Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Internet langsam geworden , Hijackthis auswerten

Internet langsam geworden , Hijackthis auswerten


Log-Analyse und Auswertung: Internet langsam geworden , Hijackthis auswerten

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 31.08.2010, 11:25   #1
gumplchen
 
Internet langsam geworden , Hijackthis auswerten - Standard

Internet langsam geworden , Hijackthis auswerten


Hallo Trojaner Board,

Erstmal vorweg, ich finde euer Forum einfach spitzenklasse. Echt toll wie ihr den Leuten hier helft weiter so

Nun zu meinem Problem..

Seit ein paar Tagen läuft mein Internet sehr langsam...
eine Seite dauert sehr lange zum öffnen.

Nun hab ich eine Vermutung das ich eventuell einen Virus habe, das ich nicht hoffe, da ich den gar nicht brauchen kann

Ich wäre froh wenn ihr meinen Logfile auswerten könntet =)



HiJackthis Logfile:
Code:
ATTFilter
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:17:12, on 31.08.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\AVG\AVG9\avgtray.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Users\Christoph\Downloads\HiJackThis204.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.telekom.at/suche
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.telekom.at
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = A1 Telekom Austria TA AG
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~2\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEDE.EXE /FU "C:\Windows\TEMP\E_SA2F3.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Christoph\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 7559 bytes
--- --- ---
Alt 31.08.2010, 20:40   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Internet langsam geworden , Hijackthis auswerten - Standard

Internet langsam geworden , Hijackthis auswerten


Hallo und

Bitte routinemäßig einen Vollscan mit Malwarebytes machen und Log posten.
Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss!

Danach OTL:

Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
  • Doppelklick auf die OTL.exe
  • Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
  • Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
  • Unter Extra Registry, wähle bitte Use SafeList
  • Klicke nun auf Run Scan links oben
  • Wenn der Scan beendet wurde werden 2 Logfiles erstellt
  • Poste die Logfiles hier in den Thread.
__________________

__________________
Alt 31.08.2010, 23:32   #3
gumplchen
 
Internet langsam geworden , Hijackthis auswerten - Standard

Internet langsam geworden , Hijackthis auswerten


Hier ist ersmal der scann mit malwarebytes
das andere kommt dann morgen

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Datenbank Version: 4358

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18943

01.09.2010 00:29:52
mbam-log-2010-09-01 (00-29-52).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 275096
Laufzeit: 1 Stunde(n), 1 Minute(n), 40 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
__________________
Alt 01.09.2010, 11:54   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Internet langsam geworden , Hijackthis auswerten - Standard

Internet langsam geworden , Hijackthis auswerten


Zitat:
Datenbank Version: 4358
Du hast Malwarebytes vorher nicht aktualisiert. Bitte updaten und einen Vollscan machen.
Poste dann das neue und auch alle alten Logs von malwarebytes!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 01.09.2010, 15:03   #5
gumplchen
 
Internet langsam geworden , Hijackthis auswerten - Standard

Internet langsam geworden , Hijackthis auswerten


Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Datenbank Version: 4521

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18943

01.09.2010 15:28:16
mbam-log-2010-09-01 (15-28-16).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 278824
Laufzeit: 1 Stunde(n), 6 Minute(n), 43 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)





hier ist der OTL log
OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 01.09.2010 15:56:02 - Run 1
OTL by OldTimer - Version 3.2.11.0     Folder = C:\Users\Christoph\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 59,00% Memory free
10,00 Gb Paging File | 8,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): c:\pagefile.sys 6000 6000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 281,46 Gb Free Space | 60,43% Space Free | Partition Type: NTFS
Drive D: | 3,71 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: CHRISTOPH-PC
Current User Name: Christoph
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Christoph\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\PnkBstrB.exe ()
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 1\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 1\plugin-container.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\Christoph\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - (PnkBstrB) -- C:\Windows\SysNative\PnkBstrB.exe File not found
SRV:64bit: - (PnkBstrA) -- C:\Windows\SysNative\PnkBstrA.exe File not found
SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
SRV - (TuneUp.Defrag) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (PnkBstrB) -- C:\Windows\SysWOW64\PnkBstrB.exe ()
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (avg9emc) -- C:\Program Files (x86)\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
SRV - (avg9wd) -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (Apple Mobile Device) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_64) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (NwlnkFwd) -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found
DRV:64bit: - (NwlnkFlt) -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found
DRV:64bit: - (IpInIp) -- C:\Windows\SysNative\DRIVERS\ipinip.sys File not found
DRV:64bit: - (AvgTdiA) -- C:\Windows\SysNative\Drivers\avgtdia.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AvgLdx64) -- C:\Windows\SysNative\Drivers\avgldx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AvgMfx64) -- C:\Windows\SysNative\Drivers\avgmfx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\Drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation)
DRV:64bit: - (qcusbser) -- C:\Windows\SysNative\DRIVERS\qcusbser.sys (QUALCOMM Incorporated)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (RTL8169) -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys (Realtek Corporation)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\Wbem\ntfs.mof ()
DRV:64bit: - (ialm) -- C:\Windows\SysNative\DRIVERS\ialmnt5.sys (Intel Corporation)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys (TuneUp Software)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.telekom.at/suche
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.telekom.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.selectedEngine: "Amazon.de"
FF - prefs.js..extensions.enabledItems: testpilot@labs.mozilla.com:1.0rc1
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.845
FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@ea.com:5.0.23.0
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
 
 
FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files (x86)\AVG\AVG9\Firefox [2010.07.25 11:02:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 1\components [2010.07.30 11:00:17 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 1\plugins [2010.08.30 23:03:50 | 000,000,000 | ---D | M]
 
[2010.07.26 22:20:32 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\mozilla\Extensions
[2010.08.31 23:24:36 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\mozilla\Firefox\Profiles\ssg0iz8z.default\extensions
[2010.07.27 07:26:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Christoph\AppData\Roaming\mozilla\Firefox\Profiles\ssg0iz8z.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.08.18 22:29:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Christoph\AppData\Roaming\mozilla\Firefox\Profiles\ssg0iz8z.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.08.29 00:41:23 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Christoph\AppData\Roaming\mozilla\Firefox\Profiles\ssg0iz8z.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010.07.26 22:23:11 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\mozilla\Firefox\Profiles\ssg0iz8z.default\extensions\battlefieldheroespatcher@ea.com
 
O1 HOSTS File: ([2006.09.18 23:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\PROGRA~2\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKCU..\Run: [EPSON SX100 Series] C:\Windows\SysWow64\spool\DRIVERS\x64\3\E_IATIEDE.EXE File not found
O4 - HKCU..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O8:64bit: - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Christoph\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Christoph\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: blank ([]about in Local intranet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - AppInit_DLLs: (avgrssta.dll) - C:\Windows\SysNative\avgrssta.dll (AVG Technologies CZ, s.r.o.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img23.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img23.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007.03.12 12:42:14 | 000,000,044 | R--- | M] () - D:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{fb637f4e-97c6-11df-88ee-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{fb637f4e-97c6-11df-88ee-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Seite2.exe -- [2007.03.12 12:41:48 | 002,468,389 | R--- | M] (Computec Media AG)
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010.09.01 14:22:58 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Desktop\Schrott
[2010.09.01 00:33:35 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Christoph\Desktop\OTL.exe
[2010.08.30 21:15:53 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Local\Reality Pump
[2010.08.29 00:36:59 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010.08.29 00:36:54 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010.08.29 00:36:54 | 000,030,016 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010.08.29 00:36:54 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010.08.29 00:36:54 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010.08.29 00:36:08 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\TuneUp Software
[2010.08.29 00:36:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2010
[2010.08.29 00:35:25 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2010.08.29 00:35:18 | 000,000,000 | -HSD | C] -- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010.08.27 14:33:28 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Documents\Mount&Blade Warband Savegames
[2010.08.27 14:32:05 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Documents\Mount&Blade Warband
[2010.08.27 14:32:05 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\Mount&Blade Warband
[2010.08.25 08:19:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft XNA
[2010.08.24 21:10:14 | 000,000,000 | ---D | C] -- C:\Programme\DIFX
[2010.08.24 21:08:40 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\Acer E400 USB Driver
[2010.08.18 22:29:24 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\DVDVideoSoftIEHelpers
[2010.08.18 22:29:09 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Documents\DVDVideoSoft
[2010.08.18 22:28:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft
[2010.08.18 22:28:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft
[2010.08.18 21:39:02 | 000,000,000 | ---D | C] -- C:\ProgramData\id Software
[2010.08.16 22:24:48 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\mIRC
[2010.08.16 22:24:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\mIRC
[2010.08.13 15:26:58 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Desktop\Internet
[2010.08.13 12:13:13 | 000,000,000 | ---D | C] -- C:\ProgramData\m2portal
[2010.08.12 18:51:21 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\mquadr.at
[2010.08.12 18:51:21 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Local\mquadr.at
[2010.08.12 18:51:21 | 000,000,000 | ---D | C] -- C:\ProgramData\mquadr.at
[2010.08.12 18:51:21 | 000,000,000 | ---D | C] -- C:\ProgramData\m2backup
[2010.08.12 18:50:57 | 000,000,000 | -H-D | C] -- C:\ProgramData\{DE1CDDDC-29FB-4BCF-94A4-B8339595BAB7}
[2010.08.12 18:50:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\aon
[2010.08.12 18:50:32 | 000,000,000 | -H-D | C] -- C:\ProgramData\{0B1855D9-8D06-4BE1-B93C-7EFA1D0C3E32}
[2010.08.12 18:41:41 | 000,000,000 | -H-D | C] -- C:\ProgramData\{29558F44-C67B-4F2C-99E0-F1CE2AE1F960}
[2010.08.12 18:41:32 | 000,000,000 | -H-D | C] -- C:\ProgramData\{392ECEAB-FD15-485B-8C44-C2C591EDECB5}
[2010.08.12 18:41:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\A1 Telekom Austria
[2010.08.12 18:19:36 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Local\PackageAware
[2010.08.12 15:43:05 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010.08.12 15:43:05 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010.08.12 15:42:55 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010.08.12 15:42:53 | 004,697,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010.08.12 15:42:43 | 002,335,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iertutil.dll
[2010.08.12 15:42:41 | 000,706,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2010.08.12 15:42:41 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010.08.12 15:42:41 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010.08.12 15:42:41 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2010.08.12 15:42:41 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010.08.12 15:42:41 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2010.08.12 15:42:41 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2010.08.12 15:42:40 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2010.08.12 15:42:40 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2010.08.12 15:42:40 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010.08.12 15:42:40 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.08.12 15:42:40 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.08.12 15:42:40 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2010.08.12 15:42:40 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2010.08.12 15:42:40 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2010.08.12 15:42:40 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2010.08.12 15:42:40 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2010.08.12 15:42:40 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2010.08.12 15:42:40 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2010.08.12 15:42:40 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2010.08.12 15:42:40 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.08.12 15:42:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010.08.11 20:07:02 | 000,000,000 | -H-D | C] -- C:\Users\Christoph\Documents\Runes of Magic
[2010.08.11 16:20:28 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Desktop\Runes_of_Magic_3.0.1.2153
[2010.08.11 16:20:28 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\FOG Downloader
[2010.08.10 09:00:52 | 000,319,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2010.08.09 22:45:03 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\TS3Client
[2010.08.09 22:44:42 | 000,000,000 | ---D | C] -- C:\Programme\TeamSpeak 3 Client
[2010.08.09 18:06:26 | 000,000,000 | ---D | C] -- C:\Programme\Defraggler
[2010.08.09 09:45:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2010.08.08 15:30:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard
[2010.08.08 15:28:23 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment
[2010.08.08 13:32:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010.08.08 13:32:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2010.08.06 15:35:56 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Roaming\REAPER
[2010.08.05 22:19:16 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Tracing
[2010.08.05 22:17:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2010.08.05 22:16:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2010.08.05 22:16:49 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2010.08.05 22:16:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2010.08.05 22:16:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2010.08.05 22:16:09 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010.08.05 22:12:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2010.08.05 18:25:53 | 000,000,000 | ---D | C] -- C:\Programme\Paint.NET
[2010.08.05 18:25:37 | 000,000,000 | ---D | C] -- C:\Users\Christoph\AppData\Local\Paint.NET
[2010.08.02 20:04:47 | 000,000,000 | ---D | C] -- C:\Users\Christoph\Documents\StarCraft II
[2010.08.02 20:04:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2010.08.02 20:04:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2010.08.02 20:03:54 | 000,000,000 | ---D | C] -- C:\Spiele
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2010.09.01 15:59:00 | 005,242,880 | -HS- | M] () -- C:\Users\Christoph\NTUSER.DAT
[2010.09.01 15:57:42 | 000,004,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.09.01 15:57:42 | 000,004,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.09.01 12:03:24 | 064,139,718 | ---- | M] () -- C:\Windows\SysNative\drivers\Avg\incavi.avm
[2010.09.01 11:58:56 | 000,037,301 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2010.09.01 11:58:56 | 000,037,301 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010.09.01 11:57:28 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.09.01 11:57:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.09.01 11:57:18 | 4293,386,240 | -HS- | M] () -- C:\hiberfil.sys
[2010.09.01 00:39:55 | 000,524,288 | -HS- | M] () -- C:\Users\Christoph\NTUSER.DAT{d7ceb1a9-98b7-11df-af99-001d7da76728}.TMContainer00000000000000000001.regtrans-ms
[2010.09.01 00:39:55 | 000,065,536 | -HS- | M] () -- C:\Users\Christoph\NTUSER.DAT{d7ceb1a9-98b7-11df-af99-001d7da76728}.TM.blf
[2010.09.01 00:39:44 | 002,730,437 | -H-- | M] () -- C:\Users\Christoph\AppData\Local\IconCache.db
[2010.09.01 00:33:39 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Christoph\Desktop\OTL.exe
[2010.08.31 20:12:20 | 000,007,838 | ---- | M] () -- C:\Users\Christoph\Desktop\hijackthis4
[2010.08.31 12:17:12 | 000,007,560 | ---- | M] () -- C:\Users\Christoph\Desktop\hijackthis3
[2010.08.31 12:16:50 | 000,000,976 | ---- | M] () -- C:\Users\Christoph\Documents\cc_20100831_121648.reg
[2010.08.31 12:14:52 | 000,007,623 | ---- | M] () -- C:\Users\Christoph\Desktop\hijackthis2
[2010.08.31 10:37:51 | 000,000,801 | ---- | M] () -- C:\Users\Christoph\Desktop\Fiesta Online(EU_German).lnk
[2010.08.30 23:03:50 | 000,001,917 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.08.29 15:15:09 | 000,008,247 | ---- | M] () -- C:\Users\Christoph\Desktop\hijackthis1
[2010.08.29 00:36:46 | 000,001,921 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2010.08.29 00:36:45 | 000,001,907 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010.08.28 23:57:47 | 000,001,284 | ---- | M] () -- C:\Users\Christoph\Documents\cc_20100828_235744.reg
[2010.08.26 14:45:36 | 000,034,624 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2010.08.26 14:40:38 | 000,025,920 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2010.08.26 14:40:34 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2010.08.26 14:40:32 | 000,036,160 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
[2010.08.26 14:40:24 | 000,030,016 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
[2010.08.24 21:03:42 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2010.08.21 22:06:35 | 000,214,720 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2010.08.21 22:06:35 | 000,214,720 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2010.08.18 22:29:18 | 000,001,074 | ---- | M] () -- C:\Users\Christoph\Desktop\DVDVideoSoft Free Studio.lnk
[2010.08.18 21:39:06 | 000,075,064 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2010.08.18 21:39:05 | 002,373,712 | ---- | M] () -- C:\Windows\SysWow64\pbsvc.exe
[2010.08.17 11:29:03 | 000,011,314 | ---- | M] () -- C:\Users\Christoph\Documents\cc_20100817_112852.reg
[2010.08.16 22:24:49 | 000,000,790 | ---- | M] () -- C:\Users\Public\Desktop\mIRC.lnk
[2010.08.12 19:24:24 | 000,228,600 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.08.11 20:04:52 | 000,001,601 | ---- | M] () -- C:\Users\Christoph\Desktop\Runes of Magic.lnk
[2010.08.10 09:17:08 | 000,004,848 | ---- | M] () -- C:\Users\Christoph\Documents\cc_20100810_091704.reg
[2010.08.10 09:04:20 | 000,319,488 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\HideWin.exe
[2010.08.09 22:44:43 | 000,000,915 | ---- | M] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
[2010.08.09 11:24:07 | 000,000,680 | ---- | M] () -- C:\Users\Christoph\AppData\Local\d3d9caps.dat
[2010.08.09 09:37:05 | 000,002,188 | ---- | M] () -- C:\Users\Christoph\Documents\cc_20100809_093653.reg
[2010.08.09 09:32:09 | 001,445,116 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.08.09 09:32:09 | 000,628,504 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2010.08.09 09:32:09 | 000,591,302 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.08.09 09:32:09 | 000,126,054 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2010.08.09 09:32:09 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.08.08 16:09:32 | 000,000,818 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2010.08.08 12:53:18 | 000,004,470 | ---- | M] () -- C:\Users\Christoph\Documents\cc_20100808_125315.reg
[2010.08.07 12:57:32 | 000,019,598 | ---- | M] () -- C:\Users\Christoph\Documents\cc_20100807_125709.reg
[2010.08.05 18:27:09 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\Paint.NET.lnk
[2010.08.04 10:40:21 | 000,000,784 | ---- | M] () -- C:\Users\Public\Desktop\LOCO.lnk
[2010.08.02 20:18:51 | 000,000,761 | ---- | M] () -- C:\Users\Public\Desktop\StarCraft II.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2010.08.31 20:12:20 | 000,007,838 | ---- | C] () -- C:\Users\Christoph\Desktop\hijackthis4
[2010.08.31 12:17:12 | 000,007,560 | ---- | C] () -- C:\Users\Christoph\Desktop\hijackthis3
[2010.08.31 12:16:49 | 000,000,976 | ---- | C] () -- C:\Users\Christoph\Documents\cc_20100831_121648.reg
[2010.08.31 12:14:52 | 000,007,623 | ---- | C] () -- C:\Users\Christoph\Desktop\hijackthis2
[2010.08.31 10:37:51 | 000,000,801 | ---- | C] () -- C:\Users\Christoph\Desktop\Fiesta Online(EU_German).lnk
[2010.08.29 15:15:09 | 000,008,247 | ---- | C] () -- C:\Users\Christoph\Desktop\hijackthis1
[2010.08.29 00:36:46 | 000,001,921 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2010.08.29 00:36:45 | 000,001,907 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities.lnk
[2010.08.28 23:57:45 | 000,001,284 | ---- | C] () -- C:\Users\Christoph\Documents\cc_20100828_235744.reg
[2010.08.25 08:18:34 | 000,174,197 | ---- | C] () -- C:\Users\Christoph\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
[2010.08.25 08:18:28 | 000,118,382 | ---- | C] () -- C:\Users\Christoph\AppData\Local\dd_dotnetfx35install.txt
[2010.08.25 08:18:28 | 000,001,678 | ---- | C] () -- C:\Users\Christoph\AppData\Local\uxeventlog.txt
[2010.08.25 08:18:28 | 000,000,002 | ---- | C] () -- C:\Users\Christoph\AppData\Local\dd_dotnetfx35error.txt
[2010.08.24 21:03:42 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2010.08.18 22:29:10 | 000,001,074 | ---- | C] () -- C:\Users\Christoph\Desktop\DVDVideoSoft Free Studio.lnk
[2010.08.18 21:39:05 | 002,373,712 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2010.08.17 11:28:53 | 000,011,314 | ---- | C] () -- C:\Users\Christoph\Documents\cc_20100817_112852.reg
[2010.08.16 22:24:49 | 000,000,790 | ---- | C] () -- C:\Users\Public\Desktop\mIRC.lnk
[2010.08.11 20:04:53 | 000,001,601 | ---- | C] () -- C:\Users\Christoph\Desktop\Runes of Magic.lnk
[2010.08.10 09:17:05 | 000,004,848 | ---- | C] () -- C:\Users\Christoph\Documents\cc_20100810_091704.reg
[2010.08.09 22:44:48 | 000,437,328 | ---- | C] () -- C:\Users\Christoph\AppData\Local\dd_vcredistMSI7115.txt
[2010.08.09 22:44:47 | 000,011,458 | ---- | C] () -- C:\Users\Christoph\AppData\Local\dd_vcredistUI7115.txt
[2010.08.09 22:44:43 | 000,000,915 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
[2010.08.09 13:53:49 | 4293,386,240 | -HS- | C] () -- C:\hiberfil.sys
[2010.08.09 10:02:56 | 000,000,680 | ---- | C] () -- C:\Users\Christoph\AppData\Local\d3d9caps.dat
[2010.08.09 09:36:55 | 000,002,188 | ---- | C] () -- C:\Users\Christoph\Documents\cc_20100809_093653.reg
[2010.08.08 15:33:43 | 000,000,818 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk
[2010.08.08 12:53:17 | 000,004,470 | ---- | C] () -- C:\Users\Christoph\Documents\cc_20100808_125315.reg
[2010.08.07 12:57:10 | 000,019,598 | ---- | C] () -- C:\Users\Christoph\Documents\cc_20100807_125709.reg
[2010.08.05 18:27:09 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\Paint.NET.lnk
[2010.08.04 10:40:21 | 000,000,784 | ---- | C] () -- C:\Users\Public\Desktop\LOCO.lnk
[2010.08.02 20:04:47 | 000,000,761 | ---- | C] () -- C:\Users\Public\Desktop\StarCraft II.lnk
[2010.07.26 17:46:45 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2010.07.26 17:43:55 | 000,000,025 | ---- | C] () -- C:\Windows\CDESX100DEFGIPS.ini
[2010.07.25 16:53:48 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2010.07.25 16:53:43 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2010.07.25 15:36:09 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2010.07.25 12:02:03 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.07.25 11:00:34 | 000,037,301 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2010.07.25 11:00:34 | 000,037,301 | ---- | C] () -- C:\ProgramData\nvModes.001
[2010.07.25 10:40:22 | 000,000,732 | ---- | C] () -- C:\Users\Christoph\AppData\Local\d3d9caps64.dat
 
========== LOP Check ==========
 
[2010.07.25 12:04:22 | 000,000,000 | -HSD | M] -- C:\Users\Christoph\AppData\Roaming\.#
[2010.08.24 21:08:40 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\Acer E400 USB Driver
[2010.08.18 22:29:24 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\DVDVideoSoftIEHelpers
[2010.07.26 17:53:30 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\EPSON
[2010.08.11 20:06:13 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\FOG Downloader
[2010.08.27 17:16:52 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\Mount&Blade Warband
[2010.08.12 18:51:21 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\mquadr.at
[2010.08.06 15:38:45 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\REAPER
[2010.08.05 16:30:44 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\Teeworlds
[2010.08.28 11:53:44 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\TS3Client
[2010.08.29 00:36:08 | 000,000,000 | ---D | M] -- C:\Users\Christoph\AppData\Roaming\TuneUp Software
[2010.09.01 00:40:16 | 000,032,468 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
< End of report >
--- --- ---





und Extras:
OTL Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 01.09.2010 15:56:03 - Run 1
OTL by OldTimer - Version 3.2.11.0     Folder = C:\Users\Christoph\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 59,00% Memory free
10,00 Gb Paging File | 8,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): c:\pagefile.sys 6000 6000 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 281,46 Gb Free Space | 60,43% Space Free | Partition Type: NTFS
Drive D: | 3,71 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: CHRISTOPH-PC
Current User Name: Christoph
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 1\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = A8 A5 84 9A 03 2C CB 01  [binary data]
"VistaSp2" = 2B 5D 42 83 0C 2C CB 01  [binary data]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{18467FD5-2A4E-4FAE-A128-1AAA1BBF822F}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{AC3786D1-1962-4A32-BAE2-4AA2AC9D0F8F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{12ECD363-55C0-4769-A75D-10F5C99FAFD0}" = protocol=6 | dir=in | app=c:\program files (x86)\a1 telekom austria\breitband-internet-installation\fixnet installer\installer.exe | 
"{14B3075D-F6A0-4B00-9EA9-3F390FD44B19}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\srcds.exe | 
"{15927C52-D0C1-4B60-B4EE-5C4CC46BBB8D}" = protocol=17 | dir=in | app=c:\spiele\starcraft ii\starcraft ii.exe | 
"{193DBC3F-7891-4B09-9FE8-B410FB0813A3}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"{1AE32CC3-1BA2-4A3C-AD2B-236786B4D3BD}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{27233131-2FFB-420A-8D6B-F31F20126017}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\gumpl\counter-strike source\hl2.exe | 
"{2940D250-8588-4FAC-AF0C-DDEE1D977035}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lead and gold gangs of the wild west\lag_win32_public_dev.exe | 
"{29BD42FD-9B96-4687-B529-7906A0D12F01}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"{3287A622-F552-45C0-B71D-EE671E217A66}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
"{341F2EAD-35A1-4D0A-90EA-BE2E80C3949B}" = protocol=6 | dir=in | app=c:\spiele\two worlds\twoworlds_radeon.exe | 
"{351E42DD-3243-4A76-BBE5-C10AC97F7BBB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"{3B31F62C-1B66-4137-8E7E-8EDFB3B45B8F}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
"{42BFD56E-BECF-426F-94D9-F7C5B5AD802C}" = protocol=17 | dir=in | app=c:\spiele\two worlds\twoworlds_radeon.exe | 
"{44E7DD2F-BE80-402E-BC68-E7DEA8E2EE45}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{494E5E63-F333-4F72-9A51-1D0B21EFD9B8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{496E9807-3219-4BDF-941B-7BF16B06D42F}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{5EA9ED48-CC4F-4AD7-80C0-6528B1566855}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe | 
"{60835E97-3E70-491D-9FDD-E4DCB1791F04}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | 
"{6DB7DBC5-3E4E-49AB-8D4B-7A93BFECB37C}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{728FC2E5-0537-49C2-AF63-4FBD5FA46173}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{82F8E8DC-C8F9-46F9-9D34-20D5B321E5AC}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{846F395F-51FD-4037-9652-A8BE5007F4FD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lead and gold gangs of the wild west\lag_win32_public_dev.exe | 
"{8DF729B0-EA42-4E8D-9436-32EF64AA2BD8}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\gumpl\counter-strike source\hl2.exe | 
"{9727BC7B-32B9-4BC1-8EFF-D0466BB74141}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\plain sight\plainsight.exe | 
"{9E839F89-F041-473C-90FC-FBF64AAD2E6F}" = protocol=6 | dir=in | app=c:\spiele\world of warcraft\wow-3.2.0-dede-downloader.exe | 
"{A079363E-3B90-40A2-B58B-211D1D32CE4E}" = protocol=17 | dir=in | app=c:\spiele\world of warcraft\wow-3.2.0-dede-downloader.exe | 
"{AA9E0E6F-C6A1-4EC5-B1C8-91188D002D7B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe | 
"{AAA976B5-2F95-471D-A50B-D781F8444B2D}" = protocol=6 | dir=in | app=c:\spiele\two worlds\twoworlds.exe | 
"{AAF77653-07BB-4A41-A2C5-A73058677C46}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
"{AF85EC09-4D03-4E45-8EB8-DF5E4F2C46E9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\plain sight\plainsight.exe | 
"{BD39D3E2-F86C-4041-937E-D794204CF027}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe | 
"{C00DAA8B-66DB-4687-9782-8FC700B5D14C}" = protocol=17 | dir=in | app=c:\spiele\two worlds\twoworlds.exe | 
"{CFE70161-C473-47C5-8C35-2EF58C0C6E0C}" = protocol=17 | dir=in | app=c:\program files (x86)\a1 telekom austria\breitband-internet-installation\fixnet installer\installer.exe | 
"{DA29D991-5875-4961-981D-63DD31E1206C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mountblade warband\mb_warband.exe | 
"{DEBFBE4B-41B2-477F-8915-39A8FF85FEFE}" = protocol=6 | dir=in | app=c:\spiele\starcraft ii\starcraft ii.exe | 
"{E50E555C-C987-4E23-826B-BF91E295DB79}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mountblade warband\mb_warband.exe | 
"{ECF318A0-80C9-4F15-90F7-495067F34810}" = dir=in | app=c:\program files (x86)\avg\avg9\avgupd.exe | 
"{EDAC159E-4701-455E-85E4-A38478177615}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{EEAD49F9-E282-4B41-99FE-2A93DE646680}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\srcds.exe | 
"{F4EF55A8-ED61-42A0-BB65-53826DAB7F16}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | 
"{FD1E9D0A-5BC8-49E7-AE81-6528BA998232}" = dir=in | app=c:\program files (x86)\avg\avg9\avgemc.exe | 
"{FF252A92-7542-46B0-A7E1-5E1599CEAA8F}" = dir=in | app=c:\program files (x86)\avg\avg9\avgnsa.exe | 
"TCP Query User{066B1690-B295-4900-B1D6-148CAA0C9A61}C:\spiele\starcraft ii\support\blizzarddownloader.exe" = protocol=6 | dir=in | app=c:\spiele\starcraft ii\support\blizzarddownloader.exe | 
"TCP Query User{114699DF-D798-4C02-8DCE-02C8F59A9383}C:\spiele\alaplaya\loco\system\loco.exe" = protocol=6 | dir=in | app=c:\spiele\alaplaya\loco\system\loco.exe | 
"TCP Query User{49821027-0B43-4FA3-B17A-7B5AA67263E4}C:\spiele\starcraft ii\versions\base15405\sc2.exe" = protocol=6 | dir=in | app=c:\spiele\starcraft ii\versions\base15405\sc2.exe | 
"TCP Query User{62733807-FA7F-460D-8DEA-7F97DA315F8F}C:\spiele\starcraft ii\versions\base15405\sc2.exe" = protocol=6 | dir=in | app=c:\spiele\starcraft ii\versions\base15405\sc2.exe | 
"TCP Query User{67691470-D871-435B-9679-468BC4DF810E}C:\spiele\alaplaya\loco\system\loco.exe" = protocol=6 | dir=in | app=c:\spiele\alaplaya\loco\system\loco.exe | 
"TCP Query User{782C7EA1-15BA-4A7B-A4A9-7DB4E42CDD19}C:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"TCP Query User{82CF1251-C716-4B1D-90C6-4FEF690C6800}C:\users\christoph\downloads\fogdownloader-rom_3_0_1_2153.exe" = protocol=6 | dir=in | app=c:\users\christoph\downloads\fogdownloader-rom_3_0_1_2153.exe | 
"TCP Query User{88AC1397-7E8F-4647-9461-5399F60AB815}C:\spiele\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=c:\spiele\world of warcraft\launcher.exe | 
"TCP Query User{B6E9F098-9EAB-4439-8C46-D4D50834425E}C:\spiele\starcraft ii\starcraft ii.exe" = protocol=6 | dir=in | app=c:\spiele\starcraft ii\starcraft ii.exe | 
"TCP Query User{C387EAA6-7B2A-4EE9-9005-B28C0D617823}C:\program files (x86)\steam\steamapps\gumpl\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\gumpl\counter-strike source\hl2.exe | 
"TCP Query User{C6A600AD-7C89-412E-8620-95A6FBE74C0E}C:\spiele\runes of magic\client.exe" = protocol=6 | dir=in | app=c:\spiele\runes of magic\client.exe | 
"TCP Query User{D59DE735-3526-4661-8412-BFE69485AF5F}C:\program files (x86)\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirc\mirc.exe | 
"TCP Query User{D724FBD1-CD3F-4F72-BF29-2AC069AE7C65}C:\spiele\starcraft ii\support\blizzarddownloader.exe" = protocol=6 | dir=in | app=c:\spiele\starcraft ii\support\blizzarddownloader.exe | 
"TCP Query User{E834B44F-43F4-4BB3-85A1-F8C87C8358BC}C:\spiele\runes of magic\client.exe" = protocol=6 | dir=in | app=c:\spiele\runes of magic\client.exe | 
"UDP Query User{0AA4E8F4-CF10-4464-B616-074C17554754}C:\spiele\starcraft ii\support\blizzarddownloader.exe" = protocol=17 | dir=in | app=c:\spiele\starcraft ii\support\blizzarddownloader.exe | 
"UDP Query User{1443F0F1-88F7-4B3E-A239-3634F882D4A4}C:\spiele\alaplaya\loco\system\loco.exe" = protocol=17 | dir=in | app=c:\spiele\alaplaya\loco\system\loco.exe | 
"UDP Query User{1D28B62B-714C-4C57-B0A5-DF5E6E5BCC71}C:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"UDP Query User{2615DB13-C340-4644-B053-67F6D0B9D2AF}C:\program files (x86)\steam\steamapps\gumpl\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\gumpl\counter-strike source\hl2.exe | 
"UDP Query User{2FE31C1A-9BE2-4C74-84F6-705D12D3E99C}C:\spiele\runes of magic\client.exe" = protocol=17 | dir=in | app=c:\spiele\runes of magic\client.exe | 
"UDP Query User{352D5352-93A5-42DD-98EF-3834853CBD24}C:\users\christoph\downloads\fogdownloader-rom_3_0_1_2153.exe" = protocol=17 | dir=in | app=c:\users\christoph\downloads\fogdownloader-rom_3_0_1_2153.exe | 
"UDP Query User{39FD8068-E7E1-476C-812D-489C6216FF45}C:\program files (x86)\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirc\mirc.exe | 
"UDP Query User{53048FB9-A795-4111-AB23-EA50AA8990C1}C:\spiele\alaplaya\loco\system\loco.exe" = protocol=17 | dir=in | app=c:\spiele\alaplaya\loco\system\loco.exe | 
"UDP Query User{79752A59-D0A8-43C7-A3BA-5F44222A72AD}C:\spiele\runes of magic\client.exe" = protocol=17 | dir=in | app=c:\spiele\runes of magic\client.exe | 
"UDP Query User{95A5B6CA-5569-4275-8D7F-BB98419F42BB}C:\spiele\starcraft ii\support\blizzarddownloader.exe" = protocol=17 | dir=in | app=c:\spiele\starcraft ii\support\blizzarddownloader.exe | 
"UDP Query User{9F134A3B-3ED4-4D15-8121-B8EBDEBFC2C2}C:\spiele\starcraft ii\versions\base15405\sc2.exe" = protocol=17 | dir=in | app=c:\spiele\starcraft ii\versions\base15405\sc2.exe | 
"UDP Query User{AF028524-CE35-4CB3-A84D-EB4188731780}C:\spiele\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=c:\spiele\world of warcraft\launcher.exe | 
"UDP Query User{CBB7460A-65D1-45A0-AAD7-815E377371D9}C:\spiele\starcraft ii\starcraft ii.exe" = protocol=17 | dir=in | app=c:\spiele\starcraft ii\starcraft ii.exe | 
"UDP Query User{DAB1EB58-7B5A-4019-B8DB-7A378135F042}C:\spiele\starcraft ii\versions\base15405\sc2.exe" = protocol=17 | dir=in | app=c:\spiele\starcraft ii\versions\base15405\sc2.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition)
"{23B45E10-0CA5-43E9-BD6D-C2BD6CBE11AC}" = iTunes
"{328CC232-CFDC-468B-A214-2E21300E4CB5}" = Apple Mobile Device Support
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}" = Bonjour
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F0E2B312-D7FD-4349-A9B6-E90B36DB1BD1}" = Paint.NET v3.5.5
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"0BADEE36424C9945238CD1CBDECB6800485FD933" = Windows-Treiberpaket - Linux Developer Community Net  (02/02/2010 5.1.2600.2781)
"5F3015F0AD4F9F61F4D01EAE1AF322C1A901C27C" = Windows-Treiberpaket - ACER Incorporated (qcusbser) Ports  (10/12/2009 2.0.6.6)
"A61AC676A7F61C423134B0621CBA2D4134507A2D" = Windows-Treiberpaket - ACER, Inc (androidusb) USB  (10/12/2009 1.0.0010.00000)
"BF39BAA13199B9BFDFC03B6C26851E9F3246C6A2" = Windows-Treiberpaket - ACER Incorporated (qcusbser) Modem  (10/12/2009 2.0.6.6)
"Defraggler" = Defraggler
"EPSON SX100 Series" = EPSON SX100 Series Printer Uninstall
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"TeamSpeak 3 Client" = TeamSpeak 3 Client
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1ED31028-6D65-4CFD-AD03-8E484A052FE7}" = aonUpdate
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2BEB102E-F9CD-4881-984B-E288F66FD394}" = Quake Live Mozilla Plugin
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3D9892BB-A751-4E48-ADC8-E4289956CE1D}" = QuickTime
"{4767A89A-F6A5-41B1-903C-734483739882}" = Highspeed-Internet-Installation
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{5AC1CB24-8B13-48F9-BDBE-EAA0D2C5253A}" = Aion
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B7FB3C4-E71B-478D-9E15-5AE97EAD67B8}" = aonFTP
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A809006-C25A-4A3A-9DAB-94659BCDB107}" = NVIDIA PhysX
"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{904B64C4-49D8-4941-A2B6-D13D06C5CD8B}" = Controller
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{A2F166A0-F031-4E27-A057-C69733219434}_is1" = Runes of Magic
"{AC76BA86-7AD7-1031-7B44-A93000000001}" = Adobe Reader 9.3.4 - Deutsch
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C9FB868B-2086-4EE2-BD4F-BFBA36B131F4}" = NCsoft Launcher
"{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{DEDB47A3-C988-4A43-A645-E2CEA571E680}" = Epson Easy Photo Print 2
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"aonFTP" = aonFTP
"aonUpdate" = aonUpdate
"AVG9Uninstall" = AVG Free 9.0
"CCleaner" = CCleaner
"Controller" = Controller
"EPSON Scanner" = EPSON Scan
"EPSON Stylus SX100_TX100 Benutzerhandbuch" = EPSON Stylus SX100_TX100 Handbuch
"Fiesta Online(EU_German)" = Fiesta Online(EU_German) 1.02.100
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.8
"Highspeed-Internet-Installation" = Highspeed-Internet-Installation
"LOCO" = LOCO EU
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"mIRC" = mIRC
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"PunkBusterSvc" = PunkBuster Services
"StarCraft II" = StarCraft II
"Steam App 240" = Counter-Strike: Source
"Steam App 4000" = Garry's Mod
"Steam App 42120" = Lead and Gold - Gangs of the Wild West
"Steam App 48700" = Mount and Blade: Warband
"Steam App 49900" = Plain Sight
"Steam App 550" = Left 4 Dead 2
"Steam App 630" = Alien Swarm
"TuneUp Utilities" = TuneUp Utilities
"Two Worlds" = Two Worlds
"Uninstall_is1" = Uninstall 1.0.0.1
"WinLiveSuite_Wave3" = Windows Live Essentials
"World of Warcraft" = World of Warcraft
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"OnlineFestplatte" = aon Online Festplatte (entfernen)
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 28.08.2010 18:47:00 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
Error - 28.08.2010 18:47:07 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
Error - 28.08.2010 18:47:12 | Computer Name = Christoph-PC | Source = Application Hang | ID = 1002
Description = Programm SystemInformation.exe, Version 9.0.4600.2 arbeitet nicht 
mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im
 Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen
 über das Problem zu suchen.  Prozess-ID: 11b0  Anfangszeit: 01cb4702a6f0d0ae  Zeitpunkt
 der Beendigung: 0
 
Error - 29.08.2010 04:10:04 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
Error - 29.08.2010 09:24:56 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
Error - 30.08.2010 06:32:44 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
Error - 31.08.2010 04:03:34 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
Error - 31.08.2010 14:14:21 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
Error - 31.08.2010 18:35:45 | Computer Name = Christoph-PC | Source = Application Hang | ID = 1002
Description = Programm OTL.exe, Version 3.2.11.0 arbeitet nicht mehr mit Windows
 zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen
 für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem
 zu suchen.  Prozess-ID: cc  Anfangszeit: 01cb495ca93512a0  Zeitpunkt der Beendigung: 
4
 
Error - 01.09.2010 06:03:49 | Computer Name = Christoph-PC | Source = LoadPerf | ID = 3001
Description = 
 
[ System Events ]
Error - 28.08.2010 18:46:22 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 28.08.2010 18:46:30 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 28.08.2010 18:46:37 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 28.08.2010 18:46:43 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 28.08.2010 18:46:49 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 28.08.2010 18:46:56 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 28.08.2010 18:47:03 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 28.08.2010 18:47:10 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7023
Description = 
 
Error - 31.08.2010 09:14:49 | Computer Name = Christoph-PC | Source = Service Control Manager | ID = 7011
Description = 
 
Error - 31.08.2010 14:08:00 | Computer Name = Christoph-PC | Source = EventLog | ID = 6008
Description = Das System wurde zuvor am 31.08.2010 um 20:05:10 unerwartet heruntergefahren.
 
 
< End of report >
--- --- ---
Alt 01.09.2010, 18:25   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Internet langsam geworden , Hijackthis auswerten - Standard

Internet langsam geworden , Hijackthis auswerten


Sieht unauffällig aus. Internetverbindung immer noch zu langsam? Hast Du ne kabellose oder eine kabelgebundene Verbindung? Router mal neu gestartet?
__________________
--> Internet langsam geworden , Hijackthis auswerten

Alt 02.09.2010, 12:28   #7
gumplchen
 
Internet langsam geworden , Hijackthis auswerten - Standard

Internet langsam geworden , Hijackthis auswerten


Als ich den router neugestartet habe, ging es aufeinmal tatsächlich schneller :O
yeeaaah

danke für deine hilfe


gottseidank war es kein virus

Antwort

Themen zu Internet langsam geworden , Hijackthis auswerten
adobe, auswerten, avg, avg free, bho, converter, e-mail, explorer, hijack, hijackthis, internet, internet explorer, internet langsam, langsam, logfile, logfile auswerten, mp3, nvidia, software, syswow64, temp, trojaner, trojaner board, virus, vista, windows, wmp


« Firefox öffnet sich selbstständig mit Werbung --> Log-File auswerten ... | Vierenscanner und Maleware hat angeschlagen »


Ähnliche Themen: Internet langsam geworden , Hijackthis auswerten


  1. Mein Internet ist aufeinmal sehr langsam geworden! Trojaner ?
    Log-Analyse und Auswertung - 25.01.2017 (29)
  2. Internet extrem langsam geworden
    Plagegeister aller Art und deren Bekämpfung - 04.01.2014 (9)
  3. Internet seit kurzem sehr langsam geworden
    Mülltonne - 18.01.2013 (0)
  4. Internet sehr langsam geworden
    Plagegeister aller Art und deren Bekämpfung - 29.06.2012 (1)
  5. Mein Internet ist plötzlich sehr langsam geworden...
    Log-Analyse und Auswertung - 24.06.2011 (29)
  6. Internet ist viel zu langsam geworden
    Plagegeister aller Art und deren Bekämpfung - 12.06.2011 (12)
  7. Hjackthis log file analysieren - Internet extrem langsam geworden
    Log-Analyse und Auswertung - 19.01.2011 (10)
  8. Internet extrem langsam geworden
    Log-Analyse und Auswertung - 27.08.2010 (5)
  9. Mein Internet spinnt, und ist außerdem so langsam geworden
    Log-Analyse und Auswertung - 19.08.2010 (42)
  10. computer + internet sehr langsam geworden
    Log-Analyse und Auswertung - 23.03.2010 (1)
  11. Loggs auswerten - Internet langsam geworden
    Log-Analyse und Auswertung - 29.11.2009 (5)
  12. Internet ist sehr langsam geworden
    Log-Analyse und Auswertung - 14.08.2009 (1)
  13. Internet unheimlich langsam geworden
    Log-Analyse und Auswertung - 21.07.2009 (0)
  14. Internet plötzlich sehr langsam geworden
    Mülltonne - 25.12.2008 (0)
  15. Internet und Computer ziemlich langsam geworden
    Log-Analyse und Auswertung - 04.09.2008 (0)
  16. könnt Ihr HiJackThis Log-File angucken?Pc ist extrem langsam geworden
    Log-Analyse und Auswertung - 31.07.2008 (3)
  17. pc und internet verbindung ziemlich langsam geworden
    Log-Analyse und Auswertung - 28.07.2008 (17)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Internet langsam geworden , Hijackthis auswerten - Hallo Trojaner Board, Erstmal vorweg, ich finde euer Forum einfach spitzenklasse. Echt toll wie ihr den Leuten hier helft weiter so Nun zu meinem Problem.. Seit ein paar Tagen läuft - Internet langsam geworden , Hijackthis auswerten...
Archiv
Du betrachtest: Internet langsam geworden , Hijackthis auswerten auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129