Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Hohe CPU Auslastung!

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 19.04.2011, 00:24   #1
jasong123
 
Hohe CPU Auslastung! - Standard

Hohe CPU Auslastung!



Guten Abend Liebes Trojaner Board Team!

Ich hab seit längerer zeit das Problem das mein Pc ziemlich langsam läuft, und es auch schon des öfteren bei einem geöffneten Programm es zu einer CPU-Auslastung von 100% kommt. Außerdem dauert es ebenso lange bei dem hochfahren des Pc's.

Der Logfile von Malwarebytes ergab folgendes:

Das sich zwei Viren auf dem Pc befinden diese wurden erfolgreich in Quarantäne gesteckt, und die betroffenen Ordner in denen die infizierten Dateien waren wurden gelöscht von mir.

Vielen Dank im vorraus

mfg Sascha
Angehängte Dateien
Dateityp: txt mbam-log-2011-04-18 (23-42-43).txt (1,2 KB, 229x aufgerufen)

Alt 19.04.2011, 22:36   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Hohe CPU Auslastung! - Standard

Hohe CPU Auslastung!



Gibt es noch weitere Logs von Malwarebytes? Wenn ja bitte alle posten, die in Malwarebytes im Reiter Logdateien sichtbar sind.
__________________

__________________

Alt 20.04.2011, 10:05   #3
jasong123
 
Hohe CPU Auslastung! - Standard

Hohe CPU Auslastung!



Nein, leider nicht haben sie denn eine ahnung woran es liegen könnte ?
__________________

Alt 20.04.2011, 18:30   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Hohe CPU Auslastung! - Standard

Hohe CPU Auslastung!



1.) Im Forum/Board duz man sich.

2.) Mach bitte Logs mit OTL:

Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
  • Doppelklick auf die OTL.exe
  • Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
  • Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
  • Unter Extra Registry, wähle bitte Use SafeList
  • Klicke nun auf Run Scan links oben
  • Wenn der Scan beendet wurde werden 2 Logfiles erstellt
  • Poste die Logfiles hier in den Thread.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 21.04.2011, 10:55   #5
jasong123
 
Hohe CPU Auslastung! - Standard

Hohe CPU Auslastung!



okay sry wollte nur höflich sein

Logfile von OTLOTL EXTRAS Logfile:
OTL Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 21.04.2011 10:24:23 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\Sascha\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 59,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116,44 Gb Total Space | 33,31 Gb Free Space | 28,61% Space Free | Partition Type: NTFS
Drive D: | 104,73 Gb Total Space | 104,69 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
 
Computer Name: *** | User Name: *** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" = 
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{027B995F-1936-4ED2-975B-8B3D0DA3253A}" = lport=8396 | protocol=6 | dir=in | name=league of legends launcher | 
"{0693B698-276D-4599-A5CA-C4B8447B8A57}" = lport=6913 | protocol=6 | dir=in | name=league of legends launcher | 
"{09D880D5-C047-439E-AAA9-1FB8BF39311E}" = lport=445 | protocol=6 | dir=in | app=system | 
"{119E1442-3DB3-424A-B2EF-443F730CC94A}" = lport=6916 | protocol=17 | dir=in | name=league of legends launcher | 
"{13C816BD-87D5-4E0D-ACE0-6A825EBC49DC}" = rport=445 | protocol=6 | dir=out | app=system | 
"{1B3F919C-14F8-4EA3-A852-BDB7FEF24815}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
"{25805E34-3242-4A5A-A9A8-654593F81449}" = lport=8396 | protocol=17 | dir=in | name=league of legends launcher | 
"{2D1304AB-8C03-49B9-BB8F-A17FE9F1C65F}" = lport=6959 | protocol=6 | dir=in | name=league of legends launcher | 
"{38DB8BCC-9310-41B3-B253-0B46D5FAE6D7}" = lport=8394 | protocol=17 | dir=in | name=league of legends launcher | 
"{3CA4E946-21B2-4D82-958F-AA67CB68447F}" = lport=6913 | protocol=17 | dir=in | name=league of legends launcher | 
"{507CF8E8-E10A-4857-A4CD-F0EE25FF5858}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{56AA786F-34E8-425B-84D4-CA597A185080}" = lport=6881 | protocol=17 | dir=in | name=league of legends launcher | 
"{5B29CDDD-F835-4F2D-8A2F-5042298EE3AD}" = lport=8395 | protocol=6 | dir=in | name=league of legends launcher | 
"{61254B58-BCFC-47CE-9AFC-19A39431C32B}" = lport=8394 | protocol=6 | dir=in | name=league of legends launcher | 
"{666E2D56-4673-4801-8E22-5985665B2EA0}" = lport=6900 | protocol=17 | dir=in | name=league of legends launcher | 
"{6735244A-7E58-4D9C-BCC5-DFFC8069F783}" = lport=8395 | protocol=17 | dir=in | name=league of legends launcher | 
"{684943A9-09F6-401B-8725-48980FA8A69B}" = lport=8394 | protocol=6 | dir=in | name=league of legends launcher | 
"{6893E530-FC06-4304-993B-CF8EC792CAF2}" = rport=138 | protocol=17 | dir=out | app=system | 
"{68D9C0C1-1D13-4B18-B88C-6F02408E1D0C}" = lport=6900 | protocol=6 | dir=in | name=league of legends launcher | 
"{6CEAF759-3124-4FDF-B565-2B93091AD268}" = rport=137 | protocol=17 | dir=out | app=system | 
"{9595F20F-396D-4E25-A1CC-FDC751B5F485}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{96CDEA14-9092-4F59-9ED6-0EF658FB19FC}" = lport=6881 | protocol=6 | dir=in | name=league of legends launcher | 
"{979264E5-EBD2-4AA1-B266-10C5D30BF1E8}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{A132C20C-DD4E-48A1-8767-C900D59A806D}" = lport=138 | protocol=17 | dir=in | app=system | 
"{AA40860C-911C-4827-8992-BDF0EA306A1F}" = lport=6959 | protocol=17 | dir=in | name=league of legends launcher | 
"{AC464668-C317-4F0A-AB4B-1EA98B483B27}" = lport=139 | protocol=6 | dir=in | app=system | 
"{AC5DD35E-776E-411B-AFF0-6A91C56386C5}" = lport=6883 | protocol=6 | dir=in | name=league of legends launcher | 
"{D9B8FBC6-6587-476D-9753-BB912774AAB2}" = rport=139 | protocol=6 | dir=out | app=system | 
"{DFED34F4-DE8F-4908-BB4C-DFD62DACA65B}" = lport=6916 | protocol=6 | dir=in | name=league of legends launcher | 
"{F4D34758-D9A0-4D4B-ADD6-CB04CAAC9F00}" = lport=6883 | protocol=17 | dir=in | name=league of legends launcher | 
"{F82EBD82-2BD7-4EFC-8729-D9C6FAFDD30A}" = lport=137 | protocol=17 | dir=in | app=system | 
"{FBE49DCB-C194-436B-9CDC-FC3153793188}" = lport=8394 | protocol=17 | dir=in | name=league of legends launcher | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0F312322-68F8-43E1-9494-7980986BAF8F}" = protocol=17 | dir=in | app=c:\riot games\league of legends\game\league of legends.exe | 
"{1523E307-4A37-4957-B6BB-D0162C05D00B}" = protocol=6 | dir=in | app=c:\program files\league of legends\game\league of legends.exe | 
"{1C198CFF-8AEC-4353-AA08-1B5E563B478D}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe | 
"{387FEE8C-CE3C-4B9D-864F-05999B3E5950}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{3AE1C8D4-5187-41D2-91EA-2578121B6469}" = protocol=17 | dir=in | app=c:\program files\league of legends\game\league of legends.exe | 
"{3BF54942-D40D-4C9B-A897-A723F3AF82B9}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe | 
"{3E16E1A4-B095-4CFC-A7C8-CB079EFD8509}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe | 
"{4E5025AE-E479-4CD4-A6E9-37ECC8A51D32}" = protocol=17 | dir=in | app=c:\programdata\nexon\ngm\ngm.exe | 
"{5090F607-313D-4D09-B16C-F44BD1EF2A78}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii - public demo\launcher.exe | 
"{573B446F-B3AB-47E6-8DE9-57B81C999E2D}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | 
"{5AA78914-2981-4DE5-B9A8-855170323504}" = protocol=6 | dir=in | app=c:\riot games\league of legends\game\league of legends.exe | 
"{688214F8-D478-4D61-93F1-E9F3407A6ABB}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe | 
"{7168253D-D04A-4DC2-801B-4969F734D8F0}" = protocol=6 | dir=in | app=c:\program files\league of legends\air\lolclient.exe | 
"{7368F574-BA01-43A4-A05D-186E6079C5B5}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{791A604D-EAD0-4BBA-B7EF-9C619C0109C6}" = protocol=6 | dir=in | app=c:\programdata\nexon\common\nmservice.exe | 
"{8BD15212-5D60-4B4C-8392-180C3D80DFE8}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\call of duty black ops\blackops.exe | 
"{9462ED8E-1C18-45DC-B76C-C0AA2B6AF3FF}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe | 
"{9575C86A-D5E3-4329-9F02-6AB490E3D7BF}" = protocol=6 | dir=in | app=c:\riot games\league of legends\air\lolclient.exe | 
"{982FB289-A4EE-4479-83C5-0D03BA42E866}" = protocol=17 | dir=in | app=c:\riot games\league of legends\air\lolclient.exe | 
"{9FC139BE-B2BA-4E3A-95FB-69159808E034}" = protocol=17 | dir=in | app=c:\program files\league of legends\air\lolclient.exe | 
"{A615B58A-93BA-473F-8709-B8E8FE945936}" = protocol=6 | dir=in | app=c:\programdata\nexon\ngm\ngm.exe | 
"{A6F9EC0B-0EA7-494D-AEED-32057E7FDB2E}" = protocol=6 | dir=in | app=c:\program files\league of legends\air\lolclient.exe | 
"{ACEF1C3D-6184-4B36-B4DB-1D138BAEA88A}" = protocol=17 | dir=in | app=c:\program files\league of legends\air\lolclient.exe | 
"{BBA5E065-7D55-45C6-9394-B724150C7423}" = protocol=17 | dir=in | app=c:\program files\league of legends\game\league of legends.exe | 
"{C6277502-16C4-4806-A36A-9F3919EDEA58}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe | 
"{C90BBD9C-AA1A-4A3B-A03C-27CFB373FB94}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{CF4DB017-305E-4683-80F2-B1BF0F354E96}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii - public demo\launcher.exe | 
"{D2683807-50E9-4AB5-AA1E-DC5ADC570E0F}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii - public demo\launcher.exe | 
"{D3F13964-92A6-47D3-B70B-F3B898C97E8E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{E15D0B4A-146D-42AE-99B8-FE03F2C65C97}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe | 
"{E5ECA9E5-9641-4F92-BA4B-114A9AADA0EF}" = protocol=17 | dir=in | app=c:\programdata\nexon\common\nmservice.exe | 
"{F17D8DCE-9D5E-45C6-BD73-3FA65EC55C23}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe | 
"{F280FB66-0F85-4727-83AB-44C51EBD16D9}" = protocol=6 | dir=in | app=c:\program files\league of legends\game\league of legends.exe | 
"{FC1A9407-899D-45CB-A359-652BCBF68EBE}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii - public demo\launcher.exe | 
"{FC2F4129-9058-42BC-841F-C7BFF4B64EA4}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\call of duty black ops\blackops.exe | 
"TCP Query User{2CDC78D9-9FEA-4B7E-9D71-C73FB48492B8}C:\users\***\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\sascha\program files\dna\btdna.exe | 
"TCP Query User{38F5E3CA-0E99-464B-B32B-228E74D3064B}C:\program files\starcraft ii\starcraft ii.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\starcraft ii.exe | 
"TCP Query User{7C50B271-DE81-47B5-8431-E1CE8ECFEC99}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe | 
"TCP Query User{7D41869B-74C9-48A7-8780-2EBC13912F37}C:\riot games\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe | 
"TCP Query User{B28A09B2-2346-4F57-99F6-A3BA288948DA}C:\users\sascha\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\sascha\program files\dna\btdna.exe | 
"TCP Query User{C96BB866-DCD6-4D65-AB1F-014127575814}C:\program files\edgmt2\edgmt2client.dll" = protocol=6 | dir=in | app=c:\program files\edgmt2\edgmt2client.dll | 
"TCP Query User{CD867E6F-E566-4FA8-AE0E-BA2B8648B142}C:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\support\blizzarddownloader.exe | 
"TCP Query User{ED347D4E-A344-478E-BDCB-931855E5D0B5}C:\program files\ea games\battlefield play4free\bfp4f.exe" = protocol=6 | dir=in | app=c:\program files\ea games\battlefield play4free\bfp4f.exe | 
"UDP Query User{43FE1222-53AD-4B68-B5E5-48E855E49409}C:\riot games\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=c:\riot games\league of legends\lol.launcher.exe | 
"UDP Query User{458AC8F9-DFBC-48F9-8496-B9264AF05F24}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe | 
"UDP Query User{658EE87A-2804-4DE4-BC98-4785714CFCF1}C:\users\***\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\***\program files\dna\btdna.exe | 
"UDP Query User{89655C96-7E25-4356-9BDE-43E6E1E4ECCA}C:\users\***\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\***\program files\dna\btdna.exe | 
"UDP Query User{D7D2E825-9693-4F64-AE0C-749BBCB89734}C:\program files\edgmt2\edgmt2client.dll" = protocol=17 | dir=in | app=c:\program files\edgmt2\edgmt2client.dll | 
"UDP Query User{E2CBFDF3-1BE0-4FC9-9EFA-0D2C6FD497C5}C:\program files\ea games\battlefield play4free\bfp4f.exe" = protocol=17 | dir=in | app=c:\program files\ea games\battlefield play4free\bfp4f.exe | 
"UDP Query User{F113C552-86C2-4057-AAC7-1D3432156327}C:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\support\blizzarddownloader.exe | 
"UDP Query User{FB871590-8099-4F2B-9907-CA09859B933E}C:\program files\starcraft ii\starcraft ii.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\starcraft ii.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}" = ASUS AI Recovery
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software  1.14.17.1
"{12C15D18-EA4F-12D2-23DC-CCEF4407C715}" = CCC Help Russian
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{19E35880-9615-2198-7490-9DFA0D7C6993}" = CCC Help Czech
"{1A5CB8A8-5B1B-015A-AA02-78E1C4C5922C}" = Catalyst Control Center Core Implementation
"{1B044C5F-E735-00FA-B086-4EA1FB50FB2A}" = Catalyst Control Center Graphics Light
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}" = Wireless Console 3
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2599DCB2-8B77-8E30-6BB8-0D3F755496D3}" = CCC Help Portuguese
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{2CF613EC-AD25-2352-8997-D7BBE443807C}" = CCC Help Chinese Traditional
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3593A58E-77C4-EC75-DBEE-150211F663B5}" = ccc-core-static
"{37A9E6AE-49FE-CC3B-AD7A-105B0C6DD22E}" = Catalyst Control Center Graphics Full Existing
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EED4A24-27A2-017C-BE56-8D98E017DA12}" = CCC Help Spanish
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A56F382-5822-45E9-076F-BB527FB2529F}" = CCC Help Greek
"{4B6B024F-F6D4-4A7B-8ADA-F9F8370320CC}" = SRS Premium Sound
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{59E51022-F293-11C8-0355-8A59E33A371F}" = CCC Help Turkish
"{5CDA7535-8871-26A4-9BCF-E1F9557948C9}" = CCC Help French
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{60D6618B-153F-4353-8185-908E676E5888}" = ASUS FancyStart
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{694FC6BB-2192-D394-29CB-19B1104661DC}" = CCC Help German
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6E75ADB2-8A3F-08E1-D38C-2A47DBD72D6F}" = CCC Help Korean
"{76C30ADA-B796-78EF-2173-7BC94F726CBC}" = Catalyst Control Center InstallProxy
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}" = Norton Internet Security
"{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1" = Need For Speed™ World
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7FB1F762-040A-A858-493D-C02AF95CF06E}" = CCC Help Dutch
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84EAFDFA-C563-4B65-B6FA-92F1066E61EC}" = Wonderking
"{859ED27E-9D1E-4CD6-FEA3-02C049391A8D}" = CCC Help Danish
"{8D526BDB-B730-9B1B-777F-25B5F61B8C75}" = Catalyst Control Center Localization All
"{901DC58A-5C1B-4315-BA40-5AD3D3A463B9}" = ijji REACTOR
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{951D7B20-AB37-43F2-84D4-1034049CDBB3}" = CCC Help Italian
"{970D5888-EF10-1031-E9B1-2B4B520C36BB}" = ATI Catalyst Install Manager
"{99A4344A-C723-4661-A507-D9D939480358}" = Cisco LEAP Module
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{9BFD5911-93E3-42BB-BFCD-50E4BA5B8D67}" = Cisco EAP-FAST Module
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}" = ASUS MultiFrame
"{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3AB35FA-943E-4799-99DC-46EFD59E998F}" = AMD USB Audio Driver Filter
"{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}" = Brother MFL-Pro Suite
"{A9403AB2-34A3-209C-4FB0-701B5A2D4AD6}" = CCC Help Polish
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.1
"{AD483998-2E9A-4405-83FF-6E503AF49CBB}" = Microsoft Virtual PC 2007 SP1
"{AD59CC27-EF55-3F34-4AF5-67B1BD5D1F6B}" = CCC Help Chinese Standard
"{AED2DD42-9853-407E-A6BC-8A1D6B715909}" = Windows Live Messenger
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B43B2C64-E8B3-1852-A104-C8FF77CB79E3}" = Catalyst Control Center Graphics Previews Vista
"{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"{BFF9BACC-780C-F9BC-A562-AC32EBF0A8FC}" = Catalyst Control Center Graphics Full New
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C7F261D4-35C2-8D63-D1D2-D2FFC094B2B7}" = ccc-utility
"{CAFA57E8-8927-4912-AFCF-B0AA3837E989}" = Windows Live Essentials
"{CD344FA5-6657-47CD-940F-8727EED35595}" = Cisco PEAP Module
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D18DD27C-58D7-085C-3209-116F4317453A}" = Skins
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D2041A37-5FEC-49F0-AE5C-3F2FFDFAA4F4}" = Windows Live Call
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{DA41F9E9-B878-467F-95E7-27E4D1943533}" = Multimedia Card Reader
"{DBE137FE-5754-E974-ACE9-878F85B91B52}" = CCC Help Japanese
"{DE10AB76-4756-4913-BE25-55D1C1051F9A}" = WinFlash
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1" = Uniblue RegistryBooster 2010
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{E6E1CADA-AAD1-0B42-4437-DBD301D2D99A}" = CCC Help Swedish
"{E72D857C-31D1-F3CC-D314-A33BADC685C1}" = CCC Help Finnish
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{EF6B43E0-766B-EC5F-69FD-C875B2822364}" = CCC Help Hungarian
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F6D67699-9A24-2F89-E592-96CEFA46B98B}" = CCC Help Thai
"{F6FCAF13-BAC5-EB3F-9BC7-A10933D0D455}" = CCC Help English
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FF291B51-EA15-6ACC-1BBD-DEE19E5A9FEF}" = CCC Help Norwegian
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Asus_Camera_ScreenSaver" = Asus_Camera_ScreenSaver
"CCleaner" = CCleaner
"Diablo II" = Diablo II
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"Elantech" = ETDWare PS/2-x86 7.0.5.4_WHQL
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.7
"Icy Tower v1.4_is1" = Icy Tower v1.4
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{BF91B300-EEBC-4223-96F3-0FCBF7241B50}" = AmIcoSingLun
"InstallWIX_{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Messenger Plus!" = Messenger Plus! 5
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.6.16)" = Mozilla Firefox (3.6.16)
"PremiumSoft Navicat 8.0 for MySQL_is1" = PremiumSoft Navicat 8.0 for MySQL
"Starcraft" = Starcraft
"StarCraft II" = StarCraft II
"Steam App 42700" = Call of Duty: Black Ops
"Steam App 50280" = Mafia II - Demo
"Uninstall_is1" = Uninstall 1.0.0.1
"Unlocker" = Unlocker 1.8.8
"USB 2.0 UVC 1.3M WebCam" = USB 2.0 UVC 1.3M WebCam
"USB Mass Storage Filter Driver" = Multimedia Card Reader
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent DNA" = DNA
"FileZilla Client" = FileZilla Client 3.2.7.1
"Winamp Detect" = Winamp Erkennungs-Plug-in
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 08.04.2011 11:54:08 | Computer Name = *** | Source = Application Hang | ID = 1002
Description = Programm BFP4f.exe, Version 0.0.0.0 arbeitet nicht mehr mit Windows
 zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen
 für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem
 zu suchen.  Prozess-ID: 3ac  Anfangszeit: 01cbf6041ae481f7  Zeitpunkt der Beendigung:
 29
 
Error - 09.04.2011 01:11:03 | Computer Name = *** | Source = WinMgmt | ID = 10
Description = 
 
Error - 09.04.2011 15:31:52 | Computer Name = *** | Source = EventSystem | ID = 4621
Description = 
 
Error - 10.04.2011 06:22:09 | Computer Name = *** | Source = WinMgmt | ID = 10
Description = 
 
Error - 10.04.2011 12:30:09 | Computer Name = *** | Source = WinMgmt | ID = 10
Description = 
 
Error - 11.04.2011 01:54:59 | Computer Name = *** | Source = WinMgmt | ID = 10
Description = 
 
Error - 11.04.2011 06:45:51 | Computer Name = *** | Source = EventSystem | ID = 4621
Description = 
 
Error - 11.04.2011 11:20:49 | Computer Name = *** | Source = WinMgmt | ID = 10
Description = 
 
Error - 11.04.2011 14:08:47 | Computer Name = *** | Source = EventSystem | ID = 4621
Description = 
 
Error - 12.04.2011 09:54:58 | Computer Name = *** | Source = WinMgmt | ID = 10
Description = 
 
[ System Events ]
Error - 19.04.2011 14:26:01 | Computer Name = *** | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description = 
 
Error - 19.04.2011 16:46:58 | Computer Name = *** | Source = Service Control Manager | ID = 7024
Description = 
 
Error - 20.04.2011 03:01:33 | Computer Name =  ***| Source = Service Control Manager | ID = 7000
Description = 
 
Error - 20.04.2011 03:01:33 | Computer Name = *** | Source = Service Control Manager | ID = 7026
Description = 
 
Error - 20.04.2011 03:02:05 | Computer Name = *** | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description = 
 
Error - 20.04.2011 16:30:04 | Computer Name = *** | Source = DCOM | ID = 10010
Description = 
 
Error - 20.04.2011 16:47:20 | Computer Name = *** | Source = Service Control Manager | ID = 7024
Description = 
 
Error - 21.04.2011 04:01:28 | Computer Name = *** | Source = Service Control Manager | ID = 7000
Description = 
 
Error - 21.04.2011 04:01:28 | Computer Name = *** | Source = Service Control Manager | ID = 7026
Description = 
 
Error - 21.04.2011 04:01:56 | Computer Name = *** | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description = 
 
 
< End of report >
         
--- --- ---

--- --- ---

weiterer Logfile von OTLOTL Logfile:
Code:
ATTFilter
OTL logfile created on: 21.04.2011 10:24:23 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\***\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 59,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116,44 Gb Total Space | 33,31 Gb Free Space | 28,61% Space Free | Partition Type: NTFS
Drive D: | 104,73 Gb Total Space | 104,69 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
 
Computer Name: SASCHA-PC | User Name: Sascha | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\***\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
PRC - C:\Users\***\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
PRC - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtblfs.exe (Kaspersky Lab)
PRC - C:\xampp\apache\bin\httpd.exe (Apache Software Foundation)
PRC - C:\Program files\P4G\BatteryLife.exe (ATK)
PRC - C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe (SRS Labs, Inc.)
PRC - C:\Program Files\ASUS\ATK Hotkey\HControl.exe (ASUS)
PRC - C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
PRC - C:\Program Files\ASUS\Wireless Console 3\wcourier.exe ()
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\audiodg.exe (Microsoft Corporation)
PRC - C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (AlcorMicro Co., Ltd.)
PRC - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
PRC - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
PRC - C:\Program Files\ASUS\ATK Hotkey\WDC.exe (ASUS)
PRC - C:\Program Files\ASUS\SmartLogon\sensorsrv.exe (ASUS)
PRC - C:\Program Files\ASUS\Splendid\ACMON.exe (ATK)
PRC - C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe (ASUS)
PRC - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe ()
PRC - C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe (ASUS)
PRC - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
PRC - c:\program files\windows defender\MpCmdRun.exe (Microsoft Corporation)
PRC - C:\Program Files\ASUS\ASUS Live Update\ALU.exe ()
PRC - C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
PRC - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
PRC - C:\Windows\System32\ACEngSvr.exe (ASUSTeK)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\Sascha\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (npggsvc) --  File not found
SRV - (Norton Internet Security) --  File not found
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AVP) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
SRV - (Apache2.2) -- C:\xampp\apache\bin\httpd.exe (Apache Software Foundation)
SRV - (SRS_VolSync_Service) -- C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe (SRS Labs, Inc.)
SRV - (ASLDRService) -- C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe ()
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (ATKGFNEXSrv) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe ()
SRV - (StarWindServiceAE) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (vmm) -- C:\Windows\System32\drivers\VMM.sys (Microsoft Corporation)
DRV - (KLIF) -- C:\Windows\System32\drivers\klif.sys (Kaspersky Lab)
DRV - (KLIM6) -- C:\Windows\System32\drivers\klim6.sys (Kaspersky Lab)
DRV - (klbg) -- C:\Windows\system32\drivers\klbg.sys (Kaspersky Lab)
DRV - (klmouflt) -- C:\Windows\System32\drivers\klmouflt.sys (Kaspersky Lab)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (kl1) -- C:\Windows\System32\drivers\kl1.sys (Kaspersky Lab)
DRV - (SRS_PremiumSound_Service) -- C:\Windows\System32\drivers\SRS_PremiumSound_i386.sys ()
DRV - (VIAHdAudAddService) -- C:\Windows\System32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ATKACPI.sys (ATK0100)
DRV - (L1E) -- C:\Windows\System32\drivers\L1E60x86.sys (Atheros Communications, Inc.)
DRV - (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -- C:\Windows\System32\drivers\snp2uvc.sys ()
DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( )
DRV - (usbfilter) -- C:\Windows\System32\drivers\usbfilter.sys (Advanced Micro Devices Inc.)
DRV - (WimFltr) -- C:\Windows\System32\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (CRFILTER) -- C:\Windows\System32\drivers\CRFILTER.sys (Generic)
DRV - (VPCNetS2) -- C:\Windows\System32\drivers\VMNetSrv.sys (Microsoft Corporation)
DRV - (RT25USBAP) -- C:\Windows\System32\drivers\RT25USBAP.SYS (Ralink Technology Inc.)
DRV - (ASMMAP) -- C:\Program Files\ATKGFNEX\ASMMAP.sys ()
DRV - (smserial) -- C:\Windows\System32\drivers\smserial.sys (Motorola Inc.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Search"
FF - prefs.js..browser.startup.homepage: "hxxp://de.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:de:official"
FF - prefs.js..extensions.enabledItems: {d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}:1.0.0.1
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: mozrepl@hyperstruct.net:1.0.0.2009122217
FF - prefs.js..extensions.enabledItems: SkipScreen@SkipScreen:0.5.7amo
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: battlefieldplay4free@ea.com:1.0.53.2
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.04.16 09:53:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.04.16 09:53:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010.01.30 21:18:22 | 000,000,000 | ---D | M]
 
[2009.12.31 15:41:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Extensions
[2011.04.21 10:20:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\rm319cwn.default\extensions
[2010.06.29 19:02:05 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Sascha\AppData\Roaming\mozilla\Firefox\Profiles\rm319cwn.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011.04.08 17:35:23 | 000,000,000 | ---D | M] (Battlefield Play4Free) -- C:\Users\Sascha\AppData\Roaming\mozilla\Firefox\Profiles\rm319cwn.default\extensions\battlefieldplay4free@ea.com
[2010.06.23 14:57:43 | 000,000,000 | ---D | M] (MozRepl) -- C:\Users\***\AppData\Roaming\mozilla\Firefox\Profiles\rm319cwn.default\extensions\mozrepl@hyperstruct.net
[2010.11.06 15:26:29 | 000,000,000 | ---D | M] (SkipScreen) -- C:\Users\Sascha\AppData\Roaming\mozilla\Firefox\Profiles\rm319cwn.default\extensions\SkipScreen@SkipScreen
[2011.03.13 10:08:56 | 000,000,873 | ---- | M] () -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\rm319cwn.default\searchplugins\conduit.xml
[2011.04.17 14:50:38 | 000,001,056 | ---- | M] () -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\rm319cwn.default\searchplugins\icqplugin.xml
[2011.03.28 17:18:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2011.03.28 17:18:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010.01.30 21:19:20 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\mozilla firefox\extensions\linkfilter@kaspersky.ru
[2011.04.21 10:00:16 | 000,000,000 | ---D | M] (No name found) -- C:\USERS\SASCHA\PROGRAM FILES\DNA
[2011.03.28 17:17:47 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009.07.03 01:34:44 | 000,083,376 | ---- | M] (NHN USA Inc.) -- C:\Program Files\mozilla firefox\plugins\npijjiautoinstallpluginff.dll
[2010.01.14 00:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010.12.11 15:00:05 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.12.11 15:00:05 | 000,002,344 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2010.12.11 15:00:06 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2010.12.11 15:00:06 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2010.12.11 15:00:06 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O4 - HKLM..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (AlcorMicro Co., Ltd.)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [P2Go_Menu] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe (Alcohol Soft Development Team)
O4 - HKCU..\Run: [BitTorrent DNA] C:\Users\***\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [SRS Premium Sound] C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe (SRS Labs, Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Users\Sascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Sascha\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O8 - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O9 - Extra Button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O13 - gopher Prefix: missing
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - C:\Windows\system32\klogon.dll - C:\Windows\System32\klogon.dll (Kaspersky Lab)
O24 - Desktop WallPaper: C:\Users\***\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O24 - Desktop BackupWallPaper: C:\Users\Sascha\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{17490b1d-e9ae-11df-ad31-9c2bf6c05843}\Shell - "" = AutoRun
O33 - MountPoints2\{17490b1d-e9ae-11df-ad31-9c2bf6c05843}\Shell\AutoRun\command - "" = G:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.04.21 10:19:48 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Sascha\Desktop\OTL.exe
[2011.04.19 21:38:17 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Activision
[2011.04.18 19:40:32 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Malwarebytes
[2011.04.18 19:40:15 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011.04.18 19:40:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.04.18 19:40:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.04.18 19:40:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011.04.18 19:40:11 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.04.15 21:37:11 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011.04.15 21:37:09 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011.04.15 21:36:23 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011.04.15 21:36:19 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011.04.15 21:35:50 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011.04.15 21:35:19 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011.04.15 21:35:17 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011.04.15 21:35:16 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011.04.15 21:35:15 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011.04.15 21:35:09 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2011.04.15 21:35:05 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2011.04.15 21:34:51 | 002,041,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011.04.15 21:34:42 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011.04.15 21:34:41 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011.04.12 18:25:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II
[2011.04.12 18:25:50 | 000,000,000 | ---D | C] -- C:\Program Files\Diablo II
[2011.04.09 14:06:35 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Apple Computer
[2011.04.08 17:57:04 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\PunkBuster
[2011.04.08 17:36:59 | 000,000,000 | ---D | C] -- C:\Program Files\EA Games
[2011.03.28 17:52:10 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3
[2011.03.28 17:19:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011.03.28 17:18:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.03.28 17:18:22 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011.03.28 17:18:22 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.03.28 17:18:22 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.03.28 17:18:22 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011.03.28 17:08:07 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\sun
[2011.03.23 16:40:19 | 001,068,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011.03.23 16:40:19 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2009.12.31 23:02:48 | 000,176,128 | ---- | C] ( ) -- C:\Windows\System32\csnp2uvc.dll
[2009.12.31 23:00:58 | 000,013,880 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2011.04.21 10:19:51 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Sascha\Desktop\OTL.exe
[2011.04.21 10:00:09 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.04.21 10:00:09 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.04.21 09:59:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.04.21 09:59:54 | 3486,777,344 | -HS- | M] () -- C:\hiberfil.sys
[2011.04.19 20:36:23 | 000,000,215 | ---- | M] () -- C:\Users\***\Desktop\Call of Duty Black Ops.url
[2011.04.18 23:46:50 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2011.04.18 19:40:16 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.16 13:52:23 | 000,018,432 | ---- | M] () -- C:\Users\***\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.04.16 13:48:34 | 000,630,418 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2011.04.16 13:48:34 | 000,596,670 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.04.16 13:48:34 | 000,127,170 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2011.04.16 13:48:34 | 000,104,744 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.04.16 09:17:33 | 000,255,400 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.04.12 18:39:40 | 000,000,903 | ---- | M] () -- C:\Users\Public\Desktop\Diablo II.lnk
[2011.04.08 17:59:43 | 000,234,768 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2011.04.08 17:44:48 | 000,138,056 | ---- | M] () -- C:\Users\***\AppData\Roaming\PnkBstrK.sys
[2011.04.07 07:03:33 | 000,000,680 | ---- | M] () -- C:\Users\***\AppData\Local\d3d9caps.dat
[2011.04.04 17:20:50 | 000,115,267 | ---- | M] () -- C:\Windows\System32\drivers\klin.dat
[2011.04.04 17:20:50 | 000,097,859 | ---- | M] () -- C:\Windows\System32\drivers\klick.dat
[2011.03.28 18:12:51 | 000,001,035 | ---- | M] () -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
[2011.03.28 17:52:12 | 000,000,989 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
[2011.03.28 17:17:47 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011.03.28 17:17:47 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011.03.28 17:17:47 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011.03.28 17:17:47 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2011.04.19 20:36:23 | 000,000,215 | ---- | C] () -- C:\Users\***\Desktop\Call of Duty Black Ops.url
[2011.04.18 19:40:16 | 000,000,913 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.04.12 18:25:50 | 000,000,903 | ---- | C] () -- C:\Users\Public\Desktop\Diablo II.lnk
[2011.04.08 17:59:43 | 000,234,768 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2011.04.08 17:44:48 | 000,138,056 | ---- | C] () -- C:\Users\***\AppData\Roaming\PnkBstrK.sys
[2011.03.28 18:12:51 | 000,001,035 | ---- | C] () -- C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
[2011.03.28 17:52:12 | 000,000,989 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
[2010.06.19 16:59:57 | 000,000,680 | ---- | C] () -- C:\Users\***\AppData\Local\d3d9caps.dat
[2010.06.09 17:04:46 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat
[2010.03.06 09:46:35 | 000,032,579 | ---- | C] () -- C:\Windows\scunin.dat
[2010.02.10 19:18:28 | 000,000,600 | ---- | C] () -- C:\Users\***\AppData\Local\PUTTY.RND
[2010.02.10 18:59:52 | 001,073,152 | ---- | C] () -- C:\Windows\System32\libmysql_c.dll
[2010.02.10 18:24:54 | 001,589,248 | ---- | C] () -- C:\Windows\System32\libmysql_d.dll
[2010.01.31 18:57:06 | 000,000,279 | ---- | C] () -- C:\Windows\Brpfx04a.ini
[2010.01.31 18:57:06 | 000,000,093 | ---- | C] () -- C:\Windows\brpcfx.ini
[2010.01.31 18:57:06 | 000,000,050 | ---- | C] () -- C:\Windows\System32\bridf07a.dat
[2010.01.30 21:19:06 | 000,115,267 | ---- | C] () -- C:\Windows\System32\drivers\klin.dat
[2010.01.30 21:19:06 | 000,097,859 | ---- | C] () -- C:\Windows\System32\drivers\klick.dat
[2010.01.15 16:23:07 | 000,018,432 | ---- | C] () -- C:\Users\Sascha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.01.02 11:10:50 | 000,000,466 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2010.01.02 11:10:50 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI
[2009.12.31 23:03:32 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2009.12.31 23:03:31 | 000,181,944 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009.12.31 23:02:49 | 001,753,984 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2009.12.31 23:02:49 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini
[2009.12.31 23:02:48 | 000,028,672 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2009.12.31 22:53:47 | 000,045,056 | ---- | C] () -- C:\Windows\System32\acovcnt.exe
[2009.12.31 22:49:04 | 000,053,248 | ---- | C] () -- C:\Windows\System32\LogonStart.dll
[2009.12.31 22:47:43 | 000,047,672 | ---- | C] () -- C:\Windows\AsScrProlog.exe
[2009.12.31 22:24:34 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009.12.31 16:11:16 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.12.31 16:10:49 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009.12.31 16:10:49 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009.12.31 15:12:27 | 000,233,512 | ---- | C] () -- C:\Windows\System32\drivers\SRS_PremiumSound_i386.sys
[2009.09.09 19:01:40 | 000,027,675 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat
[2008.04.16 13:11:34 | 000,630,418 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2008.04.16 13:11:34 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2008.04.16 13:11:34 | 000,127,170 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2008.04.16 13:11:34 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2008.04.16 12:43:39 | 000,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2008.03.07 14:28:54 | 000,005,120 | ---- | C] () -- C:\Windows\System32\CRFILTER.dll
[2006.11.02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 14:47:37 | 000,255,400 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 12:33:01 | 000,596,670 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 12:33:01 | 000,104,744 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

< End of report >
         
--- --- ---
dabei ist mir aufgefallen das in der zeile " 3,00 Gb Total Physical Memory" steht aber ich müsste 4 Gb Ram haben (damit ist doch der Arbeitsspeicher gemeint oder ?)


Geändert von jasong123 (21.04.2011 um 11:37 Uhr)

Alt 21.04.2011, 16:32   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Hohe CPU Auslastung! - Standard

Hohe CPU Auslastung!



Zitat:
dabei ist mir aufgefallen das in der zeile " 3,00 Gb Total Physical Memory" steht aber ich müsste 4 Gb Ram haben (damit ist doch der Arbeitsspeicher gemeint oder ?)
Und was willst du dann mit einem 32-Bit-Windows? Erst ein 64-Bit-Betriebssystem kann Arbeitsspeicher ab 4 GB richtig verwalten. Ein 32-Bit-OS könnte das theoretisch aus, aber aus dem Adressraum von 2^32 werden auch Räume benötigt um andere Komponenten zu verwalten.
Kurz: 4 GB RAM und mehr machen auf einem 32-Bit-Windows keinen Sinn.

Willst du da überhaupt noch weitermachen oder gleich formatieren und ein 64-Bit-Windows installieren? Ist dir klar, dass man sowas auch erstmal haben (kaufen) muss?!
__________________
--> Hohe CPU Auslastung!

Alt 22.04.2011, 08:47   #7
jasong123
 
Hohe CPU Auslastung! - Standard

Hohe CPU Auslastung!



hm okay davon habe ich auch schon mal gehört, aber dann finde ich es äußerlich komig das bei dem Pc nur ein 32-Bit-Windows dabei war und kein 64-Bit. Dies schätze ich mal ist aber dann gewollt. Ich würde dann sagen das ich meinen Pc komplett neu formatiere. Denn ich habe noch eine 64-Bit Version von meinem alten Pc.

Antwort

Themen zu Hohe CPU Auslastung!
100%, auslastung, board, cpu, cpu auslastung, cpu-auslastung, dateien, erfolgreich, folge, folgendes, gelöscht, guten, hochfahren, hohe, hohe cpu auslastung, infizierte, langsam, logfile, malwarebytes, ordner, problem, programm, quarantäne, trojaner, trojaner board, viren



Ähnliche Themen: Hohe CPU Auslastung!


  1. Hohe CPU Auslastung
    Plagegeister aller Art und deren Bekämpfung - 26.04.2015 (1)
  2. Hohe CPU/Ram-Auslastung
    Alles rund um Windows - 17.11.2012 (5)
  3. Hohe CPU-Auslastung (cmd.exe)
    Plagegeister aller Art und deren Bekämpfung - 04.11.2011 (9)
  4. hohe cpu auslastung
    Antiviren-, Firewall- und andere Schutzprogramme - 10.11.2010 (5)
  5. zu hohe CPU Auslastung
    Log-Analyse und Auswertung - 07.11.2010 (13)
  6. Hohe CPU Auslastung
    Plagegeister aller Art und deren Bekämpfung - 11.11.2009 (2)
  7. hohe CPU-Auslastung
    Netzwerk und Hardware - 12.10.2009 (3)
  8. Hohe CPU-Auslastung
    Log-Analyse und Auswertung - 09.09.2009 (20)
  9. hohe CPU Auslastung
    Log-Analyse und Auswertung - 07.06.2009 (6)
  10. Hohe CPU Auslastung
    Plagegeister aller Art und deren Bekämpfung - 18.01.2009 (1)
  11. hohe cpu auslastung
    Log-Analyse und Auswertung - 11.12.2008 (0)
  12. Hohe CPU Auslastung
    Mülltonne - 08.11.2008 (0)
  13. Hohe Cpu Auslastung
    Plagegeister aller Art und deren Bekämpfung - 19.07.2007 (11)
  14. Hohe Auslastung
    Log-Analyse und Auswertung - 26.12.2006 (5)
  15. Hohe CPU-Auslastung
    Log-Analyse und Auswertung - 22.05.2006 (1)
  16. PC hat hohe CPU Auslastung :<
    Log-Analyse und Auswertung - 28.05.2005 (10)
  17. cmd.exe und hohe cpu auslastung ?
    Plagegeister aller Art und deren Bekämpfung - 13.06.2004 (8)

Zum Thema Hohe CPU Auslastung! - Guten Abend Liebes Trojaner Board Team! Ich hab seit längerer zeit das Problem das mein Pc ziemlich langsam läuft, und es auch schon des öfteren bei einem geöffneten Programm es - Hohe CPU Auslastung!...
Archiv
Du betrachtest: Hohe CPU Auslastung! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.