Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren

Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren


Plagegeister aller Art und deren Bekämpfung: Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 09.11.2012, 11:10   #1
simon09
 
Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren - Standard

Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren


Hallo,
wie im Titel bereits geschrieben, habe ich gestern Abend Musik im Hintergrund gehört. Es war etwas bekanntes und Frauenstimmen haben Karaoke-mäßig im Hintergrund mitgesungen. (es waren auf jeden fall alle Programme geschlossen und der Taskmanager hat unter prozesse keine änderungen angezeigt, als die Musik verstummte) Auf der Suche bei google habe ich dann gesehen, dass es oft auch Probleme mit Avira Antivir im selben Zusammenhang gibt und dabei ist mir aufgefallen, dass seit 4 Wochen mein Avira nicht mehr aktuallisiert wurde und der Schirm "zu" ist, also der Echtzeitscanner nicht aktiv ist und sich auch nicht mehr aktivieren lässt....

Ich habe leider nur einen PC mit internetzugang und nutze diesen täglich. Wäre super wenn mir jemand helfen könnte und grob abschätzen könnte ob ich schädliche Programme auf dem PC habe und wie ich weiter vorgehen sollte. Ich nutze den PC privat und fürs Studium (online banking und andere sensible daten)


Habe dann hier im Board gelesen was man machen soll und die scans von OTL und Malware sind hier:

OTL logfile created on: 09.11.2012 10:56:24 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\*****\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

2,97 Gb Total Physical Memory | 1,62 Gb Available Physical Memory | 54,51% Memory free
5,93 Gb Paging File | 4,67 Gb Available in Paging File | 78,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 226,76 Gb Total Space | 133,37 Gb Free Space | 58,82% Space Free | Partition Type: NTFS
Drive D: | 226,00 Gb Total Space | 214,68 Gb Free Space | 94,99% Space Free | Partition Type: NTFS

Computer Name: SIMON-PC | User Name: ***** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012.11.09 10:34:09 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\*****\Downloads\OTL(1).exe
PRC - [2012.10.28 21:15:11 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla F\firefox.exe
PRC - [2012.10.24 15:14:12 | 003,821,592 | ---- | M] (Safer-Networking Ltd.) -- C:\Programme\Spybot - Search & Destroy 2\SDTray.exe
PRC - [2012.10.24 15:13:22 | 001,367,576 | ---- | M] (Safer-Networking Ltd.) -- C:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe
PRC - [2012.10.24 15:13:18 | 001,100,320 | ---- | M] (Safer-Networking Ltd.) -- C:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe
PRC - [2012.10.02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012.09.29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012.08.08 08:16:41 | 000,348,664 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.05.08 13:07:39 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Programme\Avira\AntiVir Desktop\sched.exe
PRC - [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.11.20 22:29:49 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe
PRC - [2010.11.20 22:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2009.01.13 11:28:46 | 001,528,608 | ---- | M] (Cisco Systems, Inc.) -- C:\Programme\Cisco Systems\VPN Client\cvpnd.exe


========== Modules (No Company Name) ==========

MOD - [2012.10.28 21:15:11 | 002,295,264 | ---- | M] () -- C:\Programme\Mozilla F\mozjs.dll
MOD - [2012.10.24 15:12:32 | 000,154,016 | ---- | M] () -- C:\Programme\Spybot - Search & Destroy 2\snlFileFormats150.bpl
MOD - [2012.10.24 15:12:30 | 000,113,056 | ---- | M] () -- C:\Programme\Spybot - Search & Destroy 2\snlThirdParty150.bpl
MOD - [2012.10.24 15:12:28 | 000,554,400 | ---- | M] () -- C:\Programme\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl
MOD - [2012.10.24 15:12:28 | 000,528,288 | ---- | M] () -- C:\Programme\Spybot - Search & Destroy 2\JSDialogPack150.bpl
MOD - [2012.10.24 15:12:28 | 000,416,160 | ---- | M] () -- C:\Programme\Spybot - Search & Destroy 2\DEC150.bpl


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Spybot -- (SDWSCService)
SRV - File not found [Auto | Running] -- C:\Program Files\Spybot -- (SDUpdateService)
SRV - File not found [Auto | Running] -- C:\Program Files\Spybot -- (SDScannerService)
SRV - [2012.10.28 21:15:11 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.10.02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012.09.29 19:54:26 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.09.29 19:54:26 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.08.31 09:03:01 | 000,072,832 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\System32\drivers\1823e8d87284605f.sys -- (1823e8d87284605f)
SRV - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.06.05 14:17:44 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Programme\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.05.08 13:07:39 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- C:\Programme\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012.05.08 13:07:39 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Programme\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.11.20 22:29:49 | 001,121,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Programme\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV - [2010.01.09 21:37:50 | 004,640,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2010.01.09 20:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 02:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.01.13 11:28:46 | 001,528,608 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Programme\Cisco Systems\VPN Client\cvpnd.exe -- (CVPND)


========== Driver Services (SafeList) ==========

DRV - [2012.09.29 19:54:26 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012.09.10 10:29:54 | 000,036,000 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\System32\DRIVERS\avkmgr.sys -- (avkmgr)
DRV - [2012.09.10 10:29:53 | 000,137,928 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\avipbb.sys -- (avipbb)
DRV - [2012.08.31 09:03:01 | 000,072,832 | ---- | M] () [Unknown (-1) | Unknown (-1) | Unknown] -- C:\Windows\System32\drivers\1823e8d87284605f.sys -- (1823e8d87284605f)
DRV - [2012.06.02 05:45:04 | 000,067,440 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecdd.sys -- (KSecDD)
DRV - [2012.06.02 05:45:03 | 000,134,000 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2012.06.02 05:40:59 | 000,369,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2012.05.08 13:07:39 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012.04.28 04:17:07 | 000,183,808 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpwd.sys -- (RDPWD)
DRV - [2012.03.30 11:23:11 | 001,291,632 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\tcpip.sys -- (TCPIP6)
DRV - [2012.03.30 11:23:11 | 001,291,632 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip)
DRV - [2012.03.17 08:27:18 | 000,056,176 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr)
DRV - [2012.03.01 06:46:57 | 000,019,824 | ---- | M] () [Recognizer | Boot | Unknown] -- C:\Windows\System32\drivers\fs_rec.sys -- (Fs_Rec)
DRV - [2012.02.17 05:13:22 | 000,024,576 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tdtcp.sys -- (TDTCP)
DRV - [2011.12.13 03:32:24 | 002,228,224 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\athr.sys -- (athr)
DRV - [2011.07.09 03:30:00 | 000,223,744 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\DRIVERS\mrxsmb10.sys -- (mrxsmb10)
DRV - [2011.04.29 03:46:33 | 000,311,808 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\DRIVERS\srv.sys -- (srv)
DRV - [2011.04.29 03:46:15 | 000,310,272 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\DRIVERS\srv2.sys -- (srv2)
DRV - [2011.04.29 03:46:10 | 000,114,688 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\DRIVERS\srvnet.sys -- (srvnet)
DRV - [2011.04.27 03:17:28 | 000,096,768 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\DRIVERS\mrxsmb20.sys -- (mrxsmb20)
DRV - [2011.04.27 03:17:22 | 000,123,904 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\DRIVERS\mrxsmb.sys -- (mrxsmb)
DRV - [2011.04.25 03:18:03 | 000,338,944 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\afd.sys -- (AFD)
DRV - [2011.03.25 03:58:37 | 000,258,560 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\usbhub.sys -- (usbhub)
DRV - [2011.03.25 03:58:06 | 000,075,776 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\usbccgp.sys -- (usbccgp)
DRV - [2011.03.25 03:57:58 | 000,043,008 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\usbehci.sys -- (usbehci)
DRV - [2011.03.25 03:57:58 | 000,020,480 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbohci.sys -- (usbohci)
DRV - [2011.03.25 03:57:56 | 000,024,064 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\usbuhci.sys -- (usbuhci)
DRV - [2011.03.11 06:39:00 | 001,211,264 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\ntfs.sys -- (Ntfs)
DRV - [2011.03.11 05:01:12 | 000,076,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\USBSTOR.SYS -- (USBSTOR)
DRV - [2011.02.23 05:47:33 | 000,069,632 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\System32\DRIVERS\bowser.sys -- (bowser)
DRV - [2010.11.20 22:29:49 | 000,133,632 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpdr.sys -- (RDPDR)
DRV - [2010.11.20 22:29:26 | 000,388,096 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\csc.sys -- (CSC)
DRV - [2010.11.20 22:29:26 | 000,194,800 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\DRIVERS\fvevol.sys -- (fvevol)
DRV - [2010.11.20 22:29:24 | 000,173,440 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2010.11.20 22:29:24 | 000,115,712 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mrxdav.sys -- (MRxDAV)
DRV - [2010.11.20 22:29:24 | 000,052,224 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbflt.sys -- (TsUsbFlt)
DRV - [2010.11.20 22:29:20 | 000,108,544 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\tunnel.sys -- (tunnel)
DRV - [2010.11.20 22:29:20 | 000,063,488 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\wanarp.sys -- (Wanarpv6)
DRV - [2010.11.20 22:29:20 | 000,063,488 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\wanarp.sys -- (WANARP)
DRV - [2010.11.20 22:29:20 | 000,048,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndproxy.sys -- (NDProxy)
DRV - [2010.11.20 22:29:20 | 000,026,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\scfilter.sys -- (scfilter)
DRV - [2010.11.20 22:29:19 | 000,242,688 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\DRIVERS\rdbss.sys -- (rdbss)
DRV - [2010.11.20 22:29:19 | 000,118,784 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\ndiswan.sys -- (NdisWan)
DRV - [2010.11.20 22:29:13 | 000,018,432 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tdpipe.sys -- (TDPIPE)
DRV - [2010.11.20 22:29:12 | 000,712,576 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS)
DRV - [2010.11.20 22:29:12 | 000,513,536 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HTTP.sys -- (HTTP)
DRV - [2010.11.20 22:29:12 | 000,246,784 | ---- | M] () [File_System | Disabled | Stopped] -- C:\Windows\System32\DRIVERS\udfs.sys -- (udfs)
DRV - [2010.11.20 22:29:12 | 000,006,656 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\RDPCDD.sys -- (RDPCDD)
DRV - [2010.11.20 22:29:11 | 000,078,208 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mountmgr.sys -- (mountmgr)
DRV - [2010.11.20 22:29:11 | 000,035,328 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg)
DRV - [2010.11.20 22:29:08 | 000,187,904 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\netbt.sys -- (NetBT)
DRV - [2010.11.20 22:29:08 | 000,132,224 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\WUDFRd.sys -- (WUDFRd)
DRV - [2010.11.20 22:29:08 | 000,092,672 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WudfPf.sys -- (WudfPf)
DRV - [2010.11.20 22:29:08 | 000,031,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\tssecsrv.sys -- (tssecsrv)
DRV - [2010.11.20 22:29:07 | 000,728,448 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl)
DRV - [2010.11.20 22:29:07 | 000,078,336 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\Drivers\dfsc.sys -- (DfsC)
DRV - [2010.11.20 22:29:07 | 000,074,752 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\tdx.sys -- (tdx)
DRV - [2010.11.20 22:29:07 | 000,046,080 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\ndisuio.sys -- (Ndisuio)
DRV - [2010.11.20 22:29:04 | 000,050,176 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\appid.sys -- (AppID)
DRV - [2010.11.20 22:29:04 | 000,014,208 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2010.11.20 22:29:03 | 000,304,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService)
DRV - [2010.11.20 22:29:03 | 000,274,304 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ACPI.sys -- (ACPI)
DRV - [2010.11.20 22:29:03 | 000,245,632 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volsnap.sys -- (volsnap)
DRV - [2010.11.20 22:29:03 | 000,233,344 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt)
DRV - [2010.11.20 22:29:03 | 000,175,360 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 22:29:03 | 000,164,864 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2010.11.20 22:29:03 | 000,160,128 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vhdmp.sys -- (vhdmp)
DRV - [2010.11.20 22:29:03 | 000,153,984 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pci.sys -- (pci)
DRV - [2010.11.20 22:29:03 | 000,146,432 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\usbvideo.sys -- (usbvideo)
DRV - [2010.11.20 22:29:03 | 000,130,432 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mpio.sys -- (mpio)
DRV - [2010.11.20 22:29:03 | 000,116,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msdsm.sys -- (msdsm)
DRV - [2010.11.20 22:29:03 | 000,108,544 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\cdrom.sys -- (cdrom)
DRV - [2010.11.20 22:29:03 | 000,085,376 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port)
DRV - [2010.11.20 22:29:03 | 000,065,536 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV)
DRV - [2010.11.20 22:29:03 | 000,062,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010.11.20 22:29:03 | 000,053,120 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr)
DRV - [2010.11.20 22:29:03 | 000,053,120 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\termdd.sys -- (TermDD)
DRV - [2010.11.20 22:29:03 | 000,040,704 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 22:29:03 | 000,039,936 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\umbus.sys -- (umbus)
DRV - [2010.11.20 22:29:03 | 000,031,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\CompositeBus.sys -- (CompositeBus)
DRV - [2010.11.20 22:29:03 | 000,028,160 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\kbdhid.sys -- (kbdhid)
DRV - [2010.11.20 22:29:03 | 000,028,032 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 22:29:03 | 000,028,032 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\msahci.sys -- (msahci)
DRV - [2010.11.20 22:29:03 | 000,027,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010.11.20 22:29:03 | 000,024,064 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\hidusb.sys -- (HidUsb)
DRV - [2010.11.20 22:29:03 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 22:29:03 | 000,012,800 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sffp_sd.sys -- (sffp_sd)
DRV - [2010.11.20 22:29:03 | 000,010,240 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acpipmi.sys -- (AcpiPmi)
DRV - [2010.11.20 22:29:03 | 000,005,632 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010.07.12 14:49:18 | 000,060,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2010.07.12 14:48:56 | 000,073,032 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftser2k.sys -- (FTSER2K)
DRV - [2009.10.08 16:55:33 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 02:26:21 | 000,249,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\CLFS.sys -- (CLFS)
DRV - [2009.07.14 02:26:21 | 000,019,024 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\DRIVERS\compbatt.sys -- (Compbatt)
DRV - [2009.07.14 02:26:15 | 000,053,312 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\agp440.sys -- (agp440)
DRV - [2009.07.14 02:26:15 | 000,021,584 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\atapi.sys -- (atapi)
DRV - [2009.07.14 02:26:15 | 000,014,912 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdide.sys -- (amdide)
DRV - [2009.07.14 02:20:45 | 000,012,368 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pciide.sys -- (pciide)
DRV - [2009.07.14 02:20:44 | 000,162,896 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC)
DRV - [2009.07.14 02:20:44 | 000,105,024 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nv_agp.sys -- (nv_agp)
DRV - [2009.07.14 02:20:44 | 000,049,728 | ---- | M] () [File_System | Boot | Running] -- C:\Windows\System32\Drivers\mup.sys -- (Mup)
DRV - [2009.07.14 02:20:44 | 000,041,552 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\mouclass.sys -- (mouclass)
DRV - [2009.07.14 02:20:44 | 000,028,240 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\mssmbios.sys -- (mssmbios)
DRV - [2009.07.14 02:20:43 | 000,013,888 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv)
DRV - [2009.07.14 02:20:36 | 000,046,656 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\isapnp.sys -- (isapnp)
DRV - [2009.07.14 02:20:36 | 000,042,576 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\kbdclass.sys -- (kbdclass)
DRV - [2009.07.14 02:20:36 | 000,015,424 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\intelide.sys -- (intelide)
DRV - [2009.07.14 02:20:28 | 000,198,208 | ---- | M] () [File_System | Boot | Running] -- C:\Windows\System32\drivers\fltmgr.sys -- (FltMgr)
DRV - [2009.07.14 02:20:28 | 000,058,448 | ---- | M] () [File_System | Boot | Running] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo)
DRV - [2009.07.14 02:20:28 | 000,057,936 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\gagp30kx.sys -- (gagp30kx)
DRV - [2009.07.14 02:20:28 | 000,046,160 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\FsDepends.sys -- (FsDepends)
DRV - [2009.07.14 02:20:28 | 000,022,096 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk)
DRV - [2009.07.14 02:20:27 | 000,057,424 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\disk.sys -- (Disk)
DRV - [2009.07.14 02:19:11 | 000,297,040 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx)
DRV - [2009.07.14 02:19:11 | 000,057,424 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\uliagpkx.sys -- (uliagpkx)
DRV - [2009.07.14 02:19:11 | 000,019,024 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wd.sys -- (Wd)
DRV - [2009.07.14 02:19:10 | 000,445,008 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000)
DRV - [2009.07.14 02:19:10 | 000,055,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\uagp35.sys -- (uagp35)
DRV - [2009.07.14 02:19:10 | 000,053,328 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\viaagp.sys -- (viaagp)
DRV - [2009.07.14 02:19:10 | 000,032,832 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.14 02:19:10 | 000,012,240 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\swenum.sys -- (swenum)
DRV - [2009.07.14 02:19:04 | 000,043,088 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009.07.14 02:19:03 | 000,180,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pcmcia.sys -- (pcmcia)
DRV - [2009.07.14 02:19:03 | 000,017,472 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\spldr.sys -- (spldr)
DRV - [2009.07.14 01:41:15 | 000,586,752 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\peauth.sys -- (PEAUTH)
DRV - [2009.07.14 01:17:06 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\usbprint.sys -- (usbprint)
DRV - [2009.07.14 01:14:44 | 000,035,840 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\usbscan.sys -- (usbscan)
DRV - [2009.07.14 01:02:41 | 000,018,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\rdpbus.sys -- (rdpbus)
DRV - [2009.07.14 01:01:41 | 000,007,168 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\rdprefmp.sys -- (RDPREFMP)
DRV - [2009.07.14 01:01:39 | 000,006,656 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\rdpencdd.sys -- (RDPENCDD)
DRV - [2009.07.14 00:55:24 | 000,031,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\modem.sys -- (Modem)
DRV - [2009.07.14 00:55:02 | 000,016,384 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl)
DRV - [2009.07.14 00:55:00 | 000,049,152 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\AgileVpn.sys -- (RasAgileVpn)
DRV - [2009.07.14 00:54:58 | 000,075,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\rassstp.sys -- (RasSstp)
DRV - [2009.07.14 00:54:53 | 000,077,824 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\raspppoe.sys -- (RasPppoe)
DRV - [2009.07.14 00:54:48 | 000,073,728 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\raspptp.sys -- (PptpMiniport)
DRV - [2009.07.14 00:54:46 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\asyncmac.sys -- (AsyncMac)
DRV - [2009.07.14 00:54:40 | 000,011,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\rasacd.sys -- (RasAcd)
DRV - [2009.07.14 00:54:34 | 000,078,848 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\rasl2tp.sys -- (Rasl2tp)
DRV - [2009.07.14 00:54:29 | 000,101,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT)
DRV - [2009.07.14 00:54:29 | 000,058,880 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipfltdrv.sys -- (IpFilterDriver)
DRV - [2009.07.14 00:54:24 | 000,020,992 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\ndistapi.sys -- (NdisTapi)
DRV - [2009.07.14 00:54:13 | 000,031,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv)
DRV - [2009.07.14 00:53:58 | 000,104,448 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\pacer.sys -- (Psched)
DRV - [2009.07.14 00:53:54 | 000,036,352 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\DRIVERS\netbios.sys -- (NetBIOS)
DRV - [2009.07.14 00:53:51 | 000,009,728 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\wfplwf.sys -- (WfpLwf)
DRV - [2009.07.14 00:53:41 | 000,071,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\smb.sys -- (Smb)
DRV - [2009.07.14 00:53:27 | 000,013,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM)
DRV - [2009.07.14 00:53:20 | 000,060,928 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\DRIVERS\rspndr.sys -- (rspndr)
DRV - [2009.07.14 00:53:19 | 000,048,128 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\DRIVERS\lltdio.sys -- (lltdio)
DRV - [2009.07.14 00:52:53 | 000,060,416 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv)
DRV - [2009.07.14 00:52:44 | 000,027,136 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ndiscap.sys -- (NdisCap)
DRV - [2009.07.14 00:52:10 | 000,014,336 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\vwifimp.sys -- (vwifimp)
DRV - [2009.07.14 00:52:04 | 000,048,128 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\vwififlt.sys -- (vwififlt)
DRV - [2009.07.14 00:52:03 | 000,267,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\nwifi.sys -- (NativeWifiP)
DRV - [2009.07.14 00:52:02 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\vwifibus.sys -- (vwifibus)
DRV - [2009.07.14 00:51:35 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\umpass.sys -- (UmPass)
DRV - [2009.07.14 00:51:34 | 000,056,320 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM)
DRV - [2009.07.14 00:51:33 | 000,091,136 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth)
DRV - [2009.07.14 00:51:29 | 000,062,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ohci1394.sys -- (ohci1394)
DRV - [2009.07.14 00:51:18 | 000,086,016 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir)
DRV - [2009.07.14 00:51:17 | 000,037,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\circlass.sys -- (circlass)
DRV - [2009.07.14 00:51:08 | 000,004,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009.07.14 00:51:05 | 000,037,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidir.sys -- (HidIr)
DRV - [2009.07.14 00:50:57 | 000,005,120 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud)
DRV - [2009.07.14 00:46:55 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MTConfig.sys -- (MTConfig)
DRV - [2009.07.14 00:46:53 | 000,021,632 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen)
DRV - [2009.07.14 00:45:52 | 000,013,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sfloppy.sys -- (sfloppy)
DRV - [2009.07.14 00:45:52 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sffp_mmc.sys -- (sffp_mmc)
DRV - [2009.07.14 00:45:52 | 000,011,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sffdisk.sys -- (sffdisk)
DRV - [2009.07.14 00:45:45 | 000,025,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fdc.sys -- (fdc)
DRV - [2009.07.14 00:45:45 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\flpydisk.sys -- (flpydisk)
DRV - [2009.07.14 00:45:35 | 000,079,360 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\parport.sys -- (Parport)
DRV - [2009.07.14 00:45:33 | 000,083,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009.07.14 00:45:29 | 000,008,704 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\parvdm.sys -- (Parvdm)
DRV - [2009.07.14 00:45:28 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\serenum.sys -- (Serenum)
DRV - [2009.07.14 00:45:08 | 000,026,112 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\mouhid.sys -- (mouhid)
DRV - [2009.07.14 00:45:08 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse)
DRV - [2009.07.14 00:45:08 | 000,008,320 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MSKSSRV.sys -- (MSKSSRV)
DRV - [2009.07.14 00:45:08 | 000,006,144 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MSTEE.sys -- (MSTEE)
DRV - [2009.07.14 00:45:08 | 000,005,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MSPCLOCK.sys -- (MSPCLOCK)
DRV - [2009.07.14 00:45:07 | 000,005,504 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MSPQM.sys -- (MSPQM)
DRV - [2009.07.14 00:45:01 | 000,006,144 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\beep.sys -- (Beep)
DRV - [2009.07.14 00:25:59 | 000,023,552 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\monitor.sys -- (monitor)
DRV - [2009.07.14 00:25:51 | 000,025,088 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\vga.sys -- (VgaSave)
DRV - [2009.07.14 00:25:49 | 000,026,112 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\vgapnp.sys -- (vga)
DRV - [2009.07.14 00:24:05 | 000,032,256 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009.07.14 00:23:04 | 000,035,328 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\DRIVERS\blbdrive.sys -- (blbdrive)
DRV - [2009.07.14 00:19:21 | 000,021,504 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HidBatt.sys -- (HidBatt)
DRV - [2009.07.14 00:19:19 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\errdev.sys -- (ErrDev)
DRV - [2009.07.14 00:19:18 | 000,014,080 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\CmBatt.sys -- (CmBatt)
DRV - [2009.07.14 00:19:17 | 000,011,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi)
DRV - [2009.07.14 00:15:45 | 000,086,528 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\System32\drivers\luafv.sys -- (luafv)
DRV - [2009.07.14 00:15:29 | 000,028,160 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace)
DRV - [2009.07.14 00:14:03 | 000,142,336 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\exfat.sys -- (exfat)
DRV - [2009.07.14 00:14:02 | 000,148,480 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fastfat.sys -- (fastfat)
DRV - [2009.07.14 00:12:08 | 000,016,896 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy)
DRV - [2009.07.14 00:11:32 | 000,035,328 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\npfs.sys -- (Npfs)
DRV - [2009.07.14 00:11:26 | 000,022,528 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\msfs.sys -- (Msfs)
DRV - [2009.07.14 00:11:24 | 000,080,896 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\i8042prt.sys -- (i8042prt)
DRV - [2009.07.14 00:11:15 | 000,070,656 | ---- | M] () [File_System | Disabled | Stopped] -- C:\Windows\System32\DRIVERS\cdfs.sys -- (cdfs)
DRV - [2009.07.14 00:11:12 | 000,004,608 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\null.sys -- (Null)
DRV - [2009.07.14 00:11:04 | 000,055,296 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8)
DRV - [2009.07.14 00:11:04 | 000,053,760 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\intelppm.sys -- (intelppm)
DRV - [2009.07.14 00:11:04 | 000,052,736 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7)
DRV - [2009.07.14 00:11:04 | 000,052,736 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdppm.sys -- (AmdPPM)
DRV - [2009.07.14 00:11:04 | 000,052,224 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\processr.sys -- (Processor)
DRV - [2009.07.13 23:02:53 | 000,311,296 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\yk62x86.sys -- (yukonw7)
DRV - [2009.01.13 11:27:38 | 000,306,811 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\CVPNDRVA.sys -- (CVPNDRVA)
DRV - [2008.08.28 17:17:38 | 000,131,856 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\dne2000.sys -- (DNE)
DRV - [2007.01.18 19:28:02 | 000,005,275 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\CVirtA.sys -- (CVirtA)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 17 0E 59 B2 B4 91 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Wikipedia (de)"
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/ig"
FF - prefs.js..extensions.enabledAddons: groovesharkUnlocker@overlord1337:1.2
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@cambridgesoft.com/Chem3D,version=12.0: C:\Program Files\CambridgeSoft\ChemOffice2010\Chem3D\npChem3DPlugin.dll (CambridgeSoft Corp.)
FF - HKLM\Software\MozillaPlugins\@cambridgesoft.com/ChemDraw,version=12.0: C:\Program Files\CambridgeSoft\ChemOffice2010\ChemDraw\npcdp32.dll (CambridgeSoft Corp.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files\Mozilla F\components [2012.10.28 21:15:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla F\plugins [2012.10.28 21:15:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files\Mozilla F\components [2012.10.28 21:15:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files\Mozilla F\plugins [2012.10.28 21:15:09 | 000,000,000 | ---D | M]

[2012.02.17 16:49:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\Extensions
[2012.10.23 14:56:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\Firefox\Profiles\ihk9ohn7.default\extensions
[2012.06.14 03:15:47 | 000,029,003 | ---- | M] () (No name found) -- C:\Users\*****\AppData\Roaming\mozilla\firefox\profiles\ihk9ohn7.default\extensions\groovesharkUnlocker@overlord1337.xpi

O1 HOSTS File: ([2009.06.10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Logitech Download Assistant] C:\Windows\System32\LogiLDA.dll (Logitech, Inc.)
O4 - HKLM..\Run: [PDFPrint] C:\Programme\PDF24\pdf24.exe (Geek Software GmbH)
O4 - HKLM..\Run: [SDTray] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
O4 - HKLM..\Run: [syshost32] C:\Windows\Installer\{94902DDF-AFA3-C9E1-EC6F-47EECC4F42FB}\syshost.exe ()
O4 - HKCU..\Run: [Spybot-S&D Cleaning] C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe (Safer-Networking Ltd.)
O4 - HKLM..\RunOnce: [ Malwarebytes Anti-Malware ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Simon\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7210750B-0062-42A1-838E-C631BD63CDFF}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{2168ee8c-8b8d-11e1-941d-0024540927dc}\Shell - "" = AutoRun
O33 - MountPoints2\{2168ee8c-8b8d-11e1-941d-0024540927dc}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012.11.09 10:49:45 | 000,000,000 | ---D | C] -- C:\Users\*****\Desktop\Neuer Ordner
[2012.11.08 21:10:25 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Roaming\Malwarebytes
[2012.11.08 21:10:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012.11.08 21:10:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012.11.08 21:10:15 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012.11.08 21:10:15 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012.11.01 18:05:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2012.11.01 18:05:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
[2012.11.01 18:05:10 | 000,015,224 | ---- | C] (Safer Networking Limited) -- C:\Windows\System32\sdnclean.exe
[2012.11.01 18:05:05 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy 2
[2012.11.01 18:04:30 | 000,000,000 | ---D | C] -- C:\Users\*****\AppData\Local\Programs
[2012.10.28 21:15:08 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla F
[2012.10.22 14:02:00 | 000,000,000 | ---D | C] -- C:\Users\*****\Desktop\NMR – From Spectra to Structures
[2012.10.10 15:35:37 | 000,000,000 | ---D | C] -- C:\Users\*****\Desktop\bilder
[1 C:\Users\Simon\AppData\Roaming\*.tmp files -> C:\Users\*****\AppData\Roaming\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.11.09 10:56:12 | 000,000,000 | ---- | M] () -- C:\Users\*****\defogger_reenable
[2012.11.09 10:33:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.11.08 21:55:10 | 000,643,866 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2012.11.08 21:55:10 | 000,607,190 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.11.08 21:55:10 | 000,126,394 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2012.11.08 21:55:10 | 000,103,568 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.11.08 18:14:34 | 000,021,808 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.11.08 18:14:34 | 000,021,808 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.11.08 18:07:07 | 2388,086,784 | -HS- | M] () -- C:\hiberfil.sys
[2012.11.01 17:44:50 | 000,584,979 | ---- | M] () -- C:\Users\*****\Desktop\fb.jpg
[2012.11.01 17:43:45 | 000,000,218 | ---- | M] () -- C:\Users\*****\.recently-used.xbel
[1 C:\Users\*****\AppData\Roaming\*.tmp files -> C:\Users\*****\AppData\Roaming\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.11.09 10:56:12 | 000,000,000 | ---- | C] () -- C:\Users\*****\defogger_reenable
[2012.11.01 18:05:15 | 000,002,135 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
[2012.11.01 17:44:50 | 000,584,979 | ---- | C] () -- C:\Users\*****\Desktop\fb.jpg
[2012.11.01 17:43:45 | 000,000,218 | ---- | C] () -- C:\Users\*****\.recently-used.xbel
[2012.09.10 10:30:05 | 000,036,000 | ---- | C] () -- C:\Windows\System32\drivers\avkmgr.sys
[2012.09.10 10:30:04 | 000,137,928 | ---- | C] () -- C:\Windows\System32\drivers\avipbb.sys
[2012.08.31 09:03:01 | 000,072,832 | ---- | C] () -- C:\Windows\System32\drivers\1823e8d87284605f.sys
[2012.08.28 09:04:34 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012.08.28 09:04:34 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012.08.28 09:04:34 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2012.08.28 09:04:32 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012.08.15 10:22:49 | 002,345,984 | ---- | C] () -- C:\Windows\System32\win32k.sys
[2012.07.23 11:19:53 | 000,000,034 | ---- | C] () -- C:\Users\*****\AppData\Roaming\blckdom.res
[2012.07.11 07:15:56 | 000,369,336 | ---- | C] () -- C:\Windows\System32\drivers\cng.sys
[2012.07.11 07:15:56 | 000,134,000 | ---- | C] () -- C:\Windows\System32\drivers\ksecpkg.sys
[2012.07.11 07:15:56 | 000,067,440 | ---- | C] () -- C:\Windows\System32\drivers\ksecdd.sys
[2012.06.13 23:49:23 | 000,183,808 | ---- | C] () -- C:\Windows\System32\drivers\rdpwd.sys
[2012.05.12 09:53:55 | 001,291,632 | ---- | C] () -- C:\Windows\System32\drivers\tcpip.sys
[2012.05.12 09:53:48 | 003,913,072 | ---- | C] () -- C:\Windows\System32\ntoskrnl.exe
[2012.05.12 09:53:44 | 000,056,176 | ---- | C] () -- C:\Windows\System32\drivers\partmgr.sys
[2012.04.10 19:43:13 | 000,019,824 | ---- | C] () -- C:\Windows\System32\drivers\fs_rec.sys
[2012.04.05 10:20:12 | 000,000,537 | ---- | C] () -- C:\Users\******\AppData\Roaming\solvents.map
[2012.03.14 08:11:23 | 000,024,576 | ---- | C] () -- C:\Windows\System32\drivers\tdtcp.sys
[2012.02.24 11:50:39 | 000,000,337 | ---- | C] () -- C:\Users\Simon\AppData\Local\Perfmon.PerfmonCfg
[2012.02.23 17:50:51 | 000,000,551 | ---- | C] () -- C:\Users\Simon\AppData\Roaming\AutoGK.ini
[2012.02.21 12:53:24 | 000,284,672 | ---- | C] () -- C:\Windows\System32\drivers\usbport.sys
[2012.02.21 12:53:24 | 000,258,560 | ---- | C] () -- C:\Windows\System32\drivers\usbhub.sys
[2012.02.21 12:53:24 | 000,075,776 | ---- | C] () -- C:\Windows\System32\drivers\usbccgp.sys
[2012.02.21 12:53:24 | 000,043,008 | ---- | C] () -- C:\Windows\System32\drivers\usbehci.sys
[2012.02.21 12:53:24 | 000,024,064 | ---- | C] () -- C:\Windows\System32\drivers\usbuhci.sys
[2012.02.21 12:53:24 | 000,020,480 | ---- | C] () -- C:\Windows\System32\drivers\usbohci.sys
[2012.02.21 12:53:24 | 000,005,888 | ---- | C] () -- C:\Windows\System32\drivers\usbd.sys
[2012.02.21 12:53:22 | 001,211,264 | ---- | C] () -- C:\Windows\System32\drivers\ntfs.sys
[2012.02.21 12:53:22 | 000,332,160 | ---- | C] () -- C:\Windows\System32\drivers\iaStorV.sys
[2012.02.21 12:53:22 | 000,148,864 | ---- | C] () -- C:\Windows\System32\drivers\storport.sys
[2012.02.21 12:53:22 | 000,143,744 | ---- | C] () -- C:\Windows\System32\drivers\nvstor.sys
[2012.02.21 12:53:22 | 000,080,256 | ---- | C] () -- C:\Windows\System32\drivers\amdsata.sys
[2012.02.21 12:53:21 | 000,117,120 | ---- | C] () -- C:\Windows\System32\drivers\nvraid.sys
[2012.02.21 12:53:21 | 000,076,288 | ---- | C] () -- C:\Windows\System32\drivers\USBSTOR.SYS
[2012.02.21 12:53:21 | 000,022,400 | ---- | C] () -- C:\Windows\System32\drivers\amdxata.sys
[2012.02.21 12:52:37 | 000,027,008 | ---- | C] () -- C:\Windows\System32\drivers\Diskdump.sys
[2012.02.21 12:50:52 | 000,219,008 | ---- | C] () -- C:\Windows\System32\drivers\dxgmms1.sys
[2012.02.18 16:21:58 | 000,310,272 | ---- | C] () -- C:\Windows\System32\drivers\srv2.sys
[2012.02.18 16:21:57 | 000,311,808 | ---- | C] () -- C:\Windows\System32\drivers\srv.sys
[2012.02.18 16:21:57 | 000,114,688 | ---- | C] () -- C:\Windows\System32\drivers\srvnet.sys
[2012.02.18 16:21:55 | 000,338,944 | ---- | C] () -- C:\Windows\System32\drivers\afd.sys
[2012.02.18 16:21:49 | 000,294,912 | ---- | C] () -- C:\Windows\System32\atmfd.dll
[2012.02.18 16:17:22 | 000,223,744 | ---- | C] () -- C:\Windows\System32\drivers\mrxsmb10.sys
[2012.02.18 16:17:22 | 000,096,768 | ---- | C] () -- C:\Windows\System32\drivers\mrxsmb20.sys
[2012.02.18 16:17:21 | 000,123,904 | ---- | C] () -- C:\Windows\System32\drivers\mrxsmb.sys
[2012.02.18 16:11:46 | 000,038,912 | ---- | C] () -- C:\Windows\System32\csrsrv.dll
[2012.02.18 16:05:20 | 000,069,632 | ---- | C] () -- C:\Windows\System32\drivers\bowser.sys
[2012.02.17 17:32:26 | 000,000,355 | ---- | C] () -- C:\Users\*****\Computer - Verknüpfung.lnk
[2012.02.17 16:17:43 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011.12.13 03:32:24 | 002,228,224 | ---- | C] () -- C:\Windows\System32\drivers\athr.sys
[2011.04.12 02:38:43 | 000,175,360 | ---- | C] () -- C:\Windows\System32\drivers\vmbus.sys
[2011.04.12 02:38:43 | 000,062,464 | ---- | C] () -- C:\Windows\System32\drivers\dmvsc.sys
[2011.04.12 02:38:43 | 000,028,032 | ---- | C] () -- C:\Windows\System32\drivers\storvsc.sys
[2011.04.12 02:38:42 | 000,040,704 | ---- | C] () -- C:\Windows\System32\drivers\vmstorfl.sys
[2011.04.12 02:38:42 | 000,017,920 | ---- | C] () -- C:\Windows\System32\drivers\VMBusHID.sys
[2011.04.12 02:38:42 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\vms3cap.sys
[2011.04.12 02:30:05 | 000,643,866 | ---- | C] () -- C:\Windows\System32\perfh007.dat
[2011.04.12 02:30:05 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat
[2011.04.12 02:30:05 | 000,126,394 | ---- | C] () -- C:\Windows\System32\perfc007.dat
[2011.04.12 02:30:05 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat
[2010.11.20 22:29:49 | 000,133,632 | ---- | C] () -- C:\Windows\System32\drivers\rdpdr.sys
[2010.11.20 22:29:26 | 000,388,096 | ---- | C] () -- C:\Windows\System32\drivers\csc.sys
[2010.11.20 22:29:26 | 000,194,800 | ---- | C] () -- C:\Windows\System32\drivers\fvevol.sys
[2010.11.20 22:29:26 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2010.11.20 22:29:24 | 000,173,440 | ---- | C] () -- C:\Windows\System32\drivers\rdyboost.sys
[2010.11.20 22:29:24 | 000,115,712 | ---- | C] () -- C:\Windows\System32\drivers\mrxdav.sys
[2010.11.20 22:29:24 | 000,052,224 | ---- | C] () -- C:\Windows\System32\drivers\TsUsbFlt.sys
[2010.11.20 22:29:21 | 000,190,976 | ---- | C] () -- C:\Windows\System32\drivers\ks.sys
[2010.11.20 22:29:20 | 000,508,904 | ---- | C] () -- C:\Windows\System32\winload.exe
[2010.11.20 22:29:20 | 000,187,776 | ---- | C] () -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2010.11.20 22:29:20 | 000,117,760 | ---- | C] () -- C:\Windows\System32\drivers\rmcast.sys
[2010.11.20 22:29:20 | 000,108,544 | ---- | C] () -- C:\Windows\System32\drivers\tunnel.sys
[2010.11.20 22:29:20 | 000,063,488 | ---- | C] () -- C:\Windows\System32\drivers\wanarp.sys
[2010.11.20 22:29:20 | 000,048,640 | ---- | C] () -- C:\Windows\System32\drivers\ndproxy.sys
[2010.11.20 22:29:20 | 000,026,624 | ---- | C] () -- C:\Windows\System32\drivers\scfilter.sys
[2010.11.20 22:29:20 | 000,007,168 | ---- | C] () -- C:\Windows\System32\kbdlk41a.dll
[2010.11.20 22:29:20 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDPO.DLL
[2010.11.20 22:29:20 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDNEPR.DLL
[2010.11.20 22:29:20 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDINBEN.DLL
[2010.11.20 22:29:20 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDTURME.DLL
[2010.11.20 22:29:20 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDMON.DLL
[2010.11.20 22:29:20 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDMAORI.DLL
[2010.11.20 22:29:20 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDBLR.DLL
[2010.11.20 22:29:20 | 000,005,632 | ---- | C] () -- C:\Windows\System32\KBDGEO.DLL
[2010.11.20 22:29:19 | 000,242,688 | ---- | C] () -- C:\Windows\System32\drivers\rdbss.sys
[2010.11.20 22:29:19 | 000,213,504 | ---- | C] () -- C:\Windows\System32\rdpdd.dll
[2010.11.20 22:29:19 | 000,194,432 | ---- | C] () -- C:\Windows\System32\halmacpi.dll
[2010.11.20 22:29:19 | 000,194,432 | ---- | C] () -- C:\Windows\System32\hal.dll
[2010.11.20 22:29:19 | 000,137,088 | ---- | C] () -- C:\Windows\System32\halacpi.dll
[2010.11.20 22:29:19 | 000,118,784 | ---- | C] () -- C:\Windows\System32\drivers\ndiswan.sys
[2010.11.20 22:29:19 | 000,007,168 | ---- | C] () -- C:\Windows\System32\KBDSG.DLL
[2010.11.20 22:29:19 | 000,007,168 | ---- | C] () -- C:\Windows\System32\KBDCZ1.DLL
[2010.11.20 22:29:19 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDTUQ.DLL
[2010.11.20 22:29:19 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDGR1.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDUGHR1.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDTAJIK.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDLT1.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDINTEL.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDINTAM.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDINORI.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDINMAR.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDINKAN.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDINHIN.DLL
[2010.11.20 22:29:19 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDBASH.DLL
[2010.11.20 22:29:13 | 000,018,432 | ---- | C] () -- C:\Windows\System32\drivers\tdpipe.sys
[2010.11.20 22:29:13 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDTUF.DLL
[2010.11.20 22:29:12 | 000,712,576 | ---- | C] () -- C:\Windows\System32\drivers\ndis.sys
[2010.11.20 22:29:12 | 000,513,536 | ---- | C] () -- C:\Windows\System32\drivers\http.sys
[2010.11.20 22:29:12 | 000,246,784 | ---- | C] () -- C:\Windows\System32\drivers\udfs.sys
[2010.11.20 22:29:12 | 000,140,160 | ---- | C] () -- C:\Windows\System32\drivers\scsiport.sys
[2010.11.20 22:29:12 | 000,021,504 | ---- | C] () -- C:\Windows\System32\drivers\tdi.sys
[2010.11.20 22:29:12 | 000,006,656 | ---- | C] () -- C:\Windows\System32\drivers\RDPCDD.sys
[2010.11.20 22:29:12 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDGKL.DLL
[2010.11.20 22:29:12 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDBULG.DLL
[2010.11.20 22:29:11 | 000,690,680 | ---- | C] () -- C:\Windows\System32\ci.dll
[2010.11.20 22:29:11 | 000,078,208 | ---- | C] () -- C:\Windows\System32\drivers\mountmgr.sys
[2010.11.20 22:29:11 | 000,035,328 | ---- | C] () -- C:\Windows\System32\drivers\tcpipreg.sys
[2010.11.20 22:29:11 | 000,006,656 | ---- | C] () -- C:\Windows\System32\KBDSF.DLL
[2010.11.20 22:29:11 | 000,006,144 | ---- | C] () -- C:\Windows\System32\KBDUS.DLL
[2010.11.20 22:29:08 | 000,187,904 | ---- | C] () -- C:\Windows\System32\drivers\netbt.sys
[2010.11.20 22:29:08 | 000,132,224 | ---- | C] () -- C:\Windows\System32\drivers\WUDFRd.sys
[2010.11.20 22:29:08 | 000,092,672 | ---- | C] () -- C:\Windows\System32\drivers\WUDFPf.sys
[2010.11.20 22:29:08 | 000,031,232 | ---- | C] () -- C:\Windows\System32\drivers\tssecsrv.sys
[2010.11.20 22:29:07 | 000,728,448 | ---- | C] () -- C:\Windows\System32\drivers\dxgkrnl.sys
[2010.11.20 22:29:07 | 000,107,520 | ---- | C] () -- C:\Windows\System32\cdd.dll
[2010.11.20 22:29:07 | 000,078,336 | ---- | C] () -- C:\Windows\System32\drivers\dfsc.sys
[2010.11.20 22:29:07 | 000,074,752 | ---- | C] () -- C:\Windows\System32\drivers\tdx.sys
[2010.11.20 22:29:07 | 000,046,080 | ---- | C] () -- C:\Windows\System32\drivers\ndisuio.sys
[2010.11.20 22:29:07 | 000,026,624 | ---- | C] () -- C:\Windows\System32\RDPREFDD.dll
[2010.11.20 22:29:06 | 000,240,000 | ---- | C] () -- C:\Windows\System32\drivers\netio.sys
[2010.11.20 22:29:06 | 000,121,856 | ---- | C] () -- C:\Windows\System32\RDPENCDD.dll
[2010.11.20 22:29:04 | 000,520,064 | ---- | C] () -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2010.11.20 22:29:04 | 000,050,176 | ---- | C] () -- C:\Windows\System32\drivers\appid.sys
[2010.11.20 22:29:04 | 000,014,208 | ---- | C] () -- C:\Windows\System32\drivers\hwpolicy.sys
[2010.11.20 22:29:03 | 000,304,128 | ---- | C] () -- C:\Windows\System32\drivers\HdAudio.sys
[2010.11.20 22:29:03 | 000,274,304 | ---- | C] () -- C:\Windows\System32\drivers\acpi.sys
[2010.11.20 22:29:03 | 000,245,632 | ---- | C] () -- C:\Windows\System32\drivers\volsnap.sys
[2010.11.20 22:29:03 | 000,233,344 | ---- | C] () -- C:\Windows\System32\drivers\msiscsi.sys
[2010.11.20 22:29:03 | 000,164,864 | ---- | C] () -- C:\Windows\System32\drivers\1394ohci.sys
[2010.11.20 22:29:03 | 000,160,128 | ---- | C] () -- C:\Windows\System32\drivers\vhdmp.sys
[2010.11.20 22:29:03 | 000,153,984 | ---- | C] () -- C:\Windows\System32\drivers\pci.sys
[2010.11.20 22:29:03 | 000,146,432 | ---- | C] () -- C:\Windows\System32\drivers\usbvideo.sys
[2010.11.20 22:29:03 | 000,132,992 | ---- | C] () -- C:\Windows\System32\drivers\ataport.sys
[2010.11.20 22:29:03 | 000,130,432 | ---- | C] () -- C:\Windows\System32\drivers\mpio.sys
[2010.11.20 22:29:03 | 000,116,096 | ---- | C] () -- C:\Windows\System32\drivers\msdsm.sys
[2010.11.20 22:29:03 | 000,108,544 | ---- | C] () -- C:\Windows\System32\drivers\hdaudbus.sys
[2010.11.20 22:29:03 | 000,108,544 | ---- | C] () -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 22:29:03 | 000,085,376 | ---- | C] () -- C:\Windows\System32\drivers\sbp2port.sys
[2010.11.20 22:29:03 | 000,065,536 | ---- | C] () -- C:\Windows\System32\drivers\IPMIDrv.sys
[2010.11.20 22:29:03 | 000,055,808 | ---- | C] () -- C:\Windows\System32\drivers\hidclass.sys
[2010.11.20 22:29:03 | 000,053,120 | ---- | C] () -- C:\Windows\System32\drivers\volmgr.sys
[2010.11.20 22:29:03 | 000,053,120 | ---- | C] () -- C:\Windows\System32\drivers\termdd.sys
[2010.11.20 22:29:03 | 000,039,936 | ---- | C] () -- C:\Windows\System32\drivers\umbus.sys
[2010.11.20 22:29:03 | 000,031,232 | ---- | C] () -- C:\Windows\System32\drivers\CompositeBus.sys
[2010.11.20 22:29:03 | 000,028,160 | ---- | C] () -- C:\Windows\System32\drivers\kbdhid.sys
[2010.11.20 22:29:03 | 000,028,032 | ---- | C] () -- C:\Windows\System32\drivers\msahci.sys
[2010.11.20 22:29:03 | 000,027,264 | ---- | C] () -- C:\Windows\System32\drivers\TsUsbGD.sys
[2010.11.20 22:29:03 | 000,024,064 | ---- | C] () -- C:\Windows\System32\drivers\hidusb.sys
[2010.11.20 22:29:03 | 000,012,800 | ---- | C] () -- C:\Windows\System32\drivers\sffp_sd.sys
[2010.11.20 22:29:03 | 000,010,240 | ---- | C] () -- C:\Windows\System32\drivers\acpipmi.sys

========== ZeroAccess Check ==========

[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-1127850057-1638504395-2275071045-1000\$9579f6821fdb988c8b83cc51a3e96cb6\n. -- File not found

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\$Recycle.Bin\S-1-5-18\$9579f6821fdb988c8b83cc51a3e96cb6\n. -- File not found
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012.07.24 20:55:59 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\14001.002
[2012.07.24 20:55:59 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\14001.003
[2012.02.17 19:11:33 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\benibela
[2012.11.08 18:07:45 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\Dropbox
[2012.02.26 12:17:41 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\inkscape
[2012.07.23 11:19:39 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\kock
[2012.02.26 14:28:04 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\LyX2.0
[2012.02.26 11:13:53 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\Mestrelab Research S.L
[2012.10.30 20:36:26 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\Samsung
[2012.07.24 09:34:16 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\UAs
[2012.07.23 11:19:41 | 000,000,000 | ---D | M] -- C:\Users\Simon\AppData\Roaming\xmldm

========== Purity Check ==========



< End of report >

Malwarebytes Anti-Malware (Test) 1.65.1.1000
www.malwarebytes.org

Datenbank Version: v2012.11.08.09

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Simon :: SIMON-PC [Administrator]

Schutz: Deaktiviert

08.11.2012 21:12:40
mbam-log-2012-11-08 (22-09-01).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 379913
Laufzeit: 55 Minute(n), 51 Sekunde(n)

Infizierte Speicherprozesse: 1
c:\windows\installer\{94902ddf-afa3-c9e1-ec6f-47eecc4f42fb}\syshost.exe (Backdoor.Agent) -> 2212 -> Keine Aktion durchgeführt.

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|syshost32 (Backdoor.Agent) -> Daten: C:\Windows\Installer\{94902DDF-AFA3-C9E1-EC6F-47EECC4F42FB}\syshost.exe -> Keine Aktion durchgeführt.

Infizierte Dateiobjekte der Registrierung: 2
HKCR\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32| (Trojan.0Access) -> Bösartig: (C:\$Recycle.Bin\S-1-5-18\$9579f6821fdb988c8b83cc51a3e96cb6\n.) Gut: (fastprox.dll) -> Keine Aktion durchgeführt.
HKCR\CLSID\{FBEB8A05-BEEE-4442-804E-409D6C4515E9}\InProcServer32| (Trojan.0Access) -> Bösartig: (C:\$Recycle.Bin\S-1-5-21-1127850057-1638504395-2275071045-1000\$9579f6821fdb988c8b83cc51a3e96cb6\n.) Gut: (shell32.dll) -> Keine Aktion durchgeführt.

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 11
C:\$Recycle.Bin\S-1-5-18\$9579f6821fdb988c8b83cc51a3e96cb6\n (Trojan.0Access) -> Keine Aktion durchgeführt.
C:\$Recycle.Bin\S-1-5-18\$9579f6821fdb988c8b83cc51a3e96cb6\U\00000001.@ (Trojan.0Access) -> Keine Aktion durchgeführt.
C:\$Recycle.Bin\S-1-5-18\$9579f6821fdb988c8b83cc51a3e96cb6\U\80000000.@ (Trojan.0Access) -> Keine Aktion durchgeführt.
C:\$Recycle.Bin\S-1-5-18\$9579f6821fdb988c8b83cc51a3e96cb6\U\800000cb.@ (Trojan.0Access) -> Keine Aktion durchgeführt.
C:\$Recycle.Bin\S-1-5-21-1127850057-1638504395-2275071045-1000\$9579f6821fdb988c8b83cc51a3e96cb6\n (Trojan.0Access) -> Keine Aktion durchgeführt.
c:\windows\syshost.exe (Trojan.Downloader) -> Keine Aktion durchgeführt.
c:\users\simon\appdata\local\temp\syshost.exe (Spyware.Agent) -> Keine Aktion durchgeführt.
c:\windows\serviceprofiles\localservice\appdata\local\temp\syshost.exe (Spyware.Agent) -> Keine Aktion durchgeführt.
c:\windows\serviceprofiles\networkservice\appdata\local\temp\syshost.exe (Spyware.Agent) -> Keine Aktion durchgeführt.
c:\windows\temp\syshost.exe (Spyware.Agent) -> Keine Aktion durchgeführt.
c:\windows\installer\{94902ddf-afa3-c9e1-ec6f-47eecc4f42fb}\syshost.exe (Backdoor.Agent) -> Keine Aktion durchgeführt.

(Ende)

Wäre super wenn mir jemand helfen kann, vermutlich werde ich um eine Sicherung, Formatierung und Neuinstallation von windows nicht herum kommen oder?

 

Themen zu Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren
adobe, antivir, autorun, avira, backdoor.agent, desktop, document, explorer, format, google, hdaudio.sys, malware, microsoft, mozilla, online banking, opera, plug-in, programme, prozesse, recycle.bin, registry, safer networking, spyware.agent, super, taskmanager, trojan.0access, trojan.downloader, usbvideo.sys, windows


« search.nu hat alle browser befallen. | mit system progressive protection infiziert »


Ähnliche Themen: Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren


  1. Antivir Echtzeitscanner lässt sich nicht aktivieren
    Log-Analyse und Auswertung - 13.01.2015 (19)
  2. Avira antivir guard lässt sich nicht aktivieren / keine Systemwiederherstellung möglich
    Antiviren-, Firewall- und andere Schutzprogramme - 24.09.2014 (25)
  3. Antivir Echtzeitscanner lässt sich nicht aktivieren + Trojaner 'TR/Rootkit.Gen'
    Log-Analyse und Auswertung - 04.06.2014 (15)
  4. Win XP Malware Funde, Antivir lässt sich nicht mehr aktivieren
    Log-Analyse und Auswertung - 03.04.2014 (15)
  5. Antivir lässt sich nicht mehr aktivieren - wprotectmanager.exe auf dem Rechner
    Log-Analyse und Auswertung - 01.04.2014 (9)
  6. HomeTab - TBUpdater.dll - Fehlermeldung / Antivir lässt sich nicht mehr aktivieren
    Plagegeister aller Art und deren Bekämpfung - 22.10.2013 (22)
  7. AntiVir lässt sich nicht Updaten, Guard deaktiviert!
    Log-Analyse und Auswertung - 19.01.2011 (7)
  8. Antivir lässt sich nicht mehr updaten
    Log-Analyse und Auswertung - 25.07.2010 (1)
  9. Antivir guard lässt sich nicht aktivieren!
    Antiviren-, Firewall- und andere Schutzprogramme - 19.03.2010 (11)
  10. Antivir lässt sich nicht mehr Updaten, Trojaner?
    Log-Analyse und Auswertung - 08.11.2009 (1)
  11. Antivir lässt sich nicht updaten
    Log-Analyse und Auswertung - 31.10.2009 (5)
  12. Antivir lässt sich nicht updaten!
    Log-Analyse und Auswertung - 02.10.2009 (6)
  13. AVGuard lässt sich nicht aktivieren / updaten
    Log-Analyse und Auswertung - 26.07.2009 (6)
  14. AntiVir Guard lässt sich nicht aktivieren!
    Antiviren-, Firewall- und andere Schutzprogramme - 24.07.2009 (29)
  15. Antivir lässt sich nicht aktivieren, und der Rechner fährt immer wieder runter!
    Antiviren-, Firewall- und andere Schutzprogramme - 10.12.2008 (0)
  16. Antivir lässt sich nicht updaten
    Log-Analyse und Auswertung - 29.03.2006 (13)
  17. AntiVir lässt sich nicht mehr updaten...Hiiilfee!!
    Antiviren-, Firewall- und andere Schutzprogramme - 06.12.2004 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren - Hallo, wie im Titel bereits geschrieben, habe ich gestern Abend Musik im Hintergrund gehört. Es war etwas bekanntes und Frauenstimmen haben Karaoke-mäßig im Hintergrund mitgesungen. (es waren auf jeden fall - Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren...
Archiv
Du betrachtest: Musik im Hintergrund/antivir lässt sich nicht updaten, aktivieren auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131