| |
| |||||||
Log-Analyse und Auswertung: "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
08.02.2012, 14:25
| #16 |
 |  "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" TDSSKiller: Code:
ATTFilter 14:22:58.0298 4156 TDSS rootkit removing tool 2.7.10.0 Feb 7 2012 15:14:46
14:22:58.0501 4156 ============================================================
14:22:58.0501 4156 Current date / time: 2012/02/08 14:22:58.0501
14:22:58.0501 4156 SystemInfo:
14:22:58.0501 4156
14:22:58.0501 4156 OS Version: 6.1.7600 ServicePack: 0.0
14:22:58.0501 4156 Product type: Workstation
14:22:58.0501 4156 ComputerName: TINSON-PC
14:22:58.0501 4156 UserName: Tinson
14:22:58.0501 4156 Windows directory: C:\Windows
14:22:58.0501 4156 System windows directory: C:\Windows
14:22:58.0501 4156 Running under WOW64
14:22:58.0501 4156 Processor architecture: Intel x64
14:22:58.0501 4156 Number of processors: 8
14:22:58.0501 4156 Page size: 0x1000
14:22:58.0501 4156 Boot type: Normal boot
14:22:58.0501 4156 ============================================================
14:22:59.0047 4156 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:22:59.0062 4156 \Device\Harddisk0\DR0:
14:22:59.0062 4156 MBR used
14:22:59.0062 4156 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
14:22:59.0062 4156 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x38606863
14:22:59.0078 4156 Initialize success
14:22:59.0078 4156 ============================================================
14:23:22.0977 2356 ============================================================
14:23:22.0977 2356 Scan started
14:23:22.0977 2356 Mode: Manual; SigCheck; TDLFS;
14:23:22.0977 2356 ============================================================
14:23:23.0461 2356 1394ohci (969c91060cbb5d17cb8440b5f78b4c51) C:\Windows\system32\DRIVERS\1394ohci.sys
14:23:23.0617 2356 1394ohci - ok
14:23:23.0663 2356 Acceler (e0065cbf1a25c015c218457d2cd522b9) C:\Windows\system32\DRIVERS\Accelern.sys
14:23:23.0788 2356 Acceler - ok
14:23:23.0819 2356 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
14:23:23.0866 2356 ACPI - ok
14:23:23.0897 2356 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
14:23:23.0975 2356 AcpiPmi - ok
14:23:24.0022 2356 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:23:24.0069 2356 adp94xx - ok
14:23:24.0100 2356 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:23:24.0116 2356 adpahci - ok
14:23:24.0147 2356 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:23:24.0147 2356 adpu320 - ok
14:23:24.0225 2356 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
14:23:24.0350 2356 AFD - ok
14:23:24.0397 2356 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
14:23:24.0428 2356 agp440 - ok
14:23:24.0459 2356 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
14:23:24.0490 2356 aliide - ok
14:23:24.0521 2356 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
14:23:24.0553 2356 amdide - ok
14:23:24.0553 2356 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:23:24.0615 2356 AmdK8 - ok
14:23:24.0646 2356 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:23:24.0724 2356 AmdPPM - ok
14:23:24.0755 2356 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
14:23:24.0787 2356 amdsata - ok
14:23:24.0802 2356 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:23:24.0833 2356 amdsbs - ok
14:23:24.0849 2356 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
14:23:24.0865 2356 amdxata - ok
14:23:24.0880 2356 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
14:23:25.0036 2356 AppID - ok
14:23:25.0067 2356 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:23:25.0099 2356 arc - ok
14:23:25.0114 2356 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:23:25.0130 2356 arcsas - ok
14:23:25.0145 2356 aswFsBlk (ce6d8bcc4787704ea4feeb92b0d0caf8) C:\Windows\system32\drivers\aswFsBlk.sys
14:23:25.0161 2356 aswFsBlk - ok
14:23:25.0192 2356 aswMonFlt (0debeb2e3fbd0bf5343125cce617f105) C:\Windows\system32\drivers\aswMonFlt.sys
14:23:25.0208 2356 aswMonFlt - ok
14:23:25.0239 2356 aswRdr (952edc2e81f85d1781958d4128bf59f8) C:\Windows\system32\drivers\aswRdr.sys
14:23:25.0255 2356 aswRdr - ok
14:23:25.0286 2356 aswSnx (dd383e2ac941c545a85ab72503da6c12) C:\Windows\system32\drivers\aswSnx.sys
14:23:25.0333 2356 aswSnx - ok
14:23:25.0348 2356 aswSP (ef5403fb8b2dcb791ec365fdf6040a4a) C:\Windows\system32\drivers\aswSP.sys
14:23:25.0379 2356 aswSP - ok
14:23:25.0395 2356 aswTdi (34165da5c6b30c0f9d61246bf8a28040) C:\Windows\system32\drivers\aswTdi.sys
14:23:25.0411 2356 aswTdi - ok
14:23:25.0426 2356 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:23:25.0520 2356 AsyncMac - ok
14:23:25.0551 2356 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
14:23:25.0582 2356 atapi - ok
14:23:25.0629 2356 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:23:25.0754 2356 b06bdrv - ok
14:23:25.0769 2356 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:23:25.0832 2356 b57nd60a - ok
14:23:25.0879 2356 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:23:25.0925 2356 Beep - ok
14:23:25.0957 2356 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:23:26.0019 2356 blbdrive - ok
14:23:26.0081 2356 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
14:23:26.0159 2356 bowser - ok
14:23:26.0222 2356 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:23:26.0284 2356 BrFiltLo - ok
14:23:26.0315 2356 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:23:26.0362 2356 BrFiltUp - ok
14:23:26.0393 2356 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:23:26.0503 2356 Brserid - ok
14:23:26.0518 2356 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:23:26.0581 2356 BrSerWdm - ok
14:23:26.0612 2356 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:23:26.0674 2356 BrUsbMdm - ok
14:23:26.0705 2356 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:23:26.0768 2356 BrUsbSer - ok
14:23:26.0799 2356 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:23:26.0846 2356 BTHMODEM - ok
14:23:26.0877 2356 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:23:26.0924 2356 cdfs - ok
14:23:26.0955 2356 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
14:23:27.0017 2356 cdrom - ok
14:23:27.0049 2356 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:23:27.0111 2356 circlass - ok
14:23:27.0173 2356 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:23:27.0220 2356 CLFS - ok
14:23:27.0236 2356 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:23:27.0283 2356 CmBatt - ok
14:23:27.0298 2356 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
14:23:27.0329 2356 cmdide - ok
14:23:27.0376 2356 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
14:23:27.0470 2356 CNG - ok
14:23:27.0485 2356 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:23:27.0517 2356 Compbatt - ok
14:23:27.0532 2356 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
14:23:27.0595 2356 CompositeBus - ok
14:23:27.0641 2356 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:23:27.0657 2356 crcdisk - ok
14:23:27.0704 2356 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
14:23:27.0735 2356 CtClsFlt - ok
14:23:27.0782 2356 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
14:23:27.0844 2356 DfsC - ok
14:23:27.0875 2356 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:23:27.0969 2356 discache - ok
14:23:28.0016 2356 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:23:28.0031 2356 Disk - ok
14:23:28.0078 2356 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:23:28.0141 2356 drmkaud - ok
14:23:28.0219 2356 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
14:23:28.0265 2356 DXGKrnl - ok
14:23:28.0359 2356 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:23:28.0499 2356 ebdrv - ok
14:23:28.0562 2356 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:23:28.0609 2356 elxstor - ok
14:23:28.0640 2356 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
14:23:28.0687 2356 ErrDev - ok
14:23:28.0749 2356 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:23:28.0796 2356 exfat - ok
14:23:28.0827 2356 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:23:28.0921 2356 fastfat - ok
14:23:28.0921 2356 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:23:28.0952 2356 fdc - ok
14:23:28.0999 2356 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:23:29.0014 2356 FileInfo - ok
14:23:29.0108 2356 FileMonitor (2b609f74fa2884c36471743322652a16) C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
14:23:29.0139 2356 FileMonitor - ok
14:23:29.0170 2356 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:23:29.0248 2356 Filetrace - ok
14:23:29.0279 2356 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:23:29.0295 2356 flpydisk - ok
14:23:29.0326 2356 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
14:23:29.0357 2356 FltMgr - ok
14:23:29.0389 2356 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:23:29.0420 2356 FsDepends - ok
14:23:29.0435 2356 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
14:23:29.0451 2356 Fs_Rec - ok
14:23:29.0482 2356 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:23:29.0498 2356 fvevol - ok
14:23:29.0513 2356 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:23:29.0545 2356 gagp30kx - ok
14:23:29.0576 2356 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:23:29.0654 2356 hcw85cir - ok
14:23:29.0669 2356 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:23:29.0732 2356 HDAudBus - ok
14:23:29.0779 2356 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:23:29.0810 2356 HidBatt - ok
14:23:29.0857 2356 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:23:29.0935 2356 HidBth - ok
14:23:29.0950 2356 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:23:29.0966 2356 HidIr - ok
14:23:30.0013 2356 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\drivers\hidusb.sys
14:23:30.0075 2356 HidUsb - ok
14:23:30.0137 2356 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
14:23:30.0169 2356 HpSAMD - ok
14:23:30.0200 2356 HTCAND64 (cf44b25ae808765d7308f412ad492ddb) C:\Windows\system32\Drivers\ANDROIDUSB.sys
14:23:30.0293 2356 HTCAND64 - ok
14:23:30.0340 2356 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys
14:23:30.0356 2356 htcnprot - ok
14:23:30.0387 2356 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
14:23:30.0512 2356 HTTP - ok
14:23:30.0543 2356 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
14:23:30.0543 2356 hwpolicy - ok
14:23:30.0574 2356 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:23:30.0621 2356 i8042prt - ok
14:23:30.0668 2356 iaStor (d469b77687e12fe43e344806740b624d) C:\Windows\system32\DRIVERS\iaStor.sys
14:23:30.0699 2356 iaStor - ok
14:23:30.0746 2356 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
14:23:30.0793 2356 iaStorV - ok
14:23:31.0027 2356 igfx (0ac9e321d604be48a0d72b69ba484bdc) C:\Windows\system32\DRIVERS\igdkmd64.sys
14:23:31.0354 2356 igfx - ok
14:23:31.0385 2356 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:23:31.0401 2356 iirsp - ok
14:23:31.0448 2356 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
14:23:31.0495 2356 Impcd - ok
14:23:31.0573 2356 IntcAzAudAddService (a9853214cc97796579d75b1f59c51dcd) C:\Windows\system32\drivers\RTKVHD64.sys
14:23:31.0666 2356 IntcAzAudAddService - ok
14:23:31.0697 2356 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
14:23:31.0760 2356 IntcDAud - ok
14:23:31.0807 2356 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
14:23:31.0822 2356 intelide - ok
14:23:31.0853 2356 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:23:31.0916 2356 intelppm - ok
14:23:31.0963 2356 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:23:32.0009 2356 IpFilterDriver - ok
14:23:32.0025 2356 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:23:32.0072 2356 IPMIDRV - ok
14:23:32.0119 2356 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:23:32.0150 2356 IPNAT - ok
14:23:32.0165 2356 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:23:32.0181 2356 IRENUM - ok
14:23:32.0212 2356 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
14:23:32.0212 2356 isapnp - ok
14:23:32.0259 2356 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
14:23:32.0321 2356 iScsiPrt - ok
14:23:32.0337 2356 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:23:32.0368 2356 kbdclass - ok
14:23:32.0399 2356 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
14:23:32.0462 2356 kbdhid - ok
14:23:32.0509 2356 KoneFltr (b6d6f12c214de823fa22709f7bd0eb0b) C:\Windows\system32\drivers\Kone.sys
14:23:32.0587 2356 KoneFltr - ok
14:23:32.0618 2356 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
14:23:32.0649 2356 KSecDD - ok
14:23:32.0665 2356 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
14:23:32.0711 2356 KSecPkg - ok
14:23:32.0711 2356 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:23:32.0789 2356 ksthunk - ok
14:23:32.0836 2356 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:23:32.0883 2356 lltdio - ok
14:23:32.0914 2356 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:23:32.0945 2356 LSI_FC - ok
14:23:32.0961 2356 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:23:32.0961 2356 LSI_SAS - ok
14:23:32.0977 2356 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:23:32.0992 2356 LSI_SAS2 - ok
14:23:33.0008 2356 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:23:33.0023 2356 LSI_SCSI - ok
14:23:33.0055 2356 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:23:33.0117 2356 luafv - ok
14:23:33.0133 2356 massfilter - ok
14:23:33.0179 2356 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
14:23:33.0211 2356 MBAMProtector - ok
14:23:33.0242 2356 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:23:33.0257 2356 megasas - ok
14:23:33.0289 2356 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:23:33.0304 2356 MegaSR - ok
14:23:33.0335 2356 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
14:23:33.0351 2356 MEIx64 - ok
14:23:33.0367 2356 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:23:33.0398 2356 Modem - ok
14:23:33.0429 2356 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:23:33.0491 2356 monitor - ok
14:23:33.0523 2356 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:23:33.0554 2356 mouclass - ok
14:23:33.0569 2356 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:23:33.0601 2356 mouhid - ok
14:23:33.0632 2356 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
14:23:33.0632 2356 mountmgr - ok
14:23:33.0679 2356 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
14:23:33.0694 2356 mpio - ok
14:23:33.0710 2356 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:23:33.0741 2356 mpsdrv - ok
14:23:33.0757 2356 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
14:23:33.0819 2356 MRxDAV - ok
14:23:33.0866 2356 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:23:33.0913 2356 mrxsmb - ok
14:23:33.0959 2356 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:23:34.0037 2356 mrxsmb10 - ok
14:23:34.0069 2356 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:23:34.0131 2356 mrxsmb20 - ok
14:23:34.0178 2356 msahci (bccf16d5fb1109162380e3e28dc9e4e5) C:\Windows\system32\DRIVERS\msahci.sys
14:23:34.0209 2356 msahci - ok
14:23:34.0240 2356 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
14:23:34.0271 2356 msdsm - ok
14:23:34.0287 2356 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:23:34.0349 2356 Msfs - ok
14:23:34.0365 2356 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:23:34.0443 2356 mshidkmdf - ok
14:23:34.0474 2356 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
14:23:34.0505 2356 msisadrv - ok
14:23:34.0537 2356 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:23:34.0599 2356 MSKSSRV - ok
14:23:34.0599 2356 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:23:34.0677 2356 MSPCLOCK - ok
14:23:34.0708 2356 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:23:34.0802 2356 MSPQM - ok
14:23:34.0833 2356 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
14:23:34.0864 2356 MsRPC - ok
14:23:34.0895 2356 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
14:23:34.0911 2356 mssmbios - ok
14:23:34.0911 2356 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:23:34.0989 2356 MSTEE - ok
14:23:35.0036 2356 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:23:35.0098 2356 MTConfig - ok
14:23:35.0145 2356 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:23:35.0176 2356 Mup - ok
14:23:35.0192 2356 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:23:35.0270 2356 NativeWifiP - ok
14:23:35.0348 2356 NDIS (a3151b3463eea7e47f618f115d0d142e) C:\Windows\system32\drivers\ndis.sys
14:23:35.0410 2356 NDIS - ok
14:23:35.0426 2356 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:23:35.0457 2356 NdisCap - ok
14:23:35.0473 2356 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:23:35.0551 2356 NdisTapi - ok
14:23:35.0582 2356 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
14:23:35.0660 2356 Ndisuio - ok
14:23:35.0691 2356 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:23:35.0785 2356 NdisWan - ok
14:23:35.0816 2356 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
14:23:35.0894 2356 NDProxy - ok
14:23:35.0941 2356 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:23:36.0019 2356 NetBIOS - ok
14:23:36.0065 2356 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
14:23:36.0159 2356 NetBT - ok
14:23:36.0362 2356 NETwNs64 (5d262402b0634c998f8cbcead7dd8676) C:\Windows\system32\DRIVERS\NETwNs64.sys
14:23:36.0596 2356 NETwNs64 - ok
14:23:36.0643 2356 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:23:36.0674 2356 nfrd960 - ok
14:23:36.0689 2356 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:23:36.0721 2356 Npfs - ok
14:23:36.0736 2356 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:23:36.0767 2356 nsiproxy - ok
14:23:36.0861 2356 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
14:23:36.0939 2356 Ntfs - ok
14:23:36.0970 2356 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:23:37.0001 2356 Null - ok
14:23:37.0033 2356 nusb3hub (a7127e86f9ffe2a53e271b56b2c4cedf) C:\Windows\system32\DRIVERS\nusb3hub.sys
14:23:37.0064 2356 nusb3hub - ok
14:23:37.0079 2356 nusb3xhc (49bbec6f48d5f9284b03abf3a959b19b) C:\Windows\system32\DRIVERS\nusb3xhc.sys
14:23:37.0126 2356 nusb3xhc - ok
14:23:37.0157 2356 NVHDA (857fb74754ebff94ee3ad40788740916) C:\Windows\system32\drivers\nvhda64v.sys
14:23:37.0189 2356 NVHDA - ok
14:23:37.0454 2356 nvlddmkm (24aa5e3ed7a2b48b8e798a1059a2b323) C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:23:37.0953 2356 nvlddmkm - ok
14:23:37.0969 2356 nvpciflt (58aa797b41410daea6a6eb33e77f9b7a) C:\Windows\system32\DRIVERS\nvpciflt.sys
14:23:37.0984 2356 nvpciflt - ok
14:23:38.0031 2356 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
14:23:38.0047 2356 nvraid - ok
14:23:38.0078 2356 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
14:23:38.0093 2356 nvstor - ok
14:23:38.0125 2356 NvStUSB (9e01b716c8085f7adb1cdc10103ceef8) C:\Windows\system32\DRIVERS\nvstusb.sys
14:23:38.0156 2356 NvStUSB - ok
14:23:38.0203 2356 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
14:23:38.0234 2356 nv_agp - ok
14:23:38.0265 2356 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
14:23:38.0359 2356 ohci1394 - ok
14:23:38.0390 2356 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:23:38.0421 2356 Parport - ok
14:23:38.0437 2356 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
14:23:38.0452 2356 partmgr - ok
14:23:38.0483 2356 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
14:23:38.0530 2356 pci - ok
14:23:38.0561 2356 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
14:23:38.0577 2356 pciide - ok
14:23:38.0608 2356 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:23:38.0624 2356 pcmcia - ok
14:23:38.0639 2356 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:23:38.0655 2356 pcw - ok
14:23:38.0671 2356 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:23:38.0749 2356 PEAUTH - ok
14:23:38.0827 2356 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
14:23:38.0920 2356 PptpMiniport - ok
14:23:38.0967 2356 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:23:39.0014 2356 Processor - ok
14:23:39.0061 2356 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
14:23:39.0139 2356 Psched - ok
14:23:39.0201 2356 PSI (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
14:23:39.0217 2356 PSI - ok
14:23:39.0263 2356 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
14:23:39.0263 2356 PxHlpa64 - ok
14:23:39.0295 2356 qicflt (0928bd20273625622722fe1de5bbde57) C:\Windows\system32\DRIVERS\qicflt.sys
14:23:39.0326 2356 qicflt - ok
14:23:39.0404 2356 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:23:39.0482 2356 ql2300 - ok
14:23:39.0497 2356 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:23:39.0513 2356 ql40xx - ok
14:23:39.0529 2356 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:23:39.0607 2356 QWAVEdrv - ok
14:23:39.0638 2356 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:23:39.0716 2356 RasAcd - ok
14:23:39.0763 2356 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:23:39.0809 2356 RasAgileVpn - ok
14:23:39.0825 2356 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:23:39.0919 2356 Rasl2tp - ok
14:23:39.0965 2356 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:23:40.0012 2356 RasPppoe - ok
14:23:40.0028 2356 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:23:40.0121 2356 RasSstp - ok
14:23:40.0168 2356 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
14:23:40.0231 2356 rdbss - ok
14:23:40.0246 2356 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:23:40.0309 2356 rdpbus - ok
14:23:40.0340 2356 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:23:40.0418 2356 RDPCDD - ok
14:23:40.0433 2356 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:23:40.0465 2356 RDPENCDD - ok
14:23:40.0511 2356 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:23:40.0558 2356 RDPREFMP - ok
14:23:40.0574 2356 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
14:23:40.0652 2356 RDPWD - ok
14:23:40.0683 2356 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
14:23:40.0714 2356 rdyboost - ok
14:23:40.0792 2356 RegFilter (8ccf1201a14d5ad7568e192b835abb7e) C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
14:23:40.0823 2356 RegFilter - ok
14:23:40.0886 2356 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:23:40.0964 2356 rspndr - ok
14:23:41.0026 2356 RTL8167 (a73ed14670220307874ad6bc2f279349) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:23:41.0057 2356 RTL8167 - ok
14:23:41.0104 2356 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
14:23:41.0135 2356 SASDIFSV - ok
14:23:41.0167 2356 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
14:23:41.0182 2356 SASKUTIL - ok
14:23:41.0213 2356 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
14:23:41.0229 2356 sbp2port - ok
14:23:41.0245 2356 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
14:23:41.0338 2356 scfilter - ok
14:23:41.0385 2356 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:23:41.0463 2356 secdrv - ok
14:23:41.0510 2356 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:23:41.0541 2356 Serenum - ok
14:23:41.0572 2356 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:23:41.0635 2356 Serial - ok
14:23:41.0666 2356 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:23:41.0744 2356 sermouse - ok
14:23:41.0791 2356 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
14:23:41.0884 2356 sffdisk - ok
14:23:41.0884 2356 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:23:41.0947 2356 sffp_mmc - ok
14:23:41.0947 2356 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
14:23:41.0962 2356 sffp_sd - ok
14:23:42.0009 2356 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:23:42.0040 2356 sfloppy - ok
14:23:42.0103 2356 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:23:42.0118 2356 SiSRaid2 - ok
14:23:42.0149 2356 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:23:42.0165 2356 SiSRaid4 - ok
14:23:42.0212 2356 SmartDefragDriver (94ce7845af6a2065b829e0126cd56236) C:\Windows\system32\Drivers\SmartDefragDriver.sys
14:23:42.0227 2356 SmartDefragDriver - ok
14:23:42.0259 2356 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:23:42.0352 2356 Smb - ok
14:23:42.0399 2356 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:23:42.0430 2356 spldr - ok
14:23:42.0508 2356 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
14:23:42.0602 2356 srv - ok
14:23:42.0649 2356 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
14:23:42.0695 2356 srv2 - ok
14:23:42.0742 2356 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
14:23:42.0789 2356 srvnet - ok
14:23:42.0867 2356 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\Windows\system32\DRIVERS\stdcfltn.sys
14:23:42.0883 2356 stdcfltn - ok
14:23:42.0929 2356 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:23:42.0945 2356 stexstor - ok
14:23:42.0961 2356 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
14:23:42.0992 2356 swenum - ok
14:23:43.0070 2356 SynTP (b0c7d4dcf4800df2f2145b500d0161e8) C:\Windows\system32\DRIVERS\SynTP.sys
14:23:43.0132 2356 SynTP - ok
14:23:43.0226 2356 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
14:23:43.0319 2356 Tcpip - ok
14:23:43.0382 2356 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
14:23:43.0429 2356 TCPIP6 - ok
14:23:43.0444 2356 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
14:23:43.0475 2356 tcpipreg - ok
14:23:43.0507 2356 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:23:43.0585 2356 TDPIPE - ok
14:23:43.0585 2356 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
14:23:43.0616 2356 TDTCP - ok
14:23:43.0663 2356 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
14:23:43.0756 2356 tdx - ok
14:23:43.0803 2356 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
14:23:43.0803 2356 TermDD - ok
14:23:43.0850 2356 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:23:43.0928 2356 tssecsrv - ok
14:23:43.0975 2356 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
14:23:44.0053 2356 tunnel - ok
14:23:44.0099 2356 TurboB (fd24f98d2898be093fe926604be7db99) C:\Windows\system32\DRIVERS\TurboB.sys
14:23:44.0099 2356 TurboB - ok
14:23:44.0131 2356 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:23:44.0146 2356 uagp35 - ok
14:23:44.0193 2356 udfs (31ba4a33afab6a69ea092b18017f737f) C:\Windows\system32\DRIVERS\udfs.sys
14:23:44.0271 2356 udfs - ok
14:23:44.0318 2356 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
14:23:44.0318 2356 uliagpkx - ok
14:23:44.0349 2356 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
14:23:44.0411 2356 umbus - ok
14:23:44.0443 2356 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:23:44.0505 2356 UmPass - ok
14:23:44.0614 2356 UrlFilter (1aa6ca6b150f85f07804cba5f814d9b2) C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
14:23:44.0630 2356 UrlFilter - ok
14:23:44.0661 2356 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
14:23:44.0739 2356 usbccgp - ok
14:23:44.0786 2356 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
14:23:44.0833 2356 usbcir - ok
14:23:44.0879 2356 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\drivers\usbehci.sys
14:23:44.0911 2356 usbehci - ok
14:23:44.0957 2356 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
14:23:45.0020 2356 usbhub - ok
14:23:45.0082 2356 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\drivers\usbohci.sys
14:23:45.0145 2356 usbohci - ok
14:23:45.0191 2356 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:23:45.0223 2356 usbprint - ok
14:23:45.0254 2356 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:23:45.0332 2356 usbscan - ok
14:23:45.0394 2356 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:23:45.0488 2356 USBSTOR - ok
14:23:45.0519 2356 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
14:23:45.0581 2356 usbuhci - ok
14:23:45.0628 2356 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
14:23:45.0675 2356 usbvideo - ok
14:23:45.0706 2356 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
14:23:45.0706 2356 vdrvroot - ok
14:23:45.0737 2356 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:23:45.0753 2356 vga - ok
14:23:45.0784 2356 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:23:45.0862 2356 VgaSave - ok
14:23:45.0893 2356 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
14:23:45.0940 2356 vhdmp - ok
14:23:45.0987 2356 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
14:23:45.0987 2356 viaide - ok
14:23:46.0034 2356 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
14:23:46.0065 2356 volmgr - ok
14:23:46.0081 2356 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
14:23:46.0096 2356 volmgrx - ok
14:23:46.0112 2356 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
14:23:46.0127 2356 volsnap - ok
14:23:46.0159 2356 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:23:46.0174 2356 vsmraid - ok
14:23:46.0205 2356 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
14:23:46.0221 2356 vwifibus - ok
14:23:46.0237 2356 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
14:23:46.0252 2356 vwififlt - ok
14:23:46.0268 2356 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
14:23:46.0283 2356 vwifimp - ok
14:23:46.0315 2356 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:23:46.0377 2356 WacomPen - ok
14:23:46.0424 2356 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:23:46.0502 2356 WANARP - ok
14:23:46.0502 2356 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
14:23:46.0533 2356 Wanarpv6 - ok
14:23:46.0595 2356 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:23:46.0627 2356 Wd - ok
14:23:46.0673 2356 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:23:46.0720 2356 Wdf01000 - ok
14:23:46.0783 2356 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:23:46.0845 2356 WfpLwf - ok
14:23:46.0892 2356 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
14:23:46.0892 2356 WimFltr - ok
14:23:46.0907 2356 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:23:46.0923 2356 WIMMount - ok
14:23:46.0985 2356 WinUsb (4d52c872018af7e18d078978dcc3f6f2) C:\Windows\system32\DRIVERS\WinUsb.sys
14:23:47.0079 2356 WinUsb - ok
14:23:47.0126 2356 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
14:23:47.0157 2356 WmiAcpi - ok
14:23:47.0219 2356 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:23:47.0297 2356 ws2ifsl - ok
14:23:47.0360 2356 WudfPf (c63907207b837a5c05cf6d1606aa0008) C:\Windows\system32\drivers\WudfPf.sys
14:23:47.0422 2356 WudfPf - ok
14:23:47.0485 2356 WUDFRd (d885a873d733020f8b9b9ff4b1666158) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:23:47.0547 2356 WUDFRd - ok
14:23:47.0578 2356 ZTEusbmdm6k - ok
14:23:47.0594 2356 ZTEusbnmea - ok
14:23:47.0594 2356 ZTEusbser6k - ok
14:23:47.0641 2356 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
14:23:47.0859 2356 \Device\Harddisk0\DR0 - ok
14:23:47.0859 2356 Boot (0x1200) (88ee01164cad8e84a2000f4756073a2d) \Device\Harddisk0\DR0\Partition0
14:23:47.0859 2356 \Device\Harddisk0\DR0\Partition0 - ok
14:23:47.0906 2356 Boot (0x1200) (683c52ad82086aedc39384b3d0160f54) \Device\Harddisk0\DR0\Partition1
14:23:47.0906 2356 \Device\Harddisk0\DR0\Partition1 - ok
14:23:47.0906 2356 ============================================================
14:23:47.0906 2356 Scan finished
14:23:47.0906 2356 ============================================================
14:23:47.0921 5840 Detected object count: 0
14:23:47.0921 5840 Actual detected object count: 0
|
|
08.02.2012, 15:12
| #17 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
08.02.2012, 17:02
| #18 |
| | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Jo dann mal weiter mi ComboFix:
__________________Combofix Logfile: Code:
ATTFilter ComboFix 12-02-08.01 - Tinson 08.02.2012 16:25:11.1.8 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.49.1031.18.4010.2222 [GMT 1:00]
ausgeführt von:: c:\users\Tinson\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\facemoods.com
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoods.crx
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoods.png
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsApp.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsEng.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\uninstall.exe
c:\program files (x86)\facemoods.com\sqlite3.dll
c:\programdata\Roaming
c:\users\Tinson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_setup_9.0.0.722_07.02.2012_06-23.exe.lnk
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-01-08 bis 2012-02-08 ))))))))))))))))))))))))))))))
.
.
2012-02-08 15:45 . 2012-02-08 15:45 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-02-08 15:45 . 2012-02-08 15:45 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-08 12:05 . 2012-02-08 12:05 -------- d-----w- C:\_OTL
2012-02-08 02:50 . 2012-01-06 05:15 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F24DBE2D-12F2-4551-A19B-2F735FB24B9D}\mpengine.dll
2012-02-07 22:21 . 2012-01-29 16:13 134104 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2012-02-07 22:15 . 2012-02-07 22:15 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-02-07 22:15 . 2012-02-07 22:14 476904 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
2012-02-07 22:14 . 2012-02-07 22:14 -------- d-----w- c:\program files (x86)\Java
2012-02-07 19:24 . 2012-02-07 19:24 -------- d-----w- c:\users\Tinson\AppData\Roaming\SUPERAntiSpyware.com
2012-02-07 19:19 . 2012-02-07 19:24 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-02-07 19:19 . 2012-02-07 19:19 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-02-07 12:49 . 2012-02-07 12:49 -------- d-----w- c:\users\Tinson\AppData\Roaming\Malwarebytes
2012-02-07 12:49 . 2012-02-07 12:49 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-02-07 12:49 . 2012-02-07 12:49 -------- d-----w- c:\programdata\Malwarebytes
2012-02-07 12:49 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-07 08:11 . 2012-02-08 09:09 -------- d-----w- c:\programdata\Kaspersky Lab
2012-02-07 08:08 . 2012-02-07 08:08 -------- d-----w- c:\programdata\Norton
2012-02-07 08:08 . 2012-02-07 08:11 -------- d-----w- c:\users\Tinson\AppData\Local\NPE
2012-01-11 07:09 . 2011-10-26 05:22 1572864 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 07:09 . 2011-10-26 04:28 1328640 ----a-w- c:\windows\SysWow64\quartz.dll
2012-01-11 07:09 . 2011-10-26 05:33 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-01-11 07:09 . 2011-10-26 04:33 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-01-11 07:09 . 2011-11-17 07:17 1297224 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-01-11 07:09 . 2011-11-17 06:53 1747400 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 07:09 . 2011-11-19 15:07 77312 ----a-w- c:\windows\system32\packager.dll
2012-01-11 07:09 . 2011-11-19 14:06 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-01-10 14:21 . 2012-01-10 14:22 -------- d-----w- c:\users\Tinson\AppData\Roaming\ts3overlay
2012-01-10 08:00 . 2012-01-29 16:13 45016 ----a-w- c:\program files (x86)\Mozilla Firefox\mozutils.dll
2012-01-10 08:00 . 2012-01-29 13:35 626688 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr80.dll
2012-01-10 08:00 . 2012-01-29 13:35 548864 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp80.dll
2012-01-10 08:00 . 2012-01-29 13:35 479232 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcm80.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-07 22:14 . 2011-04-04 21:10 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-01-26 23:52 . 2011-04-20 11:11 279656 ------w- c:\windows\system32\MpSigStub.exe
2011-12-27 23:52 . 2011-05-17 08:11 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-28 18:01 . 2011-04-21 06:29 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2011-04-21 06:29 199816 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-11-28 18:01 . 2011-04-19 07:33 256960 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:54 . 2011-04-21 06:30 591192 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2011-04-21 06:30 304472 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2011-04-21 06:30 42328 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2011-04-21 06:30 58712 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2011-04-21 06:30 66904 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2011-04-21 06:30 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-11-24 05:00 . 2011-12-15 15:09 3141632 ----a-w- c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2011-08-03 1242448]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-10-25 3077528]
"Advanced SystemCare 5"="c:\program files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" [2011-12-19 619352]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-01-20 5487488]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2010-08-19 487562]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-09-04 240112]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2011-11-08 273528]
"HTC Sync Loader"="c:\program files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-11-01 593920]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-10-09 559616]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Secunia PSI Tray.lnk - c:\program files (x86)\Secunia\PSI\psi_tray.exe [2011-1-5 291896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0SmartDefragBootTime.exe
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-09-04 219632]
R3 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-04-27 20336]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
R3 KoneFltr;ROCCAT Kone;c:\windows\system32\drivers\Kone.sys [x]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-12-17 340240]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
R3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;c:\windows\system32\DRIVERS\nvstusb.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2011-03-22 33184]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-09-04 1116656]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2011-03-22 21328]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-19 494424]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-06-01 821080]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-11-30 1997416]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-08-12 87040]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe [2011-01-05 988216]
S2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe [2011-01-05 399416]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-11-29 378472]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys [x]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NETwNs64;___ Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 64-Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [x]
S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2010-12-14 6561384]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-12-11 2186856]
"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2010-11-29 312936]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-19 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-19 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-19 417304]
"FreeFallProtection"="c:\program files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe" [2010-12-17 686704]
"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-12-17 1933584]
"QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2011-01-25 4479648]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2011-01-25 1802472]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page =
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files (x86)\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: network.proxy.type - 0
pref('extensions.shownSelectionUI',true); pref('extensions.autoDisableScopes',0);
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-facemoods - c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\uninstall.exe
AddRemove-ICQToolbar - c:\program files (x86)\ICQ6Toolbar\ICQUnToolbar.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10x_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10x_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10x.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10x.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10x.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10x.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
c:\program files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-02-08 16:54:57 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-02-08 15:54
.
Vor Suchlauf: 3.829.739.520 Bytes frei
Nach Suchlauf: 3.569.455.104 Bytes frei
.
- - End Of File - - 27D28FB38BBDBCB6F8FEEC14FC776839
|
|
09.02.2012, 11:07
| #19 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
09.02.2012, 16:28
| #20 |
| | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Habs 2x durchgeführt und es hat sich 2x aufgehangen mit Abbruchsfesnter ala Windows " Hilfe für Problem wird gesucht" ... |
|
09.02.2012, 16:48
| #21 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Probiers mal im abgesicherten Modus aus
__________________ --> "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" |
|
10.02.2012, 09:35
| #22 |
| | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Jo passiert genau das Gleiche! Grüße |
|
10.02.2012, 13:25
| #23 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Du startest es auch per Rechtsklick als Admin?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.02.2012, 14:25
| #24 |
| | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Jawohl... es stürzt leider immer ab... |
|
10.02.2012, 16:08
| #25 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Downloade Dir bitte MBRCheck (by a_d_13) und speichere die Datei auf dem Desktop.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.02.2012, 18:00
| #26 |
| | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" So... auch getan... Code:
ATTFilter MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Dell System XPS L502X
Logical Drives Mask: 0x0000000c
Kernel Drivers (total 165):
0x0304E000 \SystemRoot\system32\ntoskrnl.exe
0x03005000 \SystemRoot\system32\hal.dll
0x00BC5000 \SystemRoot\system32\kdcom.dll
0x00CAE000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00CF2000 \SystemRoot\system32\PSHED.dll
0x00D06000 \SystemRoot\system32\CLFS.SYS
0x00E72000 \SystemRoot\system32\CI.dll
0x00F32000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00FD6000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00E00000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00E57000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00E60000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00D64000 \SystemRoot\system32\DRIVERS\pci.sys
0x00FE5000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00D97000 \SystemRoot\System32\drivers\partmgr.sys
0x00FF2000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x00DAC000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x00DB8000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00C00000 \SystemRoot\System32\drivers\volmgrx.sys
0x00C5C000 \SystemRoot\System32\drivers\mountmgr.sys
0x01091000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x011E5000 \SystemRoot\system32\drivers\amdxata.sys
0x01000000 \SystemRoot\system32\drivers\fltmgr.sys
0x0104C000 \SystemRoot\system32\drivers\fileinfo.sys
0x01060000 \SystemRoot\System32\Drivers\PxHlpa64.sys
0x0120C000 \SystemRoot\System32\Drivers\Ntfs.sys
0x014BA000 \SystemRoot\System32\Drivers\msrpc.sys
0x01518000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01532000 \SystemRoot\System32\Drivers\cng.sys
0x015A5000 \SystemRoot\System32\drivers\pcw.sys
0x015B6000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01635000 \SystemRoot\system32\drivers\ndis.sys
0x01727000 \SystemRoot\system32\drivers\NETIO.SYS
0x01787000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01800000 \SystemRoot\System32\drivers\tcpip.sys
0x017B2000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01400000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x01600000 \SystemRoot\system32\DRIVERS\stdcfltn.sys
0x01609000 \SystemRoot\System32\Drivers\spldr.sys
0x01611000 \SystemRoot\System32\Drivers\SmartDefragDriver.sys
0x0144C000 \SystemRoot\System32\drivers\rdyboost.sys
0x01618000 \SystemRoot\system32\DRIVERS\nvpciflt.sys
0x0161D000 \SystemRoot\System32\Drivers\mup.sys
0x01486000 \SystemRoot\System32\drivers\hwpolicy.sys
0x015C0000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x0148F000 \SystemRoot\system32\DRIVERS\disk.sys
0x013AE000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x0FE7B000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x10AE3000 \SystemRoot\System32\Drivers\nvBridge.kmd
0x10AE5000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x10BD9000 \SystemRoot\System32\drivers\watchdog.sys
0x0FE00000 \SystemRoot\System32\drivers\dxgmms1.sys
0x0FE46000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x02C2C000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x02CC2000 \SystemRoot\System32\Drivers\Null.SYS
0x02CCB000 \SystemRoot\System32\Drivers\Beep.SYS
0x02CD2000 \SystemRoot\System32\drivers\vga.sys
0x02CE0000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x02D05000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x02D0E000 \SystemRoot\system32\drivers\rdpencdd.sys
0x02D17000 \SystemRoot\system32\drivers\rdprefmp.sys
0x02D20000 \SystemRoot\System32\Drivers\Msfs.SYS
0x02D2B000 \SystemRoot\System32\Drivers\Npfs.SYS
0x02D3C000 \SystemRoot\system32\DRIVERS\tdx.sys
0x02D5A000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x02D67000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x02D79000 \SystemRoot\System32\DRIVERS\netbt.sys
0x0402C000 \SystemRoot\system32\drivers\afd.sys
0x040B5000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x040C2000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x040CD000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x040D6000 \SystemRoot\system32\DRIVERS\pacer.sys
0x040FC000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x04112000 \SystemRoot\system32\DRIVERS\netbios.sys
0x04121000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x0413C000 \SystemRoot\system32\DRIVERS\termdd.sys
0x04150000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
0x0415A000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
0x04164000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x041B5000 \SystemRoot\system32\drivers\nsiproxy.sys
0x041C1000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x041CC000 \SystemRoot\System32\drivers\discache.sys
0x041DB000 \SystemRoot\System32\Drivers\dfsc.sys
0x04000000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x0427B000 \SystemRoot\System32\Drivers\aswSP.SYS
0x042CC000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x042F2000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x04810000 \SystemRoot\system32\DRIVERS\igdkmd64.sys
0x053C0000 \SystemRoot\system32\DRIVERS\HECIx64.sys
0x053D1000 \SystemRoot\system32\drivers\usbehci.sys
0x042FB000 \SystemRoot\system32\drivers\USBPORT.SYS
0x04351000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x0560A000 \SystemRoot\system32\DRIVERS\NETwNs64.sys
0x05E75000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x05E82000 \SystemRoot\system32\DRIVERS\nusb3xhc.sys
0x05EB3000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x05EB5000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x05F1B000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x05F39000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x044A1000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x04400000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x0440F000 \SystemRoot\system32\DRIVERS\Accelern.sys
0x0441F000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x04424000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x0443A000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x0444A000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x04460000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x04484000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x05F48000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x05F77000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x05F92000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x05FB3000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x04490000 \SystemRoot\system32\DRIVERS\swenum.sys
0x04375000 \SystemRoot\system32\DRIVERS\ks.sys
0x05FCD000 \SystemRoot\system32\DRIVERS\umbus.sys
0x04200000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x05FDF000 \SystemRoot\system32\DRIVERS\nusb3hub.sys
0x053E2000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x08059000 \SystemRoot\system32\drivers\RTKVHD64.sys
0x082E6000 \SystemRoot\system32\drivers\portcls.sys
0x08323000 \SystemRoot\system32\drivers\drmk.sys
0x08345000 \SystemRoot\system32\drivers\ksthunk.sys
0x0834B000 \SystemRoot\system32\DRIVERS\IntcDAud.sys
0x0839E000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x083BB000 \SystemRoot\System32\Drivers\usbvideo.sys
0x083E9000 \SystemRoot\system32\DRIVERS\qicflt.sys
0x08000000 \SystemRoot\system32\DRIVERS\CtClsFlt.sys
0x0802B000 \SystemRoot\System32\Drivers\crashdmp.sys
0x0840A000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x0855E000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x00060000 \SystemRoot\System32\win32k.sys
0x08571000 \SystemRoot\System32\drivers\Dxapi.sys
0x0857D000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00480000 \SystemRoot\System32\TSDDD.dll
0x006E0000 \SystemRoot\System32\cdd.dll
0x008F0000 \SystemRoot\System32\ATMFD.DLL
0x0858B000 \SystemRoot\system32\drivers\luafv.sys
0x085AE000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x085EA000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x0425A000 \SystemRoot\system32\drivers\WudfPf.sys
0x08039000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x062E2000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x06335000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x06348000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x06360000 \SystemRoot\system32\DRIVERS\TurboB.sys
0x06200000 \SystemRoot\system32\drivers\HTTP.sys
0x06367000 \SystemRoot\system32\DRIVERS\bowser.sys
0x06385000 \SystemRoot\System32\drivers\mpsdrv.sys
0x0639D000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x0BAFC000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x0BB4A000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x0BB6D000 \SystemRoot\system32\DRIVERS\vwifimp.sys
0x0BA00000 \SystemRoot\system32\drivers\peauth.sys
0x0BAA6000 \SystemRoot\System32\Drivers\secdrv.SYS
0x0BAB1000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x0BADE000 \SystemRoot\System32\drivers\tcpipreg.sys
0x0BB77000 \SystemRoot\System32\DRIVERS\srv2.sys
0x0C27B000 \SystemRoot\System32\DRIVERS\srv.sys
0x0C310000 \SystemRoot\system32\DRIVERS\psi_mf.sys
0x0C319000 \SystemRoot\System32\Drivers\fastfat.SYS
0x0C34F000 \??\C:\Windows\system32\drivers\mbam.sys
0x0C3CA000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0x776F0000 \Windows\System32\ntdll.dll
0x483B0000 \Windows\System32\smss.exe
0xFFA10000 \Windows\System32\apisetschema.dll
Processes (total 96):
0 System Idle Process
4 System
376 C:\Windows\System32\smss.exe
532 csrss.exe
620 C:\Windows\System32\wininit.exe
640 csrss.exe
676 C:\Windows\System32\services.exe
704 C:\Windows\System32\lsass.exe
712 C:\Windows\System32\lsm.exe
800 C:\Windows\System32\winlogon.exe
868 C:\Windows\System32\svchost.exe
928 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
984 C:\Windows\System32\nvvsvc.exe
144 C:\Windows\System32\svchost.exe
488 C:\Windows\System32\svchost.exe
764 C:\Windows\System32\svchost.exe
884 C:\Windows\System32\svchost.exe
1140 C:\Windows\System32\svchost.exe
1260 C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
1272 C:\Windows\System32\nvvsvc.exe
1324 C:\Windows\System32\svchost.exe
1584 C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1592 C:\Windows\System32\wlanext.exe
1600 C:\Windows\System32\conhost.exe
1744 C:\Windows\System32\dwm.exe
1788 C:\Windows\explorer.exe
1428 C:\Windows\System32\taskhost.exe
1880 C:\Windows\System32\spoolsv.exe
1848 C:\Windows\System32\svchost.exe
1704 C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
2148 C:\Program Files\SUPERAntiSpyware\SASCore64.exe
2248 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
2276 C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
2360 C:\Program Files\Intel\WiFi\bin\EvtEng.exe
2440 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
2500 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
2528 C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2636 C:\Windows\SysWOW64\PnkBstrA.exe
2668 C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
2688 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
2760 C:\Program Files (x86)\Secunia\PSI\psia.exe
2936 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
3048 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
2144 C:\Windows\System32\svchost.exe
2436 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
2228 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
3164 unsecapp.exe
3288 WmiPrvSE.exe
3560 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
3704 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
4016 C:\Windows\System32\svchost.exe
3060 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
2848 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1364 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
3940 C:\Program Files (x86)\Secunia\PSI\sua.exe
3948 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4092 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
3924 C:\Windows\System32\igfxtray.exe
4168 C:\Windows\System32\SearchIndexer.exe
4208 C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
4312 C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
4464 C:\Program Files (x86)\Steam\Steam.exe
4572 C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
4748 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
4772 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
4936 C:\Windows\System32\svchost.exe
4964 C:\Windows\System32\wbem\unsecapp.exe
5032 C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
4348 C:\Windows\System32\svchost.exe
4504 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
5076 C:\Program Files\Windows Media Player\wmpnetwk.exe
4452 C:\Program Files\AVAST Software\Avast\AvastUI.exe
5172 C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
5308 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
5516 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
5688 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
5704 C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
6028 dllhost.exe
6084 C:\Program Files (x86)\Common Files\Steam\SteamService.exe
2496 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
4408 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
4028 C:\Windows\System32\svchost.exe
4676 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
6008 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
3732 C:\Program Files (x86)\IObit\Advanced SystemCare 5\DelayLoad.exe
5944 C:\Windows\System32\wuauclt.exe
4184 C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
772 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
3788 C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
3912 C:\Windows\System32\SearchProtocolHost.exe
3544 C:\Windows\System32\SearchFilterHost.exe
5300 C:\Windows\System32\audiodg.exe
4620 dllhost.exe
3472 dllhost.exe
3156 C:\Users\Tinson\Downloads\MBRCheck.exe
1532 C:\Windows\System32\conhost.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000003`afdf9a00 (NTFS)
PhysicalDrive0 Model Number: ST9500420AS, Rev: D005SDM1
Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979
Done!
|
|
10.02.2012, 19:09
| #27 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
12.02.2012, 14:58
| #28 |
| | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 02/12/2012 at 02:53 PM
Application Version : 5.0.1144
Core Rules Database Version : 8225
Trace Rules Database Version: 6037
Scan type : Complete Scan
Total Scan Time : 00:48:15
Operating System Information
Windows 7 Home Premium 64-bit (Build 6.01.7600)
UAC On - Limited User
Memory items scanned : 630
Memory threats detected : 0
Registry items scanned : 72051
Registry threats detected : 0
File items scanned : 56770
File threats detected : 64
Adware.Tracking Cookie
dtp.missioncontrol.global-media.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.unitymedia.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.tracking.quisma.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adxpose.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ads.crakmedia.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.syndication.traffichaus.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.syndication.traffichaus.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.syndication.traffichaus.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.exoclick.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
media.gan-online.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.server.cpmstar.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.a.revenuemax.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.clickfuse.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
eas.apm.emediate.eu [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adxvalue.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.im.banner.t-online.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.ad.adnet.de [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\TINSON\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UP7QBN9D.DEFAULT\COOKIES.SQLITE ]
|
|
12.02.2012, 15:28
| #29 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" Was ist mit Malwarebytes?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
12.02.2012, 19:53
| #30 |
| | "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.60.1.1000 www.malwarebytes.org Datenbank Version: v2012.02.12.02 Windows 7 x64 NTFS Internet Explorer 8.0.7600.16385 Tinson :: TINSON-PC [Administrator] Schutz: Aktiviert 12.02.2012 17:07:27 mbam-log-2012-02-12 (17-07-27).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 380328 Laufzeit: 1 Stunde(n), 15 Minute(n), 44 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
| Themen zu "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" |
| .com, achtung!, antivirus, autorun, avast antivirus, bho, bildschirm, desktop, document, error, firefox, geld, helper, home, iobit, kaspersky, logfile, malware, nvpciflt.sys, nvstor.sys, object, pando media booster, plug-in, programm, realtek, registry, required, rundll, scan, schwarzer bildschirm, secunia psi, senden, software, super, trojaner/virus, usb, webcheck, windows |
Linear-Darstellung
