| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Das System hat ein Problem mit einem oder mehreren installieren IDE / SATA-Festplatten erkannt.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
20.05.2011, 13:33
| #1 |
 |  Das System hat ein Problem mit einem oder mehreren installieren IDE / SATA-Festplatten erkannt. Hallo, ich habe mir auch diesen Trojaner eingefangen. Der Bildschirm ist schwarz, alle Dateien und Programme sind weg und Internet funktioniert auch nicht mehr. Hab schon ein bisschen durch das Forum gestöbert. Da ich Malwarebytes nicht durchlaufen lassen kann (Internet funktioniert nicht), hab ich auf einem anderen Rechner OTLPENet.exe runtergeladen, die CD gebrannt und damit den infizierten Rechner von CD aus gebootet. Ist in dem Thread hier beschrieben http://www.trojaner-board.de/98923-p...r-monitor.html Dann hab ich OTLPE durchlaufen lassen und die Textdateien C:\OTL.Txt und C:\Extras.Txt erhalten. Wie krieg ich den Trojaner denn runter? Danke schonmal vorab für die Hilfe! Der Inhalt der C:\OTL.Txt lautet: OTL Logfile: Code:
ATTFilter OTL logfile created on: 5/20/2011 4:46:11 PM - Run
OTLPE by OldTimer - Version 3.1.46.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 94.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74.53 Gb Total Space | 61.11 Gb Free Space | 82.00% Space Free | Partition Type: NTFS
Drive D: | 7.46 Gb Total Space | 3.61 Gb Free Space | 48.40% Space Free | Partition Type: FAT32
Drive E: | 6.67 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled] -- -- (HidServ)
SRV - [2011/05/02 00:43:47 | 000,136,360 | -H-- | M] (Avira GmbH) [Auto] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2011/03/27 14:23:28 | 000,269,480 | -H-- | M] (Avira GmbH) [Auto] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009/05/21 09:28:38 | 000,874,768 | -H-- | M] (Intel(R) Corporation) [Auto] -- C:\Programme\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel(R)
SRV - [2009/05/21 08:54:58 | 000,348,160 | -H-- | M] (Intel(R) Corporation) [Auto] -- C:\Programme\Intel\WiFi\bin\WLKEEPER.exe -- (WLANKEEPER) Intel(R)
SRV - [2009/05/21 08:23:04 | 000,909,312 | -H-- | M] (Intel(R) Corporation) [Auto] -- C:\Programme\Intel\WiFi\bin\S24EvMon.exe -- (S24EventMonitor) Intel(R)
SRV - [2009/05/21 08:04:14 | 000,473,360 | -H-- | M] (Intel(R) Corporation) [Auto] -- C:\Programme\Gemeinsame Dateien\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel(R)
SRV - [2007/05/10 05:23:50 | 000,094,208 | -H-- | M] (SigmaTel, Inc.) [Auto] -- C:\Programme\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\stacsv.exe -- (STacSV)
SRV - [2003/07/28 07:28:22 | 000,089,136 | -H-- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | Boot] -- -- (cerc6)
DRV - [2011/03/27 14:23:29 | 000,137,656 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/02/09 22:34:22 | 000,051,968 | -H-- | M] (Generic USB smartcard reader) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\MHIKEY10.sys -- (MHIKEY10)
DRV - [2011/01/10 09:23:15 | 000,061,960 | -H-- | M] (Avira GmbH) [File_System | Auto] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/06/17 09:27:02 | 000,028,520 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 09:26:52 | 000,011,608 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\Programme\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/05/28 17:23:24 | 004,203,392 | -H-- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\NETw5x32.sys -- (NETw5x32) Intel(R)
DRV - [2008/08/13 12:23:56 | 000,011,904 | -H-- | M] (Intel Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2008/04/13 19:00:00 | 000,053,760 | -H-- | M] () [Kernel | Boot] -- C:\WINDOWS\System32\drivers\volsnap.sys -- (VolSnap)
DRV - [2007/12/23 12:18:48 | 000,068,696 | -H-- | M] (O2Micro) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\oz776.sys -- (guardian2)
DRV - [2007/08/02 12:35:12 | 000,989,952 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2007/08/02 12:34:30 | 000,211,200 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2007/08/02 12:34:26 | 000,731,136 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2007/06/01 08:57:18 | 000,178,176 | -H-- | M] (Novatel Wireless Inc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\NWADIenum.sys -- (NWADI)
DRV - [2007/05/30 11:50:54 | 000,027,072 | -H-- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\PCASp50.sys -- (PCASp50)
DRV - [2007/05/30 11:50:48 | 000,092,288 | -H-- | M] (Novatel Wireless Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nwdelser.sys -- (NWDellPort)
DRV - [2007/05/30 11:50:48 | 000,092,288 | -H-- | M] (Novatel Wireless Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nwdelmdm.sys -- (NWDellModem)
DRV - [2007/05/10 05:24:34 | 001,222,840 | -H-- | M] (SigmaTel, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2007/04/23 11:39:00 | 000,113,920 | -H-- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tosrfbd.sys -- (tosrfbd)
DRV - [2007/04/10 15:29:42 | 000,041,856 | -H-- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tosrfusb.sys -- (Tosrfusb)
DRV - [2007/02/16 10:46:00 | 000,160,256 | RH-- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2007/01/16 05:22:00 | 000,031,744 | -H-- | M] (CSR, plc) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\csrbcxp.sys -- (CSRBC)
DRV - [2006/11/20 12:55:16 | 000,036,480 | -H-- | M] (TOSHIBA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tosrfbnp.sys -- (tosrfbnp)
DRV - [2006/10/10 14:33:00 | 000,041,600 | -H-- | M] (TOSHIBA Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tosporte.sys -- (tosporte)
DRV - [2006/10/05 11:07:46 | 000,073,600 | -H-- | M] (TOSHIBA Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Tosrfhid.sys -- (Tosrfhid)
DRV - [2005/08/01 11:45:00 | 000,064,896 | -H-- | M] (TOSHIBA Corporation) [Kernel | System] -- C:\WINDOWS\system32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2005/01/06 08:42:00 | 000,018,612 | -H-- | M] (TOSHIBA Corporation.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\tosrfnds.sys -- (tosrfnds)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKU\Julia_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\Julia_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2011/05/02 03:36:52 | 000,000,000 | -H-D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins
[2011/04/19 13:33:44 | 000,000,000 | -H-D | M] (No name found) -- C:\Dokumente und Einstellungen\Julia\Anwendungsdaten\mozilla\Extensions
[2011/05/16 13:21:16 | 000,000,000 | -H-D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2011/05/16 13:21:16 | 000,000,000 | -H-D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
File not found (No name found) --
[2011/05/16 13:20:50 | 000,000,000 | -H-D | M] (Java Quick Starter) -- C:\PROGRAMME\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/05/02 03:36:41 | 000,142,296 | -H-- | M] (Mozilla Foundation) -- C:\Programme\Mozilla Firefox\components\browsercomps.dll
[2010/01/01 04:00:00 | 000,001,392 | -H-- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010/01/01 04:00:00 | 000,002,252 | -H-- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\bing.xml
[2010/01/01 04:00:00 | 000,001,153 | -H-- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010/01/01 04:00:00 | 000,006,805 | -H-- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010/01/01 04:00:00 | 000,001,178 | -H-- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010/01/01 04:00:00 | 000,001,105 | -H-- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2008/04/13 19:00:00 | 000,000,820 | -H-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Programme\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [IntelWireless] C:\Programme\Gemeinsame Dateien\Intel\WirelessCommon\iFrmewrk.exe (Intel(R) Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Programme\Intel\WiFi\bin\ZCfgSvc.exe (Intel(R) Corporation)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Programme\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Programme\SigmaTel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [systray] C:\Programme\Dell\Dell Mobile Broadband\systray.exe ()
O4 - HKU\Julia_ON_C..\Run: [4E3E0230AEBB4E96] C:\Recycle.Bin\Recycle.Bin.exe (Macromedia, Inc.)
O4 - HKU\Julia_ON_C..\Run: [YBVEDrnuhHm] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\YBVEDrnuhHm.exe (QNP)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Julia_ON_C\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\Julia_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Julia_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Julia_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/03/26 06:24:01 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011/03/23 18:07:04 | 000,000,000 | ---D | M] - D:\Auto -- [ FAT32 ]
O32 - AutoRun File - [2008/05/06 08:26:23 | 000,000,309 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/05/20 05:52:04 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\Julia\Recent
[2011/05/20 04:58:34 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Anwendungsdaten\Malwarebytes
[2011/05/20 04:58:05 | 000,038,224 | -H-- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/05/20 04:58:05 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
[2011/05/20 04:58:03 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
[2011/05/20 04:57:59 | 000,000,000 | -H-D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2011/05/20 04:56:25 | 007,734,208 | -H-- | C] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Julia\Desktop\mbam-setup.exe
[2011/05/19 03:50:47 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\NtmsData
[2011/05/19 03:10:21 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Startmenü\Programme\Windows XP Recovery
[2011/05/19 03:00:33 | 000,432,640 | -H-- | C] (QNP) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\YBVEDrnuhHm.exe
[2011/05/16 15:19:16 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Startmenü\Programme\IrfanView
[2011/05/16 15:18:13 | 000,000,000 | -H-D | C] -- C:\Programme\Irfanview
[2011/05/16 13:22:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\Sun
[2011/05/16 13:22:09 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sun
[2011/05/16 13:22:06 | 000,000,000 | -H-D | C] -- C:\Programme\Gemeinsame Dateien\Java
[2011/05/16 13:21:13 | 000,472,808 | -H-- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011/05/16 13:21:13 | 000,153,376 | -H-- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011/05/16 13:21:13 | 000,145,184 | -H-- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011/05/16 13:21:13 | 000,145,184 | -H-- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011/05/16 13:21:13 | 000,073,728 | -H-- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011/05/16 13:20:37 | 000,000,000 | -H-D | C] -- C:\Programme\Java
[2011/05/16 13:18:33 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Anwendungsdaten\Sun
[2011/05/16 02:28:36 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Application Data
[2011/05/12 05:14:26 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Eigene Dateien\Fußball
[2011/05/10 13:25:59 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Lokale Einstellungen\Anwendungsdaten\Identities
[2011/05/08 02:45:08 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Eigene Dateien\Fotos
[2011/05/03 08:50:38 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/05/03 05:48:20 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Eigene Dateien\Julia
[2011/05/03 05:42:30 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Anwendungsdaten\U3
[2011/05/02 01:58:07 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Anwendungsdaten\Macromedia
[2011/05/02 01:57:21 | 000,000,000 | -H-D | C] -- C:\Programme\Flash Player
[2011/04/21 04:10:36 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Lokale Einstellungen\Anwendungsdaten\Temp
[2011/04/21 04:10:36 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Lokale Einstellungen\Anwendungsdaten\Adobe
[2011/04/21 04:10:36 | 000,000,000 | -H-D | C] -- C:\Dokumente und Einstellungen\Julia\Anwendungsdaten\Adobe
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/05/20 05:51:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/05/20 04:58:09 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Malwarebytes' Anti-Malware
[2011/05/20 04:56:08 | 007,734,208 | -H-- | M] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Julia\Desktop\mbam-setup.exe
[2011/05/20 04:52:56 | 000,002,206 | -H-- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/05/19 03:10:27 | 000,000,829 | -H-- | M] () -- C:\Dokumente und Einstellungen\Julia\Desktop\Windows XP Recovery.lnk
[2011/05/19 03:10:25 | 000,000,144 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~22601508r
[2011/05/19 03:10:25 | 000,000,120 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~22601508
[2011/05/19 03:10:11 | 000,000,344 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\22601508
[2011/05/19 03:09:49 | 000,378,368 | -H-- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\22601508.exe
[2011/05/19 03:04:08 | 000,000,000 | RH-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Zubehör
[2011/05/19 03:04:02 | 000,000,000 | RH-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Verwaltung
[2011/05/19 03:03:59 | 000,000,000 | RH-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Spiele
[2011/05/19 03:03:56 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Nero
[2011/05/19 03:03:52 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Office
[2011/05/19 03:03:51 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Intel PROSet Wireless
[2011/05/19 03:03:50 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Dell Wireless
[2011/05/19 03:03:50 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Bluetooth
[2011/05/19 03:03:49 | 000,000,000 | RH-D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
[2011/05/19 03:00:22 | 000,432,640 | -H-- | M] (QNP) -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\YBVEDrnuhHm.exe
[2011/05/18 08:41:06 | 000,003,584 | -H-- | M] () -- C:\Dokumente und Einstellungen\Julia\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/16 15:23:10 | 000,000,049 | -H-- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/05/16 15:19:16 | 000,001,537 | -H-- | M] () -- C:\Dokumente und Einstellungen\Julia\Desktop\IrfanView Thumbnails.lnk
[2011/05/16 15:19:16 | 000,000,665 | -H-- | M] () -- C:\Dokumente und Einstellungen\Julia\Desktop\IrfanView.lnk
[2011/05/16 13:20:45 | 000,153,376 | -H-- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011/05/16 13:20:45 | 000,145,184 | -H-- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011/05/16 13:20:45 | 000,145,184 | -H-- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011/05/16 13:20:45 | 000,073,728 | -H-- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2011/05/16 13:20:44 | 000,472,808 | -H-- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011/05/16 02:28:32 | 000,320,668 | -H-- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2011/05/16 02:28:32 | 000,314,842 | -H-- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/05/16 02:28:32 | 000,049,570 | -H-- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2011/05/16 02:28:32 | 000,041,170 | -H-- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/05/11 06:41:38 | 000,056,038 | -H-- | M] () -- C:\Dokumente und Einstellungen\Julia\Desktop\Sieversen.jpg
[2011/05/02 01:31:06 | 000,007,363 | -H-- | M] () -- C:\Dokumente und Einstellungen\Julia\Desktop\20110502_Ebay_Tupperware.pdf
[2011/05/02 01:25:12 | 000,007,374 | -H-- | M] () -- C:\Dokumente und Einstellungen\Julia\Desktop\20110502_Ebay_Top_Bolero.pdf
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/05/19 03:10:27 | 000,000,829 | -H-- | C] () -- C:\Dokumente und Einstellungen\Julia\Desktop\Windows XP Recovery.lnk
[2011/05/19 03:10:25 | 000,000,144 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~22601508r
[2011/05/19 03:10:25 | 000,000,120 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\~22601508
[2011/05/19 03:10:10 | 000,000,344 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\22601508
[2011/05/19 03:09:45 | 000,378,368 | -H-- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\22601508.exe
[2011/05/16 15:23:10 | 000,000,049 | -H-- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011/05/16 15:19:16 | 000,001,537 | -H-- | C] () -- C:\Dokumente und Einstellungen\Julia\Desktop\IrfanView Thumbnails.lnk
[2011/05/16 15:19:16 | 000,000,665 | -H-- | C] () -- C:\Dokumente und Einstellungen\Julia\Desktop\IrfanView.lnk
[2011/05/11 06:41:37 | 000,056,038 | -H-- | C] () -- C:\Dokumente und Einstellungen\Julia\Desktop\Sieversen.jpg
[2011/05/08 02:42:38 | 000,003,584 | -H-- | C] () -- C:\Dokumente und Einstellungen\Julia\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/02 01:31:05 | 000,007,363 | -H-- | C] () -- C:\Dokumente und Einstellungen\Julia\Desktop\20110502_Ebay_Tupperware.pdf
[2011/05/02 01:25:10 | 000,007,374 | -H-- | C] () -- C:\Dokumente und Einstellungen\Julia\Desktop\20110502_Ebay_Top_Bolero.pdf
[2011/04/19 13:33:34 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\nsreg.dat
[2011/03/26 08:13:02 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\tosOBEX.INI
[2011/03/26 06:54:53 | 000,204,800 | -H-- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4814.dll
[2011/03/26 06:46:16 | 000,000,400 | -H-- | C] () -- C:\WINDOWS\ODBC.INI
[2011/03/26 06:34:49 | 000,000,664 | -H-- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/03/26 06:27:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/03/26 06:18:55 | 000,021,740 | -H-- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/03/26 06:08:02 | 000,004,161 | -H-- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/03/26 06:06:08 | 000,110,992 | -H-- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/04/13 19:00:00 | 000,673,088 | -H-- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/04/13 19:00:00 | 000,320,668 | -H-- | C] () -- C:\WINDOWS\System32\perfh007.dat
[2008/04/13 19:00:00 | 000,314,842 | -H-- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008/04/13 19:00:00 | 000,272,128 | -H-- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/04/13 19:00:00 | 000,269,480 | -H-- | C] () -- C:\WINDOWS\System32\perfi007.dat
[2008/04/13 19:00:00 | 000,218,003 | -H-- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/04/13 19:00:00 | 000,053,760 | -H-- | C] () -- C:\WINDOWS\System32\drivers\volsnap.sys
[2008/04/13 19:00:00 | 000,049,570 | -H-- | C] () -- C:\WINDOWS\System32\perfc007.dat
[2008/04/13 19:00:00 | 000,046,258 | -H-- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/04/13 19:00:00 | 000,041,170 | -H-- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008/04/13 19:00:00 | 000,034,478 | -H-- | C] () -- C:\WINDOWS\System32\perfd007.dat
[2008/04/13 19:00:00 | 000,028,626 | -H-- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/04/13 19:00:00 | 000,004,569 | -H-- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/04/13 19:00:00 | 000,001,804 | -H-- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008/04/13 19:00:00 | 000,000,741 | -H-- | C] () -- C:\WINDOWS\System32\noise.dat
[2005/09/02 09:44:08 | 000,110,592 | -H-- | C] () -- C:\WINDOWS\System32\TosBtAcc.dll
[2005/07/22 16:30:20 | 000,065,536 | -H-- | C] () -- C:\WINDOWS\System32\TosCommAPI.dll
[2005/04/14 23:52:33 | 013,107,200 | -H-- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/04/14 23:52:33 | 000,004,627 | -H-- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/07/20 12:04:02 | 000,094,208 | -H-- | C] () -- C:\WINDOWS\System32\TosBtHcrpAPI.dll
[2004/01/15 09:43:28 | 000,114,688 | -H-- | C] () -- C:\WINDOWS\System32\TBTMonUI.dll
[2003/02/20 12:53:42 | 000,005,702 | -H-- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
========== LOP Check ==========
[2011/03/26 07:09:08 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Novatel Wireless
========== Purity Check ==========
< End of report >
Und hier noch die Datei Extras.txt: Code:
ATTFilter OTL Extras logfile created on: 5/20/2011 4:46:11 PM - Run
OTLPE by OldTimer - Version 3.1.46.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 94.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 74.53 Gb Total Space | 61.11 Gb Free Space | 82.00% Space Free | Partition Type: NTFS
Drive D: | 7.46 Gb Total Space | 3.61 Gb Free Space | 48.40% Space Free | Partition Type: FAT32
Drive E: | 6.67 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{281ECE39-F043-492B-8337-F2E546B5604A}" = PowerDVD
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4160A344-5848-4332-919F-0CB063822AA3}" = Dell Mobile Broadband Card Utility
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{72EEB695-388B-4835-8EA6-0C04545B06B9}" = Intel(R) PROSet/Wireless WiFi-Software
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
"{AC76BA86-7AD7-1031-7B44-AA0000000001}" = Adobe Reader X (10.0.1) - Deutsch
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D3B3B9B2-FE73-44CB-8C0A-F737D92F991B}" = Broadcom Gigabit Integrated Controller
"{EDC2B89F-3F72-48EA-B63E-985BC51622E4}" = OZ776 SCR Driver V1.1.4.202
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F" = Conexant HDA D330 MDC V.92 Modem
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"ie8" = Windows Internet Explorer 8
"InstallShield_{EDC2B89F-3F72-48EA-B63E-985BC51622E4}" = OZ776 SCR Driver V1.1.4.202
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox 4.0.1 (x86 de)" = Mozilla Firefox 4.0.1 (x86 de)
"Nero - Burning Rom!UninstallKey" = Nero 6
"ProInst" = Intel PROSet Wireless
< End of report >
Geändert von Trudiluli (20.05.2011 um 13:51 Uhr) Grund: code hinzugefügt |
| Themen zu Das System hat ein Problem mit einem oder mehreren installieren IDE / SATA-Festplatten erkannt. |
| 0x00000001, adobe, antivir, avira, bho, bildschirm, desktop, disabletaskmgr, einstellungen, explorer, extras.txt, firefox, format, helper, infizierte, internet, logfile, mozilla, oldtimer, otl.txt, otlpenet.exe, plug-in, problem, reatogo, recycle.bin, registry, scan, sched.exe, searchplugins, shell32.dll, shortcut, software, system, trojaner, usb, windows, windows internet, windows xp |
Baum-Darstellung