Mozilla Firefox stürzt beim Öffnen ab, Deinstallation nicht möglich

Mozarella · 18.03.2011, 13:11

Hallo
Seit gestern kann ich Mozilla Firefox nicht mehr öffen, auf jeden Versuch erfolgt eine Fehlermeldung (Mozilla Absturz Melder). Firefox kann nicht deinstalliert werden, und der Zugriff auf Ordner von Mozilla Firefox (unter Programme) ist ebenfalls nicht möglich, da keine Reaktion. Habe System mit Kapersky und Malwarebyte's Anti-Malware gescant, nichts gefunden. Gemäss Anleitung hier habe ich es noch mit OTL gescant:OTL Logfile:

Code:

ATTFilter

OTL logfile created on: 18.03.2011 11:43:55 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\***\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19019)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
 
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 43.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 65.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 136.46 Gb Total Space | 64.97 Gb Free Space | 47.62% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 2.39 Gb Free Space | 23.90% Space Free | Partition Type: NTFS
Drive E: | 7.58 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
 
Computer Name: ***-PC | User Name: *** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\***\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Programme\Safari\Safari.exe (Apple Inc.)
PRC - C:\Programme\ClickOff\Clickoff.exe ()
PRC - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO)
PRC - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\klwtblfs.exe (Kaspersky Lab ZAO)
PRC - C:\Programme\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe ()
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conime.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
PRC - C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Programme\Dell\QuickSet\quickset.exe (Dell Inc.)
PRC - C:\Programme\DellTPad\hidfind.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\DellTPad\ApMsgFwd.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\DellTPad\ApntEx.exe (Alps Electric Co., Ltd.)
PRC - C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
PRC - C:\Programme\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\***\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (stllssvr) -- File not found
SRV - (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter) -- File not found
SRV - (NMSAccessU) -- File not found
SRV - (AESTFilters) -- File not found
SRV - (AVP) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO)
SRV - (OMSI download service) -- C:\Programme\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe ()
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation)
SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation)
SRV - (IAANTMON) Intel(R) -- C:\Programme\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
SRV - (Adobe Version Cue CS3) -- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe (Adobe Systems Incorporated)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (PCDSRVC{E9D79540-57D5953E-06020101}_0) -- c:\Programme\Dell Support Center\pcdsrvc.pkms (PC-Doctor, Inc.)
DRV - (KLIF) -- C:\Windows\System32\drivers\klif.sys (Kaspersky Lab)
DRV - (kl2) -- C:\Windows\System32\drivers\kl2.sys (Kaspersky Lab ZAO)
DRV - (KL1) -- C:\Windows\system32\DRIVERS\kl1.sys (Kaspersky Lab ZAO)
DRV - (KLIM6) -- C:\Windows\System32\drivers\klim6.sys (Kaspersky Lab ZAO)
DRV - (klmouflt) -- C:\Windows\System32\drivers\klmouflt.sys (Kaspersky Lab)
DRV - (USB_RNDIS) -- C:\Windows\System32\drivers\usb8023.sys (Microsoft Corporation)
DRV - (s0017mdm) -- C:\Windows\System32\drivers\s0017mdm.sys (MCCI Corporation)
DRV - (s0017unic) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM) -- C:\Windows\System32\drivers\s0017unic.sys (MCCI Corporation)
DRV - (s0017mgmt) Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM) -- C:\Windows\System32\drivers\s0017mgmt.sys (MCCI Corporation)
DRV - (s0017obex) -- C:\Windows\System32\drivers\s0017obex.sys (MCCI Corporation)
DRV - (s0017bus) Sony Ericsson Device 0017 driver (WDM) -- C:\Windows\System32\drivers\s0017bus.sys (MCCI Corporation)
DRV - (s0017nd5) Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS) -- C:\Windows\System32\drivers\s0017nd5.sys (MCCI Corporation)
DRV - (s0017mdfl) -- C:\Windows\System32\drivers\s0017mdfl.sys (MCCI Corporation)
DRV - (IntcHdmiAddService) Intel(R) -- C:\Windows\System32\drivers\IntcHdmi.sys (Intel(R) Corporation)
DRV - (s217unic) Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (WDM) -- C:\Windows\System32\drivers\s217unic.sys (MCCI)
DRV - (s217mgmt) Sony Ericsson Device 217 USB WMC Device Management Drivers (WDM) -- C:\Windows\System32\drivers\s217mgmt.sys (MCCI Corporation)
DRV - (s217obex) -- C:\Windows\System32\drivers\s217obex.sys (MCCI Corporation)
DRV - (s217nd5) Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (NDIS) -- C:\Windows\System32\drivers\s217nd5.sys (MCCI Corporation)
DRV - (s217mdm) -- C:\Windows\System32\drivers\s217mdm.sys (MCCI Corporation)
DRV - (s217bus) Sony Ericsson Device 217 driver (WDM) -- C:\Windows\System32\drivers\s217bus.sys (MCCI Corporation)
DRV - (s217mdfl) -- C:\Windows\System32\drivers\s217mdfl.sys (MCCI Corporation)
DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (iaNvStor) Intel(R) -- C:\Windows\system32\drivers\ianvstor.sys (Intel Corporation)
DRV - (rismxdp) -- C:\Windows\System32\drivers\rixdptsk.sys (REDC)
DRV - (rimmptsk) -- C:\Windows\System32\drivers\rimmptsk.sys (REDC)
DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC)
DRV - (OEM02Vfx) -- C:\Windows\System32\drivers\OEM02Vfx.sys (EyePower Games Pte. Ltd.)
DRV - (OEM02Dev) -- C:\Windows\System32\drivers\OEM02Dev.sys (Creative Technology Ltd.)
DRV - (NETw4v32) Intel(R) -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation)
DRV - (DNE) -- C:\Windows\System32\drivers\dne2000.sys (Deterministic Networks, Inc.)
DRV - (CVirtA) -- C:\Windows\System32\drivers\CVirtA.sys (Cisco Systems, Inc.)
DRV - (R300) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (e1express) Intel(R) -- C:\Windows\System32\drivers\e1e6032.sys (Intel Corporation)
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.)
DRV - (U2SP) USB to Serial Converter Driver(Philips) -- C:\Windows\System32\drivers\u2s2kxp.sys (Magic Control Technology Corp.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "foxsearch"
FF - prefs.js..browser.search.order.1: "foxsearch"
FF - prefs.js..browser.search.selectedEngine: "foxsearch"
FF - prefs.js..browser.startup.homepage: "www.google.ch"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.3
FF - prefs.js..extensions.enabledItems: {7c6d11c6-41b5-11dc-8314-0800200c9a66}:1.0.3
FF - prefs.js..extensions.enabledItems: {e3f6c2cc-d8db-498c-af6c-499fb211db97}:1.10.2
FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.0.232
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.0.232
FF - prefs.js..extensions.enabledItems: formhistory@yahoo.com:1.2.8.1
FF - prefs.js..extensions.enabledItems: {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}:1.49
FF - prefs.js..extensions.enabledItems: {99B98C2C-7274-45a3-A640-D9DF1A1C8460}:1.4
FF - prefs.js..extensions.enabledItems: firefox@ghostery.com:2.5.2
FF - prefs.js..extensions.enabledItems: {e001c731-5e37-4538-a5cb-8168736a2360}:0.9.9.76
FF - prefs.js..keyword.URL: "hxxp://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q="
 
FF - user.js..browser.search.selectedEngine: "foxsearch"
FF - user.js..browser.search.order.1: "foxsearch"
FF - user.js..browser.search.defaultenginename: "foxsearch"
FF - user.js..keyword.URL: "hxxp://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q="
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.03.18 09:33:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.03.18 09:33:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\THBExt [2010.08.11 18:58:39 | 000,000,000 | ---D | M]
 
[2008.08.26 08:57:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Extensions
[2011.03.16 19:13:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions
[2010.05.06 05:13:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.07.13 19:13:35 | 000,000,000 | ---D | M] (GA?) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{7c6d11c6-41b5-11dc-8314-0800200c9a66}
[2010.09.30 20:47:47 | 000,000,000 | ---D | M] (CookieCuller) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}
[2011.02.17 05:47:01 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.12.24 07:50:03 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011.03.11 06:32:49 | 000,000,000 | ---D | M] ("BetterPrivacy") -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}
[2011.03.11 06:32:50 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2011.02.17 05:46:56 | 000,000,000 | ---D | M] (Page Speed) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}
[2011.03.03 20:05:00 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\firefox@ghostery.com
[2011.02.17 05:46:53 | 000,000,000 | ---D | M] (Form History Control) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\formhistory@yahoo.com
[2009.09.03 18:46:03 | 000,000,000 | ---D | M] (Hide Unvisited) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\hide.unvisited@agadak.net
[2011.03.03 20:05:01 | 000,000,000 | ---D | M] (RequestPolicy) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\pcp4z2hc.default\extensions\requestpolicy@requestpolicy.com
[2010.03.24 15:13:02 | 000,000,917 | ---- | M] () -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\pcp4z2hc.default\searchplugins\conduit.xml
[2011.03.17 19:23:52 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2010.01.09 12:43:39 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions\{85E85FF9-E50C-42DE-8A3D-61485FD6C8DB}
[2010.11.24 19:14:12 | 000,000,000 | ---D | M] (Kaspersky Anti-Banner) -- C:\Programme\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru
[2010.11.24 19:14:13 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Programme\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2009.09.15 05:06:19 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009.11.10 19:23:25 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
[2010.11.24 19:14:12 | 000,000,000 | ---D | M] (Kaspersky Anti-Banner) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\KAVANTIBANNER@KASPERSKY.RU
[2010.11.24 19:14:13 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\LINKFILTER@KASPERSKY.RU
[2010.03.19 08:23:30 | 000,686,592 | ---- | M] (Synatix GmbH) -- C:\Programme\Mozilla Firefox\plugins\npmieze.dll
[2011.03.03 19:06:04 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2011.03.03 19:06:04 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.04.17 11:50:42 | 000,000,143 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\foxsearch.src
[2011.03.03 19:06:04 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2011.03.03 19:06:04 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2011.03.03 19:06:04 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2006.09.18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Programme\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (no name) - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Apoint] C:\Programme\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [DELL Webcam Manager] C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - Startup: C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ClickOff.lnk = C:\Programme\ClickOff\Clickoff.exe ()
O4 - Startup: C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Windows Mail (2).lnk = C:\Programme\Windows Mail\WinMail.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O8 - Extra context menu item: An vorhandenes PDF anfügen - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm ()
O8 - Extra context menu item: In Adobe PDF konvertieren - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\mzvkbd3.dll (Kaspersky Lab ZAO)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2011\kloehk.dll (Kaspersky Lab ZAO)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - C:\Windows\system32\klogon.dll - C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop WallPaper: C:\Users\***\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\***\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{7819eb74-df1a-11dc-8174-0015c5850e6c}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe WLAP-AWL2.vbs
O33 - MountPoints2\{a0b4b633-a91c-11df-a7ad-0015c5850e6c}\Shell\AutoRun\command - "" = F:\InstallTomTomHOME.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.03.18 10:38:28 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\***\Desktop\OTL.exe
[2011.03.17 20:30:42 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011.03.09 05:58:58 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011.03.09 05:58:57 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011.03.09 05:58:57 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011.03.09 05:58:57 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2011.03.03 20:09:28 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
[2011.03.03 06:05:40 | 000,000,000 | ---D | C] -- C:\ProgramData\PCDr
[2011.03.03 06:05:06 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\PCDr
[2011.02.24 06:15:26 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2011.02.24 06:10:49 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2011.02.24 06:10:30 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2011.02.24 06:10:29 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2011.02.24 06:10:29 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2011.02.24 06:10:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2011.02.24 06:10:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2011.02.24 06:10:22 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2011.02.24 06:10:21 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2011.02.24 06:10:21 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2011.02.24 06:10:21 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2011.02.24 06:10:21 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2011.02.24 06:10:11 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2011.02.24 06:10:11 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2011.02.24 06:10:11 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2011.02.24 06:10:11 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2011.02.24 06:10:11 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2010.10.30 19:02:06 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe707E.dll
[3 C:\Users\***\Desktop\*.tmp files -> C:\Users\***\Desktop\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2011.03.18 11:33:00 | 000,001,100 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.03.18 10:42:43 | 000,000,422 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2011.03.18 10:38:32 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\***\Desktop\OTL.exe
[2011.03.18 10:14:21 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.03.18 10:14:21 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.03.18 10:14:15 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.03.18 10:13:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.03.18 10:13:55 | 2134,990,848 | -HS- | M] () -- C:\hiberfil.sys
[2011.03.18 09:17:53 | 000,006,324 | ---- | M] () -- C:\Users\***\AppData\Local\d3d9caps.dat
[2011.03.15 20:49:46 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.03.14 18:09:00 | 000,000,474 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2011.03.14 12:32:46 | 000,352,275 | ---- | M] () -- C:\Users\***\Desktop\Steuern2010.pdf
[2011.03.14 11:48:14 | 000,640,938 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.03.14 11:48:14 | 000,593,408 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.03.14 11:48:14 | 000,131,362 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.03.14 11:48:14 | 000,104,286 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.03.13 20:14:37 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2011.03.12 17:02:04 | 000,000,000 | -H-- | M] () -- C:\Users\***\Documents\Default.rdp
[2011.03.11 14:06:18 | 000,023,552 | ---- | M] () -- C:\Users\***\AppData\Local\WebpageIcons.db
[2011.02.27 19:57:16 | 000,062,598 | ---- | M] () -- C:\Users\***\Desktop\Asperger Marburg Deutsch.pdf
[2011.02.27 19:51:15 | 000,032,768 | ---- | M] () -- C:\Users\***\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.02.27 15:03:54 | 000,004,509 | ---- | M] () -- C:\Users\***\Desktop\Angebot.html
[2011.02.21 15:23:52 | 000,103,402 | ---- | M] () -- C:\Users\***\Desktop\Anerkannte_Ausbildner_von_Hundetrainern_d_101111.pdf
[2011.02.20 14:35:12 | 001,636,962 | ---- | M] () -- C:\Users\***\Desktop\Eggersriet-Risel.pdf
[3 C:\Users\***\Desktop\*.tmp files -> C:\Users\***\Desktop\*.tmp -> ]
[2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011.03.18 09:35:02 | 2134,990,848 | -HS- | C] () -- C:\hiberfil.sys
[2011.03.14 12:32:45 | 000,352,275 | ---- | C] () -- C:\Users\***\Desktop\Steuern2010.pdf
[2011.03.12 17:02:04 | 000,000,000 | -H-- | C] () -- C:\Users\***\Documents\Default.rdp
[2011.03.03 20:09:58 | 000,000,564 | ---- | C] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2011.03.03 20:09:57 | 000,000,422 | ---- | C] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2011.02.27 19:57:15 | 000,062,598 | ---- | C] () -- C:\Users\***\Desktop\Asperger Marburg Deutsch.pdf
[2011.02.27 15:03:53 | 000,004,509 | ---- | C] () -- C:\Users\***\Desktop\Angebot.html
[2011.02.24 06:10:13 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2011.02.24 06:10:13 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2011.02.24 06:10:13 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2011.02.21 15:23:52 | 000,103,402 | ---- | C] () -- C:\Users\***\Desktop\Anerkannte_Ausbildner_von_Hundetrainern_d_101111.pdf
[2011.02.20 14:35:12 | 001,636,962 | ---- | C] () -- C:\Users\***\Desktop\Eggersriet-Risel.pdf
[2011.02.13 16:41:45 | 000,162,304 | ---- | C] () -- C:\Windows\System32\ztvunrar36.dll
[2011.02.13 16:41:45 | 000,077,312 | ---- | C] () -- C:\Windows\System32\ztvunace26.dll
[2011.02.13 16:41:45 | 000,075,264 | ---- | C] () -- C:\Windows\System32\unacev2.dll
[2011.02.13 16:41:44 | 000,153,088 | ---- | C] () -- C:\Windows\System32\UNRAR3.dll
[2011.02.13 11:09:25 | 000,000,036 | ---- | C] () -- C:\Users\***\AppData\Local\housecall.guid.cache
[2010.08.11 19:00:56 | 000,114,243 | ---- | C] () -- C:\Windows\System32\drivers\klin.dat
[2010.08.11 19:00:56 | 000,097,859 | ---- | C] () -- C:\Windows\System32\drivers\klick.dat
[2010.04.17 12:03:59 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.03.08 18:04:33 | 000,023,552 | ---- | C] () -- C:\Users\***\AppData\Local\WebpageIcons.db
[2009.09.09 18:01:40 | 000,027,675 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat
[2009.06.17 18:47:18 | 000,087,024 | ---- | C] () -- C:\Windows\AKDeInstall.exe
[2009.05.27 05:16:41 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.05.27 05:16:41 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2008.08.15 11:12:25 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008.08.11 11:20:24 | 001,032,224 | -HS- | C] () -- C:\Windows\System32\drivers\fidbox2.dat
[2008.06.15 17:12:22 | 000,006,324 | ---- | C] () -- C:\Users\***\AppData\Local\d3d9caps.dat
[2008.03.17 13:41:48 | 002,463,976 | ---- | C] () -- C:\Windows\System32\NPSWF32.dll
[2008.03.11 17:15:30 | 000,001,024 | ---- | C] () -- C:\Windows\System32\clauth2.dll
[2008.03.11 17:15:30 | 000,001,024 | ---- | C] () -- C:\Windows\System32\clauth1.dll
[2008.03.11 17:15:30 | 000,000,000 | ---- | C] () -- C:\Windows\System32\ssprs.dll
[2008.03.11 17:15:30 | 000,000,000 | ---- | C] () -- C:\Windows\System32\serauth2.dll
[2008.03.11 17:15:30 | 000,000,000 | ---- | C] () -- C:\Windows\System32\serauth1.dll
[2008.03.11 17:15:30 | 000,000,000 | ---- | C] () -- C:\Windows\System32\nsprs.dll
[2008.03.01 20:10:33 | 000,032,768 | ---- | C] () -- C:\Users\***\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.02.21 18:38:36 | 000,000,416 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2008.02.21 18:38:36 | 000,000,034 | ---- | C] () -- C:\Windows\System32\BD2030.DAT
[2008.02.18 13:52:28 | 000,001,024 | ---- | C] () -- C:\Windows\System32\grcauth2.dll
[2008.02.18 13:52:28 | 000,001,024 | ---- | C] () -- C:\Windows\System32\grcauth1.dll
[2008.02.18 13:52:28 | 000,000,100 | ---- | C] () -- C:\Windows\System32\prsgrc.dll
[2008.02.18 13:49:30 | 000,001,025 | ---- | C] () -- C:\Windows\System32\sysprs7.dll
[2008.02.18 13:49:30 | 000,000,205 | ---- | C] () -- C:\Windows\System32\lsprst7.dll
[2008.02.02 12:49:22 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI
[2008.02.02 12:49:21 | 000,001,471 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2008.01.29 19:37:52 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2008.01.29 19:29:53 | 029,795,616 | -HS- | C] () -- C:\Windows\System32\drivers\fidbox.dat
[2008.01.23 19:32:53 | 000,910,304 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2008.01.23 19:32:53 | 000,249,856 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2008.01.23 19:32:53 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1253.dll
[2008.01.23 19:32:51 | 000,167,936 | ---- | C] () -- C:\Windows\System32\nvccoin.dll
[2008.01.23 19:32:51 | 000,004,608 | ---- | C] () -- C:\Windows\System32\HdmiCoin.dll
[2008.01.23 19:32:50 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2008.01.23 11:55:11 | 000,000,076 | RHS- | C] () -- C:\Windows\CT4CET.bin
[2008.01.23 11:50:40 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2006.11.15 19:30:32 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006.11.02 16:33:31 | 000,640,938 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2006.11.02 16:33:31 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2006.11.02 16:33:31 | 000,131,362 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2006.11.02 16:33:31 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2006.11.02 13:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 13:47:37 | 001,700,896 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006.11.02 13:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 11:33:01 | 000,593,408 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 11:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 11:33:01 | 000,104,286 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 11:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 11:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006.11.02 11:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 09:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 09:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 08:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 08:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[1999.01.22 19:46:56 | 000,065,536 | ---- | C] () -- C:\Windows\System32\MSRTEDIT.DLL
 
========== LOP Check ==========
 
[2009.04.30 15:26:38 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\ASCOMP Software
[2009.06.27 18:55:16 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Automatische-Datensicherung.de
[2008.12.14 14:07:48 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\avidemux
[2009.05.09 16:08:33 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\backupClientAdminAccess
[2011.03.18 10:14:27 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\ClickOff
[2009.07.20 18:03:23 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\FileZilla
[2010.04.18 15:20:43 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Foxit
[2010.04.18 15:24:08 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Foxit Software
[2008.12.14 14:13:56 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\gtk-2.0
[2010.04.17 19:43:50 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Gutscheinmieze
[2009.02.21 08:22:26 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\IrfanView
[2010.07.09 09:49:08 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Langmeier Software
[2008.03.16 17:21:35 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Nvu
[2009.05.09 16:02:33 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Ocster Backup
[2011.03.03 06:08:58 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\PCDr
[2011.02.12 09:37:25 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\QuickScan
[2008.10.04 11:59:03 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Scientific Software
[2010.08.07 06:50:18 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\SeriousBit
[2008.06.16 12:18:55 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Sony
[2009.04.22 09:59:02 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\tmp
[2008.07.01 07:54:35 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Uniblue
[2008.09.21 19:08:30 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Vso
[2011.03.14 18:09:00 | 000,000,474 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2009.05.19 13:33:55 | 000,000,504 | ---- | M] () -- C:\Windows\Tasks\BCK1.job
[2011.03.13 20:14:37 | 000,000,564 | ---- | M] () -- C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
[2011.03.15 20:49:46 | 000,032,514 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011.03.18 10:42:43 | 000,000,422 | ---- | M] () -- C:\Windows\Tasks\SystemToolsDailyTest.job
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 64 bytes -> C:\Users\***\Desktop\MOV02721.MPG:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\***\Desktop\MOV02720.MPG:TOC.WMV
@Alternate Data Stream - 1021 bytes -> C:\Users\***\Documents\Hoststar - Ordercenter_ StarPagemaker.eml:OECustomProperty
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:CB0AACC9
 
< End of report >

--- --- ---

Hat jemand eine Idee, wie das Problem gelöst werden könnte. Danke für jeden Hinweis!
Gruss
Mozarella

cosinus · 18.03.2011, 13:23

Gibt es noch weitere Logs von Malwarebytes? Wenn ja bitte alle posten, die in Malwarebytes im Reiter Logdateien sichtbar sind.

Mozarella · 18.03.2011, 21:51

Hallo Arne
Danke für deine Antwort. Der mbam-Log gibt leider nicht viel her:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 6091

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.19019

18.03.2011 00:49:57
mbam-log-2011-03-18 (00-49-57).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|G:\|)
Durchsuchte Objekte: 392593
Laufzeit: 4 Stunde(n), 18 Minute(n), 11 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

Was könnte ich noch probieren?
Gruss
Mozarella

cosinus · 18.03.2011, 22:15

Und das ist das einzige Log von Malwarebytes?

Mozarella · 19.03.2011, 07:16

Ja, das ist das einzige Log von Malwarebytes (unter Reiter Logs). Ist das ungewöhnlich?
Gruss
Mozarella

Mozarella · 19.03.2011, 08:03

Habe eben noch einen PC-Checkup von Dell laufen lassen. Ein sogenannter Multicore-Test ergab, dass die Hardware nicht mehr fehlerfrei laufe, genauere Angaben lieferte der Test jedoch nicht.

cosinus · 19.03.2011, 13:41

Pobier mal einen Test des Arbeitsspeichers => [Guide] Anleitung: Wie testet man RAM-Riegel mit Memtest86+ V2.01/V4.00? - Forum de Luxx

18.03.2011, 13:23	#2
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Mozilla Firefox stürzt beim Öffnen ab, Deinstallation nicht möglich Gibt es noch weitere Logs von Malwarebytes? Wenn ja bitte alle posten, die in Malwarebytes im Reiter Logdateien sichtbar sind. __________________ __________________

18.03.2011, 22:15	#4
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Mozilla Firefox stürzt beim Öffnen ab, Deinstallation nicht möglich Und das ist das einzige Log von Malwarebytes? __________________ Logfiles bitte immer in CODE-Tags posten

19.03.2011, 13:41	#7
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Mozilla Firefox stürzt beim Öffnen ab, Deinstallation nicht möglich Pobier mal einen Test des Arbeitsspeichers => [Guide] Anleitung: Wie testet man RAM-Riegel mit Memtest86+ V2.01/V4.00? - Forum de Luxx __________________ Logfiles bitte immer in CODE-Tags posten

Mozilla Firefox stürzt beim Öffnen ab, Deinstallation nicht möglich

Log-Analyse und Auswertung: Mozilla Firefox stürzt beim Öffnen ab, Deinstallation nicht möglich