Prozessor auslastung Hoch und langsamer Start

markusg · 30.07.2010, 10:51

erstelle und poste n neues otl log. otl.txt reicht diesmal

Tim0 · 30.07.2010, 13:07

Code:

ATTFilter

OTL logfile created on: 30.07.2010 14:04:26 - Run 1
OTL by OldTimer - Version 3.2.9.1     Folder = D:\Users\Computer\Desktop\Sicherheit
 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 61,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 19,53 Gb Total Space | 5,51 Gb Free Space | 28,20% Space Free | Partition Type: NTFS
Drive D: | 446,22 Gb Total Space | 283,52 Gb Free Space | 63,54% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: COMPUTER-PC
Current User Name: Computer
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Processes (SafeList) ==========
 
PRC - D:\Users\Computer\Desktop\Sicherheit\OTL.exe (OldTimer Tools)
PRC - D:\Program Files\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
PRC - D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - D:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
PRC - D:\ace_client240\League of Legends\air\LolClient.exe ()
PRC - D:\ace_client240\League of Legends\lol.launcher.exe (Solid State Networks)
PRC - D:\Program Files\ICQ6Toolbar\ICQ Service.exe ()
PRC - D:\Program Files\Nero\Update\NASvc.exe (Nero AG)
PRC - D:\Users\Computer\Desktop\DieUhr.exe (Kay Bruns)
PRC - D:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - D:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe (ASUSTeK Inc.)
PRC - D:\Windows\explorer.exe (Microsoft Corporation)
PRC - D:\Program Files\Rainlendar2\Rainlendar2.exe ()
PRC - D:\Windows\System32\ASDR.exe ()
PRC - D:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - D:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - D:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - D:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
 
 
========== Modules (SafeList) ==========
 
MOD - D:\Users\Computer\Desktop\Sicherheit\OTL.exe (OldTimer Tools)
MOD - D:\Windows\System32\sspicli.dll (Microsoft Corporation)
MOD - D:\Windows\System32\sechost.dll (Microsoft Corporation)
MOD - D:\Windows\System32\samcli.dll (Microsoft Corporation)
MOD - D:\Windows\System32\profapi.dll (Microsoft Corporation)
MOD - D:\Windows\System32\netutils.dll (Microsoft Corporation)
MOD - D:\Windows\System32\KernelBase.dll (Microsoft Corporation)
MOD - D:\Windows\System32\dwmapi.dll (Microsoft Corporation)
MOD - D:\Windows\System32\devobj.dll (Microsoft Corporation)
MOD - D:\Windows\System32\cryptbase.dll (Microsoft Corporation)
MOD - D:\Windows\System32\cfgmgr32.dll (Microsoft Corporation)
MOD - D:\Windows\System32\msscript.ocx (Microsoft Corporation)
MOD - D:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (Lavasoft Ad-Aware Service) -- D:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (FLEXnet Licensing Service) -- D:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (ICQ Service) -- D:\Program Files\ICQ6Toolbar\ICQ Service.exe ()
SRV - (NAUpdate) -- D:\Program Files\Nero\Update\NASvc.exe (Nero AG)
SRV - (Stereo Service) -- D:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (ASDR) -- D:\Windows\System32\ASDR.exe ()
SRV - (AntiVirService) -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (WwanSvc) -- D:\Windows\System32\wwansvc.dll (Microsoft Corporation)
SRV - (WbioSrvc) -- D:\Windows\System32\wbiosrvc.dll (Microsoft Corporation)
SRV - (Power) -- D:\Windows\System32\umpo.dll (Microsoft Corporation)
SRV - (Themes) -- D:\Windows\System32\themeservice.dll (Microsoft Corporation)
SRV - (sppuinotify) -- D:\Windows\System32\sppuinotify.dll (Microsoft Corporation)
SRV - (RpcEptMapper) -- D:\Windows\System32\RpcEpMap.dll (Microsoft Corporation)
SRV - (SensrSvc) -- D:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- D:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (PNRPsvc) -- D:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (p2pimsvc) -- D:\Windows\System32\pnrpsvc.dll (Microsoft Corporation)
SRV - (HomeGroupProvider) -- D:\Windows\System32\provsvc.dll (Microsoft Corporation)
SRV - (PNRPAutoReg) -- D:\Windows\System32\pnrpauto.dll (Microsoft Corporation)
SRV - (WinDefend) -- D:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (HomeGroupListener) -- D:\Windows\System32\ListSvc.dll (Microsoft Corporation)
SRV - (FontCache) -- D:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (Dhcp) -- D:\Windows\System32\dhcpcore.dll (Microsoft Corporation)
SRV - (defragsvc) -- D:\Windows\System32\defragsvc.dll (Microsoft Corporation)
SRV - (BDESVC) -- D:\Windows\System32\bdesvc.dll (Microsoft Corporation)
SRV - (AxInstSV) ActiveX-Installer (AxInstSV) -- D:\Windows\System32\AxInstSv.dll (Microsoft Corporation)
SRV - (AppIDSvc) -- D:\Windows\System32\appidsvc.dll (Microsoft Corporation)
SRV - (sppsvc) -- D:\Windows\System32\sppsvc.exe (Microsoft Corporation)
SRV - (AntiVirSchedulerService) -- D:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (Lbd) -- D:\Windows\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (EIO) -- D:\Windows\System32\drivers\EIO.sys (ASUSTeK Computer Inc.)
DRV - (atksgt) -- D:\Windows\System32\drivers\atksgt.sys ()
DRV - (lirsgt) -- D:\Windows\System32\drivers\lirsgt.sys ()
DRV - (nvlddmkm) -- D:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (ElbyCDIO) -- D:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (KSecPkg) -- D:\Windows\System32\Drivers\ksecpkg.sys (Microsoft Corporation)
DRV - (avgntflt) -- D:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (LMouFilt) -- D:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- D:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (cmdide) -- D:\Windows\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (adpahci) -- D:\Windows\system32\DRIVERS\adpahci.sys (Adaptec, Inc.)
DRV - (adp94xx) -- D:\Windows\system32\DRIVERS\adp94xx.sys (Adaptec, Inc.)
DRV - (amdsbs) -- D:\Windows\system32\DRIVERS\amdsbs.sys (AMD Technologies Inc.)
DRV - (adpu320) -- D:\Windows\system32\DRIVERS\adpu320.sys (Adaptec, Inc.)
DRV - (arcsas) -- D:\Windows\system32\DRIVERS\arcsas.sys (Adaptec, Inc.)
DRV - (amdsata) -- D:\Windows\system32\DRIVERS\amdsata.sys (Advanced Micro Devices)
DRV - (arc) -- D:\Windows\system32\DRIVERS\arc.sys (Adaptec, Inc.)
DRV - (amdxata) -- D:\Windows\system32\DRIVERS\amdxata.sys (Advanced Micro Devices)
DRV - (aliide) -- D:\Windows\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (nvstor) -- D:\Windows\system32\DRIVERS\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) -- D:\Windows\system32\DRIVERS\nvraid.sys (NVIDIA Corporation)
DRV - (nfrd960) -- D:\Windows\system32\DRIVERS\nfrd960.sys (IBM Corporation)
DRV - (LSI_SAS) -- D:\Windows\system32\DRIVERS\lsi_sas.sys (LSI Corporation)
DRV - (iaStorV) -- D:\Windows\system32\DRIVERS\iaStorV.sys (Intel Corporation)
DRV - (MegaSR) -- D:\Windows\system32\DRIVERS\MegaSR.sys (LSI Corporation, Inc.)
DRV - (LSI_SCSI) -- D:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI Corporation)
DRV - (LSI_FC) -- D:\Windows\system32\DRIVERS\lsi_fc.sys (LSI Corporation)
DRV - (LSI_SAS2) -- D:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI Corporation)
DRV - (iirsp) -- D:\Windows\system32\DRIVERS\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (megasas) -- D:\Windows\system32\DRIVERS\megasas.sys (LSI Corporation)
DRV - (hwpolicy) -- D:\Windows\System32\drivers\hwpolicy.sys (Microsoft Corporation)
DRV - (elxstor) -- D:\Windows\system32\DRIVERS\elxstor.sys (Emulex)
DRV - (aic78xx) -- D:\Windows\system32\DRIVERS\djsvs.sys (Adaptec, Inc.)
DRV - (HpSAMD) -- D:\Windows\system32\DRIVERS\HpSAMD.sys (Hewlett-Packard Company)
DRV - (FsDepends) -- D:\Windows\System32\drivers\fsdepends.sys (Microsoft Corporation)
DRV - (vsmraid) -- D:\Windows\system32\DRIVERS\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (vmbus) -- D:\Windows\system32\DRIVERS\vmbus.sys (Microsoft Corporation)
DRV - (vhdmp) -- D:\Windows\system32\DRIVERS\vhdmp.sys (Microsoft Corporation)
DRV - (storflt) -- D:\Windows\system32\DRIVERS\vmstorfl.sys (Microsoft Corporation)
DRV - (vdrvroot) -- D:\Windows\system32\DRIVERS\vdrvroot.sys (Microsoft Corporation)
DRV - (storvsc) -- D:\Windows\system32\DRIVERS\storvsc.sys (Microsoft Corporation)
DRV - (WIMMount) -- D:\Windows\System32\drivers\wimmount.sys (Microsoft Corporation)
DRV - (viaide) -- D:\Windows\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.)
DRV - (ql2300) -- D:\Windows\system32\DRIVERS\ql2300.sys (QLogic Corporation)
DRV - (rdyboost) -- D:\Windows\System32\drivers\rdyboost.sys (Microsoft Corporation)
DRV - (ql40xx) -- D:\Windows\system32\DRIVERS\ql40xx.sys (QLogic Corporation)
DRV - (SiSRaid4) -- D:\Windows\system32\DRIVERS\sisraid4.sys (Silicon Integrated Systems)
DRV - (pcw) -- D:\Windows\System32\drivers\pcw.sys (Microsoft Corporation)
DRV - (SiSRaid2) -- D:\Windows\system32\DRIVERS\SiSRaid2.sys (Silicon Integrated Systems Corp.)
DRV - (stexstor) -- D:\Windows\system32\DRIVERS\stexstor.sys (Promise Technology)
DRV - (CNG) -- D:\Windows\System32\Drivers\cng.sys (Microsoft Corporation)
DRV - (Brserid) Brother MFC-Seriellschnittstellentreiber (WDM) -- D:\Windows\System32\Drivers\Brserid.sys (Brother Industries Ltd.)
DRV - (rdpbus) -- D:\Windows\System32\drivers\rdpbus.sys (Microsoft Corporation)
DRV - (RDPREFMP) -- D:\Windows\System32\drivers\RDPREFMP.sys (Microsoft Corporation)
DRV - (RasAgileVpn) WAN Miniport (IKEv2) -- D:\Windows\System32\drivers\agilevpn.sys (Microsoft Corporation)
DRV - (WfpLwf) -- D:\Windows\System32\drivers\wfplwf.sys (Microsoft Corporation)
DRV - (NdisCap) -- D:\Windows\System32\drivers\ndiscap.sys (Microsoft Corporation)
DRV - (vwifibus) -- D:\Windows\System32\drivers\vwifibus.sys (Microsoft Corporation)
DRV - (1394ohci) -- D:\Windows\system32\DRIVERS\1394ohci.sys (Microsoft Corporation)
DRV - (UmPass) -- D:\Windows\system32\DRIVERS\umpass.sys (Microsoft Corporation)
DRV - (usbaudio) USB-Audiotreiber (WDM) -- D:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (mshidkmdf) -- D:\Windows\System32\drivers\mshidkmdf.sys (Microsoft Corporation)
DRV - (MTConfig) -- D:\Windows\system32\DRIVERS\MTConfig.sys (Microsoft Corporation)
DRV - (CompositeBus) -- D:\Windows\System32\drivers\CompositeBus.sys (Microsoft Corporation)
DRV - (AppID) -- D:\Windows\system32\drivers\appid.sys (Microsoft Corporation)
DRV - (scfilter) -- D:\Windows\System32\drivers\scfilter.sys (Microsoft Corporation)
DRV - (s3cap) -- D:\Windows\system32\DRIVERS\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- D:\Windows\system32\DRIVERS\VMBusHID.sys (Microsoft Corporation)
DRV - (discache) -- D:\Windows\System32\drivers\discache.sys (Microsoft Corporation)
DRV - (HidBatt) -- D:\Windows\system32\DRIVERS\HidBatt.sys (Microsoft Corporation)
DRV - (AcpiPmi) -- D:\Windows\system32\DRIVERS\acpipmi.sys (Microsoft Corporation)
DRV - (AmdPPM) -- D:\Windows\system32\DRIVERS\amdppm.sys (Microsoft Corporation)
DRV - (hcw85cir) -- D:\Windows\system32\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (BrUsbMdm) Brother MFC-nur-Fax-Modem (USB) -- D:\Windows\System32\Drivers\BrUsbMdm.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) Brother MFC-WDM-Treiber (USB,seriell) -- D:\Windows\System32\Drivers\BrUsbSer.sys (Brother Industries Ltd.)
DRV - (BrSerWdm) Brother WDM-Treiber (seriell) -- D:\Windows\System32\Drivers\BrSerWdm.sys (Brother Industries Ltd.)
DRV - (BrFiltLo) -- D:\Windows\system32\DRIVERS\BrFiltLo.sys (Brother Industries, Ltd.)
DRV - (BrFiltUp) -- D:\Windows\system32\DRIVERS\BrFiltUp.sys (Brother Industries, Ltd.)
DRV - (RTL8167) -- D:\Windows\System32\drivers\Rt86win7.sys (Realtek Corporation                                            )
DRV - (E1G60) Intel(R) -- D:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (b57nd60x) -- D:\Windows\System32\drivers\b57nd60x.sys (Broadcom Corporation)
DRV - (ebdrv) -- D:\Windows\system32\DRIVERS\evbdx.sys (Broadcom Corporation)
DRV - (b06bdrv) -- D:\Windows\system32\DRIVERS\bxvbdx.sys (Broadcom Corporation)
DRV - (ssmdrv) -- D:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (avipbb) -- D:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgio) -- D:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (adfs) -- D:\Windows\System32\drivers\adfs.sys (Adobe Systems, Inc.)
DRV - (LHidKe) -- D:\Windows\System32\drivers\LHidKE.Sys (Logitech, Inc.)
DRV - (LMouKE) -- D:\Windows\System32\drivers\LMOUKE.sys (Logitech, Inc.)
DRV - (iviVD) -- D:\Windows\system32\DRIVERS\iviVD.sys (InterVideo)
DRV - (Iviaspi) -- D:\Windows\System32\drivers\iviaspi.sys (InterVideo, Inc.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yahoo.com
IE - HKLM\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.3
FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.0
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.8.0.12304
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:2.0.0.4
FF - prefs.js..extensions.enabledItems: de-DE@dictionaries.addons.mozilla.org:2.0.1
FF - prefs.js..extensions.enabledItems: {37E4D8EA-8BDA-4831-8EA1-89053939A250}:3.0.0.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100503
FF - prefs.js..keyword.URL: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.4&q="
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2010.07.26 22:09:37 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2010.07.25 11:37:07 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.5\extensions\\Components: D:\Program Files\Mozilla Thunderbird\components [2010.06.20 18:20:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.5\extensions\\Plugins: D:\Program Files\Mozilla Thunderbird\plugins
 
[2010.04.15 15:56:27 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\mozilla\Extensions
[2010.04.15 15:56:27 | 000,000,000 | ---D | M] (No name found) -- D:\Users\Computer\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010.07.30 12:20:29 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions
[2010.07.12 16:46:49 | 000,000,000 | ---D | M] (PDF Download) -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}
[2010.06.12 13:48:55 | 000,000,000 | ---D | M] (No name found) -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.07.18 20:52:15 | 000,000,000 | ---D | M] (ReloadEvery) -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}
[2010.07.20 12:50:23 | 000,000,000 | ---D | M] (WOT) -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010.07.20 12:46:30 | 000,000,000 | ---D | M] (Adblock Plus) -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.06.23 11:08:46 | 000,000,000 | ---D | M] (No name found) -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2010.05.24 12:51:47 | 000,000,000 | ---D | M] (FoxTab) -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}
[2010.07.11 23:56:35 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\de-DE@dictionaries.addons.mozilla.org
[2010.07.20 12:50:23 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\staged-xpis
[2010.06.11 14:07:54 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\mozilla\Firefox\Profiles\70dndfqr.default\extensions\toolbar@ask.com
[2010.07.25 20:14:39 | 000,000,950 | ---- | M] () -- D:\Users\Computer\AppData\Roaming\Mozilla\FireFox\Profiles\70dndfqr.default\searchplugins\icqplugin-1.xml
[2010.07.12 14:04:06 | 000,000,950 | ---- | M] () -- D:\Users\Computer\AppData\Roaming\Mozilla\FireFox\Profiles\70dndfqr.default\searchplugins\icqplugin-2.xml
[2010.07.25 11:37:26 | 000,000,950 | ---- | M] () -- D:\Users\Computer\AppData\Roaming\Mozilla\FireFox\Profiles\70dndfqr.default\searchplugins\icqplugin-3.xml
[2010.06.12 13:48:55 | 000,000,168 | ---- | M] () -- D:\Users\Computer\AppData\Roaming\Mozilla\FireFox\Profiles\70dndfqr.default\searchplugins\icqplugin.gif
[2010.06.12 13:48:55 | 000,000,618 | ---- | M] () -- D:\Users\Computer\AppData\Roaming\Mozilla\FireFox\Profiles\70dndfqr.default\searchplugins\icqplugin.src
[2010.06.26 17:31:48 | 000,001,056 | ---- | M] () -- D:\Users\Computer\AppData\Roaming\Mozilla\FireFox\Profiles\70dndfqr.default\searchplugins\icqplugin.xml
[2010.07.12 14:04:04 | 000,000,000 | ---D | M] -- D:\Program Files\Mozilla Firefox\extensions
[2010.06.26 10:03:55 | 000,001,392 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.06.26 10:03:55 | 000,002,344 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.06.26 10:03:55 | 000,006,805 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.06.26 10:03:55 | 000,001,178 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.06.26 10:03:55 | 000,001,105 | ---- | M] () -- D:\Program Files\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2010.07.29 18:20:26 | 000,000,027 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O4 - HKLM..\Run: [avgnt] D:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKCU..\Run: [AdobeBridge]  File not found
O4 - HKCU..\Run: [ICQ] D:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [Rainlendar2] D:\Program Files\Rainlendar2\Rainlendar2.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - D:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.191.74.11 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O30 - LSA: Security Packages - (pku2u) - D:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.12.09 00:42:11 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (lsdelete) - D:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010.07.29 18:21:48 | 000,000,000 | -HSD | C] -- D:\$RECYCLE.BIN
[2010.07.29 18:21:47 | 000,000,000 | ---D | C] -- D:\Windows\temp
[2010.07.29 18:07:55 | 000,000,000 | ---D | C] -- D:\Windows\ERDNT
[2010.07.29 18:06:35 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Neuer Ordner (4)
[2010.07.29 12:44:50 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Neuer Ordner
[2010.07.25 19:55:39 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Fliege
[2010.07.22 20:18:18 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Neuer Ordner (3)
[2010.07.21 00:40:52 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Neuer Ordner (2)
[2010.07.16 13:31:15 | 000,000,000 | ---D | C] -- D:\Windows\pss
[2010.07.16 11:55:51 | 000,000,000 | ---D | C] -- D:\Users\Computer\AppData\Roaming\Malwarebytes
[2010.07.16 11:55:26 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Sicherheit
[2010.07.16 11:55:20 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- D:\Windows\System32\drivers\mbamswissarmy.sys
[2010.07.16 11:55:18 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- D:\Windows\System32\drivers\mbam.sys
[2010.07.16 11:55:18 | 000,000,000 | ---D | C] -- D:\Program Files\Malwarebytes' Anti-Malware
[2010.07.16 11:55:18 | 000,000,000 | ---D | C] -- D:\ProgramData\Malwarebytes
[2010.07.14 19:12:42 | 000,000,000 | ---D | C] -- D:\ace_client240
[2010.07.14 16:11:18 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Adobe AIR
[2010.07.14 16:01:02 | 000,000,000 | ---D | C] -- D:\Config.Msi
[2010.07.14 12:13:41 | 814,143,398 | ---- | C] (GOA                                                         ) -- D:\Users\Computer\Desktop\loleusetup.exe
[2010.07.14 12:13:31 | 000,000,000 | ---D | C] -- D:\Users\Computer\AppData\Local\PMB Files
[2010.07.14 12:13:30 | 000,000,000 | ---D | C] -- D:\ProgramData\PMB Files
[2010.07.14 12:13:22 | 000,000,000 | ---D | C] -- D:\Program Files\Pando Networks
[2010.07.13 16:20:30 | 000,000,000 | ---D | C] -- D:\Program Files\Trend Micro
[2010.07.13 13:22:44 | 000,000,000 | ---D | C] -- D:\Users\Computer\AppData\Roaming\dvdcss
[2010.07.12 21:59:01 | 000,064,288 | ---- | C] (Lavasoft AB) -- D:\Windows\System32\drivers\Lbd.sys
[2010.07.12 21:59:01 | 000,000,000 | ---D | C] -- D:\Windows\System32\DRVSTORE
[2010.07.12 21:58:58 | 000,095,024 | ---- | C] (Sunbelt Software) -- D:\Windows\System32\drivers\SBREDrv.sys
[2010.07.12 21:53:42 | 000,000,000 | ---D | C] -- D:\Users\Computer\AppData\Local\Sunbelt Software
[2010.07.12 21:52:57 | 000,000,000 | -H-D | C] -- D:\ProgramData\{65893B95-F47B-4483-B883-86BA181E9B54}
[2010.07.12 21:52:35 | 000,000,000 | ---D | C] -- D:\ProgramData\Lavasoft
[2010.07.12 21:52:35 | 000,000,000 | ---D | C] -- D:\Program Files\Lavasoft
[2010.07.12 16:48:59 | 000,000,000 | ---D | C] -- D:\Users\Computer\AppData\Roaming\Foxit Software
[2010.07.12 16:48:08 | 000,000,000 | ---D | C] -- D:\Program Files\Foxit Software
[2010.07.12 15:18:08 | 000,000,000 | ---D | C] -- D:\Windows\System32\appmgmt
[2010.07.12 14:03:34 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2010.07.09 23:57:18 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Java
[2010.07.09 23:56:58 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- D:\Windows\System32\deployJava1.dll
[2010.07.09 23:56:58 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- D:\Windows\System32\javaws.exe
[2010.07.09 23:56:58 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- D:\Windows\System32\javaw.exe
[2010.07.09 23:56:58 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- D:\Windows\System32\java.exe
[2010.07.07 17:19:03 | 000,000,000 | ---D | C] -- D:\Program Files\CCleaner
[2010.07.06 16:20:33 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Nah- & Makrofotographie
[2010.07.06 16:16:14 | 000,000,000 | ---D | C] -- D:\Users\Computer\Desktop\Makrofotographie
[2010.07.06 01:50:33 | 000,000,000 | ---D | C] -- D:\Program Files\MSXML 4.0
[1 D:\Windows\*.tmp files -> D:\Windows\*.tmp -> ]
[1 D:\*.tmp files -> D:\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2010.07.30 14:04:41 | 002,621,440 | -HS- | M] () -- D:\Users\Computer\NTUSER.DAT
[2010.07.30 13:36:00 | 000,001,100 | ---- | M] () -- D:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.07.30 09:33:55 | 000,014,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.07.30 09:33:55 | 000,014,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.07.30 09:28:49 | 000,001,096 | ---- | M] () -- D:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.07.30 09:28:39 | 000,000,006 | -H-- | M] () -- D:\Windows\tasks\SA.DAT
[2010.07.30 09:26:52 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2010.07.30 09:26:45 | 2817,384,448 | -HS- | M] () -- D:\hiberfil.sys
[2010.07.30 00:01:23 | 003,172,665 | -H-- | M] () -- D:\Users\Computer\AppData\Local\IconCache.db
[2010.07.29 18:20:34 | 000,000,215 | ---- | M] () -- D:\Windows\system.ini
[2010.07.29 18:20:26 | 000,000,027 | ---- | M] () -- D:\Windows\System32\drivers\etc\hosts
[2010.07.29 12:50:33 | 000,001,982 | ---- | M] () -- D:\Users\Computer\Desktop\Trillian.lnk
[2010.07.28 10:54:04 | 000,006,544 | ---- | M] () -- D:\Users\Computer\Documents\cc_20100728_105401.reg
[2010.07.28 10:05:53 | 000,743,431 | ---- | M] () -- D:\Users\Computer\Desktop\Updater.exe
[2010.07.27 10:04:46 | 001,472,002 | ---- | M] () -- D:\Windows\System32\PerfStringBackup.INI
[2010.07.27 10:04:46 | 000,643,628 | ---- | M] () -- D:\Windows\System32\perfh007.dat
[2010.07.27 10:04:46 | 000,606,992 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2010.07.27 10:04:46 | 000,126,188 | ---- | M] () -- D:\Windows\System32\perfc007.dat
[2010.07.27 10:04:46 | 000,103,370 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2010.07.23 20:42:59 | 000,841,578 | ---- | M] () -- D:\Users\Computer\Desktop\Unbenannt-11.jpg
[2010.07.22 21:01:42 | 072,726,788 | ---- | M] () -- D:\Users\Computer\Desktop\Unbenannt-11.psd
[2010.07.22 20:48:30 | 000,834,479 | ---- | M] () -- D:\Users\Computer\Desktop\Fliege 6.jpg
[2010.07.22 20:44:00 | 000,877,385 | ---- | M] () -- D:\Users\Computer\Desktop\Fliege 5.jpg
[2010.07.22 20:42:11 | 000,804,010 | ---- | M] () -- D:\Users\Computer\Desktop\Fliege 4.jpg
[2010.07.22 20:40:37 | 000,810,207 | ---- | M] () -- D:\Users\Computer\Desktop\Fliege.jpg
[2010.07.22 20:39:55 | 000,807,816 | ---- | M] () -- D:\Users\Computer\Desktop\Fliege 2.jpg
[2010.07.22 20:38:54 | 000,798,153 | ---- | M] () -- D:\Users\Computer\Desktop\Fliege 1.jpg
[2010.07.21 01:07:50 | 001,097,455 | ---- | M] () -- D:\Users\Computer\Desktop\Spinne 3.jpg
[2010.07.21 01:07:16 | 001,118,310 | ---- | M] () -- D:\Users\Computer\Desktop\Spinne 2.jpg
[2010.07.21 01:05:32 | 001,214,125 | ---- | M] () -- D:\Users\Computer\Desktop\Spinne.jpg
[2010.07.20 23:21:12 | 000,261,665 | ---- | M] () -- D:\Users\Computer\Desktop\Unbenannt.GIF
[2010.07.17 22:31:07 | 033,757,537 | ---- | M] () -- D:\Users\Computer\Desktop\Unbenannt-1.psd
[2010.07.17 22:04:54 | 001,027,170 | ---- | M] () -- D:\Users\Computer\Desktop\Hummel 5.jpg
[2010.07.17 21:59:09 | 000,940,000 | ---- | M] () -- D:\Users\Computer\Desktop\Hummel.jpg
[2010.07.17 21:42:27 | 001,545,294 | ---- | M] () -- D:\Users\Computer\Desktop\Hummel 2.jpg
[2010.07.17 20:25:40 | 001,134,125 | ---- | M] () -- D:\Users\Computer\Desktop\Schmetterling 1.jpg
[2010.07.15 12:47:54 | 000,007,604 | ---- | M] () -- D:\Users\Computer\AppData\Local\Resmon.ResmonCfg
[2010.07.14 19:58:25 | 000,001,769 | ---- | M] () -- D:\Users\Computer\Desktop\Start League of Legends.lnk
[2010.07.14 18:33:36 | 805,725,537 | ---- | M] () -- D:\Users\Computer\Desktop\ace_client240.rar
[2010.07.14 12:32:59 | 000,001,900 | ---- | M] () -- D:\Users\Public\Desktop\League of Legends.lnk
[2010.07.14 12:28:08 | 814,143,398 | ---- | M] (GOA                                                         ) -- D:\Users\Computer\Desktop\loleusetup.exe
[2010.07.14 12:13:15 | 002,185,360 | ---- | M] () -- D:\Users\Computer\Desktop\LeagueofLegendsEUDownloader.exe
[2010.07.13 16:44:51 | 000,018,901 | ---- | M] () -- D:\Users\Computer\Desktop\Unbenannt1.JPG
[2010.07.13 13:24:22 | 003,592,192 | ---- | M] () -- D:\Users\Computer\Documents\vlc-1.1.0-win32.exe
[2010.07.12 22:07:17 | 000,329,147 | ---- | M] () -- D:\Users\Computer\Desktop\fliege_2_671.jpg
[2010.07.12 22:07:05 | 000,377,457 | ---- | M] () -- D:\Users\Computer\Desktop\Marinkäferlarve (Überarbeitet 2).jpg
[2010.07.12 21:58:58 | 000,095,024 | ---- | M] (Sunbelt Software) -- D:\Windows\System32\drivers\SBREDrv.sys
[2010.07.12 12:02:38 | 000,020,483 | ---- | M] () -- D:\Users\Computer\Desktop\Unbenannt.JPG
[2010.07.07 15:30:34 | 000,001,024 | ---- | M] () -- D:\Users\Public\Desktop\Picasa 3.lnk
[2010.07.06 19:28:45 | 000,064,288 | ---- | M] (Lavasoft AB) -- D:\Windows\System32\drivers\Lbd.sys
[2010.07.06 19:28:44 | 000,015,880 | ---- | M] () -- D:\Windows\System32\lsdelete.exe
[1 D:\Windows\*.tmp files -> D:\Windows\*.tmp -> ]
[1 D:\*.tmp files -> D:\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2010.07.29 18:08:01 | 000,256,512 | ---- | C] () -- D:\Windows\PEV.exe
[2010.07.29 18:08:01 | 000,077,312 | ---- | C] () -- D:\Windows\MBR.exe
[2010.07.28 11:11:58 | 000,743,431 | ---- | C] () -- D:\Users\Computer\Desktop\Updater.exe
[2010.07.28 10:54:03 | 000,006,544 | ---- | C] () -- D:\Users\Computer\Documents\cc_20100728_105401.reg
[2010.07.23 20:42:58 | 000,841,578 | ---- | C] () -- D:\Users\Computer\Desktop\Unbenannt-11.jpg
[2010.07.22 21:01:40 | 072,726,788 | ---- | C] () -- D:\Users\Computer\Desktop\Unbenannt-11.psd
[2010.07.22 20:48:29 | 000,834,479 | ---- | C] () -- D:\Users\Computer\Desktop\Fliege 6.jpg
[2010.07.22 20:43:58 | 000,877,385 | ---- | C] () -- D:\Users\Computer\Desktop\Fliege 5.jpg
[2010.07.22 20:42:10 | 000,804,010 | ---- | C] () -- D:\Users\Computer\Desktop\Fliege 4.jpg
[2010.07.22 20:39:53 | 000,807,816 | ---- | C] () -- D:\Users\Computer\Desktop\Fliege 2.jpg
[2010.07.22 20:38:52 | 000,810,207 | ---- | C] () -- D:\Users\Computer\Desktop\Fliege.jpg
[2010.07.22 20:38:52 | 000,798,153 | ---- | C] () -- D:\Users\Computer\Desktop\Fliege 1.jpg
[2010.07.21 01:07:48 | 001,097,455 | ---- | C] () -- D:\Users\Computer\Desktop\Spinne 3.jpg
[2010.07.21 01:07:15 | 001,118,310 | ---- | C] () -- D:\Users\Computer\Desktop\Spinne 2.jpg
[2010.07.21 01:05:30 | 001,214,125 | ---- | C] () -- D:\Users\Computer\Desktop\Spinne.jpg
[2010.07.20 23:21:12 | 000,261,665 | ---- | C] () -- D:\Users\Computer\Desktop\Unbenannt.GIF
[2010.07.17 22:31:06 | 033,757,537 | ---- | C] () -- D:\Users\Computer\Desktop\Unbenannt-1.psd
[2010.07.17 22:04:53 | 001,027,170 | ---- | C] () -- D:\Users\Computer\Desktop\Hummel 5.jpg
[2010.07.17 21:59:07 | 000,940,000 | ---- | C] () -- D:\Users\Computer\Desktop\Hummel.jpg
[2010.07.17 21:42:26 | 001,545,294 | ---- | C] () -- D:\Users\Computer\Desktop\Hummel 2.jpg
[2010.07.17 20:25:39 | 001,134,125 | ---- | C] () -- D:\Users\Computer\Desktop\Schmetterling 1.jpg
[2010.07.14 19:15:41 | 000,001,769 | ---- | C] () -- D:\Users\Computer\Desktop\Start League of Legends.lnk
[2010.07.14 14:51:39 | 805,725,537 | ---- | C] () -- D:\Users\Computer\Desktop\ace_client240.rar
[2010.07.14 12:32:59 | 000,001,900 | ---- | C] () -- D:\Users\Public\Desktop\League of Legends.lnk
[2010.07.14 12:13:12 | 002,185,360 | ---- | C] () -- D:\Users\Computer\Desktop\LeagueofLegendsEUDownloader.exe
[2010.07.13 16:44:51 | 000,018,901 | ---- | C] () -- D:\Users\Computer\Desktop\Unbenannt1.JPG
[2010.07.13 13:24:16 | 003,592,192 | ---- | C] () -- D:\Users\Computer\Documents\vlc-1.1.0-win32.exe
[2010.07.13 00:56:42 | 000,015,880 | ---- | C] () -- D:\Windows\System32\lsdelete.exe
[2010.07.12 22:07:16 | 000,329,147 | ---- | C] () -- D:\Users\Computer\Desktop\fliege_2_671.jpg
[2010.07.12 22:07:03 | 000,377,457 | ---- | C] () -- D:\Users\Computer\Desktop\Marinkäferlarve (Überarbeitet 2).jpg
[2010.07.12 12:02:37 | 000,020,483 | ---- | C] () -- D:\Users\Computer\Desktop\Unbenannt.JPG
[2010.07.07 15:30:34 | 000,001,024 | ---- | C] () -- D:\Users\Public\Desktop\Picasa 3.lnk
[2010.04.13 14:53:14 | 000,022,016 | ---- | C] () -- D:\Windows\System32\ODBCSTF.DLL
[2010.04.13 14:53:09 | 000,009,216 | ---- | C] () -- D:\Windows\System32\CBNVDD.DLL
[2010.03.03 16:05:41 | 000,281,760 | ---- | C] () -- D:\Windows\System32\drivers\atksgt.sys
[2010.03.03 16:05:41 | 000,025,888 | ---- | C] () -- D:\Windows\System32\drivers\lirsgt.sys
[2009.07.14 02:55:09 | 000,587,776 | ---- | C] () -- D:\Windows\System32\hpotscl1.dll
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- D:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- D:\Windows\System32\BWContextHandler.dll
 
========== LOP Check ==========
 
[2010.05.13 18:57:26 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\CadSoft
[2010.07.12 12:57:33 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Emtybe
[2010.04.28 15:44:44 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\EssentialPIM
[2010.07.12 16:48:59 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Foxit Software
[2010.05.15 13:37:20 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\ibf
[2010.07.30 09:29:27 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\ICQ
[2010.07.12 13:25:33 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Ilyq
[2010.04.28 15:27:16 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Kalenderchen
[2010.03.02 20:58:04 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Leadertech
[2010.05.12 16:39:09 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\LolClient
[2010.03.03 15:52:14 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\LolClient.F24C99354F615F3BAB18AE7B93E3F9B9E8784FA6.1
[2010.05.18 22:56:40 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\MAXON
[2010.04.13 11:54:52 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Miranda
[2010.07.26 22:10:01 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Mumble
[2010.03.04 16:35:26 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\OpenOffice.org
[2010.05.06 13:58:21 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\stickies
[2010.04.15 15:56:25 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Thunderbird
[2010.05.06 17:54:32 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\To-Do DeskList
[2010.04.13 12:17:47 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Trillian
[2010.03.20 23:58:47 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\TS3Client
[2010.03.03 16:07:13 | 000,000,000 | ---D | M] -- D:\Users\Computer\AppData\Roaming\Ubisoft
[2010.06.18 12:23:01 | 000,032,630 | ---- | M] () -- D:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
< End of report >

markusg · 30.07.2010, 14:37

hmm ich kann noch nichts weiter erkennen
ist das ein laptop?
die haben doch meist ne recovery funktion, ich würd daten sichern und den auf werkseinstellungen zurücksetzen, dass dauert nicht sonderlich lang.
danach passwörter endern

Tim0 · 30.07.2010, 18:15

Ne ein Laptop habe ich nicht,
ich habe mir mal aufgrund einer Google suche mal die Ereignisanzeige angeschaut.
Ein Bild dazu habe ich angehangen.

MfG Tim0

markusg · 30.07.2010, 18:26

also es gibt probleme mit firefox und
D:\ace_client240\League of Legends\air\LolClient.exe
beides mal neu instalieren, außerdem mal scandisk durchführen. einige meldungen deuten auf festplattenfehler.
mache bitte deswegen ne daten sicherung! natürlich auf ne andere platte

Tim0 · 30.07.2010, 22:32

Nach der Fehlerprüfung scheint der Rechner schneller hoch zu fahren.
Falls doch noch etwas sein sollte melde ich mich.
Danke für die Hilfe.

MfG Tim0

markusg · 02.08.2010, 12:09

bitte sichere alle daten, ich weis nicht ob die festplatte nen rappel abbekommen hat und den geist aufgibt, wie alt ist sie und welches model?

30.07.2010, 10:51	#16
markusg /// Malware-holic	Prozessor auslastung Hoch und langsamer Start erstelle und poste n neues otl log. otl.txt reicht diesmal

30.07.2010, 14:37	#18
markusg /// Malware-holic	Prozessor auslastung Hoch und langsamer Start hmm ich kann noch nichts weiter erkennen ist das ein laptop? die haben doch meist ne recovery funktion, ich würd daten sichern und den auf werkseinstellungen zurücksetzen, dass dauert nicht sonderlich lang. danach passwörter endern __________________

30.07.2010, 18:26	#20
markusg /// Malware-holic	Prozessor auslastung Hoch und langsamer Start also es gibt probleme mit firefox und D:\ace_client240\League of Legends\air\LolClient.exe beides mal neu instalieren, außerdem mal scandisk durchführen. einige meldungen deuten auf festplattenfehler. mache bitte deswegen ne daten sicherung! natürlich auf ne andere platte

02.08.2010, 12:09	#22
markusg /// Malware-holic	Prozessor auslastung Hoch und langsamer Start bitte sichere alle daten, ich weis nicht ob die festplatte nen rappel abbekommen hat und den geist aufgibt, wie alt ist sie und welches model?

Prozessor auslastung Hoch und langsamer Start

Plagegeister aller Art und deren Bekämpfung: Prozessor auslastung Hoch und langsamer Start