Hallo,
CPU liegt an meinem PC fast nur noch bei 100%.
Das ist nicht normal.
Hatte letzte Woche einen Malwarevirus auf meinem PC, Windows Security 2012.
Habe daraufhin dieselbe Festplatte neu mit Windows Vista aufgespielt, allerdings nur schnell formatiert - mithilfe der Vista Option vor Installation des Betriebssystems.
Den freien Speicher habe ich sicher gelöscht, nachdem ich Vista fertig installiert hatte.
Betriebssystem: Windows Vista, 32-Bit
Was hat Fraunhofer Institut auf meinem PC zu suchen?
Das steht in OTL.Text
Danke schonmal im Voraus.
Gruß
______________________________________________
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 03:24 on 28/12/2011 (PC)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
OTL EXTRAS Logfile:
Code:
OTL Extras logfile created on: 28.12.2011 03:25:49 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\PC\Desktop
Windows Vista Business Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
1,99 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,26% Memory free
4,22 Gb Paging File | 2,77 Gb Available in Paging File | 65,67% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 69,12 Gb Total Space | 38,49 Gb Free Space | 55,68% Space Free | Partition Type: NTFS
Drive D: | 117,19 Gb Total Space | 117,10 Gb Free Space | 99,92% Space Free | Partition Type: NTFS
Drive F: | 931,51 Gb Total Space | 468,94 Gb Free Space | 50,34% Space Free | Partition Type: NTFS
Computer Name: COMPUTER | User Name: PC | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{BAB9F3E3-BB73-406E-A50A-89B81D43CA56}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{D43E5E51-0123-4695-8603-6624A6076D3C}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{47E97D6A-4B8C-4F7C-A1BF-D2CA13AE7815}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"{904565C6-83A4-41A8-ACB0-B0C58A789EE1}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{BAC518E5-C493-4A69-ACF8-2B0441446414}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{E67E797F-BCC3-46AB-A9DD-910331B1DDFA}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83216030FF}" = Java(TM) 6 Update 30
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4EAB2511-0135-48CA-A47B-CE1E6836793A}" = COMODO Internet Security
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6F295581-2F20-431B-8EF3-2F58C413D3B1}" = O&O SafeErase Professional
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Deutsch
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D64833F8-860D-4216-8EDC-DD08AD68C0B5}" = LibreOffice 3.4
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"aTube Catcher" = aTube Catcher
"Avira AntiVir Desktop" = Avira Free Antivirus
"CCleaner" = CCleaner
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 9.1.0 Home Edition
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Plattform-Geräte-Manager
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox 9.0.1 (x86 de)" = Mozilla Firefox 9.0.1 (x86 de)
"Opera 11.60.1185" = Opera 11.60
"PhotoScape" = PhotoScape
"Polipo" = Polipo 1.0.4.1
"Recuva" = Recuva
"SeaMonkey (2.6.1)" = SeaMonkey (2.6.1)
"Secure Eraser_is1" = Secure Eraser v4.0
"Tor" = Tor 0.2.2.35
"Vidalia" = Vidalia 0.2.15
"VLC media player" = VLC media player 1.1.11
"Winamp" = Winamp
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite" = Windows Live Essentials
"xp-AntiSpy" = xp-AntiSpy 3.98-1
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 27.12.2011 07:23:21 | Computer Name = COMPUTER | Source = Windows Search Service | ID = 3013
Description =
Error - 27.12.2011 07:57:49 | Computer Name = COMPUTER | Source = Windows Search Service | ID = 3013
Description =
Error - 27.12.2011 14:17:16 | Computer Name = COMPUTER | Source = Application Hang | ID = 1002
Description = Programm gimp-2.6.exe, Version 0.0.0.0 arbeitet nicht mehr mit Windows
zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen
für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem
zu suchen. Prozess-ID: c6c Anfangszeit: 01ccc4c39dad1242 Zeitpunkt der Beendigung:
31
Error - 27.12.2011 14:54:50 | Computer Name = COMPUTER | Source = Windows Search Service | ID = 3013
Description =
Error - 27.12.2011 14:54:50 | Computer Name = COMPUTER | Source = Windows Search Service | ID = 3013
Description =
Error - 27.12.2011 14:54:50 | Computer Name = COMPUTER | Source = Windows Search Service | ID = 3013
Description =
Error - 27.12.2011 17:14:33 | Computer Name = COMPUTER | Source = Windows Search Service | ID = 3013
Description =
Error - 27.12.2011 17:59:03 | Computer Name = COMPUTER | Source = WinMgmt | ID = 10
Description =
Error - 27.12.2011 18:04:59 | Computer Name = COMPUTER | Source = WinMgmt | ID = 10
Description =
Error - 27.12.2011 21:49:57 | Computer Name = COMPUTER | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 24.12.2011 12:49:27 | Computer Name = COMPUTER | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =
Error - 24.12.2011 13:38:48 | Computer Name = COMPUTER | Source = DCOM | ID = 10010
Description =
Error - 24.12.2011 13:45:00 | Computer Name = COMPUTER | Source = HTTP | ID = 15016
Description =
Error - 24.12.2011 14:10:51 | Computer Name = COMPUTER | Source = HTTP | ID = 15016
Description =
Error - 24.12.2011 14:45:06 | Computer Name = COMPUTER | Source = VDS Dynamic Provider | ID = 16908298
Description =
Error - 24.12.2011 15:13:18 | Computer Name = COMPUTER | Source = Service Control Manager | ID = 7030
Description =
Error - 24.12.2011 15:22:50 | Computer Name = COMPUTER | Source = DCOM | ID = 10010
Description =
Error - 24.12.2011 15:25:54 | Computer Name = COMPUTER | Source = HTTP | ID = 15016
Description =
Error - 24.12.2011 15:27:15 | Computer Name = COMPUTER | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =
Error - 24.12.2011 16:31:20 | Computer Name = COMPUTER | Source = DCOM | ID = 10010
Description =
< End of report >
--- --- ---
--- Den OTL Text 2 kopiere ich jetzt gleich hierunter ---
Edit by cad: Beiträge zusammengelegt/entfernt, Log angehängt und Thread verschoben
