Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
white screen abgesicherter modus

white screen abgesicherter modus


Plagegeister aller Art und deren Bekämpfung: white screen abgesicherter modus

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 03.03.2013, 08:27   #1
maxhendrix
 
white screen abgesicherter modus - Standard

white screen abgesicherter modus


Hi Leute.
Ich wollte eig. zu einem schon erstellten thread mein Problem äußern, aber irgendwie habe ich dazu kein Recht.
Ich hab mir einen Trojaner eingefangen, und komme nicht auf den Normalen Desktop als auch auf den im Abgesicherten Modus. Ich hatte in eurem Forum schon etwas recherchiert und bin gerade bei dem Schritt wo mir bei OTL die fix.txt fehlt. Also hab Ready-to-go gebrannt und bin mit diesem Programm auf diesen Veränderten Desktop gekommen.

Wie kann ich eig. von den Auszügen ( OTL.txt ), die ich bekommen habe, mir meine fix.txt Datei zusammenbasteln? Denn diese brauche ich nun.

Mfg Max

Code:
ATTFilter
y OldTimer - Version 3.1.48.0     Folder = X:\Programs\OTLPE
64bit-Windows 7 Ultimate  (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 92.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files (x86)
Drive C: | 100.00 Mb Total Space | 75.70 Mb Free Space | 75.70% Space Free | Partition Type: NTFS
Drive D: | 232.79 Gb Total Space | 28.36 Gb Free Space | 12.18% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - [2012/08/16 06:44:16 | 000,436,344 | ---- | M] () [Auto] -- D:\Windows\System32\dmwu.exe -- (WebOptimizer)
SRV:64bit: - [2009/07/13 20:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2006/12/11 06:12:22 | 000,566,192 | ---- | M] ( ) [On_Demand] -- D:\Windows\System32\lxcrcoms.exe -- (lxcr_device)
SRV - [2013/02/27 10:26:44 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/02/05 10:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand] -- D:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService)
SRV - [2011/09/08 11:08:40 | 002,932,224 | ---- | M] (PACE Anti-Piracy, Inc.) [Auto] -- D:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe -- (PaceLicenseDServices)
SRV - [2011/08/17 04:04:36 | 000,247,872 | ---- | M] () [Auto] -- D:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe -- (ICQ Service)
SRV - [2010/03/18 06:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 09:21:00 | 001,632,776 | ---- | M] (M-Audio) [Auto] -- D:\Program Files (x86)\M-Audio\Axiom\AudioDevMon.exe -- (AxiomAudioDevMon)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled] -- D:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2006/12/11 06:12:06 | 000,537,520 | ---- | M] ( ) [On_Demand] -- D:\Windows\SysWow64\lxcrcoms.exe -- (lxcr_device)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2010/09/23 13:18:34 | 000,834,544 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- D:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/02/19 09:20:54 | 000,137,736 | ---- | M] (M-Audio) [Kernel | On_Demand] -- D:\Windows\System32\drivers\MAudioAxiom.sys -- (AXIOM)
DRV:64bit: - [2009/06/19 21:09:57 | 000,054,272 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- D:\Windows\System32\drivers\L1E62x64.sys -- (L1E) NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20)
DRV:64bit: - [2009/06/10 15:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand] -- D:\Windows\System32\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- D:\Windows\system32\DRIVERS\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- D:\Windows\system32\DRIVERS\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2007/10/24 03:47:04 | 000,029,432 | ---- | M] (SIA Syncrosoft) [Kernel | On_Demand] -- D:\Windows\System32\drivers\synUSB64.sys -- (SynUSB64)
DRV:64bit: - [2005/03/28 18:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand] -- D:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2010/01/29 04:40:16 | 000,115,600 | ---- | M] (EZB Systems, Inc.) [File_System | System] -- D:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys -- (ISODrive)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
IE - HKU\Max_Hendrix_ON_D\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://start.icq.com/ [binary data]
IE - HKU\Max_Hendrix_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2269050
IE - HKU\Max_Hendrix_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKU\Max_Hendrix_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKU\Max_Hendrix_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = DE 36 21 0E 88 23 CB 01  [binary data]
IE - HKU\Max_Hendrix_ON_D\..\URLSearchHook:  - Reg Error: Key error. File not found
IE - HKU\Max_Hendrix_ON_D\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - Reg Error: Key error. File not found
IE - HKU\Max_Hendrix_ON_D\..\URLSearchHook: {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - Reg Error: Key error. File not found
IE - HKU\Max_Hendrix_ON_D\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - Reg Error: Key error. File not found
IE - HKU\Max_Hendrix_ON_D\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - Reg Error: Key error. File not found
IE - HKU\Max_Hendrix_ON_D\..\URLSearchHook: {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - Reg Error: Key error. File not found
IE - HKU\Max_Hendrix_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\System32\Macromed\Flash\NPSWF64_11_6_602_171.dll ()
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin: D:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin: D:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: D:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll (McAfee, Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: D:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3: D:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9: D:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@zylom.com/ZylomGamesPlayer: D:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
 
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\PROGRAM FILES\WEB ASSISTANT\FIREFOX
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2011/08/08 09:41:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2011/08/08 09:41:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\Program Files\Web Assistant\Firefox
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\webbooster@iminent.com: C:\Program Files (x86)\Iminent\webbooster@iminent.com [2012/05/22 12:47:07 | 000,000,000 | ---D | M]
 
[2012/08/03 15:13:54 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files (x86)\Mozilla Firefox\extensions
[2010/08/04 17:44:12 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- D:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/08/31 09:33:24 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2009/07/02 04:19:28 | 000,102,400 | ---- | M] (Zylom) -- D:\Program Files (x86)\mozilla firefox\plugins\npzylomgamesplayer.dll
[2011/04/13 14:58:55 | 000,002,423 | ---- | M] () -- D:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2012/04/27 06:34:14 | 000,002,157 | ---- | M] () -- D:\Program Files (x86)\mozilla firefox\searchplugins\SearchTheWeb.xml
 
O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2:64bit: - BHO: (Web Assistant) - {336D0C35-8A85-403a-B9D2-65C292C39087} -  File not found
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg64.dll (Google Inc.)
O2 - BHO: (ICQ Sparberater) - {0766C1B9-B2DC-46E5-8934-4F3D6B42B1BD} - D:\Program Files (x86)\icq\Internet Explorer\icq.dll (solute gmbh)
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - D:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - D:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - D:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.6.4.6\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (Web Assistant) - {336D0C35-8A85-403a-B9D2-65C292C39087} -  File not found
O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - D:\Program Files (x86)\IMinent Toolbar\tbcore3.dll ()
O2 - BHO: (Incredibar.com Helper Object) - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - D:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll (Montera Technologeis LTD)
O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No CLSID value found.
O2 - BHO: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - D:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - D:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (Iminent)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (softonic-de3 Toolbar) - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - D:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - D:\Program Files (x86)\MSN Toolbar\Platform\6.3.2348.0\npwinext.dll (Microsoft Corporation)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - D:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - D:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - D:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (@C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2348.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - D:\Program Files (x86)\MSN Toolbar\Platform\6.3.2348.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - D:\Program Files (x86)\IMinent Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - D:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (softonic-de3 Toolbar) - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - D:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - D:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - D:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Incredibar Toolbar) - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - D:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll (Montera Technologeis LTD)
O3:64bit: - HKU\Max_Hendrix_ON_D\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\Max_Hendrix_ON_D\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\Max_Hendrix_ON_D\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - D:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll (Conduit Ltd.)
O3 - HKU\Max_Hendrix_ON_D\..\Toolbar\WebBrowser: (softonic-de3 Toolbar) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - D:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
O3 - HKU\Max_Hendrix_ON_D\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - D:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4:64bit: - HKLM..\Run: [EzPrint] D:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe (Lexmark International Inc.)
O4:64bit: - HKLM..\Run: [lxcrmon.exe] D:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [BabylonToolbar] D:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe (Babylon Ltd.)
O4 - HKLM..\Run: [ControlCenter3] D:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [Iminent] D:\Program Files (x86)\Iminent\Iminent.exe (Iminent)
O4 - HKLM..\Run: [IminentMessenger] D:\Program Files (x86)\Iminent\Iminent.Messengers.exe (Iminent)
O4 - HKLM..\Run: [SweetIM] D:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [Sweetpacks Communicator] D:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [WinampAgent] D:\Program Files (x86)\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKU\LocalService_ON_D..\Run: [Sidebar] D:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\Max_Hendrix_ON_D..\Run: [{F6B703FF-8F79-11DF-887A-806E6F6E6963}]  File not found
O4 - HKU\Max_Hendrix_ON_D..\Run: [DAEMON Tools Lite] D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\Max_Hendrix_ON_D..\Run: [firefox.exe]  File not found
O4 - HKU\Max_Hendrix_ON_D..\Run: [ICQ] D:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O4 - HKU\Max_Hendrix_ON_D..\Run: [Overwolf]  File not found
O4 - HKU\Max_Hendrix_ON_D..\Run: [PlayNC Launcher]  File not found
O4 - HKU\Max_Hendrix_ON_D..\Run: [vasja]  File not found
O4 - HKU\NetworkService_ON_D..\Run: [Sidebar] D:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_D..\RunOnce: [mctadmin]  File not found
O4 - HKU\NetworkService_ON_D..\RunOnce: [mctadmin]  File not found
O4 - Startup: Error locating startup folders.
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - D:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - D:\Program Files (x86)\ICQ7.6\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 -  File not found
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000011 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 -  File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 -  File not found
O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:64bit: - .DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15:64bit: - .DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15:64bit: - .DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15:64bit: - .DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15:64bit: - LocalService_ON_D\..Trusted Domains: clonewarsadventures.com ([]* in )
O15:64bit: - LocalService_ON_D\..Trusted Domains: freerealms.com ([]* in )
O15:64bit: - LocalService_ON_D\..Trusted Domains: soe.com ([]* in )
O15:64bit: - LocalService_ON_D\..Trusted Domains: sony.com ([]* in )
O15:64bit: - Max_Hendrix_ON_D\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15:64bit: - Max_Hendrix_ON_D\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15:64bit: - Max_Hendrix_ON_D\..Trusted Domains: soe.com ([]* in Trusted sites)
O15:64bit: - Max_Hendrix_ON_D\..Trusted Domains: sony.com ([]* in Trusted sites)
O15:64bit: - NetworkService_ON_D\..Trusted Domains: clonewarsadventures.com ([]* in )
O15:64bit: - NetworkService_ON_D\..Trusted Domains: freerealms.com ([]* in )
O15:64bit: - NetworkService_ON_D\..Trusted Domains: soe.com ([]* in )
O15:64bit: - NetworkService_ON_D\..Trusted Domains: sony.com ([]* in )
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.220.18.8 89.246.64.8
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKU\Max_Hendrix_ON_D Winlogon: Shell - (C:\Users\Max Hendrix\AppData\Roaming\ldr.mcb) - D:\Users\Max Hendrix\AppData\Roaming\ldr.mcb ()
O20 - HKU\Max_Hendrix_ON_D Winlogon: Shell - (explorer.exe) - D:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013/02/22 19:58:29 | 000,000,000 | ---D | C] -- D:\Users\Max Hendrix\AppData\Roaming\BabSolution
[2013/02/22 09:19:12 | 002,527,520 | ---- | C] (BioWare) -- D:\Users\Max Hendrix\Desktop\launcher.exe
[2013/02/21 09:32:49 | 000,000,000 | ---D | C] -- D:\Users\Max Hendrix\AppData\Local\Microsoft Games
[2013/02/18 11:44:16 | 000,000,000 | ---D | C] -- D:\Users\Max Hendrix\AppData\Local\SCE
[2013/02/18 11:43:49 | 000,527,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\XAudio2_7.dll
[2013/02/18 11:43:49 | 000,518,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XAudio2_7.dll
[2013/02/18 11:43:49 | 000,077,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XAPOFX1_5.dll
[2013/02/18 11:43:49 | 000,074,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\XAPOFX1_5.dll
[2013/02/18 11:43:48 | 000,239,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\xactengine3_7.dll
[2013/02/18 11:43:48 | 000,176,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\xactengine3_7.dll
[2013/02/18 11:43:46 | 002,526,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\D3DCompiler_43.dll
[2013/02/18 11:43:46 | 002,106,216 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\D3DCompiler_43.dll
[2013/02/18 11:43:42 | 001,907,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3dcsx_43.dll
[2013/02/18 11:43:42 | 001,868,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\d3dcsx_43.dll
[2013/02/18 11:43:40 | 000,276,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3dx11_43.dll
[2013/02/18 11:43:40 | 000,248,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\d3dx11_43.dll
[2013/02/18 11:43:38 | 000,511,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3dx10_43.dll
[2013/02/18 11:43:38 | 000,470,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\d3dx10_43.dll
[2013/02/18 11:43:36 | 002,401,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\D3DX9_43.dll
[2013/02/18 11:43:36 | 001,998,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\SysWow64\D3DX9_43.dll
[2013/02/18 03:11:36 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audiograbber
[2013/02/18 03:11:19 | 000,000,000 | ---D | C] -- D:\Program Files (x86)\Audiograbber
[2013/02/18 03:07:32 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2011/01/13 22:33:52 | 000,413,696 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrinpa.dll
[2011/01/13 22:33:52 | 000,397,312 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcriesc.dll
[2011/01/13 22:33:51 | 000,643,072 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrpmui.dll
[2011/01/13 22:33:49 | 001,224,704 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrserv.dll
[2011/01/13 22:33:49 | 000,991,232 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrusb1.dll
[2011/01/13 22:33:48 | 000,585,728 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrlmpm.dll
[2011/01/13 22:33:48 | 000,181,168 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrppls.exe
[2011/01/13 22:33:48 | 000,163,840 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrprox.dll
[2011/01/13 22:33:48 | 000,094,208 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrpplc.dll
[2011/01/13 22:33:47 | 000,537,520 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrcoms.exe
[2011/01/13 22:33:47 | 000,421,888 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrcomm.dll
[2011/01/13 22:33:47 | 000,385,968 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrih.exe
[2011/01/13 22:33:46 | 000,684,032 | ---- | C] ( ) -- D:\Windows\SysWow64\lxcrcomc.dll
[1 D:\Windows\*.tmp files -> D:\Windows\*.tmp -> ]
[1 D:\Users\Max Hendrix\Desktop\*.tmp files -> D:\Users\Max Hendrix\Desktop\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013/03/02 12:53:12 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2013/03/02 12:52:56 | 000,014,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/03/02 12:52:56 | 000,014,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/03/02 12:51:54 | 3220,578,304 | -HS- | M] () -- D:\hiberfil.sys
[2013/02/28 20:25:00 | 000,000,884 | ---- | M] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2013/02/28 19:44:23 | 000,001,116 | ---- | M] () -- D:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/02/28 19:19:05 | 000,001,120 | ---- | M] () -- D:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/02/28 12:30:59 | 000,000,430 | ---- | M] () -- D:\Users\Max Hendrix\Desktop\piano song refrian.mid
[2013/02/27 10:26:44 | 000,691,568 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\SysWow64\FlashPlayerApp.exe
[2013/02/27 10:26:44 | 000,071,024 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/02/23 07:25:16 | 000,653,928 | ---- | M] () -- D:\Windows\System32\perfh007.dat
[2013/02/23 07:25:16 | 000,615,810 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2013/02/23 07:25:16 | 000,129,800 | ---- | M] () -- D:\Windows\System32\perfc007.dat
[2013/02/23 07:25:16 | 000,106,190 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2013/02/23 07:12:40 | 000,044,742 | ---- | M] () -- D:\Users\Max Hendrix\Desktop\Exmatrikulationsantrag_SSZ.pdf
[2013/02/22 19:58:29 | 000,009,808 | ---- | M] () -- D:\Users\Max Hendrix\AppData\Roaming\BabMaint.exe
[2013/02/22 13:35:54 | 000,001,861 | ---- | M] () -- D:\Users\Max Hendrix\Desktop\bassline für klassisch elektro für jena.mid
[2013/02/18 11:42:40 | 000,002,526 | ---- | M] () -- D:\Users\Max Hendrix\Desktop\PlanetSide 2 PSG.lnk
[2013/02/18 10:30:23 | 000,002,279 | ---- | M] () -- D:\Users\Max Hendrix\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/02/18 03:15:26 | 000,000,034 | ---- | M] () -- D:\Windows\cdplayer.ini
[2013/02/18 03:11:41 | 000,001,123 | ---- | M] () -- D:\Users\Public\Desktop\Audiograbber.lnk
[2013/02/18 03:11:36 | 000,000,000 | ---D | M] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audiograbber
[2013/02/18 03:07:32 | 000,002,046 | ---- | M] () -- D:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2013/02/18 03:07:32 | 000,002,046 | ---- | M] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2013/02/18 03:07:32 | 000,000,000 | ---D | M] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2013/02/18 03:07:31 | 000,000,000 | R--D | M] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
[2013/02/18 02:31:07 | 000,000,000 | ---D | M] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[1 D:\Windows\*.tmp files -> D:\Windows\*.tmp -> ]
[1 D:\Users\Max Hendrix\Desktop\*.tmp files -> D:\Users\Max Hendrix\Desktop\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013/02/28 12:30:59 | 000,000,430 | ---- | C] () -- D:\Users\Max Hendrix\Desktop\piano song refrian.mid
[2013/02/23 07:12:40 | 000,044,742 | ---- | C] () -- D:\Users\Max Hendrix\Desktop\Exmatrikulationsantrag_SSZ.pdf
[2013/02/22 19:58:29 | 000,009,808 | ---- | C] () -- D:\Users\Max Hendrix\AppData\Roaming\BabMaint.exe
[2013/02/22 13:35:54 | 000,001,861 | ---- | C] () -- D:\Users\Max Hendrix\Desktop\bassline für klassisch elektro für jena.mid
[2013/02/18 11:42:40 | 000,002,556 | ---- | C] () -- D:\Users\Max Hendrix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
[2013/02/18 11:42:40 | 000,002,526 | ---- | C] () -- D:\Users\Max Hendrix\Desktop\PlanetSide 2 PSG.lnk
[2013/02/18 03:15:26 | 000,000,034 | ---- | C] () -- D:\Windows\cdplayer.ini
[2013/02/18 03:11:41 | 000,001,123 | ---- | C] () -- D:\Users\Public\Desktop\Audiograbber.lnk
[2013/02/18 03:07:32 | 000,002,046 | ---- | C] () -- D:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
[2012/11/17 09:21:06 | 000,175,104 | ---- | C] () -- D:\Users\Max Hendrix\AppData\Roaming\ldr.mcb
[2012/05/22 11:51:25 | 000,650,752 | ---- | C] () -- D:\Windows\SysWow64\xvidcore.dll
[2012/05/22 11:51:25 | 000,243,200 | ---- | C] () -- D:\Windows\SysWow64\xvidvfw.dll
[2012/04/26 17:10:20 | 000,021,840 | ---- | C] () -- D:\Windows\SysWow64\SIntfNT.dll
[2012/04/26 17:10:19 | 000,017,212 | ---- | C] () -- D:\Windows\SysWow64\SIntf32.dll
[2012/04/26 17:10:19 | 000,012,067 | ---- | C] () -- D:\Windows\SysWow64\SIntf16.dll
[2011/06/14 06:53:00 | 000,027,648 | ---- | C] () -- D:\Windows\SysWow64\AVSredirect.dll
[2011/06/14 06:40:57 | 000,850,152 | ---- | C] () -- D:\Windows\SysWow64\SpoonUninstall.exe
[2011/06/14 06:40:57 | 000,003,232 | ---- | C] () -- D:\Windows\SysWow64\SpoonUninstall-dBpoweramp m4a Codec.dat
[2011/04/09 11:55:28 | 000,179,261 | ---- | C] () -- D:\Windows\SysWow64\xlive.dll.cat
[2011/03/13 11:10:00 | 000,031,864 | ---- | C] () -- D:\Windows\maxlink.ini
[2011/03/13 11:02:42 | 000,000,425 | ---- | C] () -- D:\Windows\BRWMARK.INI
[2011/01/13 22:33:53 | 000,385,024 | ---- | C] () -- D:\Windows\SysWow64\lxcrcomx.dll
[2011/01/13 22:33:53 | 000,274,432 | ---- | C] () -- D:\Windows\SysWow64\LXCRinst.dll
[2010/08/14 21:24:19 | 000,000,032 | ---- | C] () -- D:\Windows\SysWow64\msvcsv60.dll
[2010/08/14 21:24:19 | 000,000,032 | ---- | C] () -- D:\Windows\msocreg32.dat
[2010/08/04 17:48:35 | 000,000,056 | -H-- | C] () -- D:\ProgramData\ezsidmv.dat
[2010/07/16 06:48:07 | 000,002,892 | ---- | C] () -- D:\Windows\SysWow64\audcon.sys
[2009/08/02 17:21:54 | 000,197,912 | ---- | C] () -- D:\Windows\SysWow64\physxcudart_20.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelSwedish.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelSpanish.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelPortugese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelKorean.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelJapanese.dll
[2009/08/02 17:21:52 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelGerman.dll
[2009/08/02 17:21:52 | 000,058,648 | ---- | C] () -- D:\Windows\SysWow64\AgCPanelFrench.dll
[2009/07/14 00:38:36 | 000,067,584 | --S- | C] () -- D:\Windows\bootstat.dat
[2009/07/13 21:35:51 | 000,000,741 | ---- | C] () -- D:\Windows\SysWow64\NOISE.DAT
[2009/07/13 21:34:42 | 000,215,943 | ---- | C] () -- D:\Windows\SysWow64\dssec.dat
[2009/07/13 19:10:29 | 000,043,131 | ---- | C] () -- D:\Windows\mib.bin
[2009/07/13 19:02:54 | 000,245,248 | ---- | C] () -- D:\Windows\SysWow64\DShowRdpFilter.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- D:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 18:12:11 | 000,136,192 | -HS- | C] () -- D:\Users\Max Hendrix\AppData\Roaming\skype.dat
[2009/07/13 17:25:04 | 000,197,632 | ---- | C] () -- D:\Windows\SysWow64\ir32_32.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- D:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- D:\Windows\SysWow64\mlang.dat
 
========== LOP Check ==========
 
[2012/04/06 01:52:35 | 000,000,000 | ---D | M] -- D:\ProgramData\Ableton
[2010/07/14 14:05:15 | 000,000,000 | -HSD | M] -- D:\ProgramData\Anwendungsdaten
[2012/08/03 15:08:15 | 000,000,000 | ---D | M] -- D:\ProgramData\Babylon
[2012/06/22 13:43:35 | 000,000,000 | -H-D | M] -- D:\ProgramData\Common Files
[2010/09/23 13:18:13 | 000,000,000 | ---D | M] -- D:\ProgramData\DAEMON Tools Lite
[2010/07/14 14:05:15 | 000,000,000 | -HSD | M] -- D:\ProgramData\Desktop
[2010/07/14 14:05:15 | 000,000,000 | -HSD | M] -- D:\ProgramData\Dokumente
[2011/10/10 16:36:53 | 000,000,000 | -HSD | M] -- D:\ProgramData\DSS
[2010/07/14 14:05:15 | 000,000,000 | -HSD | M] -- D:\ProgramData\Favoriten
[2012/07/27 08:14:36 | 000,000,000 | ---D | M] -- D:\ProgramData\ICQ
[2012/05/22 13:29:28 | 000,000,000 | ---D | M] -- D:\ProgramData\Iminent
[2012/07/26 14:31:41 | 000,000,000 | ---D | M] -- D:\ProgramData\Native Instrumen

 

Themen zu white screen abgesicherter modus
adobe flash player, babylontoolbar, backdoor.bot, broken.opencommand, desktop, flash player, hijack.shell.gen, iminent toolbar, microsoft, password.tool, plug-in, programm, pup.offerbundler.st, rootkit.0access, security, sweetpacks, trojan.0access, trojan.domaiq, trojan.fakealert.pex, trojan.winlock, trojaner, white, win32/adware.1clickdownload.v, win32/kryptik.avpi, win32/lockscreen.apr, win32/sirefef.ez, win32/sirefef.fd, win64/conedex.c, win64/sirefef.an, win64/sirefef.aw


« PUM.UserWLoad | Groupon AG Abrechnung - Trojaner »


Ähnliche Themen: white screen abgesicherter modus


  1. White Screen Virus
    Plagegeister aller Art und deren Bekämpfung - 03.06.2015 (5)
  2. White screen
    Plagegeister aller Art und deren Bekämpfung - 31.05.2015 (3)
  3. Lenovo White Screen
    Log-Analyse und Auswertung - 18.07.2014 (7)
  4. White Screen --> Log File
    Log-Analyse und Auswertung - 03.05.2014 (5)
  5. GVU Trojaner - abgesicherter Modus lässt sich starten, Screen aber "gesperrt"
    Plagegeister aller Art und deren Bekämpfung - 05.04.2014 (7)
  6. GVU Virus - Schwarzer Screen / USB Geräte fallen aus / Abgesicherter Modus fährt automatisch runter
    Plagegeister aller Art und deren Bekämpfung - 28.12.2013 (8)
  7. Windows 7 Home Premium nach Boot nur noch weißer Screen & Abgesicherter Modus startet sofort neu
    Plagegeister aller Art und deren Bekämpfung - 06.11.2013 (14)
  8. win XP - BKA Trojaner/Virus seit heute - White Screen + Abgesicherter Modus geblockt
    Log-Analyse und Auswertung - 03.11.2013 (13)
  9. Windows 7: BKA? Grauer Screen beim Start, abgesicherter Modus nicht möglich.
    Log-Analyse und Auswertung - 01.11.2013 (9)
  10. WIN7 (64): White screen im Normalmodus - Automatischer Reboot im abgesicherten Modus
    Log-Analyse und Auswertung - 15.08.2013 (11)
  11. White-Screen Trojaner - Was nun?
    Log-Analyse und Auswertung - 09.07.2013 (11)
  12. Trojaner, Win 7, 64 Bit, White Screen, stürzt im abgesicherten immer Modus ab - Ausweg ?
    Plagegeister aller Art und deren Bekämpfung - 22.03.2013 (13)
  13. White Screen im abgesicherten Modus
    Plagegeister aller Art und deren Bekämpfung - 25.11.2012 (6)
  14. White Screen trotz abgesicherter Modus
    Plagegeister aller Art und deren Bekämpfung - 06.09.2012 (1)
  15. Start Windows 7 white Screen dann leerer Desktop abgesichterer Modus geht normal
    Log-Analyse und Auswertung - 08.08.2012 (9)
  16. White-Screen
    Plagegeister aller Art und deren Bekämpfung - 02.04.2012 (1)
  17. Kazy.mekml.1 - im abgesicherter Modus Blue Screen -
    Plagegeister aller Art und deren Bekämpfung - 26.04.2011 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema white screen abgesicherter modus - Hi Leute. Ich wollte eig. zu einem schon erstellten thread mein Problem äußern, aber irgendwie habe ich dazu kein Recht. Ich hab mir einen Trojaner eingefangen, und komme nicht auf - white screen abgesicherter modus...
Archiv
Du betrachtest: white screen abgesicherter modus auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131