| Marcus12 | 07.03.2012 14:54 |
Hier die beiden Logs von OTL
OTL:
OTL Logfile: Code:
OTL logfile created on: 07.03.2012 14:32:26 - Run 1
OTL by OldTimer - Version 3.2.35.1 Folder = C:\Dokumente und Einstellungen\Hermann\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
959,36 Mb Total Physical Memory | 463,65 Mb Available Physical Memory | 48,33% Memory free
1,14 Gb Paging File | 0,70 Gb Available in Paging File | 61,83% Paging File free
Paging file location(s): C:\pagefile.sys 288 576 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINHOME | %ProgramFiles% = C:\Programme
Drive C: | 18,86 Gb Total Space | 7,17 Gb Free Space | 38,00% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 48,56 Gb Free Space | 99,44% Space Free | Partition Type: NTFS
Drive G: | 6,83 Gb Total Space | 6,82 Gb Free Space | 99,93% Space Free | Partition Type: NTFS
Computer Name: HERMANN-B85167D | User Name: Hermann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Dokumente und Einstellungen\Hermann\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Programme\F-Secure\Anti-Virus\fsav32.exe (F-Secure Corporation)
PRC - C:\Programme\F-Secure\Anti-Virus\fssm32.exe (F-Secure Corporation)
PRC - C:\Programme\F-Secure\Anti-Virus\fsgk32.exe (F-Secure Corporation)
PRC - C:\Programme\F-Secure\ORSP Client\fsorsp.exe (F-Secure Corporation)
PRC - C:\Programme\F-Secure\FWES\program\fsdfwd.exe (F-Secure Corporation)
PRC - C:\Programme\F-Secure\Anti-Virus\fsgk32st.exe (F-Secure Corporation)
PRC - C:\Programme\F-Secure\Common\FSM32.EXE (F-Secure Corporation)
PRC - C:\Programme\F-Secure\Common\FSMA32.EXE (F-Secure Corporation)
PRC - C:\Programme\F-Secure\Common\FSHDLL32.EXE (F-Secure Corporation)
PRC - C:\WINHOME\explorer.exe (Microsoft Corporation)
PRC - C:\WINHOME\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Programme\FRITZ!DSL\StCenter.exe (AVM Berlin)
PRC - C:\Programme\FRITZ!DSL\FwebProt.exe (AVM Berlin)
PRC - C:\Programme\FRITZ!DSL\IGDCTRL.EXE (AVM Berlin)
PRC - C:\Programme\Gemeinsame Dateien\EPSON\EBAPI\SAgent2.exe (SEIKO EPSON CORPORATION)
========== Modules (No Company Name) ==========
MOD - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.DEU ()
MOD - C:\Programme\F-Secure\Anti-Virus\minifilter\hashlib_x86.dll ()
MOD - \\?\c:\programme\f-secure\hips\fsumi.dll ()
MOD - C:\Programme\F-Secure\Spam Control\fsas.dll ()
MOD - C:\Programme\F-Secure\FSGUI\strres.eng ()
MOD - C:\Programme\F-Secure\FSGUI\gres.dll ()
MOD - C:\Programme\F-Secure\FSGUI\fsavures.eng ()
MOD - C:\Programme\F-Secure\FSGUI\about.dll ()
MOD - C:\Programme\F-Secure\FSGUI\flyerres.eng ()
MOD - C:\Programme\F-Secure\FSGUI\aboutres.dll ()
MOD - C:\Programme\F-Secure\FSPC\fspcfsm.eng ()
MOD - C:\Programme\F-Secure\Anti-Virus\fsavhres.eng ()
MOD - C:\Programme\FRITZ!DSL\SSLEAY32.DLL ()
MOD - C:\Programme\FRITZ!DSL\LIBEAY32.DLL ()
========== Win32 Services (SafeList) ==========
SRV - (wuauserv) -- File not found
SRV - (AppMgmt) -- File not found
SRV - (MBAMService) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (FSORSPClient) -- C:\Programme\F-Secure\ORSP Client\fsorsp.exe (F-Secure Corporation)
SRV - (FSDFWD) -- C:\Programme\F-Secure\FWES\Program\fsdfwd.exe (F-Secure Corporation)
SRV - (F-Secure Gatekeeper Handler Starter) -- C:\Programme\F-Secure\Anti-Virus\fsgk32st.exe (F-Secure Corporation)
SRV - (FSMA) -- C:\Programme\F-Secure\Common\FSMA32.EXE (F-Secure Corporation)
SRV - (AVM IGD CTRL Service) -- C:\Programme\FRITZ!DSL\IGDCTRL.EXE (AVM Berlin)
SRV - (de_serv) -- C:\Programme\Gemeinsame Dateien\AVM\De_serv.exe (AVM Berlin)
SRV - (ose) -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (EPSONStatusAgent2) -- C:\Programme\Gemeinsame Dateien\EPSON\EBAPI\SAgent2.exe (SEIKO EPSON CORPORATION)
========== Driver Services (SafeList) ==========
DRV - (WDICA) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (InCDRm) -- File not found
DRV - (InCDPass) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (GT680x) -- File not found
DRV - (GMSIPCI) -- File not found
DRV - (Changer) -- File not found
DRV - (catchme) -- File not found
DRV - (MBAMProtector) -- C:\WINHOME\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (F-Secure Gatekeeper) -- C:\Programme\F-Secure\Anti-Virus\minifilter\fsgk.sys ()
DRV - (fsbts) -- C:\WINHOME\system32\Drivers\fsbts.sys ()
DRV - (F-Secure HIPS) -- C:\Programme\F-Secure\HIPS\drivers\fshs.sys (F-Secure Corporation)
DRV - (FSFW) -- C:\WINHOME\System32\drivers\fsdfw.sys (F-Secure Corporation)
DRV - (sptd) -- C:\WINHOME\System32\Drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINHOME\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (ati2mtag) -- C:\WINHOME\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (AmdK8) -- C:\WINHOME\system32\drivers\AmdK8.sys (Advanced Micro Devices)
DRV - (rtl8139) NT-Treiber für Realtek RTL8139(A/B/C) -- C:\WINHOME\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (RTL8023xp) -- C:\WINHOME\system32\drivers\Rtlnicxp.sys (Realtek Semiconductor Corporation )
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINHOME\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{512AEF10-9F13-45E9-9E20-C1F6EBD53D6C}: "URL" = hxxp://ein.anderes-wort.de/fuer/{searchTerms}
IE - HKCU\..\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}: "URL" = hxxp://search.alot.com/web?q={searchTerms}&pr=prov&client_id=882BF40001CC25D70147B4B3&install_time=2011-06-08T12:25:24Z&src_id=11504&camp_id=2718&tb_version=2.5.18000.3
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADBF_de
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..network.proxy.type: 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINHOME\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\litmus-ff@f-secure.com: C:\Programme\F-Secure\NRS\litmus-ff@f-secure.com [2012.02.17 16:46:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Programme\Mozilla Firefox\components [2012.03.06 16:20:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins
[2011.09.13 19:33:20 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\Hermann\Anwendungsdaten\Mozilla\Extensions
[2012.03.06 16:20:09 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2012.02.17 16:46:59 | 000,000,000 | ---D | M] ("Browsing Protection") -- C:\PROGRAMME\F-SECURE\NRS\LITMUS-FF@F-SECURE.COM
[2012.03.06 15:52:40 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAMME\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2012.02.16 15:55:53 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browsercomps.dll
[2012.02.16 12:02:53 | 000,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.02.16 11:48:01 | 000,002,252 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\bing.xml
[2012.02.16 12:02:53 | 000,001,153 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2012.02.16 12:02:53 | 000,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2012.02.16 12:02:53 | 000,001,178 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2012.02.16 12:02:53 | 000,001,105 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2012.03.07 10:29:41 | 000,000,027 | ---- | M]) - C:\WINHOME\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Programme\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Browsing Protection Class) - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Programme\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Browsing Protection Toolbar) - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Programme\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Programme\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [F-Secure Manager] C:\Programme\F-Secure\Common\FSM32.EXE (F-Secure Corporation)
O4 - HKLM..\Run: [F-Secure TNB] C:\Programme\F-Secure\FSGUI\TNBUtil.exe (F-Secure Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINHOME\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users.WINHOME\Startmenü\Programme\Autostart\FRITZ!DSL Startcenter.lnk = C:\Programme\FRITZ!DSL\StCenter.exe (AVM Berlin)
O4 - Startup: C:\Dokumente und Einstellungen\Hermann\Startmenü\Programme\Autostart\FRITZ!DSL Protect.lnk = C:\Programme\FRITZ!DSL\FwebProt.exe (AVM Berlin)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Google Sidewiki... - res://C:\Programme\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe File not found
O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Programme\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Programme\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Programme\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Programme\F-Secure\FSPS\program\FSLSP.DLL (F-Secure Corporation)
O15 - HKCU\..Trusted Domains: fritz.box ([]* in Lokales Intranet)
O15 - HKCU\..Trusted Ranges: Range1 ([*] in Lokales Intranet)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3F26F2DA-BE80-41E9-BAD4-9AC022C832BB}: DhcpNameServer = 192.168.178.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINHOME\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINHOME\system32\userinit.exe) - C:\WINHOME\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINHOME\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O24 - Desktop WallPaper: C:\Dokumente und Einstellungen\Hermann\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Dokumente und Einstellungen\Hermann\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003.01.04 04:07:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2012.03.07 14:31:27 | 000,584,704 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Hermann\Desktop\OTL.exe
[2012.03.07 10:55:17 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2012.03.07 10:52:30 | 004,428,059 | R--- | C] (Swearware) -- C:\Dokumente und Einstellungen\Hermann\Desktop\ComboFix.exe
[2012.03.06 16:21:27 | 000,000,000 | ---D | C] -- C:\Programme\ESET
[2012.03.06 16:09:56 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2012.03.06 15:52:52 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\javaws.exe
[2012.03.06 15:52:52 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\javaw.exe
[2012.03.06 15:52:52 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\java.exe
[2012.03.06 15:52:52 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\javacpl.cpl
[2012.03.06 15:52:34 | 000,000,000 | ---D | C] -- C:\Programme\Java
[2012.03.06 15:50:27 | 000,910,112 | ---- | C] (Sun Microsystems, Inc.) -- C:\Dokumente und Einstellungen\Hermann\Desktop\jxpiinstall.exe
[2012.03.06 14:25:02 | 000,607,260 | R--- | C] (Swearware) -- C:\Dokumente und Einstellungen\Hermann\Desktop\dds.scr
[2012.03.06 14:14:06 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Hermann\Anwendungsdaten\Malwarebytes
[2012.03.06 14:13:58 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users.WINHOME\Startmenü\Programme\Malwarebytes' Anti-Malware
[2012.03.06 14:13:57 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users.WINHOME\Anwendungsdaten\Malwarebytes
[2012.03.06 14:13:55 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\WINHOME\System32\drivers\mbam.sys
[2012.03.06 14:13:55 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2012.03.06 14:11:18 | 009,502,424 | ---- | C] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Hermann\Desktop\mbam-setup-1.60.1.1000.exe
[2012.03.06 14:11:15 | 002,063,920 | ---- | C] (Kaspersky Lab ZAO) -- C:\Dokumente und Einstellungen\Hermann\Desktop\tdsskiller.exe
[2012.03.06 13:37:39 | 000,000,000 | ---D | C] -- C:\WINHOME\temp
[2012.03.06 13:27:23 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINHOME\SWREG.exe
[2012.03.06 13:27:23 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINHOME\SWSC.exe
[2012.03.06 13:27:23 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINHOME\SWXCACLS.exe
[2012.03.06 13:27:23 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINHOME\NIRCMD.exe
[2012.03.06 13:27:19 | 000,000,000 | ---D | C] -- C:\WINHOME\ERDNT
[2012.03.06 13:14:06 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012.03.06 11:31:14 | 000,000,000 | R--D | C] -- C:\Dokumente und Einstellungen\All Users.WINHOME\Dokumente\Eigene Videos
[5 C:\WINHOME\*.tmp files -> C:\WINHOME\*.tmp -> ]
[1 C:\WINHOME\System32\dllcache\*.tmp files -> C:\WINHOME\System32\dllcache\*.tmp -> ]
[1 C:\WINHOME\System32\*.tmp files -> C:\WINHOME\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012.03.07 14:31:28 | 000,584,704 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Hermann\Desktop\OTL.exe
[2012.03.07 13:59:00 | 000,001,090 | ---- | M] () -- C:\WINHOME\tasks\GoogleUpdateTaskMachineUA.job
[2012.03.07 13:45:02 | 000,000,236 | ---- | M] () -- C:\WINHOME\tasks\Epson Printer Software Downloader.job
[2012.03.07 12:59:01 | 000,001,086 | ---- | M] () -- C:\WINHOME\tasks\GoogleUpdateTaskMachineCore.job
[2012.03.07 11:49:43 | 000,013,722 | ---- | M] () -- C:\WINHOME\System32\wpa.dbl
[2012.03.07 11:48:57 | 000,002,048 | --S- | M] () -- C:\WINHOME\bootstat.dat
[2012.03.07 10:55:24 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2012.03.07 10:52:30 | 004,428,059 | R--- | M] (Swearware) -- C:\Dokumente und Einstellungen\Hermann\Desktop\ComboFix.exe
[2012.03.07 10:29:41 | 000,000,027 | ---- | M] () -- C:\WINHOME\System32\drivers\etc\hosts
[2012.03.07 10:21:16 | 000,000,327 | ---- | M] () -- C:\Boot.bak
[2012.03.06 16:20:11 | 000,000,703 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINHOME\Desktop\Mozilla Firefox.lnk
[2012.03.06 16:12:20 | 000,001,721 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINHOME\Desktop\Adobe Reader X.lnk
[2012.03.06 15:52:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\deployJava1.dll
[2012.03.06 15:52:38 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\javaws.exe
[2012.03.06 15:52:38 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\javaw.exe
[2012.03.06 15:52:38 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\java.exe
[2012.03.06 15:52:38 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINHOME\System32\javacpl.cpl
[2012.03.06 15:50:28 | 000,910,112 | ---- | M] (Sun Microsystems, Inc.) -- C:\Dokumente und Einstellungen\Hermann\Desktop\jxpiinstall.exe
[2012.03.06 15:49:48 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINHOME\System32\FlashPlayerCPLApp.cpl
[2012.03.06 14:15:25 | 000,325,836 | ---- | M] () -- C:\WINHOME\System32\perfh007.dat
[2012.03.06 14:15:25 | 000,320,652 | ---- | M] () -- C:\WINHOME\System32\perfh009.dat
[2012.03.06 14:15:25 | 000,052,254 | ---- | M] () -- C:\WINHOME\System32\perfc007.dat
[2012.03.06 14:15:25 | 000,044,028 | ---- | M] () -- C:\WINHOME\System32\perfc009.dat
[2012.03.06 14:13:58 | 000,000,763 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users.WINHOME\Desktop\Malwarebytes Anti-Malware.lnk
[2012.03.06 14:04:36 | 009,502,424 | ---- | M] (Malwarebytes Corporation ) -- C:\Dokumente und Einstellungen\Hermann\Desktop\mbam-setup-1.60.1.1000.exe
[2012.03.06 14:03:22 | 002,063,920 | ---- | M] (Kaspersky Lab ZAO) -- C:\Dokumente und Einstellungen\Hermann\Desktop\tdsskiller.exe
[2012.03.06 11:15:36 | 000,607,260 | R--- | M] (Swearware) -- C:\Dokumente und Einstellungen\Hermann\Desktop\dds.scr
[2012.02.20 15:13:22 | 000,002,509 | ---- | M] () -- C:\Dokumente und Einstellungen\Hermann\Desktop\Microsoft Office Word 2003 (2).lnk
[2012.02.16 17:06:37 | 000,000,193 | ---- | M] () -- C:\Dokumente und Einstellungen\Hermann\default.pls
[2012.02.16 17:06:29 | 000,000,116 | ---- | M] () -- C:\WINHOME\NeroDigital.ini
[2012.02.16 16:46:04 | 000,198,552 | ---- | M] () -- C:\WINHOME\System32\FNTCACHE.DAT
[2012.02.15 20:37:16 | 000,001,374 | ---- | M] () -- C:\WINHOME\imsins.BAK
[5 C:\WINHOME\*.tmp files -> C:\WINHOME\*.tmp -> ]
[1 C:\WINHOME\System32\dllcache\*.tmp files -> C:\WINHOME\System32\dllcache\*.tmp -> ]
[1 C:\WINHOME\System32\*.tmp files -> C:\WINHOME\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.03.06 16:12:20 | 000,001,721 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users.WINHOME\Desktop\Adobe Reader X.lnk
[2012.03.06 16:12:19 | 000,001,804 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users.WINHOME\Startmenü\Programme\Adobe Reader X.lnk
[2012.03.06 14:13:58 | 000,000,763 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users.WINHOME\Desktop\Malwarebytes Anti-Malware.lnk
[2012.03.06 13:29:44 | 000,000,327 | ---- | C] () -- C:\Boot.bak
[2012.03.06 13:27:23 | 000,256,000 | ---- | C] () -- C:\WINHOME\PEV.exe
[2012.03.06 13:27:23 | 000,208,896 | ---- | C] () -- C:\WINHOME\MBR.exe
[2012.03.06 13:27:23 | 000,098,816 | ---- | C] () -- C:\WINHOME\sed.exe
[2012.03.06 13:27:23 | 000,080,412 | ---- | C] () -- C:\WINHOME\grep.exe
[2012.03.06 13:27:23 | 000,068,096 | ---- | C] () -- C:\WINHOME\zip.exe
[2012.02.15 20:02:12 | 000,003,072 | ---- | C] () -- C:\WINHOME\System32\iacenc.dll
[2012.02.15 20:02:12 | 000,003,072 | ---- | C] () -- C:\WINHOME\System32\dllcache\iacenc.dll
[2011.02.28 12:44:02 | 000,000,116 | ---- | C] () -- C:\WINHOME\NeroDigital.ini
[2010.11.18 16:46:00 | 000,000,000 | ---- | C] () -- C:\WINHOME\EEventManager.INI
[2010.08.16 17:42:18 | 000,000,151 | ---- | C] () -- C:\WINHOME\PhotoSnapViewer.INI
< End of report >
--- --- ---
EXTRAS:
OTL Logfile: Code:
OTL Extras logfile created on: 07.03.2012 14:32:26 - Run 1
OTL by OldTimer - Version 3.2.35.1 Folder = C:\Dokumente und Einstellungen\Hermann\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
959,36 Mb Total Physical Memory | 463,65 Mb Available Physical Memory | 48,33% Memory free
1,14 Gb Paging File | 0,70 Gb Available in Paging File | 61,83% Paging File free
Paging file location(s): C:\pagefile.sys 288 576 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINHOME | %ProgramFiles% = C:\Programme
Drive C: | 18,86 Gb Total Space | 7,17 Gb Free Space | 38,00% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 48,56 Gb Free Space | 99,44% Space Free | Partition Type: NTFS
Drive G: | 6,83 Gb Total Space | 6,82 Gb Free Space | 99,93% Space Free | Partition Type: NTFS
Computer Name: HERMANN-B85167D | User Name: Hermann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programme\FRITZ!DSL\IGDCTRL.EXE" = C:\Programme\FRITZ!DSL\IGDCTRL.EXE:*:Enabled:FRITZ!DSL - igdctrl.exe -- (AVM Berlin)
"C:\Programme\FRITZ!DSL\FBOXUPD.EXE" = C:\Programme\FRITZ!DSL\FBOXUPD.EXE:*:Enabled:AVM FRITZ!Box Firmware-Update -- (AVM Berlin)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page
"{84B2CF01-194D-2284-B313-F2E0D78D1031}" = Nero 7 Demo
"{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2
"{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}" = Camera RAW Plug-In for EPSON Creativity Suite
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.2) - Deutsch
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{B3EC8F2C-B71B-4030-BB37-1A04BE8516FC}" = OpenOffice.org 2.0
"{B3F1E526-180B-4480-9FEC-3E2DCB8EA9CE}" = F-Secure PSC Prerequisites
"{B6A98E5F-D6A7-46FB-9E9D-1F7BF4434001}" = Epson Printer Software Downloader
"{FFFAE01B-466F-4C07-9821-A94FD753BDDA}" = EpsonNet Setup
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"All ATI Software" = ATI - Software Uninstall Utility
"alotToolbar" = ALOT Symbolleiste
"ATI Display Driver" = ATI Display Driver
"AVMFBox" = FRITZ!Box
"CCleaner" = CCleaner
"CX4300_5500_DX4400 Handbuch" = CX4300_5500_DX4400 Handbuch
"Epson Printer Software Downloader" = Epson Printer Software Downloader
"EPSON Scanner" = EPSON Scan
"Epson Stylus SX510W_TX550W Benutzerhandbuch" = Epson Stylus SX510W_TX550W Handbuch
"EPSON SX510W Series" = EPSON SX510W Series Printer Uninstall
"ESET Online Scanner" = ESET Online Scanner v3
"F-Secure Product 444" = F-Secure Internet Security 2011
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.60.1.1000
"Mozilla Firefox 10.0.2 (x86 de)" = Mozilla Firefox 10.0.2 (x86 de)
"MSI Live Update 3" = MSI Live Update 3
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"TextBridge Classic 2.0" = TextBridge Classic 2.0
"Windows XP Service Pack" = Windows XP Service Pack 3
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 10.06.2011 14:04:27 | Computer Name = HERMANN-B85167D | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung iexplore.exe, Version 7.0.6000.17096, fehlgeschlagenes
Modul ntdll.dll, Version 5.1.2600.6055, Fehleradresse 0x000108f3.
Error - 15.06.2011 03:09:06 | Computer Name = HERMANN-B85167D | Source = Message from F-Secure Anti-Virus on | ID = 103
Description = 1 2011-06-15 09:09:04+02:00 hermann-b85167d HERMANN-B85167D\Hermann
Message from F-Secure Anti-Virus on E-Mail scanning initialization failed, reason:
InitMessageLoop(): DfpRegisterOID(HostMode) failed..
Error - 15.06.2011 03:09:06 | Computer Name = HERMANN-B85167D | Source = Message from F-Secure Anti-Virus on | ID = 103
Description = 2 2011-06-15 09:09:06+02:00 hermann-b85167d HERMANN-B85167D\Hermann
Message from F-Secure Anti-Virus on E-Mail scanning initialization failed, reason:
MirrorMain::Initialize(): InitMessageLoop() failed..
Error - 15.06.2011 03:09:06 | Computer Name = HERMANN-B85167D | Source = Message from F-Secure Anti-Virus on | ID = 103
Description = 3 2011-06-15 09:09:06+02:00 hermann-b85167d HERMANN-B85167D\Hermann
Message from F-Secure Anti-Virus on E-Mail scanning is not functioning due to
a severe error. If the problem persists, please contact the system administrator.
[ System Events ]
Error - 06.03.2012 11:03:18 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Automatic Updates" wurde mit folgendem Fehler beendet:
%%126
Error - 06.03.2012 11:14:33 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7000
Description = Der Dienst "USB Flatbed Scanner" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 06.03.2012 11:14:33 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Automatic Updates" wurde mit folgendem Fehler beendet:
%%126
Error - 06.03.2012 11:17:34 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7000
Description = Der Dienst "USB Flatbed Scanner" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 06.03.2012 11:17:34 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Automatic Updates" wurde mit folgendem Fehler beendet:
%%126
Error - 07.03.2012 05:14:18 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7000
Description = Der Dienst "USB Flatbed Scanner" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 07.03.2012 05:14:18 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Automatic Updates" wurde mit folgendem Fehler beendet:
%%126
Error - 07.03.2012 06:49:03 | Computer Name = HERMANN-B85167D | Source = sr | ID = 1
Description = Beim Verarbeiten der Datei "" auf Volume "HarddiskVolume1" ist im
Wiederherstellungsfilter der unerwartete Fehler "0xC0000001" aufgetreten. Die Volumeüberwachung
wurde angehalten.
Error - 07.03.2012 06:49:27 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7000
Description = Der Dienst "USB Flatbed Scanner" wurde aufgrund folgenden Fehlers
nicht gestartet: %%2
Error - 07.03.2012 06:49:27 | Computer Name = HERMANN-B85167D | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Automatic Updates" wurde mit folgendem Fehler beendet:
%%126
< End of report >
--- --- --- |
