Verseucht? Alle Desktopsymbole weg, nichts geht mehr (Seite 2 von 4)

Carpenter
Gast

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #15 am: 10.06.09, 21:19:27 »

Zitat

Na, was ist das fürn Virus, und warum kann man ihn nicht löschen? Und warum kommt jetzt ein Trojaner nach dem anderen, als hätte ich offene Türen

Und warum saugst du dir (illegales) Zeugs aus dubiosen Quellen?
Geiz_ist_geil-Mentalität, deshalb!!

Und hier hat es dich (euch) eben richtig erwischt

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #16 am: 10.06.09, 21:25:18 »

Hat dir diese Antwort geholfen?

Das Frage ich mich auch, und da ist hier auch noch nicht das letzte Wort gesprochen. Die Ehekrise ist schon vorprogrammiert.

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #17 am: 10.06.09, 21:27:11 »

Hat dir diese Antwort geholfen?

Und ganz klar und deutlich muss ich nochmal erwähnen, dass ich so nen scheiß nicht mache, ich muss ihn nur ausbaden....

Moderator informieren

Carpenter
Gast

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #18 am: 10.06.09, 21:41:59 »

Nun, auf persönliche Krisen und sonstige Kompetenz-Streitereien kann hier keine Rücksicht genommen werden. Wer wann wo und wie den PC bedient, ist einzig und allein deine (eure) Sache.

C.

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #19 am: 10.06.09, 21:52:37 »

Hat dir diese Antwort geholfen?

Ja, hast Du recht. Werde jetzt formatieren, und morgen neu aufspielen.
@carpenter
vielen Dank, melde mich dann hoffentlich mit nem sauberen Rechner nochmal.
aus Fehlern soll gelernt sein!

Moderator informieren

Carpenter
Gast

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #20 am: 10.06.09, 22:12:14 »

OK, dann mach das.
Denke auch an duie Reihenfolge mit der LAN-Verbindung!!!
Sonst hast du evtl. SOFORT nach der Neu-Installation wieder Schädlinge drauf. Mit entferntem LAN-Kabel ->

Windows Installieren

AV-Programm drauf von CD/Stick

LAN-Kabel anschließen

AV-Programm updaten

Windows-Update besuchen

Erst dann den Rest. Auch die Treiber wieder neu aufspielen.

C.

Moderator informieren

w2 (5.011)

64x Beste Antwort

73x "Danke"

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #21 am: 10.06.09, 22:19:21 »

Hat dir diese Antwort geholfen?

Von sauberem rechner bitte dies laden und auf Cd brennen:
http://www.heise.de/ct/Offline-Update--/projekte/133634

Damit ist das ständige laden von patches für winXP geschichte.Einmal laden,beliebige menge an rechnern aktualisieren.

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #22 am: 10.06.09, 22:41:06 »

Hat dir diese Antwort geholfen?

da die Hoffnung ja zuletzt stirbt, nochmal dieses:
(1.Teil)

codeOTL logfile created on: 10.06.2009 22:32:00 - Run 1
OTL by OldTimer - Version 2.1.1.0 Folder = C:\Dokumente und Einstellungen\Celli\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

1,75 Gb Total Physical Memory | 1,23 Gb Available Physical Memory | 70,18% Memory free
3,60 Gb Paging File | 3,11 Gb Available in Paging File | 86,37% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 149,04 Gb Total Space | 98,91 Gb Free Space | 66,37% Space Free | Partition Type: NTFS
Drive D: | 15,89 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: CELINA
Current User Name: Celli
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - C:\Programme\Tele2\Anti-Virus\fsgk32st.exe (F-Secure Corporation)
PRC - C:\Programme\Tele2\Common\FSMA32.EXE (F-Secure Corporation)
PRC - C:\Programme\Tele2\Anti-Virus\FSGK32.EXE (F-Secure Corp.)
PRC - C:\Programme\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Programme\Tele2\Common\FSMB32.EXE (F-Secure Corporation)
PRC - C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
PRC - C:\Programme\BurnAware Free\nmsaccessu.exe ()
PRC - C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
PRC - c:\programme\idt\ecsxpv_5762_010208\wdm\STacSV.exe (IDT, Inc.)
PRC - C:\Programme\Tele2\Common\FCH32.EXE (F-Secure Corporation)
PRC - C:\Programme\Tele2\Anti-Virus\fssm32.exe (F-Secure Corp.)
PRC - C:\Programme\Tele2\Common\FAMEH32.EXE (F-Secure Corporation)
PRC - C:\Programme\Tele2\Anti-Virus\fsqh.exe (F-Secure Corporation)
PRC - C:\Programme\Tele2\FSAUA\program\fsaua.exe (F-Secure Corporation)
PRC - C:\Programme\Tele2\FSPC\fspc.exe (F-Secure Corporation)
PRC - C:\Programme\Tele2\FWES\Program\fsdfwd.exe (F-Secure Corporation)
PRC - C:\Programme\Tele2\FSAUA\program\fsus.exe (F-Secure Corporation)
PRC - C:\Programme\Tele2\Anti-Virus\fsav32.exe (F-Secure Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Programme\IDT\WDM\sttray.exe (IDT, Inc.)
PRC - C:\Programme\Tele2\Common\FSM32.EXE (F-Secure Corporation)
PRC - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe (Microsoft® Corporation)
PRC - C:\Programme\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Programme\Messenger\msmsgs.exe (Microsoft Corporation)
PRC - C:\Programme\Tele2\FSGUI\fsguidll.exe (F-Secure Corporation)
PRC - C:\Dokumente und Einstellungen\Celli\Desktop\OTL.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (Boonty Games [Disabled | Stopped]) -- C:\Programme\Gemeinsame Dateien\BOONTY Shared\Service\Boonty.exe (BOONTY)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (F-Secure Gatekeeper Handler Starter [Auto | Running]) -- C:\Programme\Tele2\Anti-Virus\fsgk32st.exe (F-Secure Corporation)
SRV - (FSAUA [On_Demand | Running]) -- C:\Programme\Tele2\FSAUA\program\fsaua.exe (F-Secure Corporation)
SRV - (FSDFWD [On_Demand | Running]) -- C:\Programme\Tele2\FWES\Program\fsdfwd.exe (F-Secure Corporation)
SRV - (FSMA [Auto | Running]) -- C:\Programme\Tele2\Common\FSMA32.EXE (F-Secure Corporation)
SRV - (helpsvc [Auto | Running]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (IDriverT [On_Demand | Stopped]) -- C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Programme\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (LightScribeService [Auto | Running]) -- C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe (Hewlett-Packard Company)
SRV - (NMIndexingService [Disabled | Stopped]) -- File not found
SRV - (NMSAccessU [Auto | Running]) -- C:\Programme\BurnAware Free\nmsaccessu.exe ()
SRV - (NVSvc [Auto | Running]) -- C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
SRV - (STacSV [Auto | Running]) -- c:\programme\idt\ecsxpv_5762_010208\wdm\STacSV.exe (IDT, Inc.)
SRV - (WMPNetworkSvc [On_Demand | Stopped]) -- C:\Programme\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (F-Secure Filter [Disabled | Stopped]) -- C:\Programme\Tele2\Anti-Virus\Win2K\FSfilter.sys ()
DRV - (F-Secure Gatekeeper [On_Demand | Running]) -- C:\Programme\Tele2\Anti-Virus\minifilter\fsgk.sys ()
DRV - (F-Secure HIPS [System | Running]) -- C:\Programme\Tele2\HIPS\fshs.sys ()
DRV - (F-Secure Recognizer [Disabled | Stopped]) -- C:\Programme\Tele2\Anti-Virus\Win2K\FSrec.sys ()
DRV - (FSFW [Boot | Running]) -- C:\WINDOWS\System32\drivers\fsdfw.sys (F-Secure Corporation)
DRV - (HDAudBus [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HDAudBus.sys (Windows (R) Server 2003 DDK provider)
DRV - (nv [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\nv4_mini.sys (NVIDIA Corporation)
DRV - (NVENETFD [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\NVENETFD.sys (NVIDIA Corporation)
DRV - (NVHDA [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation)
DRV - (nvnetbus [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\nvnetbus.sys (NVIDIA Corporation)
DRV - (nvsmu [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\nvsmu.sys (NVIDIA Corporation)
DRV - (pcouffin [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\pcouffin.sys (VSO Software)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (Secdrv [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (STHDA [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\sthda.sys (IDT, Inc.)
DRV - (tmcomm [Auto | Running]) -- C:\WINDOWS\system32\drivers\tmcomm.sys (Trend Micro Inc.)
DRV - (wceusbsh [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\wceusbsh.sys (Microsoft Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\S-1-5-21-1606980848-2052111302-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== Firefox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://search.speedbit.com/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.0.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10
FF - prefs.js..keyword.URL: "http://search.speedbit.com/searchresults.asp?src=default&q="

FF - HKLM\software\mozilla\Firefox\extensions\\[email protected]: C:\PROGRAMME\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2009.04.16 13:24:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\PROGRAMME\MOZILLA FIREFOX\COMPONENTS [2009.06.10 21:39:39 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\PROGRAMME\MOZILLA FIREFOX\PLUGINS [2009.06.10 21:39:39 | 00,000,000 | ---D | M]

[2008.09.21 17:38:57 | 00,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\mozilla\Extensions
[2008.09.21 17:38:57 | 00,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009.06.10 15:45:44 | 00,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\mozilla\Firefox\Profiles\qycr88xb.default\extensions
[2009.04.17 07:37:38 | 00,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\mozilla\Firefox\Profiles\qycr88xb.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009.06.10 15:45:45 | 00,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Mozilla\FireFox\Profiles\qycr88xb.default\searchplugins\icqplugin-1.xml
[2008.12.18 19:36:52 | 00,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Mozilla\FireFox\Profiles\qycr88xb.default\searchplugins\icqplugin-2.xml
[2009.02.07 09:16:52 | 00,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Mozilla\FireFox\Profiles\qycr88xb.default\searchplugins\icqplugin-3.xml
[2009.02.07 11:58:56 | 00,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Mozilla\FireFox\Profiles\qycr88xb.default\searchplugins\icqplugin-4.xml
[2009.03.07 12:16:21 | 00,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Mozilla\FireFox\Profiles\qycr88xb.default\searchplugins\icqplugin-5.xml
[2008.11.08 10:49:32 | 00,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Mozilla\FireFox\Profiles\qycr88xb.default\searchplugins\icqplugin.xml
[2009.06.10 15:45:44 | 00,000,000 | ---D | M] -- C:\Programme\mozilla firefox\extensions
[2009.03.23 22:19:25 | 00,000,000 | ---D | M] -- C:\Programme\mozilla firefox\extensions\{4548ECB8-DA60-439A-A00D-5C893F8E1F9A}
[2009.06.10 21:39:39 | 00,000,000 | ---D | M] -- C:\Programme\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008.12.19 10:30:56 | 00,000,000 | ---D | M] -- C:\Programme\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009.04.16 13:24:25 | 00,000,000 | ---D | M] -- C:\Programme\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009.06.10 21:39:23 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\browserdirprovider.dll
[2009.06.10 21:39:23 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Programme\mozilla firefox\components\brwsrcmp.dll
[2009.06.10 21:39:33 | 00,001,392 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
[2009.06.10 21:39:33 | 00,002,344 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
[2009.06.10 21:39:33 | 00,001,706 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\google.xml
[2009.06.10 21:39:33 | 00,006,805 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
[2009.06.10 21:39:33 | 00,000,986 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\wikipedia-de.xml
[2009.06.10 21:39:33 | 00,000,801 | ---- | M] () -- C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
/code

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #23 am: 10.06.09, 22:43:50 »

Hat dir diese Antwort geholfen?

Teil2
codeO1 HOSTS File: (820 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 jL.chura.pl
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Reg Error: Key error. File not found
O3 - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\..\Toolbar\ShellBrowser: (no name) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - Reg Error: Key error. File not found
O3 - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\..\Toolbar\WebBrowser: (no name) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programme\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [EPSON Stylus DX4000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBEE.EXE /FU "C:\WINDOWS\TEMP\E_S23E.tmp" /EF "HKLM" (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [F-Secure Manager] "C:\Programme\Tele2\Common\FSM32.EXE" /splash (F-Secure Corporation)
O4 - HKLM..\Run: [F-Secure TNB] "C:\Programme\Tele2\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW (F-Secure Corporation)
O4 - HKLM..\Run: [Microsoft Works Update Detection] C:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe (Microsoft® Corporation)
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] nwiz.exe /install File not found
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKU\S-1-5-21-1606980848-2052111302-682003330-1004..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background (Microsoft Corporation)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O4 - Startup: C:\Dokumente und Einstellungen\Chrischi\Startmenü\Programme\Autostart\OpenOffice.org 3.0.lnk = C:\Programme\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1606980848-2052111302-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Erwachsene... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Programme\Tele2\FSPC\fspcmsie.dll (F-Secure Corporation)
O9 - Extra 'Tools' menuitem : Erwachsene... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Programme\Tele2\FSPC\fspcmsie.dll (F-Secure Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Programme\Tele2\FSPS\program\fslsp.dll (F-Secure Corporation)
O15 - HKLM\..Trusted Domains: 49 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.eu/buxus/docs/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} http://support.f-secure.com/ols/fscax.cab (F-Secure Online Scanner 3.3)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.09.08 20:20:48 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - * [2009.06.10 22:23:09 | 00,000,000 | ---D | M]/code

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #24 am: 10.06.09, 22:44:39 »

Hat dir diese Antwort geholfen?

Teil3

code========== Files/Folders - Created Within 30 Days ==========

[2009.06.10 22:23:00 | 00,524,288 | ---- | C] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Celli\Desktop\OTL.exe
[2009.06.10 22:01:26 | 00,001,544 | ---- | C] () -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\cc_20090610_220124.reg
[2009.06.10 21:59:48 | 00,159,550 | ---- | C] () -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\cc_20090610_215939.reg
[2009.06.09 15:51:34 | 54,364,360 | ---- | C] (Online Media Technologies Ltd. ) -- C:\Dokumente und Einstellungen\All Users\Dokumente\AVSVideoConverter.exe
[2009.06.09 13:18:29 | 00,000,464 | ---- | C] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\burnaware.ini
[2009.06.09 13:15:12 | 00,000,645 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\BurnAware Free.lnk
[2009.06.09 13:15:01 | 00,000,000 | ---D | C] -- C:\Programme\BurnAware Free
[2009.06.07 15:18:47 | 44,634,7264 | ---- | C] () -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\Image.nrg
[2009.06.07 15:08:15 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009.06.07 15:03:23 | 00,000,000 | ---D | C] -- C:\Programme\Ahead
[2009.06.07 14:45:13 | 00,000,000 | ---D | C] -- C:\Programme\Nsasoft
[2009.06.05 11:21:08 | 00,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Dokumente\sounds
[2009.05.28 15:06:22 | 00,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Celli\Desktop\Videos
[2009.05.28 15:03:40 | 00,319,488 | ---- | C] () -- C:\WINDOWS\System32\sdl.dll
[2009.05.28 15:03:40 | 00,143,872 | ---- | C] () -- C:\WINDOWS\System32\swscale-0.dll
[2009.05.28 15:03:40 | 00,143,872 | ---- | C] () -- C:\WINDOWS\System32\swscale.dll
[2009.05.28 15:03:40 | 00,088,379 | ---- | C] (Open Source Software community project) -- C:\WINDOWS\System32\pthreadGC2.dll
[2009.05.28 15:03:40 | 00,045,568 | ---- | C] () -- C:\WINDOWS\System32\cygz.dll
[2009.05.28 15:03:40 | 00,032,768 | ---- | C] () -- C:\WINDOWS\System32\postproc-51.dll
[2009.05.28 15:03:40 | 00,032,768 | ---- | C] () -- C:\WINDOWS\System32\postproc.dll
[2009.05.28 15:03:39 | 00,616,448 | ---- | C] (Red Hat) -- C:\WINDOWS\System32\cygwin1.dll
[2009.05.28 15:03:38 | 06,902,272 | ---- | C] () -- C:\WINDOWS\System32\avcodec-51.dll
[2009.05.28 15:03:38 | 06,902,272 | ---- | C] () -- C:\WINDOWS\System32\avcodec.dll
[2009.05.28 15:03:38 | 00,458,752 | ---- | C] () -- C:\WINDOWS\System32\avformat-51.dll
[2009.05.28 15:03:38 | 00,458,752 | ---- | C] () -- C:\WINDOWS\System32\avformat.dll
[2009.05.28 15:03:38 | 00,032,256 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll
[2009.05.28 15:03:38 | 00,026,112 | ---- | C] () -- C:\WINDOWS\System32\avutil-49.dll
[2009.05.28 15:03:38 | 00,026,112 | ---- | C] () -- C:\WINDOWS\System32\avutil.dll
[2009.05.28 15:03:36 | 00,204,800 | ---- | C] (ASX) -- C:\WINDOWS\System32\cXPITabelle.ocx
[2009.05.28 15:03:35 | 00,192,512 | ---- | C] (ASX) -- C:\WINDOWS\System32\cXPIComCtl.ocx
[2009.05.28 15:03:35 | 00,118,784 | ---- | C] (ASX) -- C:\WINDOWS\System32\cXPINET.ocx
[2009.05.28 15:03:35 | 00,069,632 | ---- | C] (BAV) -- C:\WINDOWS\System32\cXPIDatabase.ocx
[2009.05.28 15:03:35 | 00,065,536 | ---- | C] (ASX) -- C:\WINDOWS\System32\cXPIRTF.ocx
[2009.05.28 15:03:35 | 00,057,344 | ---- | C] (ASX) -- C:\WINDOWS\System32\cXPIInternet.ocx
[2009.05.28 15:03:33 | 00,061,440 | ---- | C] (ASX) -- C:\WINDOWS\System32\cXPIBrowser.ocx
[2009.05.28 13:28:49 | 00,000,672 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Videograbber.lnk
[2009.05.28 13:28:44 | 00,000,000 | ---D | C] -- C:\Programme\Videograbber 5.0
[2009.05.28 13:21:22 | 04,263,035 | ---- | C] (Hoppelsoft ) -- C:\Dokumente und Einstellungen\All Users\Dokumente\Videograbber5.0.exe
[2009.05.28 09:33:19 | 00,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\BSR Videos
[2009.05.28 09:19:23 | 00,002,048 | ---- | C] () -- C:\WINDOWS\System32\Tr_sttool.dat
[2009.05.28 09:19:23 | 00,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\BSR Screen Recorder 4
[2009.05.16 16:15:54 | 00,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Audio Record Edit Toolbox Pro
[2009.05.16 15:58:07 | 00,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\Audio Recorder for Free
[2009.05.16 07:23:57 | 00,001,493 | ---- | C] () -- C:\Dokumente und Einstellungen\Celli\Desktop\Audio Recorder for Free.lnk
[2009.05.16 07:23:48 | 00,479,232 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioVisualization2.dll
[2009.05.16 07:23:48 | 00,417,792 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTTextToAudio2.dll
[2009.05.16 07:23:48 | 00,348,160 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTWMAFile2.dll
[2009.05.16 07:23:48 | 00,113,486 | ---- | C] () -- C:\WINDOWS\System32\NCTWMAProfiles.prx
[2009.05.16 07:23:47 | 01,986,560 | ---- | C] (NCT Company Ltd.) -- C:\WINDOWS\System32\NCTAudioFile2.dll
[2009.05.16 07:23:47 | 01,212,416 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioInformation2.dll
[2009.05.16 07:23:47 | 00,880,640 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioEditor2.dll
[2009.05.16 07:23:47 | 00,602,112 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioTransform2.dll
[2009.05.16 07:23:47 | 00,458,752 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioRecord2.dll
[2009.05.16 07:23:47 | 00,458,752 | ---- | C] (Online Media Technologies Ltd.) -- C:\WINDOWS\System32\NCTAudioPlayer2.dll
[2009.05.16 07:23:46 | 00,835,584 | ---- | C] (NCT) -- C:\WINDOWS\System32\NCTAudioCDGrabber2.dll
[2009.05.16 07:23:45 | 00,000,000 | ---D | C] -- C:\Programme\Audio Recorder for Free
[2009.05.13 14:27:12 | 10,876,8044 | ---- | C] () -- C:\Native.Radio.wav
[2009.05.13 14:17:42 | 50,009,444 | ---- | C] () -- C:\Auricular-Pilzvergiftung.wav
[2009.05.13 11:48:29 | 83,084,444 | ---- | C] () -- C:\Institut für Bassforschung.wav
[2009.05.13 11:46:15 | 00,352,844 | ---- | C] () -- C:\Standard.wav
[2009.01.09 17:39:54 | 00,000,049 | ---- | C] () -- C:\WINDOWS\Baby Boh!.ini
[2008.12.21 13:09:58 | 00,524,288 | ---- | C] () -- C:\WINDOWS\System32\vspxcore.dll
[2008.10.30 18:51:47 | 00,524,288 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008.10.30 18:51:46 | 00,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008.10.16 08:33:02 | 00,000,400 | ---- | C] () -- C:\WINDOWS\Muma50.INI
[2008.10.16 08:29:40 | 00,000,074 | ---- | C] () -- C:\WINDOWS\MAGIX.INI
[2008.10.16 08:29:30 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008.10.06 18:42:51 | 00,000,052 | ---- | C] () -- C:\WINDOWS\Kyor.ini
[2008.10.06 17:56:37 | 00,000,273 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2008.10.04 20:44:54 | 00,000,866 | ---- | C] () -- C:\WINDOWS\DC.ini
[2008.09.24 15:48:21 | 00,000,090 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008.09.11 19:26:03 | 00,000,403 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008.09.11 16:38:11 | 00,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008.09.11 16:36:56 | 00,000,027 | ---- | C] () -- C:\WINDOWS\CDE DX4000EFDG.ini
[2008.09.08 20:23:32 | 00,001,124 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2008.03.19 11:04:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008.03.19 11:04:00 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008.03.19 11:04:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008.03.19 11:04:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008.03.19 11:04:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008.02.11 09:39:26 | 00,253,952 | ---- | C] () -- C:\WINDOWS\System32\OnlineScannerDLLA.dll
[2008.02.11 09:39:18 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\OnlineScannerDLLW.dll
[2008.02.08 13:53:46 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\OnlineScannerLang.dll
[2007.07.27 14:49:02 | 00,225,355 | ---- | C] () -- C:\WINDOWS\System32\lnod32apiW.dll
[2007.07.27 14:49:02 | 00,196,683 | ---- | C] () -- C:\WINDOWS\System32\lnod32apiA.dll
[2005.12.05 19:25:22 | 00,139,264 | ---- | C] () -- C:\WINDOWS\System32\lnod32umc.dll
[2005.12.05 12:37:10 | 00,106,496 | ---- | C] () -- C:\WINDOWS\System32\lnod32upd.dll
[2004.08.04 14:00:00 | 00,000,555 | ---- | C] () -- C:\WINDOWS\win.ini
[2004.08.04 14:00:00 | 00,000,260 | ---- | C] () -- C:\WINDOWS\system.ini
[2003.11.17 17:30:01 | 00,286,208 | ---- | C] () -- C:\WINDOWS\System32\CNCS232.DLL
[2002.10.04 08:01:42 | 00,503,808 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll
[2001.03.30 22:58:36 | 00,135,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\Property.dll

========== Files - Modified Within 30 Days ==========

[5 C:\WINDOWS\System32\*.tmp files]
[33 C:\WINDOWS\*.tmp files]
[2009.06.10 22:23:09 | 00,524,288 | ---- | M] (OldTimer Tools) -- C:\Dokumente und Einstellungen\Celli\Desktop\OTL.exe
[2009.06.10 22:01:28 | 00,001,544 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\cc_20090610_220124.reg
[2009.06.10 22:00:10 | 00,159,550 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\cc_20090610_215939.reg
[2009.06.10 16:03:43 | 00,160,101 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2009.06.10 15:22:48 | 00,000,062 | -HS- | M] () -- C:\Dokumente und Einstellungen\Celli\Lokale Einstellungen\desktop.ini
[2009.06.10 15:22:31 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009.06.10 15:22:30 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009.06.10 13:47:58 | 00,422,160 | ---- | M] () -- C:\WINDOWS\System32\perfh007.dat
[2009.06.10 13:47:58 | 00,407,754 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009.06.10 13:47:58 | 00,077,980 | ---- | M] () -- C:\WINDOWS\System32\perfc007.dat
[2009.06.10 13:47:58 | 00,065,328 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009.06.10 13:47:57 | 00,986,642 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009.06.10 13:43:22 | 00,242,328 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009.06.10 10:21:47 | 00,000,087 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\AVSMediaPlayer.m3u
[2009.06.09 16:11:24 | 54,364,360 | ---- | M] (Online Media Technologies Ltd. ) -- C:\Dokumente und Einstellungen\All Users\Dokumente\AVSVideoConverter.exe
[2009.06.09 15:46:30 | 00,000,464 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Anwendungsdaten\burnaware.ini
[2009.06.09 13:15:12 | 00,000,645 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\BurnAware Free.lnk
[2009.06.07 15:27:34 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009.06.07 15:18:57 | 44,634,7264 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\Image.nrg
[2009.06.07 12:28:09 | 01,880,867 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Desktop\fsdiag.tar.gz
[2009.06.05 14:05:37 | 00,000,273 | ---- | M] () -- C:\WINDOWS\SIERRA.INI
[2009.06.02 12:52:22 | 00,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009.06.01 18:51:12 | 23,635,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009.05.28 13:28:49 | 00,000,672 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Desktop\Videograbber.lnk
[2009.05.28 13:22:50 | 04,263,035 | ---- | M] (Hoppelsoft ) -- C:\Dokumente und Einstellungen\All Users\Dokumente\Videograbber5.0.exe
[2009.05.28 09:19:23 | 00,002,048 | ---- | M] () -- C:\WINDOWS\System32\Tr_sttool.dat
[2009.05.26 13:20:08 | 00,040,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009.05.26 13:19:56 | 00,019,096 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009.05.16 07:23:57 | 00,001,493 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Desktop\Audio Recorder for Free.lnk
[2009.05.13 14:36:45 | 00,001,011 | ---- | M] () -- C:\Dokumente und Einstellungen\Celli\Eigene Dateien\WaveRec.ini
[2009.05.13 14:36:39 | 10,876,8044 | ---- | M] () -- C:\Native.Radio.wav
[2009.05.13 14:22:25 | 50,009,444 | ---- | M] () -- C:\Auricular-Pilzvergiftung.wav
[2009.05.13 11:56:20 | 83,084,444 | ---- | M] () -- C:\Institut für Bassforschung.wav
[2009.05.13 11:46:17 | 00,352,844 | ---- | M] () -- C:\Standard.wav

========== Alternate Data Streams ==========

@Alternate Data Stream - 118 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:5BB923A2
@Alternate Data Stream - 106 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:C5760A8B
@Alternate Data Stream - 104 bytes -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:364682BC
< End of report >
/code

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #25 am: 10.06.09, 22:46:34 »

Hat dir diese Antwort geholfen?

OTL Extras.Txt

codeOTL Extras logfile created on: 10.06.2009 22:32:00 - Run 1
OTL by OldTimer - Version 2.1.1.0 Folder = C:\Dokumente und Einstellungen\Celli\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

1,75 Gb Total Physical Memory | 1,23 Gb Available Physical Memory | 70,18% Memory free
3,60 Gb Paging File | 3,11 Gb Available in Paging File | 86,37% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme
Drive C: | 149,04 Gb Total Space | 98,91 Gb Free Space | 66,37% Space Free | Partition Type: NTFS
Drive D: | 15,89 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: CELINA
Current User Name: Celli
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- C:\Programme\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_USERS\S-1-5-21-1606980848-2052111302-682003330-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 (Microsoft Corporation)
C:\Programme\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander File not found
C:\Programme\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite File not found

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00170407-78E1-11D2-B60F-006097C998E7}" = Microsoft Word 2000
"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 13
"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant
"{350C97B3-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{369B36BE-3D64-4641-9AEA-808D436FE132}" = Microsoft Picture It! Foto 7.0
"{428102E6-8A39-48B9-8389-847F5A44A600}" = MSXML 4.0
"{49FC50FC-F965-40D9-89B4-CBFF80941033}" = Windows Movie Maker 2.0
"{54BB0384-1C33-488F-A95B-877E480D3EDC}" = MSXML 4.0
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A96225D-A3B7-4535-AE49-3BF217999669}" = RPG Maker Fonts
"{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page
"{83E58D0D-7FF8-448D-9151-C3EE1BDE8380}" = Falk Navi-Manager
"{924A365C-6727-42B9-91AC-C8C2CAC0B835}" = Falk Navi-Manager
"{98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}" = Visual C++ 8.0 CRT (x86) WinSXS MSM
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6ADA0E4-9451-43EB-B86E-878AD9E68D4F}" = LightScribe 1.6.45.1
"{BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}" = EPSON Easy Photo Print
"{C4BEEB8C-B9D2-4CD9-A2AA-1F3A1F57DF21}" = Works Suite-Betriebssystem-Pack
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CF38422B-C002-4DA7-A4C3-A187C7578179}" = OpenOffice.org 3.0
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{E86BC406-944E-41F6-ADE6-2C136734C96B}" = EPSON File Manager
"{E9FFB3AD-90F8-4934-A9BD-5DB61EE232B6}_is1" = Videograbber 5.0
"{EDDDC607-91D9-4758-9F57-265FDCD8A772}" = Microsoft Works 7.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Audio Recorder for Free" = Audio Recorder for Free
"AVS Media Player_is1" = AVS Media Player 3.1
"BurnAware Free_is1" = BurnAware Free 2.3.6
"CCleaner" = CCleaner (remove only)
"DOOM Collector's Edition" = DOOM Collector's Edition
"EADM" = EA Download Manager
"EPSON Printer and Utilities" = EPSON-Drucker-Software
"EPSON Scanner" = EPSON Scan
"ESDX4000_4050_CX3900" = ESDX4000_4050_CX3900
"EsetOnlineScanner" = ESET Online Scanner
"Free Audio Dub_is1" = Free Audio Dub version 1.4
"F-Secure Product 444" = TELE2 Sicherheitspaket
"HijackThis" = HijackThis 2.0.2
"Hospital" = Theme Hospital
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Mozilla Firefox (3.0.10)" = Mozilla Firefox (3.0.10)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"Product Key Explorer_is1" = Product Key Explorer 2.1.9
"Rainbow Mystery_is1" = Rainbow Mystery
"Sierra Uninstall" = Sierra On-Line Games (Remove only)
"Uninstall_is1" = Uninstall 1.0.0.1
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Works2003Setup" = Microsoft Works 2003-Setup-Start
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XviD" = XviD Video Codec 04102002-1 (Koepi's build with EPSZ ME)
"Zoo Tycoon 1.0" = Microsoft Zoo Tycoon

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 19.02.2009 12:50:02 | Computer Name = CELINA | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung sporeapp.exe, Version 1.1.0.338, fehlgeschlagenes
Modul sporeapp.exe, Version 1.1.0.338, Fehleradresse 0x00faf4c4.

Error - 20.02.2009 04:08:23 | Computer Name = CELINA | Source = EventSystem | ID = 4609
Description = Das COM+-Ereignissystem hat einen ungültigen Rückgabecode während
der internen Verarbeitung erkannt. HRESULT war 80080005 von Zeile 44 von d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.
Wenden Sie sich an den Microsoft-Produktsuppor

Error - 21.02.2009 14:16:14 | Computer Name = CELINA | Source = F-Secure Anti-Virus | ID = 103
Description = 1 2009-02-21 19:16:11+02:00 celina CELINA\Chrischi F-Secure Anti-Virus

Scanning of \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\NVAPPS.XML was aborted due
to exceeded scanning time limit. The file may be in use or reading it was too slow
(e.g. network connection was under stress).

Error - 23.02.2009 10:29:02 | Computer Name = CELINA | Source = F-Secure Anti-Virus | ID = 103
Description = 1 2009-02-23 15:29:01+02:00 celina CELINA\Chrischi F-Secure Anti-Virus

Scanning of \DEVICE\HARDDISKVOLUME1\PROGRAMME\TELE2\FSAUA\SUBSCRIPTIONS\AVH_AVPE
was aborted due to exceeded scanning time limit. The file may be in use or reading
it was too slow (e.g. network connection was under stress).

Error - 28.02.2009 15:18:45 | Computer Name = CELINA | Source = F-Secure Anti-Virus | ID = 103
Description = 1 2009-02-28 20:18:45+02:00 celina CELINA\Chrischi F-Secure Anti-Virus

Scanning of \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\NVAPPS.XML was aborted due
to exceeded scanning time limit. The file may be in use or reading it was too slow
(e.g. network connection was under stress).

Error - 01.03.2009 09:48:20 | Computer Name = CELINA | Source = F-Secure Anti-Virus | ID = 103
Description = 1 2009-03-01 14:48:19+02:00 celina CELINA\Celli F-Secure Anti-Virus

Scanning of \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\NTMARTA.DLL was aborted due
to exceeded scanning time limit. The file may be in use or reading it was too slow
(e.g. network connection was under stress).

Error - 06.03.2009 06:19:39 | Computer Name = CELINA | Source = F-Secure Anti-Virus | ID = 103
Description = 1 2009-03-06 11:19:37+02:00 celina CELINA\Chrischi F-Secure Anti-Virus

Scanning of \DEVICE\HARDDISKVOLUME1\DOKUMENTE UND EINSTELLUNGEN\ALL USERS\STARTMENÜ\PROGRAMME\SPIELE\DESKTOP.INI
was aborted due to exceeded scanning time limit. The file may be in use or reading
it was too slow (e.g. network connection was under stress).

Error - 06.03.2009 12:39:39 | Computer Name = CELINA | Source = F-Secure Anti-Virus | ID = 103
Description = 1 2009-03-06 17:39:37+02:00 celina CELINA\Chrischi F-Secure Anti-Virus

Scanning of \DEVICE\HARDDISKVOLUME1\WINDOWS\SYSTEM32\NVDISPS.DLL was aborted due
to exceeded scanning time limit. The file may be in use or reading it was too slow
(e.g. network connection was under stress).

Error - 06.03.2009 20:48:28 | Computer Name = CELINA | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung sporeapp.exe, Version 1.1.0.338, fehlgeschlagenes
Modul sporeapp.exe, Version 1.1.0.338, Fehleradresse 0x00046309.

Error - 09.03.2009 03:43:48 | Computer Name = CELINA | Source = Application Error | ID = 1000
Description = Fehlgeschlagene Anwendung firefox.exe, Version 1.9.0.3334, fehlgeschlagenes
Modul unknown, Version 0.0.0.0, Fehleradresse 0x000028d6.

[ System Events ]
Error - 10.06.2009 09:23:59 | Computer Name = CELINA | Source = Service Control Manager | ID = 7000
Description = Der Dienst "WMI-Leistungsadapter" wurde aufgrund folgenden Fehlers
nicht gestartet: %%1053

Error - 10.06.2009 09:23:59 | Computer Name = CELINA | Source = Service Control Manager | ID = 7009
Description = Zeitüberschreitung (30000 ms) beim Verbindungsversuch mit Dienst WMI-Leistungsadapter.

Error - 10.06.2009 09:23:59 | Computer Name = CELINA | Source = Service Control Manager | ID = 7000
Description = Der Dienst "WMI-Leistungsadapter" wurde aufgrund folgenden Fehlers
nicht gestartet: %%1053

Error - 10.06.2009 09:23:59 | Computer Name = CELINA | Source = Service Control Manager | ID = 7009
Description = Zeitüberschreitung (30000 ms) beim Verbindungsversuch mit Dienst WMI-Leistungsadapter.

Error - 10.06.2009 09:23:59 | Computer Name = CELINA | Source = Service Control Manager | ID = 7000
Description = Der Dienst "WMI-Leistungsadapter" wurde aufgrund folgenden Fehlers
nicht gestartet: %%1053

Error - 10.06.2009 09:23:59 | Computer Name = CELINA | Source = Service Control Manager | ID = 7009
Description = Zeitüberschreitung (30000 ms) beim Verbindungsversuch mit Dienst WMI-Leistungsadapter.

Error - 10.06.2009 09:23:59 | Computer Name = CELINA | Source = Service Control Manager | ID = 7000
Description = Der Dienst "WMI-Leistungsadapter" wurde aufgrund folgenden Fehlers
nicht gestartet: %%1053

Error - 10.06.2009 09:24:19 | Computer Name = CELINA | Source = DCOM | ID = 10010
Description = Der Server "{1F87137D-0E7C-44D5-8C73-4EFFB68962F2}" konnte innerhalb
des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error - 10.06.2009 09:24:49 | Computer Name = CELINA | Source = DCOM | ID = 10010
Description = Der Server "{1F87137D-0E7C-44D5-8C73-4EFFB68962F2}" konnte innerhalb
des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error - 10.06.2009 09:25:19 | Computer Name = CELINA | Source = DCOM | ID = 10010
Description = Der Server "{1F87137D-0E7C-44D5-8C73-4EFFB68962F2}" konnte innerhalb
des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

< End of report >
/code

Moderator informieren

sufu
Gast

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #26 am: 10.06.09, 22:49:44 »

Sei bitte so nett,lass die log verschwinden.Sie sind hier sinnfrei.
Man hat es Dir bestimmt schonmal gesagt,das man verseute systeme nicht reinigen kann.Sicher behaupten hier einigen,dies zu können.Nur:
Sie können es nicht.
Aber das möchtest Du sicher nicht lesen.

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #27 am: 10.06.09, 22:55:56 »

Hat dir diese Antwort geholfen?

@sufu
ja, Du hast recht. Das will ich eigentlich nicht hören. Nur wenn es nicht anders geht - mache ich es natürlich.
Warte noch bis morgen auf eine Antwort, von jemanden der es schon mal vor langer Zeit geschafft hat.
Wie gesagt, die Hoffnung stirbt zuletzt. Sonst muss ich eben morgen doch formatieren....

Danke, Ihr lieben!

Moderator informieren

Sally1983 (100)

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #28 am: 10.06.09, 22:56:55 »

Hat dir diese Antwort geholfen?

Achja, ausserdem bin ich mir ziemlich sicher, dass ich weiss wo der Mist herkam...

Moderator informieren

sufu
Gast

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

« Antwort #29 am: 10.06.09, 23:02:17 »

Nun,auch wenn ersguterjunge meint,systeme reinigen zu können,er kann es nicht und wird dies generell niemals zugeben.Ich möchte Dir keinen Vortrag darüber halten,wie aktuelle schadsoftware arbeitet.Das sollte Dir bekannt sein.Daneben ist mir nicht verständlich,warum Du kein aktuelles,sauberes image vom system hast.Wolltest Du besonders schlau sein und etwa 50 euro inklusive einer festplatte sparen? Nun,sparziel erreicht,Deine freizeit ist ja gratis und unbegrenzt verfügbar...

Selbst die leute,die Täglich mit systemen aller art zu arbeiten haben,instalieren immer neu oder spielen ein sauberes image ein.Solche reinigungsorgien,wie Du sie gerne hast,machen diese leute nicht.Aber auch das möchtest Du alles nicht lesen...

Moderator informieren

Re: Verseucht? Alle Desktopsymbole weg, nichts geht mehr

Mehr zu Verseucht? Alle Desktopsymbole weg, nichts geht mehr