Antwort schreiben 
 
Themabewertung:
  • 0 Bewertungen - 0 im Durchschnitt
  • 1
  • 2
  • 3
  • 4
  • 5
Baumstrukturmodus | Linearer Modus
langer Windows 7- Willkomens-bildschirm und schnell 'keine rückmeldung' - sqlserver homegroupuser$
31-01-2012, 02:08
Beitrag: #1
langer Windows 7- Willkomens-bildschirm und schnell 'keine rückmeldung' - sqlserver homegroupuser$
Ich hoffe mir kann jemand helfen:


Habe seit etwa einem monat ein Fujitsu Lifebook E751 mit windows 64bit
seit heute ist er jedoch total anfällig, wenn ich im internet oder explorer bin. nach kürzester zeit erscheint 'keine rückmeldung' und ich kann nichts mehr machen. dies passiert selbst beim taskmanager, wenn ich versuche die tasks zu beenden.

außerem benötigt der laptop sehr lange um nach der passworteingabe zum desktop zu gelangen. ich sehe für mehrere minuten den willkommensbildschirm, anschließend einen schwarzenbildschirm - immerhin schon mit cursor - bis er endlich meinen desktop anzeigt. das ganze dauer zw. 5 - 10 min.
hab bereits unnötiges aus dem autostart geschmissen, den laptop defragmentiert und nach aktuellen treibern gesucht.
im gerätemanager habe ich ein gelbes ausrufezeichen bei 'bluetooth-peripheriegeräte' und rechts in meiner taskleiste ist ebenfalls eins am icon für 'Intel My WiFi Technologie: Adapter nicht gefunden'.

Hier ist mein HiJackThis-File

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:39:52, on 21.11.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\vsnp2uvc.exe
C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Chris\Desktop\HiJackThis204.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Sophos Web Content Scanner - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SophosBHO.dll
O2 - BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: [IndicatorUtility] 'C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe'
O4 - HKLM\..\Run: [Sophos AutoUpdate Monitor] C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Senden an Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Senden an &Bluetooth-Gerät... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos web intelligence\swi_lsp.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PFNService - FUJITSU LIMITED - C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
O23 - Service: PowerSavingUtilityService - FUJITSU LIMITED - C:\Program Files\Fujitsu\PSUtility\PSUService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sophos Anti-Virus Statusreporter (SAVAdminService) - Sophos Limited - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Limited - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\Nokia\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sierra Wireless QDL Service - Sierra Wireless, Inc. - C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sophos AutoUpdate Service - Sophos Limited - C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
O23 - Service: Sophos Client Firewall - Sophos Limited - C:\Program Files (x86)\Sophos\Sophos Client Firewall\SCFService.exe
O23 - Service: Sophos Client Firewall Manager - Sophos Limited - C:\Program Files (x86)\Sophos\Sophos Client Firewall\SCFManager.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Sophos Web Intelligence Service (swi_service) - Sophos Limited - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9960 bytes


und hier mein mbam Log

Malwarebytes' Anti-Malware 1.51.2.1300
http://www.malwarebytes.org

Datenbank Version: 8210

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

21.11.2011 20:29:58
mbam-log-2011-11-21 (20-29-58).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 182478
Laufzeit: 2 Minute(n), 34 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
Kann mir einer helfen? Grüße!
Alle Beiträge dieses Benutzers finden
Diese Nachricht in einer Antwort zitieren
31-01-2012, 03:20
Beitrag: #2
Re: langer Windows 7- Willkomens-bildschirm und schnell 'keine rückmeldung' - homegroupuser$ sqlserver
Hier meine OT Logs



OTL Extras logfile created on: 21.11.2011 20:33:17 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Chris\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3,91 Gb Total Physical Memory | 2,11 Gb Available Physical Memory | 53,80% Memory free
7,82 Gb Paging File | 5,78 Gb Available in Paging File | 73,91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 406,88 Gb Free Space | 87,38% Space Free | Partition Type: NTFS
Drive D: | 4,20 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- '%1' %*
cmdfile [open] -- '%1' %*
comfile [open] -- '%1' %*
exefile [open] -- '%1' %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe '%1' (Microsoft Corporation)
InternetShortcut [open] -- 'C:\Windows\System32\rundll32.exe' 'C:\Windows\System32\ieframe.dll',OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- 'C:\Windows\System32\rundll32.exe' 'C:\Windows\System32\mshtml.dll',PrintHTML '%1' (Microsoft Corporation)
piffile [open] -- '%1' %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- '%1'
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- '%1' /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- 'C:\Program Files (x86)\VideoLAN\VLC\vlc.exe' --started-from-file --playlist-enqueue '%1' ()
Directory [cmd] -- cmd.exe /s /k pushd '%V' (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- 'C:\Program Files (x86)\VideoLAN\VLC\vlc.exe' --started-from-file --no-playlist-enqueue '%1' ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- '%1' %*
cmdfile [open] -- '%1' %*
comfile [open] -- '%1' %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe '%1',%* (Microsoft Corporation)
exefile [open] -- '%1' %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe '%1' (Microsoft Corporation)
piffile [open] -- '%1' %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- '%1'
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- '%1' /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- 'C:\Program Files (x86)\VideoLAN\VLC\vlc.exe' --started-from-file --playlist-enqueue '%1' ()
Directory [cmd] -- cmd.exe /s /k pushd '%V' (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- 'C:\Program Files (x86)\VideoLAN\VLC\vlc.exe' --started-from-file --no-playlist-enqueue '%1' ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
'cval' = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
'VistaSp1' = 28 4D B2 76 41 04 CA 01 [binary data]
'AntiVirusOverride' = 0
'AntiSpywareOverride' = 0
'FirewallOverride' = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
'' =
'DisableMonitoring' = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\DomainPr ofile]
'EnableFirewall' = 0
'DisableNotifications' = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\Standard Profile]
'EnableFirewall' = 0
'DisableNotifications' = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\SharedAccess\Parameters\FirewallPolicy\PublicPr ofile]
'EnableFirewall' = 0
'DisableNotifications' = 0

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall]
'{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}' = Network64
'{071c9b48-7c32-4621-a0ac-3f809523288f}' = Microsoft Visual C++ 2005 Redistributable (x64)
'{0826F9E4-787E-481D-83E0-BC6A57B056D5}' = Microsoft SQL Server VSS Writer
'{0E3DAF3D-FF69-345A-A99E-1FED304CA083}' = Microsoft .NET Framework 4 Client Profile DEU Language Pack
'{180C8888-50F1-426B-A9DC-AB83A1989C65}' = Windows Live Language Selector
'{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}' = Windows Live ID Sign-in Assistant
'{26208444-C11B-4820-B224-7F66549B0E16}' = O2Micro OZ776 SCR Driver
'{4108974B-DE87-4AD4-9167-930C62C45691}' = Fujitsu Display Manager
'{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}' = WIDCOMM Bluetooth Software
'{55D55008-E5F6-47D6-B16F-B2A40D4D145F}' = 64 Bit HP CIO Components Installer
'{6226477E-444F-4DFE-BA19-9F4F7D4565BC}' = LifeBook Application Panel
'{7BA64D21-EE46-4a9a-8145-52B0175C3F86}' = Plugfree NETWORK
'{90140000-002A-0000-1000-0000000FF1CE}' = Microsoft Office Office 64-bit Components 2010
'{90140000-002A-0407-1000-0000000FF1CE}' = Microsoft Office Shared 64-bit MUI (German) 2010
'{95120000-00B9-0409-1000-0000000FF1CE}' = Microsoft Application Error Reporting
'{A5FADEAC-B0A9-4C27-A8B5-05381A339F4E}' = Plugfree NETWORK
'{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}' = Microsoft Visual C++ 2005 Redistributable (x64)
'{B61ED343-0B14-4241-999C-490CB1A20DA4}' = HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B
'{B95CFA6A-E0E0-4437-A2F0-BE0948B68946}' = Intel® PROSet/Wireless WiFi-Software
'{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}' = Microsoft SQL Server 2008 Native Client
'{DA54F80E-261C-41A2-A855-549A144F2F59}' = Windows Live MIME IFilter
'{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}' = Fujitsu System Extension Utility
'{EC314CDF-3521-482B-A21C-65AC95664814}' = Fujitsu MobilityCenter Extension Utility
'{F33CFF0E-6684-43A8-AF99-2F1191B67152}' = Shock Sensor Utility
'{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}' = Microsoft .NET Framework 4 Client Profile
'Adobe Flash Player Plugin' = Adobe Flash Player 11 Plugin 64-bit
'CCleaner' = CCleaner
'FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D' = Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0)
'Microsoft .NET Framework 4 Client Profile' = Microsoft .NET Framework 4 Client Profile
'Microsoft .NET Framework 4 Client Profile DEU Language Pack' = Microsoft .NET Framework 4 Client Profile DEU Language Pack
'ProInst' = Intel PROSet Wireless
'PROSet' = Intel® Network Connections Drivers
'SynTPDeinstKey' = Synaptics Pointing Device Driver
'WinRAR archiver' = WinRAR 4.10 Beta 3 (64-Bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall]
'{0B0F231F-CE6A-483D-AA23-77B364F75917}' = Windows Live Installer
'{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}' = Scan
'{104066F4-5897-4067-85D3-4C88B67CCF75}' = AIO_Scan
'{12C00299-B8B4-40D3-9663-66ABEA3198AB}' = Sophos Client Firewall
'{15C418EB-7675-42be-B2B3-281952DA014D}' = Sophos AutoUpdate
'{196467F1-C11F-4F76-858B-5812ADC83B94}' = MSXML 4.0 SP3 Parser
'{196E77C5-F524-4B50-BD1A-2C21EEE9B8F7}' = Microsoft SQL Server 2008 Common Files
'{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}' = Windows Live Writer Resources
'{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}' = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
'{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}' = Junk Mail filter update
'{200FEC62-3C34-4D60-9CE8-EC372E01C08F}' = Windows Live SOXE Definitions
'{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}' = BufferChm
'{33AE9E89-47C9-4A0D-9E9D-BDD6966A3804}' = Microsoft SQL Server 2008 RsFx Driver
'{37B33B16-2535-49E7-8990-32668708A0A3}' = Windows Live UX Platform Language Pack
'{399C37FB-08AF-493B-BFED-20FBD85EDF7F}' = FJ Camera
'{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}' = Intel® Rapid Storage Technology
'{42B74521-4706-412A-9A27-AED12B83E886}' = Nokia Ovi Application Installer
'{43CDF946-F5D9-4292-B006-BA0D92013021}' = WebReg
'{4815BD99-96A4-49FE-A885-DCF06E9E4E78}' = Microsoft SQL Server 2008 Database Engine Shared
'{49A588CF-5FD4-4774-BFBF-0764287DE82B}' = Power Saving Utility
'{4A6F34E2-09E5-4616-B227-4A26A488A6F9}' = Microsoft SQL Server 2008 Common Files
'{4AE48A64-6C6A-4E5A-95FA-55F5131DECF9}' = Nokia Ovi One Touch Access
'{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}' = UnloadSupport
'{549BF60D-FDDA-4E4C-ABE3-9E897BC09E79}' = Anytime USB Charge Utility
'{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}' = Microsoft SQL Server 2008 Database Engine Services
'{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}' = Google Earth
'{6442DEDF-AC2F-4CBA-85DE-42E459C5006C}' = Nokia Ovi Content Copier
'{682B3E4F-696A-42DE-A41C-4C07EA1678B4}' = Windows Live SOXE
'{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}' = Windows Media Player Firefox Plugin
'{6BBA26E9-AB03-4FE7-831A-3535584CA002}' = Toolbox
'{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}' = Microsoft Visual C++ 2005 Redistributable
'{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}' = Apple Software Update
'{7BE15435-2D3E-4B58-867F-9C75BED0208C}' = QuickTime
'{82427977-8776-4087-90CA-9F65174D3C4D}' = Nokia Connectivity Cable Driver
'{83C292B7-38A5-440B-A731-07070E81A64F}' = Windows Live PIMT Platform
'{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}' = MSVCRT
'{90140000-0015-0407-0000-0000000FF1CE}' = Microsoft Office Access MUI (German) 2010
'{90140000-0015-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-0016-0407-0000-0000000FF1CE}' = Microsoft Office Excel MUI (German) 2010
'{90140000-0016-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-0018-0407-0000-0000000FF1CE}' = Microsoft Office PowerPoint MUI (German) 2010
'{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-0019-0407-0000-0000000FF1CE}' = Microsoft Office Publisher MUI (German) 2010
'{90140000-0019-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-001A-0407-0000-0000000FF1CE}' = Microsoft Office Outlook MUI (German) 2010
'{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-001B-0407-0000-0000000FF1CE}' = Microsoft Office Word MUI (German) 2010
'{90140000-001B-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-001F-0407-0000-0000000FF1CE}' = Microsoft Office Proof (German) 2010
'{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-001F-0409-0000-0000000FF1CE}' = Microsoft Office Proof (English) 2010
'{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-001F-040C-0000-0000000FF1CE}' = Microsoft Office Proof (French) 2010
'{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-001F-0410-0000-0000000FF1CE}' = Microsoft Office Proof (Italian) 2010
'{90140000-001F-0410-0000-0000000FF1CE}_Office14.SingleImage_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-002A-0407-1000-0000000FF1CE}_Office14.SingleImage_{594128C9-2CDF-43CE-8103-DC100CF013B6}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-002C-0407-0000-0000000FF1CE}' = Microsoft Office Proofing (German) 2010
'{90140000-002C-0407-0000-0000000FF1CE}_Office14.SingleImage_{4275FB46-ABDF-4456-876C-17CF64294D9A}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-003D-0000-0000-0000000FF1CE}' = Microsoft Office Single Image 2010
'{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-006E-0407-0000-0000000FF1CE}' = Microsoft Office Shared MUI (German) 2010
'{90140000-006E-0407-0000-0000000FF1CE}_Office14.SingleImage_{98EDFD9F-EA76-40CC-BCE9-92C69413F65B}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{90140000-00A1-0407-0000-0000000FF1CE}' = Microsoft Office OneNote MUI (German) 2010
'{90140000-00A1-0407-0000-0000000FF1CE}_Office14.SingleImage_{69E54534-4569-4639-89E9-305B60A11601}' = Microsoft Office 2010 Service Pack 1 (SP1)
'{933B4015-4618-4716-A828-5289FC03165F}' = VC80CRTRedist - 8.0.50727.6195
'{9ACB414D-9347-40B6-A453-5EFB2DB59DFA}' = Sophos Anti-Virus
'{9BE518E6-ECC6-35A9-88E4-87755C07200F}' = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
'{9D56775A-93F3-44A3-8092-840E3826DE30}' = Windows Live Mail
'{9F6B13E2-B93F-4203-9BD4-5DC18C9F9DEB}' = AIO_CDB_Software
'{A83279FD-CA4B-4206-9535-90974DE76654}' = Apple Application Support
'{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}' = Google Update Helper
'{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}' = Windows Live Photo Common
'{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}' = Windows Live Writer
'{B1239994-A850-44E2-BED8-E70A21124E16}' = Windows Live Mail
'{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}' = Microsoft SQL Server 2008 Database Engine Services
'{B5264B25-8908-49BB-A708-5A70DFBF8094}' = Nokia Ovi Suite
'{B7050CBDB2504B34BC2A9CA0A692CC29}' = DivX Web Player
'{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}' = PC Connectivity Solution
'{BA4DA261-CB60-4690-B202-44998DFC6986}' = Microsoft SQL Server 2008 Setup Support Files
'{C1594429-8296-4652-BF54-9DBE4932A44C}' = Realtek PCIE Card Reader
'{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}' = Windows Live Photo Common
'{C688457E-03FD-4941-923B-A27F4D42A7DD}' = Microsoft SQL Server 2008 Browser
'{C8E4B31D-337C-483D-822D-16F11441669B}' = Fujitsu Hotkey Utility
'{C965F01C-76EA-4BD7-973E-46236AE312D7}' = Sql Server Customer Experience Improvement Program
'{CAE4213F-F797-439D-BD9E-79B71D115BE3}' = HPPhotoGadget
'{CB6075D9-F912-40AE-BEA6-E590DA24F16B}' = Adobe Photoshop Elements 7.0
'{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}' = Windows Live UX Platform
'{D0B44725-3666-492D-BEF6-587A14BD9BD9}' = MSVCRT_amd64
'{D45240D3-B6B3-4FF9-B243-54ECE3E10066}' = Windows Live Communications Platform
'{D6C5A4CA-1EE8-4C73-9679-0BC2946D1353}' = Battery Utility
'{E09C4DB7-630C-4F06-A631-8EA7239923AF}' = D3DX10
'{EE8AD592-B5C8-11D7-83CB-0050BF4EBD69}' = Geo3D
'{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}' = Intel® Processor Graphics
'{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}' = Realtek High Definition Audio Driver
'{F3494AB6-6900-41C6-AF57-823626827ED8}' = Microsoft SQL Server 2008 Database Engine Shared
'{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}' = Windows Live Essentials
'{FF34EA62-92C1-41E6-BA64-B2B7ECB53737}' = Nokia Ovi System Utilities
'Adobe Flash Player ActiveX' = Adobe Flash Player ActiveX
'Adobe Photoshop Elements 7' = Adobe Photoshop Elements 7.0
'AVMFBox' = AVM FRITZ!Box Dokumentation
'AVMFBoxPrinter' = AVM FRITZ!Box Druckeranschluss
'DeskUpdate_is1' = DeskUpdate 4.11
'DivX Setup' = DivX-Setup
'FormatFactory' = FormatFactory 2.70
'Foxit Reader_is1' = Foxit Reader 5.1
'InstallShield_{26208444-C11B-4820-B224-7F66549B0E16}' = O2Micro OZ776 SCR Driver
'InstallShield_{4108974B-DE87-4AD4-9167-930C62C45691}' = Fujitsu Display Manager
'InstallShield_{6226477E-444F-4DFE-BA19-9F4F7D4565BC}' = LifeBook Application Panel
'InstallShield_{C8E4B31D-337C-483D-822D-16F11441669B}' = Fujitsu Hotkey Utility
'InstallShield_{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}' = Fujitsu System Extension Utility
'InstallShield_{EC314CDF-3521-482B-A21C-65AC95664814}' = Fujitsu MobilityCenter Extension Utility
'InstallShield_{F33CFF0E-6684-43A8-AF99-2F1191B67152}' = Shock Sensor Utility
'Malwarebytes' Anti-Malware_is1' = Malwarebytes' Anti-Malware Version 1.51.2.1300
'Microsoft SQL Server 10' = Microsoft SQL Server 2008
'Microsoft SQL Server 10 Release' = Microsoft SQL Server 2008
'Mozilla Firefox 8.0 (x86 de)' = Mozilla Firefox 8.0 (x86 de)
'Nokia Ovi Application Installer' = Nokia Ovi Application Installer 6.85.3011
'Nokia Ovi Content Copier' = Nokia Ovi Content Copier 6.85.3011
'Nokia Ovi One Touch Access' = Nokia Ovi One Touch Access 6.85.3011
'Nokia Ovi System Utilities' = Nokia Ovi System Utilities 6.85.3016
'Office14.SingleImage' = Microsoft Office Home and Business 2010
'PokerStars' = PokerStars
'ProInst' = Intel PROSet Wireless
'SWIQMIDrvInstaller' = Sierra Wireless QMI Driver Package
'TmNationsForever_is1' = TmNationsForever
'VLC media player' = VLC media player 1.1.11
'WinLiveSuite' = Windows Live Essentials

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Uninstall]
'Dropbox' = Dropbox

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >


der andere OT-Log war leider zu lang, daher kann ich ihn hier nicht einfügen.
Hoffe mir kann jemand helfen. Falls noch informationen fehlen, gebe ich gerne soweit ich kann auskunft.
schonmal vielen dank im voraus

chris
Bis denn,

max508d
Alle Beiträge dieses Benutzers finden
Diese Nachricht in einer Antwort zitieren
31-01-2012, 04:22
Beitrag: #3
Re: langer Windows 7- Willkomens-bildschirm und schnell 'keine rückmeldung' - homegroupuser$ sqlserver
Hallo. Splitte das OTL Log File und setz es bitte rein

MBAM einen Vollscann durchführen lassen

Was wurde mit CCleaner alles durchgeführt?
IE nicht aktuell

Sophos FW deinstallieren ud die Win eigene FW verwenden
Haut rein!

winni2010
Alle Beiträge dieses Benutzers finden
Diese Nachricht in einer Antwort zitieren
31-01-2012, 05:08
Beitrag: #4
Re: langer Windows 7- Willkomens-bildschirm und schnell 'keine rückmeldung' - homegroupuser$ sqlserver
OTL logfile created on: 21.11.2011 20:33:17 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Chris\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3,91 Gb Total Physical Memory | 2,11 Gb Available Physical Memory | 53,80% Memory free
7,82 Gb Paging File | 5,78 Gb Available in Paging File | 73,91% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 406,88 Gb Free Space | 87,38% Space Free | Partition Type: NTFS
Drive D: | 4,20 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.11.21 20:18:13 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris\Desktop\OTL.exe
PRC - [2011.11.10 13:41:17 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011.03.14 13:31:06 | 000,130,072 | ---- | M] (Sophos Limited) -- C:\Program Files (x86)\Sophos\Sophos Client Firewall\SCFManager.exe
PRC - [2011.03.14 13:31:03 | 000,494,616 | ---- | M] (Sophos Limited) -- C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe
PRC - [2011.03.14 13:31:03 | 000,232,472 | ---- | M] (Sophos Limited) -- C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
PRC - [2011.03.14 13:31:00 | 001,543,192 | ---- | M] (Sophos Limited) -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
PRC - [2011.03.14 13:30:58 | 000,167,960 | ---- | M] (Sophos Limited) -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
PRC - [2011.03.14 13:30:58 | 000,099,864 | ---- | M] (Sophos Limited) -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
PRC - [2011.02.16 22:26:16 | 000,308,592 | ---- | M] (Sierra Wireless, Inc.) -- C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe
PRC - [2010.10.15 18:07:52 | 000,013,600 | ---- | M] (Broadcom Corporation.) -- C:\Programme\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
PRC - [2010.09.29 17:05:32 | 000,048,752 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
PRC - [2009.08.13 05:06:00 | 000,662,016 | ---- | M] (Sonix) -- C:\Windows\vsnp2uvc.exe


========== Modules (No Company Name) ==========

MOD - [2011.11.21 17:58:55 | 008,527,008 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011.11.10 13:41:16 | 001,989,592 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2011.10.18 09:49:04 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011.09.17 05:19:27 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Users\Chris\AppData\Local\Temp\7zS79A1\hpslpsvc 64.dll -- (HPSLPSVC)
SRV - [2011.03.30 06:56:20 | 001,517,328 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Programme\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel®
SRV - [2011.03.30 06:43:42 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Programme\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV - [2011.03.30 06:40:30 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Programme\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel®
SRV - [2011.03.14 13:31:07 | 000,052,248 | ---- | M] (Sophos Limited) [Auto | Stopped] -- C:\Program Files (x86)\Sophos\Sophos Client Firewall\SCFService.exe -- (Sophos Client Firewall)
SRV - [2011.03.14 13:31:06 | 000,130,072 | ---- | M] (Sophos Limited) [Auto | Running] -- C:\Program Files (x86)\Sophos\Sophos Client Firewall\SCFManager.exe -- (Sophos Client Firewall Manager)
SRV - [2011.03.14 13:31:03 | 000,232,472 | ---- | M] (Sophos Limited) [Auto | Running] -- C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe -- (Sophos AutoUpdate Service)
SRV - [2011.03.14 13:31:00 | 001,543,192 | ---- | M] (Sophos Limited) [Auto | Running] -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe -- (swi_service)
SRV - [2011.03.14 13:30:58 | 000,167,960 | ---- | M] (Sophos Limited) [Unknown | Running] -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe -- (SAVAdminService)
SRV - [2011.03.14 13:30:58 | 000,099,864 | ---- | M] (Sophos Limited) [Unknown | Running] -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe -- (SAVService)
SRV - [2011.02.16 22:26:16 | 000,308,592 | ---- | M] (Sierra Wireless, Inc.) [Auto | Running] -- C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe -- (Sierra Wireless QDL Service)
SRV - [2010.10.15 18:07:52 | 000,953,632 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Programme\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2010.10.07 14:58:14 | 000,331,776 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Programme\Fujitsu\Plugfree NETWORK\PFNService.exe -- (PFNService)
SRV - [2010.06.17 14:47:12 | 000,063,336 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Programme\Fujitsu\PSUtility\PSUService.exe -- (PowerSavingUtilityService)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\msco rsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.03.04 10:25:12 | 000,621,056 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files (x86)\Nokia\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.09.16 11:03:18 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor7.0)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011.10.18 09:42:15 | 000,052,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2011.04.18 14:44:24 | 000,144,160 | ---- | M] (Sophos Limited) [File_System | System | Running] -- C:\Windows\SysNative\drivers\savonaccess.sys -- (SAVOnAccess)
DRV:64bit: - [2011.04.15 03:08:26 | 012,228,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011.03.16 15:15:58 | 008,590,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64) ___ Intel®
DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.02.18 00:11:54 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011.02.04 00:58:00 | 000,424,448 | ---- | M] (Sierra Wireless Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swg3kmbb00.sys -- (swg3kmbb00)
DRV:64bit: - [2011.02.04 00:57:20 | 000,073,216 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swibusflt00.sys -- (swibusflt00)
DRV:64bit: - [2011.02.04 00:57:20 | 000,073,216 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swibus00.sys -- (swibus00)
DRV:64bit: - [2011.02.04 00:57:06 | 000,034,304 | ---- | M] (Sierra Wireless Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swg3kflt00.sys -- (swg3kflt00)
DRV:64bit: - [2011.02.04 00:56:58 | 000,256,384 | ---- | M] (Sierra Wireless Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swg3kser00.sys -- (swg3kser00)
DRV:64bit: - [2011.02.04 00:56:58 | 000,256,384 | ---- | M] (Sierra Wireless Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swg3knmea00.sys -- (swg3knmea00)
DRV:64bit: - [2010.12.20 16:31:00 | 000,316,080 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress) Intel®
DRV:64bit: - [2010.12.08 04:30:08 | 000,329,832 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV:64bit: - [2010.11.21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 04:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010.11.21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.11.19 18:18:45 | 000,100,856 | ---- | M] (Sophos Plc) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scfdriver.sys -- (scfdriver)
DRV:64bit: - [2010.11.19 18:18:45 | 000,053,240 | ---- | M] (Sophos Plc) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scfndis.sys -- (scfndis)
DRV:64bit: - [2010.11.19 18:18:06 | 000,025,608 | ---- | M] (Sophos Plc) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\SophosBootDriver.sys -- (SophosBootDriver)
DRV:64bit: - [2010.10.20 01:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel®
DRV:64bit: - [2010.10.14 17:28:16 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel®
DRV:64bit: - [2010.10.09 04:35:38 | 001,801,216 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:64bit: - [2010.10.04 06:26:14 | 000,131,112 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcbtums.sys -- (bcbtums)
DRV:64bit: - [2010.09.28 02:30:22 | 000,015,208 | ---- | M] (FUJITSU LIMITED) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\FJGSDisk.sys -- (FJGSDisk)
DRV:64bit: - [2010.09.21 06:20:30 | 000,348,712 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwampfl.sys -- (BTWAMPFL)
DRV:64bit: - [2010.09.14 21:59:16 | 000,138,280 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2010.09.14 21:59:10 | 000,021,416 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2010.08.20 23:21:38 | 000,106,536 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2010.08.06 00:17:00 | 000,085,736 | ---- | M] (O2Micro) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\oz776x64.sys -- (guardian2)
DRV:64bit: - [2010.03.02 06:37:40 | 000,039,464 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2009.11.19 12:45:08 | 000,299,568 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.24 05:31:30 | 000,021,104 | ---- | M] (FUJITSU LIMITED) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\FBIOSDRV.sys -- (FBIOSDRV)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.03.18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008.08.28 11:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2006.11.01 11:20:28 | 000,007,808 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\fuj02b1.sys -- (FUJ02B1)
DRV:64bit: - [2006.11.01 10:59:24 | 000,007,296 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\fuj02e3.sys -- (FUJ02E3)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 17 28 C1 D8 2B 8C CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings: 'ProxyEnable' = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: 'LEO Eng-Deu'
FF - prefs.js..browser.startup.homepage: 'www.google.de'

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_10 2.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.11.10 13:41:17 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.11.08 19:04:33 | 000,000,000 | ---D | M]

[2011.10.16 18:52:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chris\AppData\Roaming\mozilla\Extensions
[2011.10.16 19:59:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chris\AppData\Roaming\mozilla\Firefox\Pro files\eotkl84h.default\extensions
[2011.10.16 18:52:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
() (No name found) -- C:\USERS\CHRIS\APPDATA\ROAMING\MOZILLA\FIREFOX\PRO FILES\EOTKL84H.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011.11.10 13:41:17 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.09.29 02:24:37 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2011.09.29 02:16:42 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011.09.29 02:24:37 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2011.09.29 02:24:37 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.09.29 02:24:37 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.09.29 02:24:37 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Sophos Web Content Scanner) - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SophosBHOX64.dll (Sophos Limited)
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Sophos Web Content Scanner) - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SophosBHO.dll (Sophos Limited)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [FDM7] C:\Programme\Fujitsu\FDM7\FdmDaemon.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [FJBATAID2] C:\Programme\Fujitsu\BatteryAid2\BatteryDaemon.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [LoadBtnHnd] C:\Programme\Fujitsu\Application Panel\BtnHnd.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [LoadFUJ02E3] C:\Programme\Fujitsu\FUJ02E3\FUJ02E3.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [LoadFujitsuQuickTouch] C:\Programme\Fujitsu\Application Panel\QuickTouch.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [PfNet] C:\Program Files\Fujitsu\Plugfree NETWORK\PfNet.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [PSUTility] C:\Programme\Fujitsu\PSUtility\TrayManager.exe (FUJITSU LIMITED)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe (Sonix)
O4:64bit: - HKLM..\Run: [SSUtility] C:\Programme\Fujitsu\SSUtility\FJSSDMN.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [IndicatorUtility] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe (Sonix)
O4 - HKLM..\Run: [Sophos AutoUpdate Monitor] C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe (Sophos Limited)
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: Senden an Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Senden an &Bluetooth-Gerät... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000020 - C:\ProgramData\Sophos Web Intelligence\swi_lsp_64.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\ProgramData\Sophos Web Intelligence\swi_lsp.dll (Sophos Limited)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: fritz.box ([]* in Lokales Intranet)
O15 - HKCU\..Trusted Ranges: Range1 ([*] in Lokales Intranet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfac es\{C7A45E1E-E004-40F1-9852-E748146DF535}: DhcpNameServer = 192.168.178.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~2.DLL) - C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~2.DLL (Sophos Limited)
O20 - AppInit_DLLs: (C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL) -C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL (Sophos Limited)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.e xe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.06.05 18:46:03 | 000,000,222 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{4bbf1a12-f80f-11e0-9181-806e6f6e6963}\Shell - '' = AutoRun
O33 - MountPoints2\{4bbf1a12-f80f-11e0-9181-806e6f6e6963}\Shell\AutoRun\command - '' = D:\start.exe -- [2009.03.31 10:14:47 | 000,537,400 | R--- | M] (Fujitsu Technology Solutions)
O33 - MountPoints2\{4bbf1a12-f80f-11e0-9181-806e6f6e6963}\Shell\option1\command - '' = D:\deskupdate\DeskUpdate.exe -- [2010.10.13 12:04:21 | 000,622,360 | R--- | M] (Fujitsu Technology Solutions)
O33 - MountPoints2\{4bbf1a12-f80f-11e0-9181-806e6f6e6963}\Shell\support\command - '' = D:\deskupdate\support.bat -- [2011.06.05 18:46:03 | 000,000,104 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- '%1' %*
O35:64bit: - HKLM\..exefile [open] -- '%1' %*
O35 - HKLM\..comfile [open] -- '%1' %*
O35 - HKLM\..exefile [open] -- '%1' %*
O37:64bit: - HKLM\...com [@ = comfile] -- '%1' %*
O37:64bit: - HKLM\...exe [@ = exefile] -- '%1' %*
O37 - HKLM\...com [@ = comfile] -- '%1' %*
O37 - HKLM\...exe [@ = exefile] -- '%1' %*

========== Files/Folders - Created Within 30 Days ==========
Alle Beiträge dieses Benutzers finden
Diese Nachricht in einer Antwort zitieren
31-01-2012, 06:55
Beitrag: #5
Re: langer Windows 7- Willkomens-bildschirm und schnell 'keine rückmeldung' - homegroupuser$ sqlserver
[2011.11.21 20:17:50 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Chris\Desktop\OTL.exe
[2011.11.21 20:04:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.11.21 19:34:19 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Chris\Desktop\HiJackThis204.exe
[2011.11.21 19:22:44 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Malwarebytes
[2011.11.21 19:22:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.11.21 19:22:36 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.11.21 19:21:30 | 009,852,544 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Chris\Desktop\mbam-setup-1.51.2.1300.exe
[2011.11.21 19:06:08 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.11.21 18:58:34 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011.11.21 13:55:52 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\WinRAR
[2011.11.21 13:55:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.11.21 09:32:21 | 000,100,856 | ---- | C] (Sophos Plc) -- C:\Windows\SysNative\drivers\scfdriver.sys
[2011.11.21 09:32:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sophos
[2011.11.21 09:31:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos Web Intelligence
[2011.11.21 09:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
[2011.11.21 09:31:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Cisco Systems
[2011.11.21 09:31:06 | 000,037,400 | ---- | C] (Sophos Limited) -- C:\Windows\SysNative\sophosboottasks.exe
[2011.11.21 09:30:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2011.11.21 08:58:36 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{68FEC785-8292-4A09-9E17-4BB07822E742}
[2011.11.21 08:58:26 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{853602A5-E6D2-45D6-A613-2F71807873C6}
[2011.11.20 11:22:36 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{EDF68AEC-637A-4D9B-AE67-678A881BE386}
[2011.11.20 11:22:24 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{63A619B7-3876-4F3E-89ED-C4375FD80104}
[2011.11.18 16:38:01 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{68AFD57A-5BAA-445B-B433-202B34BD465F}
[2011.11.18 16:37:51 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{CEF05F98-A990-41FE-AB0B-A93051B8485A}
[2011.11.18 09:40:35 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{BE2F5D52-A2A1-44A7-861E-83FF321584AB}
[2011.11.18 09:40:26 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{909719C4-6EF9-4716-8E88-7F3AB147B1F2}
[2011.11.17 19:56:30 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{58C09331-B341-422C-B8B8-FB4C8A0EDD9D}
[2011.11.17 19:56:20 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{44F58E86-08EE-45B0-921B-CBFD35D4C4DA}
[2011.11.16 22:01:57 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{5F7D6EF7-4DDC-4CC9-A31B-A0D9FAE8D4E7}
[2011.11.16 22:01:47 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{BD411BD0-29BB-46C0-86FE-1CECFEF0D0EC}
[2011.11.16 12:10:54 | 000,000,000 | ---D | C] -- C:\Users\Chris\Documents\TmForever
[2011.11.16 11:30:34 | 000,000,000 | ---D | C] -- C:\Users\Chris\Local Settings
[2011.11.15 23:54:03 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{BB404E28-AA38-4DBB-821F-66AC87E509F2}
[2011.11.15 23:53:54 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{9F2D9D8F-06B4-41D9-BB73-30140CFD8AF1}
[2011.11.15 15:22:10 | 000,000,000 | ---D | C] -- C:\ProgramData\TrackMania
[2011.11.15 15:19:16 | 000,000,000 | ---D | C] -- C:\Users\Chris\Documents\TrackMania
[2011.11.15 15:19:15 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2011.11.15 15:19:15 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2011.11.15 15:19:15 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2011.11.15 15:19:15 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2011.11.15 15:19:14 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2011.11.15 15:19:14 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2011.11.15 15:19:07 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2011.11.15 15:19:07 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2011.11.15 15:19:06 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2011.11.15 15:19:06 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2011.11.15 15:19:06 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2011.11.15 15:19:06 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2011.11.15 15:19:06 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2011.11.15 15:19:06 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2011.11.15 15:19:04 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2011.11.15 15:19:04 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2011.11.15 15:19:03 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2011.11.15 15:19:03 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2011.11.15 15:19:02 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2011.11.15 15:19:02 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2011.11.15 15:19:01 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2011.11.15 15:19:01 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2011.11.15 15:19:00 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2011.11.15 15:19:00 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2011.11.15 15:18:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TmNationsForever
[2011.11.15 15:17:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TmNationsForever
[2011.11.15 08:16:57 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{4F877264-8AD9-473D-A316-BE2D38A6A12B}
[2011.11.15 08:16:36 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{789C8246-2EB3-4E96-9F70-ED001B303A6A}
[2011.11.14 11:11:07 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{0B432065-4689-4FA9-9121-91C9AF48F255}
[2011.11.14 11:10:57 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{82166002-E2AA-4080-87F3-D1DEE63B1BC9}
[2011.11.13 22:17:09 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{81C65827-6628-4E7A-8C80-DD0885B881E1}
[2011.11.13 22:16:41 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{58E86A4A-8BC1-4577-BCF7-D7BFA45C0018}
[2011.11.12 13:44:27 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{C03D3102-C7C3-4A39-B73B-AC5FBC560D3F}
[2011.11.12 13:44:15 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{72D868E3-D739-4402-AFE7-D5BDAC5D5C8E}
[2011.11.11 08:13:11 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Bluetooth-Geräte
[2011.11.11 06:45:42 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{527242FE-B8A0-46E5-A02D-CB7E9F1D2784}
[2011.11.11 06:45:31 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{6D3B9AB3-5FEA-4FF2-9CF7-FF697C70908B}
[2011.11.10 17:37:17 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{55A1D181-C561-4009-A50E-83CD8737185B}
[2011.11.10 17:37:07 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{20E9E2FF-DC45-4B5F-8FA0-5EEE2D130970}
[2011.11.09 16:09:02 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{A9079A83-ABCA-4110-A14C-5CEEDD4BA829}
[2011.11.09 16:08:52 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{DB85D1B5-4DC4-406B-9886-EDD270061C10}
[2011.11.09 08:33:50 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\Sophos
[2011.11.09 08:08:02 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Apple Computer
[2011.11.08 19:04:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011.11.08 19:04:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2011.11.08 19:04:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011.11.08 11:08:37 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{F2E263EA-17FC-4766-AA92-12FCD100D297}
[2011.11.08 11:08:16 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{5F4DE5CC-125F-4FD7-8F67-C10BC94AC15B}
[2011.11.07 23:07:50 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{764827CD-40B4-4F42-A896-CBA218AF8892}
[2011.11.07 23:07:40 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{4458C5DD-5AA3-40CC-A0A5-D77EF8B2CF99}
[2011.11.07 10:15:31 | 000,000,000 | R--D | C] -- C:\Users\Chris\Dropbox
[2011.11.07 10:12:15 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Dropbox
[2011.11.07 10:11:50 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Dropbox
[2011.11.07 10:10:16 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{EA3A977E-5CFC-4234-9953-E394AC82BC8C}
[2011.11.07 10:10:06 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{A3709815-5259-44B0-8736-82C0430F16EC}
[2011.11.05 13:31:02 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{24E50101-CB23-4BD3-A944-BCD8A1E92A22}
[2011.11.05 13:30:51 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{EDF0A942-A75F-4C41-BBBA-6CA7271EC4C6}
[2011.11.03 23:16:51 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{29EE9CAD-B7EF-4E2E-81CA-6C2EB0D9EED0}
[2011.11.03 23:16:41 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{AF558752-CBDA-43C9-839C-736F9D9B35C4}
[2011.11.03 08:13:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2011.11.03 08:12:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2011.11.03 08:12:15 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\Google
[2011.11.02 12:34:56 | 000,050,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perf-SQLAgent$SOPHOS-sqlagtctr10.1.2531.0.dll
[2011.11.02 12:34:46 | 000,079,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perf-MSSQL$SOPHOS-sqlctr10.1.2531.0.dll
[2011.11.02 12:33:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
[2011.11.02 12:33:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2011.11.02 12:33:08 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\1033
[2011.11.02 12:33:08 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\1033
[2011.11.02 12:32:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
[2011.11.02 12:31:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
[2011.11.02 12:28:39 | 000,000,000 | ---D | C] -- C:\sec_47
[2011.11.02 11:54:52 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{5A88E4C3-E09B-4F4F-B7A0-9F2E168F2BB9}
[2011.11.02 11:54:41 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{719A3F2A-959C-4A84-B058-674CC525A9A4}
[2011.11.02 11:39:15 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Geo3D
[2011.11.02 11:39:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geo3D
[2011.11.02 11:39:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Geo3D
[2011.11.01 21:33:54 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{CB97FB21-A24D-4D7B-B37C-BD767EFD93BC}
[2011.11.01 21:33:32 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{DF56FF58-6A23-4E87-890D-A5E5477F466E}
[2011.11.01 09:33:05 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{CBBDFA93-DAC4-4742-B3BF-C80026FB22CE}
[2011.11.01 09:32:43 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{09E2FDF6-73FE-4C16-8CE3-FBE439386D3B}
[2011.10.31 13:31:00 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\de.closeup.fotowerk statt.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1
[2011.10.30 08:01:13 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{E57B7BA4-DC40-4634-A14B-975F668B6026}
[2011.10.30 08:01:03 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{3816EABB-6A3A-4A35-9DBC-CDAE01DB89A9}
[2011.10.29 15:44:30 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{12D05A9A-B74B-43A9-8628-95E30D26E5EC}
[2011.10.29 15:44:20 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{6E57D0F7-4F92-44EC-9624-CD45A69A0D6B}
[2011.10.28 09:46:48 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{89DE2CB0-8DB3-4883-AE93-F95659AD2127}
[2011.10.28 09:46:38 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{1BCC9EA1-000C-4966-86DB-CAC3D3E4695F}
[2011.10.28 07:18:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2011.10.28 07:16:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2011.10.28 07:14:39 | 000,144,160 | ---- | C] (Sophos Limited) -- C:\Windows\SysNative\drivers\savonaccess.sys
[2011.10.28 07:14:39 | 000,053,240 | ---- | C] (Sophos Plc) -- C:\Windows\SysNative\drivers\scfndis.sys
[2011.10.28 07:14:39 | 000,025,608 | ---- | C] (Sophos Plc) -- C:\Windows\SysNative\drivers\SophosBootDriver.sys
[2011.10.28 07:14:34 | 000,000,000 | ---D | C] -- C:\escw_97_sa
[2011.10.27 21:23:16 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\Adobe
[2011.10.27 21:22:56 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2011.10.27 18:11:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Hewlett-Packard
[2011.10.27 18:10:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\HP
[2011.10.27 18:10:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP
[2011.10.27 18:07:21 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2011.10.27 18:07:18 | 000,642,360 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpzids40.dll
[2011.10.27 17:09:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2011.10.27 16:12:05 | 145,447,296 | ---- | C] (Kaspersky Lab) -- C:\Users\Chris\Documents\kis12.0.0.374de_de_specia l.exe
[2011.10.27 14:21:32 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{1C546E2B-70B4-40D9-9C11-F333F73C6620}
[2011.10.27 14:21:22 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{78094DBF-86F3-4AE3-A7ED-0009F2D61260}
[2011.10.27 13:27:23 | 000,069,120 | R--- | C] (AVM Berlin) -- C:\Windows\SysWow64\avmadd32.dll
[2011.10.27 13:27:23 | 000,016,384 | R--- | C] (AVM Berlin GmbH) -- C:\Windows\SysWow64\avmprmon.dll
[2011.10.27 13:27:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!Box
[2011.10.27 13:27:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FRITZ!BoxPrint
[2011.10.27 13:27:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FRITZ!Box
[2011.10.26 16:43:41 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Mozilla-Cache
[2011.10.26 16:43:16 | 000,000,000 | ---D | C] -- C:\Programs
[2011.10.26 14:29:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2011.10.26 14:27:43 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2011.10.26 14:27:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
[2011.10.26 14:26:49 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\Microsoft Help
[2011.10.26 14:26:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2011.10.26 14:26:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2011.10.26 14:26:28 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2011.10.26 10:56:12 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{2D641DE9-E915-4F86-A511-7C9BB6707D0A}
[2011.10.26 10:56:01 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{67C99EE2-57B2-48D9-A61A-882BB6591A20}
[2011.10.25 16:04:00 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{B7AEC002-0543-434C-AB94-D5035C9F601B}
[2011.10.25 16:03:50 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{E2C6F090-3E45-4E34-BD69-A02994D004B3}
[2011.10.24 14:46:39 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Roaming\Foxit Software
[2011.10.24 14:29:02 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\QuickTimeVR.qtx
[2011.10.24 14:29:02 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\SysWow64\QuickTime.qts
[2011.10.24 13:16:17 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{A13B500E-0796-4230-8E5E-E5F238EEE59F}
[2011.10.24 13:16:06 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{080DEF74-E863-4D88-932F-207B3BDAC9D6}
[2011.10.24 13:13:34 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\PokerStars
[2011.10.24 13:13:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
[2011.10.24 13:13:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PokerStars
[2011.10.24 12:07:12 | 001,544,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2011.10.24 12:07:12 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2011.10.23 10:35:29 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{63424711-B937-406A-99BD-91FD93BD815C}
[2011.10.23 10:35:17 | 000,000,000 | ---D | C] -- C:\Users\Chris\AppData\Local\{4BC8E4A7-4500-4963-8792-EA21D0E23FDD}
[2011.10.16 17:35:52 | 000,245,760 | ---- | C] ( ) -- C:\Windows\SysWow64\rsnp2uvc.dll

========== Files - Modified Within 30 Days ==========

[2011.11.21 20:18:13 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris\Desktop\OTL.exe
[2011.11.21 20:17:01 | 000,001,108 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.11.21 19:42:19 | 000,022,000 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.11.21 19:42:19 | 000,022,000 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.11.21 19:34:23 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Chris\Desktop\HiJackThis204.exe
[2011.11.21 19:31:14 | 000,001,104 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.11.21 19:28:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.11.21 19:28:16 | 3151,368,192 | -HS- | M] () -- C:\hiberfil.sys
[2011.11.21 19:21:48 | 009,852,544 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Chris\Desktop\mbam-setup-1.51.2.1300.exe
[2011.11.21 18:52:28 | 000,000,142 | ---- | M] () -- C:\Windows\ODBC.INI
[2011.11.21 17:58:55 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.11.21 10:19:13 | 000,000,438 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2011.11.21 09:19:29 | 001,681,120 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.11.21 09:19:29 | 000,719,478 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2011.11.21 09:19:29 | 000,681,320 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.11.21 09:19:29 | 000,154,088 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2011.11.21 09:19:29 | 000,130,470 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.11.09 18:53:34 | 000,346,768 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.11.02 12:34:56 | 001,704,170 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011.10.27 18:11:45 | 000,245,168 | ---- | M] () -- C:\Windows\hpoins19.dat
[2011.10.27 16:17:42 | 145,447,296 | ---- | M] (Kaspersky Lab) -- C:\Users\Chris\Documents\kis12.0.0.374de_de_specia l.exe
[2011.10.24 14:29:02 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\QuickTimeVR.qtx
[2011.10.24 14:29:02 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\Windows\SysWow64\QuickTime.qts

========== Files Created - No Company Name ==========

[2011.11.03 08:12:24 | 000,001,108 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011.11.03 08:12:24 | 000,001,104 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011.11.02 12:34:46 | 001,704,170 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011.10.28 07:21:13 | 000,000,142 | ---- | C] () -- C:\Windows\ODBC.INI
[2011.10.27 18:07:55 | 000,245,168 | ---- | C] () -- C:\Windows\hpoins19.dat
[2011.10.27 18:07:55 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2011.10.16 17:37:06 | 000,000,438 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011.10.16 17:37:04 | 000,000,206 | ---- | C] () -- C:\Windows\hbcikrnl.ini
[2011.10.16 17:35:52 | 000,024,576 | ---- | C] () -- C:\Windows\snuvcdsm.exe
[2011.10.16 17:35:52 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini
[2011.04.15 03:05:50 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011.04.15 03:05:50 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011.04.15 03:05:48 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011.04.15 02:59:48 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011.04.15 02:33:40 | 013,359,616 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll
[2009.07.14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

< End of report >

Bei ccleaner hab ich erst auf analysieren gedrückt und anschließend auf ccleaner starten
Alle Beiträge dieses Benutzers finden
Diese Nachricht in einer Antwort zitieren
31-01-2012, 08:36
Beitrag: #6
Re: langer Windows 7- Willkomens-bildschirm und schnell 'keine rückmeldung' - homegroupuser$ sqlserver
Mit einem vollständigen mbam log kann ich leider nicht dienen, weil sich das prog immer wieder aufhängt. habs jetzt mehrmals versucht, aber nach max 30. min zeigt es keine rückmeldung mehr an. hatte währenddessen nichts anderes am laptop gemacht...
die firewall habe ich umgestellt.
was mir auch aufgefallen ist, ist dass beim herunterfahren immer dieser dunkle bildschirm kommt, auf dem man das beenden eines programms erzwingen kann. dort steht dann für ein paar sekunden 'hintergrund programme werden beendet' oder so ähnlich. anschließend fährt er jedoch normal herunter, ohne dass ich etwas auswählen musste.
Cheers! max508d
Alle Beiträge dieses Benutzers finden
Diese Nachricht in einer Antwort zitieren
Tags
sqlserver homegroupuser$, homegroupuser$ sqlserver, aio_cdb_software, windows 7 stromversorgung symbol aktivieren, fritzbox homegroupuser$, net stop als bat zugriff verweigert, 2012 explorer.exe auslastung 50 win7, papierkorb beschädigt löschen windows 8, acer travelmate 4050 vista wlan treiber, bluescreen physical memory dump, kennwortrücksetzdatenträger windows 8, sites
« Ein Thema zurück | Ein Thema vor »
Antwort schreiben 


  • Druckversion anzeigen
  • Thema einem Freund senden
  • Thema abonnieren
Gehe zu:




Kontakt | Windows Forum | Nach oben | Zum Inhalt | Archiv-Modus | RSS-Synchronisation| Impressum