| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Startfenster.com nach VLC-Player DownloadWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
21.09.2012, 10:13
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Startfenster.com nach VLC-Player Download Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
21.09.2012, 15:12
| #17 |
 | Startfenster.com nach VLC-Player DownloadCode:
ATTFilter 16:03:52.0807 0812 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
16:03:53.0165 0812 ============================================================
16:03:53.0165 0812 Current date / time: 2012/09/21 16:03:53.0165
16:03:53.0165 0812 SystemInfo:
16:03:53.0165 0812
16:03:53.0165 0812 OS Version: 6.1.7601 ServicePack: 1.0
16:03:53.0165 0812 Product type: Workstation
16:03:53.0165 0812 ComputerName: JULCHEN-PC
16:03:53.0165 0812 UserName: Julchen
16:03:53.0165 0812 Windows directory: C:\Windows
16:03:53.0165 0812 System windows directory: C:\Windows
16:03:53.0165 0812 Running under WOW64
16:03:53.0165 0812 Processor architecture: Intel x64
16:03:53.0165 0812 Number of processors: 8
16:03:53.0165 0812 Page size: 0x1000
16:03:53.0165 0812 Boot type: Normal boot
16:03:53.0165 0812 ============================================================
16:03:54.0866 0812 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:03:54.0881 0812 ============================================================
16:03:54.0881 0812 \Device\Harddisk0\DR0:
16:03:54.0881 0812 MBR partitions:
16:03:54.0881 0812 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:03:54.0881 0812 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xA8454800
16:03:54.0881 0812 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xA8487000, BlocksNum 0x6400000
16:03:54.0881 0812 ============================================================
16:03:54.0928 0812 C: <-> \Device\Harddisk0\DR0\Partition2
16:03:55.0037 0812 D: <-> \Device\Harddisk0\DR0\Partition3
16:03:55.0037 0812 ============================================================
16:03:55.0037 0812 Initialize success
16:03:55.0037 0812 ============================================================
16:05:07.0546 2248 ============================================================
16:05:07.0546 2248 Scan started
16:05:07.0546 2248 Mode: Manual; SigCheck; TDLFS;
16:05:07.0546 2248 ============================================================
16:05:08.0716 2248 ================ Scan system memory ========================
16:05:08.0716 2248 System memory - ok
16:05:08.0716 2248 ================ Scan services =============================
16:05:08.0935 2248 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:05:09.0013 2248 1394ohci - ok
16:05:09.0044 2248 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:05:09.0075 2248 ACPI - ok
16:05:09.0091 2248 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:05:09.0153 2248 AcpiPmi - ok
16:05:09.0278 2248 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:05:09.0293 2248 AdobeARMservice - ok
16:05:09.0387 2248 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:05:09.0387 2248 AdobeFlashPlayerUpdateSvc - ok
16:05:09.0434 2248 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:05:09.0465 2248 adp94xx - ok
16:05:09.0496 2248 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:05:09.0527 2248 adpahci - ok
16:05:09.0559 2248 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:05:09.0574 2248 adpu320 - ok
16:05:09.0605 2248 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:05:09.0730 2248 AeLookupSvc - ok
16:05:09.0777 2248 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:05:09.0839 2248 AFD - ok
16:05:09.0871 2248 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:05:09.0871 2248 agp440 - ok
16:05:09.0902 2248 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:05:09.0949 2248 ALG - ok
16:05:09.0995 2248 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:05:10.0011 2248 aliide - ok
16:05:10.0042 2248 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:05:10.0058 2248 amdide - ok
16:05:10.0073 2248 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:05:10.0105 2248 AmdK8 - ok
16:05:10.0151 2248 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
16:05:10.0183 2248 AmdPPM - ok
16:05:10.0198 2248 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:05:10.0214 2248 amdsata - ok
16:05:10.0229 2248 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:05:10.0245 2248 amdsbs - ok
16:05:10.0245 2248 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:05:10.0261 2248 amdxata - ok
16:05:10.0323 2248 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:05:10.0495 2248 AppID - ok
16:05:10.0495 2248 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:05:10.0541 2248 AppIDSvc - ok
16:05:10.0573 2248 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:05:10.0635 2248 Appinfo - ok
16:05:10.0651 2248 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
16:05:10.0666 2248 arc - ok
16:05:10.0666 2248 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:05:10.0666 2248 arcsas - ok
16:05:10.0697 2248 [ D6D2BB2F4F5868549DDE75F3146BC84E ] asmthub3 C:\Windows\system32\drivers\asmthub3.sys
16:05:10.0729 2248 asmthub3 - ok
16:05:10.0760 2248 [ 1E758172367DC2A3653F16586D62A3F0 ] asmtxhci C:\Windows\system32\drivers\asmtxhci.sys
16:05:10.0807 2248 asmtxhci - ok
16:05:10.0838 2248 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:05:10.0900 2248 AsyncMac - ok
16:05:10.0947 2248 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:05:10.0963 2248 atapi - ok
16:05:10.0978 2248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:05:11.0041 2248 AudioEndpointBuilder - ok
16:05:11.0041 2248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:05:11.0072 2248 AudioSrv - ok
16:05:11.0321 2248 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
16:05:11.0368 2248 AVGIDSAgent - ok
16:05:11.0431 2248 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
16:05:11.0431 2248 AVGIDSDriver - ok
16:05:11.0446 2248 [ D19F5C2C2BA0962DD4437EC020858FA3 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
16:05:11.0462 2248 AVGIDSHA - ok
16:05:11.0477 2248 [ B5C6EC8D0FC00BD291994926C5888FD3 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
16:05:11.0477 2248 Avgldx64 - ok
16:05:11.0540 2248 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
16:05:11.0555 2248 Avgloga - ok
16:05:11.0571 2248 [ 91FEFBFF54E30A339F21F784983C9F6A ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
16:05:11.0587 2248 Avgmfx64 - ok
16:05:11.0618 2248 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
16:05:11.0633 2248 Avgrkx64 - ok
16:05:11.0649 2248 [ ECBE71E3AF3E146453EF9623A245E6E0 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
16:05:11.0665 2248 Avgtdia - ok
16:05:11.0696 2248 [ DE24B2CA078FC6A7EAA53B1DFD3F61CF ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
16:05:11.0696 2248 avgtp - ok
16:05:11.0789 2248 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
16:05:11.0805 2248 avgwd - ok
16:05:11.0867 2248 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:05:11.0945 2248 AxInstSV - ok
16:05:11.0977 2248 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:05:12.0023 2248 b06bdrv - ok
16:05:12.0086 2248 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:05:12.0117 2248 b57nd60a - ok
16:05:12.0148 2248 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:05:12.0195 2248 BDESVC - ok
16:05:12.0195 2248 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:05:12.0257 2248 Beep - ok
16:05:12.0335 2248 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:05:12.0398 2248 BFE - ok
16:05:12.0445 2248 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:05:12.0523 2248 BITS - ok
16:05:12.0554 2248 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
16:05:12.0585 2248 blbdrive - ok
16:05:12.0632 2248 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:05:12.0679 2248 bowser - ok
16:05:12.0694 2248 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
16:05:12.0725 2248 BrFiltLo - ok
16:05:12.0741 2248 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
16:05:12.0772 2248 BrFiltUp - ok
16:05:12.0850 2248 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:05:12.0897 2248 Browser - ok
16:05:12.0928 2248 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:05:12.0975 2248 Brserid - ok
16:05:13.0006 2248 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:05:13.0037 2248 BrSerWdm - ok
16:05:13.0037 2248 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:05:13.0069 2248 BrUsbMdm - ok
16:05:13.0115 2248 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:05:13.0131 2248 BrUsbSer - ok
16:05:13.0147 2248 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:05:13.0178 2248 BTHMODEM - ok
16:05:13.0193 2248 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:05:13.0225 2248 bthserv - ok
16:05:13.0240 2248 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:05:13.0287 2248 cdfs - ok
16:05:13.0303 2248 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
16:05:13.0318 2248 cdrom - ok
16:05:13.0365 2248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:05:13.0427 2248 CertPropSvc - ok
16:05:13.0443 2248 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
16:05:13.0459 2248 circlass - ok
16:05:13.0490 2248 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:05:13.0505 2248 CLFS - ok
16:05:13.0677 2248 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:05:13.0693 2248 clr_optimization_v2.0.50727_32 - ok
16:05:13.0739 2248 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:05:13.0739 2248 clr_optimization_v2.0.50727_64 - ok
16:05:13.0802 2248 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:05:13.0817 2248 clr_optimization_v4.0.30319_32 - ok
16:05:13.0849 2248 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:05:13.0864 2248 clr_optimization_v4.0.30319_64 - ok
16:05:13.0864 2248 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
16:05:13.0895 2248 CmBatt - ok
16:05:13.0927 2248 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:05:13.0942 2248 cmdide - ok
16:05:14.0005 2248 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
16:05:14.0036 2248 CNG - ok
16:05:14.0051 2248 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
16:05:14.0067 2248 Compbatt - ok
16:05:14.0098 2248 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:05:14.0129 2248 CompositeBus - ok
16:05:14.0129 2248 COMSysApp - ok
16:05:14.0145 2248 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:05:14.0161 2248 crcdisk - ok
16:05:14.0207 2248 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:05:14.0254 2248 CryptSvc - ok
16:05:14.0363 2248 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:05:14.0379 2248 cvhsvc - ok
16:05:14.0473 2248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:05:14.0535 2248 DcomLaunch - ok
16:05:14.0582 2248 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:05:14.0629 2248 defragsvc - ok
16:05:14.0660 2248 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:05:14.0691 2248 DfsC - ok
16:05:14.0722 2248 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:05:14.0753 2248 Dhcp - ok
16:05:14.0785 2248 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:05:14.0831 2248 discache - ok
16:05:14.0878 2248 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
16:05:14.0878 2248 Disk - ok
16:05:14.0894 2248 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:05:14.0925 2248 Dnscache - ok
16:05:14.0956 2248 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:05:15.0003 2248 dot3svc - ok
16:05:15.0019 2248 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:05:15.0081 2248 DPS - ok
16:05:15.0128 2248 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:05:15.0159 2248 drmkaud - ok
16:05:15.0206 2248 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:05:15.0237 2248 DXGKrnl - ok
16:05:15.0284 2248 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:05:15.0331 2248 EapHost - ok
16:05:15.0658 2248 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:05:15.0721 2248 ebdrv - ok
16:05:15.0767 2248 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:05:15.0799 2248 EFS - ok
16:05:15.0861 2248 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:05:15.0908 2248 ehRecvr - ok
16:05:15.0923 2248 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:05:15.0955 2248 ehSched - ok
16:05:15.0986 2248 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:05:16.0017 2248 elxstor - ok
16:05:16.0033 2248 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:05:16.0064 2248 ErrDev - ok
16:05:16.0111 2248 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:05:16.0189 2248 EventSystem - ok
16:05:16.0220 2248 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:05:16.0251 2248 exfat - ok
16:05:16.0251 2248 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:05:16.0298 2248 fastfat - ok
16:05:16.0313 2248 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:05:16.0360 2248 Fax - ok
16:05:16.0376 2248 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
16:05:16.0391 2248 fdc - ok
16:05:16.0407 2248 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:05:16.0469 2248 fdPHost - ok
16:05:16.0485 2248 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:05:16.0516 2248 FDResPub - ok
16:05:16.0532 2248 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:05:16.0547 2248 FileInfo - ok
16:05:16.0563 2248 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:05:16.0594 2248 Filetrace - ok
16:05:16.0625 2248 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
16:05:16.0641 2248 flpydisk - ok
16:05:16.0672 2248 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:05:16.0688 2248 FltMgr - ok
16:05:16.0766 2248 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:05:16.0813 2248 FontCache - ok
16:05:16.0859 2248 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:05:16.0875 2248 FontCache3.0.0.0 - ok
16:05:16.0891 2248 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:05:16.0906 2248 FsDepends - ok
16:05:16.0937 2248 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:05:16.0953 2248 Fs_Rec - ok
16:05:16.0953 2248 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:05:16.0969 2248 fvevol - ok
16:05:16.0984 2248 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:05:17.0000 2248 gagp30kx - ok
16:05:17.0015 2248 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:05:17.0062 2248 gpsvc - ok
16:05:17.0093 2248 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:05:17.0109 2248 hcw85cir - ok
16:05:17.0140 2248 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:05:17.0171 2248 HdAudAddService - ok
16:05:17.0203 2248 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:05:17.0234 2248 HDAudBus - ok
16:05:17.0265 2248 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
16:05:17.0281 2248 HidBatt - ok
16:05:17.0296 2248 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:05:17.0327 2248 HidBth - ok
16:05:17.0343 2248 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
16:05:17.0359 2248 HidIr - ok
16:05:17.0359 2248 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:05:17.0421 2248 hidserv - ok
16:05:17.0437 2248 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:05:17.0437 2248 HidUsb - ok
16:05:17.0468 2248 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:05:17.0515 2248 hkmsvc - ok
16:05:17.0515 2248 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:05:17.0561 2248 HomeGroupListener - ok
16:05:17.0593 2248 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:05:17.0624 2248 HomeGroupProvider - ok
16:05:17.0639 2248 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:05:17.0655 2248 HpSAMD - ok
16:05:17.0702 2248 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:05:17.0749 2248 HTTP - ok
16:05:17.0780 2248 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:05:17.0780 2248 hwpolicy - ok
16:05:17.0811 2248 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:05:17.0827 2248 i8042prt - ok
16:05:17.0858 2248 [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor C:\Windows\system32\drivers\iaStor.sys
16:05:17.0858 2248 iaStor - ok
16:05:17.0920 2248 [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
16:05:17.0936 2248 IAStorDataMgrSvc - ok
16:05:17.0951 2248 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:05:17.0983 2248 iaStorV - ok
16:05:18.0029 2248 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:05:18.0045 2248 idsvc - ok
16:05:18.0965 2248 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:05:19.0137 2248 igfx - ok
16:05:19.0168 2248 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:05:19.0184 2248 iirsp - ok
16:05:19.0215 2248 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:05:19.0262 2248 IKEEXT - ok
16:05:19.0340 2248 [ CB7DADEF3D83FE2C12655A0BDCBA99F2 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:05:19.0387 2248 IntcAzAudAddService - ok
16:05:19.0433 2248 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:05:19.0433 2248 intelide - ok
16:05:19.0465 2248 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:05:19.0496 2248 intelppm - ok
16:05:19.0496 2248 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:05:19.0543 2248 IPBusEnum - ok
16:05:19.0558 2248 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:05:19.0605 2248 IpFilterDriver - ok
16:05:19.0636 2248 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:05:19.0699 2248 iphlpsvc - ok
16:05:19.0714 2248 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:05:19.0745 2248 IPMIDRV - ok
16:05:19.0777 2248 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:05:19.0839 2248 IPNAT - ok
16:05:19.0870 2248 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:05:19.0901 2248 IRENUM - ok
16:05:19.0933 2248 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:05:19.0948 2248 isapnp - ok
16:05:19.0964 2248 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:05:19.0979 2248 iScsiPrt - ok
16:05:19.0995 2248 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:05:20.0011 2248 kbdclass - ok
16:05:20.0026 2248 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:05:20.0042 2248 kbdhid - ok
16:05:20.0073 2248 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:05:20.0089 2248 KeyIso - ok
16:05:20.0120 2248 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:05:20.0135 2248 KSecDD - ok
16:05:20.0135 2248 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:05:20.0151 2248 KSecPkg - ok
16:05:20.0167 2248 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:05:20.0198 2248 ksthunk - ok
16:05:20.0229 2248 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:05:20.0291 2248 KtmRm - ok
16:05:20.0338 2248 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:05:20.0401 2248 LanmanServer - ok
16:05:20.0432 2248 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:05:20.0447 2248 LanmanWorkstation - ok
16:05:20.0494 2248 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:05:20.0541 2248 lltdio - ok
16:05:20.0619 2248 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:05:20.0681 2248 lltdsvc - ok
16:05:20.0697 2248 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:05:20.0744 2248 lmhosts - ok
16:05:20.0806 2248 [ 1584DEEAE5AA0E3FB045F3D0EAC585EA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:05:20.0822 2248 LMS - ok
16:05:20.0853 2248 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:05:20.0869 2248 LSI_FC - ok
16:05:20.0884 2248 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:05:20.0900 2248 LSI_SAS - ok
16:05:20.0915 2248 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
16:05:20.0931 2248 LSI_SAS2 - ok
16:05:20.0962 2248 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:05:20.0978 2248 LSI_SCSI - ok
16:05:20.0993 2248 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:05:21.0040 2248 luafv - ok
16:05:21.0087 2248 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:05:21.0118 2248 Mcx2Svc - ok
16:05:21.0134 2248 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
16:05:21.0149 2248 megasas - ok
16:05:21.0196 2248 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
16:05:21.0212 2248 MegaSR - ok
16:05:21.0227 2248 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\drivers\HECIx64.sys
16:05:21.0227 2248 MEIx64 - ok
16:05:21.0274 2248 [ 8A43D23ACE2E8C95A2D87B6E9599DEDA ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
16:05:21.0274 2248 MemeoBackgroundService - ok
16:05:21.0290 2248 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:05:21.0321 2248 MMCSS - ok
16:05:21.0337 2248 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:05:21.0383 2248 Modem - ok
16:05:21.0415 2248 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:05:21.0446 2248 monitor - ok
16:05:21.0477 2248 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:05:21.0477 2248 mouclass - ok
16:05:21.0508 2248 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:05:21.0524 2248 mouhid - ok
16:05:21.0555 2248 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:05:21.0571 2248 mountmgr - ok
16:05:21.0617 2248 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:05:21.0633 2248 MozillaMaintenance - ok
16:05:21.0664 2248 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:05:21.0680 2248 mpio - ok
16:05:21.0695 2248 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:05:21.0727 2248 mpsdrv - ok
16:05:21.0836 2248 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:05:21.0883 2248 MpsSvc - ok
16:05:21.0898 2248 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:05:21.0929 2248 MRxDAV - ok
16:05:21.0945 2248 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:05:21.0992 2248 mrxsmb - ok
16:05:22.0007 2248 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:05:22.0039 2248 mrxsmb10 - ok
16:05:22.0070 2248 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:05:22.0085 2248 mrxsmb20 - ok
16:05:22.0117 2248 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:05:22.0117 2248 msahci - ok
16:05:22.0148 2248 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:05:22.0163 2248 msdsm - ok
16:05:22.0195 2248 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:05:22.0226 2248 MSDTC - ok
16:05:22.0241 2248 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:05:22.0288 2248 Msfs - ok
16:05:22.0319 2248 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:05:22.0335 2248 mshidkmdf - ok
16:05:22.0351 2248 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:05:22.0351 2248 msisadrv - ok
16:05:22.0366 2248 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:05:22.0413 2248 MSiSCSI - ok
16:05:22.0429 2248 msiserver - ok
16:05:22.0460 2248 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:05:22.0507 2248 MSKSSRV - ok
16:05:22.0538 2248 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:05:22.0585 2248 MSPCLOCK - ok
16:05:22.0600 2248 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:05:22.0616 2248 MSPQM - ok
16:05:22.0631 2248 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:05:22.0647 2248 MsRPC - ok
16:05:22.0647 2248 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:05:22.0647 2248 mssmbios - ok
16:05:22.0678 2248 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:05:22.0725 2248 MSTEE - ok
16:05:22.0741 2248 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
16:05:22.0772 2248 MTConfig - ok
16:05:22.0787 2248 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:05:22.0787 2248 Mup - ok
16:05:22.0803 2248 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:05:22.0850 2248 napagent - ok
16:05:22.0881 2248 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:05:22.0897 2248 NativeWifiP - ok
16:05:22.0943 2248 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:05:22.0975 2248 NDIS - ok
16:05:23.0006 2248 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:05:23.0053 2248 NdisCap - ok
16:05:23.0068 2248 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:05:23.0115 2248 NdisTapi - ok
16:05:23.0162 2248 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:05:23.0209 2248 Ndisuio - ok
16:05:23.0224 2248 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:05:23.0271 2248 NdisWan - ok
16:05:23.0287 2248 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:05:23.0318 2248 NDProxy - ok
16:05:23.0349 2248 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:05:23.0365 2248 NetBIOS - ok
16:05:23.0380 2248 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:05:23.0396 2248 NetBT - ok
16:05:23.0427 2248 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:05:23.0443 2248 Netlogon - ok
16:05:23.0489 2248 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:05:23.0536 2248 Netman - ok
16:05:23.0552 2248 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:05:23.0583 2248 netprofm - ok
16:05:23.0614 2248 [ 618C55B392238B9467F9113E13525C49 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
16:05:23.0661 2248 netr28ux - ok
16:05:23.0677 2248 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:05:23.0692 2248 NetTcpPortSharing - ok
16:05:23.0708 2248 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:05:23.0723 2248 nfrd960 - ok
16:05:23.0755 2248 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:05:23.0801 2248 NlaSvc - ok
16:05:23.0817 2248 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:05:23.0848 2248 Npfs - ok
16:05:23.0848 2248 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:05:23.0895 2248 nsi - ok
16:05:23.0926 2248 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:05:23.0957 2248 nsiproxy - ok
16:05:24.0004 2248 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:05:24.0035 2248 Ntfs - ok
16:05:24.0051 2248 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:05:24.0129 2248 Null - ok
16:05:24.0176 2248 [ 10204955027011E08A9DC27737A48A54 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
16:05:24.0176 2248 NVHDA - ok
16:05:24.0394 2248 [ CC1EFEA1F0AB17E59BD4B5BAFF3E5CB0 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:05:24.0503 2248 nvlddmkm - ok
16:05:24.0550 2248 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:05:24.0550 2248 nvraid - ok
16:05:24.0566 2248 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:05:24.0566 2248 nvstor - ok
16:05:24.0597 2248 [ 39F933CA2798156B0B7A19D104B73B9A ] nvsvc C:\Windows\system32\nvvsvc.exe
16:05:24.0628 2248 nvsvc - ok
16:05:24.0691 2248 [ 4E5C5D88EB0A8D21824D5A3EB7327E69 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
16:05:24.0737 2248 nvUpdatusService - ok
16:05:24.0753 2248 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:05:24.0769 2248 nv_agp - ok
16:05:24.0784 2248 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:05:24.0800 2248 ohci1394 - ok
16:05:24.0847 2248 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:05:24.0847 2248 ose - ok
16:05:24.0971 2248 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:05:25.0018 2248 osppsvc - ok
16:05:25.0096 2248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:05:25.0159 2248 p2pimsvc - ok
16:05:25.0174 2248 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:05:25.0221 2248 p2psvc - ok
16:05:25.0221 2248 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
16:05:25.0252 2248 Parport - ok
16:05:25.0283 2248 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:05:25.0299 2248 partmgr - ok
16:05:25.0299 2248 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:05:25.0330 2248 PcaSvc - ok
16:05:25.0346 2248 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:05:25.0346 2248 pci - ok
16:05:25.0377 2248 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:05:25.0377 2248 pciide - ok
16:05:25.0408 2248 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:05:25.0408 2248 pcmcia - ok
16:05:25.0439 2248 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:05:25.0439 2248 pcw - ok
16:05:25.0471 2248 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:05:25.0517 2248 PEAUTH - ok
16:05:25.0580 2248 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:05:25.0595 2248 PerfHost - ok
16:05:25.0720 2248 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:05:25.0814 2248 pla - ok
16:05:25.0845 2248 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:05:25.0876 2248 PlugPlay - ok
16:05:25.0907 2248 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:05:25.0923 2248 PNRPAutoReg - ok
16:05:25.0954 2248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:05:25.0970 2248 PNRPsvc - ok
16:05:25.0985 2248 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:05:26.0048 2248 PolicyAgent - ok
16:05:26.0079 2248 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:05:26.0126 2248 Power - ok
16:05:26.0141 2248 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:05:26.0204 2248 PptpMiniport - ok
16:05:26.0219 2248 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
16:05:26.0251 2248 Processor - ok
16:05:26.0282 2248 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:05:26.0297 2248 ProfSvc - ok
16:05:26.0313 2248 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:05:26.0329 2248 ProtectedStorage - ok
16:05:26.0360 2248 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:05:26.0391 2248 Psched - ok
16:05:26.0438 2248 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:05:26.0485 2248 ql2300 - ok
16:05:26.0516 2248 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:05:26.0516 2248 ql40xx - ok
16:05:26.0547 2248 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:05:26.0563 2248 QWAVE - ok
16:05:26.0578 2248 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:05:26.0609 2248 QWAVEdrv - ok
16:05:26.0609 2248 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:05:26.0641 2248 RasAcd - ok
16:05:26.0672 2248 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:05:26.0734 2248 RasAgileVpn - ok
16:05:26.0750 2248 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:05:26.0781 2248 RasAuto - ok
16:05:26.0797 2248 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:05:26.0828 2248 Rasl2tp - ok
16:05:26.0859 2248 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:05:26.0921 2248 RasMan - ok
16:05:26.0937 2248 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:05:26.0984 2248 RasPppoe - ok
16:05:26.0984 2248 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:05:27.0015 2248 RasSstp - ok
16:05:27.0031 2248 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:05:27.0062 2248 rdbss - ok
16:05:27.0077 2248 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
16:05:27.0093 2248 rdpbus - ok
16:05:27.0109 2248 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:05:27.0140 2248 RDPCDD - ok
16:05:27.0140 2248 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:05:27.0202 2248 RDPENCDD - ok
16:05:27.0218 2248 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:05:27.0249 2248 RDPREFMP - ok
16:05:27.0311 2248 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:05:27.0343 2248 RDPWD - ok
16:05:27.0358 2248 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:05:27.0374 2248 rdyboost - ok
16:05:27.0405 2248 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:05:27.0436 2248 RemoteAccess - ok
16:05:27.0467 2248 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:05:27.0499 2248 RemoteRegistry - ok
16:05:27.0514 2248 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:05:27.0561 2248 RpcEptMapper - ok
16:05:27.0577 2248 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:05:27.0592 2248 RpcLocator - ok
16:05:27.0623 2248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:05:27.0639 2248 RpcSs - ok
16:05:27.0670 2248 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:05:27.0717 2248 rspndr - ok
16:05:27.0748 2248 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:05:27.0764 2248 RTL8167 - ok
16:05:27.0779 2248 [ B3F36B4B3F192EA87DDC119F3A0B3E45 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
16:05:27.0811 2248 RTL8192su - ok
16:05:27.0826 2248 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:05:27.0826 2248 SamSs - ok
16:05:27.0842 2248 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:05:27.0857 2248 sbp2port - ok
16:05:27.0857 2248 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:05:27.0904 2248 SCardSvr - ok
16:05:27.0904 2248 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:05:27.0935 2248 scfilter - ok
16:05:27.0967 2248 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:05:28.0013 2248 Schedule - ok
16:05:28.0029 2248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:05:28.0076 2248 SCPolicySvc - ok
16:05:28.0091 2248 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:05:28.0107 2248 SDRSVC - ok
16:05:28.0123 2248 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:05:28.0154 2248 secdrv - ok
16:05:28.0169 2248 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:05:28.0201 2248 seclogon - ok
16:05:28.0232 2248 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:05:28.0294 2248 SENS - ok
16:05:28.0310 2248 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:05:28.0341 2248 SensrSvc - ok
16:05:28.0357 2248 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
16:05:28.0372 2248 Serenum - ok
16:05:28.0403 2248 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
16:05:28.0435 2248 Serial - ok
16:05:28.0466 2248 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:05:28.0481 2248 sermouse - ok
16:05:28.0513 2248 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:05:28.0575 2248 SessionEnv - ok
16:05:28.0591 2248 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:05:28.0637 2248 sffdisk - ok
16:05:28.0653 2248 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:05:28.0669 2248 sffp_mmc - ok
16:05:28.0684 2248 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:05:28.0700 2248 sffp_sd - ok
16:05:28.0715 2248 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:05:28.0747 2248 sfloppy - ok
16:05:28.0793 2248 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
16:05:28.0825 2248 Sftfs - ok
16:05:28.0903 2248 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:05:28.0918 2248 sftlist - ok
16:05:28.0934 2248 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
16:05:28.0949 2248 Sftplay - ok
16:05:28.0981 2248 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
16:05:28.0981 2248 Sftredir - ok
16:05:29.0012 2248 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
16:05:29.0012 2248 Sftvol - ok
16:05:29.0043 2248 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:05:29.0059 2248 sftvsa - ok
16:05:29.0074 2248 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:05:29.0137 2248 SharedAccess - ok
16:05:29.0183 2248 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:05:29.0246 2248 ShellHWDetection - ok
16:05:29.0261 2248 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
16:05:29.0261 2248 SiSRaid2 - ok
16:05:29.0277 2248 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:05:29.0277 2248 SiSRaid4 - ok
16:05:29.0339 2248 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:05:29.0402 2248 Smb - ok
16:05:29.0417 2248 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:05:29.0449 2248 SNMPTRAP - ok
16:05:29.0464 2248 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:05:29.0480 2248 spldr - ok
16:05:29.0511 2248 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:05:29.0558 2248 Spooler - ok
16:05:29.0620 2248 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:05:29.0729 2248 sppsvc - ok
16:05:29.0776 2248 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:05:29.0854 2248 sppuinotify - ok
16:05:29.0885 2248 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:05:29.0917 2248 srv - ok
16:05:29.0932 2248 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:05:29.0948 2248 srv2 - ok
16:05:29.0979 2248 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:05:29.0995 2248 srvnet - ok
16:05:30.0026 2248 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:05:30.0073 2248 SSDPSRV - ok
16:05:30.0088 2248 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:05:30.0104 2248 SstpSvc - ok
16:05:30.0135 2248 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
16:05:30.0135 2248 stexstor - ok
16:05:30.0151 2248 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:05:30.0182 2248 stisvc - ok
16:05:30.0197 2248 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:05:30.0197 2248 swenum - ok
16:05:30.0213 2248 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:05:30.0244 2248 swprv - ok
16:05:30.0275 2248 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:05:30.0322 2248 SysMain - ok
16:05:30.0338 2248 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:05:30.0353 2248 TabletInputService - ok
16:05:30.0369 2248 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:05:30.0400 2248 TapiSrv - ok
16:05:30.0416 2248 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:05:30.0431 2248 TBS - ok
16:05:30.0494 2248 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:05:30.0525 2248 Tcpip - ok
16:05:30.0572 2248 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:05:30.0587 2248 TCPIP6 - ok
16:05:30.0619 2248 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:05:30.0634 2248 tcpipreg - ok
16:05:30.0650 2248 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:05:30.0681 2248 TDPIPE - ok
16:05:30.0712 2248 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:05:30.0728 2248 TDTCP - ok
16:05:30.0728 2248 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:05:30.0759 2248 tdx - ok
16:05:30.0806 2248 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:05:30.0806 2248 TermDD - ok
16:05:30.0821 2248 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:05:30.0868 2248 TermService - ok
16:05:30.0884 2248 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:05:30.0899 2248 Themes - ok
16:05:30.0915 2248 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:05:30.0931 2248 THREADORDER - ok
16:05:30.0946 2248 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:05:31.0009 2248 TrkWks - ok
16:05:31.0118 2248 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:05:31.0196 2248 TrustedInstaller - ok
16:05:31.0196 2248 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:05:31.0227 2248 tssecsrv - ok
16:05:31.0258 2248 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:05:31.0274 2248 TsUsbFlt - ok
16:05:31.0289 2248 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
16:05:31.0321 2248 TsUsbGD - ok
16:05:31.0367 2248 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:05:31.0399 2248 tunnel - ok
16:05:31.0430 2248 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:05:31.0445 2248 uagp35 - ok
16:05:31.0461 2248 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:05:31.0508 2248 udfs - ok
16:05:31.0586 2248 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:05:31.0633 2248 UI0Detect - ok
16:05:31.0679 2248 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:05:31.0695 2248 uliagpkx - ok
16:05:31.0726 2248 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:05:31.0742 2248 umbus - ok
16:05:31.0773 2248 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
16:05:31.0804 2248 UmPass - ok
16:05:31.0835 2248 [ BB879DCFD22926EFBEB3298129898CBB ] UnlockerDriver5 C:\Program Files (x86)\Unlocker\UnlockerDriver5.sys
16:05:31.0851 2248 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - warning
16:05:31.0851 2248 UnlockerDriver5 - detected UnsignedFile.Multi.Generic (1)
16:05:31.0960 2248 [ FC43877B4625F6EB773C98233EB625C5 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:05:31.0991 2248 UNS - ok
16:05:32.0054 2248 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:05:32.0163 2248 upnphost - ok
16:05:32.0210 2248 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:05:32.0225 2248 usbccgp - ok
16:05:32.0241 2248 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:05:32.0257 2248 usbcir - ok
16:05:32.0272 2248 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:05:32.0288 2248 usbehci - ok
16:05:32.0319 2248 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\drivers\usbhub.sys
16:05:32.0350 2248 usbhub - ok
16:05:32.0350 2248 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:05:32.0366 2248 usbohci - ok
16:05:32.0397 2248 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:05:32.0444 2248 usbprint - ok
16:05:32.0475 2248 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:05:32.0491 2248 usbscan - ok
16:05:32.0522 2248 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:05:32.0537 2248 USBSTOR - ok
16:05:32.0553 2248 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:05:32.0584 2248 usbuhci - ok
16:05:32.0600 2248 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:05:32.0647 2248 UxSms - ok
16:05:32.0662 2248 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:05:32.0662 2248 VaultSvc - ok
16:05:32.0693 2248 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:05:32.0693 2248 vdrvroot - ok
16:05:32.0725 2248 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:05:32.0756 2248 vds - ok
16:05:32.0787 2248 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:05:32.0787 2248 vga - ok
16:05:32.0803 2248 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:05:32.0834 2248 VgaSave - ok
16:05:32.0849 2248 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:05:32.0849 2248 vhdmp - ok
16:05:32.0881 2248 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:05:32.0881 2248 viaide - ok
16:05:32.0896 2248 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:05:32.0896 2248 volmgr - ok
16:05:32.0912 2248 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:05:32.0927 2248 volmgrx - ok
16:05:32.0943 2248 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:05:32.0943 2248 volsnap - ok
16:05:32.0959 2248 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:05:32.0959 2248 vsmraid - ok
16:05:32.0990 2248 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:05:33.0037 2248 VSS - ok
16:05:33.0083 2248 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
16:05:33.0115 2248 vToolbarUpdater12.2.6 - ok
16:05:33.0115 2248 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:05:33.0146 2248 vwifibus - ok
16:05:33.0161 2248 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:05:33.0177 2248 vwififlt - ok
16:05:33.0224 2248 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:05:33.0255 2248 W32Time - ok
16:05:33.0271 2248 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:05:33.0286 2248 WacomPen - ok
16:05:33.0317 2248 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:05:33.0364 2248 WANARP - ok
16:05:33.0380 2248 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:05:33.0395 2248 Wanarpv6 - ok
16:05:33.0458 2248 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:05:33.0520 2248 wbengine - ok
16:05:33.0520 2248 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:05:33.0551 2248 WbioSrvc - ok
16:05:33.0567 2248 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:05:33.0598 2248 wcncsvc - ok
16:05:33.0614 2248 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:05:33.0645 2248 WcsPlugInService - ok
16:05:33.0661 2248 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
16:05:33.0676 2248 Wd - ok
16:05:33.0707 2248 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:05:33.0723 2248 Wdf01000 - ok
16:05:33.0754 2248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:05:33.0848 2248 WdiServiceHost - ok
16:05:33.0848 2248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:05:33.0863 2248 WdiSystemHost - ok
16:05:33.0895 2248 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:05:33.0910 2248 WebClient - ok
16:05:33.0941 2248 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:05:34.0004 2248 Wecsvc - ok
16:05:34.0035 2248 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:05:34.0082 2248 wercplsupport - ok
16:05:34.0113 2248 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:05:34.0175 2248 WerSvc - ok
16:05:34.0207 2248 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:05:34.0238 2248 WfpLwf - ok
16:05:34.0269 2248 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:05:34.0269 2248 WIMMount - ok
16:05:34.0285 2248 WinDefend - ok
16:05:34.0285 2248 WinHttpAutoProxySvc - ok
16:05:34.0331 2248 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:05:34.0363 2248 Winmgmt - ok
16:05:34.0425 2248 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:05:34.0503 2248 WinRM - ok
16:05:34.0565 2248 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:05:34.0581 2248 WinUsb - ok
16:05:34.0612 2248 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:05:34.0643 2248 Wlansvc - ok
16:05:34.0690 2248 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:05:34.0690 2248 wlcrasvc - ok
16:05:34.0768 2248 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:05:34.0815 2248 wlidsvc - ok
16:05:34.0877 2248 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:05:34.0924 2248 WmiAcpi - ok
16:05:34.0940 2248 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:05:34.0971 2248 wmiApSrv - ok
16:05:35.0002 2248 WMPNetworkSvc - ok
16:05:35.0049 2248 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:05:35.0065 2248 WPCSvc - ok
16:05:35.0096 2248 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:05:35.0111 2248 WPDBusEnum - ok
16:05:35.0127 2248 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:05:35.0158 2248 ws2ifsl - ok
16:05:35.0205 2248 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
16:05:35.0221 2248 wscsvc - ok
16:05:35.0221 2248 WSearch - ok
16:05:35.0299 2248 [ 82E8F5AA03DF7DBDB8A33F700D5D8CDA ] wsvd C:\Windows\system32\DRIVERS\wsvd.sys
16:05:35.0299 2248 wsvd - ok
16:05:35.0377 2248 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:05:35.0423 2248 wuauserv - ok
16:05:35.0439 2248 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:05:35.0455 2248 WudfPf - ok
16:05:35.0486 2248 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:05:35.0533 2248 WUDFRd - ok
16:05:35.0548 2248 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:05:35.0564 2248 wudfsvc - ok
16:05:35.0595 2248 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:05:35.0626 2248 WwanSvc - ok
16:05:35.0642 2248 ================ Scan global ===============================
16:05:35.0657 2248 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:05:35.0689 2248 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
16:05:35.0689 2248 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
16:05:35.0720 2248 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:05:35.0751 2248 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:05:35.0767 2248 [Global] - ok
16:05:35.0767 2248 ================ Scan MBR ==================================
16:05:35.0767 2248 [ 5D949EEA3BEEC2DF38A2D7900AD89A60 ] \Device\Harddisk0\DR0
16:05:39.0916 2248 \Device\Harddisk0\DR0 - ok
16:05:39.0916 2248 ================ Scan VBR ==================================
16:05:39.0947 2248 [ 619A03A875D85497D559FA3E19E9DE27 ] \Device\Harddisk0\DR0\Partition1
16:05:39.0947 2248 \Device\Harddisk0\DR0\Partition1 - ok
16:05:39.0963 2248 [ F7425696A6E0031A7C7B29001A3EBE5E ] \Device\Harddisk0\DR0\Partition2
16:05:39.0979 2248 \Device\Harddisk0\DR0\Partition2 - ok
16:05:40.0010 2248 [ 1EF04439AE4D06A5FB203D439E62816E ] \Device\Harddisk0\DR0\Partition3
16:05:40.0025 2248 \Device\Harddisk0\DR0\Partition3 - ok
16:05:40.0025 2248 ============================================================
16:05:40.0025 2248 Scan finished
16:05:40.0025 2248 ============================================================
16:05:40.0025 2244 Detected object count: 1
16:05:40.0025 2244 Actual detected object count: 1
16:05:52.0880 2244 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - skipped by user
16:05:52.0880 2244 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:07:07.0153 0776 Deinitialize success
|
|
21.09.2012, 20:29
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Startfenster.com nach VLC-Player Download Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ |
|
21.09.2012, 21:01
| #19 |
| | Startfenster.com nach VLC-Player Download Hat erst einmal ziemlich schnell geklappt. [code] Combofix Logfile: Code:
ATTFilter ComboFix 12-09-20.03 - Julchen 21.09.2012 21:51:12.1.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.8174.6490 [GMT 2:00]
ausgeführt von:: c:\users\Julchen\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\systeminfo.dll
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-08-21 bis 2012-09-21 ))))))))))))))))))))))))))))))
.
.
2012-09-21 14:10 . 2012-09-21 14:10 -------- d-----w- c:\users\Default\AppData\Roaming\TuneUp Software
2012-09-20 06:59 . 2007-05-23 19:26 100352 ----a-w- c:\windows\system32\Spool\prtprocs\x64\HPZPPLHN.DLL
2012-09-17 16:58 . 2012-09-17 16:58 56672 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2012-09-16 17:59 . 2012-09-16 17:59 -------- d-----w- c:\program files (x86)\ESET
2012-09-16 14:26 . 2012-09-16 14:26 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-09-16 14:26 . 2012-09-16 14:25 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-09-16 14:26 . 2012-09-16 14:25 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-16 14:25 . 2012-09-16 14:25 -------- d-----w- c:\program files (x86)\Java
2012-09-14 17:40 . 2012-09-14 17:41 -------- d-----w- c:\program files (x86)\The Lost Crown
2012-09-14 03:34 . 2012-09-14 03:34 105312 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2012-09-13 15:14 . 2012-09-13 15:14 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-09-13 14:02 . 2012-09-13 14:02 -------- d-----w- C:\PFiles
2012-09-13 14:01 . 2012-09-13 14:01 -------- d-----w- c:\program files\VideoLAN
2012-09-13 10:03 . 2012-09-13 10:03 -------- d-----w- c:\programdata\CPA_VA
2012-09-13 09:58 . 2012-09-16 19:26 -------- d-----w- c:\programdata\Comodo
2012-09-13 09:57 . 2012-09-13 10:02 -------- d-----w- c:\program files (x86)\Comodo
2012-09-13 09:57 . 2012-09-13 09:57 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2012-09-13 09:57 . 2012-09-13 09:57 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2012-09-13 09:57 . 2012-09-13 09:57 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2012-09-13 09:54 . 2012-09-13 09:53 289768 ----a-w- c:\windows\system32\javaws.exe
2012-09-13 09:54 . 2012-09-13 09:53 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-13 09:53 . 2012-09-13 09:53 189416 ----a-w- c:\windows\system32\javaw.exe
2012-09-13 09:53 . 2012-09-13 09:53 188904 ----a-w- c:\windows\system32\java.exe
2012-09-13 09:53 . 2012-09-13 09:53 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2012-09-13 09:53 . 2012-09-13 09:53 -------- d-----w- c:\program files\Java
2012-09-13 09:48 . 2012-09-13 09:48 73416 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-13 09:48 . 2012-09-13 09:48 696520 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-09-13 09:47 . 2012-09-13 09:47 -------- d-----w- c:\windows\system32\Macromed
2012-09-13 09:43 . 2012-09-13 09:43 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-09-13 09:40 . 2012-09-13 09:40 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
2012-09-12 17:58 . 2012-09-12 17:58 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-09-12 17:58 . 2012-09-16 14:04 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search
2012-09-12 17:57 . 2012-09-12 17:59 -------- d-----w- c:\programdata\AVG2013
2012-09-12 17:57 . 2012-09-12 17:57 -------- d-----w- C:\$AVG
2012-09-12 17:57 . 2012-09-12 17:57 -------- d-----w- c:\program files (x86)\AVG
2012-09-12 17:54 . 2012-09-21 16:52 -------- d-----w- c:\programdata\MFAData
2012-09-12 17:54 . 2012-09-12 17:54 -------- d--h--w- c:\programdata\Common Files
2012-09-12 15:54 . 2012-09-12 15:54 -------- d-----w- c:\program files (x86)\Unlocker
2012-09-12 15:46 . 2012-09-12 15:46 -------- d-----w- C:\_OTL
2012-09-12 15:13 . 2012-09-13 15:12 -------- d-----w- c:\program files (x86)\Opera
2012-09-12 14:14 . 2012-09-12 14:14 -------- d-----w- c:\programdata\Malwarebytes
2012-09-12 09:47 . 2012-09-12 09:47 199520 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2012-09-12 09:47 . 2012-09-12 09:47 175968 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2012-09-12 08:10 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 08:10 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 08:10 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 08:10 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 08:10 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-12 08:10 . 2012-08-02 17:58 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-12 08:10 . 2012-08-02 16:57 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-09-05 19:03 . 2012-09-05 20:45 -------- d-----w- c:\program files (x86)\ScummVM
2012-09-05 17:13 . 2012-09-05 17:13 -------- d-----w- c:\program files\WinRAR
2012-08-31 09:35 . 2012-09-04 20:17 -------- d-----w- c:\programdata\VirtualizedApplications
2012-08-31 07:30 . 2012-08-31 07:30 -------- d-----r- C:\MSOCache
2012-08-31 07:24 . 2012-08-31 15:13 -------- d-----w- c:\program files (x86)\Microsoft Application Virtualization Client
2012-08-31 07:24 . 2012-08-31 07:24 -------- d-----w- c:\program files\Microsoft Office
2012-08-26 06:35 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-08-26 06:23 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2012-08-26 06:23 . 2012-03-03 06:35 1544704 ----a-w- c:\windows\system32\DWrite.dll
2012-08-26 06:23 . 2012-03-03 05:31 1077248 ----a-w- c:\windows\SysWow64\DWrite.dll
2012-08-26 06:23 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2012-08-26 06:23 . 2011-10-26 05:25 1572864 ----a-w- c:\windows\system32\quartz.dll
2012-08-26 06:23 . 2011-10-26 05:25 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-08-26 06:23 . 2011-10-26 04:32 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-08-26 06:23 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\SysWow64\quartz.dll
2012-08-26 06:23 . 2012-01-04 10:44 509952 ----a-w- c:\windows\system32\ntshrui.dll
2012-08-26 06:23 . 2012-01-04 08:58 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2012-08-26 06:21 . 2011-12-16 08:46 634880 ----a-w- c:\windows\system32\msvcrt.dll
2012-08-25 13:26 . 2012-08-25 13:26 -------- d-----w- c:\programdata\Plugins
2012-08-25 13:25 . 2012-08-25 13:30 -------- d-----w- c:\programdata\BlazeVideo
2012-08-25 13:25 . 2012-08-25 13:25 -------- d-----w- c:\program files (x86)\BlazeVideo
2012-08-25 12:31 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-08-25 12:31 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-08-25 12:31 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-08-25 12:15 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-08-25 12:15 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-08-25 12:15 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-08-25 12:15 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-08-25 12:12 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-08-25 12:12 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-08-25 12:12 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-08-25 12:09 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-08-25 12:09 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-08-25 10:29 . 2012-08-25 10:29 -------- d--h--w- c:\programdata\Medion Reminder
2012-08-25 10:28 . 2012-08-26 08:41 -------- d-----w- c:\users\Julchen
2012-08-25 10:28 . 2012-08-25 10:28 -------- d-----w- c:\program files (x86)\Common Files\Memeo
2012-08-25 10:28 . 2012-08-25 10:28 -------- d-----w- c:\program files (x86)\Memeo
2012-08-25 10:28 . 2012-08-25 10:28 -------- d-----w- c:\programdata\Kaspersky Rescue Disk 10
2012-08-25 10:26 . 2012-08-25 10:26 -------- d-----w- c:\program files\PlayReady
2012-08-25 10:26 . 2012-09-13 14:04 -------- d-----w- c:\programdata\TvdPersonal
2012-08-25 10:26 . 2012-09-13 14:04 -------- d-----w- c:\program files (x86)\watchmi
2012-08-25 10:26 . 2012-08-25 12:24 -------- d-----w- c:\program files\Google
2012-08-25 10:26 . 2012-09-12 14:24 -------- d-----w- c:\program files (x86)\Google
2012-08-25 10:24 . 2012-08-25 10:24 -------- d-sh--we C:\Documents and Settings
2012-08-25 10:24 . 2012-08-25 10:24 -------- d-----w- C:\Recovery
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-16 14:25 . 2011-12-15 22:16 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-13 09:53 . 2011-12-15 22:16 916456 ----a-w- c:\windows\system32\deployJava1.dll
2012-09-12 11:27 . 2011-03-14 14:08 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-08-25 12:27 . 2011-03-29 02:36 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-08-13 14:40 . 2012-08-13 14:40 150880 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2012-08-10 02:52 . 2012-08-10 02:52 40288 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2012-08-09 11:56 . 2012-08-09 11:56 230240 ----a-w- c:\windows\system32\drivers\avgloga.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\Julchen\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\Julchen\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\Julchen\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-05-20 284440]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-09-14 3039352]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\Julchen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Julchen\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-7-25 26909544]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2013\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-13 250568]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-06 114144]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [2010-11-25 694888]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys [2010-09-23 129008]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-09-17 56672]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-08-09 230240]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-08-10 40288]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-08-13 150880]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-09-12 175968]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-09-14 105312]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-12 199520]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-09-12 31080]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-08-20 5751928]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-08-20 184304]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
S2 MemeoBackgroundService;MemeoBackgroundService;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe [2011-09-28 25824]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-03-11 2656280]
S2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-09-12 722528]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\drivers\asmthub3.sys [2011-08-02 129000]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\drivers\asmtxhci.sys [2011-08-02 391144]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [2011-03-11 56344]
S3 netr28ux;RT2870-USB-Drahtlos-LAN-Kartentreiber für Vista;c:\windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2011-07-07 174184]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-09-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-13 09:48]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\Julchen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\Julchen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\Julchen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\Julchen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-08-16 12673128]
"MedionReminder"="c:\program files (x86)\CyberLink\PowerRecover\Reminder.exe" [2011-05-26 443688]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"MedionReminder"="c:\program files (x86)\CyberLink\PowerRecover\Reminder.exe" [2011-05-26 443688]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page =
mStart Page =
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4
TCP: DhcpNameServer = 192.168.178.1
TCP: Interfaces\{2F7932F7-B84F-49F3-B506-36A510B7B682}: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{59D42181-7B48-4CD7-9BC9-33F0196ADD94}: NameServer = 8.26.56.26,156.154.70.22
FF - ProfilePath - c:\users\Julchen\AppData\Roaming\Mozilla\Firefox\Profiles\e6axmf4b.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-{37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1} - c:\program files (x86)\ChatZum Toolbar\tbunsy642B.tmp\tbcore3.dll
Wow6432Node-HKCU-Run-BlazeServoTool - c:\program files (x86)\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe
Wow6432Node-HKLM-Run-vProt - c:\program files (x86)\AVG Secure Search\vprot.exe
Wow6432Node-HKLM-Run-ROC_ROC_NT - c:\program files (x86)\AVG Secure Search\ROC_ROC_NT.exe
WebBrowser-{37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1} - (no file)
AddRemove-ChatZum Toolbar - c:\program files (x86)\ChatZum Toolbar\tbunsy642B.tmp\uninstaller.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-09-21 21:57:53 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-09-21 19:57
.
Vor Suchlauf: 8 Verzeichnis(se), 1.391.600.361.472 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 1.391.303.065.600 Bytes frei
.
- - End Of File - - B2DEB4755D254E71EC1E0BBA84A7DA7A
|
|
22.09.2012, 15:50
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Startfenster.com nach VLC-Player Download Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.09.2012, 10:13
| #21 |
| | Startfenster.com nach VLC-Player Download Also GMER hat nichts gefunden, daher konnte ich auch leine log.-Datei erstellen. Ist das möglich? Das Osam-Log folgt hier: OSAM Logfile: Code:
ATTFilter Report of OSAM: Autorun Manager v5.0.11926.0 hxxp://www.online-solutions.ru/en/ Saved at 11:10:56 on 23.09.2012 OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 64-bit Default Browser: Mozilla Corporation Firefox 15.0.1 Scanner Settings [x] Rootkits detection (hidden registry) [x] Rootkits detection (hidden files) [x] Retrieve files information [x] Check Microsoft signatures Filters [ ] Trusted entries [ ] Empty entries [x] Hidden registry entries (rootkit activity) [x] Exclusively opened files [x] Not found files [x] Files without detailed information [x] Existing files [ ] Non-startable services [ ] Non-startable drivers [x] Active entries [x] Disabled entries [Boot Execute] -----( HKLM\SYSTEM\CurrentControlSet\Control\Session Manager )----- "BootExecute" - "AVG Technologies CZ, s.r.o." - C:\PROGRA~2\AVG\AVG2013\avgrsa.exe [Common] -----( %SystemRoot%\Tasks )----- "Adobe Flash Player Updater.job" - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [Drivers] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "AVG Anti-Rootkit Driver" (Avgrkx64) - "AVG Technologies CZ, s.r.o." - C:\Windows\System32\DRIVERS\avgrkx64.sys "AVG AVI Loader Driver" (Avgldx64) - "AVG Technologies CZ, s.r.o." - C:\Windows\System32\DRIVERS\avgldx64.sys "AVG Logging Driver" (Avgloga) - "AVG Technologies CZ, s.r.o." - C:\Windows\System32\DRIVERS\avgloga.sys "AVG Mini-Filter Resident Anti-Virus Shield" (Avgmfx64) - "AVG Technologies CZ, s.r.o." - C:\Windows\System32\DRIVERS\avgmfx64.sys "AVG TDI Driver" (Avgtdia) - "AVG Technologies CZ, s.r.o." - C:\Windows\System32\DRIVERS\avgtdia.sys "AVGIDSDriver" (AVGIDSDriver) - "AVG Technologies CZ, s.r.o. " - C:\Windows\System32\DRIVERS\avgidsdrivera.sys "AVGIDSHA" (AVGIDSHA) - "AVG Technologies CZ, s.r.o. " - C:\Windows\System32\DRIVERS\avgidsha.sys "avgtp" (avgtp) - "AVG Technologies" - C:\Windows\system32\drivers\avgtpx64.sys "catchme" (catchme) - ? - C:\ComboFix\catchme.sys (File not found) "Sftfs" (Sftfs) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftfslh.sys "Sftplay" (Sftplay) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftplaylh.sys "Sftredir" (Sftredir) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftredirlh.sys "Sftvol" (Sftvol) - "Microsoft Corporation" - C:\Windows\System32\DRIVERS\Sftvollh.sys "wsvd" (wsvd) - "CyberLink" - C:\Windows\System32\DRIVERS\wsvd.sys [Explorer] -----( HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} "DropboxExt" - ? - (File not found | COM-object registry key not found) -----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )----- {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll -----( HKLM\Software\Classes\Protocols\Handler )----- {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} "Album Download IE Asynchronous Pluggable Protocol Interface" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll {828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll {03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )----- {9F97547E-460A-42C5-AE0C-81C61FFAEBC3} "AVG Find Extension" - ? - (File not found | COM-object registry key not found) {9F97547E-4609-42C5-AE0C-81C61FFAEBC3} "AVG Shell Extension Class" - "AVG Technologies CZ, s.r.o." - C:\Program Files (x86)\AVG\AVG2013\avgse.dll {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" - "Alexander Roshal" - C:\Program Files\WinRAR\rarext32.dll {B41DB860-64E4-11D2-9906-E49FADC173CA} "WinRAR shell extension" - ? - (File not found | COM-object registry key not found) {0563DB41-F538-4B37-A92D-4659049B7766} "WLMD Message Handler" - ? - (File not found | COM-object registry key not found) {06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe [Internet Explorer] -----( HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- "eBay - Der weltweite Online-Marktplatz" - ? - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 (HTTP value) -----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )----- ITBar7Height "ITBar7Height" - ? - (File not found | COM-object registry key not found) <binary data> "ITBar7Layout" - ? - (File not found | COM-object registry key not found) -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )----- {5F7B1267-94A9-47F5-98DB-E99415F33AEC} "@C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004" - "Microsoft Corporation" - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll "eBay - Der weltweite Online-Marktplatz" - ? - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4 (HTTP value) -----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )----- <binary data> "ChatZum Toolbar" - ? - C:\Program Files (x86)\ChatZum Toolbar\tbunsy642B.tmp\tbcore3.dll (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )----- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll {DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Oracle Corporation" - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "Java(tm) Plug-In SSV Helper" - "Oracle Corporation" - C:\Program Files (x86)\Java\jre7\bin\ssv.dll {9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID Sign-in Helper" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [LSA Providers] -----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )----- "Security Packages" - "Microsoft Corp." - C:\Windows\system32\livessp.dll [Logon] -----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\Users\Julchen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini "Dropbox.lnk" - "Dropbox, Inc." - C:\Users\Julchen\AppData\Roaming\Dropbox\bin\Dropbox.exe (Shortcut exists | File exists) -----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )----- "desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )----- "StartupPrograms" - ? - rdpclip (File not found) -----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )----- "Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "AVG_UI" - "AVG Technologies CZ, s.r.o." - "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY "IAStorIcon" - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe "SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [Services] -----( HKLM\SYSTEM\CurrentControlSet\Services )----- "@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103" (WinDefend) - ? - C:\Program Files (x86)\Windows Defender\mpsvc.dll (File not found) "@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101" (WMPNetworkSvc) - ? - "C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe" (File not found) "Adobe Acrobat Update Service" (AdobeARMservice) - "Adobe Systems Incorporated" - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe "Adobe Flash Player Update Service" (AdobeFlashPlayerUpdateSvc) - "Adobe Systems Incorporated" - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe "Application Virtualization Client" (sftlist) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe "Application Virtualization Service Agent" (sftvsa) - "Microsoft Corporation" - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe "AVG WatchDog" (avgwd) - "AVG Technologies CZ, s.r.o." - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe "AVGIDSAgent" (AVGIDSAgent) - "AVG Technologies CZ, s.r.o." - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe "Client Virtualization Handler" (cvhsvc) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE "Intel(R) Management and Security Application Local Management Service" (LMS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe "Intel(R) Management and Security Application User Notification Service" (UNS) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe "Intel(R) Rapid Storage Technology" (IAStorDataMgrSvc) - "Intel Corporation" - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe "MemeoBackgroundService" (MemeoBackgroundService) - "Memeo" - C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe "Microsoft .NET Framework NGEN v4.0.30319_X64" (clr_optimization_v4.0.30319_64) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe "Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe "Mozilla Maintenance Service" (MozillaMaintenance) - "Mozilla Foundation" - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe "NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe "NVIDIA Update Service Daemon" (nvUpdatusService) - "NVIDIA Corporation" - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe "Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE "Office Software Protection Platform" (osppsvc) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE "vToolbarUpdater12.2.6" (vToolbarUpdater12.2.6) - ? - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe "Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corp." - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [Winsock Providers] -----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )----- "WindowsLive Local NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL "WindowsLive NSP" - "Microsoft Corp." - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ===[ Logfile end ]=========================================[ Logfile end ]=== If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru [/code] Den letzten Schritt führe ich jetzt aus! Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-23 11:16:23
-----------------------------
11:16:23.960 OS Version: Windows x64 6.1.7601 Service Pack 1
11:16:23.960 Number of processors: 8 586 0x2A07
11:16:23.960 ComputerName: JULCHEN-PC UserName: Julchen
11:16:29.374 Initialize success
11:19:25.531 AVAST engine defs: 12092300
11:19:36.357 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:19:36.373 Disk 0 Vendor: ST1500DL CC4A Size: 1430799MB BusType: 3
11:19:36.388 Disk 0 MBR read successfully
11:19:36.388 Disk 0 MBR scan
11:19:36.388 Disk 0 unknown MBR code
11:19:36.404 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
11:19:36.420 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 1378473 MB offset 206848
11:19:36.451 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 51200 MB offset 2823319552
11:19:36.529 Disk 0 Partition 4 00 12 Compaq diag NTFS 1024 MB offset 2928177152
11:19:36.591 Disk 0 scanning C:\Windows\system32\drivers
11:19:46.123 Service scanning
11:20:02.144 Modules scanning
11:20:02.144 Disk 0 trace - called modules:
11:20:02.160 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
11:20:02.160 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009fa7790]
11:20:02.175 3 CLASSPNP.SYS[fffff88000fce43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007766050]
11:20:14.671 AVAST engine scan C:\Windows
11:20:18.462 AVAST engine scan C:\Windows\system32
11:22:07.880 AVAST engine scan C:\Windows\system32\drivers
11:22:21.031 AVAST engine scan C:\Users\Julchen
11:25:48.309 AVAST engine scan C:\ProgramData
11:26:03.706 Scan finished successfully
12:00:13.411 Disk 0 MBR has been saved successfully to "C:\Users\Julchen\Desktop\MBR.dat"
12:00:13.411 The log file has been saved successfully to "C:\Users\Julchen\Desktop\aswMBR.txt"
|
|
23.09.2012, 17:07
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Startfenster.com nach VLC-Player Download Wir sollten den MBR fixen, sichere für den Fall der Fälle ALLE wichtigen Daten, auch wenn meistens alles glatt geht. Hinweis: Mach bitte NICHT den MBR-Fix, wenn du noch andere Betriebssysteme wie zB Ubuntu installiert hast, ein MBR-Fix mit Windows-Tools macht ein parallel installiertes (Dualboot) Linux unbootbar. Mach den Fix auch dann nicht, wenn du zB mit TrueCrypt oder anderen Verschlüsselungsprogrammen eine Vollverschlüsselung der Windowspartition bzw. gesamten Festplatte hast Starte nach der Datensicherung aswmbr erneut und klick auf den Button FIXMBR. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehalalrm! Anschließend Windows neu starten und ein neues Log mit aswMBR machen.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.09.2012, 19:01
| #23 |
| | Startfenster.com nach VLC-Player DownloadCode:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-23 19:02:30
-----------------------------
19:02:30.026 OS Version: Windows x64 6.1.7601 Service Pack 1
19:02:30.026 Number of processors: 8 586 0x2A07
19:02:30.026 ComputerName: JULCHEN-PC UserName: Julchen
19:02:32.039 Initialize success
19:02:36.578 AVAST engine defs: 12092300
19:02:40.510 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:02:40.525 Disk 0 Vendor: ST1500DL CC4A Size: 1430799MB BusType: 3
19:02:40.541 Disk 0 MBR read successfully
19:02:40.541 Disk 0 MBR scan
19:02:40.541 Disk 0 Windows 7 default MBR code
19:02:40.556 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
19:02:40.572 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 1378473 MB offset 206848
19:02:40.619 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 51200 MB offset 2823319552
19:02:40.634 Disk 0 Partition 4 00 12 Compaq diag NTFS 1024 MB offset 2928177152
19:02:40.697 Disk 0 scanning C:\Windows\system32\drivers
19:02:49.183 Service scanning
19:03:08.793 Modules scanning
19:03:08.793 Disk 0 trace - called modules:
19:03:08.824 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
19:03:08.824 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009f8b790]
19:03:08.824 3 CLASSPNP.SYS[fffff88000fce43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8008d8d050]
19:03:19.463 AVAST engine scan C:\Windows
19:03:23.675 AVAST engine scan C:\Windows\system32
19:05:50.783 AVAST engine scan C:\Windows\system32\drivers
19:06:25.898 AVAST engine scan C:\Users\Julchen
19:10:35.109 AVAST engine scan C:\ProgramData
19:10:51.910 Scan finished successfully
19:11:53.312 Disk 0 MBR has been saved successfully to "C:\Users\Julchen\Desktop\MBR.dat"
19:11:53.312 The log file has been saved successfully to "C:\Users\Julchen\Desktop\aswMBR.txt"
19:12:24.014 Disk 0 MBR has been saved successfully to "C:\Users\Julchen\Desktop\MBR.dat"
19:12:24.030 The log file has been saved successfully to "C:\Users\Julchen\Desktop\aswMBR2.txt"
|
|
23.09.2012, 19:34
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Startfenster.com nach VLC-Player Download Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.09.2012, 20:20
| #25 |
| | Startfenster.com nach VLC-Player Download Malwarebytes: Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.65.0.1400 www.malwarebytes.org Datenbank Version: v2012.09.23.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Julchen :: JULCHEN-PC [Administrator] Schutz: Deaktiviert 23.09.2012 20:50:30 mbam-log-2012-09-23 (20-50-30).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|Q:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 319101 Laufzeit: 28 Minute(n), 37 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 09/23/2012 at 09:57 PM
Application Version : 5.5.1016
Core Rules Database Version : 9275
Trace Rules Database Version: 7087
Scan type : Complete Scan
Total Scan Time : 00:24:28
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator
Memory items scanned : 652
Memory threats detected : 0
Registry items scanned : 69658
Registry threats detected : 4
File items scanned : 45635
File threats detected : 168
Adware.Tracking Cookie
C:\Users\Julchen\AppData\Roaming\Microsoft\Windows\Cookies\JU6ME8V8.txt [ /doubleclick.net ]
C:\Users\Julchen\AppData\Roaming\Microsoft\Windows\Cookies\O12ODXVF.txt [ /fastclick.net ]
C:\Users\Julchen\AppData\Roaming\Microsoft\Windows\Cookies\4R8A22EV.txt [ /avgtechnologies.112.2o7.net ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\T4PRRW7D.txt [ Cookie:julchen@clkads.com/adServe ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\T33VP5VV.txt [ Cookie:julchen@clkads.com/adServe/banners ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\PAUV311L.txt [ Cookie:julchen@de.sitestat.com/idgcom-de/pcwelt/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\5X4VG8QR.txt [ Cookie:julchen@adx.chip.de/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\9VDKO612.txt [ Cookie:julchen@doubleclick.net/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\JVWCOQQ0.txt [ Cookie:julchen@mm.chitika.net/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\IT8KG3A4.txt [ Cookie:julchen@invitemedia.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\SD8FB6WW.txt [ Cookie:julchen@bs.serving-sys.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\1H7UQTU8.txt [ Cookie:julchen@zanox-affiliate.de/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\U5IH3OBA.txt [ Cookie:julchen@www.googleadservices.com/pagead/conversion/1066798348/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\78KN9VWK.txt [ Cookie:julchen@revsci.net/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\34N5Y2BM.txt [ Cookie:julchen@xiti.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\WYY7759I.txt [ Cookie:julchen@webmasterplan.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\6SASY0AU.txt [ Cookie:julchen@serving-sys.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\83OR4I74.txt [ Cookie:julchen@adfarm1.adition.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\6B6TUCM7.txt [ Cookie:julchen@ad4.adfarm1.adition.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\V22NJ6TK.txt [ Cookie:julchen@ad.yieldmanager.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\QMCWD2YN.txt [ Cookie:julchen@zanox.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\JDTEP09L.txt [ Cookie:julchen@ad1.adfarm1.adition.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\JUFY6PJ3.txt [ Cookie:julchen@ad2.adfarm1.adition.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\XU328RFI.txt [ Cookie:julchen@tracker.vinsight.de/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\ITCDDOFJ.txt [ Cookie:julchen@ad3.adfarm1.adition.com/ ]
C:\USERS\JULCHEN\AppData\Roaming\Microsoft\Windows\Cookies\Low\KB9PGAZ9.txt [ Cookie:julchen@mediaplex.com/ ]
C:\USERS\JULCHEN\Cookies\JU6ME8V8.txt [ Cookie:julchen@doubleclick.net/ ]
C:\USERS\JULCHEN\Cookies\T4PRRW7D.txt [ Cookie:julchen@clkads.com/adServe ]
C:\USERS\JULCHEN\Cookies\T33VP5VV.txt [ Cookie:julchen@clkads.com/adServe/banners ]
C:\USERS\JULCHEN\Cookies\4R8A22EV.txt [ Cookie:julchen@avgtechnologies.112.2o7.net/ ]
.doubleclick.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
ad.yieldmanager.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.quartermedia.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.adform.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
server.adformdsp.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adformdsp.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adform.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.tradetracker.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
ad1.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.bs.serving-sys.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.smartadserver.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
ad4.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.tracking.mindshare.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
ad2.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.zanox-affiliate.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
adx2.chip.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.zanox.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
ad.zanox.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.webmasterplan.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.effiliation.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
adx.chip.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.flagcounter.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
ad3.adfarm1.adition.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.tracker.vinsight.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
traffic.brand-wall.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.guj.122.2o7.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.blogcounter.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.dailymotionpoc.112.2o7.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
de.sitestat.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.accounts.google.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.youtube.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
s4.trafficmaxx.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
www.etracker.de [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
track.webtrekk.net [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\JULCHEN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\E6AXMF4B.DEFAULT\COOKIES.SQLITE ]
Adware.HBHelper
(x86) HKU\S-1-5-21-3263590777-2416239055-840000920-1000\Software\Microsoft\Internet Explorer\URLSearchHooks#{CA3EB689-8F09-4026-AA10-B9534C691CE0}
(x86) HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
(x86) HKU\S-1-5-21-3263590777-2416239055-840000920-1000_Classes\Software\Microsoft\Internet Explorer\URLSearchHooks#{CA3EB689-8F09-4026-AA10-B9534C691CE0}
(x86) HKU\S-1-5-21-3263590777-2416239055-840000920-1001_Classes\Software\Microsoft\Internet Explorer\URLSearchHooks#{CA3EB689-8F09-4026-AA10-B9534C691CE0}
|
|
24.09.2012, 12:42
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Startfenster.com nach VLC-Player Download Sieht ok aus, da wurden nur Cookies und harmlose Überreste gefunden, kann alles weg. Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller http://filepony.de/download-cookie_culler/ Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ich halte es so, dass ich zum "wilden Surfen" den Opera-Browser oder Chromium unter meinem Linux verwende. Mein Hauptbrowser (Firefox) speichert nur die Cookies von den Sites die ich auch will, alles andere lehne ich manuell ab (der FF fragt mich immer) - die anderen Browser nehmen alles an Cookies zwar an, aber spätestens beim nächsten Start von Opera oder Chromium sind keine Cookies mehr da. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
26.09.2012, 13:15
| #27 |
| |  Startfenster.com nach VLC-Player Download Hallo Ich habe mir jetzt noch einmal Chrome runtergalden und wenn ich es starte, ist es wieder wie früher  Aber: Dieses blöde ChtaZum wird immer noch unter meinen Programmen aufgelistet! Wenn ich auf "Ändern" klicke, erscheint eine Meldung, dass die Inhalte dieses Programms gelöscht wurden und ob ich es aus der Liste entfernen wolle. Wenn ich dann auf "Ja" klicke, erscheint eine Meldung, die mir sagt, dass ich dazu nicht die Berechtigung hätte  Es scheinen also die Inhalte zwar gelöscht zu sein, aber der Name ist noch vorhanden. Bekomme ich das nie wieder weg bzw. ist da vielleicht doch noch etwas Schädliches drauf? Vielen Dank für deine Hilfe!!! Hast super geklappt! Ich werde euch demnächst was spenden, dass noch viele weitere in den Genuss eurer Hilfe kommen!  Ich freue mich trotzdem, wenn du mir meine letzte Frage noch beantwortest |
|
26.09.2012, 16:03
| #28 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Startfenster.com nach VLC-Player DownloadZitat:
adwCleaner - Toolbars und ungewollte Start-/Suchseiten aufspüren Downloade Dir bitte AdwCleaner auf deinen Desktop. Falls der adwCleaner schon mal in der runtergeladen wurde, bitte die alte adwcleaner.exe löschen und neu runterladen!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
26.09.2012, 16:31
| #29 |
| | Startfenster.com nach VLC-Player DownloadCode:
ATTFilter # AdwCleaner v2.003 - Datei am 09/26/2012 um 17:30:40 erstellt
# Aktualisiert am 23/09/2012 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : Julchen - JULCHEN-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Julchen\Desktop\adwcleaner.exe
# Option [Suche]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Ordner Gefunden : C:\Program Files (x86)\Common Files\AVG Secure Search
***** [Registrierungsdatenbank] *****
***** [Internet Browser] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Die Registrierungsdatenbank ist sauber.
-\\ Mozilla Firefox v15.0.1 (de)
Profilname : default
Datei : C:\Users\Julchen\AppData\Roaming\Mozilla\Firefox\Profiles\e6axmf4b.default\prefs.js
[OK] Die Datei ist sauber.
-\\ Google Chrome v21.0.1180.89
Datei : C:\Users\Julchen\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
-\\ Opera v [Version kann nicht ermittelt werden]
Datei : C:\Users\Julchen\AppData\Roaming\Opera\Opera\operaprefs.ini
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R1].txt - [13285 octets] - [13/09/2012 17:59:11]
AdwCleaner[R2].txt - [13346 octets] - [16/09/2012 16:03:25]
AdwCleaner[S1].txt - [13989 octets] - [16/09/2012 16:04:25]
AdwCleaner[R3].txt - [1293 octets] - [17/09/2012 18:04:06]
AdwCleaner[S2].txt - [1361 octets] - [17/09/2012 21:50:50]
AdwCleaner[R4].txt - [1564 octets] - [26/09/2012 17:29:50]
AdwCleaner[R5].txt - [1495 octets] - [26/09/2012 17:30:40]
########## EOF - C:\AdwCleaner[R5].txt - [1555 octets] ##########
|
|
27.09.2012, 11:05
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Startfenster.com nach VLC-Player Download Hm findet der nicht, aber dafür etwas von AVG, der SecureSearch - wenn du das weg haben willst, dann öffne den adwCleaner und klick auf Löschen Ansonsten müssen wir noch mal mit OTL ran um chatzum zu entfernen: Mach bitte ein neues OTL-Log. Bitte alles nach Möglichkeit hier in CODE-Tags posten. Wird so gemacht: [code] hier steht das Log [/code] Und das ganze sieht dann so aus: Code:
ATTFilter hier steht das Log
Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop. Falls schon vorhanden, bitte die ältere vorhandene Datei durch die neu heruntergeladene Datei ersetzen, damit du auch wirklich mit einer aktuellen Version von OTL arbeitest.
Code:
ATTFilter netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
wininit.exe
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
CREATERESTOREPOINT
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Startfenster.com nach VLC-Player Download |
| administrator, ahnung, anhang, anti-malware, autostart, blöde, code, computer, dateien, daten, download, einfach, eingefangen, explorer, gen, gruppe, hilfe!, internet browser, neu, neue, neuen, registrierungsdatenbank, service, startfenster.com durch vlc player, test, version, vlc-player, wirklich, zusammen |
Textbox von OTL - wenn OTL auf deutsch ist wird sie mit 
beschriftet
.
Linear-Darstellung
