Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
virus befall ???

virus befall ???


Log-Analyse und Auswertung: virus befall ???

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 28.05.2013, 04:06   #1
gingin
 
virus befall ??? - Standard

virus befall ???


[spoiler]OTL logfile created on: 28.05.2013 04:30:51 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Gina\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3,25 Gb Total Physical Memory | 1,36 Gb Available Physical Memory | 41,88% Memory free
8,04 Gb Paging File | 6,26 Gb Available in Paging File | 77,91% Paging File free
Paging file location(s): c:\pagefile.sys 4987 4987 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 146,47 Gb Total Space | 25,66 Gb Free Space | 17,52% Space Free | Partition Type: NTFS
Drive D: | 15,00 Gb Total Space | 8,42 Gb Free Space | 56,15% Space Free | Partition Type: NTFS
Drive K: | 150,82 Gb Total Space | 19,40 Gb Free Space | 12,86% Space Free | Partition Type: FAT32
Drive L: | 1,69 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: GINA-PC | User Name: Gina | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.05.28 04:30:17 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Gina\Downloads\OTL(1).exe
PRC - [2013.05.17 09:08:01 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013.05.12 17:49:46 | 000,216,968 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe
PRC - [2013.05.10 09:57:36 | 000,840,768 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
PRC - [2013.05.10 00:57:24 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.04.26 19:03:56 | 000,169,312 | ---- | M] () -- C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
PRC - [2013.04.23 09:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2013.01.29 21:05:44 | 000,087,368 | ---- | M] (Nero AG) -- C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
PRC - [2013.01.08 10:41:08 | 003,674,320 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2012.12.07 18:27:50 | 000,167,424 | ---- | M] () -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2012.11.30 04:06:58 | 001,263,512 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2012.01.26 18:25:32 | 002,077,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011.10.07 15:29:22 | 002,629,632 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\Browny02\Brother\BrStMonW.exe
PRC - [2011.10.07 11:40:42 | 001,387,288 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
PRC - [2011.10.07 11:40:08 | 000,055,064 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\LBTWiz.exe
PRC - [2011.09.27 21:05:24 | 000,149,784 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
PRC - [2011.09.27 21:03:28 | 000,295,192 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
PRC - [2011.07.11 23:47:06 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2011.04.20 18:58:02 | 001,204,224 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\ControlCenter4\BrCcUxSys.exe
PRC - [2011.04.20 18:53:10 | 000,335,872 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\ControlCenter4\BrCtrlCntr.exe
PRC - [2010.11.25 09:30:57 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010.10.22 20:04:31 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010.10.22 20:04:31 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010.10.22 20:04:28 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010.10.22 20:04:24 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010.10.22 20:04:23 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010.10.22 20:04:22 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2010.06.24 16:04:06 | 000,247,088 | R--- | M] () -- K:\Program Files\Iomega\QuikProtect\QpMonitor.exe
PRC - [2010.06.24 16:04:06 | 000,058,672 | R--- | M] (Iomega Corporation - An EMC Company) -- K:\Program Files\Iomega\QuikProtect\startQuikProtect.exe
PRC - [2010.01.25 09:22:56 | 000,245,760 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\Browny02\BrYNSvc.exe
PRC - [2009.10.07 02:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008.08.14 17:11:48 | 000,565,008 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
PRC - [2007.10.03 16:45:02 | 000,358,936 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2007.10.03 16:44:58 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2007.09.12 10:40:46 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
PRC - [2007.09.12 10:40:44 | 000,094,208 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\System32\stacsv.exe
PRC - [2007.08.23 16:58:58 | 002,070,000 | ---- | M] () -- C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe
PRC - [2007.02.02 21:32:21 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) -- C:\Windows\System32\Crypserv.exe


========== Modules (No Company Name) ==========

MOD - [2013.05.17 09:08:00 | 003,128,728 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013.05.15 01:27:22 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\e9ea3e70247b4aa4a8b260426db3aa6b\System.Windows.Forms.ni.dll
MOD - [2013.05.10 20:56:08 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2013.05.10 09:57:52 | 000,019,968 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\AcroTray.DEU
MOD - [2013.04.26 19:03:56 | 000,169,312 | ---- | M] () -- C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
MOD - [2013.02.14 09:19:57 | 001,711,616 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\dae1b2e49e240e879a6523025cc306fb\Microsoft.VisualBasic.ni.dll
MOD - [2013.01.13 17:15:46 | 001,593,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\78157a494dc9a7e52be8840decfcd9cc\System.Drawing.ni.dll
MOD - [2013.01.13 17:14:54 | 007,977,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\cc149d08e75f8c53cd28ac926b38c370\System.ni.dll
MOD - [2013.01.13 17:14:43 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\2227d1559f87943255069398608d5c56\mscorlib.ni.dll
MOD - [2012.11.30 04:07:48 | 000,100,248 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2012.11.30 04:06:58 | 001,263,512 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2012.07.10 21:50:26 | 000,322,986 | ---- | M] () -- K:\Git\git-cheetah\git_shell_ext.dll
MOD - [2012.01.14 17:49:24 | 000,008,704 | ---- | M] () -- C:\Users\Gina\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.5.gadget\GetCoreTempInfoNET.dll
MOD - [2012.01.14 17:49:24 | 000,007,680 | ---- | M] () -- C:\Users\Gina\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.5.gadget\SystemInfo.dll
MOD - [2012.01.14 17:49:24 | 000,006,144 | ---- | M] () -- C:\Users\Gina\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.5.gadget\CoreTempReader.dll
MOD - [2011.10.07 11:41:16 | 000,879,896 | ---- | M] () -- C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
MOD - [2009.03.30 06:42:11 | 000,315,392 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009.02.27 17:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
MOD - [2008.08.14 17:11:48 | 000,565,008 | ---- | M] () -- C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
MOD - [2007.09.20 18:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2007.08.23 16:58:58 | 002,070,000 | ---- | M] () -- C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe


========== Services (SafeList) ==========

SRV - [2013.05.26 19:22:42 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.05.17 09:08:00 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.05.10 00:57:24 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.04.23 09:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2013.02.28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.01.29 21:05:44 | 000,087,368 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe -- (HTCMonitorService)
SRV - [2012.12.07 18:27:50 | 000,167,424 | ---- | M] () [Auto | Running] -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2012.03.02 18:00:26 | 000,025,504 | ---- | M] (Samsung Electronics Co., Ltd.) [Auto | Stopped] -- C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe -- (SamsungAllShareV2.0)
SRV - [2012.03.02 18:00:20 | 000,027,584 | ---- | M] (Samsung Electronics Co., Ltd.) [On_Demand | Stopped] -- C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe -- (SimpleSlideShowServer)
SRV - [2011.11.10 15:17:31 | 000,167,264 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011.09.27 21:03:28 | 000,295,192 | ---- | M] (Logitech, Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2010.10.22 20:04:28 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010.10.22 20:04:24 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2010.08.31 00:25:32 | 002,317,128 | ---- | M] (O&O Software GmbH) [Auto | Stopped] -- C:\Program Files\OO Software\Defrag\oodag.exe -- (OODefragAgent)
SRV - [2010.06.24 16:04:06 | 000,247,088 | R--- | M] () [Auto | Running] -- K:\Program Files\Iomega\QuikProtect\QpMonitor.exe -- (QPCopyEngine)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010.01.25 09:22:56 | 000,245,760 | ---- | M] (Brother Industries, Ltd.) [On_Demand | Running] -- C:\Program Files\Browny02\BrYNSvc.exe -- (BrYNSvc)
SRV - [2009.10.07 02:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2008.05.14 11:32:18 | 000,309,744 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe -- (RoxLiveShare10)
SRV - [2008.05.14 11:32:10 | 000,166,384 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe -- (RoxWatch10)
SRV - [2008.05.14 11:31:38 | 001,120,752 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe -- (RoxMediaDB10)
SRV - [2008.01.21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007.10.03 16:45:02 | 000,358,936 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
SRV - [2007.09.12 10:40:44 | 000,094,208 | ---- | M] (SigmaTel, Inc.) [Auto | Running] -- C:\Windows\System32\stacsv.exe -- (STacSV)
SRV - [2007.03.20 16:41:24 | 000,153,792 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe -- (Adobe Version Cue CS3)
SRV - [2007.02.02 21:32:21 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\Windows\System32\Crypserv.exe -- (Crypkey License)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PID_PEPI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (pepifilter)
DRV - File not found [Kernel | On_Demand | Stopped] -- c:\program files\dell support center\pcdsrvc.pkms -- (PCDSRVC{E9D79540-57D5953E-06020101}_0)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (motmodem)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (LVUSBSta)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (lvpopflt)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (Ai2Mmpd)
DRV - File not found [Kernel | Auto | Stopped] -- -- (adfs)
DRV - [2013.02.13 08:32:27 | 000,428,088 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2013.01.15 18:24:19 | 000,226,016 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2012.09.19 11:02:06 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012.09.19 11:02:06 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2012.04.04 08:38:34 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.09.13 08:52:47 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011.09.02 08:31:28 | 000,039,192 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2011.09.02 08:31:28 | 000,030,360 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2011.09.02 08:31:20 | 000,041,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2011.05.06 08:40:46 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010.11.30 18:07:06 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2010.10.22 20:04:22 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2010.06.24 16:04:06 | 000,019,384 | R--- | M] (Windows (R) Win 7 DDK provider) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\QsFsFltr.sys -- (QsFsFltr)
DRV - [2010.06.23 10:23:46 | 000,023,040 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\htcnprot.sys -- (htcnprot)
DRV - [2010.04.03 22:55:32 | 011,573,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009.11.03 05:06:12 | 000,011,520 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BrUsbSib.sys -- (BrUsbSIb)
DRV - [2009.11.03 05:06:11 | 000,071,424 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BrSerIb.sys -- (BrSerIb)
DRV - [2009.10.07 09:49:40 | 006,756,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC)
DRV - [2009.10.07 09:47:56 | 000,266,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2009.10.07 02:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009.07.14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.06.10 09:49:32 | 000,024,576 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ANDROIDUSB.sys -- (HTCAND32)
DRV - [2008.01.21 04:23:25 | 000,251,904 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTBS23.SYS -- (VSTHWBS2)
DRV - [2007.09.12 10:44:34 | 000,228,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express)
DRV - [2007.09.12 10:40:48 | 000,326,656 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2007.06.29 17:11:02 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007.06.20 11:28:38 | 000,267,264 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2006.11.02 09:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2006.01.10 04:47:27 | 000,031,846 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\Ckldrv.sys -- (NetworkX)
DRV - [2002.12.10 18:56:20 | 000,116,480 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\p35u.sys -- (QCPro)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {dc84d6f4-abf5-441d-bdef-65f3f4d7aabe} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7DADE
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851647

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.de/ig/dell?hl=de&client=dell-row&channel=de&ibd=0080724
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://responsive.media-meyer.de/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://meyer.gin/
IE - HKCU\..\URLSearchHook: {dc84d6f4-abf5-441d-bdef-65f3f4d7aabe} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=crm&q={searchTerms}&locale=&apn_ptnrs=&apn_dtid=OSJ000&apn_uid=5F22707E-8A48-4D06-B038-1D2699042A66&apn_sauid=76A814FE-6DAF-45EC-9E88-31BA79106E6C
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7DADE
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: %7B097d3191-e6fa-4728-9826-b533d755359d%7D:0.7.18
FF - prefs.js..extensions.enabledAddons: FirePHPExtension-Build%40firephp.org:0.7.2
FF - prefs.js..extensions.enabledAddons: %7Bc45c406e-ab73-11d8-be73-000a95be3b12%7D:1.2.5
FF - prefs.js..extensions.enabledAddons: %7B6AC85730-7D0F-4de0-B3FA-21142DD85326%7D:2.8
FF - prefs.js..extensions.enabledAddons: %7B4a313247-8330-4a81-948e-b79936516f78%7D:2.0.2
FF - prefs.js..extensions.enabledAddons: google%40hitachi.com:0.3
FF - prefs.js..extensions.enabledAddons: add-to-searchbox%40maltekraus.de:2.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Gina\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll (Move Networks)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Gina\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Gina\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Gina\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Gina\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Gina\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3c9761ad-a43d-4447-b924-f5d83cb48063}: C:\Program Files\Zend\Zend Studio 10.0.1\toolbars\firefox [2013.04.29 19:26:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013.05.24 08:26:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.05.17 09:08:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.05.24 08:26:40 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\moveplayer@movenetworks.com: C:\Users\Gina\AppData\Roaming\Move Networks [2012.09.11 19:26:23 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\sparpilot@sparpilot.com: C:\Users\Gina\AppData\Roaming\Mozilla\Firefox\Profiles\xws9zd8w.default-1367864171972\extensions\sparpilot@sparpilot.com
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.05.17 09:08:01 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.05.24 08:26:40 | 000,000,000 | ---D | M]

[2012.07.26 16:32:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\Extensions
[2013.05.28 03:03:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\Firefox\Profiles\i24l9q0l.default-1369698590301\extensions
[2013.05.28 02:48:01 | 000,000,000 | ---D | M] (ColorZilla) -- C:\Users\Gina\AppData\Roaming\mozilla\Firefox\Profiles\i24l9q0l.default-1369698590301\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2013.05.28 02:57:53 | 000,000,000 | ---D | M] (Old Google Image Search) -- C:\Users\Gina\AppData\Roaming\mozilla\Firefox\Profiles\i24l9q0l.default-1369698590301\extensions\jid0-hVK3JChToUWBtJHMEmFM9ELeInk@jetpack
[2013.05.28 03:02:36 | 000,025,781 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\add-to-searchbox@maltekraus.de.xpi
[2013.05.28 02:45:02 | 002,168,615 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\firebug@software.joehewitt.com.xpi
[2013.05.28 02:44:35 | 000,084,118 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\FirePHPExtension-Build@firephp.org.xpi
[2013.05.28 03:00:05 | 000,368,105 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\google@hitachi.com.xpi
[2013.05.28 03:03:04 | 000,214,292 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\jid0-UpfAlz15SCUd0pkHuy9LrhAmBXk@jetpack.xpi
[2013.05.28 03:01:09 | 000,168,773 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\jid1-NOlwYOe3E3vApg@jetpack.xpi
[2013.05.28 02:42:57 | 000,455,379 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi
[2013.05.28 02:57:10 | 000,017,857 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi
[2013.05.28 02:50:28 | 000,005,490 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\{ab4b5718-3998-4a2c-91ae-18a7c2db513e}.xpi
[2013.05.28 02:46:42 | 001,360,435 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi
[2013.05.28 02:49:00 | 000,870,680 | ---- | M] () (No name found) -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013.05.28 02:57:24 | 000,001,632 | ---- | M] () -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\searchplugins\firefox-add-ons.xml
[2013.05.28 03:05:00 | 000,004,855 | ---- | M] () -- C:\Users\Gina\AppData\Roaming\mozilla\firefox\profiles\i24l9q0l.default-1369698590301\searchplugins\google-images.xml
[2013.05.17 09:08:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013.05.17 09:08:01 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{googleriginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{go ogle:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParam eter},
CHR - homepage: hxxp://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.94\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.94\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Gina\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Gina\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: AdobeAAMDetect (Enabled) = C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Users\Gina\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - Extension: ChromeAccess = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeoigbhkilbllfomkmmilbfochhlgdmh\1.6_0\
CHR - Extension: BIODIGITAL HUMAN = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak\0.9.5_0\
CHR - Extension: Google Docs = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: TV = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh\1.0.12_0\
CHR - Extension: Web Developer = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm\0.4.3_0\
CHR - Extension: ColorZilla = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp\0.5.3_0\
CHR - Extension: YouTube = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.4_0\
CHR - Extension: TTS Demo = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\chhkejkkcghanjclmhhpncachhgejoel\2.1_0\
CHR - Extension: Webug = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbeipenlpoeifpkjhgakejmikdhlhcj\1.2.6_0\
CHR - Extension: Google-Suche = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Chrome Speak = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\diagnfimeecdcecjpnkjgbnlelkclcpj\1.2.4.1_0\
CHR - Extension: Google Kalender = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0\
CHR - Extension: Pendule = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbkffbkamcejhkcaocmkdeiiccpmjfdi\1.0.0_0\
CHR - Extension: Uhr = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.11_0\
CHR - Extension: FirePHP4Chrome = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgbmonepdpnacijbbdijfbecmgoojma\0.5_0\
CHR - Extension: PageSpeed Insights (by Google) = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplegfbjlmmehdoakndmohflojccocli\2.0.2.3_0\
CHR - Extension: Firebug Console = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\jodfpogckhbcjamkfgjeicoiphpligka\0.1.0.8_0\
CHR - Extension: Multilingual TTS Engine = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\megclklaoidjbomplbhbdgbelkoebbdl\1.6_0\
CHR - Extension: Awesome New Tab Page = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgmiemnjjchgkmgbeljfocdjjnpjnmcg\2013.107.6.0_0\
CHR - Extension: YSlow = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ninejjcohidippngpapiilnmkgllmakh\3.1.2_0\
CHR - Extension: Mehr Leistung und Videoformate f\u00FCr dein HTML5 \u003Cvideo\u003E = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0\
CHR - Extension: JDownloader = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\oikliheaihindkomebcajofjponhlhhh\10.15.2.523_0\
CHR - Extension: Google Mail = C:\Users\Gina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013.05.06 16:05:52 | 000,003,594 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 meyer.gin
O1 - Hosts: 127.0.0.1 pichl.gin
O1 - Hosts: 127.0.0.1 zf2.gin
O1 - Hosts: 127.0.0.1 gallery.gin
O1 - Hosts: 127.0.0.1 cafe.gin
O1 - Hosts: 127.0.0.1 sources.cafe.gin
O1 - Hosts: 127.0.0.1 water.gin
O1 - Hosts: 127.0.0.1 doctor.gin
O1 - Hosts: 127.0.0.1 dolphin.gin
O1 - Hosts: 127.0.0.1 rumpel.gin
O1 - Hosts: 127.0.0.1 testflow.gin
O1 - Hosts: 127.0.0.1 praxis.gin
O1 - Hosts: 127.0.0.1 topshow.dahlhaus.gin
O1 - Hosts: 127.0.0.1 sources.pichl.gin
O1 - Hosts: 127.0.0.1 sourcesjs.pichl.gin
O1 - Hosts: 127.0.0.1 pichlhoefer.gin
O1 - Hosts: 127.0.0.1 twitter.gin
O1 - Hosts: 127.0.0.1 test.gin
O1 - Hosts: 127.0.0.1 testgina.gin
O1 - Hosts: 127.0.0.1 exhibition.gin
O1 - Hosts: 127.0.0.1 sources.exhibition.gin
O1 - Hosts: 127.0.0.1 cuba.gin
O1 - Hosts: 127.0.0.1 qr.gin
O1 - Hosts: 83 more lines...
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Zend Studio) - {95188727-288F-4581-A48D-EAB3BD027314} - C:\Program Files\Zend\Zend Studio 10.0.1\toolbars\ZendIEToolbar.dll (Zend Technologies Ltd)
O3 - HKLM\..\Toolbar: (no name) - {dc84d6f4-abf5-441d-bdef-65f3f4d7aabe} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent File not found
O4 - HKLM..\Run: [Bluetooth HCI Monitor] C:\Windows\System32\HCIMNTR.DLL (Logitech Inc.)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter4] C:\Program Files\ControlCenter4\BrCcBoot.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [HF_G_Jul] "C:\Program Files\AVG Secure Search\HF_G_Jul.exe" /DoAction File not found
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe ()
O4 - HKLM..\Run: [ Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [QuiKProtect] K:\Program Files\Iomega\QuikProtect\startQuikProtect.exe (Iomega Corporation - An EMC Company)
O4 - HKLM..\Run: [ROC_roc_dec12] "C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12 File not found
O4 - HKLM..\Run: [ROC_ROC_JULY_P1] "C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1 File not found
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - Startup: C:\Users\Gina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ControlCenter4.lnk = C:\Program Files\ControlCenter4\BrCcBoot.exe (Brother Industries, Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 2
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O9 - Extra Button: Zend Studio Toolbar - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - C:\Program Files\Zend\Zend Studio 10.0.1\toolbars\ZendIEToolbar.dll (Zend Technologies Ltd)
O9 - Extra 'Tools' menuitem : Zend Studio - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - Reg Error: Value error. File not found
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O15 - HKCU\..Trusted Domains: msn.com ([]https in Vertrauenswürdige Sites)
O15 - HKCU\..Trusted Domains: w3.org ([www] https in Vertrauenswürdige Sites)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab (Java Plug-in 1.7.0_09)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab (Java Plug-in 10.21.2)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{205F3D63-FB73-4E50-9CBF-F9DBA552CC24}: DhcpNameServer = 192.168.2.4
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (AVGRSSTX.DLL) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - AppInit_DLLs: (C:\PROGRA~1\GOOGLE\GOOGLE~2\GOEC62~1.DLL) - File not found
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sample Pictures\natural_plant_1600x1200.jpg
O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sample Pictures\natural_plant_1600x1200.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2007.06.13 11:12:34 | 000,000,043 | R--- | M] () - L:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{006bfe40-d0cf-11e0-8779-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{006bfe40-d0cf-11e0-8779-806e6f6e6963}\Shell\AutoRun\command - "" = L:\start.exe -- [2011.06.30 15:56:48 | 005,695,384 | R--- | M] (video2brain )
O33 - MountPoints2\{46298235-95e5-11e1-a1c9-001ec94da278}\Shell - "" = AutoRun
O33 - MountPoints2\{46298235-95e5-11e1-a1c9-001ec94da278}\Shell\AutoRun\command - "" = P:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{5997d095-7e20-11e1-8efa-001ec94da278}\Shell - "" = AutoRun
O33 - MountPoints2\{5997d095-7e20-11e1-8efa-001ec94da278}\Shell\AutoRun\command - "" = N:\start.exe
O33 - MountPoints2\{821bed11-9b90-11e2-a6fd-001e4ce6e036}\Shell - "" = AutoRun
O33 - MountPoints2\{821bed11-9b90-11e2-a6fd-001e4ce6e036}\Shell\AutoRun\command - "" = H:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{821bed7f-9b90-11e2-a6fd-001e4ce6e036}\Shell - "" = AutoRun
O33 - MountPoints2\{821bed7f-9b90-11e2-a6fd-001e4ce6e036}\Shell\AutoRun\command - "" = H:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{821bf0b7-9b90-11e2-a6fd-001e4ce6e036}\Shell - "" = AutoRun
O33 - MountPoints2\{821bf0b7-9b90-11e2-a6fd-001e4ce6e036}\Shell\AutoRun\command - "" = P:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{87de777f-fc19-11e0-a448-001ec94da278}\Shell - "" = AutoRun
O33 - MountPoints2\{87de777f-fc19-11e0-a448-001ec94da278}\Shell\AutoRun\command - "" = L:\start.exe -- [2011.06.30 15:56:48 | 005,695,384 | R--- | M] (video2brain )
O33 - MountPoints2\{95882060-a59d-11e1-9015-001ec94da278}\Shell - "" = AutoRun
O33 - MountPoints2\{95882060-a59d-11e1-9015-001ec94da278}\Shell\AutoRun\command - "" = O:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{a5d7be65-6152-11e2-a0af-001ec94da278}\Shell - "" = AutoRun
O33 - MountPoints2\{a5d7be65-6152-11e2-a0af-001ec94da278}\Shell\AutoRun\command - "" = L:\start.exe -- [2011.06.30 15:56:48 | 005,695,384 | R--- | M] (video2brain )
O33 - MountPoints2\{a5d7c214-6152-11e2-a0af-001ec94da278}\Shell - "" = AutoRun
O33 - MountPoints2\{a5d7c214-6152-11e2-a0af-001ec94da278}\Shell\AutoRun\command - "" = N:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{a5d7c218-6152-11e2-a0af-001ec94da278}\Shell - "" = AutoRun
O33 - MountPoints2\{a5d7c218-6152-11e2-a0af-001ec94da278}\Shell\AutoRun\command - "" = L:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\{fbeb6ed0-a32a-11e2-a78e-001e4ce6e036}\Shell - "" = AutoRun
O33 - MountPoints2\{fbeb6ed0-a32a-11e2-a78e-001e4ce6e036}\Shell\AutoRun\command - "" = G:\HTC_Sync_Manager_PC.exe
O33 - MountPoints2\N\Shell - "" = AutoRun
O33 - MountPoints2\N\Shell\AutoRun\command - "" = N:\HTC_Sync_Manager_PC.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (OODBS)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013.05.28 02:12:15 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013.05.28 02:12:15 | 000,000,000 | -HSD | C] -- \Config.Msi
[2013.05.28 01:49:59 | 000,000,000 | ---D | C] -- C:\Users\Gina\Desktop\Alte Firefox-Daten
[2013.05.28 01:41:02 | 000,000,000 | ---D | C] -- C:\Windows\System32\IO
[2013.05.27 11:44:32 | 000,000,000 | ---D | C] -- C:\Users\Gina\Documents\svBuilder
[2013.05.26 15:05:32 | 000,000,000 | ---D | C] -- C:\Program Files\Abpausen und Vektorisieren 1
[2013.05.26 15:04:59 | 000,493,056 | ---- | C] ( datenhaus GmbH) -- C:\Windows\System32\dhRichClient3.dll
[2013.05.26 15:04:57 | 000,000,000 | ---D | C] -- C:\Users\Gina\AppData\Roaming\OCS
[2013.05.26 14:57:41 | 000,000,000 | ---D | C] -- C:\Users\Gina\AppData\Roaming\inkscape
[2013.05.25 19:42:00 | 000,000,000 | ---D | C] -- C:\Users\Gina\AppData\Roaming\HTC
[2013.05.25 19:41:52 | 000,000,000 | ---D | C] -- C:\Users\Gina\AppData\Roaming\HTC Sync
[2013.05.25 18:45:57 | 000,000,000 | ---D | C] -- C:\Users\Gina\AppData\Local\HTC MediaHub
[2013.05.25 18:44:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2013.05.20 06:00:41 | 000,000,000 | ---D | C] -- C:\Search
[2013.05.20 06:00:41 | 000,000,000 | ---D | C] -- \Search
[2013.05.19 11:05:44 | 000,000,000 | ---D | C] -- C:\ProgramData\StarApp
[2013.05.19 11:05:07 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2013.05.19 10:53:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2013.05.19 10:40:52 | 000,000,000 | ---D | C] -- C:\Program Files\Vector Magic
[2013.05.17 09:07:54 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013.05.15 01:14:25 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013.05.15 01:03:12 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013.05.15 01:03:12 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013.05.15 01:03:12 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013.05.15 01:03:12 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013.05.15 01:03:11 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013.05.15 01:03:11 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013.05.15 01:03:10 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013.05.15 01:02:28 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2013.05.15 01:02:08 | 002,049,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013.05.10 09:57:38 | 000,049,728 | ---- | C] (Adobe Systems Inc) -- C:\Windows\System32\AdobePDF.dll
[2013.05.10 09:57:34 | 000,025,160 | ---- | C] (Adobe Systems Inc.) -- C:\Windows\System32\AdobePDFUI.dll
[2013.05.06 19:38:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
[2013.05.04 10:13:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2013.04.29 19:37:07 | 000,000,000 | ---D | C] -- C:\Users\Gina\Download
[2013.04.29 19:29:48 | 000,000,000 | ---D | C] -- C:\Users\Gina\.ZendStudio
[2013.04.29 19:14:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zend Studio
[2013.04.29 19:12:49 | 000,000,000 | ---D | C] -- C:\Program Files\Zend
[2013.04.29 18:40:10 | 000,000,000 | ---D | C] -- C:\disk2
[2013.04.29 18:40:10 | 000,000,000 | ---D | C] -- \disk2
[2013.04.29 18:39:01 | 000,000,000 | ---D | C] -- C:\Users\Gina\.zend
[2013.04.29 18:38:58 | 000,000,000 | ---D | C] -- C:\Users\Gina\Zend
[2013.04.28 11:16:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2013.04.28 11:13:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013.04.28 11:13:09 | 000,263,584 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.04.28 11:12:52 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.04.28 11:12:52 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.04.28 11:12:52 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2011.05.15 23:12:59 | 000,092,064 | ---- | C] (MCCI) -- C:\Users\Gina\mqdmmdm.sys
[2011.05.15 23:12:59 | 000,079,328 | ---- | C] (MCCI) -- C:\Users\Gina\mqdmserd.sys
[2011.05.15 23:12:59 | 000,066,656 | ---- | C] (MCCI) -- C:\Users\Gina\mqdmbus.sys
[2011.05.15 23:12:59 | 000,009,232 | ---- | C] (MCCI) -- C:\Users\Gina\mqdmmdfl.sys
[2011.05.15 23:12:59 | 000,006,208 | ---- | C] (MCCI) -- C:\Users\Gina\mqdmcmnt.sys
[2011.05.15 23:12:59 | 000,005,936 | ---- | C] (MCCI) -- C:\Users\Gina\mqdmwhnt.sys
[2011.05.15 23:12:59 | 000,004,048 | ---- | C] (MCCI) -- C:\Users\Gina\mqdmcr.sys
[2009.03.23 12:58:16 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Users\Gina\usbsermptxp.sys
[2009.03.23 12:58:16 | 000,022,768 | ---- | C] (Microsoft Corporation) -- C:\Users\Gina\usbsermpt.sys
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013.05.28 04:27:00 | 000,001,116 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243329829-3675136087-3828963357-1000UA.job
[2013.05.28 04:16:42 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.05.28 04:13:43 | 000,034,805 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2013.05.28 04:13:20 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.05.28 04:11:48 | 000,034,805 | ---- | M] () -- C:\ProgramData\nvModes.001
[2013.05.28 04:11:45 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013.05.28 04:11:44 | 000,003,744 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013.05.28 04:11:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.05.28 04:11:39 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lvuvc.hs
[2013.05.28 04:11:34 | 3487,481,856 | -HS- | M] () -- C:\hiberfil.sys
[2013.05.28 04:11:33 | 000,584,408 | ---- | M] () -- C:\Windows\System32\oodbs.lor
[2013.05.28 04:05:43 | 000,002,140 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2013.05.28 03:55:02 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.05.28 03:40:24 | 000,015,271 | ---- | M] () -- C:\Users\Gina\Documents\NotePro.fpr
[2013.05.28 01:24:56 | 120,924,494 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2013.05.27 11:28:00 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2013.05.27 11:27:00 | 000,001,064 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2243329829-3675136087-3828963357-1000Core.job
[2013.05.26 20:33:50 | 000,003,894 | ---- | M] () -- C:\Users\Gina\AppData\Local\recently-used.xbel
[2013.05.26 19:22:41 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013.05.26 19:22:41 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013.05.26 19:14:16 | 004,137,440 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.05.26 18:54:37 | 000,000,577 | ---- | M] () -- C:\Users\Public\Desktop\Inkscape.lnk
[2013.05.26 15:05:32 | 000,074,240 | ---- | M] () -- C:\Windows\cadkasdeinst01.exe
[2013.05.25 18:44:45 | 000,001,870 | ---- | M] () -- C:\Users\Public\Desktop\HTC Sync Manager.lnk
[2013.05.24 14:16:41 | 000,001,456 | ---- | M] () -- C:\Users\Gina\AppData\Local\Adobe Für Web speichern 13.0 Prefs
[2013.05.24 08:26:43 | 000,001,861 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
[2013.05.16 09:30:34 | 000,001,039 | ---- | M] () -- C:\Windows\Brpfx04a.ini
[2013.05.12 16:14:33 | 000,000,868 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2013.05.11 17:26:34 | 000,001,747 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk
[2013.05.10 09:57:38 | 000,049,728 | ---- | M] (Adobe Systems Inc) -- C:\Windows\System32\AdobePDF.dll
[2013.05.10 09:57:34 | 000,025,160 | ---- | M] (Adobe Systems Inc.) -- C:\Windows\System32\AdobePDFUI.dll
[2013.05.07 06:05:55 | 000,002,008 | ---- | M] () -- C:\Users\Gina\Documents\speedport.ip.crt
[2013.05.05 21:12:55 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013.04.29 19:29:48 | 000,000,012 | -H-- | M] () -- C:\Users\Gina\.zs
[2013.04.29 19:27:18 | 000,001,799 | ---- | M] () -- C:\Users\Public\Desktop\Zend Studio 10.0.1.lnk
[2013.04.28 11:16:23 | 000,000,821 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2013.04.28 11:12:44 | 000,866,720 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2013.04.28 11:12:44 | 000,788,896 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2013.04.28 11:12:44 | 000,263,584 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.04.28 11:12:44 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.04.28 11:12:44 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.04.28 11:12:44 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.05.28 04:11:34 | 3487,481,856 | -HS- | C] () -- C:\hiberfil.sys
[2013.05.28 04:11:34 | 3487,481,856 | -HS- | C] () -- \hiberfil.sys
[2013.05.26 20:33:50 | 000,003,894 | ---- | C] () -- C:\Users\Gina\AppData\Local\recently-used.xbel
[2013.05.26 18:55:06 | 000,000,609 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape.lnk
[2013.05.26 18:54:37 | 000,000,577 | ---- | C] () -- C:\Users\Public\Desktop\Inkscape.lnk
[2013.05.26 15:05:32 | 000,074,240 | ---- | C] () -- C:\Windows\cadkasdeinst01.exe
[2013.05.26 15:04:59 | 000,338,432 | ---- | C] () -- C:\Windows\System32\sqlite36_engine.dll
[2013.05.25 18:44:45 | 000,001,870 | ---- | C] () -- C:\Users\Public\Desktop\HTC Sync Manager.lnk
[2013.05.24 08:26:43 | 000,001,861 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
[2013.05.14 20:05:40 | 000,000,936 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Content Viewer.lnk
[2013.05.12 16:14:33 | 000,000,868 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2013.05.11 17:26:34 | 000,001,747 | ---- | C] () -- C:\Users\Public\Desktop\FileZilla Client.lnk
[2013.05.07 06:05:55 | 000,002,008 | ---- | C] () -- C:\Users\Gina\Documents\speedport.ip.crt
[2013.04.29 19:27:18 | 000,001,799 | ---- | C] () -- C:\Users\Public\Desktop\Zend Studio 10.0.1.lnk
[2013.04.28 11:16:23 | 000,000,821 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2013.04.28 11:08:58 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2013.03.16 14:29:24 | 000,000,036 | ---- | C] () -- C:\Users\Gina\.org.zend.usagedata.userId
[2013.03.04 17:57:39 | 000,000,012 | -H-- | C] () -- C:\Users\Gina\.zs
[2013.02.21 15:25:34 | 000,000,132 | ---- | C] () -- C:\Users\Gina\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
[2013.02.19 09:27:22 | 000,001,039 | ---- | C] () -- C:\Windows\Brpfx04a.ini
[2013.02.19 09:27:22 | 000,000,159 | ---- | C] () -- C:\Windows\brpcfx.ini
[2013.02.19 09:26:48 | 000,000,000 | ---- | C] () -- C:\Windows\BRPARAM.INI
[2013.02.19 09:23:55 | 000,000,148 | ---- | C] () -- C:\Windows\Brfaxrx.ini
[2013.02.19 09:23:55 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat
[2013.02.17 21:22:50 | 000,003,584 | ---- | C] () -- C:\Users\Gina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.02.14 07:20:48 | 056,079,904 | ---- | C] () -- C:\Users\Gina\AppData\Local\AdobeSetupUtility.zip
[2013.02.13 07:02:54 | 000,000,009 | ---- | C] () -- \END
[2013.01.30 07:39:13 | 000,000,576 | ---- | C] () -- C:\Windows\pear.ini
[2013.01.10 14:10:02 | 000,000,000 | ---- | C] () -- C:\Windows\HPMProp.INI
[2012.12.27 22:46:40 | 000,000,005 | ---- | C] () -- C:\Users\Gina\.bash_history
[2012.11.23 11:18:56 | 000,000,065 | ---- | C] () -- \delindex.bat
[2012.11.01 14:10:31 | 000,000,792 | ---- | C] () -- C:\Windows\_delis32.ini
[2012.10.14 18:33:02 | 000,010,455 | ---- | C] () -- C:\Users\Gina\Finanz_elster_2048.pfx
[2012.09.09 13:50:31 | 000,001,456 | ---- | C] () -- C:\Users\Gina\AppData\Local\Adobe Für Web speichern 13.0 Prefs
[2012.05.19 14:03:09 | 000,023,668 | ---- | C] () -- C:\Users\Gina\AppData\Roaming\Microsoft Excel 97-2003.ADR
[2012.05.19 13:55:29 | 000,038,434 | ---- | C] () -- C:\Users\Gina\AppData\Roaming\Kommagetrennte Werte (Windows).ADR
[2012.04.11 14:04:32 | 000,045,056 | ---- | C] () -- C:\Windows\System32\BRTCPCON.DLL
[2012.04.11 14:04:29 | 000,000,114 | ---- | C] () -- C:\Windows\System32\BRLMW03A.INI
[2012.04.11 14:04:28 | 000,000,050 | ---- | C] () -- C:\Windows\System32\BRADM10A.DAT
[2011.11.20 19:17:50 | 000,034,308 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
[2011.11.20 19:04:30 | 000,000,004 | ---- | C] () -- C:\Windows\vx86036.dat
[2011.11.20 18:58:28 | 000,000,083 | ---- | C] () -- C:\Windows\Crypkey.ini
[2011.11.20 18:58:25 | 000,031,846 | ---- | C] () -- C:\Windows\System32\Ckldrv.sys
[2011.11.20 18:58:25 | 000,027,648 | R--- | C] () -- C:\Windows\Setup_ck.exe
[2011.11.20 18:58:25 | 000,018,432 | ---- | C] () -- C:\Windows\Setup_ck.dll
[2011.11.20 18:58:25 | 000,011,776 | ---- | C] () -- C:\Windows\Ckrfresh.exe
[2011.11.20 18:55:19 | 000,000,090 | ---- | C] () -- C:\Windows\TestSupp.ini
[2011.10.17 15:30:47 | 000,005,303 | ---- | C] () -- C:\Windows\WINASTAR.INI
[2011.08.24 18:28:52 | 000,000,042 | ---- | C] () -- C:\Windows\oodjobd.INI
[2011.07.31 19:39:46 | 000,000,179 | ---- | C] () -- C:\Users\Gina\.zf.ini
[2011.06.09 15:53:07 | 000,039,166 | ---- | C] () -- C:\Users\Gina\QUOTE_DE_HSB_BSDT_25213626_2011-06-09.pdf
[2011.05.15 23:12:59 | 000,009,913 | ---- | C] () -- C:\Users\Gina\MCCI_MDM.INF
[2011.05.15 23:12:59 | 000,006,989 | ---- | C] () -- C:\Users\Gina\MCCI_BUS.INF
[2011.05.15 23:12:59 | 000,004,477 | ---- | C] () -- C:\Users\Gina\MCCI_SDM.INF
[2010.03.24 11:26:29 | 008,575,886 | ---- | C] () -- C:\Users\Gina\bags.reg
[2010.02.10 14:32:46 | 000,000,760 | ---- | C] () -- C:\Users\Gina\AppData\Roaming\setup_ldm.iss
[2009.12.15 10:02:20 | 000,034,805 | ---- | C] () -- C:\ProgramData\nvModes.001
[2009.12.15 09:36:15 | 000,034,805 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2009.10.03 09:53:42 | 000,000,600 | ---- | C] () -- C:\Users\Gina\AppData\Roaming\winscp.rnd
[2009.09.17 10:50:08 | 000,000,004 | ---- | C] () -- C:\Users\Gina\tray.pid
[2009.03.23 12:58:16 | 000,009,232 | ---- | C] () -- C:\Users\Gina\USB_MOT_BRIT.INF
[2009.03.23 12:58:16 | 000,007,201 | ---- | C] () -- C:\Users\Gina\USBMOT2000.INF
[2009.03.23 12:58:16 | 000,006,141 | ---- | C] () -- C:\Users\Gina\USBMOT2000XP.INF
[2009.03.23 12:58:16 | 000,005,960 | ---- | C] () -- C:\Users\Gina\USB_MOT_A1000.INF
[2009.03.23 12:58:16 | 000,005,880 | ---- | C] () -- C:\Users\Gina\USB_CMCS_2000.INF
[2009.01.17 12:06:20 | 000,001,024 | ---- | C] () -- \.rnd
[2008.12.16 14:22:30 | 000,000,120 | ---- | C] () -- C:\Users\Gina\.asadminpass
[2008.12.16 14:22:25 | 000,003,123 | ---- | C] () -- C:\Users\Gina\.asadmintruststore
[2008.10.03 10:01:50 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008.09.27 07:10:27 | 000,000,000 | RHS- | C] () -- \MSDOS.SYS
[2008.09.27 07:10:27 | 000,000,000 | RHS- | C] () -- \IO.SYS
[2008.09.25 14:33:30 | 000,013,030 | ---- | C] () -- \PDOXUSRS.NET
[2008.08.25 10:58:33 | 000,000,306 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2008.07.25 01:46:40 | 000,004,851 | RH-- | C] () -- \dell.sdr
[2008.05.14 12:21:26 | 000,088,560 | ---- | C] () -- \DC_ShellExt.dll
[2008.02.06 08:46:23 | 000,333,257 | RHS- | C] () -- \bootmgr
[2006.11.02 12:23:09 | 000,000,024 | ---- | C] () -- \autoexec.bat
[2006.11.02 08:25:08 | 000,000,010 | ---- | C] () -- \config.sys

========== ZeroAccess Check ==========

[2008.09.20 21:27:10 | 000,022,969 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-2243329829-3675136087-3828963357-1000\$RP0GVTJ\Data\texts\@.gif
[2006.11.02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.08 19:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.04.11 08:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.04.11 08:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 313 bytes -> C:\ProgramData\Temp:0B4227B4

< End of report >
[/spoiler]

Alt 28.05.2013, 07:35   #2
ryder
/// TB-Ausbilder
 
virus befall ??? - Standard

virus befall ???


Und wir sollen jetzt raten was mit dir los ist? Im Übrigen habe ich den starken Verdacht, dass du dein Logfile noch an anderen Foren gepostet hast.
__________________

__________________
Alt 28.05.2013, 09:08   #3
gingin
 
virus befall ??? - Standard

virus befall ???


... hallo ryder,
ja danke erst mal dass du mir geantwortet hast ... hey, musste erst mal erschrocken nachschaun ob ich deinen ruhigen Montag erwischt hab

aber ich muss dich enttäuschen ich habe das hier im ersten board gleich gepostet und nicht in x anderen ...

bis jetzt konnte ich probleme selber lösen aber ich kenn mich nicht so super aus und deshalb das posting ... mit xxx zeilen ... aber wie gesagt das erste mal .. dachte man soll das in spoiler tags einfügen, damit das etwas nett formatiert raus kommt ...

konnte den yontoo ordner nicht löschen ... aber mit registry und abgesicherter modus bin ich ihn wohl los geworden ... schau ma mal

Gruß Gina
__________________
Alt 28.05.2013, 19:34   #4
ryder
/// TB-Ausbilder
 
virus befall ??? - Standard

virus befall ???


nur haben wir hier keine Spoiler-Tags, daher meine Frage?
__________________
Digitale Freibeuter gegen Malware!
Keine Hilfe per PM!
Antwort

Themen zu virus befall ???
adblock, adobe, autorun, avg, avg secure search, avg security toolbar, bho, bonjour, cpu, defender, desktop, error, excel, firefox, flash player, format, ftp, google, home, homepage, logfile, mozilla, plug-in, recycle.bin, registry, scan, secure search, security, software, tarma, virus, vista


« IExplorer öffnet bei Googlelinks falsche Seiten | TR/Kazy.174941 »


Ähnliche Themen: virus befall ???


  1. Virus befall von BKA-Trojaner
    Plagegeister aller Art und deren Bekämpfung - 10.11.2014 (3)
  2. Befall von Trovigo-Virus
    Plagegeister aller Art und deren Bekämpfung - 01.03.2014 (6)
  3. WIN / 32 bit BKA .BK .BPD Virus Befall
    Log-Analyse und Auswertung - 18.02.2014 (11)
  4. Virus-Befall: Aartemis
    Log-Analyse und Auswertung - 09.01.2014 (9)
  5. Wie Dateien sichern bei BKA Virus Befall ?
    Plagegeister aller Art und deren Bekämpfung - 16.11.2012 (5)
  6. Virus Befall: e621ca05
    Log-Analyse und Auswertung - 08.10.2012 (29)
  7. Nach Virus/Trojaner-Befall nun "sauber"? (GEMA Virus)
    Plagegeister aller Art und deren Bekämpfung - 05.09.2012 (17)
  8. Befall Smart Hdd-Virus
    Log-Analyse und Auswertung - 20.04.2012 (35)
  9. SMART HDD Virus Befall
    Plagegeister aller Art und deren Bekämpfung - 12.04.2012 (1)
  10. SMART_HDD Virus-Befall o.O
    Plagegeister aller Art und deren Bekämpfung - 12.04.2012 (5)
  11. SMART HDD Virus Befall / wie entfernen?
    Log-Analyse und Auswertung - 09.04.2012 (21)
  12. evtl. virus befall?
    Plagegeister aller Art und deren Bekämpfung - 28.09.2011 (14)
  13. BKA-Virus-Befall: OTL.log
    Log-Analyse und Auswertung - 12.08.2011 (1)
  14. Virus-Befall?
    Plagegeister aller Art und deren Bekämpfung - 06.02.2011 (3)
  15. Virus Befall nach neuinstall
    Plagegeister aller Art und deren Bekämpfung - 20.09.2009 (16)
  16. Virus Befall - Explorer stürzt ab !
    Mülltonne - 24.06.2008 (2)
  17. Verdacht auf Virus befall
    Mülltonne - 23.11.2006 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema virus befall ??? - [spoiler]OTL logfile created on: 28.05.2013 04:30:51 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Gina\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - - virus befall ???...
Archiv
Du betrachtest: virus befall ??? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55