und Einstellungen\LS\Lokale Einstellungen\Anwendungsdaten\6b32a130\X () O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\LS\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\LS\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Programme\Windows Defender\MpShHook.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010.10.31 08:50:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2007.04.18 18:37:34 | 000,000,029 | R--- | M] () - J:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== File not found -- C:\WINDOWS\System32\ [2011.12.31 14:05:32 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\LS\Desktop\OTL.exe [2011.12.31 12:55:10 | 000,041,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\zfdlztba.sys [2011.12.30 16:29:27 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011.12.30 16:17:32 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Malwarebytes [2011.12.30 16:17:19 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes [2011.12.30 16:17:16 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware [2011.12.30 16:16:52 | 010,847,608 | ---- | C] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\LS\Desktop\mbam-setup-1.60.0.1800.exe [2011.12.30 15:48:09 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\Adobe [2011.12.30 15:43:09 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen\LS\Lokale Einstellungen\Anwendungsdaten\6b32a130 [2011.12.28 18:36:52 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LS\Eigene Dateien\Downloads [2011.12.25 19:00:38 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\Search Settings [2011.12.25 19:00:10 | 000,000,000 | ---D | C] -- C:\Programme\Application Updater [2011.12.25 19:00:08 | 000,000,000 | ---D | C] -- C:\Programme\YouTube Downloader Toolbar [2011.12.25 18:58:18 | 000,414,368 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011.12.25 18:43:01 | 015,134,848 | ---- | C] (Mozilla) -- C:\Dokumente und Einstellungen\LS\Desktop\Firefox Setup 9.0.1.exe [2011.12.25 18:37:42 | 000,313,418 | ---- | C] (Intersil Americas Inc.) -- C:\WINDOWS\System32\PRISMCFG.cpl [2011.12.25 18:36:40 | 000,215,552 | ---- | C] (Intersil Americas Inc.) -- C:\WINDOWS\System32\PRISMSTA.exe [2011.12.25 18:36:40 | 000,082,006 | ---- | C] (Intersil Americas Inc.) -- C:\WINDOWS\System32\PRISMRES.dll [2011.12.25 18:36:40 | 000,079,872 | ---- | C] (Intersil Americas Inc.) -- C:\WINDOWS\System32\PRISMIOC.dll [2011.12.25 17:41:34 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\LS\Desktop\Dokumente [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== File not found -- C:\WINDOWS\System32\ [2011.12.31 14:19:51 | 000,000,300 | ---- | M] () -- C:\Dokumente und Einstellungen\LS\Desktop\url.htm [2011.12.31 14:05:39 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\LS\Desktop\OTL.exe [2011.12.31 13:31:18 | 000,000,412 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{A6CA6642-5B1A-47DE-9674-CB779055CEDF}.job [2011.12.31 12:55:10 | 000,041,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\zfdlztba.sys [2011.12.31 12:46:08 | 000,000,416 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2011.12.31 12:41:15 | 000,013,440 | ---- | M] (ICSI Technology Ltd.) -- C:\WINDOWS\System32\drivers\USBCRFT.SYS [2011.12.31 12:41:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011.12.31 12:41:00 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2011.12.30 16:29:27 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011.12.30 16:17:06 | 010,847,608 | ---- | M] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\LS\Desktop\mbam-setup-1.60.0.1800.exe [2011.12.30 14:18:53 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011.12.25 19:01:24 | 000,495,532 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat [2011.12.25 19:01:24 | 000,479,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011.12.25 19:01:24 | 000,098,162 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat [2011.12.25 19:01:24 | 000,085,382 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011.12.25 18:58:19 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011.12.25 18:52:15 | 000,000,696 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Mozilla Firefox.lnk [2011.12.25 18:50:40 | 000,001,714 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader X.lnk [2011.12.25 18:44:39 | 015,134,848 | ---- | M] (Mozilla) -- C:\Dokumente und Einstellungen\LS\Desktop\Firefox Setup 9.0.1.exe [2011.12.25 18:37:42 | 000,000,252 | ---- | M] () -- C:\WINDOWS\setup.iss [2011.12.25 17:33:59 | 000,139,648 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011.12.21 16:02:49 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2011.12.31 14:19:50 | 000,000,300 | ---- | C] () -- C:\Dokumente und Einstellungen\LS\Desktop\url.htm [2011.12.25 18:52:15 | 000,000,702 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Mozilla Firefox.lnk [2011.12.25 18:50:40 | 000,001,714 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Adobe Reader X.lnk [2011.12.25 18:50:39 | 000,002,347 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader X.lnk [2011.12.25 18:31:40 | 000,000,252 | ---- | C] () -- C:\WINDOWS\setup.iss [2011.09.08 12:03:43 | 000,002,528 | ---- | C] () -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\$_hpcst$.hpc [2011.03.25 14:41:59 | 000,000,400 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2011.02.08 13:58:14 | 000,003,584 | ---- | C] () -- C:\Dokumente und Einstellungen\LS\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.02.06 16:56:35 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2011.02.06 16:56:34 | 000,022,328 | ---- | C] () -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\PnkBstrK.sys [2011.02.06 16:56:17 | 001,181,640 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe [2011.02.06 16:56:16 | 000,076,744 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe [2011.02.06 16:52:26 | 000,000,311 | ---- | C] () -- C:\WINDOWS\game.ini [2011.02.06 10:30:32 | 000,000,578 | ---- | C] () -- C:\WINDOWS\ATICIM.INI [2010.12.31 09:20:52 | 000,000,600 | ---- | C] () -- C:\Dokumente und Einstellungen\LS\Anwendungsdaten\winscp.rnd [2010.12.25 11:55:03 | 000,019,336 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2010.12.09 17:54:25 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat [2010.12.09 17:54:25 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat [2010.12.09 17:54:25 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat [2010.12.09 17:54:25 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat [2010.12.09 17:54:25 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat [2010.12.09 17:54:25 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat [2010.12.09 17:54:25 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat [2010.12.09 17:54:25 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat [2010.12.09 17:54:25 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat [2010.12.09 17:54:25 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat [2010.12.09 17:54:25 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat [2010.12.09 17:54:25 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat [2010.12.09 17:54:25 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat [2010.12.09 17:54:25 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat [2010.12.09 17:54:25 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat [2010.12.09 17:54:25 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat [2010.12.09 17:54:25 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat [2010.12.09 17:54:25 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat [2010.12.09 17:54:25 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini [2010.12.09 17:53:29 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDESX100DEFGIPS.ini [2010.11.15 18:49:44 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010.11.12 19:47:43 | 000,014,606 | ---- | C] () -- C:\WINDOWS\USB_CAM.ini [2010.11.12 19:47:43 | 000,001,833 | ---- | C] () -- C:\WINDOWS\ca533a.ini [2010.11.12 19:47:43 | 000,000,163 | ---- | C] () -- C:\WINDOWS\Setup533.ini [2010.11.12 19:47:43 | 000,000,147 | ---- | C] () -- C:\WINDOWS\Setup2k.ini [2010.11.12 15:09:04 | 000,036,972 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll [2010.11.12 15:03:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010.10.31 11:04:31 | 000,000,282 | ---- | C] () -- C:\WINDOWS\Dit.INI [2010.10.31 11:02:12 | 000,532,544 | ---- | C] () -- C:\WINDOWS\PIC.dll [2010.10.31 11:02:12 | 000,049,152 | ---- | C] () -- C:\WINDOWS\CNYUSB.dll [2010.10.31 11:02:12 | 000,024,576 | ---- | C] () -- C:\WINDOWS\HKCYDLL.dll [2010.10.31 11:02:12 | 000,011,776 | ---- | C] () -- C:\WINDOWS\HIDMNT.dll [2010.10.31 11:02:12 | 000,000,360 | ---- | C] () -- C:\WINDOWS\CNYHKey.ini [2010.10.31 09:12:26 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI [2010.10.31 09:12:26 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI [2010.10.31 09:12:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini [2010.10.31 09:12:23 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe [2010.10.31 09:12:23 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe [2010.10.31 09:12:23 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe [2010.10.31 09:12:23 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll [2010.10.31 09:12:23 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll [2010.10.31 08:52:07 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010.10.31 08:47:25 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010.10.31 08:39:21 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010.10.31 08:38:04 | 000,139,648 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2005.06.23 12:23:04 | 000,087,540 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2004.11.12 05:19:58 | 000,380,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\PRISMA00.sys [2004.08.04 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2004.08.04 13:00:00 | 000,495,532 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat [2004.08.04 13:00:00 | 000,479,492 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2004.08.04 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2004.08.04 13:00:00 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat [2004.08.04 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2004.08.04 13:00:00 | 000,098,162 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat [2004.08.04 13:00:00 | 000,085,382 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2004.08.04 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2004.08.04 13:00:00 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat [2004.08.04 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2004.08.04 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004.08.04 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2004.08.04 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2001.09.04 14:12:28 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001.09.04 14:10:20 | 000,004,518 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat ========== Files - Unicode (All) ========== [2010.11.28 14:20:54 | 000,000,000 | ---D | M](C:\Dokumente und Einstellungen\LS\Eigene Dateien\?? ???) -- C:\Dokumente und Einstellungen\LS\Eigene Dateien\넥슨 플러그 [2010.11.28 14:20:54 | 000,000,000 | ---D | C](C:\Dokumente und Einstellungen\LS\Eigene Dateien\?? ???) -- C:\Dokumente und Einstellungen\LS\Eigene Dateien\넥슨 플러그 ========== Alternate Data Streams ========== @Alternate Data Stream - 612 bytes -> C:\WINDOWS\System32\drivers\zfdlztba.sys:changelist < End of report > Extras.txt OTL Extras logfile created on: 31.12.2011 14:23:28 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Dokumente und Einstellungen\LS\Desktop Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 1023,48 Mb Total Physical Memory | 241,84 Mb Available Physical Memory | 23,63% Memory free 2,40 Gb Paging File | 1,73 Gb Available in Paging File | 71,79% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme Drive C: | 93,16 Gb Total Space | 58,28 Gb Free Space | 62,56% Space Free | Partition Type: NTFS Drive D: | 90,22 Gb Total Space | 88,39 Gb Free Space | 97,98% Space Free | Partition Type: NTFS Drive E: | 2,93 Gb Total Space | 0,67 Gb Free Space | 22,96% Space Free | Partition Type: FAT32 Drive J: | 229,02 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: LS-DE4328611CA3 | User Name: LS | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet  isabled:@xpsp2res.dll,-22008"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Programme\ICQ7.2\ICQ.exe" = C:\Programme\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.) "C:\Programme\ICQ7.2\aolload.exe" = C:\Programme\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC) "C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe "C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Programme\Java\jre6\bin\javaw.exe" = C:\Programme\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine "C:\Programme\ICQ7.2\ICQ.exe" = C:\Programme\ICQ7.2\ICQ.exe:*:Enabled:ICQ7.2 -- (ICQ, LLC.) "C:\Programme\ICQ7.2\aolload.exe" = C:\Programme\ICQ7.2\aolload.exe:*:Enabled:aolload.exe -- (AOL LLC) "C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonEU\NGM\NGM.exe" = C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon) "C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe "C:\Nexon\Combat Arms EU\NMService.exe" = C:\Nexon\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core "C:\Programme\Java\jre6\bin\java.exe" = C:\Programme\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Dokumente und Einstellungen\LS\Desktop\MWF2\Call of Duty Modern Warfare 2\iw4mp.dat" = C:\Dokumente und Einstellungen\LS\Desktop\MWF2\Call of Duty Modern Warfare 2\iw4mp.dat:*:Enabled:iw4mp "C:\Dokumente und Einstellungen\LS\Desktop\Musik\MWF2\Call of Duty Modern Warfare 2\iw4mp.dat" = C:\Dokumente und Einstellungen\LS\Desktop\Musik\MWF2\Call of Duty Modern Warfare 2\iw4mp.dat:*:Enabled:iw4mp "C:\Dokumente und Einstellungen\LS\Desktop\CoD4\COD4\Setup\Data\iw3mp.exe" = C:\Dokumente und Einstellungen\LS\Desktop\CoD4\COD4\Setup\Data\iw3mp.exe:*:Enabled:iw3mp "C:\WINDOWS\explorer.exe" = C:\WINDOWS\explorer.exe:*:Enabled:Windows Explorer -- (Microsoft Corporation) "C:\Programme\Mozilla Firefox\firefox.exe" = C:\Programme\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation) "C:\Programme\Malwarebytes' Anti-Malware\mbam.exe" = C:\Programme\Malwarebytes' Anti-Malware\mbam.exe:*:Enabled: Malwarebytes Anti-Malware "C:\Programme\Gemeinsame Dateien\Java\Java Update\jucheck.exe" = C:\Programme\Gemeinsame Dateien\Java\Java Update\jucheck.exe:*:Enabled:Java(TM) Update Checker -- (Sun Microsystems, Inc.) "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" = C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe:*:Enabled:Java(TM) Update Scheduler -- (Sun Microsystems, Inc.) "C:\WINDOWS\system32\msfeedssync.exe" = C:\WINDOWS\system32\msfeedssync.exe:*:Enabled:Microsoft Feeds Synchronization -- (Microsoft Corporation) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware "{0D3CECCA-A589-ECCA-EC0B-2F98F2789F60}" = simfy "{1280E900-35DA-4E08-A700-B79A5B2B8532}" = Microsoft Antimalware Service DE-DE Language Pack "{17424F35-8B77-4ADF-BC63-BF9B81418539}" = Apple Application Support "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 26 "{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition "{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour "{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (SQLEXPRESS) "{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client DE-DE Language Pack "{5169D2E2-0B94-3320-8C7A-718F92BE20CE}" = Microsoft Visual Basic PowerPacks 1.2 "{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent "{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English) "{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client "{6213FD4F-C3A3-4A2F-9CC1-8DAEAF469633}" = Cam 3200 "{68249B78-B714-11D7-88E8-0050DA21757E}" = Java 2 Runtime Environment Standard Edition 1.3.1_18 "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2 "{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}" = Microsoft SQL Server Native Client "{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page "{90110407-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync "{99A17B9E-3901-400B-BCD7-2ACD8FFE328B}" = System Requirements Lab for Intel "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser "{AB9C8F84-9773-4FC8-8C06-891DA384389F}_is1" = TaskMate Pro 1.95 "{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Deutsch "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{AD48AAF7-82BD-42F3-91AD-09FD114AFE80}" = ATI Catalyst Control Center "{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update "{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials "{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D1955A3A-EA24-4682-8641-43B5B688B09A}" = USB Wireless Keyboard Driver "{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call "{DEDB47A3-C988-4A43-A645-E2CEA571E680}" = Epson Easy Photo Print 2 "{DFFC0648-BC4B-47D1-93D2-6CA6B9457641}" = OpenOffice.org 3.2 "{E2A07534-B66D-4FF6-BA59-EF0CB9C42111}" = 802.11 G Utility "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0 "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime "{E7084B89-69E0-46B3-A118-8F99D06988CD}" = Microsoft SQL Server VSS Writer "{E8843212-F0FC-4C3B-BFF3-D51829CB4F19}" = iTunes "{EA1CB7AC-E221-4822-A789-0ADB051DC498}" = Medion Flash XL 2.0 "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{FD66AF34-C18A-4cea-8421-2F3B39E9B07E}" = YouTube Downloader Toolbar v4.9 "{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR "Action Replay Code Manager_is1" = Action Replay Code Manager "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "All ATI Software" = ATI - Dienstprogramm zur Deinstallation der Software "ATI Display Driver" = ATI Display Driver "C-Media Audio" = C-Media 3D Audio "conduitEngine" = Conduit Engine "EPSON Scanner" = EPSON Scan "EPSON Stylus SX100_TX100 Benutzerhandbuch" = EPSON Stylus SX100_TX100 Handbuch "EPSON SX100 Series" = EPSON SX100 Series Printer Uninstall "GeoGebra" = GeoGebra "ie8" = Windows Internet Explorer 8 "InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch "InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "JAP" = JAP "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft Security Client" = Microsoft Security Essentials "Microsoft SQL Server 2005" = Microsoft SQL Server 2005 "Mozilla Firefox 9.0.1 (x86 de)" = Mozilla Firefox 9.0.1 (x86 de) "phase-6" = phase-6 2.1.0.6 "phase-6 Feeding Tool" = phase-6 Feeding Tool 1.1 "Revo Uninstaller" = Revo Uninstaller 1.90 "Simfy" = simfy "SystemRequirementsLab" = System Requirements Lab "uTorrentBar_DE Toolbar" = uTorrentBar_DE Toolbar "Windows XP Service Pack" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Windows Live Essentials "WinRAR archiver" = WinRAR "winscp3_is1" = WinSCP 4.2.9 "YTdetect" = Yahoo! Detect ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 26.12.2011 14:44:18 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung explorer.exe, Version 6.0.2900.5512, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 26.12.2011 14:44:44 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung explorer.exe, Version 6.0.2900.5512, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 26.12.2011 14:44:46 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung explorer.exe, Version 6.0.2900.5512, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 27.12.2011 11:49:45 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung iexplore.exe, Version 8.0.6001.18702, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 30.12.2011 11:32:27 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung mbam.exe, Version 1.60.0.59, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 30.12.2011 11:33:50 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung mbam.exe, Version 1.60.0.59, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 30.12.2011 11:34:53 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung mbam.exe, Version 1.60.0.59, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 30.12.2011 11:34:59 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung mbam.exe, Version 1.60.0.59, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. Error - 30.12.2011 11:35:23 | Computer Name = LS-DE4328611CA3 | Source = MPSampleSubmission | ID = 5000 Description = EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P2 3.0.8402.0, P3 timeout, P4 1.1.7903.0, P5 fixed, P6 2 _ 1024, P7 5 _ not boot, P8 NIL, P9 NIL, P10 NIL. Error - 31.12.2011 09:08:43 | Computer Name = LS-DE4328611CA3 | Source = Application Hang | ID = 1002 Description = Stillstehende Anwendung OTL.exe, Version 3.2.31.0, Stillstandmodul hungapp, Version 0.0.0.0, Stillstandadresse 0x00000000. [ System Events ] Error - 31.12.2011 08:29:23 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 08:31:16 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 08:50:49 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 09:04:48 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 09:04:49 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 09:11:58 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 09:20:21 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 09:22:15 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 09:29:32 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 Error - 31.12.2011 09:34:02 | Computer Name = LS-DE4328611CA3 | Source = Service Control Manager | ID = 7023 Description = Der Dienst "NLA (Network Location Awareness)" wurde mit folgendem Fehler beendet: %%127 < End of report > Ich hoffe Sie können mir helfen. Mit freundlichen Grüßen Lukas |
|
02.01.2012, 15:01
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Google leitet auf 95p.com umZitat:
__________________ |
|
| Themen zu Google leitet auf 95p.com um |
| 0x00000001, adblock, alternate, bho, bonjour, call of duty, conduit, defender, downloader, einstellungen, error, firefox, flash player, format, google, helper, home, iexplore.exe, logfile, mbamservice.exe, microsoft security, mozilla, musik, plug-in, problem, programm, registry, revo uninstaller, rundll, scan, security, software, udp, updates, version=1.0, windows internet, youtube downloader |
Linear-Darstellung
