| |
| |||||||
Log-Analyse und Auswertung: GMER Auswertung, CSRSS.EXEWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
04.07.2016, 20:56
| #1 |
| |  GMER Auswertung, CSRSS.EXE Alles klar, hier die Ergebnisse: Code:
ATTFilter GMER 2.2.19882 - hxxp://www.gmer.net
Rootkit scan 2016-07-04 21:45:54
Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\00000030 INTEL_SSDSC2BW480H6 rev.RG21 447.13GB
Running: vsj122eb.exe; Driver: C:\Users\SUSPIC~1\AppData\Local\Temp\pxrorpod.sys
---- User code sections - GMER 2.2 ----
? C:\WINDOWS\SYSTEM32\NTASN1.dll [596] entry point in ".rdata" section 000000007111bb10
? C:\WINDOWS\system32\wbem\wbemsvc.dll [7072] entry point in ".rdata" section 000000006e478fa0
? C:\WINDOWS\SYSTEM32\iertutil.dll [7072] entry point in ".rdata" section 0000000070f3d380
? C:\WINDOWS\SYSTEM32\NTASN1.dll [6152] entry point in ".rdata" section 000000007111bb10
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInAddBuffer 00007ffcfe153340 7 bytes JMP 00007ffd02860500
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInClose 00007ffcfe156210 7 bytes JMP 00007ffd028603b0
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInGetPosition 00007ffcfe156280 7 bytes JMP 00007ffd02860538
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInOpen 00007ffcfe1562a0 7 bytes JMP 00007ffd02860378
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInPrepareHeader 00007ffcfe1562b0 7 bytes JMP 00007ffd02860490
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInReset 00007ffcfe1562c0 7 bytes JMP 00007ffd02860458
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInStart 00007ffcfe1562d0 7 bytes JMP 00007ffd028603e8
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInStop 00007ffcfe1562e0 7 bytes JMP 00007ffd02860420
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveInUnprepareHeader 00007ffcfe1562f0 7 bytes JMP 00007ffd028604c8
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutClose 00007ffcfe156310 7 bytes JMP 00007ffd028601f0
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutGetVolume 00007ffcfe1563a0 7 bytes JMP 00007ffd02860308
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutOpen 00007ffcfe1563c0 7 bytes JMP 00007ffd028601b8
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutPrepareHeader 00007ffcfe1563e0 7 bytes JMP 00007ffd02860260
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutReset 00007ffcfe1563f0 7 bytes JMP 00007ffd028602d0
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutSetVolume 00007ffcfe156430 7 bytes JMP 00007ffd02860340
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutUnprepareHeader 00007ffcfe156440 7 bytes JMP 00007ffd02860298
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\WINMM.dll!waveOutWrite 00007ffcfe156450 7 bytes JMP 00007ffd02860228
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCreate8 00007ffce639cd80 5 bytes JMP 00007ffd02860180
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCaptureCreate 00007ffce63bb5d0 7 bytes JMP 00007ffd02860570
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCaptureCreate8 00007ffce63bb6d0 7 bytes JMP 00007ffd028605a8
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCreate 00007ffce63bb800 7 bytes JMP 00007ffd02860148
.text C:\Windows\System\HsMgr64.exe[3984] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundFullDuplexCreate 00007ffce63bb920 5 bytes JMP 00007ffd028605e0
? C:\Windows\SYSTEM32\ActXPrxy.dll [4728] entry point in ".rdata" section 0000000072cbbd10
? C:\WINDOWS\system32\wbem\wbemsvc.dll [8120] entry point in ".rdata" section 000000006e478fa0
? C:\WINDOWS\system32\apphelp.dll [6732] entry point in ".rdata" section 0000000073990380
? C:\WINDOWS\system32\apphelp.dll [3784] entry point in ".rdata" section 0000000073990380
---- Threads - GMER 2.2 ----
Thread C:\WINDOWS\system32\csrss.exe [5848:6372] fffff96086aa4030
---- Registry - GMER 2.2 ----
Reg HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\NEC675416843009_27_07D8_A2^BA569A843757EAE160E8624F5D78AFCE@Timestamp 0x12 0xD4 0xDE 0x78 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{509474C0-32E3-4334-97BA-888A2E1512BC}\Connection@Name isatap.{D1D0E06C-01B9-4793-8D71-E710F9B2056F}
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed -314382742
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@POSTTime 23084
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@FwPOSTTime 22389
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@TotalResumeTime 26743
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeBootMgrTime 364
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeAppTime 592
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeAppStartTimestamp 23450
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeHiberFileTime 497
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeRestoreImageStartTimestamp 23542
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeIoTime 297
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeDecompressTime 178
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeKernelSwitchTimestamp 24043
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelReturnFromHandlerTimestamp 24073
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@SleeperThreadEndTimestamp 25885
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@TimeStampCounterAtSwitchTime 24069
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelReturnSystemPowerState 26740
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberHiberFileTime 2681
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@TotalHibernateTime 4986
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelResumeHiberFileTime 1557
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@DeviceResumeTime 840
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelAnimationTime 0
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelPagesProcessed 447381
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelPagesWritten 0x79 0x34 0x02 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@BootPagesProcessed 63160
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@BootPagesWritten 0xF6 0x46 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberWriteRate 240
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberCompressRate 32
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeReadRate 347
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeDecompressRate 132
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberChecksumIoTime 12
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelChecksumTime 33
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@KernelResumeIoCpuTime 1353
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HiberIoCpuTime 360
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@HybridBootAnimationTime 1825
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power@ResumeCompleteTimestamp 0x11 0x36 0xF9 0x03 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@GlassSessionId 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{509474C0-32E3-4334-97BA-888A2E1512BC}@InterfaceName isatap.{D1D0E06C-01B9-4793-8D71-E710F9B2056F}
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{509474C0-32E3-4334-97BA-888A2E1512BC}@ReusableType 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{509474C0-32E3-4334-97BA-888A2E1512BC}@DefunctTimestamp 0x34 0x54 0x7A 0x57 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Teredo\PreviousState\e0-88-5d-6f-a2-4b@ClientLocalPort 61635
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Teredo\PreviousState\e0-88-5d-6f-a2-4b@AddressCreationTimestamp 0x4B 0xE5 0x8A 0x0D ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Teredo\PreviousState\e0-88-5d-6f-a2-4b@TeredoAddress 2001:0:5ef5:79fd:1050:f3c:a77b:5639
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7@DisplayName MessagingService_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\Security@Security 0x01 0x00 0x14 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\TriggerInfo
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\TriggerInfo\0
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\TriggerInfo\0@Type 7
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\TriggerInfo\0@Action 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\TriggerInfo\0@Guid 0x16 0x28 0x7A 0x2D ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\TriggerInfo\0@Data0 0x75 0x18 0xBC 0xA3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7\TriggerInfo\0@DataType0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7@DisplayName Sync Host_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7@DisplayName Contact Data_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 2117
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch 301
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d1d0e06c-01b9-4793-8d71-e710f9b2056f}@LeaseObtainedTime 1467634744
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d1d0e06c-01b9-4793-8d71-e710f9b2056f}@T1 1467937144
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d1d0e06c-01b9-4793-8d71-e710f9b2056f}@T2 1468163944
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{d1d0e06c-01b9-4793-8d71-e710f9b2056f}@LeaseTerminatesTime 1468239544
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7@ImagePath C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7@DisplayName User Data Storage_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7@DisplayName User Data Access_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_1292bf7
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated 0x0F 0x44 0x39 0x25 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh 0x0F 0xAC 0xFD 0x86 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow 0x0F 0xDC 0x74 0xC3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeTickCount 0xAB 0x54 0x8F 0x04 ...
Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\0@Rw 0x64 0x62 0x03 0x00 ...
Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\62\0@RwMask 0x64 0x62 0x03 0x00 ...
Reg HKLM\SYSTEM\Setup\Upgrade\Pnp\CurrentControlSet\Control\DeviceMigration\Devices\SWD\MMDEVAPI\{0.0.0.00000000}.{16C994D2-D6E6-416B-93E3-ED89E3BF2B8F}\Interfaces\{e6327cad-dcec-4949-ae8a-991e976a79d2}\Properties\{a2a3fff4-353f-407c-9d86-1f9dc7d5a606}\0002@ 0x64 0x62 0x02 0x00 ...
Reg HKLM\SYSTEM\Setup\Upgrade\Pnp\CurrentControlSet\Control\DeviceMigration\Devices\SWD\MMDEVAPI\{0.0.0.00000000}.{38C20769-A99C-46EF-B892-07A115FD9966}\Interfaces\{e6327cad-dcec-4949-ae8a-991e976a79d2}\Properties\{a2a3fff4-353f-407c-9d86-1f9dc7d5a606}\0002@ 0x64 0x62 0x02 0x00 ...
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shutdown@CleanShutdown 1
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}\iexplore@Count 268
---- EOF - GMER 2.2 ----
|
|
| Themen zu GMER Auswertung, CSRSS.EXE |
| auswertung, betriebssystem, bösartiges, csrss.exe, eingefangen, gefangen, gefunde, gmer, laufe, laufen, mbam, nichts, quick, rootkit, scan, schonmal, screenshot, system, thread, untersuchen, viren, windows, windows 10 |
Hybrid-Darstellung
