Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code: Alles auswählenAufklappen

ATTFilter

:OTL
@Alternate Data Stream - 72 bytes -> C:\Windows:0CC29844DCEACC06
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:3AC4C770
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2010.08.10 00:31:28 | 000,000,000 | ---D | M] - Y:\auto_Remanentspeicher -- [ NTFS ]
O4 - HKCU..\Run: []  File not found
O4 - HKCU..\Run: [LMab1err] C:\Programme\Lexmark\ErrorApp\lmab1err.exe ( )
O4 - HKCU..\Run: [Lolc] C:\Users\christian_beilfuss\AppData\Roaming\sisbkup6.dll (Microsoft Corporation)
O4 - HKLM..\Run: []  File not found
FF - prefs.js..browser.search.defaultenginename: "Secure Search"
FF - prefs.js..browser.search.selectedEngine: "Secure Search"
:Commands
[purity]
[resethosts]
[emptytemp]
         

Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

Hallo,

da bin ich wieder. Renoviere gerade das Bad, deshalb bin ich nur sporadisch am PC.

Anbei das Log:

Code: Alles auswählenAufklappen

ATTFilter

All processes killed
========== OTL ==========
ADS C:\Windows:0CC29844DCEACC06 deleted successfully.
ADS C:\ProgramData\TEMP:3AC4C770 deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
C:\autoexec.bat moved successfully.
File  not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LMab1err deleted successfully.
C:\Programme\Lexmark\ErrorApp\lmab1err.exe moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Lolc deleted successfully.
C:\Users\christian_beilfuss\AppData\Roaming\sisbkup6.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Prefs.js: "Secure Search" removed from browser.search.defaultenginename
Prefs.js: "Secure Search" removed from browser.search.selectedEngine
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
[EMPTYTEMP]
 
User: All Users
 
User: christian_xxxc
->Temp folder emptied: 11901585 bytes
->Temporary Internet Files folder emptied: 58759589 bytes
->Java cache emptied: 421468 bytes
->FireFox cache emptied: 54036067 bytes
->Google Chrome cache emptied: 6121251 bytes
->Flash cache emptied: 2840 bytes
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 13411746 bytes
RecycleBin emptied: 139 bytes
 
Total Files Cleaned = 138,00 mb
 
 
OTL by OldTimer - Version 3.2.22.3 log created on 04052011_203827

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\hlktmp scheduled to be moved on reboot.
File\Folder C:\Windows\temp\mcafee_3tAXUdg1jrg83Jy not found!
File\Folder C:\Windows\temp\mcafee_qoKLbf3YNNJa8Mn not found!

Registry entries deleted on Reboot...
         

Sieht schon wieder gut aus, es werden die richtigen Seiten aufgerufen.