Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Weißer Bildschirm nach Windows7 Systemstart

Weißer Bildschirm nach Windows7 Systemstart


Plagegeister aller Art und deren Bekämpfung: Weißer Bildschirm nach Windows7 Systemstart

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 03.05.2013, 10:33   #5
Schludi1
 
Weißer Bildschirm nach Windows7 Systemstart - Standard

Weißer Bildschirm nach Windows7 Systemstart


Hallo,
es wurde nur das otl.txt erstellt.OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 5/3/2013 5:08:26 PM - Run 
OTLPE by OldTimer - Version 3.1.48.0     Folder = X:\Programs\OTLPE
Windows 7 Professional Service Pack 1 (Version = 6.1.7601) - Type = System
Internet Explorer (Version = 9.10.9200.16521)
Locale: 00000409 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy
 
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 88.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = D: | %SystemRoot% = D:\windows | %ProgramFiles% = D:\Program Files
Drive C: | 300.00 Mb Total Space | 263.18 Mb Free Space | 87.73% Space Free | Partition Type: NTFS
Drive D: | 280.79 Gb Total Space | 183.39 Gb Free Space | 65.31% Space Free | Partition Type: NTFS
Drive E: | 15.00 Gb Total Space | 3.68 Gb Free Space | 24.53% Space Free | Partition Type: NTFS
Drive F: | 1.99 Gb Total Space | 1.46 Gb Free Space | 73.31% Space Free | Partition Type: FAT32
Drive G: | 252.67 Mb Total Space | 152.84 Mb Free Space | 60.49% Space Free | Partition Type: FAT
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
 
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
 
========== Win32 Services (SafeList) ==========
 
SRV - File not found [Auto] --  -- (Hp.Skyroom.Windows.Service)
SRV - [2013/02/05 11:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand] -- D:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService)
SRV - [2012/08/20 05:20:49 | 001,564,368 | ---- | M] () [Auto] -- D:\Program Files\Guard-ICQ\GuardICQ.exe -- (Guard.Mail.ru)
SRV - [2012/07/13 07:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto] -- D:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/06/03 17:25:45 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/05/28 00:31:24 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- D:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/28 00:31:23 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/06/06 06:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto] -- D:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/05/04 08:14:38 | 000,081,408 | ---- | M] () [Auto] -- D:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2011/03/19 04:57:35 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/06/25 16:55:34 | 000,092,216 | ---- | M] (Hewlett-Packard Company) [Auto] -- D:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/06/14 08:39:06 | 000,090,112 | ---- | M] (Hewlett-Packard Company) [Auto] -- D:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe -- (HPDayStarterService)
SRV - [2010/06/08 10:51:06 | 000,084,808 | ---- | M] (Smith Micro Software, Inc.) [Auto] -- D:\Program Files\Hewlett-Packard\HP Connection Manager\SMManager.exe -- (SMManager)
SRV - [2010/04/05 13:40:44 | 000,354,840 | ---- | M] (Intel Corporation) [Auto] -- D:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2010/03/15 19:05:30 | 000,331,000 | ---- | M] (QUALCOMM, Inc.) [Auto] -- D:\Program Files\QUALCOMM\QDLService2k\QDLService2kHP.exe -- (QDLService2kHP) Qualcomm Gobi 2000 Download Service (HP)
SRV - [2010/01/29 00:15:24 | 000,229,458 | ---- | M] (IDT, Inc.) [Auto] -- D:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\stacsv.exe -- (STacSV)
SRV - [2009/12/02 17:23:52 | 000,209,768 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2009/12/02 17:23:46 | 000,483,688 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Program Files\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2009/11/24 21:57:20 | 000,300,808 | ---- | M] (DigitalPersona, Inc.) [Auto] -- D:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe -- (DpHost)
SRV - [2009/11/19 18:14:32 | 000,102,968 | ---- | M] (Hewlett-Packard) [Auto] -- D:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe -- (HP Power Assistant Service)
SRV - [2009/11/19 18:11:24 | 000,102,968 | ---- | M] (Hewlett-Packard) [Auto] -- D:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
SRV - [2009/11/19 13:42:42 | 000,379,904 | ---- | M] (Hewlett-Packard, Inc.) [Auto] -- D:\Program Files\Hewlett-Packard\HP SkyRoom\remote graphics sender\rgsendersvc.exe -- (rgsender)
SRV - [2009/11/18 18:17:36 | 000,036,864 | ---- | M] (Hewlett-Packard Development Company, L.P) [Auto] -- D:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe -- (HP ProtectTools Service)
SRV - [2009/11/11 11:42:40 | 000,277,096 | ---- | M] (McAfee, Inc.) [Auto] -- D:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe -- (HpFkCryptService)
SRV - [2009/11/04 17:46:40 | 002,320,920 | ---- | M] (Intel Corporation) [Auto] -- D:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009/11/04 17:46:38 | 000,268,824 | ---- | M] (Intel Corporation) [Auto] -- D:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009/10/21 21:30:46 | 001,639,728 | ---- | M] (Validity Sensors, Inc.) [Auto] -- D:\Windows\System32\vcsFPService.exe -- (vcsFPService)
SRV - [2009/09/04 16:43:38 | 000,595,232 | ---- | M] (Broadcom Corporation.) [Auto] -- D:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009/08/03 16:32:22 | 000,014,336 | ---- | M] (LSI Corporation) [Auto] -- D:\Program Files\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2009/07/13 21:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/13 21:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 21:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 21:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/03/03 06:43:08 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto] -- D:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9b219d80a8843bf8\AEstSrv.exe -- (AESTFilters)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2012/05/28 00:31:24 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System] -- D:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/05/28 00:31:24 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto] -- D:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011/10/19 11:56:15 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System] -- D:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2010/11/20 08:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 08:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 08:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 06:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 05:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 05:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 05:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/06/23 04:24:58 | 000,023,040 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand] -- D:\Windows\System32\drivers\htcnprot.sys -- (htcnprot)
DRV - [2010/06/17 10:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System] -- D:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/03/15 18:02:30 | 000,208,384 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand] -- D:\Windows\System32\drivers\qcusbnethp2k.sys -- (qcusbnethp2k) Gobi 2000 USB-NDIS miniport(03F0-251D)
DRV - [2010/03/15 18:02:30 | 000,106,880 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand] -- D:\Windows\System32\drivers\qcusbserhp2k.sys -- (qcusbserhp2k) Gobi 2000 USB Device for Legacy Serial Communication(03F0-251D)
DRV - [2010/03/15 18:02:30 | 000,005,248 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand] -- D:\Windows\System32\drivers\qcfilterhp2k.sys -- (qcfilterhp2k) Gobi 2000 USB Composite Device Filter Driver(03F0-251D)
DRV - [2010/02/27 03:18:56 | 009,957,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/01/29 00:15:24 | 000,423,424 | ---- | M] (IDT, Inc.) [Kernel | On_Demand] -- D:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2010/01/28 11:25:04 | 000,068,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2010/01/13 10:36:40 | 006,755,840 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\NETw5s32.sys -- (NETw5s32) Intel(R)
DRV - [2009/12/02 17:23:52 | 000,019,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\Sftvollh.sys -- (Sftvol)
DRV - [2009/12/02 17:23:50 | 000,021,864 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\Windows\System32\drivers\Sftredirlh.sys -- (Sftredir)
DRV - [2009/12/02 17:23:48 | 000,195,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\Sftplaylh.sys -- (Sftplay)
DRV - [2009/12/02 17:23:46 | 000,550,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\Sftfslh.sys -- (Sftfs)
DRV - [2009/11/20 23:15:18 | 000,137,728 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand] -- D:\windows\system32\DRIVERS\nusb3xhc.sys -- (nusb3xhc)
DRV - [2009/11/20 23:15:16 | 000,058,880 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand] -- D:\windows\system32\DRIVERS\nusb3hub.sys -- (nusb3hub)
DRV - [2009/11/11 11:43:00 | 000,051,800 | ---- | M] (McAfee, Inc.) [Kernel | Boot] -- D:\windows\System32\drivers\SbAlg.sys -- (SbAlg)
DRV - [2009/11/11 11:42:52 | 000,013,256 | ---- | M] (McAfee, Inc.) [File_System | Boot] -- D:\windows\System32\drivers\SbFsLock.sys -- (SbFsLock)
DRV - [2009/11/11 11:42:50 | 000,040,088 | ---- | M] (McAfee, Inc.) [Kernel | System] -- D:\windows\System32\drivers\rsvlock.sys -- (RsvLock)
DRV - [2009/11/11 11:42:48 | 000,110,520 | ---- | M] (McAfee, Inc.) [Kernel | Boot] -- D:\windows\System32\drivers\SafeBoot.sys -- (SafeBoot)
DRV - [2009/11/05 20:35:22 | 000,214,696 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\e1k6232.sys -- (e1kexpress) Intel(R)
DRV - [2009/10/28 20:55:00 | 000,047,616 | ---- | M] (REDC) [Kernel | Auto] -- D:\windows\system32\DRIVERS\risdpe86.sys -- (risdpcie)
DRV - [2009/10/26 17:39:00 | 000,048,640 | ---- | M] (REDC) [Kernel | Auto] -- D:\windows\system32\DRIVERS\rimspe86.sys -- (rimspci)
DRV - [2009/10/26 16:39:04 | 000,125,696 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\Impcd.sys -- (Impcd)
DRV - [2009/10/26 02:54:24 | 000,025,088 | ---- | M] (HTC, Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\ANDROIDUSB.sys -- (HTCAND32)
DRV - [2009/09/28 17:47:00 | 000,038,912 | ---- | M] (REDC) [Kernel | Auto] -- D:\windows\system32\DRIVERS\rixdpe86.sys -- (rixdpcie)
DRV - [2009/09/17 16:54:14 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\HECI.sys -- (HECI) Intel(R)
DRV - [2009/08/03 16:32:22 | 001,161,760 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009/07/20 18:05:16 | 000,049,152 | ---- | M] (RICOH Company, Ltd.) [Kernel | On_Demand] -- D:\Windows\System32\drivers\rismc32.sys -- (rismc32)
DRV - [2009/07/13 19:12:52 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2009/07/08 16:48:38 | 000,025,656 | ---- | M] (Hewlett-Packard) [Kernel | Boot] -- D:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt)
DRV - [2009/07/08 16:48:22 | 000,033,848 | ---- | M] (Hewlett-Packard) [Kernel | On_Demand] -- D:\windows\system32\DRIVERS\Accelerometer.sys -- (Accelerometer)
DRV - [2009/06/25 19:58:10 | 000,048,128 | ---- | M] (REDC) [Kernel | Auto] -- D:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2009/06/25 19:25:58 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto] -- D:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2009/06/25 19:10:48 | 000,044,544 | ---- | M] (REDC) [Kernel | Auto] -- D:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2009/04/29 10:46:54 | 000,015,872 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand] -- D:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006/08/27 22:45:15 | 000,147,968 | ---- | M] () [Kernel | On_Demand] -- D:\Windows\System32\drivers\UDTTAFAT.sys -- (UDTTAFAT)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\ARAMIS_ON_D\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM/10
IE - HKU\ARAMIS_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ask.com/web?l=dis&o=APN10234&gct=hp&apn_dtid=^YYYYYY^YY^US&apn_ptnrs=^A8B&apn_uid=4041158050114242&p2=^A8B^YYYYYY^YY^US
IE - HKU\ARAMIS_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\ARAMIS_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\ARAMIS_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxy.bau.oebb.at:80
 
 
 
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.at/|hxxp://www.google.at/firefox?client=firefox-a&rls=org.mozilla:de:official"
FF - prefs.js..extensions.enabledItems: otis@digitalpersona.com:5.0.0.4189
FF - prefs.js..extensions.enabledItems: 2020Player@2020Technologies.com:5.0.4.0
FF - prefs.js..network.proxy.type: 4
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\System32\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: D:\Windows\System32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: D:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: D:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE:  File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=5.0: D:\Program Files\MSN Toolbar\Platform\6.0.2237.0\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: D:\Program Files\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: D:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\ [2010/09/07 00:12:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\msntoolbar@msn.com: C:\Program Files\MSN Toolbar\Platform\6.0.2237.0\Firefox [2010/09/07 00:27:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2010/09/07 00:27:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2010/09/07 00:27:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/06/03 17:25:46 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/07/04 12:57:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.11\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011/06/29 12:32:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.11\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
 
[2011/03/20 07:01:28 | 000,000,000 | ---D | M] (No name found) -- D:\Users\ARAMIS\AppData\Roaming\Mozilla\Extensions
[2011/03/18 14:30:23 | 000,000,000 | ---D | M] (No name found) -- D:\Users\ARAMIS\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2012/10/29 14:25:40 | 000,000,000 | ---D | M] (No name found) -- D:\Users\ARAMIS\AppData\Roaming\Mozilla\Firefox\Profiles\t00eelsm.default\extensions
[2012/05/02 14:11:46 | 000,000,000 | ---D | M] (AskToolbar) -- D:\Users\ARAMIS\AppData\Roaming\Mozilla\Firefox\Profiles\t00eelsm.default\extensions\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
[2011/04/18 10:18:44 | 000,000,000 | ---D | M] (20-20 3D Viewer) -- D:\Users\ARAMIS\AppData\Roaming\Mozilla\Firefox\Profiles\t00eelsm.default\extensions\2020Player@2020Technologies.com
[2011/07/07 07:04:14 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- D:\Users\ARAMIS\AppData\Roaming\Mozilla\Firefox\Profiles\t00eelsm.default\extensions\2020Player_IKEA@2020Technologies.com
[2011/04/30 03:27:02 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- 
[2012/06/03 17:25:45 | 000,097,208 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/04/03 10:09:40 | 000,001,392 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012/05/02 14:12:16 | 000,002,275 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\ask.xml
[2012/04/03 10:09:40 | 000,002,252 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/04/03 10:09:40 | 000,001,153 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2012/04/03 10:09:40 | 000,006,805 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2012/04/03 10:09:40 | 000,001,178 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2012/04/03 10:09:40 | 000,001,105 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009/06/10 17:39:37 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - D:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (HP ProtectTools Security Manager Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - D:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
O2 - BHO: (AskToolbar) - {3cb073f3-be3c-4e8f-942d-8a747b54486f} - D:\Program Files\asktoolbar4\asktoolbar4X.dll (Ask.com)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (AskToolbar) - {3cb073f3-be3c-4e8f-942d-8a747b54486f} - D:\Program Files\asktoolbar4\asktoolbar4X.dll (Ask.com)
O3 - HKU\ARAMIS_ON_D\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] D:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] D:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [Guard.Mail.ru.gui] D:\Program Files\Guard-ICQ\GuardICQ.exe ()
O4 - HKLM..\Run: [HP Connection Manager.exe] D:\Program Files\Hewlett-Packard\HP Connection Manager\HP Connection Manager.exe (Smith Micro Software, Inc)
O4 - HKLM..\Run: [HPPowerAssistant] D:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPWirelessAssistant] D:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HTC Sync Loader] D:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe ()
O4 - HKLM..\Run: [IAAnotif] D:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IMSS] D:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe ()
O4 - HKLM..\Run: [NUSB3MON] D:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [NvCplDaemon] D:\windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] D:\windows\System32\nwiz.exe ()
O4 - HKLM..\Run: [SysTrayApp] D:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKU\LocalService_ON_D..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_D..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 3
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - D:\Program Files\ICQ7M\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - D:\Program Files\ICQ7M\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - D:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - D:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe) - D:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe (DigitalPersona, Inc.)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKU\ARAMIS_ON_D Winlogon: Shell - (explorer.exe) - D:\windows\explorer.exe (Microsoft Corporation)
O20 - HKU\ARAMIS_ON_D Winlogon: Shell - (C:\Users\ARAMIS\AppData\Roaming\skype.dat) - D:\Users\ARAMIS\AppData\Roaming\skype.dat ()
O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{668e80bb-fe75-11df-897c-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{668e80bb-fe75-11df-897c-806e6f6e6963}\Shell\AutoRun\command - "" = G:\AUTORUN.EXE
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013/05/03 16:58:32 | 000,000,000 | -HSD | C] -- D:\RECYCLER
[2013/05/02 13:41:23 | 000,745,472 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\MsSpellCheckingFacility.exe
[2013/05/02 13:41:23 | 000,185,344 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\elshyph.dll
[2013/05/02 13:41:22 | 002,877,440 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\jscript9.dll
[2013/05/02 13:41:22 | 002,706,432 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\mshtml.tlb
[2013/05/02 13:41:22 | 001,441,280 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\inetcpl.cpl
[2013/05/02 13:41:22 | 001,400,416 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\ieapfltr.dat
[2013/05/02 13:41:22 | 000,719,360 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\mshtmlmedia.dll
[2013/05/02 13:41:22 | 000,690,688 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\jscript.dll
[2013/05/02 13:41:22 | 000,629,248 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\ieapfltr.dll
[2013/05/02 13:41:22 | 000,523,264 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\vbscript.dll
[2013/05/02 13:41:22 | 000,493,056 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\msfeeds.dll
[2013/05/02 13:41:22 | 000,391,680 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\ieui.dll
[2013/05/02 13:41:22 | 000,361,984 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\html.iec
[2013/05/02 13:41:22 | 000,357,888 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\dxtmsft.dll
[2013/05/02 13:41:22 | 000,242,200 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\iedkcs32.dll
[2013/05/02 13:41:22 | 000,232,960 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\url.dll
[2013/05/02 13:41:22 | 000,226,816 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\dxtrans.dll
[2013/05/02 13:41:22 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\msrating.dll
[2013/05/02 13:41:22 | 000,158,720 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\msls31.dll
[2013/05/02 13:41:22 | 000,150,528 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\iexpress.exe
[2013/05/02 13:41:22 | 000,138,752 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\wextract.exe
[2013/05/02 13:41:22 | 000,137,216 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\ieUnatt.exe
[2013/05/02 13:41:22 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\iepeers.dll
[2013/05/02 13:41:22 | 000,110,592 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\IEAdvpack.dll
[2013/05/02 13:41:22 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\iesysprep.dll
[2013/05/02 13:41:22 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\inseng.dll
[2013/05/02 13:41:22 | 000,073,728 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\SetIEInstalledDate.exe
[2013/05/02 13:41:22 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\RegisterIEPKEYs.exe
[2013/05/02 13:41:22 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\iesetup.dll
[2013/05/02 13:41:22 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\pngfilt.dll
[2013/05/02 13:41:22 | 000,048,640 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\mshtmler.dll
[2013/05/02 13:41:22 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\ie4uinit.exe
[2013/05/02 13:41:22 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\msfeedsbs.dll
[2013/05/02 13:41:22 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\jsproxy.dll
[2013/05/02 13:41:22 | 000,038,400 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\imgutil.dll
[2013/05/02 13:41:22 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\iernonce.dll
[2013/05/02 13:41:22 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\licmgr10.dll
[2013/05/02 13:41:22 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\msfeedssync.exe
[2013/05/02 13:40:50 | 003,419,136 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d2d1.dll
[2013/05/02 13:40:50 | 002,284,544 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\msmpeg2vdec.dll
[2013/05/02 13:40:50 | 001,988,096 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d3d10warp.dll
[2013/05/02 13:40:50 | 001,504,768 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d3d11.dll
[2013/05/02 13:40:50 | 001,247,744 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\DWrite.dll
[2013/05/02 13:40:50 | 001,158,144 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\XpsPrint.dll
[2013/05/02 13:40:50 | 001,080,832 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d3d10.dll
[2013/05/02 13:40:50 | 000,604,160 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d3d10level9.dll
[2013/05/02 13:40:50 | 000,417,792 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\WMPhoto.dll
[2013/05/02 13:40:50 | 000,364,544 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\XpsGdiConverter.dll
[2013/05/02 13:40:50 | 000,293,376 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\dxgi.dll
[2013/05/02 13:40:50 | 000,249,856 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d3d10_1core.dll
[2013/05/02 13:40:50 | 000,220,160 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d3d10core.dll
[2013/05/02 13:40:50 | 000,207,872 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\WindowsCodecsExt.dll
[2013/05/02 13:40:50 | 000,187,392 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\UIAnimation.dll
[2013/05/02 13:40:50 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\d3d10_1.dll
[2013/05/02 13:40:50 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/05/02 13:40:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/05/02 13:40:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/05/02 13:40:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2013/05/02 13:40:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/04/12 03:46:25 | 002,347,008 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\win32k.sys
[2013/04/12 03:46:24 | 003,968,856 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\ntkrnlpa.exe
[2013/04/12 03:46:24 | 003,913,560 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\ntoskrnl.exe
[2013/04/12 03:46:23 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\csrsrv.dll
[2013/04/12 03:46:21 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\aaclient.dll
[2013/04/12 03:46:21 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\windows\System32\tsgqec.dll
[2013/04/07 13:16:44 | 000,000,000 | ---D | C] -- D:\Filme
 
========== Files - Modified Within 30 Days ==========
 
[2013/05/02 13:46:07 | 000,067,584 | --S- | M] () -- D:\windows\bootstat.dat
[2013/05/02 13:45:22 | 000,000,004 | ---- | M] () -- D:\Users\ARAMIS\AppData\Roaming\skype.ini
[2013/05/02 13:42:42 | 000,020,944 | -H-- | M] () -- D:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/05/02 13:42:42 | 000,020,944 | -H-- | M] () -- D:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/05/02 13:42:09 | 000,654,610 | ---- | M] () -- D:\windows\System32\perfh007.dat
[2013/05/02 13:42:09 | 000,616,452 | ---- | M] () -- D:\windows\System32\perfh009.dat
[2013/05/02 13:42:09 | 000,130,192 | ---- | M] () -- D:\windows\System32\perfc007.dat
[2013/05/02 13:42:09 | 000,106,574 | ---- | M] () -- D:\windows\System32\perfc009.dat
[2013/05/02 13:41:23 | 000,745,472 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\MsSpellCheckingFacility.exe
[2013/05/02 13:41:23 | 000,185,344 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\elshyph.dll
[2013/05/02 13:41:22 | 002,877,440 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\jscript9.dll
[2013/05/02 13:41:22 | 002,706,432 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\mshtml.tlb
[2013/05/02 13:41:22 | 001,441,280 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\inetcpl.cpl
[2013/05/02 13:41:22 | 001,400,416 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\ieapfltr.dat
[2013/05/02 13:41:22 | 000,719,360 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\mshtmlmedia.dll
[2013/05/02 13:41:22 | 000,690,688 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\jscript.dll
[2013/05/02 13:41:22 | 000,629,248 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\ieapfltr.dll
[2013/05/02 13:41:22 | 000,523,264 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\vbscript.dll
[2013/05/02 13:41:22 | 000,493,056 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\msfeeds.dll
[2013/05/02 13:41:22 | 000,391,680 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\ieui.dll
[2013/05/02 13:41:22 | 000,361,984 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\html.iec
[2013/05/02 13:41:22 | 000,357,888 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\dxtmsft.dll
[2013/05/02 13:41:22 | 000,242,200 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\iedkcs32.dll
[2013/05/02 13:41:22 | 000,232,960 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\url.dll
[2013/05/02 13:41:22 | 000,226,816 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\dxtrans.dll
[2013/05/02 13:41:22 | 000,163,840 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\msrating.dll
[2013/05/02 13:41:22 | 000,158,720 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\msls31.dll
[2013/05/02 13:41:22 | 000,150,528 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\iexpress.exe
[2013/05/02 13:41:22 | 000,138,752 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\wextract.exe
[2013/05/02 13:41:22 | 000,137,216 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\ieUnatt.exe
[2013/05/02 13:41:22 | 000,117,248 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\iepeers.dll
[2013/05/02 13:41:22 | 000,110,592 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\IEAdvpack.dll
[2013/05/02 13:41:22 | 000,109,056 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\iesysprep.dll
[2013/05/02 13:41:22 | 000,082,432 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\inseng.dll
[2013/05/02 13:41:22 | 000,073,728 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\SetIEInstalledDate.exe
[2013/05/02 13:41:22 | 000,071,680 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\RegisterIEPKEYs.exe
[2013/05/02 13:41:22 | 000,061,440 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\iesetup.dll
[2013/05/02 13:41:22 | 000,057,344 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\pngfilt.dll
[2013/05/02 13:41:22 | 000,048,640 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\mshtmler.dll
[2013/05/02 13:41:22 | 000,042,496 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\ie4uinit.exe
[2013/05/02 13:41:22 | 000,041,984 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\msfeedsbs.dll
[2013/05/02 13:41:22 | 000,039,936 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\jsproxy.dll
[2013/05/02 13:41:22 | 000,038,400 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\imgutil.dll
[2013/05/02 13:41:22 | 000,033,280 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\iernonce.dll
[2013/05/02 13:41:22 | 000,025,185 | ---- | M] () -- D:\windows\System32\ieuinit.inf
[2013/05/02 13:41:22 | 000,023,040 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\licmgr10.dll
[2013/05/02 13:41:22 | 000,011,776 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\msfeedssync.exe
[2013/05/02 13:40:50 | 003,419,136 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d2d1.dll
[2013/05/02 13:40:50 | 002,284,544 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\msmpeg2vdec.dll
[2013/05/02 13:40:50 | 001,988,096 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d3d10warp.dll
[2013/05/02 13:40:50 | 001,504,768 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d3d11.dll
[2013/05/02 13:40:50 | 001,247,744 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\DWrite.dll
[2013/05/02 13:40:50 | 001,158,144 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\XpsPrint.dll
[2013/05/02 13:40:50 | 001,080,832 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d3d10.dll
[2013/05/02 13:40:50 | 000,604,160 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d3d10level9.dll
[2013/05/02 13:40:50 | 000,417,792 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\WMPhoto.dll
[2013/05/02 13:40:50 | 000,364,544 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\XpsGdiConverter.dll
[2013/05/02 13:40:50 | 000,293,376 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\dxgi.dll
[2013/05/02 13:40:50 | 000,249,856 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d3d10_1core.dll
[2013/05/02 13:40:50 | 000,220,160 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d3d10core.dll
[2013/05/02 13:40:50 | 000,207,872 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\WindowsCodecsExt.dll
[2013/05/02 13:40:50 | 000,187,392 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\UIAnimation.dll
[2013/05/02 13:40:50 | 000,161,792 | ---- | M] (Microsoft Corporation) -- D:\windows\System32\d3d10_1.dll
[2013/05/02 13:40:50 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/05/02 13:40:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/05/02 13:40:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/05/02 13:40:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2013/05/02 13:40:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/05/02 13:40:50 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- D:\windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/05/02 13:34:50 | 2402,844,672 | -HS- | M] () -- D:\hiberfil.sys
[2013/05/02 10:11:24 | 000,000,017 | ---- | M] () -- D:\windows\System32\shortcut_ex.dat
[2013/05/01 08:23:38 | 174,407,400 | ---- | M] () -- D:\windows\MEMORY.DMP
[2013/04/25 12:03:54 | 000,000,324 | ---- | M] () -- D:\windows\tasks\HPCeeScheduleForARAMIS.job
[2013/04/13 05:00:51 | 000,089,816 | -H-- | M] () -- D:\windows\System32\mlfcache.dat
[2013/04/13 04:51:12 | 000,000,000 | -H-- | M] () -- D:\windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013/04/12 10:18:57 | 000,270,424 | ---- | M] () -- D:\windows\System32\FNTCACHE.DAT
 
========== Files Created - No Company Name ==========
 
[2013/05/02 13:41:22 | 000,025,185 | ---- | C] () -- D:\windows\System32\ieuinit.inf
[2013/05/02 10:11:24 | 000,000,017 | ---- | C] () -- D:\windows\System32\shortcut_ex.dat
[2013/05/01 01:34:44 | 000,000,004 | ---- | C] () -- D:\Users\ARAMIS\AppData\Roaming\skype.ini
[2013/04/23 12:51:04 | 000,000,324 | ---- | C] () -- D:\windows\tasks\HPCeeScheduleForARAMIS.job
[2013/04/13 05:00:51 | 000,089,816 | -H-- | C] () -- D:\windows\System32\mlfcache.dat
[2013/04/13 04:51:12 | 000,000,000 | -H-- | C] () -- D:\windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/10/14 09:04:58 | 000,147,968 | ---- | C] () -- D:\windows\System32\drivers\UDTTAFAT.sys
[2012/03/30 13:25:03 | 000,024,576 | ---- | C] () -- D:\windows\UniFISH.exe
[2012/03/29 10:00:36 | 000,122,880 | ---- | C] () -- D:\Users\ARAMIS\AppData\Roaming\skype.dat
[2011/04/24 04:34:22 | 000,252,928 | ---- | C] () -- D:\windows\System32\DShowRdpFilter.dll
[2011/04/24 04:33:45 | 000,066,048 | ---- | C] () -- D:\windows\System32\PrintBrmUi.exe
[2011/03/18 14:30:23 | 000,000,000 | ---- | C] () -- D:\windows\nsreg.dat
[2010/12/02 20:39:11 | 001,731,176 | ---- | C] () -- D:\windows\System32\nvwdmcpl.dll
[2010/12/02 20:39:11 | 001,657,448 | ---- | C] () -- D:\windows\System32\nwiz.exe
[2010/12/02 20:39:11 | 001,612,392 | ---- | C] () -- D:\windows\System32\nView.dll
[2010/12/02 20:39:11 | 001,108,584 | ---- | C] () -- D:\windows\System32\nvwimg.dll
[2010/12/02 20:39:11 | 000,473,704 | ---- | C] () -- D:\windows\System32\nvShell.dll
[2010/12/02 20:39:11 | 000,449,128 | ---- | C] () -- D:\windows\System32\nvAppBar.exe
[2010/12/02 20:39:11 | 000,260,712 | ---- | C] () -- D:\windows\System32\nViewSetup.exe
[2010/09/07 00:27:08 | 000,000,188 | ---- | C] () -- D:\windows\System32\HPWA.ini
[2010/09/07 00:16:45 | 000,000,178 | ---- | C] () -- D:\windows\System32\HPPA.ini
[2010/09/07 00:15:05 | 000,654,610 | ---- | C] () -- D:\windows\System32\perfh007.dat
[2010/09/07 00:15:05 | 000,295,922 | ---- | C] () -- D:\windows\System32\perfi007.dat
[2010/09/07 00:15:05 | 000,130,192 | ---- | C] () -- D:\windows\System32\perfc007.dat
[2010/09/07 00:15:05 | 000,038,104 | ---- | C] () -- D:\windows\System32\perfd007.dat
[2009/11/24 21:57:20 | 000,000,256 | ---- | C] () -- D:\windows\System32\DPSCEL.dll.hpsign
[2009/11/24 21:57:20 | 000,000,256 | ---- | C] () -- D:\windows\System32\DPFPApi.dll.hpsign
[2009/11/24 21:57:20 | 000,000,256 | ---- | C] () -- D:\windows\System32\DPClback.dll.hpsign
[2009/11/24 16:55:38 | 000,000,256 | ---- | C] () -- D:\windows\System32\DPFPApiUI.dll.hpsign
[2009/11/24 16:55:20 | 000,000,256 | ---- | C] () -- D:\windows\System32\DPPassFilter.dll.hpsign
[2009/11/24 16:55:20 | 000,000,256 | ---- | C] () -- D:\windows\System32\DPCrProv.dll.hpsign
[2009/10/22 12:56:00 | 000,000,256 | ---- | C] () -- D:\windows\System32\vcsAPIShared.dll.hpsign
[2009/07/14 00:57:37 | 000,067,584 | --S- | C] () -- D:\windows\bootstat.dat
[2009/07/14 00:33:53 | 000,270,424 | ---- | C] () -- D:\windows\System32\FNTCACHE.DAT
[2009/07/13 22:05:48 | 000,616,452 | ---- | C] () -- D:\windows\System32\perfh009.dat
[2009/07/13 22:05:48 | 000,291,294 | ---- | C] () -- D:\windows\System32\perfi009.dat
[2009/07/13 22:05:48 | 000,106,574 | ---- | C] () -- D:\windows\System32\perfc009.dat
[2009/07/13 22:05:48 | 000,031,548 | ---- | C] () -- D:\windows\System32\perfd009.dat
[2009/07/13 22:05:05 | 000,000,741 | ---- | C] () -- D:\windows\System32\NOISE.DAT
[2009/07/13 22:04:11 | 000,215,943 | ---- | C] () -- D:\windows\System32\dssec.dat
[2009/07/13 19:55:01 | 000,043,131 | ---- | C] () -- D:\windows\mib.bin
[2009/07/13 19:51:43 | 000,073,728 | ---- | C] () -- D:\windows\System32\BthpanContextHandler.dll
[2009/07/13 19:42:10 | 000,064,000 | ---- | C] () -- D:\windows\System32\BWContextHandler.dll
[2009/07/13 18:09:19 | 000,982,196 | ---- | C] () -- D:\windows\System32\igkrng500.bin
[2009/07/13 18:09:19 | 000,417,344 | ---- | C] () -- D:\windows\System32\igcompkrng500.bin
[2009/07/13 18:09:19 | 000,139,824 | ---- | C] () -- D:\windows\System32\igfcg500.bin
[2009/07/13 18:09:19 | 000,097,448 | ---- | C] () -- D:\windows\System32\igfcg500m.bin
[2009/06/10 17:26:10 | 000,673,088 | ---- | C] () -- D:\windows\System32\mlang.dat
 
========== LOP Check ==========
 
[2013/03/28 11:46:05 | 000,000,000 | ---D | M] -- D:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- D:\ProgramData\Application Data
[2010/12/02 20:53:46 | 000,000,000 | ---D | M] -- D:\ProgramData\AT&T
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- D:\ProgramData\Desktop
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- D:\ProgramData\Documents
[2012/10/14 09:59:36 | 000,000,000 | ---D | M] -- D:\ProgramData\DriverBoost
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- D:\ProgramData\Favorites
[2010/12/02 20:49:06 | 000,000,000 | ---D | M] -- D:\ProgramData\QUALCOMM
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- D:\ProgramData\Start Menu
[2009/07/14 00:53:55 | 000,000,000 | -HSD | M] -- D:\ProgramData\Templates
[2011/03/19 05:00:41 | 000,000,000 | ---D | M] -- D:\ProgramData\VirtualizedApplications
[2010/09/07 00:16:55 | 000,000,000 | ---D | M] -- D:\ProgramData\{DA06AA03-DF24-4ECE-939E-1B0939235C66}
[2013/05/02 13:35:33 | 000,032,632 | ---- | M] () -- D:\windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
< End of report >
--- --- ---
 

Themen zu Weißer Bildschirm nach Windows7 Systemstart
abgesicherte, abgesicherten, abgesicherten modus, adware.whenu, andere, anderen, bildschirm, früheren, laptop, modus, problem, punkt, sofort, systems, systemstart, trojan.agent.zr0, weiße, weißer, weißer bildschirm, wiederherstellen, windows, windows7, öfters


« Link in Mastercard Phishing mail angeklickt -Virus o. Ä. ? | AVA Soft Virus, einige Fragen dazu »


Ähnliche Themen: Weißer Bildschirm nach Windows7 Systemstart


  1. weißer bildschirm bei windows7, keinerlei reaktion, nach hochfahren nur schwarzer screen
    Log-Analyse und Auswertung - 08.05.2014 (3)
  2. weißer bildschirm, schwarzer bildschirm, maus laggs nach systemstart, mausbewegungen in boxen.
    Plagegeister aller Art und deren Bekämpfung - 02.12.2013 (3)
  3. weißer Bildschirm nach Systemstart
    Log-Analyse und Auswertung - 09.11.2013 (11)
  4. WINDOWS7 weißer Bildschirm
    Log-Analyse und Auswertung - 22.10.2013 (1)
  5. Windows Vista Systemstart Weißer Bildschirm
    Log-Analyse und Auswertung - 21.09.2013 (6)
  6. weißer bildschirm nach systemstart des rechners
    Plagegeister aller Art und deren Bekämpfung - 08.08.2013 (1)
  7. Windows 7: weißer Bildschirm nach Systemstart (auch im abgesicherter Modus)
    Plagegeister aller Art und deren Bekämpfung - 05.08.2013 (7)
  8. Weißer Bildschirm beim Systemstart
    Plagegeister aller Art und deren Bekämpfung - 04.08.2013 (7)
  9. weißer bildschirm nach systemstart
    Plagegeister aller Art und deren Bekämpfung - 09.06.2013 (5)
  10. Window 7 32Bit, Weißer Bildschirm nach Systemstart.
    Plagegeister aller Art und deren Bekämpfung - 25.05.2013 (3)
  11. Windows 7 - weißer Bildschirm nach Systemstart
    Log-Analyse und Auswertung - 18.05.2013 (3)
  12. Weißer Bildschirm nach Systemstart von Windows 7
    Plagegeister aller Art und deren Bekämpfung - 15.05.2013 (6)
  13. Weißer Bildschirm beim Systemstart (Windows Vista)
    Plagegeister aller Art und deren Bekämpfung - 12.04.2013 (16)
  14. Windows7 64 bit - Weißer Bildschirm - Bitte umHilfe
    Log-Analyse und Auswertung - 14.12.2012 (9)
  15. Weißer Bildschirm nach Anmeldung bei Windows7
    Plagegeister aller Art und deren Bekämpfung - 18.10.2012 (15)
  16. Weißer Bildschirm nach Systemstart WIN7
    Log-Analyse und Auswertung - 03.06.2012 (2)
  17. Weißer Bildschirm nach Systemstart: "Achtung ihr Computer wurde gesperrt"
    Plagegeister aller Art und deren Bekämpfung - 11.02.2012 (24)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Weißer Bildschirm nach Windows7 Systemstart - Hallo, es wurde nur das otl.txt erstellt.OTL Logfile: Code: Alles auswählen Aufklappen ATTFilter OTL logfile created on: 5/3/2013 5:08:26 PM - Run OTLPE by OldTimer - Version 3.1.48.0 Folder = - Weißer Bildschirm nach Windows7 Systemstart...
Archiv
Du betrachtest: Weißer Bildschirm nach Windows7 Systemstart auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131