| |
| |||||||
Log-Analyse und Auswertung: Nach VLC-Player Installation von Vlc.de Problem mit www.startfenster.comWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
16.10.2012, 13:14
| #1 |
| |  Nach VLC-Player Installation von Vlc.de Problem mit www.startfenster.com Hallo, ich habe voreilig den VLC-Player von Vlc.de heruntergeladen und installiert. Nun kommt immer wenn ich den Internetbrowser öffne als Startseite www.startfenster.com, obwohl eine andere eingeben ist (Google). Problem besteht beim Windows Internet Explorer sowie bei Google Chrome. Eine Deinstallation des Players brachte keinen Erfolg. Ich hoffe Ihr könnt mir Helfen, danke schon mal im vor raus. Nun die Logs: Code:
ATTFilter OTL logfile created on: 16.10.2012 13:45:18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jascha\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,96 Gb Total Physical Memory | 2,53 Gb Available Physical Memory | 63,92% Memory free 7,92 Gb Paging File | 6,40 Gb Available in Paging File | 80,81% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 50,11 Gb Total Space | 25,43 Gb Free Space | 50,75% Space Free | Partition Type: NTFS Drive D: | 24,32 Gb Total Space | 24,23 Gb Free Space | 99,64% Space Free | Partition Type: NTFS Computer Name: JASCHA-PC | User Name: Jascha | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012.10.16 13:43:35 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jascha\Desktop\OTL.exe PRC - [2012.10.10 12:06:17 | 001,239,064 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe PRC - [2009.12.16 14:11:36 | 000,557,056 | ---- | M] (Fujitsu Technology Solutions) -- C:\Program Files (x86)\Common Files\Fujitsu\Manageability\HaMDevMg.exe\1.01\HaMDevMg.exe PRC - [2009.05.20 11:06:44 | 000,176,128 | ---- | M] (Fujitsu Technology Solutions) -- C:\Program Files (x86)\Fujitsu\Mobile Software Suite\Common\UiMdmTip\UIMdmTip.exe PRC - [2009.05.20 09:58:28 | 000,335,872 | ---- | M] (Fujitsu Technology Solutions) -- C:\Program Files (x86)\Common Files\Fujitsu\Manageability\CnMdKHkH.exe\1.01\CnMdKHkH.exe ========== Modules (No Company Name) ========== MOD - [2012.10.16 05:10:53 | 012,432,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\3afcd5168c7a6cb02eab99d7fd71e102\System.Windows.Forms.ni.dll MOD - [2012.10.16 05:10:31 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\dbfe8642a8ed7b2b103ad28e0c96418a\System.Drawing.ni.dll MOD - [2012.10.16 05:10:16 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\461d3b6b3f43e6fbe6c897d5936e17e4\System.Xml.ni.dll MOD - [2012.10.16 05:10:11 | 007,963,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9e0a3b9b9f457233a335d7fba8f95419\System.ni.dll MOD - [2012.10.16 05:10:05 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\62a0b3e4b40ec0e8c5cfaa0c8848e64a\mscorlib.ni.dll MOD - [2012.10.10 12:06:15 | 000,460,312 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll MOD - [2012.10.10 12:06:12 | 004,005,912 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\pdf.dll MOD - [2012.10.10 12:04:57 | 000,578,072 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\libglesv2.dll MOD - [2012.10.10 12:04:55 | 000,123,928 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\libegl.dll MOD - [2012.10.10 12:04:44 | 000,156,712 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avutil-51.dll MOD - [2012.10.10 12:04:43 | 000,275,496 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avformat-54.dll MOD - [2012.10.10 12:04:42 | 002,168,360 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll ========== Services (SafeList) ========== SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2012.09.12 21:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Programme\Microsoft Security Client\NisSrv.exe -- (NisSrv) SRV - [2012.09.12 21:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Programme\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009.12.16 14:11:36 | 000,557,056 | ---- | M] (Fujitsu Technology Solutions) [Auto | Running] -- C:\Program Files (x86)\Common Files\Fujitsu\Manageability\HaMDevMg.exe\1.01\HaMDevMg.exe -- (HaMDevMg.1.01) SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012.08.30 22:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv) DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2011.02.11 19:16:38 | 010,628,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.11.20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2009.10.05 16:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:64bit: - [2009.09.23 08:42:56 | 000,020,992 | ---- | M] (Fujitsu) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FSCSLII.sys -- (FSCSLII) DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.07.14 01:21:48 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM) DRV:64bit: - [2009.06.10 23:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem) DRV:64bit: - [2009.06.10 22:35:02 | 000,281,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1y60x64.sys -- (e1yexpress) DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2009.06.03 11:59:42 | 000,023,912 | ---- | M] (ST Microelectronics) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Acceler.sys -- (Acceler) DRV:64bit: - [2009.06.03 11:59:20 | 000,017,256 | ---- | M] (ST Microelectronics) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stdflt.sys -- (stdflt) DRV:64bit: - [2009.05.05 12:09:14 | 000,019,968 | ---- | M] (Fujitsu Technology Solutions) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FscGabi.sys -- (FscGabi) DRV:64bit: - [2008.08.14 10:40:44 | 000,260,144 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP) DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.startfenster.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 18 5C 0F 3F 16 AA CD 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll File not found FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) ========== Chrome ========== CHR - homepage: hxxp://www.google.de/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: hxxp://www.google.de/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\pdf.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll CHR - Extension: Entanglement = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\2.7.9_0\ CHR - Extension: BIODIGITAL HUMAN = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak\0.9.5_0\ CHR - Extension: Regentropfen = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcipapbfhdnmgihoimbjiadmhpcgcnil\1.0.0.2_0\ CHR - Extension: TV = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh\1.0.11_0\ CHR - Extension: Turn Off the Lights = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn\2.1.0.6_0\ CHR - Extension: YouTube = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google-Suche = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Mahjongg = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegpopcingfghbompjfejakfeaolmbop\1.0.0.2_0\ CHR - Extension: Classic Sonic = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfllkgcnnlcinhifiohemigcmbckpcmf\1.1_0\ CHR - Extension: AdBlock = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.45_0\ CHR - Extension: Cut the Rope = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\14_0\ CHR - Extension: CandyDash = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\glojkngcaeoenbcikfdicahjnaggkcbf\9_0\ CHR - Extension: Pathuku = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkiilmogcdkeefnbemdagpmcediekadb\1.24.0.0_0\ CHR - Extension: Ultimate Flash Sonic = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmgmfbijldhdncjcipeocgkgbjhaecfp\1.0_0\ CHR - Extension: The Fancy Pants Adventure: World 2 = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\loamdenijebhollnjgehcfbnpeelfhlk\14_0\ CHR - Extension: Super Mario Bros (the original SuperNES game) = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmomjifknjajdbmaljlfdodldpfacglo\1_0\ CHR - Extension: Red Bull TV = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbalkogcfbpplioohgihkidalmomblfc\1.15_0\ CHR - Extension: Google Mail = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ CHR - Extension: Canvas Rider = C:\Users\Jascha\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk\0.7_0\ O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4:64bit: - HKLM..\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\Accelerometer\FF_Protection.exe File not found O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4 - HKLM..\Run: [COMImpersonater] C:\Program Files (x86)\Fujitsu\Mobile Software Suite\Common\UiMdmTip\UiMdmTip.exe (Fujitsu Technology Solutions) O4 - HKCU..\Run: [GoogleChromeAutoLaunch_B5F9A5F0826E5AC25957647BB81B7E49] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DCE66ECB-6F06-485B-B851-F706C773D0D9}: DhcpNameServer = 192.168.1.1 O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012.10.16 13:43:32 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jascha\Desktop\OTL.exe [2012.10.16 04:35:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview [2012.10.16 04:35:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders [2012.10.14 19:44:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2012.10.14 19:44:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2012.10.14 19:43:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2012.10.14 19:18:09 | 000,000,000 | ---D | C] -- C:\PFiles [2012.10.14 19:03:43 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll [2012.10.14 19:02:56 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll [2012.10.14 16:47:36 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2012.10.14 16:18:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2012.10.14 16:18:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2012.10.14 16:17:52 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Local\Diagnostics [2012.10.14 16:06:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client [2012.10.14 16:06:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client [2012.10.13 18:40:26 | 000,000,000 | ---D | C] -- C:\Windows\PANTHER [2012.10.13 18:40:26 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\OEM [2012.10.13 18:39:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer [2012.10.13 18:39:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\de-DE [2012.10.13 18:39:32 | 000,000,000 | ---D | C] -- C:\Windows\de-DE [2012.10.13 18:39:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\de [2012.10.13 18:39:32 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0407 [2012.10.13 18:39:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\de-DE [2012.10.13 18:39:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\de [2012.10.13 18:39:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\0407 [2012.10.13 18:37:00 | 000,004,096 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\de-DE\pscr.sys.mui [2012.10.13 18:36:34 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerIb.sys.mui [2012.10.13 18:36:33 | 000,011,776 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrSerId.sys.mui [2012.10.13 18:36:33 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\de-DE\BrParwdm.sys.mui [2012.10.13 15:33:42 | 000,023,912 | ---- | C] (ST Microelectronics) -- C:\Windows\SysNative\drivers\Acceler.sys [2012.10.13 15:33:42 | 000,017,256 | ---- | C] (ST Microelectronics) -- C:\Windows\SysNative\drivers\stdflt.sys [2012.10.13 15:33:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\STMicroelectronics [2012.10.13 15:33:41 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2012.10.13 15:02:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fujitsu [2012.10.13 15:02:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Fujitsu [2012.10.13 15:02:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Fujitsu [2012.10.13 15:02:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Fujitsu [2012.10.13 15:01:10 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations [2012.10.13 14:14:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2012.10.13 13:30:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2012.10.13 13:30:14 | 000,000,000 | ---D | C] -- C:\Intel [2012.10.13 12:38:25 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2012.10.13 12:14:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2012.10.13 12:12:51 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2012.10.13 12:12:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2012.10.13 12:12:39 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Local\Google [2012.10.13 12:12:19 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Local\Apps [2012.10.13 12:12:18 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Local\Deployment [2012.10.13 12:07:29 | 000,000,000 | R--D | C] -- C:\Users\Jascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2012.10.13 12:07:29 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Searches [2012.10.13 12:07:29 | 000,000,000 | R--D | C] -- C:\Users\Jascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2012.10.13 12:07:15 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Roaming\Identities [2012.10.13 12:07:08 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Contacts [2012.10.13 12:07:06 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Local\VirtualStore [2012.10.13 12:06:51 | 000,000,000 | --SD | C] -- C:\Users\Jascha\AppData\Roaming\Microsoft [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Videos [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Saved Games [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Pictures [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Music [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Links [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Favorites [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Downloads [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Documents [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\Desktop [2012.10.13 12:06:51 | 000,000,000 | R--D | C] -- C:\Users\Jascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Vorlagen [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\AppData\Local\Verlauf [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\AppData\Local\Temporary Internet Files [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Startmenü [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\SendTo [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Recent [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Netzwerkumgebung [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Lokale Einstellungen [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Documents\Eigene Videos [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Documents\Eigene Musik [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Eigene Dateien [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Documents\Eigene Bilder [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Druckumgebung [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Cookies [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\AppData\Local\Anwendungsdaten [2012.10.13 12:06:51 | 000,000,000 | -HSD | C] -- C:\Users\Jascha\Anwendungsdaten [2012.10.13 12:06:51 | 000,000,000 | -H-D | C] -- C:\Users\Jascha\AppData [2012.10.13 12:06:51 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Local\Temp [2012.10.13 12:06:51 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Local\Microsoft [2012.10.13 12:06:51 | 000,000,000 | ---D | C] -- C:\Users\Jascha\AppData\Roaming\Media Center Programs [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\Recovery [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\Programme [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2012.10.13 10:04:56 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2012.10.13 08:45:14 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2012.10.13 08:42:11 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2012.10.13 08:41:43 | 000,000,000 | -HSD | C] -- C:\System Volume Information ========== Files - Modified Within 30 Days ========== [2012.10.16 13:48:08 | 000,018,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012.10.16 13:48:08 | 000,018,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012.10.16 13:43:35 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jascha\Desktop\OTL.exe [2012.10.16 13:43:21 | 000,000,000 | ---- | M] () -- C:\Users\Jascha\defogger_reenable [2012.10.16 13:43:01 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012.10.16 13:42:53 | 001,498,506 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012.10.16 13:42:53 | 000,654,166 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2012.10.16 13:42:53 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012.10.16 13:42:53 | 000,130,006 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2012.10.16 13:42:53 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012.10.16 13:38:44 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012.10.16 13:37:41 | 000,274,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012.10.16 13:37:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012.10.16 13:37:08 | 3190,358,016 | -HS- | M] () -- C:\hiberfil.sys [2012.10.15 18:17:30 | 000,239,490 | ---- | M] () -- C:\Users\Jascha\Desktop\Unbenannt.jpg [2012.10.14 16:07:30 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif [2012.10.13 18:39:24 | 000,295,922 | ---- | M] () -- C:\Windows\SysNative\perfi007.dat [2012.10.13 18:39:24 | 000,038,104 | ---- | M] () -- C:\Windows\SysNative\perfd007.dat [2012.10.13 12:49:58 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf [2012.10.13 12:49:53 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf [2012.10.13 12:38:30 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01007.Wdf [2012.10.13 12:14:36 | 000,002,251 | ---- | M] () -- C:\Users\Jascha\Desktop\Google Chrome.lnk [2012.10.13 10:05:26 | 000,000,012 | ---- | M] () -- C:\Windows\SysNative\drivers\10CF_FUJITSU_FTS_ESPRIMO Mobile M9410_FUJITSU SIEMENS_M118DB_Ver 1.00PARTTBL[_FSC - 6040000_M118D0FR.105 - R071 - 1659_Mobile Intel(R) 45 Express-Chipsatzfamilie (Microsoft Corporation - WDDM 1.1)_Mobile Intel(R) 45 Expres.MRK [2012.10.13 08:46:52 | 000,054,699 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2012.10.13 08:46:52 | 000,054,699 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2012.10.13 08:45:32 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf ========== Files Created - No Company Name ========== [2012.10.16 13:43:21 | 000,000,000 | ---- | C] () -- C:\Users\Jascha\defogger_reenable [2012.10.15 18:17:30 | 000,239,490 | ---- | C] () -- C:\Users\Jascha\Desktop\Unbenannt.jpg [2012.10.14 19:05:43 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd [2012.10.14 19:02:16 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml [2012.10.14 19:01:50 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml [2012.10.14 19:01:50 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml [2012.10.14 19:01:14 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc [2012.10.14 19:01:14 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml [2012.10.14 16:07:30 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif [2012.10.14 16:07:20 | 000,002,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk [2012.10.13 18:40:26 | 000,043,256 | R--- | C] () -- C:\Windows\SysNative\OEMLOGO.BMP [2012.10.13 18:40:26 | 000,043,256 | R--- | C] () -- C:\Windows\LOGO_POSITIVE_JPG_MIDDLE.BMP [2012.10.13 18:39:59 | 000,654,166 | ---- | C] () -- C:\Windows\SysNative\perfh007.dat [2012.10.13 18:39:59 | 000,295,922 | ---- | C] () -- C:\Windows\SysNative\perfi007.dat [2012.10.13 18:39:59 | 000,130,006 | ---- | C] () -- C:\Windows\SysNative\perfc007.dat [2012.10.13 18:39:59 | 000,038,104 | ---- | C] () -- C:\Windows\SysNative\perfd007.dat [2012.10.13 12:49:58 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf [2012.10.13 12:49:53 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf [2012.10.13 12:38:30 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01007.Wdf [2012.10.13 12:14:36 | 000,002,251 | ---- | C] () -- C:\Users\Jascha\Desktop\Google Chrome.lnk [2012.10.13 12:12:50 | 000,001,110 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012.10.13 12:12:48 | 000,001,106 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012.10.13 12:07:40 | 000,001,409 | ---- | C] () -- C:\Users\Jascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk [2012.10.13 12:07:32 | 000,001,443 | ---- | C] () -- C:\Users\Jascha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2012.10.13 10:06:37 | 000,383,562 | RHS- | C] () -- C:\bootmgr [2012.10.13 10:05:26 | 000,000,012 | ---- | C] () -- C:\Windows\SysNative\drivers\10CF_FUJITSU_FTS_ESPRIMO Mobile M9410_FUJITSU SIEMENS_M118DB_Ver 1.00PARTTBL[_FSC - 6040000_M118D0FR.105 - R071 - 1659_Mobile Intel(R) 45 Express-Chipsatzfamilie (Microsoft Corporation - WDDM 1.1)_Mobile Intel(R) 45 Expres.MRK [2012.10.13 08:46:20 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk [2012.10.13 08:46:10 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk [2012.10.13 08:45:32 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf [2012.10.13 08:41:43 | 3190,358,016 | -HS- | C] () -- C:\hiberfil.sys [2011.02.11 19:15:08 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin [2011.02.11 19:15:08 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin [2011.02.11 19:15:08 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin ========== ZeroAccess Check ========== [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== ========== Purity Check ========== < End of report > Geändert von jaschaBsc (16.10.2012 um 13:42 Uhr) |
| Themen zu Nach VLC-Player Installation von Vlc.de Problem mit www.startfenster.com |
| adblock, autorun, browser, cdrom, explorer, explorer.exe, firefox, format, google, helper, homepage, ics, installation, internet explorer, logfile, microsoft, plug-in, problem, programme, registry, scan, security, software, super, system32, update, vlc-player, windows, windows internet, winlogon, www.startfenster.com |
Baum-Darstellung