Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Fehler in der Fire Fox Console und Link Fehler

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 25.06.2010, 10:05   #1
eltown
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



Hallo,
seit ein paar Tagen habe ich folgendes Problem mit Fire Fox:

Öffnen mit FF war nicht möglich. Das Bild blieb leer. Erst nach einem Start im abgesicherten Modus war möglich.
In der Fehlerkonsole sind folgende Fehler sichtbar:

Fehler: uncaught exception: [Exception... "Component returned failure code: 0x80004003 (NS_ERROR_INVALID_POINTER) [nsIDOMXULElement.insertBefore]" nsresult: "0x80004003 (NS_ERROR_INVALID_POINTER)" location: "JS frame :: chrome://ietab2/content/ietabOverlay.js :: anonymous :: line 607" data: no]

Sicherheitsfehler: Inhalt auf hxxp://googleads.g.doubleclick.net/ darf keine Daten von hxxp://www.funkmeldesystem.de/foren/index.php laden.

Fehler: <hxxp://googleads.g.doubleclick.net> wurde die Erlaubnis für den Aufruf der Methode Location.toString auf <hxxp://www.funkmeldesystem.de> verweigert.

Warnung: captureEvents() sollte nicht mehr verwendet werden, verwenden Sie die addEventListener()-Methode aus DOM 2. Weitere Hilfe finden Sie unter hxxp://developer.mozilla.org/en/docs/DOM…ddEventListenerQuelldatei: hxxp://s4.crazyfarm.de/Zeile: 0

Warnung: Fehler beim Verarbeiten des Wertes für 'filter'. Deklaration ignoriert.Quelldatei: https://developer.mozilla.org/skins/mozi….7.2.custom.cssZeile: 18

Warnung: Unbekannte Eigenschaft 'align'. Deklaration ignoriert.Quelldatei: https://developer.mozilla.org/skins/mozilla/Fox3/css.php
Zeile: 1

Fehler: Kein Element gefunden
Quelldatei: hxxp://www.browser1.de/browser-forum/ind…n=CronjobsExec&
Zeile: 1

Jedes öffnen eines neuen Links gibt eine neue Fehlermeldung:

Warnung: Deklaration erwartet, aber '/' gefunden. Übersprungen bis zur nächsten Deklaration
Quelldatei: hxxp://www.feuerwehren-limburg-weilburg.…ss/template.css
Zeile: 274

Bei einer Trojanerüberrüfung wurden 3 Trojaner mit Malwarebytes gefunden und auch beseitigt.
------------
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Datenbank Version: 4230

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18928

23.06.2010 22:57:45
mbam-log-2010-06-23 (22-57-45).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 124213
Laufzeit: 5 Minute(n), 56 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 1
Infizierte Registrierungswerte: 1
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 1

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\getdo (Trojan.Agent) -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Users\ebi\AppData\Roaming\Adobe\Update\flacor.dat (Trojan.Agent) -> Quarantined and deleted successfully.
--

Trotz der Trojanerbeseitigung treten die Fehler in der Fehlerkonsole weiterhin auf.

Ein Mozilla Absturz erfolgt bei dem Link: hxxp://support.mozilla.com/de/kb/Allgemeine+Fehlersuche

Eine Wiederherstellung is nicht möglich, der Bildschirm bleibt leer bis auf diese Meldung: sessionrestore


Wie kann ich den Rechner wieder "sauber" bekommen damit die Fehlerkonsole mit FF wieder sauber ist und FF wieder einwandfrei arbeitet ??

mfg
eltown

Geändert von eltown (25.06.2010 um 10:19 Uhr)

Alt 25.06.2010, 10:50   #2
markusg
/// Malware-holic
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



hallo, wenn du onlinebanking oder sonstige geldgeschefte am pc betreibst, rufe die bank an, wenn du nen sauberen pc zur verfügung hast, endere sofort alle passwörter und nutze die an dem pc nicht. außerdem würde ich dir dann dringenst raten, dein system neu aufzusetzen und wenn du keinen anderen pc zur verfügung hast,dann von dem neu aufgesetzten die pws zu endern, da du einen nicht zu unterschetzenen trojaner hast.
wenn du dennoch bereinigen möchtest:
ootl:
Systemscan mit OTL
download otl:
http://filepony.de/download-otl/

Doppelklick auf die OTL.exe
(user von Windows 7 und Vista: Rechtsklick als Administrator ausführen)
1. Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
2. Hake an "scan all users"
3. Unter "Extra Registry wähle:
"Use Safelist" "LOP Check" "Purity Check"
4. Kopiere in die Textbox:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
CREATERESTOREPOINT
5. Klicke "Scan"
6. 2 reporte werden erstellt:
OTL.Txt
Extras.Txt

poste beide.
__________________


Alt 26.06.2010, 10:45   #3
eltown
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



Hallo Markus,
ich habe versucht dir 2 PN's zu schicken, sie wurden als "Versendet" bestätigt, jedoch wurden beide nicht in den privaten Nachrichten als "gesendet" markiert und die gesendeten Nachrichten stehen nach wie vor auf Null.

Ich wollte fragen, ob ich die beiden Log Dateien (sehr umfangreich) hier einfach senden soll oder als PN (was aber offensichtlich nicht funktioniert)
mfg
eltown
__________________

Geändert von eltown (26.06.2010 um 10:54 Uhr)

Alt 26.06.2010, 13:20   #4
eltown
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



Hi,
hier die erste Log Datei:
OTL.txt


OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 26.06.2010 11:03:04 - Run 4
OTL by OldTimer - Version 3.2.7.0     Folder = D:\@DOWNLOADS
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18928)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 46,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 94,16 Gb Total Space | 56,20 Gb Free Space | 59,68% Space Free | Partition Type: NTFS
Drive D: | 46,10 Gb Total Space | 28,83 Gb Free Space | 62,55% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 149,05 Gb Total Space | 37,85 Gb Free Space | 25,39% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: EBI-PC
Current User Name: ebi
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Processes (SafeList) ==========
 
PRC - D:\@DOWNLOADS\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Programme\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Programme\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Programme\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Programme\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation)
PRC - \\?\C:\Windows\System32\wbem\WMIADAP.EXE ()
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe (Fujitsu Technology Solutions)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Programme\FRITZ!DSL\StCenter.exe (AVM Berlin)
PRC - C:\Programme\FRITZ!DSL\FwebProt.exe (AVM Berlin)
PRC - C:\Programme\FRITZ!DSL\IGDCTRL.EXE (AVM Berlin)
PRC - C:\Windows\vsnpstd3.exe ()
 
 
========== Modules (SafeList) ==========
 
MOD - D:\@DOWNLOADS\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (de_serv) --  File not found
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (getPlusHelper) getPlus(R) -- C:\Programme\NOS\bin\getPlus_Helper.dll (NOS Microsystems Ltd.)
SRV - (aspnet_state) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe (Microsoft Corporation)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (NetTcpPortSharing) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
SRV - (NetTcpActivator) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
SRV - (NetPipeActivator) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
SRV - (NetMsmqActivator) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (TomTomHOMEService) -- C:\Programme\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (TestHandler) -- C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe (Fujitsu Technology Solutions)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (IGDCTRL) -- C:\Program Files\FRITZ!DSL\IGDCTRL.EXE (AVM Berlin)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (KMWDFILTER) -- C:\Windows\System32\drivers\KMWDFILTER.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (FWLANUSB) -- C:\Windows\System32\drivers\fwlanusb.sys (AVM GmbH)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (silabser) -- C:\Windows\System32\drivers\silabser.sys (Silicon Laboratories)
DRV - (silabenm) -- C:\Windows\System32\drivers\silabenm.sys (Silicon Laboratories, Inc.)
DRV - (nvsmu) -- C:\Windows\System32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (ahcix86s) -- C:\Windows\system32\drivers\ahcix86s.sys (AMD Technologies Inc.)
DRV - (JRAID) -- C:\Windows\system32\drivers\jraid.sys (JMicron Technology Corp.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (iaStor) -- C:\Windows\system32\drivers\iastor.sys (Intel Corporation)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (SNPSTD3) USB PC Camera (SNPSTD3) -- C:\Windows\System32\drivers\snpstd3.sys (Sonix Co. Ltd.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (QCDonner) Logitech QuickCam Express(PID_0840) -- C:\Windows\System32\drivers\lvcd.sys (Logitech Inc.)
DRV - (odysseyIM3) -- C:\Windows\System32\drivers\odysseyIM3.sys (Funk Software, Inc.)
DRV - (Sunplus) -- C:\Windows\System32\drivers\Bulk504.sys (Sunplus)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD
 
 
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-1850306280-2530017440-1367753937-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKU\S-1-5-21-1850306280-2530017440-1367753937-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKU\S-1-5-21-1850306280-2530017440-1367753937-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledItems: {E78313ED-E64C-451B-9B5F-8A66A8D08A64}:2.5.10.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.4\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.06.23 12:16:47 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.4\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.06.23 12:16:47 | 000,000,000 | ---D | M]
 
[2009.12.17 11:31:52 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\mozilla\Extensions
[2009.12.17 11:31:52 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2010.06.26 09:56:57 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\mozilla\Firefox\Profiles\ggq9c5zr.default\extensions
[2010.04.27 16:49:35 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\ebi\AppData\Roaming\mozilla\Firefox\Profiles\ggq9c5zr.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.06.18 18:09:39 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\ebi\AppData\Roaming\mozilla\Firefox\Profiles\ggq9c5zr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010.06.17 12:39:16 | 000,000,000 | ---D | M] (FireFox accelerator) -- C:\Users\ebi\AppData\Roaming\mozilla\Firefox\Profiles\ggq9c5zr.default\extensions\{E78313ED-E64C-451B-9B5F-8A66A8D08A64}
[2010.06.18 16:25:51 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2010.06.18 18:08:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.06.18 18:08:20 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.04.01 18:54:38 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.04.01 18:54:38 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.04.01 18:54:38 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.04.01 18:54:38 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.04.01 18:54:38 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programme\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Windows Live ID-Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-1850306280-2530017440-1367753937-1000\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Programme\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [snpstd3] C:\Windows\vsnpstd3.exe ()
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKU\.DEFAULT..\Run: [fsc-reg] c:\fsc-reg\fscreg.exe (Fujitsu Siemens)
O4 - HKU\S-1-5-18..\Run: [fsc-reg] c:\fsc-reg\fscreg.exe (Fujitsu Siemens)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\FRITZ!DSL\\sarah.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\FRITZ!DSL\sarah.dll (AVM Berlin)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\FRITZ!DSL\sarah.dll (AVM Berlin)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\FRITZ!DSL\sarah.dll (AVM Berlin)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\FRITZ!DSL\sarah.dll (AVM Berlin)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-1850306280-2530017440-1367753937-1000\..Trusted Domains: fritz.box ([]* in Lokales Intranet)
O15 - HKU\S-1-5-21-1850306280-2530017440-1367753937-1000\..Trusted Ranges: Range1 ([*] in Lokales Intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\ebi\Pictures\Ibis 33x.jpg
O24 - Desktop BackupWallPaper: C:\Users\ebi\Pictures\Ibis 33x.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.08.09 03:48:30 | 000,000,039 | ---- | M] () - F:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{4cf4ded0-ea90-11de-8041-806e6f6e6963}\Shell\AutoRun\command - "" = F:\InstallTomTomHOME.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
NetSvcs: FastUserSwitchingCompatibility -  File not found
NetSvcs: Ias - C:\Windows\System32\ias [2008.01.21 04:46:39 | 000,000,000 | ---D | M]
NetSvcs: Nla -  File not found
NetSvcs: Ntmssvc -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: SRService -  File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp -  File not found
NetSvcs: LogonHours -  File not found
NetSvcs: PCAudit -  File not found
NetSvcs: helpsvc -  File not found
NetSvcs: uploadmgr -  File not found
 
MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FRITZ!DSL Startcenter.lnk - C:\Windows\Installer\{2457326B-C110-40C3-89B0-889CC913871A}\Icon2457326B4.exe - ()
MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk - C:\Programme\Microsoft Office\Office\OSA9.EXE - (Microsoft Corporation)
MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk - C:\Programme\WinZip\WZQKPICK.EXE - (WinZip Computing, Inc. and H.C. Top Systems B.V.)
MsConfig - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: AutoStart PC Studio - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NewPCStudio.exe File not found
MsConfig - StartUpReg: AutoStartNPSAgent - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe File not found
MsConfig - StartUpReg: AVMFBoxMonitor - hkey= - key= - C:\Program Files\FRITZ!Box Monitor\FRITZBoxMonitor.exe File not found
MsConfig - StartUpReg: Google EULA Launcher - hkey= - key= - c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe ( )
MsConfig - StartUpReg: kuukg - hkey= - key= - c:\users\ebi\appdata\local\kuukg.exe File not found
MsConfig - StartUpReg: NeroFilterCheck - hkey= - key= - C:\Programme\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
MsConfig - StartUpReg: NPCTray - hkey= - key= - C:\Program Files\Norman\npc\bin\npc_tray.exe File not found
MsConfig - StartUpReg: TomTomHOME.exe - hkey= - key= - C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
MsConfig - StartUpReg: tsnpstd3 - hkey= - key= - C:\Windows\tsnpstd3.exe (SONIX)
MsConfig - StartUpReg: Windows Defender - hkey= - key= -  File not found
MsConfig - State: "startup" - 2
 
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS -  File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger -  File not found
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS -  File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - 
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - 
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Webordner
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
 
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.I420 - C:\Windows\System32\lvcodec2.dll (Logitech Inc.)
Drivers32: vidc.iv50 - C:\Windows\System32\ir50_32.dll (Intel Corporation)
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010.06.26 10:09:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2010.06.26 10:07:29 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2010.06.26 10:07:12 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2010.06.26 10:07:12 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2010.06.26 10:07:12 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2010.06.26 10:07:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2010.06.26 10:07:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2010.06.26 10:07:08 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2010.06.26 10:07:08 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2010.06.26 10:07:08 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2010.06.26 10:07:08 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2010.06.26 10:07:07 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2010.06.26 10:06:59 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2010.06.26 10:06:59 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2010.06.26 10:06:59 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2010.06.26 10:06:59 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2010.06.26 10:06:59 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2010.06.26 10:05:53 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010.06.26 10:05:53 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010.06.25 10:12:26 | 000,000,000 | ---D | C] -- C:\Programme\trend micro
[2010.06.25 10:12:26 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.25 09:59:39 | 000,000,000 | ---D | C] -- C:\Users\ebi\AppData\Roaming\Uniblue
[2010.06.25 09:59:33 | 000,000,000 | ---D | C] -- C:\Programme\Uniblue
[2010.06.23 22:48:49 | 000,000,000 | ---D | C] -- C:\Users\ebi\AppData\Roaming\Malwarebytes
[2010.06.23 22:48:38 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.06.23 22:48:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.06.23 22:48:35 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.06.23 22:48:35 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.06.20 18:11:09 | 000,000,000 | ---D | C] -- C:\Users\ebi\AppData\Roaming\Windows Live Writer
[2010.06.20 18:11:09 | 000,000,000 | ---D | C] -- C:\Users\ebi\Downloads\Documents\My Weblog Posts
[2010.06.20 18:11:06 | 000,000,000 | ---D | C] -- C:\Users\ebi\AppData\Local\Windows Live Writer
[2010.06.18 18:08:37 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.06.18 18:08:37 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.06.18 18:08:37 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.06.18 10:05:26 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Java
[2010.06.18 10:04:48 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2010.06.18 09:40:20 | 000,000,000 | ---D | C] -- C:\Users\Public\Desktop\Installationsprogramm für Adobe Reader 9
[2010.06.18 09:39:22 | 000,000,000 | ---D | C] -- C:\Programme\NOS
[2010.06.18 09:39:22 | 000,000,000 | ---D | C] -- C:\ProgramData\NOS
[2010.06.17 14:36:56 | 000,000,000 | ---D | C] -- C:\Windows\Temp
[2010.06.10 12:44:23 | 000,000,000 | ---D | C] -- C:\sorfmon
[2010.06.10 08:45:47 | 000,000,000 | ---D | C] -- C:\Programme\Wetterwarnung
[2010.06.09 22:17:15 | 000,000,000 | ---D | C] -- C:\Programme\Microsoft.NET
[2010.06.09 22:15:31 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2010.06.09 22:15:31 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2010.06.09 22:15:31 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2010.06.09 08:47:26 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.06.09 08:46:58 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.06.09 08:46:58 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.06.09 08:46:58 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.06.09 08:46:57 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.06.09 08:46:57 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010.06.09 08:46:57 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.06.09 08:46:57 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010.06.09 08:46:57 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.06.09 08:46:57 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010.06.09 08:46:57 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010.06.09 08:46:57 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010.06.09 08:46:57 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010.06.09 08:46:57 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.06.09 08:46:57 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.06.09 08:46:57 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010.06.09 08:46:55 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.06.09 08:46:55 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.06.09 08:46:50 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.05.31 11:56:04 | 000,000,000 | ---D | C] -- C:\Users\ebi\Application Data
[2010.05.28 17:48:02 | 000,000,000 | ---D | C] -- C:\Programme\ZL
[2010.05.28 17:48:02 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\InteractiveStudios
[2009.07.03 10:30:04 | 000,172,032 | ---- | C] ( ) -- C:\Windows\System32\rsnpstd3.dll
[2009.07.03 10:30:04 | 000,061,440 | ---- | C] ( ) -- C:\Windows\System32\vsnpstd3.dll
[2009.07.03 10:30:04 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\csnpstd3.dll
[2009.07.03 10:30:04 | 000,053,248 | ---- | C] ( ) -- C:\Windows\csnpstd3.dll
 
========== Files - Modified Within 30 Days ==========
 
[2010.06.26 11:03:43 | 001,586,772 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.06.26 11:03:43 | 000,681,176 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2010.06.26 11:03:43 | 000,640,206 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.06.26 11:03:43 | 000,148,640 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2010.06.26 11:03:43 | 000,122,090 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.06.26 11:00:26 | 002,621,440 | -HS- | M] () -- C:\Users\ebi\ntuser.dat
[2010.06.26 10:49:10 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2010.06.26 10:43:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.26 09:30:25 | 000,052,453 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2010.06.26 09:30:24 | 000,052,453 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010.06.26 09:30:06 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.06.26 09:30:06 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.06.26 09:30:01 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.26 09:29:56 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.06.26 09:29:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.06.25 21:47:39 | 000,524,288 | -HS- | M] () -- C:\Users\ebi\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000001.regtrans-ms
[2010.06.25 21:47:39 | 000,065,536 | -HS- | M] () -- C:\Users\ebi\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf
[2010.06.25 21:47:33 | 002,772,193 | -H-- | M] () -- C:\Users\ebi\AppData\Local\IconCache.db
[2010.06.25 13:26:39 | 000,000,489 | ---- | M] () -- C:\Users\ebi\Desktop\OTL.exe - Verknüpfung.lnk
[2010.06.25 09:59:35 | 000,000,941 | ---- | M] () -- C:\Users\Public\Desktop\RegistryBooster.lnk
[2010.06.24 09:57:23 | 000,000,510 | ---- | M] () -- C:\Windows\WORDPAD.INI
[2010.06.23 22:48:41 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.22 19:43:57 | 000,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.06.21 11:16:24 | 000,020,992 | ---- | M] () -- C:\Users\ebi\Downloads\Documents\Fehler.doc
[2010.06.18 18:34:52 | 000,094,088 | ---- | M] () -- C:\Users\ebi\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.06.18 18:33:02 | 000,350,808 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.06.18 18:08:19 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.06.18 18:08:19 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.06.18 18:08:19 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.06.18 18:08:18 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2010.06.18 17:18:42 | 000,001,001 | ---- | M] () -- C:\Users\ebi\Desktop\Internet Explorer.lnk
[2010.06.18 16:47:33 | 000,001,776 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.06.18 10:48:55 | 000,002,636 | ---- | M] () -- C:\Users\ebi\AppData\Roaming\wklnhst.dat
[2010.06.18 08:25:04 | 000,119,296 | ---- | M] () -- C:\Users\ebi\Downloads\Documents\PW.doc
[2010.06.17 08:34:49 | 000,026,112 | ---- | M] () -- C:\Users\ebi\Downloads\Documents\Geld crazy  01.doc
[2010.06.10 09:05:11 | 000,000,916 | ---- | M] () -- C:\Users\ebi\Desktop\Wetterwarnung.exe - Verknüpfung.lnk
[2010.06.10 08:45:01 | 000,014,336 | ---- | M] () -- C:\Users\ebi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.01 07:53:43 | 000,070,656 | ---- | M] () -- C:\Users\ebi\Downloads\Documents\Homeblutdruck.doc
[2010.06.01 07:52:52 | 000,070,656 | ---- | M] () -- C:\Users\ebi\Downloads\Documents\Homezucker.doc
[2010.05.31 12:25:17 | 000,021,504 | ---- | M] () -- C:\Users\ebi\Downloads\Documents\SSB electronic.doc
 
========== Files Created - No Company Name ==========
 
[2010.06.26 10:07:02 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2010.06.26 10:07:02 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2010.06.26 10:07:02 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2010.06.25 13:26:39 | 000,000,489 | ---- | C] () -- C:\Users\ebi\Desktop\OTL.exe - Verknüpfung.lnk
[2010.06.25 09:59:35 | 000,000,941 | ---- | C] () -- C:\Users\Public\Desktop\RegistryBooster.lnk
[2010.06.24 09:57:23 | 000,000,510 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2010.06.23 22:48:41 | 000,000,870 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.18 17:18:42 | 000,001,001 | ---- | C] () -- C:\Users\ebi\Desktop\Internet Explorer.lnk
[2010.06.18 15:36:05 | 000,020,992 | ---- | C] () -- C:\Users\ebi\Downloads\Documents\Fehler.doc
[2010.06.18 09:43:20 | 000,001,939 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.06.18 08:25:03 | 000,119,296 | ---- | C] () -- C:\Users\ebi\Downloads\Documents\PW.doc
[2010.06.10 09:05:11 | 000,000,916 | ---- | C] () -- C:\Users\ebi\Desktop\Wetterwarnung.exe - Verknüpfung.lnk
[2010.06.01 13:13:45 | 000,026,112 | ---- | C] () -- C:\Users\ebi\Downloads\Documents\Geld crazy  01.doc
[2010.06.01 07:53:43 | 000,070,656 | ---- | C] () -- C:\Users\ebi\Downloads\Documents\Homeblutdruck.doc
[2010.06.01 07:52:06 | 000,070,656 | ---- | C] () -- C:\Users\ebi\Downloads\Documents\Homezucker.doc
[2010.05.31 12:25:15 | 000,021,504 | ---- | C] () -- C:\Users\ebi\Downloads\Documents\SSB electronic.doc
[2010.03.05 11:17:32 | 000,000,000 | ---- | C] () -- C:\Windows\PROTOCOL.INI
[2010.01.26 09:38:14 | 000,000,361 | ---- | C] () -- C:\Windows\rdaccu.ini
[2010.01.26 09:38:14 | 000,000,055 | ---- | C] () -- C:\Windows\rdreflx.ini
[2010.01.07 14:59:26 | 000,002,304 | ---- | C] () -- C:\Windows\DigiPan.INI
[2009.12.01 13:56:31 | 000,126,976 | ---- | C] () -- C:\Windows\System32\THBIni20.dll
[2009.12.01 13:56:29 | 000,126,976 | ---- | C] () -- C:\Windows\System32\MC4MInt.dll
[2009.07.03 10:30:07 | 000,015,498 | ---- | C] () -- C:\Windows\snpstd3.ini
[2009.05.27 08:59:03 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.03.23 19:37:03 | 000,000,041 | ---- | C] () -- C:\Windows\DAVILEX.INI
[2009.02.17 18:40:39 | 000,000,663 | ---- | C] () -- C:\Windows\ODBC.INI
[2008.04.25 15:23:38 | 000,012,288 | ---- | C] () -- C:\Windows\System32\EvOnlDiag.dll
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2004.03.26 09:56:40 | 000,017,191 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[1999.12.15 12:02:27 | 000,000,073 | ---- | C] () -- C:\Windows\System32\ajsoftdat.ini
[1999.04.30 00:00:00 | 000,065,536 | ---- | C] () -- C:\Windows\System32\MSRTEDIT.DLL
 
========== LOP Check ==========
 
[2009.03.03 16:59:06 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\ASCOMP Software
[2009.02.11 16:48:33 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Auslogics
[2010.06.26 09:39:30 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\FRITZ!
[2009.09.11 16:56:08 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\FUJIFILM
[2009.09.05 12:51:01 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\GARMIN
[2009.11.08 15:47:52 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\LEGO Company
[2009.07.23 20:06:16 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\live-player
[2009.10.06 08:42:37 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\PC Suite
[2009.02.11 19:27:39 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\PeerNetworking
[2010.04.25 20:22:27 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Samsung
[2009.02.10 09:39:08 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Template
[2009.12.17 11:31:50 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\TomTom
[2010.06.25 09:59:39 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Uniblue
[2010.06.26 09:56:15 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Wetterwarnung
[2010.03.29 15:44:46 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Wimpomat2
[2010.06.20 18:11:09 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Windows Live Writer
[2010.06.25 21:47:46 | 000,032,530 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
 
========== Custom Scans ==========
 
 
< %ALLUSERSPROFILE%\Application Data\*. >
 
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
 
< %APPDATA%\*. >
[2010.06.17 12:00:36 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Adobe
[2009.03.03 16:59:06 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\ASCOMP Software
[2009.02.11 16:48:33 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Auslogics
[2010.03.25 13:16:08 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Avira
[2009.09.10 19:36:08 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\AVS4YOU
[2009.10.30 08:59:40 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\DivX
[2010.06.26 09:39:30 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\FRITZ!
[2009.09.11 16:56:08 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\FUJIFILM
[2009.09.05 12:51:01 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\GARMIN
[2009.02.09 19:18:26 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Google
[2009.02.09 19:16:39 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Identities
[2009.07.03 10:29:28 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\InstallShield
[2009.11.08 15:47:52 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\LEGO Company
[2009.07.23 20:06:16 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\live-player
[2009.02.09 19:18:35 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Macromedia
[2010.06.23 22:48:49 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Malwarebytes
[2010.03.07 14:33:30 | 000,000,000 | --SD | M] -- C:\Users\ebi\AppData\Roaming\Microsoft
[2009.02.11 14:02:25 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Microsoft Web Folders
[2009.02.09 20:22:17 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Mozilla
[2009.02.10 09:02:52 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Nero
[2009.10.06 08:42:37 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\PC Suite
[2009.02.11 19:27:39 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\PeerNetworking
[2010.04.25 20:22:27 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Samsung
[2010.06.26 10:50:01 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Skype
[2010.06.26 10:48:36 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\skypePM
[2009.02.10 09:39:08 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Template
[2009.12.17 11:31:50 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\TomTom
[2010.06.25 09:59:39 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Uniblue
[2010.06.26 09:56:15 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Wetterwarnung
[2010.03.29 15:44:46 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Wimpomat2
[2010.06.20 18:11:09 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\Windows Live Writer
[2009.05.27 07:44:34 | 000,000,000 | ---D | M] -- C:\Users\ebi\AppData\Roaming\WinRAR
 
< %APPDATA%\*.exe /s >
[2010.01.11 13:43:48 | 000,000,766 | R--- | M] () -- C:\Users\ebi\AppData\Roaming\Microsoft\Installer\{914928E5-4BA3-4809-9280-9C3DC20B993D}\_16496df1.exe
[2010.01.11 13:43:48 | 000,000,766 | R--- | M] () -- C:\Users\ebi\AppData\Roaming\Microsoft\Installer\{914928E5-4BA3-4809-9280-9C3DC20B993D}\_2cd672ae.exe
[2010.01.11 13:43:48 | 000,000,766 | R--- | M] () -- C:\Users\ebi\AppData\Roaming\Microsoft\Installer\{914928E5-4BA3-4809-9280-9C3DC20B993D}\_69525f90.exe
[2010.05.28 17:50:43 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Users\ebi\AppData\Roaming\Microsoft\Installer\{CA11F3FB-F51A-4A03-B17B-903F9B8AAA6C}\ARPPRODUCTICON.exe
[2010.05.28 17:50:43 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Users\ebi\AppData\Roaming\Microsoft\Installer\{CA11F3FB-F51A-4A03-B17B-903F9B8AAA6C}\zl.exe1_CA11F3FBF51A4A03B17B903F9B8AAA6C_4.exe
[2010.05.28 17:50:43 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Users\ebi\AppData\Roaming\Microsoft\Installer\{CA11F3FB-F51A-4A03-B17B-903F9B8AAA6C}\zl.exe_CA11F3FBF51A4A03B17B903F9B8AAA6C_5.exe
[2010.06.07 09:40:50 | 020,330,720 | ---- | M] (TomTom International B.V.) -- C:\Users\ebi\AppData\Roaming\TomTom\HOME\Profiles\nq33gsl0.default\Updates\v2_7_4_1962_win.exe
[2005.07.26 15:53:00 | 000,187,392 | ---- | M] () -- C:\Users\ebi\AppData\Roaming\Wetterwarnung\ibss77.exe
[2010.06.09 22:28:43 | 033,609,350 | ---- | M] () -- C:\Users\ebi\AppData\Roaming\Wetterwarnung\update.exe
 
< %SYSTEMDRIVE%\*.exe >
 
 
< MD5 for: AGP440.SYS  >
[2008.01.21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008.01.21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008.01.21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008.01.21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008.01.21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
 
< MD5 for: AHCIX86S.SYS  >
[2008.05.27 13:55:54 | 000,173,576 | ---- | M] (AMD Technologies Inc.) MD5=FBE4016F9EF3AB3DB547E40A936B6CD9 -- C:\Windows\System32\drivers\ahcix86s.sys
[2008.05.27 13:55:54 | 000,173,576 | ---- | M] (AMD Technologies Inc.) MD5=FBE4016F9EF3AB3DB547E40A936B6CD9 -- C:\Windows\System32\DriverStore\FileRepository\ahcix86s.inf_c617648e\ahcix86s.sys
 
< MD5 for: ATAPI.SYS  >
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008.01.21 04:32:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008.01.21 04:32:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
 
< MD5 for: CNGAUDIT.DLL  >
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
 
< MD5 for: IASTOR.SYS  >
[2007.09.30 00:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\drivers\iaStor.sys
[2007.09.30 00:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_7baf6192\iaStor.sys
[2007.09.30 00:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_41af7b1f\iaStor.sys
 
< MD5 for: IASTORV.SYS  >
[2008.01.21 04:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008.01.21 04:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008.01.21 04:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
 
< MD5 for: NETLOGON.DLL  >
[2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008.01.21 04:33:41 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
 
< MD5 for: NVSTOR.SYS  >
[2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008.01.21 04:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008.01.21 04:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008.01.21 04:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
 
< MD5 for: SCECLI.DLL  >
[2008.01.21 04:34:39 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
 
< MD5 for: USERINIT.EXE  >
[2008.01.21 04:34:37 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008.01.21 04:34:37 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
 
< MD5 for: WS2IFSL.SYS  >
[2008.01.21 04:34:35 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\System32\drivers\ws2ifsl.sys
[2008.01.21 04:34:35 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.0.6001.18000_none_4f86a0d4c7cda641\ws2ifsl.sys
 
< %systemroot%\system32\drivers\*.sys /lockedfiles >
 
< %systemroot%\System32\config\*.sav >
[2008.10.27 14:52:22 | 012,177,408 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2008.10.27 14:52:19 | 000,102,400 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2008.10.27 14:52:22 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2008.10.27 14:52:29 | 016,592,896 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2008.10.27 14:52:30 | 006,643,712 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
 
< %systemroot%\*. /mp /s >
 
< %systemroot%\system32\*.dll /lockedfiles >
[2009.03.08 13:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtmsft.dll
[2009.03.08 13:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtrans.dll
[2009.04.11 08:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rsaenh.dll
[2009.04.11 08:28:23 | 000,228,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\SLC.dll
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 304 bytes -> C:\Users\ebi\mika_1.jpg:Updt_SummaryInformation
@Alternate Data Stream - 304 bytes -> C:\Users\ebi\esm500.JPG:Updt_SummaryInformation
@Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:A8ADE5D8
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:DFC5A2B2
< End of report >
         
--- --- ---


die Extras.txt kommt nach

Alt 26.06.2010, 13:22   #5
eltown
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



Hier die Extras.txt Datei:

OTL EXTRAS Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 26.06.2010 11:03:04 - Run 4
OTL by OldTimer - Version 3.2.7.0     Folder = D:\@DOWNLOADS
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18928)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 46,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 94,16 Gb Total Space | 56,20 Gb Free Space | 59,68% Space Free | Partition Type: NTFS
Drive D: | 46,10 Gb Total Space | 28,83 Gb Free Space | 62,55% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 149,05 Gb Total Space | 37,85 Gb Free Space | 25,39% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: EBI-PC
Current User Name: ebi
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
 
[HKEY_USERS\S-1-5-21-1850306280-2530017440-1367753937-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1850306280-2530017440-1367753937-1000]
"EnableNotifications" = 0
"EnableNotificationsRef" = 2
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{24FD27F3-BAE2-417A-AB1D-11227A4C0711}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
"{274A393D-F383-4E04-A910-B843E4ADEA14}" = rport=2869 | protocol=6 | dir=out | app=system | 
"{2B016878-F030-4E59-B7C2-D88578554228}" = lport=137 | protocol=17 | dir=in | app=system | 
"{374BD7A7-3DC0-4416-B14D-A9CC0E1A9BCC}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
"{3D8B5488-CBF4-4D36-928D-A5F3E86F32A4}" = lport=139 | protocol=6 | dir=in | app=system | 
"{4951D8B2-8B98-42BB-B0DD-C8B0377FF978}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | 
"{55839589-A340-4217-BAF7-CEA90789DF1B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{57F62545-5D32-4B6C-83E2-5ECEA5CEB0AF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{5FA495D8-8E6D-422C-93C3-E60EC1A8364B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{62A2E6A1-A0BB-45B3-A659-6938FAD375DB}" = rport=137 | protocol=17 | dir=out | app=system | 
"{64831CA9-04AA-4D02-9F0C-1BB17DC2140D}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | 
"{88B8CFB2-3929-4CAE-AF16-867992ADB9E1}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe | 
"{8B00F5CF-3765-4FAB-94A6-B6DFA3290C84}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | 
"{92DBB488-6C57-4F78-9943-6ACF48AFC5B4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{937373A0-EA7D-4C56-99F5-08BBE10EF781}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{A29847F5-0B7F-45B4-B43D-C08701F36E93}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{AB729433-9F6E-49D5-AF7D-9FF1ADB3BEFE}" = lport=445 | protocol=6 | dir=in | app=system | 
"{B59424B3-CB9F-4386-881E-FA9180145215}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | 
"{B94CCA47-1F8E-4885-9B2C-8B66BF21C01C}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{BA9637ED-5E45-45FA-91B6-0E0C95014365}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{BD6F7364-0739-405D-A5F2-046DA72F31FE}" = rport=138 | protocol=17 | dir=out | app=system | 
"{C07F2D37-7FB3-42A5-8363-A3238A35CFA1}" = rport=445 | protocol=6 | dir=out | app=system | 
"{DEA56267-F9FF-4A56-976D-B153E8AC9573}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | 
"{E2FB09B9-6527-490A-BEB4-FD0B6E52E05B}" = lport=138 | protocol=17 | dir=in | app=system | 
"{E9FC777C-3247-4BF4-A55D-CF9D8527FC89}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{F2181194-8502-433C-8738-4291D9C8169A}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | 
"{F2AD3243-D930-42AD-808D-ABF2C120490D}" = rport=139 | protocol=6 | dir=out | app=system | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A210DC2-8AA9-48C7-935D-687884BF1F75}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{1350A55A-3C1E-4738-B4CC-F5FCD6FBBE3D}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{1FF87707-B3D4-49A1-A0C8-2CCA655D35DE}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{3C2E697D-4B7E-4DF2-B73F-DEBD4D61F54E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{41DD738B-839E-433E-88F2-983DB12176E8}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe | 
"{4559F6AF-59EB-480C-AA79-CDA7AA46C3CE}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{5AA2E760-2EC8-48C8-8D7E-4FB6B3C9A5EC}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{609F2B42-A839-44AE-9D02-A225FBC6065E}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 | 
"{6E51AA13-ADF5-4C0C-9DFD-33665251CB24}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{8B7DE629-9820-4608-AB90-0AD4DFFB696D}" = protocol=6 | dir=in | app=c:\program files\fritz!dsl\webwaigd.exe | 
"{914EF386-5528-435A-A5B7-3AD0396C3A1E}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe | 
"{A3E879E7-1743-4BCE-81A9-F6CEFB648BC7}" = protocol=6 | dir=in | app=c:\program files\fritz!dsl\fboxupd.exe | 
"{A628A464-38DE-44EB-9A6A-F385EBE3B53B}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe | 
"{AB8E2038-048C-4515-9B83-4DE6EEE85FB3}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{B11E3BBF-8E80-4E1B-B2CF-848CF0AC8FA7}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | 
"{C29A9C4D-3BF4-4D4F-AAB0-6B9E4112F1C8}" = protocol=17 | dir=in | app=c:\program files\fritz!dsl\fboxupd.exe | 
"{CCC04D57-7242-47A3-971F-E804DA711156}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe | 
"{D23CE9FA-2B36-414F-BF62-B3372A9858A1}" = protocol=6 | dir=in | app=c:\program files\fritz!dsl\igdctrl.exe | 
"{E23CB34B-11AC-48D1-8A6C-B50FF756E899}" = dir=in | app=c:\program files\skype\phone\skype.exe | 
"{E3A7B63E-DB8D-40C4-B459-B579D94E85B9}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe | 
"{F075A3C3-15E1-4189-8863-C893C5DEA100}" = protocol=17 | dir=in | app=c:\program files\fritz!dsl\webwaigd.exe | 
"{F538C50E-24B6-49D4-B5C3-5135D51AF057}" = protocol=17 | dir=in | app=c:\program files\fritz!dsl\igdctrl.exe | 
"TCP Query User{906C0092-0FD2-4530-942A-854EB5FE022C}C:\fritz!box monitor\fritzboxmonitor.exe" = protocol=6 | dir=in | app=c:\fritz!box monitor\fritzboxmonitor.exe | 
"TCP Query User{D5A51917-D277-4E25-8180-1668CC3978EF}C:\program files\fritz!box monitor\fritzboxmonitor.exe" = protocol=6 | dir=in | app=c:\program files\fritz!box monitor\fritzboxmonitor.exe | 
"UDP Query User{33C18355-CAD7-48BE-9A6B-721D5D798033}C:\program files\fritz!box monitor\fritzboxmonitor.exe" = protocol=17 | dir=in | app=c:\program files\fritz!box monitor\fritzboxmonitor.exe | 
"UDP Query User{5170E13F-4941-40A4-961B-F5153DF37917}C:\fritz!box monitor\fritzboxmonitor.exe" = protocol=17 | dir=in | app=c:\fritz!box monitor\fritzboxmonitor.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000407-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID-Anmelde-Assistent
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{119B7481-0216-40D2-A5CC-C3E1F461ECC1}" = Windows Live Fotogalerie
"{1943A043-5C85-4A16-A0D0-D687B2C1A40F}" = VirtualCom driver
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2457326B-C110-40C3-89B0-889CC913871A}" = AVM FRITZ!DSL
"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{39D0E034-1042-4905-BECB-5502909FCB7C}" = Microsoft Works
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{4EAD2E21-1D4A-4E2B-A082-8D08961539C9}" = Microsoft Works Suite-Add-Ins für Microsoft Word
"{5090D628-C12F-4EB0-830D-819EFD52D950}" = JVComm32
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A166C0B-9557-4364-A057-F946D674E6AC}" = Windows Live Mail
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{70B7A167-0B88-445D-A3EA-97C73AA88CAC}" = Windows Live Toolbar
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7FF95752-5AD1-4C4A-9785-FAB80E499BB2}_is1" = Wimpomat 2.X
"{81821BF8-DA20-4F8C-AA87-F70A274828D4}" = Windows Live Writer
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{911B0407-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002
"{914928E5-4BA3-4809-9280-9C3DC20B993D}" = Scanner Recorder
"{91E04CA7-0B13-4F8C-AA4D-2A573AC96D19}" = Windows Live Essentials
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96AFCF8B-3C53-49A2-8456-E637021B1031}" = Nero 8 Essentials
"{99D42EC7-652B-4819-B3E6-6450C815E03F}" = Odyssey Client
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.2 - Deutsch
"{B1102A25-3AA3-446B-AA0F-A699B07A02FD}" = Garmin USB Drivers
"{B3C9A441-C34D-40F3-9D3B-00EDDDAC74F1}" = Garmin Communicator Plugin
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{CA11F3FB-F51A-4A03-B17B-903F9B8AAA6C}" = ZL11.1
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{D9DA2DF6-8CB6-4E3C-A29E-FAECFBA3E9A7}" = Garmin POI Loader
"{DBA8B9E1-C6FF-4624-9598-73D3B41A0903}" = Microsoft Picture It! Foto Premium 9
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = AusLogics Disk Defrag
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1" = Uniblue RegistryBooster
"{ECD03DA7-5952-406A-8156-5F0C93618D1F}" = USB PC Camera Plus
"{ED636101-1959-4360-8BF7-209436E7DEE4}" = Windows Live Sync
"{EF59DB7F-7426-426E-B862-7031F83ED304}" = SystemDiagnostics
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{FF895069-BD9A-11D5-986D-00500443CF9F}" = Moorhuhn 3 DL
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Windows-Treiberpaket - Nokia pccsmcfd  (10/12/2007 6.85.4.0)
"45A7283175C62FAC673F913C1F532C5361F97841" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (03/08/2007 2.2.1.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"AVMFBox" = FRITZ!Box
"AVMFBoxMonitor" = AVM FRITZ!Box Monitor
"BOS-Info 2000" = BOS-Info 2000
"DeInst_d2vexcrd C:/Program Files/Top50 V4" = Top50 Viewer basierend auf Geogrid®-Viewer Version 3.2
"DigiPan_is1" = DigiPan 2.0
"E24870CB6AA1C3511635FF9020A3E9471287FBE7" = Windows-Treiberpaket - MobileTop (sshpmdm) Modem  (01/26/2008 2.6.0.0)
"Geogrid_DPV" = Geogrid® DPV
"Google Updater" = Google Updater
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"kuukg" = Favorit
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox (3.6.4)" = Mozilla Firefox (3.6.4)
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"Picasa 3" = Picasa 3
"PictureIt_v9" = Microsoft Picture It! Foto Premium 9
"Security Task Manager" = Security Task Manager 1.7h
"ST5UNST #1" = FMS32 - Version 2.2.8
"TomTom HOME" = TomTom HOME 2.7.3.1894
"Wetterwarnung.net" = Wetterwarnung.net
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"WinZip" = WinZip
"Works2004Setup" = Setup-Start von Microsoft Works 2004
 
========== HKEY_USERS Uninstall List ==========
 
[HKEY_USERS\S-1-5-21-1850306280-2530017440-1367753937-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"jlGui 3.0" = jlGui 3.0
 
========== Last 10 Event Log Errors ==========
 
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
 
< End of report >
         
--- --- ---


mfg
eltown


Alt 28.06.2010, 09:19   #6
eltown
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



Moin moin,

Frage, kann ich davo ausgehen, das das alles wieder i.O. ist??

Avira findet keinen Trojaner..,.

Malwarebytes' Anti-Malware 1.46

findet ebenfalls nicht mehr und sagt:

Infizierte Registrierungsschlüssel:
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\getdo (Trojan.Agent) -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Users\ebi\AppData\Roaming\Adobe\Update\flacor.dat (Trojan.Agent) -> Quarantined and deleted successfully.

Der Pc läuft auch normal würde ich sagen, lediglich die Fehlermeldungen in der Fehlerkonsohle von FF sind noch vorhanden, aber da scheint auch nichts zu passieren.

Werde wohl mal FF komplett entfernen und neu aufspielen.

mfg
eltown

Alt 28.06.2010, 11:48   #7
eltown
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



@ Markus,
ich glaube, ich habe das Problem gelöst.
1.) die Trojaner wurden ja dank Malewarebytes erkannt und beseitigt.

2,) der Fehler war ein Add on und zwar Fire Fox Accelator 2.5.10.1
Nachdem ich ihn deaktiviert habe, läuft der Rechner [Grafik) und alle Foren wieder völlig normal.

mfg
eltown

Alt 03.07.2010, 00:09   #8
markusg
/// Malware-holic
 
Fehler in der Fire Fox Console und Link Fehler - Standard

Fehler in der Fire Fox Console und Link Fehler



der trojaner deutet trotzdem auf die art von trojanern hin, auf die ich hingedeutet habe.
und eine untersuchung wäre von daher schon ratsam.

Antwort

Themen zu Fehler in der Fire Fox Console und Link Fehler
adobe, anonymous, anti-malware, appdata, arbeitet, bild, dateien, error, explorer, fehler, fehlermeldung, fire fox, folge, frame, link, links, location, malwarebytes, microsoft, neue, nicht mehr, problem, rechner, roaming, software, start, trojan.agent, update



Ähnliche Themen: Fehler in der Fire Fox Console und Link Fehler


  1. Fehler in Win 10?
    Alles rund um Windows - 19.08.2015 (3)
  2. Firewall nicht aktiverbar Fehler 0x6D9 + Wlan symbol fehler
    Plagegeister aller Art und deren Bekämpfung - 27.07.2015 (11)
  3. Fehler XYZ
    Alles rund um Windows - 15.06.2014 (2)
  4. Schwieriger Fehler! Pc sehr langsam bei sache und vermuteter Hardware fehler?
    Alles rund um Windows - 18.02.2014 (2)
  5. Windows 7 HP: Firewall Fehler Code : 0x6D9 und Rundll Fehler beim Start
    Log-Analyse und Auswertung - 23.09.2013 (22)
  6. Fehler beim Scan-Vorgang: 37 Fehler !
    Plagegeister aller Art und deren Bekämpfung - 15.04.2013 (11)
  7. NetLoc.wlt fehler nach FEHLER Win XP Anmeldung direkt danach Abmeldung
    Plagegeister aller Art und deren Bekämpfung - 23.01.2013 (1)
  8. RUNDLL Fehler beim Starten - Fehler beim Laden von C:/Dokume~1/../Lokale~1/Temp/0.5.... .exe
    Plagegeister aller Art und deren Bekämpfung - 23.04.2012 (5)
  9. dll Fehler
    Mülltonne - 16.04.2011 (1)
  10. Fehler in Windows Vista: "Ein kritischer Fehler ist aufgetreten, Windows wird in einer Minute..."
    Log-Analyse und Auswertung - 20.08.2010 (0)
  11. WoW fehler 132
    Netzwerk und Hardware - 11.04.2010 (4)
  12. Lap Top langsam/ Host-Prozess Fehler/ Superfetch Fehler
    Log-Analyse und Auswertung - 23.04.2009 (1)
  13. explorer-fehler bei rechtsklick von .jpg: explorer.exe hat einen fehler verursacht
    Alles rund um Windows - 10.04.2009 (4)
  14. Habe dauernd Fehler Meldungen nach neu inst. Viren oder ein anderer fehler ???
    Plagegeister aller Art und deren Bekämpfung - 07.05.2007 (17)
  15. explorer.exe hat einen Fehler (Fehler im Log erkennbar?)
    Log-Analyse und Auswertung - 25.11.2006 (9)
  16. I/O Fehler, was ist das?
    Antiviren-, Firewall- und andere Schutzprogramme - 11.04.2005 (2)
  17. Fehler 400
    Netzwerk und Hardware - 03.02.2004 (5)

Zum Thema Fehler in der Fire Fox Console und Link Fehler - Hallo, seit ein paar Tagen habe ich folgendes Problem mit Fire Fox: Öffnen mit FF war nicht möglich. Das Bild blieb leer. Erst nach einem Start im abgesicherten Modus war - Fehler in der Fire Fox Console und Link Fehler...
Archiv
Du betrachtest: Fehler in der Fire Fox Console und Link Fehler auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.