EXP/JAVA.Pycle.Gen und mehr ...

anni1990 · 20.06.2013, 12:24

habs noch mal gemacht
nun hats auch geklappt!

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-06-2013
Ran by Dicken (administrator) on 20-06-2013 13:23:00
Running from C:\Dokumente und Einstellungen\Dicken\Desktop
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avgnt.exe
(Advanced Micro Devices Inc.) C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avguard.exe
(ATI Technologies Inc.) C:\Programme\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
(Avira Operations GmbH & Co. KG) C:\Programme\Avira\AntiVir Desktop\avshadow.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min [348664 2012-08-09] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [StartCCC] "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [61440 2010-02-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [UnlockerAssistant] "C:\Programme\Unlocker\UnlockerAssistant.exe" [x]
Winlogon\Notify\AtiExtEvent: Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [Google Update] "C:\Dokumente und Einstellungen\Dicken\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe" /c [116648 2012-04-20] (Google Inc.)
HKCU\...\Policies\system: [disableregistrytools] 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
HKCU SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2765711
SearchScopes: HKCU - {c99fdc39-a1ae-4b24-8d71-e5274f8d7c54} URL = hxxp://search.hotspotshield.com/g/results.php?c=s&q={searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Programme\Delta\delta\1.8.21.5\bh\delta.dll (Delta-search.com)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Programme\Delta\delta\1.8.21.5\deltaTlbr.dll (Delta-search.com)
Toolbar: HKCU -&Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL (Microsoft Corporation)
Handler: ipp - No CLSID Value - 
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp - No CLSID Value - 
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2210608 2006-10-27] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Dicken\Anwendungsdaten\Mozilla\Firefox\Profiles\w2cdf7wp.default
FF Homepage: google.de
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('turntable.fm')%20!%3D%20-1%20%26%26%20url.indexOf('static.turntable.fm')%20%3D%3D%20-1%20%26%26%20url.indexOf('s3.amazonaws.com')%20%3D%3D%20-1%20%26%26%20url.indexOf('ping.chartbeat.net')%20%3D%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*'))%20%7B%20return%20'PROXY%20ab-us11.personalitycores.com%3A8000%3B%20PROXY%20ab-us08.personalitycores.com%3A8000%3B%20PROXY%20ab-us07.personalitycores.com%3A8000%3B%20PROXY%20ab-us09.personalitycores.com%3A8000%3B%20PROXY%20ab-us15.personalitycores.com%3A8000%3B%20PROXY%20ab-us10.personalitycores.com%3A8000%3B%20PROXY%20ab-us01.personalitycores.com%3A8000%3B%20PROXY%20ab-us17.personalitycores.com%3A8000%3B%20PROXY%20ab-us16.personalitycores.com%3A8000%3B%20PROXY%20ab-us12.personalitycores.com%3A8000%3B%20PROXY%20ab-us03.personalitycores.com%3A8000%3B%20PROXY%20ab-us14.personalitycores.com%3A8000%3B%20PROXY%20ab-us18.personalitycores.com%3A8000%3B%20PROXY%20ab-us13.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Programme\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=1.6.0_37 - C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Programme\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Extension: Memory Fox - C:\Dokumente und Einstellungen\Dicken\Anwendungsdaten\Mozilla\Firefox\Profiles\w2cdf7wp.default\Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}
FF Extension: jid1-QpHD8URtZWJC2A - C:\Dokumente und Einstellungen\Dicken\Anwendungsdaten\Mozilla\Firefox\Profiles\w2cdf7wp.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi
FF Extension: No Name - C:\Dokumente und Einstellungen\Dicken\Anwendungsdaten\Mozilla\Firefox\Profiles\w2cdf7wp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Programme\Avira\AntiVir Desktop\sched.exe [86224 2012-05-08] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Programme\Avira\AntiVir Desktop\avguard.exe [110032 2012-05-08] (Avira Operations GmbH & Co. KG)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2010-02-10] ()
S3 Microsoft Office Groove Audit Service; C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [117144 2013-05-17] (Mozilla Foundation)
S3 odserv; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-26] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\wmpnetwk.exe [920576 2009-02-04] (Microsoft Corporation)
S3 AppMgmt; %SystemRoot%\System32\appmgmts.dll [x]
S2 clr_optimization_v2.0.50727_32; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [x]
S2 JavaQuickStarterService; "C:\Programme\Java\jre6\bin\jqs.exe" -service -config "C:\Programme\Java\jre6\lib\deploy\jqs\jqs.conf" [x]
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [x]

==================== Drivers (Whitelisted) ====================

R3 ati2mtag; C:\Windows\System32\DRIVERS\ati2mtag.sys [3565056 2010-02-11] (ATI Technologies Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [83392 2012-05-08] (Avira GmbH)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137928 2012-05-08] (Avira GmbH)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36000 2011-10-19] (Avira GmbH)
R3 E1000; C:\Windows\System32\DRIVERS\e1000325.sys [176128 2004-11-22] (Intel Corporation)
R3 es1371; C:\Windows\System32\drivers\es1371mp.sys [40704 2001-08-17] (Creative Technology Ltd.)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2005-03-08] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2005-03-08] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2005-03-08] (HP)
R3 ms_mpu401; C:\Windows\System32\drivers\msmpu401.sys [2944 2001-08-17] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R0 nvata; C:\Windows\System32\DRIVERS\nvata.sys [92800 2005-05-26] (NVIDIA Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2010-06-17] (Avira GmbH)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2011-05-25] (AnchorFree Inc)
S4 Abiosdsk; No ImagePath
S4 abp480n5; No ImagePath
S4 adpu160m; No ImagePath
S4 Aha154x; No ImagePath
S4 aic78u2; No ImagePath
S4 aic78xx; No ImagePath
S4 AliIde; No ImagePath
S4 amsint; No ImagePath
S4 asc; No ImagePath
S4 asc3350p; No ImagePath
S4 asc3550; No ImagePath
S4 Atdisk; No ImagePath
S3 catchme; \??\C:\DOKUME~1\Dicken\LOKALE~1\Temp\catchme.sys [x]
S4 cd20xrnt; No ImagePath
S1 Changer; No ImagePath
S4 CmdIde; No ImagePath
S4 Cpqarray; No ImagePath
U4 dac2w2k; No ImagePath
S4 dac960nt; No ImagePath
S4 dpti2o; No ImagePath
S4 hpn; No ImagePath
S1 i2omgmt; No ImagePath
S4 i2omp; No ImagePath
S4 ini910u; No ImagePath
S4 IntelIde; No ImagePath
S1 lbrtfdc; No ImagePath
S4 mraid35x; No ImagePath
S1 PCIDump; No ImagePath
S3 PDCOMP; No ImagePath
S3 PDFRAME; No ImagePath
S3 PDRELI; No ImagePath
S3 PDRFRAME; No ImagePath
S4 perc2; No ImagePath
S4 perc2hib; No ImagePath
S4 ql1080; No ImagePath
S4 Ql10wnt; No ImagePath
S4 ql12160; No ImagePath
S4 ql1240; No ImagePath
S4 ql1280; No ImagePath
S4 Simbad; No ImagePath
S4 Sparrow; No ImagePath
S4 symc810; No ImagePath
S4 symc8xx; No ImagePath
S4 sym_hi; No ImagePath
S4 sym_u3; No ImagePath
U3 TlntSvr; 
S4 TosIde; No ImagePath
S4 ultra; No ImagePath
S4 ViaIde; No ImagePath
S3 WDICA; No ImagePath
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-06-20 12:42 - 2013-06-20 12:42 - 00000000 ____D C:\FRST
2013-06-20 08:49 - 2013-06-20 08:49 - 00102400 ____A C:\Windows\Minidump\Mini062013-01.dmp
2013-06-20 08:49 - 2013-06-20 08:49 - 00000000 ____D C:\Windows\Minidump
2013-06-18 11:45 - 2013-06-18 11:45 - 00000270 ____A C:\Windows\Tasks\EPUpdater.job
2013-06-13 03:03 - 2013-06-13 03:03 - 00000000 __HDC C:\Windows\$NtUninstallKB2839229$
2013-06-13 03:00 - 2013-06-13 03:03 - 00012366 ____A C:\Windows\FaxSetup.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00005912 ____A C:\Windows\ocgen.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00004718 ____A C:\Windows\tsoc.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00004055 ____A C:\Windows\comsetup.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00002458 ____A C:\Windows\ntdtcsetup.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00001938 ____A C:\Windows\iis6.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00001374 ____A C:\Windows\imsins.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00000684 ____A C:\Windows\ocmsn.log
2013-06-13 03:00 - 2013-06-13 03:03 - 00000618 ____A C:\Windows\msgsocm.log
2013-06-13 03:00 - 2013-06-13 03:00 - 00011134 ____A C:\Windows\KB2838727-IE8.log
2013-06-13 03:00 - 2013-06-13 03:00 - 00002740 ____A C:\Windows\updspapi.log
2013-06-13 03:00 - 2013-06-13 03:00 - 00001374 ____A C:\Windows\imsins.BAK
2013-06-13 03:00 - 2013-06-13 03:00 - 00000000 ____A C:\Windows\setuperr.log
2013-06-13 03:00 - 2013-06-13 03:00 - 00000000 ____A C:\Windows\setupact.log
2013-06-12 17:38 - 2013-06-13 03:03 - 00016879 ____A C:\Windows\KB2839229.log
2013-06-06 08:24 - 2013-06-13 03:03 - 00007720 ____A C:\Windows\setupapi.log

==================== One Month Modified Files and Folders ========

2013-06-20 12:46 - 2011-07-13 06:26 - 01995296 ____A C:\Windows\WindowsUpdate.log
2013-06-20 12:45 - 2013-03-08 18:48 - 00000159 ____A C:\Windows\wiadebug.log
2013-06-20 12:44 - 2013-03-08 18:48 - 00000050 ____A C:\Windows\wiaservc.log
2013-06-20 12:44 - 2011-07-13 06:31 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-20 12:43 - 2012-04-08 09:03 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-20 12:42 - 2013-06-20 12:42 - 00000000 ____D C:\FRST
2013-06-20 12:39 - 2011-07-13 07:18 - 00000000 ___RD C:\Programme
2013-06-20 10:08 - 2012-02-16 01:47 - 00524288 ____A C:\Windows\System32\config\ACEEvent.evt
2013-06-20 10:08 - 2011-07-13 06:31 - 00032616 ____A C:\Windows\SchedLgU.Txt
2013-06-20 09:30 - 2011-07-26 00:00 - 00000000 ____D C:\Windows\System32\NtmsData
2013-06-20 09:29 - 2012-04-20 22:04 - 00001214 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1229272821-2025429265-839522115-1004UA.job
2013-06-20 08:55 - 2011-07-13 06:24 - 00000000 ____D C:\Windows\Registration
2013-06-20 08:49 - 2013-06-20 08:49 - 00102400 ____A C:\Windows\Minidump\Mini062013-01.dmp
2013-06-20 08:49 - 2013-06-20 08:49 - 00000000 ____D C:\Windows\Minidump
2013-06-20 02:12 - 2004-08-04 14:00 - 00013646 ____A C:\Windows\System32\wpa.dbl
2013-06-18 11:45 - 2013-06-18 11:45 - 00000270 ____A C:\Windows\Tasks\EPUpdater.job
2013-06-18 11:29 - 2012-04-20 22:04 - 00001162 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1229272821-2025429265-839522115-1004Core.job
2013-06-13 03:03 - 2013-06-13 03:03 - 00000000 __HDC C:\Windows\$NtUninstallKB2839229$
2013-06-13 03:03 - 2013-06-13 03:00 - 00012366 ____A C:\Windows\FaxSetup.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00005912 ____A C:\Windows\ocgen.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00004718 ____A C:\Windows\tsoc.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00004055 ____A C:\Windows\comsetup.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00002458 ____A C:\Windows\ntdtcsetup.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00001938 ____A C:\Windows\iis6.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00001374 ____A C:\Windows\imsins.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00000684 ____A C:\Windows\ocmsn.log
2013-06-13 03:03 - 2013-06-13 03:00 - 00000618 ____A C:\Windows\msgsocm.log
2013-06-13 03:03 - 2013-06-12 17:38 - 00016879 ____A C:\Windows\KB2839229.log
2013-06-13 03:03 - 2013-06-06 08:24 - 00007720 ____A C:\Windows\setupapi.log
2013-06-13 03:01 - 2011-07-25 22:23 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-13 03:00 - 2013-06-13 03:00 - 00011134 ____A C:\Windows\KB2838727-IE8.log
2013-06-13 03:00 - 2013-06-13 03:00 - 00002740 ____A C:\Windows\updspapi.log
2013-06-13 03:00 - 2013-06-13 03:00 - 00001374 ____A C:\Windows\imsins.BAK
2013-06-13 03:00 - 2013-06-13 03:00 - 00000000 ____A C:\Windows\setuperr.log
2013-06-13 03:00 - 2013-06-13 03:00 - 00000000 ____A C:\Windows\setupact.log
2013-06-13 03:00 - 2011-07-25 22:45 - 00000000 ____D C:\Windows\ie8updates
2013-06-12 02:43 - 2012-04-08 09:03 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-12 02:43 - 2011-07-25 23:17 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-04 14:00] - [2008-04-14 04:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e 

C:\Windows\System32\winlogon.exe
[2004-08-04 14:00] - [2008-04-14 04:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a 

C:\Windows\System32\svchost.exe
[2004-08-04 14:00] - [2008-04-14 04:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 

C:\Windows\System32\services.exe
[2004-08-04 14:00] - [2009-02-09 13:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc 

C:\Windows\System32\User32.dll
[2004-08-04 14:00] - [2008-04-14 04:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd 

C:\Windows\System32\userinit.exe
[2004-08-04 14:00] - [2008-04-14 04:23] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-04 14:00] - [2008-04-14 03:52] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d 


==================== End Of Log ============================

--- --- ---

EXP/JAVA.Pycle.Gen und mehr ...

Log-Analyse und Auswertung: EXP/JAVA.Pycle.Gen und mehr ...

EXP/JAVA.Pycle.Gen und mehr ...

Ähnliche Themen: EXP/JAVA.Pycle.Gen und mehr ...