Internet seit 3 Tagen unter Modemspeed, hier mein Logfile!! DANKE

crossgod · 23.09.2007, 16:03

----- Windows --------------------------
Datentr„ger in Laufwerk C: ist ACER
Volumeseriennummer: 2629-16F0

Verzeichnis von C:\WINDOWS

23.09.2007 16:39 1.050.613 setupapi.log
23.09.2007 14:54 159 wiadebug.log
23.09.2007 14:53 0 0.log
23.09.2007 14:53 2.048 bootstat.dat
23.09.2007 14:52 1.452.458 WindowsUpdate.log
23.09.2007 14:52 50 wiaservc.log
23.09.2007 14:52 32.618 SchedLgU.Txt
22.09.2007 22:11 233.336 setupact.log
22.09.2007 19:42 271.297 wmsetup.log
08.09.2007 14:20 46.044 ocmsn.log
08.09.2007 14:20 44.284 KB937143-IE7.log
08.09.2007 14:20 1.355 imsins.log
08.09.2007 14:20 195.128 ntdtcsetup.log
08.09.2007 14:20 319.233 comsetup.log
08.09.2007 14:20 175.500 iis6.log
08.09.2007 14:20 437.311 tsoc.log
08.09.2007 14:20 1.153.528 FaxSetup.log
08.09.2007 14:20 56.386 msgsocm.log
08.09.2007 14:20 572.539 ocgen.log
08.09.2007 14:20 179.125 updspapi.log
08.09.2007 14:19 1.355 imsins.BAK
08.09.2007 14:19 23.442 KB938127-IE7.log
07.09.2007 18:53 109.575 spupdsvc.log
07.09.2007 18:50 105.529 ie7_main.log
07.09.2007 18:47 159.719 ie7.log
07.09.2007 18:45 40.115 IDNMitigationAPIs.log
07.09.2007 18:45 39.984 NLSDownlevelMapping.log
07.09.2007 18:44 29.214 KB915865.log
06.09.2007 07:25 15.378 KB938127.log
06.09.2007 07:25 19.514 KB937143.log
06.09.2007 07:13 1.052 iereseticons.log
05.09.2007 23:09 54.535 ie7Uninst.log
05.09.2007 15:15 8.135 KB929969.log
04.09.2007 04:16 9.310 KB939683.log
30.08.2007 15:01 21.603 KB933360.log
18.08.2007 23:20 17.765 KB936021.log
18.08.2007 23:20 16.947 KB938828.log
18.08.2007 23:20 17.096 KB921503.log
18.08.2007 23:20 16.946 KB938829.log
18.08.2007 23:18 285.514 msxml4-KB936181-enu.LOG
18.08.2007 23:17 9.306 KB936782.log
18.08.2007 20:38 0 setuperr.log
11.07.2007 17:52 10.732 KB936357.log
13.06.2007 15:21 1.036.288 explorer.exe
13.06.2007 08:29 17.653 KB929123.log
13.06.2007 08:29 16.950 KB935840.log
13.06.2007 08:28 16.596 KB935839.log
13.06.2007 08:27 22.244 KB933566-IE7.log
24.05.2007 00:31 7.632 KB927891.log
10.05.2007 07:51 17.080 KB931768-IE7.log
10.05.2007 07:50 10.606 KB930916.log
11.04.2007 07:51 14.070 KB931784.log
11.04.2007 07:50 12.344 KB931261.log
11.04.2007 07:50 12.652 KB930178.log
11.04.2007 07:50 14.214 KB932168.log
04.04.2007 10:09 12.314 KB925902.log
14.03.2007 07:15 8.751 KB929399.log
14.03.2007 07:14 11.867 KB929338.log
28.02.2007 19:29 8.794 WgaNotify.log
16.02.2007 07:25 20.455 KB927779.log
16.02.2007 07:25 17.453 KB927802.log
16.02.2007 07:25 17.190 KB928255.log
16.02.2007 07:25 13.731 KB924667.log
16.02.2007 07:24 25.581 KB931836.log
16.02.2007 07:24 15.086 KB926436.log
16.02.2007 07:24 10.997 KB928090-IE7.log
16.02.2007 07:24 12.080 KB918118.log
16.02.2007 07:22 11.628 KB928843.log
16.12.2006 00:22 9.569 KB925398.log
16.12.2006 00:22 11.042 KB926255.log
16.12.2006 00:22 10.890 KB923694.log
10.12.2006 15:28 3.174 mozver.dat
28.11.2006 22:49 18.606 wmsetup10.log
28.11.2006 22:49 8.799 KB926239.log
28.11.2006 22:49 7.628 MSCompPackV1.log
28.11.2006 22:49 35.286 wmp11.log
28.11.2006 22:48 517 win.ini
28.11.2006 22:46 51.021 WMFDist11.log
28.11.2006 22:44 21.341 Wudf01000Inst.log
24.11.2006 20:31 52.254 KB923980.log
24.11.2006 20:31 53.119 KB924270.log
24.11.2006 20:26 12.659 KB914440.log
24.11.2006 20:26 31.778 KB920213.log
24.11.2006 20:25 24.514 KB904942.log
24.11.2006 20:17 19.474 KB922760.log
02.11.2006 16:05 216.317 DirectX.log
11.10.2006 07:44 12.422 KB924191.log
11.10.2006 07:44 12.237 KB922819.log
11.10.2006 07:44 11.416 KB923414.log
11.10.2006 07:44 11.409 KB924496.log
11.10.2006 07:44 8.625 KB923191.log
26.09.2006 23:13 10.560 KB925486.log
17.09.2006 21:01 0 iPlayer.INI
13.09.2006 23:17 11.321 KB920685.log
13.09.2006 23:17 12.813 KB920872.log
13.09.2006 23:17 11.487 KB919007.log
13.09.2006 23:17 7.881 KB922582.log
06.09.2006 15:24 85.501 KB920214.log
06.09.2006 15:23 51.325 KB921883.log
06.09.2006 15:23 85.384 KB922616.log
06.09.2006 15:23 84.885 KB917159.log
06.09.2006 15:23 84.956 KB921398.log
06.09.2006 15:23 88.461 KB918899.log
06.09.2006 15:22 80.427 KB920670.log
06.09.2006 15:22 81.073 KB914388.log
06.09.2006 15:22 79.706 KB917422.log
06.09.2006 15:22 79.239 KB916595.log
06.09.2006 15:21 80.503 KB920683.log
14.06.2006 15:02 13.594 KB917734.log
14.06.2006 15:01 15.254 KB918439.log
14.06.2006 15:01 15.935 KB917344.log
14.06.2006 15:01 14.894 KB917953.log
14.06.2006 15:01 14.869 KB911280.log
14.06.2006 15:01 18.123 KB916281.log
14.06.2006 15:00 11.437 KB914389.log
01.06.2006 09:14 42.549 KB911565.log
31.05.2006 22:54 316.640 WMSysPr9.prx
30.05.2006 19:58 2.028 ModemLog_SoftV92 Data Fax Modem with SmartCP.txt
28.05.2006 09:37 17.154 WGA.log
17.05.2006 13:23 11.694 KB913580.log
26.04.2006 21:35 11.033 KB900485.log
25.04.2006 22:38 272 _delis32.ini
24.04.2006 10:19 841 Active Setup Log.txt
22.04.2006 12:07 14.784 KB885250.log
22.04.2006 12:07 14.793 KB887742.log
22.04.2006 12:07 14.657 KB887472.log
22.04.2006 12:07 17.225 KB912812.log
22.04.2006 12:07 6.596 KB886185.log
22.04.2006 12:07 11.900 KB911567.log
21.04.2006 17:16 37.059 KB904706.log
21.04.2006 17:09 731 DtcInstall.log
21.04.2006 17:06 1.519 OEWABLog.txt
21.04.2006 17:02 454.652 svcpack.log
21.04.2006 17:02 231.819 KB913446.log
21.04.2006 17:01 231.063 KB910437.log
21.04.2006 17:01 245.079 KB911562.log
21.04.2006 17:00 244.869 KB908531.log
21.04.2006 16:59 238.329 KB911927.log
21.04.2006 16:59 236.415 KB896424.log
21.04.2006 16:58 238.797 KB900725.log
21.04.2006 16:57 236.347 KB912919.log
21.04.2006 16:57 230.512 KB905414.log
21.04.2006 16:56 228.773 KB901017.log
21.04.2006 16:55 220.888 KB899587.log
21.04.2006 16:55 219.794 KB899591.log
21.04.2006 16:54 236.206 KB901190.log
21.04.2006 16:53 230.753 KB905749.log
21.04.2006 16:53 219.574 KB893756.log
21.04.2006 16:52 220.093 KB896358.log
21.04.2006 16:51 217.994 KB901214.log
21.04.2006 16:51 215.938 KB896428.log
21.04.2006 16:50 216.605 KB896422.log
21.04.2006 16:49 235.012 KB908519.log
21.04.2006 16:49 216.906 KB890046.log
21.04.2006 16:48 221.402 KB890859.log
21.04.2006 16:47 215.177 KB885835.log
21.04.2006 16:47 207.298 KB888113.log
21.04.2006 16:46 206.685 KB891781.log
21.04.2006 16:45 206.785 KB888302.log
21.04.2006 16:45 206.315 KB885836.log
21.04.2006 16:44 206.129 KB873339.log
21.04.2006 16:43 223.178 KB896423.log
21.04.2006 16:43 241.508 KB902400.log
21.04.2006 16:37 200 cmsetacl.log
21.04.2006 16:36 3.085 sessmgr.setup.log
17.04.2006 00:46 0 nsreg.dat
14.04.2006 15:19 40.383 KB912812-IE6SP1-20060322.182418.log
14.04.2006 15:18 36.825 KB911567-OE6SP1-20060316.165634.log
14.04.2006 15:18 34.683 KB914798.log
14.04.2006 15:17 34.920 KB911564.log
14.04.2006 15:14 36.510 KB835409.log
14.04.2006 15:13 32.346 KB905495.log
14.04.2006 15:08 1.383 xpsp1hfm.log
14.04.2006 15:08 9.873 KB835732.log
29.03.2006 20:17 65.536 DUMP4ea0.tmp
20.03.2006 13:46 10.778 KB898461.log
20.03.2006 13:46 11.051 KB893803v2.log
20.03.2006 13:46 8.503 KB842773.log
15.03.2006 14:14 338 Sobotta.ntz
15.03.2006 14:13 14 US.INI
15.03.2006 14:12 0 PROTOCOL.INI
15.03.2006 12:21 12.133 PATCH.LOG
15.03.2006 11:49 93 ALaunch.ini
15.03.2006 11:46 79 QtZgAcer.UNI
15.03.2006 11:45 1.361 chipset.log
15.03.2006 11:42 4.076 regopt.log
15.03.2006 11:41 8.192 REGLOCS.OLD
27.05.2005 01:22 10.752 hh.exe
14.08.2004 01:00 72.704 ST5UNST.EXE
04.08.2004 09:58 288.768 winhlp32.exe
04.08.2004 09:58 32.866 slrundll.exe
04.08.2004 09:58 153.600 regedit.exe
04.08.2004 09:58 70.144 notepad.exe
04.08.2004 09:57 50.688 twain_32.dll
17.07.2004 20:40 19.528 002286_.tmp
15.07.2004 09:22 219 FlashSaver.dat
12.07.2004 10:27 3.315.671 ex_1280x800.swf
06.07.2004 15:28 61 smscfg.ini
06.07.2004 15:18 33 Acer.ini
06.07.2004 15:18 329 uninstall.ini
06.07.2004 15:12 23.318 q329623.log
06.07.2004 15:11 18.809 Q327979.log
06.07.2004 15:10 18.415 KB821187.log
06.07.2004 15:09 19.663 KB822603.log
06.07.2004 15:07 16.973 KB826939.log
06.07.2004 15:00 546 SynInst.log
06.07.2004 14:51 0 control.ini
06.07.2004 14:51 299.552 WMSysPrx.prx
06.07.2004 14:51 4.161 ODBCINST.INI
06.07.2004 14:51 280 Windows Update.log
06.07.2004 14:50 749 WindowsShell.Manifest
06.07.2004 14:49 37 vbaddin.ini
06.07.2004 14:49 36 vb.ini
06.07.2004 14:49 0 T30DebugLogFile.txt
06.07.2004 14:47 0 Sti_Trace.log
06.07.2004 14:45 231 system.ini
25.06.2004 17:15 4.210 CLEANUP.CMD
14.06.2004 11:25 187.392 Acer.scr
14.06.2004 11:22 3.510.430 tm_1400.swf
08.06.2004 07:18 499.712 ALAUNCH.EXE
30.04.2004 05:08 28.672 ciaunwdm.exe
25.08.2003 17:21 2.866 POWERMG.REG
02.04.2003 12:00 26.680 F„cher.bmp
02.04.2003 12:00 17.362 Rhododendron.bmp
02.04.2003 12:00 65.954 Pr„riewind.bmp
02.04.2003 12:00 26.582 Granit.bmp
02.04.2003 12:00 17.336 Angler.bmp
02.04.2003 12:00 65.832 Santa Fe-Stuck.bmp
02.04.2003 12:00 16.730 Feder.bmp
02.04.2003 12:00 17.062 Kaffeetasse.bmp
02.04.2003 12:00 707 _default.pif
02.04.2003 12:00 1.272 Blaue Spitzen 16.bmp
02.04.2003 12:00 80 explorer.scf
02.04.2003 12:00 2 desktop.ini
02.04.2003 12:00 48.680 winnt256.bmp
02.04.2003 12:00 15.872 TASKMAN.EXE
02.04.2003 12:00 9.522 Zapotek.bmp
02.04.2003 12:00 257.568 winhelp.exe
02.04.2003 12:00 1.405 msdfmap.ini
02.04.2003 12:00 94.800 twain.dll
02.04.2003 12:00 48.680 winnt.bmp
02.04.2003 12:00 49.680 twunk_16.exe
02.04.2003 12:00 34.818 wmprfDEU.prx
02.04.2003 12:00 65.978 Seifenblase.bmp
02.04.2003 12:00 82.944 clock.avi
02.04.2003 12:00 18.944 vmmreg32.dll
02.04.2003 12:00 25.600 twunk_32.exe
03.03.2003 15:25 34.304 Q330994.exe
03.03.2003 15:25 34.304 ieuninst.exe
05.11.2002 14:07 126.976 UNINST32.EXE
31.05.2002 14:24 24.576 APANEL.EXE
24.05.2002 16:34 32.768 AMOVE.EXE
26.07.2001 09:16 46.080 Uninstall.exe
15.06.2001 09:48 32 Blank.swf
17.11.1998 14:44 328.704 IsUn0407.exe
29.10.1998 19:45 306.688 IsUninst.exe
12.02.1998 16:54 149.504 FsMpegDll.dll
25.07.1996 10:43 255.488 UN160407.EXE
258 Datei(en) 29.379.420 Bytes
0 Verzeichnis(se), 1.101.234.176 Bytes frei

crossgod · 23.09.2007, 16:04

----- Tasks ----------------------------
Datentr„ger in Laufwerk C: ist ACER
Volumeseriennummer: 2629-16F0

Verzeichnis von C:\WINDOWS\tasks

23.09.2007 14:53 6 SA.DAT
02.04.2003 12:00 65 desktop.ini
2 Datei(en) 71 Bytes
0 Verzeichnis(se), 1.101.742.080 Bytes frei

----- Wintemp --------------------------
Datentr„ger in Laufwerk C: ist ACER
Volumeseriennummer: 2629-16F0

Verzeichnis von C:\WINDOWS\temp

23.09.2007 14:54 409 WGANotify.settings
23.09.2007 14:53 16.384 Perflib_Perfdata_1cc.dat
23.09.2007 14:53 255 WGAErrLog.txt
22.09.2007 12:11 16.384 Perflib_Perfdata_174.dat
21.09.2007 17:37 16.384 Perflib_Perfdata_72c.dat
18.09.2007 08:47 16.384 Perflib_Perfdata_184.dat
12.09.2007 13:06 16.384 Perflib_Perfdata_290.dat
09.09.2007 19:37 16.384 Perflib_Perfdata_300.dat
07.09.2007 18:52 16.384 Perflib_Perfdata_22c.dat
04.09.2007 12:59 16.384 Perflib_Perfdata_198.dat
02.09.2007 04:41 16.384 Perflib_Perfdata_1d0.dat
01.09.2007 19:53 16.384 Perflib_Perfdata_178.dat
27.08.2007 10:00 16.384 Perflib_Perfdata_d0.dat
19.08.2007 10:13 16.384 Perflib_Perfdata_190.dat
02.08.2007 16:46 16.384 Perflib_Perfdata_2b4.dat
30.07.2007 15:27 16.384 Perflib_Perfdata_270.dat
27.07.2007 13:51 16.384 Perflib_Perfdata_274.dat
26.07.2007 13:57 16.384 Perflib_Perfdata_294.dat
21.07.2007 11:42 16.384 Perflib_Perfdata_25c.dat
13.07.2007 08:59 16.384 Perflib_Perfdata_238.dat
11.07.2007 21:00 16.384 Perflib_Perfdata_168.dat
11.07.2007 17:51 5.012 ASPNETSetup_00002.log
06.07.2007 12:29 16.384 Perflib_Perfdata_320.dat
05.07.2007 14:20 16.384 Perflib_Perfdata_150.dat
04.07.2007 11:09 16.384 Perflib_Perfdata_214.dat
03.07.2007 12:03 16.384 Perflib_Perfdata_224.dat
24.06.2007 09:33 16.384 Perflib_Perfdata_2e8.dat
22.06.2007 18:53 16.384 Perflib_Perfdata_26c.dat
21.06.2007 19:52 16.384 Perflib_Perfdata_260.dat
21.06.2007 07:32 16.384 Perflib_Perfdata_288.dat
11.06.2007 18:57 16.384 Perflib_Perfdata_1fc.dat
09.06.2007 16:00 16.384 Perflib_Perfdata_250.dat
07.06.2007 17:31 16.384 Perflib_Perfdata_284.dat
04.06.2007 18:26 16.384 Perflib_Perfdata_254.dat
01.06.2007 18:17 16.384 Perflib_Perfdata_24c.dat
30.05.2007 06:10 16.384 Perflib_Perfdata_210.dat
22.05.2007 18:25 16.384 Perflib_Perfdata_218.dat
13.05.2007 15:05 5.012 ASPNETSetup_00001.log
13.05.2007 15:03 5.012 ASPNETSetup_00000.log
11.05.2007 23:49 16.384 Perflib_Perfdata_1e4.dat
11.05.2007 13:59 16.384 Perflib_Perfdata_1e0.dat
10.05.2007 19:24 16.384 Perflib_Perfdata_1b0.dat
05.05.2007 16:00 16.384 Perflib_Perfdata_248.dat
04.05.2007 20:02 16.384 Perflib_Perfdata_208.dat
28.04.2007 04:23 16.384 Perflib_Perfdata_240.dat
26.04.2007 07:28 16.384 Perflib_Perfdata_1d8.dat
24.04.2007 19:42 16.384 Perflib_Perfdata_1d4.dat
23.04.2007 07:15 16.384 Perflib_Perfdata_840.dat
21.04.2007 09:18 16.384 Perflib_Perfdata_820.dat
20.04.2007 19:27 16.384 Perflib_Perfdata_7e0.dat
19.04.2007 07:10 16.384 Perflib_Perfdata_7fc.dat
17.04.2007 17:32 16.384 Perflib_Perfdata_828.dat
16.04.2007 08:04 16.384 Perflib_Perfdata_804.dat
13.04.2007 19:14 16.384 Perflib_Perfdata_810.dat
12.04.2007 22:02 16.384 Perflib_Perfdata_864.dat
11.04.2007 07:16 16.384 Perflib_Perfdata_7e8.dat
10.04.2007 19:19 16.384 Perflib_Perfdata_a58.dat
10.04.2007 09:32 16.384 Perflib_Perfdata_7cc.dat
09.04.2007 13:35 16.384 Perflib_Perfdata_2d0.dat
07.04.2007 13:32 16.384 Perflib_Perfdata_8c8.dat
06.04.2007 17:29 16.384 Perflib_Perfdata_360.dat
04.04.2007 15:07 16.384 Perflib_Perfdata_688.dat
03.04.2007 19:30 16.384 Perflib_Perfdata_8c4.dat
03.04.2007 09:51 16.384 Perflib_Perfdata_5dc.dat
02.04.2007 21:37 16.384 Perflib_Perfdata_83c.dat
30.03.2007 16:20 16.384 Perflib_Perfdata_6bc.dat
30.03.2007 09:43 16.384 Perflib_Perfdata_8a8.dat
28.03.2007 09:11 16.384 Perflib_Perfdata_84c.dat
26.03.2007 17:42 16.384 Perflib_Perfdata_898.dat
26.03.2007 07:07 16.384 Perflib_Perfdata_39c.dat
23.03.2007 15:10 16.384 Perflib_Perfdata_814.dat
23.03.2007 09:35 16.384 Perflib_Perfdata_850.dat
23.03.2007 03:41 16.384 Perflib_Perfdata_a74.dat
22.03.2007 05:53 16.384 Perflib_Perfdata_860.dat
19.03.2007 11:14 16.384 Perflib_Perfdata_848.dat
15.03.2007 08:45 16.384 Perflib_Perfdata_844.dat
14.03.2007 21:19 16.384 Perflib_Perfdata_858.dat
13.03.2007 07:03 16.384 Perflib_Perfdata_a0.dat
12.03.2007 19:08 16.384 Perflib_Perfdata_114.dat
12.03.2007 15:13 16.384 Perflib_Perfdata_7dc.dat
12.03.2007 09:52 16.384 Perflib_Perfdata_89c.dat
12.03.2007 07:03 16.384 Perflib_Perfdata_854.dat
10.03.2007 22:55 16.384 Perflib_Perfdata_a8.dat
07.03.2007 23:38 16.384 Perflib_Perfdata_7d4.dat
06.03.2007 16:38 16.384 Perflib_Perfdata_f4.dat
06.03.2007 07:05 16.384 Perflib_Perfdata_87c.dat
04.03.2007 08:15 16.384 Perflib_Perfdata_824.dat
02.03.2007 07:15 16.384 Perflib_Perfdata_704.dat
01.03.2007 11:22 16.384 Perflib_Perfdata_834.dat
28.02.2007 19:07 16.384 Perflib_Perfdata_124.dat
27.02.2007 14:13 16.384 Perflib_Perfdata_738.dat
26.02.2007 18:00 16.384 Perflib_Perfdata_808.dat
25.02.2007 20:02 30.897 LgDSetup.txt
25.02.2007 20:01 163.356 InstAEC.log
25.02.2007 20:01 150.152 InstMV.log
25.02.2007 20:01 212.348 LVEnum.log
25.02.2007 20:00 86 qcdrvsetup.log
25.02.2007 00:25 16.384 Perflib_Perfdata_71c.dat
24.02.2007 09:17 16.384 Perflib_Perfdata_494.dat
23.02.2007 19:21 16.384 Perflib_Perfdata_460.dat
23.02.2007 14:52 16.384 Perflib_Perfdata_5a4.dat
23.02.2007 11:01 16.384 Perflib_Perfdata_3e8.dat
23.02.2007 07:08 16.384 Perflib_Perfdata_340.dat
22.02.2007 22:32 16.384 Perflib_Perfdata_348.dat
22.02.2007 15:22 16.384 Perflib_Perfdata_4d0.dat
21.02.2007 19:05 16.384 Perflib_Perfdata_4a0.dat
21.02.2007 12:02 16.384 Perflib_Perfdata_374.dat
21.02.2007 08:50 16.384 Perflib_Perfdata_5a8.dat
20.02.2007 23:04 16.384 Perflib_Perfdata_3cc.dat
19.02.2007 10:11 16.384 Perflib_Perfdata_58c.dat
19.02.2007 07:16 16.384 Perflib_Perfdata_508.dat
17.02.2007 10:21 16.384 Perflib_Perfdata_350.dat
16.02.2007 15:23 16.384 Perflib_Perfdata_3a4.dat
14.02.2007 12:44 16.384 Perflib_Perfdata_4cc.dat
14.02.2007 11:26 16.384 Perflib_Perfdata_188.dat
14.02.2007 07:11 16.384 Perflib_Perfdata_694.dat
09.02.2007 15:40 16.384 Perflib_Perfdata_518.dat
09.02.2007 10:22 16.384 Perflib_Perfdata_740.dat
08.02.2007 22:38 16.384 Perflib_Perfdata_2fc.dat
08.02.2007 07:05 16.384 Perflib_Perfdata_5d4.dat
07.02.2007 22:48 16.384 Perflib_Perfdata_40c.dat
07.02.2007 15:46 16.384 Perflib_Perfdata_3e0.dat
06.02.2007 12:41 16.384 Perflib_Perfdata_4c8.dat
05.02.2007 09:32 16.384 Perflib_Perfdata_490.dat
03.02.2007 15:34 16.384 Perflib_Perfdata_5c0.dat
31.01.2007 18:37 16.384 Perflib_Perfdata_3fc.dat
30.01.2007 09:40 16.384 Perflib_Perfdata_3f8.dat
28.01.2007 20:27 16.384 Perflib_Perfdata_328.dat
26.01.2007 06:21 16.384 Perflib_Perfdata_36c.dat
25.01.2007 08:15 16.384 Perflib_Perfdata_364.dat
24.01.2007 19:07 16.384 Perflib_Perfdata_400.dat
23.01.2007 19:52 16.384 Perflib_Perfdata_298.dat
21.01.2007 08:25 16.384 Perflib_Perfdata_50c.dat
17.01.2007 13:05 16.384 Perflib_Perfdata_68c.dat
16.01.2007 21:38 16.384 Perflib_Perfdata_268.dat
15.01.2007 15:15 16.384 Perflib_Perfdata_308.dat
11.01.2007 20:45 16.384 Perflib_Perfdata_344.dat
10.01.2007 08:33 16.384 Perflib_Perfdata_2a4.dat
09.01.2007 09:48 16.384 Perflib_Perfdata_2e0.dat
08.01.2007 09:15 16.384 Perflib_Perfdata_29c.dat
28.12.2006 14:37 16.384 Perflib_Perfdata_2b0.dat
24.12.2006 00:13 16.384 Perflib_Perfdata_2ac.dat
23.12.2006 23:51 16.384 Perflib_Perfdata_5d0.dat
23.12.2006 14:47 16.384 Perflib_Perfdata_220.dat
23.12.2006 10:28 16.384 Perflib_Perfdata_21c.dat
21.12.2006 06:40 16.384 Perflib_Perfdata_5ac.dat
19.12.2006 19:53 16.384 Perflib_Perfdata_3a0.dat
17.12.2006 09:43 16.384 Perflib_Perfdata_324.dat
15.12.2006 18:51 16.384 Perflib_Perfdata_368.dat
14.12.2006 19:18 16.384 Perflib_Perfdata_388.dat
14.12.2006 08:23 16.384 Perflib_Perfdata_b4.dat
13.12.2006 07:40 16.384 Perflib_Perfdata_84.dat
12.12.2006 07:19 16.384 Perflib_Perfdata_664.dat
11.12.2006 19:41 16.384 Perflib_Perfdata_2a8.dat
07.12.2006 19:09 16.384 Perflib_Perfdata_310.dat
02.12.2006 19:28 16.384 Perflib_Perfdata_4d8.dat
28.11.2006 18:33 16.384 Perflib_Perfdata_584.dat
28.11.2006 12:34 16.384 Perflib_Perfdata_318.dat
26.11.2006 10:08 16.384 Perflib_Perfdata_49c.dat
26.11.2006 00:05 16.384 Perflib_Perfdata_660.dat
24.11.2006 20:43 16.384 Perflib_Perfdata_500.dat
24.11.2006 19:49 16.384 Perflib_Perfdata_2ec.dat
24.11.2006 07:16 16.384 Perflib_Perfdata_1f4.dat
23.11.2006 19:12 16.384 Perflib_Perfdata_2a0.dat
22.11.2006 20:21 16.384 Perflib_Perfdata_3a8.dat
20.11.2006 09:13 16.384 Perflib_Perfdata_690.dat
19.11.2006 18:46 16.384 Perflib_Perfdata_1e8.dat
19.11.2006 10:16 16.384 Perflib_Perfdata_57c.dat
18.11.2006 19:04 16.384 Perflib_Perfdata_1f8.dat
17.11.2006 21:46 16.384 Perflib_Perfdata_354.dat
11.11.2006 16:09 16.384 Perflib_Perfdata_2c8.dat
07.11.2006 18:49 16.384 Perflib_Perfdata_5e8.dat
03.11.2006 23:34 16.384 Perflib_Perfdata_19c.dat
02.11.2006 23:12 16.384 Perflib_Perfdata_6a0.dat
02.11.2006 10:42 16.384 Perflib_Perfdata_1b4.dat
31.10.2006 10:40 16.384 Perflib_Perfdata_1f0.dat
30.10.2006 10:55 16.384 Perflib_Perfdata_204.dat
28.10.2006 15:26 16.384 Perflib_Perfdata_414.dat
28.10.2006 10:48 16.384 Perflib_Perfdata_e0.dat
27.10.2006 21:24 16.384 Perflib_Perfdata_234.dat
26.10.2006 21:24 16.384 Perflib_Perfdata_798.dat
25.10.2006 16:58 16.384 Perflib_Perfdata_79c.dat
23.10.2006 19:15 16.384 Perflib_Perfdata_654.dat
22.10.2006 20:36 16.384 Perflib_Perfdata_ac.dat
22.10.2006 19:51 16.384 Perflib_Perfdata_6f8.dat
18.10.2006 20:26 16.384 Perflib_Perfdata_69c.dat
17.10.2006 09:04 16.384 Perflib_Perfdata_5cc.dat
15.10.2006 10:26 16.384 Perflib_Perfdata_770.dat
12.10.2006 18:20 16.384 Perflib_Perfdata_5e4.dat
11.10.2006 19:12 16.384 Perflib_Perfdata_5a0.dat
10.10.2006 18:35 16.384 Perflib_Perfdata_67c.dat
08.10.2006 10:46 16.384 Perflib_Perfdata_650.dat
07.10.2006 11:51 16.384 Perflib_Perfdata_484.dat
05.10.2006 18:26 16.384 Perflib_Perfdata_6b0.dat
03.10.2006 18:30 16.384 Perflib_Perfdata_568.dat
02.10.2006 22:29 16.384 Perflib_Perfdata_66c.dat
01.10.2006 09:58 16.384 Perflib_Perfdata_7f8.dat
30.09.2006 09:18 16.384 Perflib_Perfdata_538.dat
29.09.2006 16:13 16.384 Perflib_Perfdata_338.dat
26.09.2006 18:40 16.384 Perflib_Perfdata_65c.dat
25.09.2006 18:24 16.384 Perflib_Perfdata_34c.dat
24.09.2006 17:05 16.384 Perflib_Perfdata_5e0.dat
19.09.2006 23:11 16.384 Perflib_Perfdata_424.dat
18.09.2006 21:30 16.384 Perflib_Perfdata_598.dat
17.09.2006 12:01 16.384 Perflib_Perfdata_6ac.dat
15.09.2006 19:00 16.384 Perflib_Perfdata_94.dat
13.09.2006 17:24 16.384 Perflib_Perfdata_b8.dat
11.09.2006 17:17 16.384 Perflib_Perfdata_4bc.dat
06.09.2006 15:25 16.384 Perflib_Perfdata_440.dat
07.08.2006 11:49 16.384 Perflib_Perfdata_4c4.dat
05.08.2006 16:38 16.384 Perflib_Perfdata_4dc.dat
31.07.2006 11:48 16.384 Perflib_Perfdata_450.dat
30.07.2006 23:45 16.384 Perflib_Perfdata_434.dat
24.07.2006 13:52 16.384 Perflib_Perfdata_32c.dat
19.07.2006 22:01 16.384 Perflib_Perfdata_44c.dat
19.07.2006 12:58 16.384 Perflib_Perfdata_468.dat
18.07.2006 21:15 16.384 Perflib_Perfdata_104.dat
12.07.2006 15:06 16.384 Perflib_Perfdata_438.dat
12.07.2006 10:53 16.384 Perflib_Perfdata_4d4.dat
11.07.2006 21:07 16.384 Perflib_Perfdata_428.dat
11.07.2006 13:23 16.384 Perflib_Perfdata_2c4.dat
09.07.2006 20:44 16.384 Perflib_Perfdata_100.dat
08.07.2006 20:21 16.384 Perflib_Perfdata_444.dat
07.07.2006 12:50 16.384 Perflib_Perfdata_430.dat
05.07.2006 23:39 16.384 Perflib_Perfdata_5d8.dat
02.07.2006 17:12 16.384 Perflib_Perfdata_cc.dat
27.06.2006 21:47 16.384 Perflib_Perfdata_43c.dat
25.06.2006 21:39 16.384 Perflib_Perfdata_1a4.dat
21.06.2006 09:22 16.384 Perflib_Perfdata_138.dat
20.06.2006 11:20 16.384 Perflib_Perfdata_1bc.dat
18.06.2006 16:49 16.384 Perflib_Perfdata_488.dat
16.06.2006 12:09 16.384 Perflib_Perfdata_7bc.dat
15.06.2006 08:09 16.384 Perflib_Perfdata_7ec.dat
13.06.2006 09:22 16.384 Perflib_Perfdata_3b8.dat
08.06.2006 21:19 16.384 Perflib_Perfdata_14c.dat
06.06.2006 08:50 16.384 Perflib_Perfdata_7c0.dat
03.06.2006 00:29 16.384 Perflib_Perfdata_330.dat
01.06.2006 09:09 16.384 Perflib_Perfdata_77c.dat
30.05.2006 09:29 16.384 Perflib_Perfdata_7f4.dat
26.05.2006 12:31 16.384 Perflib_Perfdata_7c8.dat
26.05.2006 09:41 16.384 Perflib_Perfdata_118.dat
24.05.2006 09:32 16.384 Perflib_Perfdata_61c.dat
21.05.2006 11:32 16.384 Perflib_Perfdata_3b4.dat
19.05.2006 22:10 16.384 Perflib_Perfdata_1a0.dat
19.05.2006 11:03 16.384 Perflib_Perfdata_33c.dat
17.05.2006 13:00 16.384 Perflib_Perfdata_788.dat
15.05.2006 21:32 16.384 Perflib_Perfdata_3ec.dat
10.05.2006 18:01 16.384 Perflib_Perfdata_27c.dat
03.05.2006 20:55 16.384 Perflib_Perfdata_2b8.dat
01.05.2006 19:22 16.384 Perflib_Perfdata_304.dat
25.04.2006 22:42 602 CamServr.log
25.04.2006 22:41 15.027 CamWizrd.log
25.04.2006 22:41 16.384 Perflib_Perfdata_90.dat
25.04.2006 22:39 444 InstVid.log
25.04.2006 22:39 359 Instmed.log
24.04.2006 18:21 16.384 Perflib_Perfdata_15c.dat
22.04.2006 22:16 16.384 Perflib_Perfdata_7c4.dat
22.04.2006 12:12 16.384 Perflib_Perfdata_164.dat
22.04.2006 11:29 16.384 Perflib_Perfdata_110.dat
21.04.2006 17:05 16.384 Perflib_Perfdata_4e4.dat
20.04.2006 17:38 16.384 Perflib_Perfdata_514.dat
16.04.2006 14:17 32.723 SQLanguage.ini
12.04.2006 19:37 118 0CF6E057.TMP
15.03.2006 11:42 0 T30DebugLogFile.txt
04.08.2004 08:08 36.224 OLD2.tmp
09.04.2004 01:55 8.227 ICH6CORE.CAT
05.04.2004 15:19 4.824 ICH6CORE.INF
06.12.2003 01:04 7.383 ICH4IDE.CAT
14.11.2003 13:35 3.780 ICH4IDE.INF
30.08.2003 00:07 7.769 ICH4USB.CAT
30.08.2003 00:07 7.761 852.CAT
28.08.2003 19:39 3.760 ICH4USB.INF
25.08.2003 10:43 3.954 852.INF
13.03.2002 10:38 7.657 ICH4CORE.CAT
10.01.2002 16:25 4.155 ICH4CORE.INF
275 Datei(en) 4.764.154 Bytes
0 Verzeichnis(se), 1.101.217.792 Bytes frei

crossgod · 23.09.2007, 16:05

----- Temp -----------------------------
Datentr„ger in Laufwerk C: ist ACER
Volumeseriennummer: 2629-16F0

Verzeichnis von C:\DOKUME~1\RICHAR~1\LOKALE~1\Temp

23.09.2007 16:52 150.413 filelist.txt
23.09.2007 14:58 206.594 jusched.log
23.09.2007 14:54 35.268 LVCOMSX.LOG
23.09.2007 14:53 766 callingapps.xml
22.09.2007 22:37 3.496 42f8_appcompat.txt
21.09.2007 15:17 94.177 java_install_reg.log
21.09.2007 09:17 0 qvh9.tmp
21.09.2007 09:16 0 zzz1.tmp
20.09.2007 20:55 20.409 sop_ad.jpg
20.09.2007 11:43 0 isy7C.tmp
20.09.2007 11:42 0 1s27B.tmp
20.09.2007 11:42 0 l607A.tmp
20.09.2007 11:42 0 dkr77.tmp
20.09.2007 11:26 0 fla64.tmp
20.09.2007 10:56 0 8el3.tmp
20.09.2007 07:56 0 at61.tmp
19.09.2007 13:18 0 eov7.tmp
19.09.2007 06:50 0 h972.tmp
18.09.2007 22:09 0 flaF2.tmp
18.09.2007 19:16 0 fla59.tmp
18.09.2007 19:16 0 fla52.tmp
18.09.2007 13:26 0 fla17B.tmp
18.09.2007 12:04 0 flaF1.tmp
18.09.2007 09:02 0 t822F.tmp
18.09.2007 09:01 0 0d328.tmp
18.09.2007 08:59 0 q4g24.tmp
18.09.2007 08:53 0 7xy2.tmp
17.09.2007 18:19 0 u6f39.tmp
17.09.2007 15:10 0 zfpB0.tmp
17.09.2007 14:22 0 h5y8F.tmp
17.09.2007 14:03 0 1an8D.tmp
17.09.2007 14:01 0 x0q8B.tmp
17.09.2007 14:00 0 xy08A.tmp
17.09.2007 07:28 49.050 e363_appcompat.txt
17.09.2007 07:28 3.496 d084_appcompat.txt
17.09.2007 06:59 0 bfy2.tmp
15.09.2007 21:01 3.496 cf85_appcompat.txt
15.09.2007 16:33 0 hvg5C.tmp
15.09.2007 16:32 0 4et59.tmp
15.09.2007 15:31 0 lad9.tmp
15.09.2007 15:30 0 wfv5.tmp
15.09.2007 15:30 0 k0y2.tmp
15.09.2007 11:15 0 yp3169.tmp
15.09.2007 11:08 0 yfo141.tmp
15.09.2007 10:47 0 vn8F3.tmp
15.09.2007 10:44 0 e3fE7.tmp
15.09.2007 10:22 0 mb1CD.tmp
14.09.2007 14:31 0 vf01B2.tmp
14.09.2007 13:28 0 fla151.tmp
14.09.2007 13:28 0 fla13E.tmp
14.09.2007 12:43 0 ij94.tmp
14.09.2007 08:25 0 jws1.tmp
13.09.2007 17:41 0 zov4.tmp
13.09.2007 11:38 0 8dfA3.tmp
13.09.2007 10:55 0 qbu35.tmp
13.09.2007 07:53 0 ko42.tmp
12.09.2007 17:24 0 xz48A.tmp
12.09.2007 07:19 0 fla34.tmp
12.09.2007 07:17 0 fla2E.tmp
12.09.2007 07:08 0 ija3.tmp
11.09.2007 23:38 3.496 189d_appcompat.txt
11.09.2007 17:51 0 jce1F6.tmp
11.09.2007 17:44 0 yyr1CF.tmp
11.09.2007 09:08 0 p4fC.tmp
10.09.2007 19:11 0 w7x4C.tmp
10.09.2007 18:49 0 65pE.tmp
10.09.2007 16:30 314 MPC5.tmp
10.09.2007 16:30 3.496 df9e_appcompat.txt
10.09.2007 12:57 0 0d7C4.tmp
10.09.2007 07:00 0 dkz24.tmp
09.09.2007 23:10 0 fla1F2.tmp
09.09.2007 23:09 0 fla1E3.tmp
09.09.2007 23:09 0 fla1D7.tmp
09.09.2007 15:17 0 s2s105.tmp
09.09.2007 15:17 0 fcq104.tmp
09.09.2007 15:15 0 9xhFA.tmp
07.09.2007 20:43 43 spacer.gif
07.09.2007 19:03 0 gtb5.tmp
07.09.2007 13:43 16.384 ~DF86D1.tmp
07.09.2007 13:43 16.384 ~DF816B.tmp
06.09.2007 13:30 3.496 c8c1_appcompat.txt
06.09.2007 12:22 0 5df29.tmp
06.09.2007 10:32 0 45i2.tmp
06.09.2007 07:35 3.496 5c09_appcompat.txt
06.09.2007 07:16 0 hw26.tmp
05.09.2007 15:07 13.876 dd_netfx20UI4EBC.txt
05.09.2007 15:06 0 muz12.tmp
05.09.2007 07:29 0 hb28C.tmp
05.09.2007 06:57 0 p896.tmp
05.09.2007 06:56 0 mid1.tmp
04.09.2007 18:53 0 o93D1.tmp
04.09.2007 13:36 0 23i42.tmp
04.09.2007 13:11 0 kog3.tmp
04.09.2007 13:07 0 wuz1.tmp
03.09.2007 19:45 0 iwuC.tmp
03.09.2007 17:04 426 IMT139.xml
03.09.2007 17:04 2.018 IMT138.xml
03.09.2007 16:59 2.018 IMT131.xml
03.09.2007 16:59 426 IMT132.xml
03.09.2007 07:52 0 wcc1.tmp
02.09.2007 22:59 0 9knA.tmp
02.09.2007 22:57 0 awb6.tmp
02.09.2007 19:59 0 k0p103.tmp
02.09.2007 19:51 0 o5oE8.tmp
02.09.2007 19:50 0 soyE7.tmp
02.09.2007 13:00 0 2fw37.tmp
01.09.2007 20:18 0 fla2D.tmp
01.09.2007 17:22 0 mnsE5.tmp
01.09.2007 15:39 0 6kr79.tmp
31.08.2007 22:01 0 wwx1F.tmp
31.08.2007 15:41 0 fla1F.tmp
31.08.2007 15:37 0 gxn11.tmp
30.08.2007 14:29 0 i369C.tmp
30.08.2007 14:16 0 0zw90.tmp
30.08.2007 14:08 0 7d78D.tmp
30.08.2007 13:54 191.225 IUJ_48573.tmp
30.08.2007 13:07 0 kih2E.tmp
28.08.2007 10:55 0 8hj4E.tmp
27.08.2007 00:27 16.384 ~DFE9E6.tmp
27.08.2007 00:27 16.384 ~DFF10D.tmp
27.08.2007 00:27 3.496 35b0_appcompat.txt
27.08.2007 00:27 3.496 2303_appcompat.txt
27.08.2007 00:24 0 fla1E2.tmp
27.08.2007 00:24 0 fla1DC.tmp
26.08.2007 22:50 128.624 07_H3___070516_USM_19_.pdf
26.08.2007 18:12 0 p9wE7.tmp
26.08.2007 18:11 0 6imE2.tmp
26.08.2007 17:15 0 o7fB9.tmp
26.08.2007 17:10 0 04uB2.tmp
26.08.2007 17:06 0 3vwAB.tmp
25.08.2007 15:48 0 j0gEC.tmp
25.08.2007 09:44 0 gbk45.tmp
25.08.2007 09:44 0 ygf44.tmp
25.08.2007 09:44 0 2pa43.tmp
25.08.2007 09:44 0 9l042.tmp
25.08.2007 09:44 0 fom41.tmp
25.08.2007 09:44 0 lxb40.tmp
25.08.2007 09:42 0 h653C.tmp
25.08.2007 09:42 0 02o3B.tmp
24.08.2007 21:17 0 yn228A.tmp
24.08.2007 21:13 0 y10282.tmp
24.08.2007 10:59 0 flaD1.tmp
24.08.2007 10:58 0 flaCE.tmp
24.08.2007 10:58 0 flaCC.tmp
23.08.2007 13:39 2.257 TWAIN.LOG
23.08.2007 13:39 156 Twunk001.MTX
23.08.2007 13:39 0 Twunk002.MTX
23.08.2007 13:39 2 Twain001.Mtx
22.08.2007 23:57 16.384 ~DF4E89.tmp
22.08.2007 23:57 16.384 ~DF56C6.tmp
22.08.2007 16:50 49.152 ~DF9531.tmp
21.08.2007 23:13 16.384 ~DF4A1D.tmp
21.08.2007 23:13 16.384 ~DF670E.tmp
21.08.2007 00:42 196.940 imageio34403.tmp
20.08.2007 14:32 8.359 imageio44014.tmp
20.08.2007 14:32 10.483 imageio44013.tmp
20.08.2007 14:32 10.011 imageio43997.tmp
20.08.2007 14:32 16.748 imageio43876.tmp
20.08.2007 14:32 14.013 imageio43950.tmp
20.08.2007 14:32 11.581 imageio43885.tmp
20.08.2007 14:32 16.649 imageio43849.tmp
20.08.2007 14:32 12.066 imageio43941.tmp
20.08.2007 14:32 10.667 imageio43978.tmp
20.08.2007 14:32 13.465 imageio43969.tmp
20.08.2007 14:32 10.965 imageio43913.tmp
20.08.2007 14:32 9.157 imageio44015.tmp
19.08.2007 11:44 16.384 ~DFFAAB.tmp
19.08.2007 11:44 16.384 ~DFCA77.tmp
08.08.2007 14:18 95.295 pmjcy8cn.jpg
07.03.2007 11:13 342.898 Bild043.jpg
27.01.2007 22:58 458.878 Bild002.jpg
27.01.2007 22:58 485.846 Bild001.jpg
27.01.2007 22:58 432.324 Bild000.jpg
21.12.2006 11:15 293.718 Bild044.jpg
14.11.2005 10:24 121.064 set5.tmp
22.10.2004 13:16 118.736 set1.tmp
22.10.2004 13:16 118.736 set2.tmp
22.10.2004 05:16 118.736 set24F.tmp
178 Datei(en) 4.069.853 Bytes
0 Verzeichnis(se), 1.101.725.696 Bytes frei

crossgod · 23.09.2007, 16:08

das mit den letzten 30 tagen hab ich jetzt erst gelesen

cosinus · 23.09.2007, 16:12

Zitat:

Zitat von crossgod

das mit den letzten 30 tagen hab ich jetzt erst gelesen

Ist jetzt nicht weiter schlimm - auf dem ersten Blick hab ich da keine auffälligen Dateien gesehen.
Ich mal mal auf die anderen Logfiles gespannt.

crossgod · 23.09.2007, 16:16

die sache ist jetzt nur, dass ich die programme (zb escan) nicht runterladen kann, da es 18 MB gross ist und ich dafür 5 std brauche... damn!

cosinus · 23.09.2007, 16:23

Dann lass escan erstmal weg - nimm erstmal nur silentrunners (das vbs-script ist nur ca. 400 KB groß) und Blacklight.

crossgod · 23.09.2007, 16:29

"Silent Runners.vbs", revision 52, http://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"

Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [MS]
"SpybotSD TeaTimer" = "C:\Programme\Spybot - Search & Destroy\TeaTimer.exe" ["Safer Networking Limited"]
"MSMSGS" = ""C:\Programme\Messenger\msmsgs.exe" /background" [MS]
"Skype" = ""C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized" ["Skype Technologies S.A."]
"T-Online_Software_5\WLAN-Access Finder" = "C:\Programme\T-Online\WLAN-Access Finder\ToWLaAcF.exe /StartMinimized" ["Marmiko IT-Solutions GmbH"]
"Free Uploader Oe Integration" = "C:\Programme\Free Download Manager\FUM\fumoei.exe" [null data]
"swg" = "C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" ["Google Inc."]
"EA Core" = "C:\Programme\Electronic Arts\EA Link\Core.exe -silent" [file not found]

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\ {++}
"wininet.dll" = "(empty string)" [file not found]

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"LaunchApp" = "Alaunch" ["Acer Inc."]
"SynTPLpr" = "C:\Programme\Synaptics\SynTP\SynTPLpr.exe" ["Synaptics, Inc."]
"SynTPEnh" = "C:\Programme\Synaptics\SynTP\SynTPEnh.exe" ["Synaptics, Inc."]
"IMJPMIG8.1" = ""C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32" [MS]
"MSPY2002" = "C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC" [null data]
"PHIME2002ASync" = "C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC" [MS]
"PHIME2002A" = "C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName" [MS]
"ATIPTA" = "C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe" ["ATI Technologies, Inc."]
"LManager" = "C:\Programme\Launch Manager\QtZgAcer.EXE" ["Dritek System Inc."]
"avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" ["ALWIL Software"]
"SunJavaUpdateSched" = ""C:\Programme\Java\jre1.6.0_02\bin\jusched.exe"" ["Sun Microsystems, Inc."]
"LogitechCommunicationsManager" = ""C:\Programme\Gemeinsame Dateien\LogiShrd\LComMgr\Communications_Helper.exe"" ["Logitech Inc."]
"LogitechQuickCamRibbon" = ""C:\Programme\Logitech\QuickCam10\QuickCam10.exe" /hide" ["Logitech Inc."]

HKLM\Software\Microsoft\Active Setup\Installed Components\
>{26923b43-4d38-484f-9b9e-de460746276c}\(Default) = "Internet Explorer"
\StubPath = "C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig" [MS]
{8b15971b-5355-4c82-8c07-7e181ea07608}\(Default) = "Fax"
\StubPath = "rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.UnInstall.PerUser" [MS]
{94de52c8-2d59-4f1b-883e-79663d2d9a8c}\(Default) = "Fax Provider"
\StubPath = "rundll32.exe C:\WINDOWS\System32\Setup\FxsOcm.dll,XP_UninstallProvider" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Adobe PDF Reader Link Helper"
\InProcServer32\(Default) = "C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided)
-> {HKLM...CLSID} = "SSVHelper Class"
\InProcServer32\(Default) = "C:\Programme\Java\jre1.6.0_02\bin\ssv.dll" ["Sun Microsystems, Inc."]
{AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Google Toolbar Helper"
\InProcServer32\(Default) = "c:\programme\google\googletoolbar2.dll" ["Google Germany GmbH"]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Google Toolbar Notifier BHO"
\InProcServer32\(Default) = "C:\Programme\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll" ["Google Inc."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "CPL-Erweiterung für Anzeigeverschiebung"
-> {HKLM...CLSID} = "CPL-Erweiterung für Anzeigeverschiebung"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Erweiterung für HyperTerminal-Icons"
-> {HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]
"{2F603045-309F-11CF-9774-0020AFD0CFF6}" = "Synaptics Control Panel"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Programme\Synaptics\SynTP\SynTPCpl.dll" ["Synaptics, Inc."]
"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Programme\WinRAR\rarext.dll" [null data]
"{32020A01-506E-484D-A2A8-BE3CF17601C3}" = "AlcoholShellEx"
-> {HKLM...CLSID} = "AlcoholShellEx"
\InProcServer32\(Default) = "C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll" ["Alcohol Soft Development Team"]
"{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" = "OpenOffice.org Column Handler"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{087B3AE3-E237-4467-B8DB-5A38AB959AC9}" = "OpenOffice.org Infotip Handler"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{63542C48-9552-494A-84F7-73AA6A7C99C1}" = "OpenOffice.org Property Sheet Handler"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{3B092F0C-7696-40E3-A80F-68D74DA84210}" = "OpenOffice.org Thumbnail Viewer"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}" = "PhoneBrowser"
-> {HKLM...CLSID} = "Nokia Phone Browser"
\InProcServer32\(Default) = "C:\Programme\Nokia\Nokia PC Suite 6\PhoneBrowser.dll" ["Nokia"]
"{C0C4375A-5B72-4efe-929D-3B848C3A1E91}" = "Message View"
-> {HKLM...CLSID} = "Message View"
\InProcServer32\(Default) = "C:\Programme\Nokia\Nokia PC Suite 6\MessageView.dll" ["Nokia"]
"{472083B0-C522-11CF-8763-00608CC02F24}" = "avast"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Programme\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
"{73B24247-042E-4EF5-ADC2-42F62E6FD654}" = "ICQ Lite Shell Extension"
-> {HKLM...CLSID} = "MCLiteShellExt Class"
\InProcServer32\(Default) = "C:\Programme\ICQLite\ICQLiteShell.dll" [empty string]
"{01DEF77C-F716-45D3-8FFC-7AB832FB333D}" = "AVIInfoTip Object"
-> {HKLM...CLSID} = "AVIInfoTip Object"
\InProcServer32\(Default) = "C:\Programme\abcAVI\abcAVIIT.dll" ["Alexander A. Sorkin"]
"{F49C55B9-D417-45A1-A6E7-D6E057946280}" = "FdmUplShlExt"
-> {HKLM...CLSID} = "FdmUplShlExt Class"
\InProcServer32\(Default) = "C:\Programme\Free Download Manager\FUM\fumshext.dll" [null data]

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\
"WPDShServiceObj" = "{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
-> {HKLM...CLSID} = "WPDShServiceObj Class"
\InProcServer32\(Default) = "C:\WINDOWS\system32\WPDShServiceObj.dll" [MS]

HKLM\Software\Classes\Folder\shellex\ColumnHandlers\
{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info"
-> {HKLM...CLSID} = "PDF Shell Extension"
\InProcServer32\(Default) = "C:\Programme\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Programme\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}"
-> {HKLM...CLSID} = "MCLiteShellExt Class"
\InProcServer32\(Default) = "C:\Programme\ICQLite\ICQLiteShell.dll" [empty string]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Programme\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\
ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}"
-> {HKLM...CLSID} = "MCLiteShellExt Class"
\InProcServer32\(Default) = "C:\Programme\ICQLite\ICQLiteShell.dll" [empty string]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Programme\WinRAR\rarext.dll" [null data]

cosinus · 23.09.2007, 16:32

Das silentrunners-Log sieht nicht vollständig aus!

crossgod · 23.09.2007, 16:36

"Silent Runners.vbs", revision 52, Silent Runners - Adware? Disinfect, don't reformat!
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"

Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [MS]
"SpybotSD TeaTimer" = "C:\Programme\Spybot - Search & Destroy\TeaTimer.exe" ["Safer Networking Limited"]
"MSMSGS" = ""C:\Programme\Messenger\msmsgs.exe" /background" [MS]
"Skype" = ""C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized" ["Skype Technologies S.A."]
"T-Online_Software_5\WLAN-Access Finder" = "C:\Programme\T-Online\WLAN-Access Finder\ToWLaAcF.exe /StartMinimized" ["Marmiko IT-Solutions GmbH"]
"Free Uploader Oe Integration" = "C:\Programme\Free Download Manager\FUM\fumoei.exe" [null data]
"swg" = "C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" ["Google Inc."]
"EA Core" = "C:\Programme\Electronic Arts\EA Link\Core.exe -silent" [file not found]

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\ {++}
"wininet.dll" = "(empty string)" [file not found]

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"LaunchApp" = "Alaunch" ["Acer Inc."]
"SynTPLpr" = "C:\Programme\Synaptics\SynTP\SynTPLpr.exe" ["Synaptics, Inc."]
"SynTPEnh" = "C:\Programme\Synaptics\SynTP\SynTPEnh.exe" ["Synaptics, Inc."]
"IMJPMIG8.1" = ""C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32" [MS]
"MSPY2002" = "C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC" [null data]
"PHIME2002ASync" = "C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC" [MS]
"PHIME2002A" = "C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName" [MS]
"ATIPTA" = "C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe" ["ATI Technologies, Inc."]
"LManager" = "C:\Programme\Launch Manager\QtZgAcer.EXE" ["Dritek System Inc."]
"avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" ["ALWIL Software"]
"SunJavaUpdateSched" = ""C:\Programme\Java\jre1.6.0_02\bin\jusched.exe"" ["Sun Microsystems, Inc."]
"LogitechCommunicationsManager" = ""C:\Programme\Gemeinsame Dateien\LogiShrd\LComMgr\Communications_Helper.exe"" ["Logitech Inc."]
"LogitechQuickCamRibbon" = ""C:\Programme\Logitech\QuickCam10\QuickCam10.exe" /hide" ["Logitech Inc."]

HKLM\Software\Microsoft\Active Setup\Installed Components\
>{26923b43-4d38-484f-9b9e-de460746276c}\(Default) = "Internet Explorer"
\StubPath = "C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig" [MS]
{8b15971b-5355-4c82-8c07-7e181ea07608}\(Default) = "Fax"
\StubPath = "rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.UnInstall.PerUser" [MS]
{94de52c8-2d59-4f1b-883e-79663d2d9a8c}\(Default) = "Fax Provider"
\StubPath = "rundll32.exe C:\WINDOWS\System32\Setup\FxsOcm.dll,XP_UninstallProvider" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Adobe PDF Reader Link Helper"
\InProcServer32\(Default) = "C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided)
-> {HKLM...CLSID} = "SSVHelper Class"
\InProcServer32\(Default) = "C:\Programme\Java\jre1.6.0_02\bin\ssv.dll" ["Sun Microsystems, Inc."]
{AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Google Toolbar Helper"
\InProcServer32\(Default) = "c:\programme\google\googletoolbar2.dll" ["Google Germany GmbH"]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Google Toolbar Notifier BHO"
\InProcServer32\(Default) = "C:\Programme\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll" ["Google Inc."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "CPL-Erweiterung für Anzeigeverschiebung"
-> {HKLM...CLSID} = "CPL-Erweiterung für Anzeigeverschiebung"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Erweiterung für HyperTerminal-Icons"
-> {HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]
"{2F603045-309F-11CF-9774-0020AFD0CFF6}" = "Synaptics Control Panel"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Programme\Synaptics\SynTP\SynTPCpl.dll" ["Synaptics, Inc."]
"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Programme\WinRAR\rarext.dll" [null data]
"{32020A01-506E-484D-A2A8-BE3CF17601C3}" = "AlcoholShellEx"
-> {HKLM...CLSID} = "AlcoholShellEx"
\InProcServer32\(Default) = "C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll" ["Alcohol Soft Development Team"]
"{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" = "OpenOffice.org Column Handler"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{087B3AE3-E237-4467-B8DB-5A38AB959AC9}" = "OpenOffice.org Infotip Handler"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{63542C48-9552-494A-84F7-73AA6A7C99C1}" = "OpenOffice.org Property Sheet Handler"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{3B092F0C-7696-40E3-A80F-68D74DA84210}" = "OpenOffice.org Thumbnail Viewer"
-> {HKCU...CLSID} = (no title provided)
\InProcServer32\(Default) = ""C:\Programme\OpenOffice.org 2.0\program\shlxthdl.dll"" ["Sun Microsystems, Inc."]
"{416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}" = "PhoneBrowser"
-> {HKLM...CLSID} = "Nokia Phone Browser"
\InProcServer32\(Default) = "C:\Programme\Nokia\Nokia PC Suite 6\PhoneBrowser.dll" ["Nokia"]
"{C0C4375A-5B72-4efe-929D-3B848C3A1E91}" = "Message View"
-> {HKLM...CLSID} = "Message View"
\InProcServer32\(Default) = "C:\Programme\Nokia\Nokia PC Suite 6\MessageView.dll" ["Nokia"]
"{472083B0-C522-11CF-8763-00608CC02F24}" = "avast"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Programme\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
"{73B24247-042E-4EF5-ADC2-42F62E6FD654}" = "ICQ Lite Shell Extension"
-> {HKLM...CLSID} = "MCLiteShellExt Class"
\InProcServer32\(Default) = "C:\Programme\ICQLite\ICQLiteShell.dll" [empty string]
"{01DEF77C-F716-45D3-8FFC-7AB832FB333D}" = "AVIInfoTip Object"
-> {HKLM...CLSID} = "AVIInfoTip Object"
\InProcServer32\(Default) = "C:\Programme\abcAVI\abcAVIIT.dll" ["Alexander A. Sorkin"]
"{F49C55B9-D417-45A1-A6E7-D6E057946280}" = "FdmUplShlExt"
-> {HKLM...CLSID} = "FdmUplShlExt Class"
\InProcServer32\(Default) = "C:\Programme\Free Download Manager\FUM\fumshext.dll" [null data]

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\
"WPDShServiceObj" = "{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
-> {HKLM...CLSID} = "WPDShServiceObj Class"
\InProcServer32\(Default) = "C:\WINDOWS\system32\WPDShServiceObj.dll" [MS]

HKLM\Software\Classes\Folder\shellex\ColumnHandlers\
{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info"
-> {HKLM...CLSID} = "PDF Shell Extension"
\InProcServer32\(Default) = "C:\Programme\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Programme\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}"
-> {HKLM...CLSID} = "MCLiteShellExt Class"
\InProcServer32\(Default) = "C:\Programme\ICQLite\ICQLiteShell.dll" [empty string]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Programme\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\
ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}"
-> {HKLM...CLSID} = "MCLiteShellExt Class"
\InProcServer32\(Default) = "C:\Programme\ICQLite\ICQLiteShell.dll" [empty string]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Programme\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Programme\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Programme\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\
FdmUplShlExt\(Default) = "{F49C55B9-D417-45A1-A6E7-D6E057946280}"
-> {HKLM...CLSID} = "FdmUplShlExt Class"
\InProcServer32\(Default) = "C:\Programme\Free Download Manager\FUM\fumshext.dll" [null data]

Group Policies {policy setting}:
--------------------------------

Note: detected settings may not have any effect.

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

"NoMSAppLogo5ChannelNotify" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

"NoToolbarCustomize" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

"NoBandCustomize" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel\

"DisableRIED" = (REG_DWORD) hex:0x00000000
{Do not allow resetting Internet Explorer settings}

HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery\Restrictions\

"NoJITSetup" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

"NoUpdateCheck" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

"NoSplash" = (REG_DWORD) hex:0x00000000
{unrecognized setting}

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\

"shutdownwithoutlogon" = (REG_DWORD) hex:0x00000001
{Shutdown: Allow system to be shut down without having to log on}

"undockwithoutlogon" = (REG_DWORD) hex:0x00000001
{Devices: Allow undock without having to log on}

Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be disabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop enabled and wallpaper not set by Group Policy:
HKCU\Software\Microsoft\Internet Explorer\Desktop\General\
"Wallpaper" = "C:\WINDOWS\system32\config\systemprofile\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp"

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp"

Startup items in "***" & "All Users" startup folders:
-----------------------------------------------------------------

C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
"Adobe Reader Speed Launch" -> shortcut to: "C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe" ["Adobe Systems Incorporated"]

Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000004\LibraryPath = "%SystemRoot%\System32\nwprovau.dll" [MS]

Transport Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 04, 07 - 44
%SystemRoot%\system32\rsvpsp.dll [MS], 05 - 06

Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"
-> {HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\programme\google\googletoolbar2.dll" ["Google Germany GmbH"]

HKLM\Software\Microsoft\Internet Explorer\Toolbar\
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" = (no title provided)
-> {HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\programme\google\googletoolbar2.dll" ["Google Germany GmbH"]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\Software\Microsoft\Internet Explorer\Extensions\
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\
"MenuText" = "Sun Java Konsole"
"CLSIDExtension" = "{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}"
-> {HKCU...CLSID} = "Java Plug-in 1.6.0_02"
\InProcServer32\(Default) = "C:\Programme\Java\jre1.6.0_02\bin\ssv.dll" ["Sun Microsystems, Inc."]
-> {HKLM...CLSID} = "Java Plug-in 1.6.0_02"
\InProcServer32\(Default) = "C:\Programme\Java\jre1.6.0_02\bin\npjpi160_02.dll" ["Sun Microsystems, Inc."]

{B863453A-26C3-4E1F-A54D-A2CD196348E9}\
"ButtonText" = "ICQ Lite"
"MenuText" = "ICQ Lite"
"Exec" = "C:\Programme\ICQLite\ICQLite.exe" ["ICQ Ltd."]

{E2E2DD38-D088-4134-82B7-F2BA38496583}\
"MenuText" = "@xpsp3res.dll,-20001"
"Exec" = "%windir%\Network Diagnostic\xpnetdiag.exe" [MS]

{FB5F1910-F110-11D2-BB9E-00C04F795683}\
"ButtonText" = "Messenger"
"MenuText" = "Windows Messenger"
"Exec" = "C:\Programme\Messenger\msmsgs.exe" [MS]

{FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1}\
"ButtonText" = "Upload"
"CLSIDExtension" = "{FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1}"
-> {HKLM...CLSID} = "FDMUploadBtnForIe Class"
\InProcServer32\(Default) = "C:\Programme\Free Download Manager\FUM\fumiebtn.dll" [null data]

Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

Ati HotKey Poller, Ati HotKey Poller, "C:\WINDOWS\System32\Ati2evxx.exe" ["ATI Technologies Inc."]
avast! Antivirus, avast! Antivirus, ""C:\Programme\Alwil Software\Avast4\ashServ.exe"" ["ALWIL Software"]
avast! iAVS4 Control Service, aswUpdSv, ""C:\Programme\Alwil Software\Avast4\aswUpdSv.exe"" ["ALWIL Software"]
avast! Mail Scanner, avast! Mail Scanner, ""C:\Programme\Alwil Software\Avast4\ashMaiSv.exe" /service" ["ALWIL Software"]
avast! Web Scanner, avast! Web Scanner, ""C:\Programme\Alwil Software\Avast4\ashWebSv.exe" /service" ["ALWIL Software"]
IPv6-Hilfsdienst, 6to4, "C:\WINDOWS\system32\svchost.exe -k netsvcs" {"C:\WINDOWS\System32\6to4svc.dll" [MS]}
Marmiko ZeroConfig Controller, MZCCntrl, "C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe" ["Marmiko IT-Solutions GmbH"]
Notebook Manager Service, anbmService, "C:\Acer\eManager\anbmServ.exe" ["OSA Technologies Inc."]
Process Monitor, LVPrcSrv, "c:\programme\gemeinsame dateien\logishrd\lvmvfm\LVPrcSrv.exe" ["Logitech Inc."]
SAP-Agent, NwSapAgent, "C:\WINDOWS\system32\svchost.exe -k netsvcs" {"C:\WINDOWS\System32\ipxsap.dll" [MS]}

---------- (launch time: 2007-09-23 17:34:53)
+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ To search all directories of local fixed drives for DESKTOP.INI
DLL launch points, use the -supp parameter or answer "No" at the
first message box and "Yes" at the second message box.
---------- (total run time: 27 seconds, including 6 seconds for message boxes)

cosinus · 23.09.2007, 16:40

Schädlinge sind da offensichtlich nicht zu sehen - wenn du nichts machts wenn du online bist, blinkt da ständig das DSL-Modem, also findet ne Datenübertragung statt?

Zitat:

"Free Uploader Oe Integration" = "C:\Programme\Free Download Manager\FUM\fumoei.exe" [null data]

Kennst du das Programm, das wird immer gestartet wenn Windows hochgefahren wird, evtl. ist das verantwortlich. Beende das mal wenn noch nicht geschehen und beobachte den Speed.

crossgod · 23.09.2007, 16:51

also das einzige lämpchen was immer blinkt ist "link" und das blinkt immer sehr regelmäßig . der rest der dioden leuchten permanent.

den "free upload manager" hab ich vorhin auch entdeckt und beendet und ihn nicht mehr mit windows starten lassen. den hab ich vorher aber noch nicht gesehen. hab mit der freedownload manager mal runtergeladen, hängt wahrscheinlich mit dem zusammen.

die rootkit-search mit blacklight war negativ.

cosinus · 23.09.2007, 16:55

Also wenn da keine LED mit DATA, oder LAN blinkt und die anderen nur leuchten, findet da keine Datenübertragung statt - Schädlinge sind bei dir auch nicht ersichtlich - mit hoher Wahrscheinlichkeit liegts am Provider oder an der Leitung. Endgültige Gewissheit hast du, wenn du mit Knoppix noch mal testest.

crossgod · 23.09.2007, 17:01

folgende LEDs hab ich aufm modem:

permantent leuchtend:

Power

DS

US

ONLINE

Tel1

blinkend: LINK

einzige was nicht leuchted ist Tel2 (hab ein telefondranhängen)

cosinus · 23.09.2007, 17:08

Welches DSL-Modem hast du denn? Genaue Modellbez. wär nicht schlecht...

23.09.2007, 16:23	#22
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Internet seit 3 Tagen unter Modemspeed, hier mein Logfile!! DANKE Dann lass escan erstmal weg - nimm erstmal nur silentrunners (das vbs-script ist nur ca. 400 KB groß) und Blacklight. __________________ Logfiles bitte immer in CODE-Tags posten

23.09.2007, 16:32	#24
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Internet seit 3 Tagen unter Modemspeed, hier mein Logfile!! DANKE Das silentrunners-Log sieht nicht vollständig aus! __________________ Logfiles bitte immer in CODE-Tags posten

23.09.2007, 17:08	#30
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Internet seit 3 Tagen unter Modemspeed, hier mein Logfile!! DANKE Welches DSL-Modem hast du denn? Genaue Modellbez. wär nicht schlecht... __________________ Logfiles bitte immer in CODE-Tags posten

Internet seit 3 Tagen unter Modemspeed, hier mein Logfile!! DANKE

Log-Analyse und Auswertung: Internet seit 3 Tagen unter Modemspeed, hier mein Logfile!! DANKE