"Achtung - Aus Sicherheitsgründen wurde Windows blockiert"

dembab · 24.01.2012, 18:15

hab das selbe problem wie die andern...habe mir auch schon die andner threads durchgelesen und otl runtergeladen und die scans gemacht

Extras.Txt

OTL Extras logfile created on: 24.01.2012 17:51:23 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Miamoto\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

2,99 Gb Total Physical Memory | 2,44 Gb Available Physical Memory | 81,50% Memory free
6,18 Gb Paging File | 5,82 Gb Available in Paging File | 94,16% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 282,27 Gb Total Space | 32,58 Gb Free Space | 11,54% Space Free | Partition Type: NTFS
Drive D: | 15,81 Gb Total Space | 1,17 Gb Free Space | 7,43% Space Free | Partition Type: FAT32

Computer Name: TAKEZÔ | User Name: Miamoto | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{24302E9B-2E5D-4C5C-9067-77A4975DCD25}" = lport=2869 | protocol=6 | dir=in | app=system |
"{92B27A07-7B4C-4CC9-9D45-A647E94E232F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{CBA0F9F3-B150-4296-A0C6-5C197DE03F37}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03EE59A8-DC33-4C9E-997E-17E091BC1E7D}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpfccopy.exe |
"{0607A2A5-3384-44B6-86E9-CD3ADAF2E2CC}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqkygrp.exe |
"{0DDB3950-80BF-455F-8CEC-FAE1140FD39D}" = dir=in | app=c:\program files\hp\hp software update\hpwucli.exe |
"{1142D914-0ACA-44EF-8F04-482AF77E4DA0}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{16BF3B58-9289-4178-BF9E-754E1179F541}" = dir=in | app=c:\program files\homecinema\powerdirector\pdr.exe |
"{1A3B148F-EA0D-47AA-A052-5066C4D90A88}" = dir=in | app=e:\setup\hpznui01.exe |
"{1D094CCF-4FD3-4EF8-AB72-637A1F5E6DAA}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgh.exe |
"{22E96127-9116-4BBE-8B94-2DEDB158D1B8}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpiscnapp.exe |
"{2E9430A9-A64E-4329-B3AD-A41BD1E489B7}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgplgtupl.exe |
"{3B0557C1-F0A7-4186-BBA4-C566734FA5A6}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{51C87F26-B631-4630-A522-076EED5067FD}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqste08.exe |
"{5592099D-DD27-4B85-8D79-F1E9DFEB7059}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{5EA643EC-A480-410F-97D2-CFF6B8A978E3}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{5EFB2816-22F6-42B7-83B9-C50D4CD7100A}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{6144F6B9-05E7-473A-921B-9F032BA2944F}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposid01.exe |
"{6451B310-EA86-46DD-B00D-7AB343871246}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe |
"{6CFE9C50-824F-4FA3-974B-CE17E44BF542}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6F88C0DC-24EB-4CDA-9101-A13B10D2AFEE}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{728F3872-9001-4B50-BF50-48D75F578D98}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqcopy2.exe |
"{77CDFC21-B946-4B9F-B8B2-A2CD9528F800}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{7A9BE764-B706-4598-A309-81D408C8015A}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgpc01.exe |
"{8298BC19-EA0B-4E53-909C-9F2179384984}" = dir=in | app=c:\program files\homecinema\makedisc\makedisc.exe |
"{99B76651-101D-41CF-9A73-3F8E573E3B2F}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{99D70F94-2AB1-4BE6-A29C-67D2EB91EB92}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqtra08.exe |
"{9D5DF280-DDA1-4BA6-A9CC-DF3F0592C40C}" = dir=in | app=c:\program files\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{B0CE0D15-13DB-4255-9241-B0E82DF0005F}" = dir=in | app=c:\program files\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{D4E70552-2928-4619-A5F5-DA61FE95CEE3}" = dir=in | app=c:\program files\homecinema\powerdvd\powerdvd.exe |
"{E25660AD-C22A-4919-9BD4-699EBD83D684}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{E2F93E56-A237-4774-A723-008D8082E8A6}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpoews01.exe |
"{E4FA2261-ACAE-4055-8A47-6EBA9544B2C1}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgm.exe |
"TCP Query User{0EAFD42D-66D2-423A-804B-2299B2223284}C:\windows\system32\taskeng.exe" = protocol=6 | dir=in | app=c:\windows\system32\taskeng.exe |
"TCP Query User{2C3332E8-93F6-4F2A-B03D-3FAD6E1023B3}C:\program files\microsoft games\age of empires\empires.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires\empires.exe |
"TCP Query User{405CF9C3-24C1-4386-92F4-5E239A0F11BC}C:\program files\luchterhand\famfg-kommentar\lplocal.exe" = protocol=6 | dir=in | app=c:\program files\luchterhand\famfg-kommentar\lplocal.exe |
"TCP Query User{42FF8DF2-DB5D-4941-A94A-4950038D1CEE}C:\program files\luchterhand\zpo-kommentar\lplocal.exe" = protocol=6 | dir=in | app=c:\program files\luchterhand\zpo-kommentar\lplocal.exe |
"TCP Query User{90A08B7F-7C1D-4554-A5E1-F251B31E006C}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"TCP Query User{B579C5FD-FFA4-4733-A631-1E2D00650B1A}C:\windows\system32\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\system32\dplaysvr.exe |
"UDP Query User{1041F7AF-26F5-47E2-9D60-B5208385ABE1}C:\program files\luchterhand\famfg-kommentar\lplocal.exe" = protocol=17 | dir=in | app=c:\program files\luchterhand\famfg-kommentar\lplocal.exe |
"UDP Query User{52F8B926-1F61-4993-B932-67FBF408CF9E}C:\windows\system32\taskeng.exe" = protocol=17 | dir=in | app=c:\windows\system32\taskeng.exe |
"UDP Query User{729C99BD-EB8A-464A-82CA-A6D52F628ECA}C:\windows\system32\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\system32\dplaysvr.exe |
"UDP Query User{7B681EE8-95B8-4B88-870B-F769B39C98E5}C:\program files\microsoft games\age of empires\empires.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires\empires.exe |
"UDP Query User{81B3EB50-C883-4C8E-B122-4E41426C667F}C:\program files\luchterhand\zpo-kommentar\lplocal.exe" = protocol=17 | dir=in | app=c:\program files\luchterhand\zpo-kommentar\lplocal.exe |
"UDP Query User{E8185E78-BA40-4F52-8990-5F09FBE186B5}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{ADDBE07D-95B8-4789-9C76-187FFF9624B4}" = CorelDRAW Essential Edition 3
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{07FB17D8-7DB6-4F06-80C4-8BE1719CB6A1}" = hpWLPGInstaller
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{108A39BF-4ED1-4293-B11A-06BD521FB8F7}" = FreeOCR 3.0
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18E1FD72-60FA-3E10-A66B-640970B5559F}" = Visual Studio Tools for the Office system 3.0 Runtime Language Pack - DEU
"{21A2F5EE-1DC5-488A-BE7E-E526F8C61488}" = DeviceDiscovery
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{29ED20C9-5E15-4969-9279-25BF3727A3DA}" = iTunes
"{2B091530-69AA-442E-AB09-39ED06B58220}" = Windows Live Messenger
"{2D438E32-E46F-A3C7-B390-CFC652EE6478}" = Skins
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{35000C37-2D29-9C85-FCA2-433E6D462851}" = Catalyst Control Center Graphics Full New
"{35AEFC0E-C869-EA72-107A-9F0F630D8C2A}" = Catalyst Control Center Graphics Previews Common
"{39D0E034-1042-4905-BECB-5502909FCB7C}" = Microsoft Works
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMB36X Raid Configurer
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{43141122-99AC-0765-CB34-A8F1BF4978C3}" = CCC Help German
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{4737AD9F-13AA-4E4C-B86F-B631D557F6A7}" = e-Wörterbücher
"{478CF179-BFA5-07C9-43A4-301B5DC449D2}" = Catalyst Control Center Graphics Previews Vista
"{47948554-90C6-4AAC-8CFA-D23CE11C1031}" = Nero 8 Essentials
"{497072FE-0A75-4E5C-A5B7-EB1FA67F66F1}" = DJ_AIO_06_F4500_SW_MIN
"{4A69FE72-6764-B2CE-C275-89EDCCFC858D}" = Catalyst Control Center Graphics Light
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{55A7B938-3D1E-4819-A87B-F83E736EF52E}" = F4500
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5E453519-60F6-4A4D-A0BF-16663F9B3536}" = Safari
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{68A10D12-0D0F-4212-BDE6-D87FAD32A8FA}" = SmartWebPrinting
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{70020E29-1E80-2F90-B125-30C752B3DFEE}" = CCC Help English
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75247E38-5C9B-45D6-ADF8-E11CB56B4990}" = Network
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A7B0BF3-2F00-4F03-8A9B-6ABCC07B90C6}" = Windows Live installer
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7D3398D2-0A93-E93D-4D3B-D93D1829964B}" = Catalyst Control Center InstallProxy
"{7F08A772-2816-4F46-84F1-49578502AD28}" = HP Deskjet F4500 Printer Driver Software 13.0 Rel .6
"{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"{82F2B38B-1426-443D-874C-AC25675E7BEB}" = Windows Live Mail
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90140000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0015-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0016-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-0019-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001B-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-0000-0000000FF1CE}_Office14.SingleImage_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-002C-0407-0000-0000000FF1CE}_Office14.SingleImage_{4275FB46-ABDF-4456-876C-17CF64294D9A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-006E-0407-0000-0000000FF1CE}_Office14.SingleImage_{98EDFD9F-EA76-40CC-BCE9-92C69413F65B}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00A1-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D798C7D-933C-4678-28DE-B33A734B4DE9}" = ccc-utility
"{9DC7D0A4-00A8-5D59-B104-A7C82ED9FA7A}" = Catalyst Control Center Localization German
"{A00B9A50-3090-4CFF-9CDA-82DA0BEDAA21}" = Apple Mobile Device Support
"{A062A15F-9CAC-4B88-98DF-87628A0BD721}" = Corel MediaOne
"{A1D08B90-AE1A-4885-AC29-731496FD397E}" = Windows Live Fotogalerie
"{A334F1BA-0A1D-4ED6-B4F9-4066157CA15D}" = DE
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.6
"{ABBACAD2-4DAF-490E-932B-E330B33FCF98}" = Softi FreeOCR
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{ADDBE07D-95B8-4789-9C76-187FFF9624B4}" = CorelDRAW Essential Edition 3
"{AE8705FB-E13C-40A9-8A2D-68D6733FBFC2}" = Status
"{B145EC69-66F5-11D8-9D75-000129760D75}" = MakeDisc
"{B50E4F43-69CC-15E3-3BA2-8F4220AE1946}" = ATI Catalyst Install Manager
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer
"{B8D42C3A-3CFF-4A8A-A7DA-4F44474D12C5}" = Windows Live Writer
"{BABDF173-48C2-7BFF-CA6D-961CE652123C}" = Catalyst Control Center Core Implementation
"{BAC80EF3-E106-4AEA-8C57-F217F9BC7358}" = Microsoft SQL Server 2005 Compact Edition [DEU]
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{C75CDBA2-3C86-481e-BD10-BDDA758F9DFF}" = hpPrintProjects
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240C1}" = WinZip 15.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D36DD326-7280-11D8-97C8-000129760CBE}" = CyberLink PhotoNow
"{DC0A5F99-FD66-433F-9D3A-05DCBA64BE42}" = TrayApp
"{DC24971E-1946-445D-8A82-CE685433FA7D}" = Realtek USB 2.0 Card Reader
"{E2479F1E-974C-E57E-4D20-40E0C37C80E5}" = ccc-core-static
"{E6415AEF-3B3E-43FF-AD3A-0258D854E7D6}" = Microsoft Sync Framework 2.0 Core Components (x86) DEU
"{E815FB81-995F-4F33-8E25-F16712123AB7}" = AuthenTec Fingerprint Sensor Minimum Install
"{E90A1941-4989-4172-AB5C-DBCB02202A84}" = Microsoft Sync Framework 2.0 Provider Services (x86) DEU
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F428D0FB-765D-40EB-BDD8-A1E7F5C597FA}" = Update Manager
"{F4E57F49-84B4-4CF2-B0A1-8CA1752BDF7E}" = OmniPass 5.01.24
"{F50C9048-B456-8BE2-B623-95A48B7F5463}" = Catalyst Control Center Graphics Full Existing
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FAF26102-09D7-4C58-AB01-0D59A2E517CA}" = Copy
"{FEDE400D-3381-4087-ACCB-689DD8A56123}" = Inst5657
"7-Zip" = 7-Zip 9.20
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVS Screen Capture_is1" = AVS Screen Capture version 2.0.1
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS Video Editor_is1" = AVS Video Editor 6
"AVS Video Recorder_is1" = AVS Video Recorder 2.4
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"Babylon" = Babylon
"DivX Setup.divx.com" = DivX-Setup
"DVD Shrink DE_is1" = DVD Shrink 3.2 deutsch (DeCSS-frei)
"DVDFab 8 Qt_is1" = DVDFab 8.1.1.2 (08/08/2011) Qt
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.8.815
"Google Chrome" = Google Chrome
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Print Projects" = HP Print Projects 1.0
"HP Smart Web Printing" = HP Smart Web Printing 4.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = CyberLink PhotoNow
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox 8.0.1 (x86 de)" = Mozilla Firefox 8.0.1 (x86 de)
"Mozilla Thunderbird (3.1.13)" = Mozilla Thunderbird (3.1.13)
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"Shop for HP Supplies" = Shop for HP Supplies
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Uninstall_is1" = Uninstall 1.0.0.1
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"Visual Studio Tools for the Office system 3.0 Runtime Language Pack - DEU" = Visual Studio-Tools für Office System 3.0 Runtime Language Pack - DEU

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 24.01.2012 08:11:44 | Computer Name = Takezô | Source = EventSystem | ID = 4609
Description =

Error - 24.01.2012 08:11:54 | Computer Name = Takezô | Source = WinMgmt | ID = 5601
Description =

Error - 24.01.2012 08:11:54 | Computer Name = Takezô | Source = WinMgmt | ID = 28
Description =

Error - 24.01.2012 08:21:00 | Computer Name = Takezô | Source = WinMgmt | ID = 5601
Description =

Error - 24.01.2012 08:21:01 | Computer Name = Takezô | Source = WinMgmt | ID = 28
Description =

Error - 24.01.2012 08:23:25 | Computer Name = Takezô | Source = System Restore | ID = 8209
Description =

Error - 24.01.2012 08:41:55 | Computer Name = Takezô | Source = EventSystem | ID = 4621
Description =

Error - 24.01.2012 12:37:22 | Computer Name = Takezô | Source = EventSystem | ID = 4609
Description =

Error - 24.01.2012 12:37:54 | Computer Name = Takezô | Source = WinMgmt | ID = 5601
Description =

Error - 24.01.2012 12:37:54 | Computer Name = Takezô | Source = WinMgmt | ID = 28
Description =

[ System Events ]
Error - 17.08.2011 01:32:04 | Computer Name = Takezô | Source = Service Control Manager | ID = 7000
Description =

Error - 17.08.2011 10:19:48 | Computer Name = Takezô | Source = HTTP | ID = 15016
Description =

Error - 17.08.2011 10:21:24 | Computer Name = Takezô | Source = Service Control Manager | ID = 7000
Description =

Error - 17.08.2011 12:54:14 | Computer Name = Takezô | Source = HTTP | ID = 15016
Description =

Error - 17.08.2011 12:55:50 | Computer Name = Takezô | Source = Service Control Manager | ID = 7000
Description =

Error - 18.08.2011 14:05:45 | Computer Name = Takezô | Source = HTTP | ID = 15016
Description =

Error - 18.08.2011 14:07:23 | Computer Name = Takezô | Source = Service Control Manager | ID = 7000
Description =

Error - 20.08.2011 00:36:25 | Computer Name = Takezô | Source = HTTP | ID = 15016
Description =

Error - 20.08.2011 00:38:03 | Computer Name = Takezô | Source = Service Control Manager | ID = 7000
Description =

Error - 20.08.2011 03:32:02 | Computer Name = Takezô | Source = HTTP | ID = 15016
Description =

< End of report >

OTL.Txt

OTL logfile created on: 24.01.2012 17:51:23 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Miamoto\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

2,99 Gb Total Physical Memory | 2,44 Gb Available Physical Memory | 81,50% Memory free
6,18 Gb Paging File | 5,82 Gb Available in Paging File | 94,16% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 282,27 Gb Total Space | 32,58 Gb Free Space | 11,54% Space Free | Partition Type: NTFS
Drive D: | 15,81 Gb Total Space | 1,17 Gb Free Space | 7,43% Space Free | Partition Type: FAT32

Computer Name: TAKEZÔ | User Name: Miamoto | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Miamoto\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Programme\LP\DCAE\220.exe ()
PRC - C:\Programme\2D36F\lvvm.exe ()
PRC - C:\Users\Miamoto\AppData\Roaming\E4E2D\015DC.exe ()
PRC - C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Programme\LP\DCAE\220.exe ()
MOD - C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.2_0\BabylonChromePI.dll ()
MOD - C:\Programme\2D36F\lvvm.exe ()
MOD - C:\Users\Miamoto\AppData\Roaming\E4E2D\015DC.exe ()
MOD - C:\Programme\Google\Chrome\Application\16.0.912.75\ppgooglenaclpluginchrome.dll ()
MOD - C:\Programme\Google\Chrome\Application\16.0.912.75\pdf.dll ()
MOD - C:\Programme\Google\Chrome\Application\16.0.912.75\avutil-51.dll ()
MOD - C:\Programme\Google\Chrome\Application\16.0.912.75\avformat-53.dll ()
MOD - C:\Programme\Google\Chrome\Application\16.0.912.75\avcodec-53.dll ()
MOD - C:\Programme\Google\Chrome\Application\16.0.912.75\gcswf32.dll ()
MOD - \\?\globalroot\systemroot\system32\mswsock.dll ()

========== Win32 Services (SafeList) ==========

SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (omniserv) -- C:\Programme\Softex\OmniPass\OmniServ.exe (Softex Inc.)
SRV - (TOSHIBA Bluetooth Service) -- C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)
SRV - (svchost) -- C:\Windows\System32\us30sys.dll (Iomega)
SRV - (ProtexisLicensing) -- C:\Windows\System32\PSIService.exe ()

========== Driver Services (SafeList) ==========

DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (JRAID) -- C:\Windows\system32\DRIVERS\jraid.sys (JMicron Technology Corp.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation)
DRV - (tosrfbd) -- C:\Windows\System32\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV - (tosporte) -- C:\Windows\System32\drivers\tosporte.sys (TOSHIBA Corporation)
DRV - (Tosrfhid) -- C:\Windows\System32\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation )
DRV - (TosRfSnd) -- C:\Windows\System32\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV - (tosrfbnp) -- C:\Windows\System32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (Tosrfusb) -- C:\Windows\System32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (Tosrfcom) -- C:\Windows\System32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor) -- C:\Windows\System32\drivers\atswpdrv.sys (AuthenTec, Inc.)
DRV - (tosrfnds) -- C:\Windows\System32\drivers\tosrfnds.sys (TOSHIBA Corporation.)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hiergehtslos.de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:57030

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 57030
FF - prefs.js..network.proxy.type: 1

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MI1933~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011.04.01 19:37:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011.04.03 17:52:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011.04.03 17:52:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.12.21 13:04:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.10.28 16:16:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.13\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011.10.28 16:16:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.13\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2011.10.28 16:16:00 | 000,000,000 | ---D | M]

[2011.04.01 18:26:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miamoto\AppData\Roaming\mozilla\Extensions
[2011.04.01 18:26:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miamoto\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011.12.21 13:04:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miamoto\AppData\Roaming\mozilla\Firefox\Profiles\4t4m7mzb.default\extensions
[2011.12.17 21:54:39 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Miamoto\AppData\Roaming\mozilla\Firefox\Profiles\4t4m7mzb.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011.04.01 22:13:28 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Users\Miamoto\AppData\Roaming\mozilla\Firefox\Profiles\4t4m7mzb.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.01.23 14:07:44 | 000,001,598 | ---- | M] () -- C:\Users\Miamoto\AppData\Roaming\Mozilla\Firefox\Profiles\4t4m7mzb.default\searchplugins\ixquick---deutsch.xml
[2011.04.01 18:17:52 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011.04.01 18:17:52 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\distribution\extensions
[2011.04.01 18:17:52 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Programme\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011.12.17 21:54:19 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011.12.17 21:54:10 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.12.17 21:54:10 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011.12.17 21:54:10 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2011.12.17 21:54:10 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.12.17 21:54:10 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.12.17 21:54:10 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google

riginalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFiel dTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MI1933~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MI1933~1\Office14\NPSPWRAP.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.3_0\
CHR - Extension: YouTube = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
CHR - Extension: Google-Suche = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
CHR - Extension: Google-Suche = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.16_0\
CHR - Extension: Babylon Chrome OCR = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.2_0\
CHR - Extension: DivX HiQ = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae\2.1.1.94_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.1.94_0\
CHR - Extension: Google Mail = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\
CHR - Extension: Google Mail = C:\Users\Miamoto\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Programme\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O4 - HKLM..\Run: [220.exe] C:\Programme\LP\DCAE\220.exe ()
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (Babylon Ltd.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe ( TOSHIBA CORPORATION)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\HomeCinema\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [OmniPass] C:\Programme\Softex\OmniPass\scureapp.exe ()
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [toolbar_eula_launcher] C:\Programme\GoogleEULA\EULALauncher.exe ( )
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [{0A05A2B9-0319-2F4F-54F3-17847168E2CC}] C:\Users\Miamoto\AppData\Roaming\Rayvaco\olirin.exe (Корпорация Майкрософт)
O4 - HKCU..\Run: [220.exe] C:\Users\Miamoto\AppData\Roaming\Microsoft\DCAE\220.exe ()
O4 - HKCU..\Run: [Firefox helper] C:\Users\Miamoto\AppData\Local\Mozilla\Firefox\firefox.exe (Корпорация Майкрософт)
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
F3 - HKCU WinNT: Load - (C:\Users\Miamoto\AppData\Roaming\2D36F\lvvm.exe) -C:\Users\Miamoto\AppData\Roaming\2D36F\lvvm.exe ()
O8 - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Miamoto\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Translate this web page with Babylon - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O8 - Extra context menu item: Translate with Babylon - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O9 - Extra 'Tools' menuitem : Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: eBay - Der weltweite Online-Marktplatz - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-25/4 File not found
O9 - Extra 'Tools' menuitem : eBay - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-25/4 File not found
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in &Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D959D73B-3262-4772-AE14-19F93B9D4B32}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (C:\Users\Miamoto\AppData\Roaming\E4E2D\015DC.exe) -C:\Users\Miamoto\AppData\Roaming\E4E2D\015DC.exe ()
O24 - Desktop WallPaper: C:\Users\Miamoto\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Miamoto\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008.08.21 11:50:32 | 000,000,672 | RH-- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
O33 - MountPoints2\{2cdc3878-21b0-11e1-adfd-002220015dca}\Shell - "" = AutoRun
O33 - MountPoints2\{2cdc3878-21b0-11e1-adfd-002220015dca}\Shell\AutoRun\command - "" = "G:\WD SmartWare.exe" autoplay=true
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012.01.24 11:30:06 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\2D36F
[2012.01.24 11:26:16 | 000,000,000 | ---D | C] -- C:\Program Files\2D36F
[2012.01.24 11:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\LP
[2012.01.24 11:25:41 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\E4E2D
[2012.01.23 21:10:35 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2012.01.23 19:20:46 | 000,000,000 | -HSD | C] -- C:\Users\Miamoto\AppData\Local\55abe744
[2012.01.23 17:31:53 | 000,000,000 | ---D | C] -- C:\Desktop
[2012.01.19 13:50:21 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\Rayvaco
[2012.01.19 13:50:21 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\Cie
[2012.01.18 23:34:22 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\Documents\AVS4YOU
[2012.01.18 20:49:05 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2012.01.18 20:48:54 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\AVS4YOU
[2012.01.18 20:36:47 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2012.01.18 20:36:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
[2012.01.18 20:35:39 | 011,137,024 | ---- | C] (Intel Corporation) -- C:\Windows\System32\libmfxsw32.dll
[2012.01.18 20:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVSMedia
[2012.01.18 20:34:47 | 000,000,000 | ---D | C] -- C:\Program Files\AVS4YOU
[2012.01.18 20:26:19 | 000,000,000 | R--D | C] -- C:\Users\Miamoto\Videos
[2012.01.11 19:46:14 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\Desktop\Gopro
[2012.01.07 15:46:04 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\Desktop\einsauszwei_Edits
[2012.01.07 15:46:04 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\Desktop\__MACOSX
[2012.01.05 13:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2011.12.29 20:25:57 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Local\Babylon
[2011.12.29 20:23:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon
[2011.12.29 20:23:41 | 000,000,000 | ---D | C] -- C:\Program Files\Babylon
[2011.12.29 20:23:10 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\Babylon
[2011.12.29 20:23:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[1 C:\Users\Miamoto\AppData\Roaming\*.tmp files -> C:\Users\Miamoto\AppData\Roaming\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.01.24 17:41:26 | 000,001,356 | ---- | M] () -- C:\Users\Miamoto\AppData\Local\d3d9caps.dat
[2012.01.24 17:41:20 | 000,002,281 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2012.01.24 17:36:52 | 000,000,000 | -HS- | M] () -- C:\Windows\System32\dds_log_trash.cmd
[2012.01.24 17:36:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.01.24 13:44:07 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2012.01.24 13:43:55 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.01.24 13:43:55 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.01.24 13:38:10 | 000,278,016 | ---- | M] () -- C:\Users\Miamoto\AppData\Roaming\firefox.exe
[2012.01.24 13:20:41 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.01.24 12:56:04 | 000,001,100 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.01.23 19:22:24 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012.01.23 16:36:14 | 009,185,026 | ---- | M] () -- C:\Users\Miamoto\Desktop\Vato Gonzalez - The Moombahstard.mp3
[2012.01.22 01:16:44 | 134,371,328 | ---- | M] () -- C:\Users\Miamoto\Desktop\Unbetitelt.mpeg
[2012.01.22 01:00:13 | 002,371,488 | ---- | M] () -- C:\Users\Miamoto\Desktop\IMG_2249ft.jpg
[2012.01.19 20:29:50 | 000,050,688 | ---- | M] () -- C:\Users\Miamoto\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.01.19 09:41:46 | 000,358,632 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012.01.18 23:39:35 | 000,604,275 | ---- | M] () -- C:\Users\Miamoto\Desktop\penis.vep
[2012.01.18 20:36:49 | 000,001,090 | ---- | M] () -- C:\Users\Miamoto\Desktop\AVS4YOU Software Navigator.lnk
[2012.01.18 20:36:16 | 000,000,998 | ---- | M] () -- C:\Users\Miamoto\Desktop\AVS Video Editor.lnk
[2012.01.07 15:44:44 | 049,905,282 | ---- | M] () -- C:\Users\Miamoto\Desktop\einsauszwei_Edits.zip
[1 C:\Users\Miamoto\AppData\Roaming\*.tmp files -> C:\Users\Miamoto\AppData\Roaming\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.01.24 11:30:59 | 000,278,016 | ---- | C] () -- C:\Users\Miamoto\AppData\Roaming\firefox.exe
[2012.01.23 19:23:00 | 000,000,000 | -HS- | C] () -- C:\Windows\System32\dds_log_trash.cmd
[2012.01.23 17:32:14 | 009,185,026 | ---- | C] () -- C:\Users\Miamoto\Desktop\Vato Gonzalez - The Moombahstard.mp3
[2012.01.22 00:56:53 | 002,371,488 | ---- | C] () -- C:\Users\Miamoto\Desktop\IMG_2249ft.jpg
[2012.01.18 23:46:35 | 134,371,328 | ---- | C] () -- C:\Users\Miamoto\Desktop\Unbetitelt.mpeg
[2012.01.18 22:38:26 | 000,604,275 | ---- | C] () -- C:\Users\Miamoto\Desktop\penis.vep
[2012.01.18 20:36:49 | 000,001,090 | ---- | C] () -- C:\Users\Miamoto\Desktop\AVS4YOU Software Navigator.lnk
[2012.01.18 20:36:16 | 000,000,998 | ---- | C] () -- C:\Users\Miamoto\Desktop\AVS Video Editor.lnk
[2012.01.07 15:42:10 | 049,905,282 | ---- | C] () -- C:\Users\Miamoto\Desktop\einsauszwei_Edits.zip
[2011.10.13 22:18:03 | 000,000,127 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2011.06.01 18:16:47 | 000,001,356 | ---- | C] () -- C:\Users\Miamoto\AppData\Local\d3d9caps.dat
[2011.05.30 21:02:47 | 000,000,011 | ---- | C] () -- C:\Users\Miamoto\AppData\Roaming\urhtps.dat
[2011.05.07 22:34:07 | 000,050,688 | ---- | C] () -- C:\Users\Miamoto\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.04.09 17:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2011.04.01 19:23:21 | 000,225,398 | ---- | C] () -- C:\Windows\hpoins46.dat
[2009.06.11 04:02:28 | 000,000,606 | ---- | C] () -- C:\Windows\hpomdl46.dat
[2008.09.30 15:46:42 | 000,000,000 | ---- | C] () -- C:\Windows\tosOBEX.INI
[2008.09.30 12:16:02 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2008.09.30 12:16:01 | 000,628,730 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2008.09.30 12:16:01 | 000,126,454 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2008.09.30 12:16:01 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2008.09.30 04:04:07 | 000,036,864 | ---- | C] () -- C:\Windows\System32\Hooks.dll
[2008.09.30 03:09:29 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2008.09.30 02:57:16 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2008.09.30 02:57:16 | 000,172,033 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2008.09.30 02:57:16 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2008.09.30 02:57:16 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe
[2008.09.30 02:57:01 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2008.09.30 02:21:38 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2008.04.27 19:28:44 | 000,962,560 | ---- | C] () -- C:\Windows\tesseract.exe
[2008.01.21 03:24:14 | 000,100,043 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2007.12.21 15:46:32 | 000,118,784 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll
[2007.06.05 12:20:32 | 000,177,704 | ---- | C] () -- C:\Windows\System32\PSIService.exe
[2006.11.02 13:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 13:47:37 | 000,358,632 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 11:33:01 | 000,595,996 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 11:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 11:33:01 | 000,104,070 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 11:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 11:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 09:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 09:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 08:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006.11.02 08:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2005.07.22 20:30:18 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll

========== LOP Check ==========

[2012.01.24 11:30:30 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\2D36F
[2011.05.23 23:06:34 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\5015
[2011.09.06 08:52:10 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Axnuze
[2011.12.31 17:21:42 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Babylon
[2011.08.31 09:28:10 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Beck'scher Online-Kommentar
[2012.01.24 13:05:21 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Cie
[2011.08.17 23:48:24 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\DVDVideoSoft
[2011.04.01 22:13:28 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\DVDVideoSoftIEHelpers
[2012.01.24 11:26:06 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\E4E2D
[2011.08.14 13:36:16 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\FreeAudioPack
[2011.04.01 21:55:31 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Gutscheinmieze
[2011.05.23 23:06:22 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\kock
[2011.08.17 08:49:37 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Leadertech
[2012.01.19 13:50:21 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Rayvaco
[2011.06.30 12:15:48 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Softi Software
[2011.09.11 15:57:17 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Teyw
[2011.04.01 18:26:35 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Thunderbird
[2011.04.01 21:15:35 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\Verlag C.H.Beck
[2011.05.23 23:06:23 | 000,000,000 | ---D | M] -- C:\Users\Miamoto\AppData\Roaming\xmldm
[2012.01.24 13:44:07 | 000,032,514 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Files - Unicode (All) ==========
[2011.12.21 20:55:26 | 091,571,222 | ---- | C] ()(C:\Users\Miamoto\Desktop\Feldberg shape crew hard at Work 21?12?11.m4v) -- C:\Users\Miamoto\Desktop\Feldberg shape crew hard at Work 211211.m4v
[2011.12.21 20:38:16 | 091,571,222 | ---- | M] ()(C:\Users\Miamoto\Desktop\Feldberg shape crew hard at Work 21?12?11.m4v) -- C:\Users\Miamoto\Desktop\Feldberg shape crew hard at Work 211211.m4v

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Miamoto\Desktop\Unbetitelt.mpeg:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Miamoto\Desktop\David Guetta - Nothing But The Beat - www.BEATJUNKS.com.mov:TOC.WMV

< End of report >

HILFE

dembab · 24.01.2012, 18:17

ohh wusste nicht wie man die datein so komprimiert dastellt....

markusg · 24.01.2012, 18:36

hi

dieses script sowie evtl. folgende scripts sind nur für den jeweiligen user.
wenn ihr probleme habt, eröffnet eigene topics und wartet auf, für euch angepasste scripts.

• Starte bitte die OTL.exe
• Kopiere nun das Folgende in die Textbox.

Code:

ATTFilter

:OTL
PRC - C:\Programme\LP\DCAE\220.exe ()
PRC - C:\Programme\2D36F\lvvm.exe ()
PRC - C:\Users\Miamoto\AppData\Roaming\E4E2D\015DC.exe ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:57030
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 57030
FF - prefs.js..network.proxy.type: 0
O4 - HKLM..\Run: [220.exe] C:\Programme\LP\DCAE\220.exe ()
O4 - HKCU..\Run: [{0A05A2B9-0319-2F4F-54F3-17847168E2CC}] C:\Users\Miamoto\AppData\Roaming\Rayvaco\olirin.exe (Корпорация Майкрософт)
O4 - HKCU..\Run: [220.exe] C:\Users\Miamoto\AppData\Roaming\Microsoft\DCAE\220.exe ()
O4 - HKCU..\Run: [Firefox helper] C:\Users\Miamoto\AppData\Local\Mozilla\Firefox\firefox.exe (Корпорация Майкрософт)
F3 - HKCU WinNT: Load - (C:\Users\Miamoto\AppData\Roaming\2D36F\lvvm.exe) -C:\Users\Miamoto\AppData\Roaming\2D36F\lvvm.exe ()
O20 - HKCU Winlogon: Shell - (C:\Users\Miamoto\AppData\Roaming\E4E2D\015DC.exe) -C:\Users\Miamoto\AppData\Roaming\E4E2D\015DC.exe ()
[2012.01.24 11:30:06 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\2D36F
[2012.01.24 11:26:16 | 000,000,000 | ---D | C] -- C:\Program Files\2D36F
[2012.01.24 11:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\LP
[2012.01.24 11:25:41 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\E4E2D
[2012.01.23 19:20:46 | 000,000,000 | -HSD | C] -- C:\Users\Miamoto\AppData\Local\55abe744
[2012.01.19 13:50:21 | 000,000,000 | ---D | C] -- C:\Users\Miamoto\AppData\Roaming\Cie
 :Files
C:\Users\Miamoto\AppData\Roaming\Rayvaco
C:\Users\Miamoto\AppData\Local\Mozilla\Firefox\firefox.exe
:Commands
[Reboot]

• Schliesse bitte nun alle Programme.
• Klicke nun bitte auf den Fix Button.
• OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
• Nach dem Neustart findest Du ein Textdokument, dessen inhalt in deiner nächsten antwort hier reinkopieren.
starte in den normalen modus.
öffne internet optionen, extras internet optionen, verbindung lanverbindung.
eintrag bei proxy und port löschen, haken bei proxy verwenden raus, übernehmen ok.
schließe den ie.
öffne firefox, extras einstellung, erweitert, netzwerk.
eintrag bei proxy und port löschen, keinen proxy verwenden wählen, übernehmen ok
firefox schließen, neustarten.
falls du keine symbole hast, dann rechtsklick, ansicht, desktop symbole einblenden

Drücke bitte die

+ E Taste.

Öffne dein Systemlaufwerk ( meistens C: )
Suche nun
folgenden Ordner: _OTL und öffne diesen.
Mache einen Rechtsklick auf den Ordner Movedfiles --> Senden an --> Zip-Komprimierter Ordner
Dies wird eine Movedfiles.zip Datei in _OTL erstellen
Lade diese bitte in unseren Uploadchannel
hoch. ( Durchsuchen --> C:\_OTL\Movedfiles.zip )

Teile mir mit ob der Upload problemlos geklappt hat. Danke im voraus

dembab · 24.01.2012, 18:47

hab den pc wie gesagt neu gestartet aber es ist kein textdokument aufgetaucht...

dembab · 24.01.2012, 18:56

hab die zip datei wie bewschrieben hochgeladen

markusg · 24.01.2012, 19:15

danke.
nutzt du das system für onlinebanking einkäufe sonstige zahlungsabwicklungen oder ähnlich wichtiges, wie zb berufliches?

dembab · 24.01.2012, 19:17

ich persönlich nicht aber der pc gehörte meinem vater

wieso??

markusg · 24.01.2012, 19:18

rufe die bank an, onlinebanking muss gesperrt werden.
der pc muss neu aufgesetzt und dann abgesichert werden
1. Datenrettung:

deaktiviere Autorun: http://www.trojaner-board.de/83238-a...sschalten.html
dann sichere Daten auf einen externen Datenträger (USB-Platte): http://www.trojaner-board.de/82533-d...ted-magic.html
Bider, Dokumente, Musik, Videos (persönliches) http://www.trojaner-board.de/71715-k...iendungen.html

2. Formatieren, Windows neuinstallieren:

nutzt du eine Windows CD: http://www.trojaner-board.de/51262-a...sicherung.html
Recovery CD oder Recovery Partition?
falls dies ein Fertig-PC ist, nenne Hersteller + Typ.
Keine Windows 7 DVD? http://www.trojaner-board.de/100776-...-download.html

3. PC absichern: http://www.trojaner-board.de/96344-a...-rechners.html
4. alle Passwörter ändern!
5. nach PC Absicherung, die gesicherten Daten prüfen und falls sauber: zurückspielen.
6. werde ich dann noch was zum absichern von Onlinebanking mit Chip Card Reader + Star Money sagen.

dembab · 24.01.2012, 19:20

ok...das problem ist das ich die windows cd nicht mehr besitze deswegen habe ich mich vor dem neu aufsetzen dieganze zeit schon gedrückt...

markusg · 24.01.2012, 19:36

jo, dann musst du dir ne neue cd besorgen, bzw wenn du den key noch hast ne cd leihen.

dembab · 24.01.2012, 19:48

reicht es nicht wenn ich den pc nicht einfach formatiere und windows neu aufsetze wennich die cd habe?

markusg · 24.01.2012, 21:47

wenn du ne neue cd hast:
1. Datenrettung:

deaktiviere Autorun: http://www.trojaner-board.de/83238-a...sschalten.html
dann sichere Daten auf nen externen datenträger: http://www.trojaner-board.de/82533-d...ted-magic.html
Bider, Dokumente, Musik Videos (persönliches) http://www.trojaner-board.de/71715-k...iendungen.html

2. Formatieren, Windows neu instalieren:

nutzt du eine Windows CD: http://www.trojaner-board.de/51262-a...sicherung.html
recovery cd oder recovery partition.
falls dies ein fertig pc ist, nenne hersteller + typ.
Keine Windows 7 DVD? http://www.trojaner-board.de/100776-...-download.html

3. PC absichern: http://www.trojaner-board.de/96344-a...-rechners.html
4. alle Passwörter ändern!
5. nach PC Absicherung, die gesicherten Daten prüfen und falls sauber: zurückspielen.
6. werde ich dann noch was zum absichern von Onlinebanking mit Chip Card Reader + Star Money sagen.

24.01.2012, 19:15	#6
markusg /// Malware-holic	"Achtung - Aus Sicherheitsgründen wurde Windows blockiert" danke. nutzt du das system für onlinebanking einkäufe sonstige zahlungsabwicklungen oder ähnlich wichtiges, wie zb berufliches? __________________ --> "Achtung - Aus Sicherheitsgründen wurde Windows blockiert"

"Achtung - Aus Sicherheitsgründen wurde Windows blockiert"

Plagegeister aller Art und deren Bekämpfung: "Achtung - Aus Sicherheitsgründen wurde Windows blockiert"