Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
java problem

java problem


Plagegeister aller Art und deren Bekämpfung: java problem

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 18.07.2013, 09:42   #19
weinmacher
 
java problem - Standard

java problem


guten morgen,

hier nochmals die Logs aus FRST -VG - Nic-
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-07-2013
Ran by PC_01 at 2013-07-18 10:35:48
Running from G:\
Boot Mode: Normal
==========================================================

ACDSee Pro 4 (Version: 4.0.237)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader X (10.1.7) - Deutsch (Version: 10.1.7)
Audiograbber 1.83 SE  (Version: 1.83 SE )
Audiograbber MP3-Plugin (Version: 1.0)
AutoCAD 2009 - Deutsch (Version: 17.2.56.0)
Belkin 54Mbps Wireless Network Adapter (Version: 3.00.07)
Bing Bar (Version: 7.0.619.0)
CCleaner (Version: 4.03)
Corel Graphics - Windows Shell Extension (Version: 15.0.0.487)
Corel Graphics - Windows Shell Extension (Version: 15.0.487)
CorelDRAW Graphics Suite X5 - Capture (Version: 15.0)
CorelDRAW Graphics Suite X5 - Common (Version: 15.0)
CorelDRAW Graphics Suite X5 - Connect (Version: 15.0)
CorelDRAW Graphics Suite X5 - Custom Data (Version: 15.0)
CorelDRAW Graphics Suite X5 - DE (Version: 15.0)
CorelDRAW Graphics Suite X5 - Draw (Version: 15.0)
CorelDRAW Graphics Suite X5 - Filters (Version: 15.0)
CorelDRAW Graphics Suite X5 - FontNav (Version: 15.0)
CorelDRAW Graphics Suite X5 - IPM (Version: 15.0)
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (Version: 15.0)
CorelDRAW Graphics Suite X5 - Photozoom Plugin (Version: 15.0)
CorelDRAW Graphics Suite X5 - Redist (Version: 15.0)
CorelDRAW Graphics Suite X5 - Setup Files (Version: 15.0)
CorelDRAW Graphics Suite X5 - VBA (Version: 15.0)
CorelDRAW Graphics Suite X5 - VideoBrowser (Version: 15.0)
CorelDRAW Graphics Suite X5 - VSTA (Version: 15.0)
CorelDRAW Graphics Suite X5 - WT (Version: 15.0)
CorelDRAW Graphics Suite X5 (Version: 15.0)
CorelDRAW(R) Graphics Suite X5 (Version: 15.0.0.486)
D3DX10 (Version: 15.4.2368.0902)
Driver Whiz (Version: 8.1)
FastStone Capture 5.3 (Version: 5.3)
FreeCommander 2009.02b (Version: 2009.02)
FreePDF (Remove only)
Google Chrome (HKCU Version: 28.0.1500.72)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)
Google Update Helper (Version: 1.3.21.153)
GPL Ghostscript (Version: 9.04)
Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (Version: 1)
Image Resizer Powertoy Clone for Windows (Version: 2.1)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Java(TM) 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
KONICA MINOLTA magicolor2300W
MagicDisc 2.7.106
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - Deutsch (Version: 14.0.6114.5002)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (Version: 9.0.30729)
Mozilla Firefox 22.0 (x86 de) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 7 Ultra Edition (Version: 7.03.0647)
neroxml (Version: 1.0.0)
NETGEAR WG111T 108Mbps Wireless USB2.0 Adapter (Version: 1.0.0)
Nokia Connectivity Cable Driver (Version: 7.1.32.69)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Grafiktreiber 307.83 (Version: 307.83)
NVIDIA Install Application (Version: 2.1002.109.706)
NVIDIA Systemsteuerung 307.83 (Version: 307.83)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Platform (Version: 1.34)
Plus-HD-2.3 (Version: 1.27.153.8)
PVSonyDll (Version: 1.00.0001)
Quick Zip 5.1 (Version: 5.1.8)
RealPlayer 7 Basic
RedMon - Redirection Port Monitor
Skype™ 6.6 (Version: 6.6.106)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Zip Opener
VBA (2627.01) (Version: 6.03.00.9402)
VBA (2701.01) (Version: 6.03.00.9402)
VIA Plattform-Geräte-Manager (Version: 1.34)
Visual Basic for Applications (R) Core - English (Version: 6.4.99.69)
Visual Basic for Applications (R) Core - German (Version: 6.4.99.69)
Visual Basic for Applications (R) Core (Version: 6.4.99.69)
VLC media player 1.1.11 (Version: 1.1.11)
Vuze (Version: 5.0.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (32-Bit) (Version: 4.01.0)
Zip Opener Packages
Zip Opener Packages 11
Zip Opener Packages 40
 

==================== Restore Points  =========================

09-07-2013 20:24:42 Windows Update
10-07-2013 21:13:12 DirectX wurde installiert
10-07-2013 21:13:48 DirectX wurde installiert
15-07-2013 18:07:06 ComboFix created restore point

==================== Hosts content: ==========================

2009-07-14 04:04 - 2013-07-16 20:36 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {058509E8-2C50-4F4C-9B59-33F7B79DD3F3} - System32\Tasks\Driver Whiz-RTMUpdater => C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe [2013-07-10] (PC Drivers Headquarters)
Task: {07C314CF-90E5-4D0F-99EA-021A12AA519F} - System32\Tasks\User_Feed_Synchronization-{B145A8F7-7BC6-4291-9AF1-D6257E1B3D55} => C:\Windows\system32\msfeedssync.exe [2013-04-30] (Microsoft Corporation)
Task: {09700E3D-68B7-478C-AFCC-2E53DBB2D749} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-16] (Adobe Systems Incorporated)
Task: {1274411C-DC3D-4701-8EEB-F4982E2B64D3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-27] (Google Inc.)
Task: {1B5AF907-7BA6-4F67-93C5-A09C56CAA3AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-06-19] (Piriform Ltd)
Task: {392E3378-782A-43D7-A51B-641C1C27147A} - System32\Tasks\QtraxPlayer => C:\Program Files\Microsoft Silverlight\sllauncher.exe [2013-05-13] (Microsoft Corporation)
Task: {40110067-F8B4-4145-A8FE-F016F99F4469} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {57BDB861-E830-481B-81B2-0B0FD0FA4B5D} - System32\Tasks\Driver Whiz-RTMRules => C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe [2013-07-10] (PC Drivers Headquarters)
Task: {70C457D9-8D0B-4304-BFEC-A2568F0B0A2E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3494505662-4261020370-359962081-1000UA => C:\Users\PC_01\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-27] (Google Inc.)
Task: {95A29D31-B572-4FE5-AC23-4337900C08C6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3494505662-4261020370-359962081-1000Core => C:\Users\PC_01\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-27] (Google Inc.)
Task: {AE3BB3CD-E44E-4E43-88C2-064EC7743361} - System32\Tasks\EPUpdater => C:\Users\PC_01\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe No File
Task: {AF73D8E8-FBBD-4804-AAD2-88202DE4B88A} - System32\Tasks\Driver Whiz-RTMScan => C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe [2013-07-10] (PC Drivers Headquarters)
Task: {C2436B58-5370-44F7-BE88-98209D143285} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-27] (Google Inc.)
Task: {C96BAF98-267D-4D3E-A881-D8124C36289A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {CE08CF73-55EB-41F6-89D7-F48F3AE6F5BB} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-11] (Microsoft Corporation)
Task: {E267D7DB-D8EE-4C1E-A85A-0C1E0DE4B791} - System32\Tasks\DealPlyUpdate => C:\Program No File
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3494505662-4261020370-359962081-1000Core.job => C:\Users\PC_01\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3494505662-4261020370-359962081-1000UA.job => C:\Users\PC_01\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/18/2013 10:11:18 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "*" des "language"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (07/17/2013 11:56:30 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 22.0.0.4917, Zeitstempel: 0x51c06b1b
Name des fehlerhaften Moduls: xul.dll, Version: 22.0.0.4917, Zeitstempel: 0x51c06a5b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00173668
ID des fehlerhaften Prozesses: 0x10a4
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3


System errors:
=============
Error: (07/17/2013 09:56:51 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (07/18/2013 10:11:18 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files\freecommander\DelZip179.dllc:\program files\freecommander\DelZip179.dll8

Error: (07/17/2013 11:56:30 PM) (Source: Application Error)(User: )
Description: firefox.exe22.0.0.491751c06b1bxul.dll22.0.0.491751c06a5bc00000050017366810a401ce833865f880b8C:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\Mozilla Firefox\xul.dllbbec58c8-ef2b-11e2-99ff-0025224cab44


==================== Memory info =========================== 

Percentage of memory in use: 41%
Total physical RAM: 1791.3 MB
Available physical RAM: 1050.29 MB
Total Pagefile: 3582.61 MB
Available Pagefile: 2568.78 MB
Total Virtual: 2047.88 MB
Available Virtual: 1897.64 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:117.09 GB) (Free:37.01 GB) NTFS
Drive d: (Daten) (Fixed) (Total:348.57 GB) (Free:333.79 GB) NTFS
Drive f: (alte_Platte) (Fixed) (Total:74.53 GB) (Free:15.85 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive g: () (Removable) (Total:1.87 GB) (Free:1.87 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 75 GB) (Disk ID: 39173916)
Partition 1: (Active) - (Size=75 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 5BF23C35)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=117 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=349 GB) - (Type=07 NTFS)

========================================================
Disk: 6 (Size: 2 GB) (Disk ID: 7A4CA868)
Partition 1: (Not Active) - (Size=2 GB) - (Type=06)

==================== End Of Log ============================


FRST Logfile:


	
Code: 

 
ATTFilter


  

	
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-07-2013
Ran by PC_01 (administrator) on 18-07-2013 10:34:45
Running from G:\
Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(PC Drivers Headquarters) C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe
(NETGEAR) C:\Program Files\NETGEAR\WG111T\WG111T.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\system32\prevhost.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(Farbar) G:\FRST (1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1174016 2010-11-20] (Microsoft Corporation)
HKCU\...\Run: [Driver Whiz] - C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe /applicationMode:systemTray /showWelcome:false [3959664 2013-07-10] (PC Drivers Headquarters)
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
HKU\Default\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [ 2009-07-14] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [ 2009-07-14] (Microsoft Corporation)
Startup: C:\ProgramData\Start Menu\Programs\Startup\NETGEAR WG111T Smart Wizard.lnk
ShortcutTarget: NETGEAR WG111T Smart Wizard.lnk -> C:\Program Files\NETGEAR\WG111T\WG111T.exe (NETGEAR)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - "C:\Program Files\Internet Explorer\iexplore.exe"
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 194.25.2.129 172.16.16.179

FireFox:
========
FF ProfilePath: C:\Users\PC_01\AppData\Roaming\Mozilla\Firefox\Profiles\3v77apws.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\PC_01\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\PC_01\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Users\PC_01\AppData\Roaming\Mozilla\Firefox\Profiles\3v77apws.default\Extensions\7125a285-7e68-47aa-9d72-e81874f4d47e@d3fcdb92-135d-4a8a-8cf6-11e3b57c5fda.com
FF Extension: toolbar - C:\Users\PC_01\AppData\Roaming\Mozilla\Firefox\Profiles\3v77apws.default\Extensions\toolbar@web.de.xpi
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

Chrome: 
=======
CHR HomePage: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=A4C50025224CAB44&affID=119357&tt=160713_91114&tsp=4946
CHR RestoreOnStartup: "hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=A4C50025224CAB44&affID=119357&tt=160713_91114&tsp=4946"
CHR DefaultSearchURL: (Ask) - hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=AVR-4&o=APN10261&locale=de_DE&apn_uid=75601dbd-e3e8-4672-8352-f30d20a1f329&apn_ptnrs=%5EAGS&apn_sauid=5572F6DF-27D7-4D1D-B39A-C89292D8F7ED&apn_dtid=%5EYYYYYY%5EYY%5EDE&q={searchTerms}
CHR DefaultSuggestURL: (Ask) - hxxp://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\PC_01\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\PC_01\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\PC_01\AppData\Local\Google\Chrome\Application\28.0.1500.72\gcswf32.dll No File
CHR Plugin: (Google Update) - C:\Users\PC_01\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (YouTube) - C:\Users\PC_01\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\PC_01\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Gmail) - C:\Users\PC_01\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR StartMenuInternet: Google Chrome - "C:\Users\PC_01\AppData\Local\Google\Chrome\Application\chrome.exe"

========================== Services (Whitelisted) =================


==================== Drivers (Whitelisted) ====================

R3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [14848 2010-06-19] (Siliten)
R2 MLPTDR_P; C:\Windows\system32\MLPTDR_P.SYS [20032 2003-07-09] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
S3 QCMerced; C:\Windows\System32\DRIVERS\LVCM.sys [37888 2002-06-10] (Logitech Inc.)
S3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [379904 2010-03-31] (Realtek Semiconductor Corporation                           )
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1086976 2009-09-17] (VIA Technologies, Inc.)
S3 WG111T; C:\Windows\System32\DRIVERS\WG111Tv.sys [870400 2007-06-01] (Atheros Communications, Inc.)
S3 catchme; \??\C:\Users\PC_01\AppData\Local\Temp\catchme.sys [x]

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 9EBBBA55060F786F0FCAA3893BFA2806
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bridge.sys 77361D72A04F18809D0EFB6CCEB74D4B
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys 247B4CE2DAB1160CD422D532D5241E1F
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 16498EBC04AE9DD07049A8884B205C05
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legitB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\fssfltr.sys B0082808A6856A252F7CDD939892CE50
C:\Windows\System32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\system32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys D6782400E92C62ED2BF3AF8ED4753738
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys B7895B4182C0D16F6EFADEB8081E8D36
C:\Windows\System32\Drivers\ksecpkg.sys D30159AC9237519FBC62C6EC247D2D46
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mcdbus.sys 8FD868E32459ECE2A1BB0169F513D31E
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\system32\MLPTDR_P.SYS 457746DA312920874015BAD2F44C8D51
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mrxsmb.sys 5D16C921E3671636C0EBA3BBAAC5FD25
C:\Windows\System32\DRIVERS\mrxsmb10.sys 6D17A4791ACA19328C685D256349FEFC
C:\Windows\System32\DRIVERS\mrxsmb20.sys B81F204D146000BE76651A50670A5E9E
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netr73.sys D961BF5709D40E42E79EB22BAA801B51
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\drivers\ccdcmb.sys B0A67DE1A128389AEA4D42C5A56215FD
C:\Windows\System32\drivers\ccdcmbo.sys 025C54F9F8C8BC1894EA38529C742C54
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys 5E43D2B0EE64123D4880DFA6626DEFDE
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nvm62x32.sys B5E37E31C053BC9950455A257526514B
C:\Windows\System32\DRIVERS\nvlddmkm.sys 9A77B1C13BCCEDDF78DFD7AFC25B4F5E
C:\Windows\System32\DRIVERS\nvmf6232.sys 1DE923088878B495CD4219E47BA34EB8
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\System32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\System32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\LVCM.sys 6D72758EFEB58C8AA70E2468063A3EB5
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RDPWD.sys F031683E6D1FEA157ABB2FF260B51E61
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RimUsb.sys 0F6756EF8BDA6DFA7BE50465C83132BB
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RTL8187B.sys 949F74CB383A1D5DA67AEA9CCD4A8B87
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Sftfslh.sys D9B734638DD8DBA9D59AAD3189CD0FAD
C:\Windows\System32\DRIVERS\Sftplaylh.sys 2F61BD46C0BFF4EB36E1E359CA17BFC5
C:\Windows\System32\DRIVERS\Sftredirlh.sys 518BAC0179F94304F422696B47C0EC12
C:\Windows\System32\DRIVERS\Sftvollh.sys 747325236D88B3F05FFD27FF9EC711C5
C:\Windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\Windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\Windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys D32FDAC73FCD76B85389C39BC1087F2A
C:\Windows\System32\DRIVERS\tcpip.sys D32FDAC73FCD76B85389C39BC1087F2A
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbser_lowerflt.sys 78B74AF8727A28C128E164E9B53A5413
C:\Windows\System32\drivers\usbaudio.sys 1D9F2BD026E8E2D45033A4DF3F16B78C
C:\Windows\System32\DRIVERS\usbccgp.sys BD9C55D7023C5DE374507ACC7A14E2AC
C:\Windows\system32\drivers\usbcir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbehci.sys F92DE757E4B7CE9C07C5E65423F3AE3B
C:\Windows\System32\DRIVERS\usbhub.sys 8DC94AEC6A7E644A06135AE7506DC2E9
C:\Windows\System32\DRIVERS\usbohci.sys E185D44FAC515A18D9DEDDC23C2CDF44
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbser.sys 31181DE6190B39FC8007DFFD1A48FFD6
C:\Windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\Windows\System32\DRIVERS\usbuhci.sys 68DF884CF41CDADA664BEB01DAF67E3D
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 is legit
C:\Windows\System32\drivers\viahduaa.sys F27C1D81ED7DACA5B1A539745A4EF710
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys 7090D3436EEB4E7DA3373090A23448F7
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys A840213F1ACDCC175B4D1D5AAEAC0D7A
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WG111Tv.sys 5D4F8664E13E71CB75D3FC0DD27FC24C
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys A67E5F9A400F3BD1BE3D80613B45F708
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\Windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-17 23:07 - 2013-07-17 23:07 - 00000000 ____D C:\Windows\Sun
2013-07-17 22:16 - 2013-07-17 22:16 - 00000000 ____D C:\Users\PC_01\AppData\Local\{69747CF4-790F-405E-9994-72410A4AE30A}
2013-07-17 21:14 - 2013-07-17 21:14 - 00070768 _____ C:\JRT.txt
2013-07-17 21:12 - 2013-07-17 21:12 - 00000000 ____D C:\Windows\ERUNT
2013-07-17 21:10 - 2013-07-17 21:11 - 00558958 _____ (Oleg N. Scherbakov) C:\Users\PC_01\Downloads\JRT512.exe
2013-07-17 20:03 - 2013-07-17 20:03 - 00007854 _____ C:\Windows\PFRO.log
2013-07-17 20:01 - 2013-07-18 10:30 - 00003472 _____ C:\Windows\setupact.log
2013-07-17 20:01 - 2013-07-17 20:01 - 00008691 _____ C:\AdwCleaner[S1].txt
2013-07-17 20:01 - 2013-07-17 20:01 - 00000000 _____ C:\Windows\setuperr.log
2013-07-17 20:00 - 2013-07-17 20:00 - 00662345 _____ C:\Users\PC_01\Downloads\adwcleaner.exe
2013-07-16 20:40 - 2013-07-16 20:40 - 00040798 _____ C:\ComboFix.txt
2013-07-16 19:50 - 2013-07-16 19:50 - 00000000 ____D C:\Users\PC_01\Qtrax
2013-07-15 20:06 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-07-15 20:06 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-07-15 20:06 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-07-15 20:06 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-07-15 20:06 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-07-15 20:06 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-07-15 20:06 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-07-15 20:06 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-07-15 19:50 - 2013-07-16 20:40 - 00000000 ____D C:\Qoobox
2013-07-15 19:49 - 2013-07-16 20:38 - 00000000 ____D C:\Windows\erdnt
2013-07-15 19:33 - 2013-07-15 19:34 - 05089088 ____R (Swearware) C:\Users\PC_01\Downloads\ComboFix.exe
2013-07-13 12:05 - 2013-07-13 12:05 - 00000000 ____D C:\FRST
2013-07-10 23:17 - 2013-07-10 23:17 - 00000020 _____ C:\Windows\Dõp
2013-07-09 22:32 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-09 22:32 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-09 22:32 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-09 22:32 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-09 22:32 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-09 22:32 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-09 22:32 - 2013-06-12 01:43 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-09 22:32 - 2013-06-12 01:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-09 22:32 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-09 22:32 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-09 22:32 - 2013-06-12 01:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-09 22:32 - 2013-06-12 01:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-09 22:32 - 2013-06-12 01:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-09 22:32 - 2013-06-12 01:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-09 22:32 - 2013-06-12 00:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-09 22:32 - 2013-06-07 04:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-09 21:15 - 2013-06-05 05:05 - 02347520 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-09 21:15 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-09 21:15 - 2013-05-06 06:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-09 21:15 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-07 15:08 - 2013-07-07 15:08 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-07-07 15:08 - 2013-07-07 15:08 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-07-07 15:08 - 2013-07-07 15:08 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-07-07 15:08 - 2013-07-07 15:08 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-07-07 15:08 - 2013-07-07 15:08 - 00000000 ____D C:\Program Files\Java
2013-07-07 10:32 - 2013-07-07 10:32 - 00000000 ____D C:\Users\PC_01\AppData\Local\Quick_Zip_Dev
2013-07-07 10:30 - 2013-07-07 10:30 - 00002931 _____ C:\Users\PC_01\Desktop\Quick Zip 5.1.lnk
2013-07-07 10:30 - 2013-07-07 10:30 - 00000000 ____D C:\Users\PC_01\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Quick Zip 5.1
2013-07-07 10:30 - 2013-07-07 10:30 - 00000000 ____D C:\Program Files\QuickZip
2013-07-07 10:25 - 2013-07-07 10:25 - 00000000 ____D C:\Users\PC_01\Documents\Add-in Express
2013-06-27 08:07 - 2013-07-16 19:47 - 00000000 ____D C:\Program Files\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2013-07-18 10:34 - 2011-12-26 23:13 - 01500018 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-18 10:34 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Default
2013-07-18 10:30 - 2013-07-17 20:01 - 00003472 _____ C:\Windows\setupact.log
2013-07-18 10:20 - 2012-04-08 13:58 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-18 10:09 - 2012-08-25 18:16 - 01528870 _____ C:\Windows\WindowsUpdate.log
2013-07-18 10:08 - 2011-12-27 18:36 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-18 10:08 - 2011-12-27 18:14 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3494505662-4261020370-359962081-1000UA.job
2013-07-18 07:53 - 2009-07-14 06:34 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-18 07:53 - 2009-07-14 06:34 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-18 07:45 - 2011-12-27 18:36 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-18 07:45 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-17 23:58 - 2013-03-12 21:52 - 00000000 ____D C:\Users\PC_01\AppData\Roaming\Skype
2013-07-17 23:08 - 2011-12-27 18:14 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3494505662-4261020370-359962081-1000Core.job
2013-07-17 23:07 - 2013-07-17 23:07 - 00000000 ____D C:\Windows\Sun
2013-07-17 22:16 - 2013-07-17 22:16 - 00000000 ____D C:\Users\PC_01\AppData\Local\{69747CF4-790F-405E-9994-72410A4AE30A}
2013-07-17 22:06 - 2011-12-26 23:06 - 00000000 ___RD C:\Users\PC_01\Desktop
2013-07-17 21:14 - 2013-07-17 21:14 - 00070768 _____ C:\JRT.txt
2013-07-17 21:12 - 2013-07-17 21:12 - 00000000 ____D C:\Windows\ERUNT
2013-07-17 21:11 - 2013-07-17 21:10 - 00558958 _____ (Oleg N. Scherbakov) C:\Users\PC_01\Downloads\JRT512.exe
2013-07-17 20:03 - 2013-07-17 20:03 - 00007854 _____ C:\Windows\PFRO.log
2013-07-17 20:01 - 2013-07-17 20:01 - 00008691 _____ C:\AdwCleaner[S1].txt
2013-07-17 20:01 - 2013-07-17 20:01 - 00000000 _____ C:\Windows\setuperr.log
2013-07-17 20:00 - 2013-07-17 20:00 - 00662345 _____ C:\Users\PC_01\Downloads\adwcleaner.exe
2013-07-17 19:50 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Public\Desktop
2013-07-16 23:53 - 2012-04-08 13:58 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-16 23:53 - 2011-12-27 18:48 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-16 23:52 - 2011-12-27 18:26 - 00000000 ____D C:\Users\PC_01\AppData\Local\Adobe
2013-07-16 20:40 - 2013-07-16 20:40 - 00040798 _____ C:\ComboFix.txt
2013-07-16 20:40 - 2013-07-15 19:50 - 00000000 ____D C:\Qoobox
2013-07-16 20:40 - 2009-07-14 04:37 - 00000000 ___RD C:\Users\Public
2013-07-16 20:38 - 2013-07-15 19:49 - 00000000 ____D C:\Windows\erdnt
2013-07-16 20:36 - 2009-07-14 04:04 - 00000248 _____ C:\Windows\system.ini
2013-07-16 20:35 - 2009-07-14 04:03 - 61079552 _____ C:\Windows\system32\config\software.bak
2013-07-16 20:35 - 2009-07-14 04:03 - 16252928 _____ C:\Windows\system32\config\system.bak
2013-07-16 20:35 - 2009-07-14 04:03 - 04980736 _____ C:\Windows\system32\config\default.bak
2013-07-16 20:35 - 2009-07-14 04:03 - 00262144 _____ C:\Windows\system32\config\security.bak
2013-07-16 20:35 - 2009-07-14 04:03 - 00262144 _____ C:\Windows\system32\config\sam.bak
2013-07-16 19:50 - 2013-07-16 19:50 - 00000000 ____D C:\Users\PC_01\Qtrax
2013-07-16 19:50 - 2011-12-26 23:06 - 00000000 ____D C:\Users\PC_01
2013-07-16 19:47 - 2013-06-27 08:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-15 20:58 - 2011-12-27 18:42 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy
2013-07-15 20:04 - 2011-12-27 18:42 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-07-15 20:02 - 2012-08-15 14:34 - 00000000 ____D C:\ProgramData\Avira
2013-07-15 19:34 - 2013-07-15 19:33 - 05089088 ____R (Swearware) C:\Users\PC_01\Downloads\ComboFix.exe
2013-07-15 18:12 - 2011-12-27 18:14 - 00002368 _____ C:\Users\PC_01\Desktop\Google Chrome.lnk
2013-07-13 12:05 - 2013-07-13 12:05 - 00000000 ____D C:\FRST
2013-07-12 23:58 - 2011-12-27 18:53 - 00000000 ____D C:\Users\PC_01\AppData\Roaming\SoftGrid Client
2013-07-10 23:56 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-07-10 23:31 - 2013-03-12 21:51 - 00000000 ___RD C:\Program Files\Skype
2013-07-10 23:31 - 2013-03-12 21:51 - 00000000 ____D C:\ProgramData\Skype
2013-07-10 23:17 - 2013-07-10 23:17 - 00000020 _____ C:\Windows\Dõp
2013-07-10 23:17 - 2012-01-15 10:06 - 00000000 ____D C:\Program Files\Windows Live
2013-07-10 23:17 - 2011-12-26 23:55 - 00000000 ____D C:\Windows\Panther
2013-07-10 22:37 - 2013-06-17 23:04 - 00000000 ____D C:\ProgramData\UAB
2013-07-10 09:09 - 2009-07-14 06:33 - 00360064 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-10 09:08 - 2012-01-07 18:26 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-10 09:08 - 2009-07-14 10:57 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-10 09:08 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-09 22:30 - 2011-12-26 23:32 - 75699896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-07-08 17:53 - 2012-12-05 22:03 - 00000244 _____ C:\Windows\system32\lvcoinst.log
2013-07-07 15:08 - 2013-07-07 15:08 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-07-07 15:08 - 2013-07-07 15:08 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-07-07 15:08 - 2013-07-07 15:08 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-07-07 15:08 - 2013-07-07 15:08 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-07-07 15:08 - 2013-07-07 15:08 - 00000000 ____D C:\Program Files\Java
2013-07-07 15:08 - 2012-04-29 14:12 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-07-07 15:08 - 2011-12-28 22:57 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-07-07 10:32 - 2013-07-07 10:32 - 00000000 ____D C:\Users\PC_01\AppData\Local\Quick_Zip_Dev
2013-07-07 10:30 - 2013-07-07 10:30 - 00002931 _____ C:\Users\PC_01\Desktop\Quick Zip 5.1.lnk
2013-07-07 10:30 - 2013-07-07 10:30 - 00000000 ____D C:\Users\PC_01\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Quick Zip 5.1
2013-07-07 10:30 - 2013-07-07 10:30 - 00000000 ____D C:\Program Files\QuickZip
2013-07-07 10:25 - 2013-07-07 10:25 - 00000000 ____D C:\Users\PC_01\Documents\Add-in Express
2013-07-06 23:39 - 2012-03-18 18:08 - 00000000 ____D C:\Users\PC_01\AppData\Roaming\vlc
2013-07-06 23:27 - 2012-01-22 21:43 - 00000109 _____ C:\Users\PC_01\AppData\default.pls
2013-07-06 09:36 - 2009-07-14 06:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-02 11:04 - 2011-12-27 18:36 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-07-02 11:04 - 2011-12-27 18:36 - 00000000 ____D C:\Program Files\CCleaner
2013-06-27 15:27 - 2012-04-29 14:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-06-22 09:59 - 2013-02-24 15:05 - 00000000 ____D C:\Users\PC_01\AppData\Roaming\Azureus

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== BCD ================================

Windows-Start-Manager
---------------------
Bezeichner              {bootmgr}
device                  partition=\Device\HarddiskVolume2
description             Windows Boot Manager
locale                  de-DE
inherit                 {globalsettings}
default                 {current}
resumeobject            {3d2f1c80-300c-11e1-bbba-c0d5c2b34a16}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Windows-Startladeprogramm
-------------------------
Bezeichner              {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  de-DE
inherit                 {bootloadersettings}
recoverysequence        {3d2f1c82-300c-11e1-bbba-c0d5c2b34a16}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {3d2f1c80-300c-11e1-bbba-c0d5c2b34a16}
nx                      OptIn

Windows-Startladeprogramm
-------------------------
Bezeichner              {3d2f1c82-300c-11e1-bbba-c0d5c2b34a16}
device                  ramdisk=[C:]\Recovery\3d2f1c82-300c-11e1-bbba-c0d5c2b34a16\Winre.wim,{3d2f1c83-300c-11e1-bbba-c0d5c2b34a16}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\3d2f1c82-300c-11e1-bbba-c0d5c2b34a16\Winre.wim,{3d2f1c83-300c-11e1-bbba-c0d5c2b34a16}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Wiederaufnahme aus dem Ruhezustand
----------------------------------
Bezeichner              {3d2f1c80-300c-11e1-bbba-c0d5c2b34a16}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  de-DE
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
pae                     Yes
debugoptionenabled      No

Windows-Speichertestprogramm
----------------------------
Bezeichner              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \boot\memtest.exe
description             Windows-Speicherdiagnose
locale                  de-DE
inherit                 {globalsettings}
badmemoryaccess         Yes

EMS-Einstellungen
-----------------
Bezeichner              {emssettings}
bootems                 Yes

Debuggereinstellungen
---------------------
Bezeichner              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

RAM-Defekte
-----------
Bezeichner              {badmemory}

Globale Einstellungen
---------------------
Bezeichner              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Startladeprogramm-Einstellungen
-------------------------------
Bezeichner              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Hypervisoreinstellungen
-------------------
Bezeichner              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Einstellungen zur Ladeprogrammfortsetzung
-----------------------------------------
Bezeichner              {resumeloadersettings}
inherit                 {globalsettings}

Ger„teoptionen
--------------
Bezeichner              {3d2f1c83-300c-11e1-bbba-c0d5c2b34a16}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\3d2f1c82-300c-11e1-bbba-c0d5c2b34a16\boot.sdi



LastRegBack: 2013-07-17 20:28

==================== End Of Log ============================
         
 
--- --- ---

 

Themen zu java problem
abend, angezeigt, anwendungen, class, fehlermeldung, funktionier, funktioniert, gen, guten, installation, java, proble, problem, rechner, spybot, tagen, troja, trojaner, trojanern, verhindert, viren


« C:\Program\HomeTab\TBUpdater.dll Datei wurde nicht gefunden | Qvo6 lässt sich nicht entfernen, vermutlich bisher ziemlichen murks gemacht... »


Ähnliche Themen: java problem


  1. Minecraft java problem... glaub ich
    Alles rund um Mac OSX & Linux - 22.06.2015 (2)
  2. Problem mit JAVA
    Alles rund um Windows - 15.11.2014 (5)
  3. Problem mit JAVA/Lamar.isl.8
    Log-Analyse und Auswertung - 02.12.2013 (9)
  4. Java/CVE Problem
    Log-Analyse und Auswertung - 04.10.2013 (11)
  5. Problem mit Trojaner Win32:Zbot-QGP + Java:Agent-CDZ + Java:Malware-gen
    Log-Analyse und Auswertung - 29.03.2013 (9)
  6. Nach Verschlüsselungstrojaner viele Virenfunde (JAVA/Jogek.CT; rus JAVA/Agent.MH; JAVA/Dldr.Pesur.BH; W32/Idele.2219; VBS/Fluenza.B; u.a...
    Log-Analyse und Auswertung - 28.01.2013 (1)
  7. Internet langsam (Java-Virus JAVA/ClassLoader.AV und Java-Virus JAVA/Exdoer.O)
    Log-Analyse und Auswertung - 01.03.2012 (1)
  8. Problem mit java(Java/trojanerDownloader.....)
    Plagegeister aller Art und deren Bekämpfung - 03.06.2011 (18)
  9. problem mit java
    Alles rund um Windows - 07.01.2011 (19)
  10. Java SE 6 U10 Problem
    Alles rund um Windows - 11.12.2010 (16)
  11. Problem mit Virus \ Java/ClassLoader.BO \
    Log-Analyse und Auswertung - 26.11.2010 (0)
  12. Problem mit Java Trojaner
    Plagegeister aller Art und deren Bekämpfung - 08.05.2010 (6)
  13. problem bei java installation
    Alles rund um Windows - 18.05.2009 (5)
  14. Problem mit Java Anwendungen
    Mülltonne - 19.09.2007 (0)
  15. java problem
    Mülltonne - 10.05.2007 (0)
  16. Problem mit installation von Java sun
    Alles rund um Windows - 14.01.2005 (9)
  17. Opera/Java-Problem
    Alles rund um Windows - 26.03.2003 (9)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema java problem - guten morgen, hier nochmals die Logs aus FRST -VG - Nic- Code: Alles auswählen Aufklappen ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-07-2013 Ran by PC_01 - java problem...
Archiv
Du betrachtest: java problem auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55