Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   HiJackThis Probleme beim Scan (https://www.trojaner-board.de/106514-hijackthis-probleme-beim-scan.html)

Panterogas 18.12.2011 20:52
HiJackThis Probleme beim Scan
 
Liste der Anhänge anzeigen (Anzahl: 2)
Moinsen,

hier Leute ich hab irgendeinen nervigen Trojaner auf meinem Laptop.
Der hat meine Passwörter ausgelesen und nu hab ich ein kleines Problem.
Ich hoffe natürlich, dass ich nicht sinnlos ein Thema eröffnet habe und wenn ein ähnliches existiert bitte sagt mir das, habe nämlich keins gefunden.

So hier das Problem:
Ich starte HiJackThis und geh auf "Do system scan and save log file"
dann kommt als aller erstes das hier

Anhang 26033

wenn ich jetzt weiter mache und einfach auf OK drücke, dann kommt das

Anhang 26034

wenn ich da jetz auf ok drücke passiert nichts.

nun gut das ist das Problem was ich hab und wenn ihr mir helfen könnt wär das klasse.
Nebenbei habe Windows 7 (32 bit )

Wär echt super wenn ihr mir helfen könntet

markusg 18.12.2011 20:58
hi,
hijackthis logs wollen wir eh nicht :-)
Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
  • Schliesse bitte nun alle Programme. (Wichtig)
  • Klicke nun bitte auf den Quick Scan Button.
  • Kopiere
    nun den Inhalt aus OTL.txt und Extra.txt hier in Deinen Thread

Panterogas 18.12.2011 21:57
OTL.Txt :OTL Logfile:
Code:
OTL logfile created on: 18.12.2011 21:43:11 - Run 1
OTL by OldTimer - Version 3.2.31.0    Folder = C:\Users\Frederik\Desktop
 Professional  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,99 Gb Total Physical Memory | 2,26 Gb Available Physical Memory | 75,42% Memory free
5,99 Gb Paging File | 4,98 Gb Available in Paging File | 83,13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 278,02 Gb Total Space | 87,31 Gb Free Space | 31,40% Space Free | Partition Type: NTFS
Drive E: | 20,06 Gb Total Space | 6,27 Gb Free Space | 31,27% Space Free | Partition Type: FAT32
 
Computer Name: FREDERIK-PC | User Name: Frederik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2011.12.18 21:41:15 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Frederik\Desktop\OTL.exe
PRC - [2011.12.06 22:43:06 | 003,305,248 | ---- | M] (Akamai Technologies, Inc) -- C:\Users\Frederik\AppData\Local\Akamai\netsession_win.exe
PRC - [2011.07.04 04:05:02 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avguard.exe
PRC - [2011.06.06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011.05.17 12:29:46 | 000,395,144 | ---- | M] (Ask) -- C:\Programme\Ask.com\Updater\Updater.exe
PRC - [2011.05.14 07:33:14 | 000,271,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011.04.27 16:53:25 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2011.01.10 14:22:55 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.10.16 12:42:38 | 000,792,680 | ---- | M] (NVIDIA Corporation) -- C:\Programme\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2010.09.21 14:03:14 | 001,710,464 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2010.09.21 14:03:14 | 000,193,408 | ---- | M] (Microsoft Corp.) -- C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2010.09.06 17:56:38 | 000,247,096 | ---- | M] () -- C:\Programme\ICQ6Toolbar\ICQ Service.exe
PRC - [2010.02.03 15:37:57 | 000,154,112 | ---- | M] () -- C:\Programme\ImagonShared\DierckeBrowserInterface.exe
PRC - [2010.01.14 21:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Programme\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.07.14 02:14:47 | 001,121,280 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe
PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 02:14:24 | 000,157,184 | ---- | M] (Microsoft Corporation) -- c:\Programme\Windows Defender\MpCmdRun.exe
PRC - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2010.03.15 11:28:22 | 000,141,824 | ---- | M] () -- C:\Programme\WinRAR\RarExt.dll
MOD - [2010.02.03 15:37:57 | 000,154,112 | ---- | M] () -- C:\Programme\ImagonShared\DierckeBrowserInterface.exe
 
 
========== Win32 Services (SafeList) ==========
 
SRV - [2011.12.14 23:50:50 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.12.13 22:13:23 | 003,316,000 | ---- | M] () [Auto | Running] -- c:\program files\common files\akamai/netsession_win_b427739.dll -- (Akamai)
SRV - [2011.07.04 04:05:02 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011.06.06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011.04.27 16:53:25 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.09.06 17:56:38 | 000,247,096 | ---- | M] () [Auto | Running] -- C:\Programme\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2009.07.14 02:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008.04.07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2011.07.04 04:05:02 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2011.07.04 04:05:02 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010.10.16 19:55:00 | 010,084,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010.06.17 14:27:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009.07.14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel(R)
DRV - [2009.03.31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2006.11.30 15:18:18 | 000,027,416 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\x10ufx2.sys -- (XUIF)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Babylon Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN, Hotmail und Messenger sowie Nachrichten, Unterhaltung, Video, Sport, Lifestyle, Finanzen, Auto uvm. bei MSN
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 55 23 96 20 DD AC CB 01  [binary data]
IE - HKCU\..\URLSearchHook:  - No CLSID value found
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Frederik\AppData\Roaming\IDM\idmmzcc3
 
 
========== Chrome  ==========
 
 
O1 HOSTS File: ([2009.06.10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Programme\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Programme\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Auslogics Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Programme\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Auslogics Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\WebBrowser: (Auslogics Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [NPSStartup]  File not found
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Frederik\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKCU..\Run: [AutoStartNPSAgent] C:\Programme\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [HDDHealth] C:\Program Files\HDD Health\hddhealth.exe (PANTERASoft)
O4 - HKCU..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe (NEXON Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Users\Frederik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Programme\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Download all links with IDM - C:\Users\Frederik\Desktop\Fred\idm\IEGetAll.htm File not found
O8 - Extra context menu item: Download FLV video content with IDM - C:\Users\Frederik\Desktop\Fred\idm\IEGetVL.htm File not found
O8 - Extra context menu item: Download with IDM - C:\Users\Frederik\Desktop\Fred\idm\IEExt.htm File not found
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Programme\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Programme\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Programme\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{07F4289E-ADB4-4983-8D93-D0F4980DCC45}: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{44CD62FD-6013-43D1-A753-D8BB99802EA1}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Programme\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008.08.21 11:50:32 | 000,000,672 | RH-- | M] () - E:\AUTOEXEC.BAT -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.12.18 21:41:14 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Frederik\Desktop\OTL.exe
[2011.12.17 18:06:38 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Diercke Globus Online
[2011.12.17 18:06:38 | 000,000,000 | ---D | C] -- C:\Users\Frederik\Documents\Diercke Globus Online
[2011.12.17 18:06:38 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Roaming\Diercke Globus Online
[2011.12.17 18:06:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diercke Globus Online
[2011.12.17 18:06:32 | 000,000,000 | ---D | C] -- C:\Program Files\ImagonShared
[2011.12.17 18:06:32 | 000,000,000 | ---D | C] -- C:\Program Files\Diercke Globus Online
[2011.12.14 23:49:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2011.12.14 23:49:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2011.12.14 23:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2011.12.14 23:28:19 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Roaming\PCF-VLC
[2011.12.14 22:58:43 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Roaming\Participatory Culture Foundation
[2011.12.14 22:58:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Miro
[2011.12.14 22:58:15 | 000,000,000 | ---D | C] -- C:\Program Files\Participatory Culture Foundation
[2011.12.14 22:52:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
[2011.12.14 22:52:39 | 000,000,000 | ---D | C] -- C:\Program Files\DealPly
[2011.12.14 22:52:22 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar
[2011.12.14 22:52:13 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Roaming\Babylon
[2011.12.14 22:52:13 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Local\Babylon
[2011.12.14 22:52:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2011.12.14 22:52:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Premium
[2011.12.14 22:52:00 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2011.12.14 22:51:52 | 000,243,768 | ---- | C] (Premium) -- C:\Users\Frederik\Desktop\DownloadSetup (64).exe
[2011.12.11 23:01:49 | 000,000,000 | ---D | C] -- C:\Users\Frederik\Desktop\The Edgar Wasser Freetrack Collection
[2011.12.09 16:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2011.12.09 16:42:48 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2011.12.07 23:22:41 | 000,000,000 | ---D | C] -- C:\Users\Frederik\Documents\My Art
[2011.12.07 23:18:35 | 000,000,000 | ---D | C] -- C:\Users\Frederik\Documents\NPS
[2011.12.07 23:18:25 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Suite
[2011.12.07 23:18:24 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Roaming\PC Suite
[2011.12.07 23:13:20 | 000,090,624 | ---- | C] (Nokia) -- C:\Windows\System32\nmwcdcls.dll
[2011.12.07 23:13:13 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011.12.07 23:13:11 | 000,021,632 | ---- | C] (Nokia) -- C:\Windows\System32\drivers\pccsmcfd.sys
[2011.12.07 23:13:06 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2011.12.07 23:12:31 | 000,121,856 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ss_bmdm.sys
[2011.12.07 23:12:31 | 000,090,112 | ---- | C] (MCCI) -- C:\Windows\System32\drivers\ss_bbus.sys
[2011.12.07 23:12:31 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ss_bmdfl.sys
[2011.12.07 23:12:31 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ss_bwhnt.sys
[2011.12.07 23:12:31 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ss_bwh.sys
[2011.12.07 23:12:31 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ss_bcmnt.sys
[2011.12.07 23:12:31 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ss_bcm.sys
[2011.12.07 23:10:30 | 000,000,000 | ---D | C] -- C:\Windows\System32\Samsung_USB_Drivers
[2011.12.07 23:10:10 | 000,233,472 | ---- | C] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
[2011.12.07 23:10:10 | 000,000,000 | ---D | C] -- C:\Users\Frederik\Documents\My NPS Files
[2011.12.07 23:09:52 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Roaming\Samsung
[2011.12.07 23:07:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung New PC Studio
[2011.12.07 23:07:16 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2011.12.07 23:07:13 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2011.12.07 23:06:41 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2011.12.07 23:04:26 | 000,000,000 | ---D | C] -- C:\Users\Frederik\AppData\Local\Downloaded Installations
[2011.11.21 00:08:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
 
========== Files - Modified Within 30 Days ==========
 
[2011.12.18 21:41:15 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Frederik\Desktop\OTL.exe
[2011.12.18 20:46:44 | 000,088,379 | ---- | M] () -- C:\Users\Frederik\Desktop\Troja 2.png
[2011.12.18 20:40:55 | 000,048,714 | ---- | M] () -- C:\Users\Frederik\Desktop\Troja.png
[2011.12.18 20:40:45 | 000,125,222 | ---- | M] () -- C:\Users\Frederik\Desktop\Unbenannt.png
[2011.12.18 20:30:00 | 000,009,600 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.12.18 20:30:00 | 000,009,600 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.12.18 18:59:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.12.17 21:48:19 | 000,012,172 | ---- | M] () -- C:\Users\Frederik\Desktop\Notizen.odt
[2011.12.17 20:43:09 | 000,012,705 | ---- | M] () -- C:\Users\Frederik\Desktop\neue welt.odt
[2011.12.17 18:06:35 | 000,946,550 | ---- | M] () -- C:\Windows\Diercke Globus Online Uninstaller.exe
[2011.12.17 18:06:35 | 000,002,008 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DGO-Interface-01.lnk
[2011.12.17 18:06:35 | 000,001,119 | ---- | M] () -- C:\Users\Public\Desktop\Diercke Globus Online.lnk
[2011.12.17 18:05:50 | 006,035,644 | ---- | M] () -- C:\Users\Frederik\Desktop\DierckeGlobusOnline.exe
[2011.12.16 23:08:09 | 000,004,675 | ---- | M] () -- C:\Users\Frederik\Desktop\sdtzuikl.RPP
[2011.12.16 21:41:41 | 000,654,166 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.12.16 21:41:41 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.12.16 21:41:41 | 000,130,006 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.12.16 21:41:41 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.12.16 21:35:14 | 2411,888,640 | -HS- | M] () -- C:\hiberfil.sys
[2011.12.15 14:29:06 | 000,004,675 | ---- | M] () -- C:\Users\Frederik\Desktop\Heese Interview.RPP
[2011.12.15 12:54:53 | 000,004,675 | ---- | M] () -- C:\Users\Frederik\Desktop\Heese Interview.RPP-bak
[2011.12.15 00:20:10 | 000,024,288 | ---- | M] () -- C:\Users\Frederik\Desktop\Heese interview.odt
[2011.12.14 23:49:30 | 000,000,879 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2011.12.14 23:47:35 | 008,531,968 | ---- | M] () -- C:\Users\Frederik\Desktop\SteamInstall_German.msi
[2011.12.14 23:00:37 | 000,000,789 | ---- | M] () -- C:\Users\Frederik\Desktop\subscribe.miro
[2011.12.14 22:58:40 | 000,002,132 | ---- | M] () -- C:\Users\Public\Desktop\Miro.lnk
[2011.12.14 22:57:35 | 041,006,931 | ---- | M] () -- C:\Users\Frederik\Desktop\Miro_Installer.exe
[2011.12.14 22:52:23 | 000,001,492 | ---- | M] () -- C:\user.js
[2011.12.14 22:51:52 | 000,243,768 | ---- | M] (Premium) -- C:\Users\Frederik\Desktop\DownloadSetup (64).exe
[2011.12.14 22:45:24 | 000,032,043 | ---- | M] () -- C:\Users\Frederik\Desktop\heese.odt
[2011.12.11 23:01:31 | 017,274,589 | ---- | M] () -- C:\Users\Frederik\Desktop\The Edgar Wasser Freetrack Collection.zip
[2011.12.11 11:27:40 | 000,032,512 | ---- | M] () -- C:\Users\Frederik\Desktop\auy.odt
[2011.12.11 10:32:16 | 000,151,840 | ---- | M] () -- C:\Users\Frederik\Desktop\makeITfair_summaries_platina_D.pdf
[2011.12.11 10:32:06 | 000,206,018 | ---- | M] () -- C:\Users\Frederik\Desktop\makeITfair_summaries_cobalt_D.pdf
[2011.12.11 10:31:56 | 000,235,478 | ---- | M] () -- C:\Users\Frederik\Desktop\makeITfair_summaries_tin_D.pdf
[2011.12.11 10:31:50 | 000,130,293 | ---- | M] () -- C:\Users\Frederik\Desktop\makeITfair_summary_gender_D_www.pdf
[2011.12.11 10:31:39 | 000,179,318 | ---- | M] () -- C:\Users\Frederik\Desktop\sum_STD_D.pdf
[2011.12.11 10:31:34 | 000,244,342 | ---- | M] () -- C:\Users\Frederik\Desktop\sum_PLR_D.pdf
[2011.12.11 10:31:23 | 000,222,202 | ---- | M] () -- C:\Users\Frederik\Desktop\sum_CLR_D.pdf
[2011.12.09 16:56:40 | 000,318,369 | ---- | M] () -- C:\Users\Frederik\Desktop\HiJackThis.zip
[2011.12.09 16:42:48 | 000,002,979 | ---- | M] () -- C:\Users\Frederik\Desktop\test.com.lnk
[2011.12.09 16:41:32 | 001,402,880 | ---- | M] () -- C:\Users\Frederik\Desktop\HiJackThis.msi
[2011.12.09 10:25:17 | 000,010,464 | ---- | M] () -- C:\Users\Frederik\Desktop\arbeiter ausbeutung.odt
[2011.12.09 09:52:00 | 000,034,331 | ---- | M] () -- C:\Users\Frederik\Desktop\Frauentextil.pdf
[2011.12.09 09:51:08 | 001,571,087 | ---- | M] () -- C:\Users\Frederik\Desktop\0,4906,19007,00.pdf
[2011.12.07 23:07:55 | 000,002,120 | ---- | M] () -- C:\Users\Public\Desktop\Samsung New PC Studio.lnk
 
========== Files Created - No Company Name ==========
 
[2011.12.18 20:46:44 | 000,088,379 | ---- | C] () -- C:\Users\Frederik\Desktop\Troja 2.png
[2011.12.18 20:40:55 | 000,048,714 | ---- | C] () -- C:\Users\Frederik\Desktop\Troja.png
[2011.12.18 20:40:45 | 000,125,222 | ---- | C] () -- C:\Users\Frederik\Desktop\Unbenannt.png
[2011.12.17 20:41:48 | 000,012,705 | ---- | C] () -- C:\Users\Frederik\Desktop\neue welt.odt
[2011.12.17 18:06:35 | 000,002,008 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DGO-Interface-01.lnk
[2011.12.17 18:06:35 | 000,001,119 | ---- | C] () -- C:\Users\Public\Desktop\Diercke Globus Online.lnk
[2011.12.17 18:06:34 | 000,946,550 | ---- | C] () -- C:\Windows\Diercke Globus Online Uninstaller.exe
[2011.12.17 18:05:48 | 006,035,644 | ---- | C] () -- C:\Users\Frederik\Desktop\DierckeGlobusOnline.exe
[2011.12.16 23:08:09 | 000,004,675 | ---- | C] () -- C:\Users\Frederik\Desktop\sdtzuikl.RPP
[2011.12.15 12:54:53 | 000,004,675 | ---- | C] () -- C:\Users\Frederik\Desktop\Heese Interview.RPP-bak
[2011.12.15 12:54:53 | 000,004,675 | ---- | C] () -- C:\Users\Frederik\Desktop\Heese Interview.RPP
[2011.12.15 00:20:08 | 000,024,288 | ---- | C] () -- C:\Users\Frederik\Desktop\Heese interview.odt
[2011.12.14 23:49:30 | 000,000,879 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2011.12.14 23:47:30 | 008,531,968 | ---- | C] () -- C:\Users\Frederik\Desktop\SteamInstall_German.msi
[2011.12.14 23:00:37 | 000,000,789 | ---- | C] () -- C:\Users\Frederik\Desktop\subscribe.miro
[2011.12.14 22:58:40 | 000,002,132 | ---- | C] () -- C:\Users\Public\Desktop\Miro.lnk
[2011.12.14 22:55:53 | 041,006,931 | ---- | C] () -- C:\Users\Frederik\Desktop\Miro_Installer.exe
[2011.12.14 22:52:20 | 000,001,492 | ---- | C] () -- C:\user.js
[2011.12.11 23:00:56 | 017,274,589 | ---- | C] () -- C:\Users\Frederik\Desktop\The Edgar Wasser Freetrack Collection.zip
[2011.12.11 11:27:37 | 000,032,512 | ---- | C] () -- C:\Users\Frederik\Desktop\auy.odt
[2011.12.11 10:32:16 | 000,151,840 | ---- | C] () -- C:\Users\Frederik\Desktop\makeITfair_summaries_platina_D.pdf
[2011.12.11 10:32:06 | 000,206,018 | ---- | C] () -- C:\Users\Frederik\Desktop\makeITfair_summaries_cobalt_D.pdf
[2011.12.11 10:31:56 | 000,235,478 | ---- | C] () -- C:\Users\Frederik\Desktop\makeITfair_summaries_tin_D.pdf
[2011.12.11 10:31:50 | 000,130,293 | ---- | C] () -- C:\Users\Frederik\Desktop\makeITfair_summary_gender_D_www.pdf
[2011.12.11 10:31:39 | 000,179,318 | ---- | C] () -- C:\Users\Frederik\Desktop\sum_STD_D.pdf
[2011.12.11 10:31:34 | 000,244,342 | ---- | C] () -- C:\Users\Frederik\Desktop\sum_PLR_D.pdf
[2011.12.11 10:31:23 | 000,222,202 | ---- | C] () -- C:\Users\Frederik\Desktop\sum_CLR_D.pdf
[2011.12.09 16:56:40 | 000,318,369 | ---- | C] () -- C:\Users\Frederik\Desktop\HiJackThis.zip
[2011.12.09 16:42:48 | 000,002,979 | ---- | C] () -- C:\Users\Frederik\Desktop\test.com.lnk
[2011.12.09 16:41:32 | 001,402,880 | ---- | C] () -- C:\Users\Frederik\Desktop\HiJackThis.msi
[2011.12.09 10:19:13 | 000,010,464 | ---- | C] () -- C:\Users\Frederik\Desktop\arbeiter ausbeutung.odt
[2011.12.09 09:52:00 | 000,034,331 | ---- | C] () -- C:\Users\Frederik\Desktop\Frauentextil.pdf
[2011.12.09 09:51:07 | 001,571,087 | ---- | C] () -- C:\Users\Frederik\Desktop\0,4906,19007,00.pdf
[2011.12.08 22:24:51 | 000,032,043 | ---- | C] () -- C:\Users\Frederik\Desktop\heese.odt
[2011.12.07 23:10:10 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2011.12.07 23:10:10 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2011.12.07 23:07:55 | 000,002,120 | ---- | C] () -- C:\Users\Public\Desktop\Samsung New PC Studio.lnk
[2011.05.31 07:39:50 | 000,058,368 | ---- | C] () -- C:\Windows\System32\bdmpegv.dll
[2011.05.31 07:38:18 | 000,015,360 | ---- | C] () -- C:\Windows\System32\bdmjpeg.dll
[2011.02.21 23:03:44 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011.02.08 17:04:48 | 000,007,601 | ---- | C] () -- C:\Users\Frederik\AppData\Local\Resmon.ResmonCfg
[2011.01.05 15:21:35 | 000,057,682 | ---- | C] () -- C:\Users\Frederik\AppData\Roaming\SQLite3.dll
[2009.07.14 09:47:43 | 000,654,166 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2009.07.14 09:47:43 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2009.07.14 09:47:43 | 000,130,006 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2009.07.14 09:47:43 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2009.07.14 05:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 05:33:53 | 000,289,720 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009.07.14 03:05:48 | 000,616,008 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009.07.14 03:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009.07.14 03:05:48 | 000,106,388 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009.07.14 03:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009.07.14 03:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009.07.14 03:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009.07.14 01:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009.07.14 00:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009.07.14 00:36:08 | 000,193,024 | ---- | C] () -- C:\Windows\System32\sppcomapi.dll
[2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2005.12.13 23:24:39 | 000,017,245 | -H-- | C] () -- C:\Users\Frederik\AppData\Roaming\logs.dat
 
========== LOP Check ==========
 
[2011.06.09 17:15:23 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\.minecraft
[2011.07.24 23:27:01 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Auslogics
[2011.12.14 22:52:13 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Babylon
[2011.12.17 18:06:38 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Diercke Globus Online
[2011.02.12 23:25:48 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\DMCache
[2011.09.07 16:37:23 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Guitar Pro 6
[2011.11.09 23:01:29 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\ICQ
[2011.02.06 13:12:32 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\IDM
[2011.08.24 06:12:07 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Jens Lorek
[2011.01.05 17:52:31 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\LolClient
[2011.07.24 15:10:10 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\NCH Swift Sound
[2011.09.11 01:18:20 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\OpenCandy
[2011.01.05 21:12:45 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\OpenOffice.org
[2011.01.05 15:02:45 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Opera
[2011.12.14 22:58:43 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Participatory Culture Foundation
[2011.12.07 23:18:24 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\PC Suite
[2011.12.14 23:28:19 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\PCF-VLC
[2011.05.12 18:25:31 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Propellerhead Software
[2011.04.06 14:47:03 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\REAPER
[2011.12.07 23:09:52 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\Samsung
[2011.11.21 21:32:18 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\TS3Client
[2011.01.08 19:13:27 | 000,000,000 | ---D | M] -- C:\Users\Frederik\AppData\Roaming\TubeBox
[2011.06.30 14:45:41 | 000,032,630 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 

< End of report >
--- --- ---


Extras.Txt:OTL Logfile:
Code:
OTL Extras logfile created on: 18.12.2011 21:43:11 - Run 1
OTL by OldTimer - Version 3.2.31.0    Folder = C:\Users\Frederik\Desktop
 Professional  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,99 Gb Total Physical Memory | 2,26 Gb Available Physical Memory | 75,42% Memory free
5,99 Gb Paging File | 4,98 Gb Available in Paging File | 83,13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 278,02 Gb Total Space | 87,31 Gb Free Space | 31,40% Space Free | Partition Type: NTFS
Drive E: | 20,06 Gb Total Space | 6,27 Gb Free Space | 31,27% Space Free | Partition Type: FAT32
 
Computer Name: FREDERIK-PC | User Name: Frederik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1" = Guitar Pro 6
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{24F5BFDD-18E0-41F6-8A68-A22C742FC4A1}" = TubeBox!
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 26
"{289AC7E0-0AEE-4a7b-913C-709D9803D23E}" = Nexon Game Manager
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D1E61D1-1395-4E97-997F-D002DB3A5074}" = OpenOffice.org 3.2
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Deutsch
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3F696A6-98D9-438E-B942-B498087C015B}_is1" = Trendpoker 3D - Texas Hold'em Poker - DEMO
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows-Treiberpaket - Nokia pccsmcfd  (10/12/2007 6.85.4.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Akamai" = Akamai NetSession Interface Service
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BabylonToolbar" = Babylon toolbar on IE
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"CCleaner" = CCleaner
"DealPly" = DealPly
"Diercke Globus Online" = Diercke Globus Online
"HDD Health_is1" = HDD Health v2.1 Beta
"ICQToolbar" = ICQ Toolbar
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Miro" = Miro
"Opera 11.60.1185" = Opera 11.60
"PokerStars" = PokerStars
"RealPoker_is1" = Real Poker
"REAPER" = REAPER
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver Drive" = Samsung Mobile phone USB driver Drive Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Vindictus EU" = Vindictus EU
"VLC media player" = VLC media player 1.1.11
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 14.12.2011 17:52:00 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 17:52:06 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 17:52:34 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 17:52:57 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 17:53:35 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 17:53:35 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 17:59:40 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 18:51:05 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 14.12.2011 19:19:16 | Computer Name = Frederik-PC | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\system32\conhost.exe".
Die
 abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16816""
 konnte nicht gefunden werden.  Verwenden Sie für eine detaillierte Diagnose das Programm
 "sxstrace.exe".
 
Error - 15.12.2011 02:14:27 | Computer Name = Frederik-PC | Source = Winlogon | ID = 4103
Description = Fehler bei der Windows-Lizenzaktivierung. Fehler 0x80070005.
 
[ System Events ]
Error - 25.07.2011 13:11:09 | Computer Name = Frederik-PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "SPP-Benachrichtigungsdienst" wurde mit folgendem Fehler
 beendet:  %%5
 
Error - 25.07.2011 14:11:09 | Computer Name = Frederik-PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "SPP-Benachrichtigungsdienst" wurde mit folgendem Fehler
 beendet:  %%5
 
Error - 25.07.2011 14:16:04 | Computer Name = Frederik-PC | Source = Service Control Manager | ID = 7031
Description = Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet
 beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden
 in 30000 Millisekunden durchgeführt: Neustart des Diensts.
 
Error - 25.07.2011 15:11:09 | Computer Name = Frederik-PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "SPP-Benachrichtigungsdienst" wurde mit folgendem Fehler
 beendet:  %%5
 
Error - 25.07.2011 15:28:10 | Computer Name = Frederik-PC | Source = DCOM | ID = 10010
Description =
 
Error - 25.07.2011 16:23:54 | Computer Name = Frederik-PC | Source = BTHUSB | ID = 327697
Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen
 und wird nicht verwendet. Der Treiber wurde entladen.
 
Error - 25.07.2011 16:42:42 | Computer Name = Frederik-PC | Source = BTHUSB | ID = 327697
Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen
 und wird nicht verwendet. Der Treiber wurde entladen.
 
Error - 25.07.2011 17:08:20 | Computer Name = Frederik-PC | Source = BTHUSB | ID = 327697
Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen
 und wird nicht verwendet. Der Treiber wurde entladen.
 
Error - 25.07.2011 17:56:44 | Computer Name = Frederik-PC | Source = BTHUSB | ID = 327697
Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen
 und wird nicht verwendet. Der Treiber wurde entladen.
 
Error - 25.07.2011 18:44:38 | Computer Name = Frederik-PC | Source = BTHUSB | ID = 327697
Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen
 und wird nicht verwendet. Der Treiber wurde entladen.
 
 
< End of report >
--- --- ---

markusg 19.12.2011 13:09
Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!
Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich
ziehen und eine Bereinigung der Infektion noch erschweren.

Bitte downloade dir Combofix.exe und speichere es unbedingt auf deinem Desktop.
  • Besuche folgende Seite für Downloadlinks und Anweisungen für dieses
    Tool

    Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Hinweis:
    Gehe sicher das all deine Anti Virus und Anti Malware Programme abgeschalten sind, damit diese Combofix nicht bei der Arbeit stören.
  • Poste bitte die C:\Combofix.txt in deiner nächsten Antwort.


Alle Zeitangaben in WEZ +1. Es ist jetzt 20:16 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55