| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: einige trojaner agenten, viele backdoors und einen spyagentWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
28.10.2011, 14:33
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  einige trojaner agenten, viele backdoors und einen spyagent Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL
PRC - [2011.08.23 21:20:18 | 000,887,976 | ---- | M] (Ask) -- C:\Programme\Ask.com\Updater\Updater.exe
SRV - File not found [Auto | Stopped] -- -- (ClipInc001)
SRV - File not found [Auto | Stopped] -- -- (AntiVirService)
SRV - File not found [Auto | Stopped] -- -- (AntiVirSchedulerService)
SRV - File not found [On_Demand | Stopped] -- -- (ACDaemon)
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.puls4.com/home
IE - HKCU\..\URLSearchHook: - No CLSID value found
IE - HKCU\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://start.facemoods.com"
FF - prefs.js..extensions.enabledItems: ffxtlbr@Facemoods.com:1.0.4
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.13.1.18107
FF - prefs.js..keyword.URL: "http://start.facemoods.com/results.php?f=5&a=fbpage&q="
[2011.09.28 11:19:45 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2011.10.20 13:08:22 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com
[2011.10.25 16:56:32 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-1.xml
[2011.10.04 11:59:26 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-2.xml
[2011.10.11 13:12:35 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-3.xml
[2011.10.27 18:04:12 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-4.xml
[2011.10.28 10:50:55 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-5.xml
[2011.09.12 16:53:26 | 000,000,950 | ---- | M] () -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin.xml
[2010.07.05 10:03:37 | 000,000,000 | ---D | M] (FaceMod Dislike Button) -- C:\Programme\Mozilla Firefox\extensions\{64e8cc5b-20db-4212-8320-178fc5ae71f7}
[2010.05.15 13:32:26 | 000,000,000 | ---D | M] (Facemoods) -- C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (ICQToolBar) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll (ICQ)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Programme\facemoods.com\facemoods\1.3.61.8\facemoodsTlbr.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Programme\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min File not found
O4 - HKLM..\Run: [tray_ico] File not found
O4 - HKLM..\Run: [tray_ico2] File not found
O4 - HKLM..\Run: [tray_ico3] File not found
O4 - HKLM..\Run: [tray_ico4] File not found
O4 - HKCU..\Run: [Facebook Update] C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk = File not found
O9 - Extra Button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Programme\Get Styles\ct.htm File not found
O9 - Extra 'Tools' menuitem : GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - C:\Programme\Get Styles\ct.htm File not found
O9 - Extra Button: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - z:\Programme\PartyGaming\PartyCasino\RunApp.exe File not found
O9 - Extra 'Tools' menuitem : PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - z:\Programme\PartyGaming\PartyCasino\RunApp.exe File not found
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - z:\Programme\PartyGaming\PartyPoker\RunApp.exe File not found
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - z:\Programme\PartyGaming\PartyPoker\RunApp.exe File not found
O18 - Protocol\Filter\text/html {574940E0-1B7A-4881-8FA3-1E809714B156} - C:\Dokumente und Einstellungen\Tobias\AppData\LocalLow\Microñoft\redir.dll File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.22 15:48:53 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
MsConfig - StartUpReg: 8DDYX0ZBPZ - hkey= - key= - File not found
MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: AlcoholAutomount - hkey= - key= - File not found
MsConfig - StartUpReg: ClipIncSrvTray - hkey= - key= - File not found
MsConfig - StartUpReg: D-Link AirPlus G - hkey= - key= - File not found
MsConfig - StartUpReg: DAEMON Tools - hkey= - key= - File not found
MsConfig - StartUpReg: ICQ - hkey= - key= - File not found
MsConfig - StartUpReg: KYQ8ZBOAXR - hkey= - key= - File not found
MsConfig - StartUpReg: NeroFilterCheck - hkey= - key= - File not found
MsConfig - StartUpReg: QuickTime Task - hkey= - key= - File not found
MsConfig - StartUpReg: SearchSettings - hkey= - key= - File not found
MsConfig - StartUpReg: SweetIM - hkey= - key= - File not found
MsConfig - StartUpReg: Tobias - hkey= - key= - C:\Dokumente und Einstellungen\Tobias\Tobias.exe ()
MsConfig - StartUpReg: {8A166BDA-4591-7E9D-6201-0BB7707305E8} - hkey= - key= - File not found
MsConfig - StartUpReg: {9AD77469-89CC-3354-3A72-25F37B434BAE} - hkey= - key= - File not found
[2011.10.27 14:29:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa
[2011.10.27 14:29:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix
[2011.10.27 14:18:08 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.7.1
[2011.10.27 14:17:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0
[2011.10.27 14:08:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.8.1
[2011.10.27 14:01:09 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2
[2011.10.27 13:56:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico
[2011.10.27 13:54:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1
[2011.10.27 13:53:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-9-0-lnk
[2011.10.27 13:53:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-9-0
[2011.10.27 13:53:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-8-0-lnk
[2011.10.27 13:53:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-8-0
[2011.10.24 09:43:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook
[2011.10.20 13:00:18 | 000,000,000 | ---D | C] -- C:\Programme\Ask.com
[2011.10.20 13:00:15 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\AskToolbar
[2011.10.20 13:00:04 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\ManyCam
[2011.10.20 13:00:01 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam
[2011.10.20 12:59:55 | 000,000,000 | ---D | C] -- C:\Programme\ManyCam
[2011.10.20 12:59:24 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask
[2011.10.28 09:46:25 | 000,202,984 | -H-- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.10.28 09:46:25 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hîsts
[2011.10.27 22:15:58 | 000,000,224 | ---- | M] () -- C:\WINDOWS\info1
[2011.10.27 21:41:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok
[2011.10.20 12:59:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask
[2009.08.20 17:54:43 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{39850DC2-6343-4AE6-BC4C-63494A9C369F}
[2009.08.20 18:01:39 | 000,000,000 | -H-D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4843418D-E3A6-4662-842A-857DF0C650FB}
[2011.08.12 20:57:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Azno
[2010.06.06 22:04:19 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\facemoods.com
[2011.09.14 18:21:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\FinalTorrent
[2011.08.15 11:37:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Maadci
[2011.10.20 13:00:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam
[2011.08.15 11:37:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Oksuzu
[2011.08.13 13:43:28 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\pdfforge
[2011.08.13 13:43:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Search Settings
[2011.08.15 09:42:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Xuukhe
:Files
C:\Programme\Ask.com
C:\Dokumente und Einstellungen\Tobias\AppData\LocalLow\Micro*
C:\Windows\tasks\*.job
C:\WINDOWS\*.rar
C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\*.sys
:Commands
[emptytemp]
[resethosts]
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
28.10.2011, 14:44
| #17 |
 | einige trojaner agenten, viele backdoors und einen spyagent All processes killed
__________________========== OTL ========== No active process named Updater.exe was found! Service ClipInc001 stopped successfully! Service ClipInc001 deleted successfully! Service AntiVirService stopped successfully! Service AntiVirService deleted successfully! Service AntiVirSchedulerService stopped successfully! Service AntiVirSchedulerService deleted successfully! Service ACDaemon stopped successfully! Service ACDaemon deleted successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{855F3B16-6D32-4fe6-8A56-BBB695989046} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4fe6-8A56-BBB695989046}\ deleted successfully. C:\Programme\ICQ6Toolbar\ICQToolBar.dll moved successfully. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{EEE6C35D-6118-11DC-9C72-001320C79847} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}\ not found. HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully! Prefs.js: "ICQ Search" removed from browser.search.defaultenginename Prefs.js: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=" removed from browser.search.defaulturl Prefs.js: "Google" removed from browser.search.selectedEngine Prefs.js: "hxxp://start.facemoods.com" removed from browser.startup.homepage Prefs.js: ffxtlbr@Facemoods.com:1.0.4 removed from extensions.enabledItems Prefs.js: toolbar@ask.com:3.13.1.18107 removed from extensions.enabledItems Prefs.js: "hxxp://start.facemoods.com/results.php?f=5&a=fbpage&q=" removed from keyword.URL C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\searchplugins folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\logs folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\defaults\preferences folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\defaults folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\datastore folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\chrome\temp\ff-config.Thu-20-Oct-2011-11-17-26-GMT folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\chrome\temp folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\chrome\skin folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\chrome\content folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com\chrome folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\extensions\toolbar@ask.com folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-1.xml moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-2.xml moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-3.xml moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-4.xml moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin-5.xml moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Mozilla\Firefox\Profiles\ojb1r1rf.default\searchplugins\icqplugin.xml moved successfully. C:\Programme\Mozilla Firefox\extensions\{64e8cc5b-20db-4212-8320-178fc5ae71f7}\defaults\preferences folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{64e8cc5b-20db-4212-8320-178fc5ae71f7}\defaults folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{64e8cc5b-20db-4212-8320-178fc5ae71f7}\content folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{64e8cc5b-20db-4212-8320-178fc5ae71f7} folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com\defaults\preferences folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com\defaults folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com\content\preferences folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com\content\images folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com\content folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com\components folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com\chrome folder moved successfully. C:\Programme\Mozilla Firefox\extensions\ffxtlbr@Facemoods.com folder moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully. C:\Programme\Ask.com\GenericAskToolbar.dll moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ not found. File C:\Programme\ICQ6Toolbar\ICQToolBar.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. File C:\Programme\Ask.com\GenericAskToolbar.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9}\ deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ApnUpdater deleted successfully. C:\Programme\Ask.com\Updater\Updater.exe moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\avgnt deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico2 deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico3 deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tray_ico4 deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update deleted successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Update\FacebookUpdate.exe moved successfully. C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\McAfee Security Scan Plus.lnk moved successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B4B52284-A248-4c51-9F7C-F0A0C67FCC9D}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4B52284-A248-4c51-9F7C-F0A0C67FCC9D}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B4B52284-A248-4c51-9F7C-F0A0C67FCC9D}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4B52284-A248-4c51-9F7C-F0A0C67FCC9D}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\text/html\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{574940E0-1B7A-4881-8FA3-1E809714B156}\ deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully! C:\AUTOEXEC.BAT moved successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\8DDYX0ZBPZ\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Adobe Reader Speed Launcher\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\AlcoholAutomount\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\ClipIncSrvTray\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\D-Link AirPlus G\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\DAEMON Tools\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\ICQ\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\KYQ8ZBOAXR\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\NeroFilterCheck\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\QuickTime Task\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\SearchSettings\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\SweetIM\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\Tobias\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\{8A166BDA-4591-7E9D-6201-0BB7707305E8}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8A166BDA-4591-7E9D-6201-0BB7707305E8}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\{9AD77469-89CC-3354-3A72-25F37B434BAE}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9AD77469-89CC-3354-3A72-25F37B434BAE}\ not found. C:\WINDOWS\ufa folder moved successfully. C:\WINDOWS\phoenix\kernels\poclbm folder moved successfully. C:\WINDOWS\phoenix\kernels\phatk folder moved successfully. C:\WINDOWS\phoenix\kernels folder moved successfully. C:\WINDOWS\phoenix folder moved successfully. C:\WINDOWS\update.7.1 folder moved successfully. C:\WINDOWS\update.5.0 folder moved successfully. C:\WINDOWS\update.8.1 folder moved successfully. C:\WINDOWS\update.2 folder moved successfully. C:\WINDOWS\av_ico folder moved successfully. C:\WINDOWS\update.1 folder moved successfully. C:\WINDOWS\update.tray-9-0-lnk folder moved successfully. C:\WINDOWS\update.tray-9-0 folder moved successfully. C:\WINDOWS\update.tray-8-0-lnk folder moved successfully. C:\WINDOWS\update.tray-8-0 folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Video\Skype folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Video\Common\fb#3aac6odczc2jcfewm5mhzqjysblg7yvjmbmophwtu6ymxgs3bxudnqldx6xz7n3lh9nly folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Video\Common folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Video folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Update\Manifest\Initial folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Update\Manifest folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Update\Download folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Update\1.2.203.0 folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\Update folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook\CrashReports folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\Facebook folder moved successfully. C:\Programme\Ask.com\Updater folder moved successfully. C:\Programme\Ask.com\assets\oobe folder moved successfully. C:\Programme\Ask.com\assets folder moved successfully. C:\Programme\Ask.com folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\AskToolbar folder moved successfully. Folder move failed. C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\ManyCam scheduled to be moved on reboot. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Settings\Layer0\PlaylistSnapshots.pst_files folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Settings\Layer0\PlaylistMovies.pst_files folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Settings\Layer0\PlaylistImages.pst_files folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Settings\Layer0\Playlist.pst_files folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Settings\Layer0 folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Settings folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Objects\Holidays folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Objects\Fun folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Objects\Flags folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Objects\Avatars folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Objects folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Face accessories\Hats folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Face accessories\Hair folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Face accessories\Face folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Face accessories\Eyeglasses folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Face accessories\Eyebrow folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Face accessories folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Backgrounds\Static folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Backgrounds\Dynamic folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects\Backgrounds folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\Effects folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam folder moved successfully. C:\Programme\ManyCam\Help folder moved successfully. C:\Programme\ManyCam\Data\images\VideoSrc folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_stop folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_snapshot folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_shuffle folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_save folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_prev folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_playlist folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_play folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_openStillImage folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_openRecent folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_open folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_next folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_mute folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource\btn_loop folder moved successfully. C:\Programme\ManyCam\Data\images\videoSource folder moved successfully. C:\Programme\ManyCam\Data\images\VideoDriver folder moved successfully. C:\Programme\ManyCam\Data\images\tree folder moved successfully. C:\Programme\ManyCam\Data\images\trayMenu folder moved successfully. C:\Programme\ManyCam\Data\images\trackBar folder moved successfully. C:\Programme\ManyCam\Data\images\textEffectDlg\btn_font folder moved successfully. C:\Programme\ManyCam\Data\images\textEffectDlg\btn_clear folder moved successfully. C:\Programme\ManyCam\Data\images\textEffectDlg\btn_background folder moved successfully. C:\Programme\ManyCam\Data\images\textEffectDlg folder moved successfully. C:\Programme\ManyCam\Data\images\tab_sources folder moved successfully. C:\Programme\ManyCam\Data\images\tab_effects folder moved successfully. C:\Programme\ManyCam\Data\images\snapshotDlg\btn_snapshot folder moved successfully. C:\Programme\ManyCam\Data\images\snapshotDlg\background folder moved successfully. C:\Programme\ManyCam\Data\images\snapshotDlg folder moved successfully. C:\Programme\ManyCam\Data\images\selectedEffects\btn_clear_background folder moved successfully. C:\Programme\ManyCam\Data\images\selectedEffects\btn_clear folder moved successfully. C:\Programme\ManyCam\Data\images\selectedEffects folder moved successfully. C:\Programme\ManyCam\Data\images\pnpDlg\btn_single folder moved successfully. C:\Programme\ManyCam\Data\images\pnpDlg\btn_rec folder moved successfully. C:\Programme\ManyCam\Data\images\pnpDlg\btn_pnp folder moved successfully. C:\Programme\ManyCam\Data\images\pnpDlg\btn_pause folder moved successfully. C:\Programme\ManyCam\Data\images\pnpDlg\btn_background folder moved successfully. C:\Programme\ManyCam\Data\images\pnpDlg folder moved successfully. C:\Programme\ManyCam\Data\images\playList folder moved successfully. C:\Programme\ManyCam\Data\images\maindlg folder moved successfully. C:\Programme\ManyCam\Data\images\iconList folder moved successfully. C:\Programme\ManyCam\Data\images\drawEffectDlg\btn_small folder moved successfully. C:\Programme\ManyCam\Data\images\drawEffectDlg\btn_save folder moved successfully. C:\Programme\ManyCam\Data\images\drawEffectDlg\btn_middle folder moved successfully. C:\Programme\ManyCam\Data\images\drawEffectDlg\btn_large folder moved successfully. C:\Programme\ManyCam\Data\images\drawEffectDlg\btn_clear folder moved successfully. C:\Programme\ManyCam\Data\images\drawEffectDlg\btn_background folder moved successfully. C:\Programme\ManyCam\Data\images\drawEffectDlg folder moved successfully. C:\Programme\ManyCam\Data\images\DesktopDlg\btn_part_desktop folder moved successfully. C:\Programme\ManyCam\Data\images\DesktopDlg\btn_entire_desktop folder moved successfully. C:\Programme\ManyCam\Data\images\DesktopDlg\btn_castom_desktop folder moved successfully. C:\Programme\ManyCam\Data\images\DesktopDlg folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_yellow folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_white folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_violet folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_pink folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_orange folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_green folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_digital folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_blueBtn folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_blue folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_blackBtn folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_black folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg\btn_analog folder moved successfully. C:\Programme\ManyCam\Data\images\dateTimeDlg folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls\btn_saturation folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls\btn_red folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls\btn_green folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls\btn_grayButton folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls\btn_contrast folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls\btn_brightness folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls\btn_blue folder moved successfully. C:\Programme\ManyCam\Data\images\colorControls folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_zoomOut folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_zoomIn folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_up folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_right folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_properties folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_left folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_grayButton folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_down folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg\btn_center folder moved successfully. C:\Programme\ManyCam\Data\images\CameraDlg folder moved successfully. C:\Programme\ManyCam\Data\images\button folder moved successfully. C:\Programme\ManyCam\Data\images\btn_source_background folder moved successfully. C:\Programme\ManyCam\Data\images\btn_rotate_right folder moved successfully. C:\Programme\ManyCam\Data\images\btn_rotate_left folder moved successfully. C:\Programme\ManyCam\Data\images\btn_flipvert folder moved successfully. C:\Programme\ManyCam\Data\images\btn_fliphorz folder moved successfully. C:\Programme\ManyCam\Data\images\btn_addEffect folder moved successfully. C:\Programme\ManyCam\Data\images\backgroundControl\btn_snapshot folder moved successfully. C:\Programme\ManyCam\Data\images\backgroundControl\background folder moved successfully. C:\Programme\ManyCam\Data\images\backgroundControl folder moved successfully. C:\Programme\ManyCam\Data\images\addEffectDlg folder moved successfully. C:\Programme\ManyCam\Data\images folder moved successfully. C:\Programme\ManyCam\Data\effect_data\logo folder moved successfully. C:\Programme\ManyCam\Data\effect_data\lines folder moved successfully. C:\Programme\ManyCam\Data\effect_data\ILdata\images folder moved successfully. C:\Programme\ManyCam\Data\effect_data\ILdata folder moved successfully. C:\Programme\ManyCam\Data\effect_data\dynamic folder moved successfully. C:\Programme\ManyCam\Data\effect_data\dateTime folder moved successfully. C:\Programme\ManyCam\Data\effect_data\color folder moved successfully. C:\Programme\ManyCam\Data\effect_data\3dmasks\images folder moved successfully. C:\Programme\ManyCam\Data\effect_data\3dmasks folder moved successfully. C:\Programme\ManyCam\Data\effect_data folder moved successfully. C:\Programme\ManyCam\Data folder moved successfully. C:\Programme\ManyCam\Bin\x64 folder moved successfully. Folder move failed. C:\Programme\ManyCam\Bin scheduled to be moved on reboot. Folder move failed. C:\Programme\ManyCam scheduled to be moved on reboot. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask\APN-Stub folder moved successfully. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask folder moved successfully. C:\WINDOWS\system32\drivers\etc\hosts moved successfully. C:\WINDOWS\system32\drivers\etc\hîsts moved successfully. C:\WINDOWS\info1 moved successfully. C:\WINDOWS\loader2.exe_ok moved successfully. Folder C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Ask\ not found. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{39850DC2-6343-4AE6-BC4C-63494A9C369F} folder moved successfully. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4843418D-E3A6-4662-842A-857DF0C650FB}\offline\F349FA91\7E151C73 folder moved successfully. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4843418D-E3A6-4662-842A-857DF0C650FB}\offline\F349FA91 folder moved successfully. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4843418D-E3A6-4662-842A-857DF0C650FB}\offline folder moved successfully. C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{4843418D-E3A6-4662-842A-857DF0C650FB} folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Azno folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\facemoods.com\facemoods folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\facemoods.com folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\FinalTorrent folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Maadci folder moved successfully. Folder C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\ManyCam\ not found. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Oksuzu folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\pdfforge\temp folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\pdfforge\res folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\pdfforge folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Search Settings\temp folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Search Settings\res folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Search Settings folder moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\Xuukhe folder moved successfully. ========== FILES ========== File\Folder C:\Programme\Ask.com not found. C:\Dokumente und Einstellungen\Tobias\AppData\LocalLow\Microñoft folder moved successfully. C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-343818398-1417001333-682003330-1003Core.job moved successfully. C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-343818398-1417001333-682003330-1003UA.job moved successfully. C:\Windows\tasks\FinalTorrent Update Checker.job moved successfully. C:\Windows\tasks\Scheduled Update for Ask Toolbar.job moved successfully. C:\WINDOWS\geoiplist.rar moved successfully. C:\WINDOWS\phoenix.rar moved successfully. C:\WINDOWS\rpcminer.rar moved successfully. C:\WINDOWS\ufa.rar moved successfully. C:\Dokumente und Einstellungen\Tobias\Anwendungsdaten\lakerda1967.sys moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Gast ->Temp folder emptied: 643 bytes ->Temporary Internet Files folder emptied: 32768 bytes User: LocalService ->Temp folder emptied: 809 bytes ->Temporary Internet Files folder emptied: 9996853 bytes ->Flash cache emptied: 405 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33237 bytes User: Tobias ->Temp folder emptied: 30599168 bytes ->Temporary Internet Files folder emptied: 10537040 bytes ->Java cache emptied: 38076835 bytes ->FireFox cache emptied: 10421567 bytes ->Google Chrome cache emptied: 8751299 bytes ->Flash cache emptied: 611 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2114764 bytes %systemroot%\System32 .tmp files removed: 2951 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 2725 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 105,00 mb HOSTS file reset successfully OTL by OldTimer - Version 3.2.31.0 log created on 10282011_153820 Files\Folders moved on Reboot... C:\Dokumente und Einstellungen\Tobias\Lokale Einstellungen\Anwendungsdaten\ManyCam folder moved successfully. C:\Programme\ManyCam\Bin folder moved successfully. C:\Programme\ManyCam folder moved successfully. Registry entries deleted on Reboot... |
|
28.10.2011, 19:08
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | einige trojaner agenten, viele backdoors und einen spyagent Ich brauch den Quarantäneordner von OTL. Bitte folgendes machen:
__________________1.) GANZ WICHTIG!! Virenscanner deaktivieren, der darf das Packen nicht beeinflussen! 2.) Ordner MovedFiles in C:\_OTL in eine Datei zippen 3.) Die erstellte ZIP-Datei hier hochladen => http://www.trojaner-board.de/54791-a...ner-board.html Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! 4.) Wenns erfolgreich war Bescheid sagen 5.) Erst dann wieder den Virenscanner einschalten
__________________ |
|
28.10.2011, 21:31
| #19 |
| | einige trojaner agenten, viele backdoors und einen spyagent also dieses was ich oben als letztes gepostet habe, da steht removed files drauf, das ist aber bei mir auf z, und jetzt hab ich das hochgeladen welches bei mir auf c ist.  |
|
28.10.2011, 21:33
| #20 |
| | einige trojaner agenten, viele backdoors und einen spyagent aso entschuldige ich hab erst jetzt verstanden das sie den ganzen ordner haben wollen, ich lade ihn gleich hoch. |
|
28.10.2011, 21:51
| #21 |
| | einige trojaner agenten, viele backdoors und einen spyagent ich kann den den ordner nicht schicken, da stürzt bei mir immer das internet ab |
|
28.10.2011, 22:19
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | einige trojaner agenten, viele backdoors und einen spyagent Lade das dann hier hoch => File-Upload.net - Ihr kostenloser File Hoster! und verlink die Datei hier
__________________ Logfiles bitte immer in CODE-Tags posten |
|
31.10.2011, 11:58
| #23 |
| | einige trojaner agenten, viele backdoors und einen spyagent hier bitte der link zum download von dem movedfiles ordner hxxp://www.file-upload.net/download-3845210/MovedFiles.zip.html |
|
31.10.2011, 12:02
| #24 | |
| | einige trojaner agenten, viele backdoors und einen spyagentZitat:
|
|
31.10.2011, 13:25
| #25 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | einige trojaner agenten, viele backdoors und einen spyagent Bitte nun dieses Tool von Kaspersky ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!  Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, Verknüpfungen auf dem Desktop oder im Startmenü unter "alle Programme" fehlen, bitte unhide ausführen: Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop. Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern )  Windows-Vista und Windows-7-User müssen das Tool per Rechtsklick als Administrator ausführen!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
31.10.2011, 13:44
| #26 |
| | einige trojaner agenten, viele backdoors und einen spyagent kann ich da einfach den kaspersky pure total security runter laden? oder muss ich das kaspersky anti virus ? da gibs so viele verschiedene... |
|
31.10.2011, 13:57
| #27 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | einige trojaner agenten, viele backdoors und einen spyagent Kannst du bitte meine Anleitung lesen!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
31.10.2011, 14:01
| #28 |
| | einige trojaner agenten, viele backdoors und einen spyagent klar hab ich doch also ich muss kaspersky downloaden, aber welches denn? |
|
31.10.2011, 14:14
| #29 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | einige trojaner agenten, viele backdoors und einen spyagent Was bitte ist hier nicht erklärt?  http://www.trojaner-board.de/82358-t...entfernen.html
__________________ Logfiles bitte immer in CODE-Tags posten |
|
31.10.2011, 14:22
| #30 |
| | einige trojaner agenten, viele backdoors und einen spyagent tut mir leid, war auf der leitung  14:15:55.0781 1240 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01 14:15:55.0890 1240 ============================================================ 14:15:55.0890 1240 Current date / time: 2011/10/31 14:15:55.0890 14:15:55.0890 1240 SystemInfo: 14:15:55.0890 1240 14:15:55.0890 1240 OS Version: 5.1.2600 ServicePack: 2.0 14:15:55.0890 1240 Product type: Workstation 14:15:55.0890 1240 ComputerName: KEULE 14:15:55.0906 1240 UserName: Tobias 14:15:55.0906 1240 Windows directory: C:\WINDOWS 14:15:55.0906 1240 System windows directory: C:\WINDOWS 14:15:55.0906 1240 Processor architecture: Intel x86 14:15:55.0906 1240 Number of processors: 2 14:15:55.0906 1240 Page size: 0x1000 14:15:55.0906 1240 Boot type: Normal boot 14:15:55.0906 1240 ============================================================ 14:15:57.0000 1240 Initialize success 14:16:30.0875 2288 ============================================================ 14:16:30.0875 2288 Scan started 14:16:30.0875 2288 Mode: Manual; SigCheck; TDLFS; 14:16:30.0890 2288 ============================================================ 14:16:31.0328 2288 Abiosdsk - ok 14:16:31.0328 2288 abp480n5 - ok 14:16:31.0359 2288 ACPI (94b4741d2cf9ed38140b831293d1601a) C:\WINDOWS\system32\DRIVERS\ACPI.sys 14:16:33.0687 2288 ACPI - ok 14:16:33.0750 2288 ACPIEC (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys 14:16:33.0906 2288 ACPIEC - ok 14:16:33.0906 2288 adpu160m - ok 14:16:33.0937 2288 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys 14:16:34.0031 2288 aec - ok 14:16:34.0062 2288 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys 14:16:34.0078 2288 AFD - ok 14:16:34.0078 2288 Aha154x - ok 14:16:34.0093 2288 aic78u2 - ok 14:16:34.0093 2288 aic78xx - ok 14:16:34.0109 2288 AliIde - ok 14:16:34.0125 2288 amsint - ok 14:16:34.0140 2288 ANIO (92defe8a13a7ce457817e3bd464a9ff4) C:\WINDOWS\system32\ANIO.SYS 14:16:34.0156 2288 ANIO ( UnsignedFile.Multi.Generic ) - warning 14:16:34.0156 2288 ANIO - detected UnsignedFile.Multi.Generic (1) 14:16:34.0171 2288 arcvad_ds2dhw (17757ccab84f1e4d19d95f332f412eee) C:\WINDOWS\system32\drivers\ArcVad.sys 14:16:34.0218 2288 arcvad_ds2dhw - ok 14:16:34.0234 2288 asc - ok 14:16:34.0234 2288 asc3350p - ok 14:16:34.0250 2288 asc3550 - ok 14:16:34.0281 2288 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 14:16:34.0390 2288 AsyncMac - ok 14:16:34.0421 2288 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys 14:16:34.0546 2288 atapi - ok 14:16:34.0562 2288 Atdisk - ok 14:16:34.0562 2288 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 14:16:34.0687 2288 Atmarpc - ok 14:16:34.0734 2288 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 14:16:34.0859 2288 audstub - ok 14:16:34.0875 2288 avgio - ok 14:16:34.0890 2288 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\WINDOWS\system32\DRIVERS\avgntflt.sys 14:16:35.0015 2288 avgntflt - ok 14:16:35.0031 2288 avipbb (6d52060b59e7d79cd2a044b6add1f1ef) C:\WINDOWS\system32\DRIVERS\avipbb.sys 14:16:35.0046 2288 avipbb - ok 14:16:35.0078 2288 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 14:16:35.0203 2288 Beep - ok 14:16:35.0234 2288 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 14:16:35.0359 2288 cbidf2k - ok 14:16:35.0375 2288 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 14:16:35.0484 2288 CCDECODE - ok 14:16:35.0500 2288 cd20xrnt - ok 14:16:35.0515 2288 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 14:16:35.0625 2288 Cdaudio - ok 14:16:35.0640 2288 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys 14:16:35.0781 2288 Cdfs - ok 14:16:35.0796 2288 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys 14:16:35.0921 2288 Cdrom - ok 14:16:35.0937 2288 Changer - ok 14:16:35.0953 2288 CmdIde - ok 14:16:35.0968 2288 Cpqarray - ok 14:16:35.0968 2288 dac2w2k - ok 14:16:35.0984 2288 dac960nt - ok 14:16:36.0000 2288 DefragFS (8031611811b00d37c2901c797840603a) C:\WINDOWS\system32\drivers\DefragFS.sys 14:16:36.0015 2288 DefragFS - ok 14:16:36.0031 2288 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys 14:16:36.0156 2288 Disk - ok 14:16:36.0187 2288 dmboot (5789b83ba87fc84c3568cf86cacef8ce) C:\WINDOWS\system32\drivers\dmboot.sys 14:16:36.0343 2288 dmboot - ok 14:16:36.0359 2288 dmio (084eb0a50a4f7b4705c8a57f234e5291) C:\WINDOWS\system32\drivers\dmio.sys 14:16:36.0484 2288 dmio - ok 14:16:36.0500 2288 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 14:16:36.0609 2288 dmload - ok 14:16:36.0625 2288 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys 14:16:36.0750 2288 DMusic - ok 14:16:36.0750 2288 dpti2o - ok 14:16:36.0765 2288 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys 14:16:36.0890 2288 drmkaud - ok 14:16:36.0921 2288 dtscsi (12aca694b50ea53563c1e7c99e7bb27d) C:\WINDOWS\System32\Drivers\dtscsi.sys 14:16:36.0937 2288 dtscsi - ok 14:16:36.0968 2288 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys 14:16:36.0984 2288 dtsoftbus01 - ok 14:16:37.0015 2288 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys 14:16:37.0031 2288 eamon - ok 14:16:37.0062 2288 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys 14:16:37.0062 2288 ehdrv - ok 14:16:37.0093 2288 epfw (5ba193ca0ae31209aaa39939ce6736b2) C:\WINDOWS\system32\DRIVERS\epfw.sys 14:16:37.0093 2288 epfw - ok 14:16:37.0109 2288 Epfwndis (75d3bcd3e0eded0ab0f96d9a10ff01c9) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys 14:16:37.0125 2288 Epfwndis - ok 14:16:37.0140 2288 epfwtdi (dc64f26f35e32c9472bbf8acd84060d3) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys 14:16:37.0156 2288 epfwtdi - ok 14:16:37.0187 2288 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys 14:16:37.0312 2288 Fastfat - ok 14:16:37.0343 2288 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\drivers\Fdc.sys 14:16:37.0468 2288 Fdc - ok 14:16:37.0468 2288 FilterService - ok 14:16:37.0500 2288 Fips (9e9af89f9b14aa6249065c309ce73bd8) C:\WINDOWS\system32\drivers\Fips.sys 14:16:37.0625 2288 Fips - ok 14:16:37.0625 2288 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\drivers\Flpydisk.sys 14:16:37.0750 2288 Flpydisk - ok 14:16:37.0781 2288 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys 14:16:37.0890 2288 FltMgr - ok 14:16:37.0921 2288 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 14:16:38.0031 2288 Fs_Rec - ok 14:16:38.0046 2288 Ftdisk (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 14:16:38.0171 2288 Ftdisk - ok 14:16:38.0171 2288 FXDrv32 - ok 14:16:38.0187 2288 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys 14:16:38.0296 2288 Gpc - ok 14:16:38.0312 2288 hamachi (7929a161f9951d173ca9900fe7067391) C:\WINDOWS\system32\DRIVERS\hamachi.sys 14:16:38.0328 2288 hamachi - ok 14:16:38.0343 2288 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 14:16:38.0375 2288 HDAudBus - ok 14:16:38.0390 2288 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys 14:16:38.0515 2288 HidUsb - ok 14:16:38.0531 2288 hpn - ok 14:16:38.0562 2288 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys 14:16:38.0671 2288 HPZid412 - ok 14:16:38.0687 2288 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys 14:16:38.0718 2288 HPZipr12 - ok 14:16:38.0734 2288 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys 14:16:38.0765 2288 HPZius12 - ok 14:16:38.0796 2288 HTTP (cb77bb47e67e84deb17ba29632501730) C:\WINDOWS\system32\Drivers\HTTP.sys 14:16:38.0890 2288 HTTP - ok 14:16:38.0906 2288 i2omgmt - ok 14:16:38.0906 2288 i2omp - ok 14:16:38.0937 2288 i8042prt (7c575018d0413440d75432a78b88c899) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 14:16:39.0062 2288 i8042prt - ok 14:16:39.0171 2288 ialm (00cd8ece5983c6175a78230653ffdbf1) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 14:16:39.0375 2288 ialm - ok 14:16:39.0453 2288 iatmunin - ok 14:16:39.0484 2288 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys 14:16:39.0609 2288 Imapi - ok 14:16:39.0609 2288 ini910u - ok 14:16:39.0718 2288 IntcAzAudAddService (557e20484a095d949912883f5ab29e88) C:\WINDOWS\system32\drivers\RtkHDAud.sys 14:16:39.0875 2288 IntcAzAudAddService - ok 14:16:39.0890 2288 IntelIde - ok 14:16:39.0906 2288 intelppm (c1c2cc1da79c5ee10457ef0a3b8568c7) C:\WINDOWS\system32\DRIVERS\intelppm.sys 14:16:40.0015 2288 intelppm - ok 14:16:40.0046 2288 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys 14:16:40.0156 2288 Ip6Fw - ok 14:16:40.0171 2288 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 14:16:40.0281 2288 IpFilterDriver - ok 14:16:40.0296 2288 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys 14:16:40.0421 2288 IpInIp - ok 14:16:40.0437 2288 IpNat (472c75f85e631f8aa87d21c9fee6238d) C:\WINDOWS\system32\DRIVERS\ipnat.sys 14:16:40.0531 2288 IpNat - ok 14:16:40.0546 2288 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys 14:16:40.0656 2288 IPSec - ok 14:16:40.0687 2288 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys 14:16:40.0750 2288 IRENUM - ok 14:16:40.0781 2288 isapnp (ce9b7afdf0a3d7dd8d1487262316b959) C:\WINDOWS\system32\DRIVERS\isapnp.sys 14:16:40.0906 2288 isapnp - ok 14:16:40.0937 2288 Kbdclass (b128fc0a5cd83f669d5de4b58f77c7d6) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 14:16:41.0062 2288 Kbdclass - ok 14:16:41.0093 2288 kbdhid (7ec877aa899323b92874fe62c7ddcde7) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 14:16:41.0203 2288 kbdhid - ok 14:16:41.0234 2288 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys 14:16:41.0312 2288 kmixer - ok 14:16:41.0328 2288 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys 14:16:41.0453 2288 KSecDD - ok 14:16:41.0453 2288 lbrtfdc - ok 14:16:41.0484 2288 lvpopflt - ok 14:16:41.0484 2288 LVRS - ok 14:16:41.0500 2288 LVUVC - ok 14:16:41.0531 2288 ManyCam (c6d085c7045200143528136a43a65fde) C:\WINDOWS\system32\DRIVERS\ManyCam.sys 14:16:41.0578 2288 ManyCam - ok 14:16:41.0593 2288 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys 14:16:41.0609 2288 MBAMProtector - ok 14:16:41.0625 2288 MBAMSwissArmy - ok 14:16:41.0656 2288 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 14:16:41.0765 2288 mnmdd - ok 14:16:41.0781 2288 Modem (91a3da4b12f6f1d760463a7f7857f748) C:\WINDOWS\system32\drivers\Modem.sys 14:16:41.0906 2288 Modem - ok 14:16:41.0937 2288 Mouclass (71e15ca47fd947552054afb28536268f) C:\WINDOWS\system32\DRIVERS\mouclass.sys 14:16:42.0062 2288 Mouclass - ok 14:16:42.0093 2288 mouhid (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys 14:16:42.0203 2288 mouhid - ok 14:16:42.0234 2288 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys 14:16:42.0359 2288 MountMgr - ok 14:16:42.0359 2288 mraid35x - ok 14:16:42.0390 2288 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 14:16:42.0437 2288 MRxDAV - ok 14:16:42.0468 2288 MRxSmb (6f2d483b97b395544e59749c47963c6a) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 14:16:42.0500 2288 MRxSmb - ok 14:16:42.0515 2288 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys 14:16:42.0640 2288 Msfs - ok 14:16:42.0656 2288 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys 14:16:42.0781 2288 MSKSSRV - ok 14:16:42.0812 2288 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 14:16:42.0921 2288 MSPCLOCK - ok 14:16:42.0937 2288 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys 14:16:43.0046 2288 MSPQM - ok 14:16:43.0078 2288 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 14:16:43.0203 2288 mssmbios - ok 14:16:43.0234 2288 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys 14:16:43.0343 2288 MSTEE - ok 14:16:43.0375 2288 Mup (f66b6b1cddee6ca87cefc016eb7a0d8e) C:\WINDOWS\system32\drivers\Mup.sys 14:16:43.0406 2288 Mup - ok 14:16:43.0437 2288 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 14:16:43.0546 2288 NABTSFEC - ok 14:16:43.0578 2288 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys 14:16:43.0703 2288 NDIS - ok 14:16:43.0718 2288 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 14:16:43.0843 2288 NdisIP - ok 14:16:43.0859 2288 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 14:16:43.0984 2288 NdisTapi - ok 14:16:44.0015 2288 Ndisuio (5146c3d286e66c72328f6ce6e4d983a8) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 14:16:44.0093 2288 Ndisuio - ok 14:16:44.0109 2288 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 14:16:44.0234 2288 NdisWan - ok 14:16:44.0250 2288 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys 14:16:44.0375 2288 NDProxy - ok 14:16:44.0406 2288 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys 14:16:44.0515 2288 NetBIOS - ok 14:16:44.0546 2288 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys 14:16:44.0671 2288 NetBT - ok 14:16:44.0687 2288 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys 14:16:44.0812 2288 Npfs - ok 14:16:44.0843 2288 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys 14:16:45.0515 2288 Ntfs - ok 14:16:45.0546 2288 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 14:16:45.0656 2288 Null - ok 14:16:45.0687 2288 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 14:16:45.0796 2288 NwlnkFlt - ok 14:16:45.0812 2288 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 14:16:45.0937 2288 NwlnkFwd - ok 14:16:45.0968 2288 Parport (b2f17a2edb5450e61973a037f63a595b) C:\WINDOWS\system32\drivers\Parport.sys 14:16:46.0062 2288 Parport - ok 14:16:46.0093 2288 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys 14:16:46.0203 2288 PartMgr - ok 14:16:46.0218 2288 ParVdm (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys 14:16:46.0328 2288 ParVdm - ok 14:16:46.0359 2288 PCI (6fb463e5b243fbd6f3d3c83f914d94fb) C:\WINDOWS\system32\DRIVERS\pci.sys 14:16:46.0484 2288 PCI - ok 14:16:46.0484 2288 PCIDump - ok 14:16:46.0500 2288 PCIIde (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys 14:16:46.0609 2288 PCIIde - ok 14:16:46.0640 2288 Pcmcia (e2363f4c1daff89abee5f593e13d8a05) C:\WINDOWS\system32\drivers\Pcmcia.sys 14:16:46.0765 2288 Pcmcia - ok 14:16:46.0765 2288 PDCOMP - ok 14:16:46.0781 2288 PDFRAME - ok 14:16:46.0796 2288 PDRELI - ok 14:16:46.0796 2288 PDRFRAME - ok 14:16:46.0812 2288 perc2 - ok 14:16:46.0812 2288 perc2hib - ok 14:16:46.0875 2288 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys 14:16:46.0984 2288 PptpMiniport - ok 14:16:47.0000 2288 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys 14:16:47.0125 2288 PSched - ok 14:16:47.0156 2288 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 14:16:47.0265 2288 Ptilink - ok 14:16:47.0281 2288 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys 14:16:47.0296 2288 PxHelp20 - ok 14:16:47.0296 2288 ql1080 - ok 14:16:47.0312 2288 Ql10wnt - ok 14:16:47.0328 2288 ql12160 - ok 14:16:47.0328 2288 ql1240 - ok 14:16:47.0343 2288 ql1280 - ok 14:16:47.0359 2288 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 14:16:47.0468 2288 RasAcd - ok 14:16:47.0500 2288 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 14:16:47.0609 2288 Rasl2tp - ok 14:16:47.0625 2288 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 14:16:47.0765 2288 RasPppoe - ok 14:16:47.0765 2288 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 14:16:47.0906 2288 Raspti - ok 14:16:47.0937 2288 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys 14:16:48.0015 2288 Rdbss - ok 14:16:48.0031 2288 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 14:16:48.0140 2288 RDPCDD - ok 14:16:48.0171 2288 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 14:16:48.0296 2288 rdpdr - ok 14:16:48.0328 2288 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys 14:16:48.0359 2288 RDPWD - ok 14:16:48.0375 2288 redbook (aa56702e230860565cb8d43680f57f33) C:\WINDOWS\system32\DRIVERS\redbook.sys 14:16:48.0500 2288 redbook - ok 14:16:48.0546 2288 rspndr (a3b23fb3f295694091f51865f98588b2) C:\WINDOWS\system32\DRIVERS\rspndr.sys 14:16:48.0578 2288 rspndr - ok 14:16:48.0609 2288 RT73 (cb20f16afdba63707fb971e0922edec1) C:\WINDOWS\system32\DRIVERS\Dr71WU.sys 14:16:48.0640 2288 RT73 - ok 14:16:48.0671 2288 RTLE8023xp (7174f20ad9b7b7878a51ecca03c499c2) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys 14:16:48.0718 2288 RTLE8023xp - ok 14:16:48.0750 2288 Secdrv (314a998b1732c1acd6b6459ec9961ad8) C:\WINDOWS\system32\DRIVERS\secdrv.sys 14:16:48.0765 2288 Secdrv ( UnsignedFile.Multi.Generic ) - warning 14:16:48.0765 2288 Secdrv - detected UnsignedFile.Multi.Generic (1) 14:16:48.0796 2288 Serial (cd5b9995afcdb466c9efc048d167e3be) C:\WINDOWS\system32\drivers\Serial.sys 14:16:48.0906 2288 Serial - ok 14:16:48.0937 2288 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys 14:16:48.0953 2288 sfdrv01 ( UnsignedFile.Multi.Generic ) - warning 14:16:48.0953 2288 sfdrv01 - detected UnsignedFile.Multi.Generic (1) 14:16:48.0984 2288 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys 14:16:49.0000 2288 sfhlp02 ( UnsignedFile.Multi.Generic ) - warning 14:16:49.0000 2288 sfhlp02 - detected UnsignedFile.Multi.Generic (1) 14:16:49.0015 2288 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys 14:16:49.0125 2288 Sfloppy - ok 14:16:49.0140 2288 sfsync02 (efebbc1d13fdb77a6af4eddfc7232edf) C:\WINDOWS\system32\drivers\sfsync02.sys 14:16:49.0156 2288 sfsync02 ( UnsignedFile.Multi.Generic ) - warning 14:16:49.0156 2288 sfsync02 - detected UnsignedFile.Multi.Generic (1) 14:16:49.0171 2288 sfvfs02 (4edf98028a05263b515b17b3e7b52509) C:\WINDOWS\system32\drivers\sfvfs02.sys 14:16:49.0187 2288 sfvfs02 ( UnsignedFile.Multi.Generic ) - warning 14:16:49.0187 2288 sfvfs02 - detected UnsignedFile.Multi.Generic (1) 14:16:49.0187 2288 Simbad - ok 14:16:49.0218 2288 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys 14:16:49.0328 2288 SLIP - ok 14:16:49.0343 2288 Sparrow - ok 14:16:49.0375 2288 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys 14:16:49.0437 2288 splitter - ok 14:16:49.0484 2288 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\System32\Drivers\sptd.sys 14:16:49.0515 2288 sptd - ok 14:16:49.0546 2288 sr (e4200cb2f418d8fc4acdd7e38c419d6a) C:\WINDOWS\system32\DRIVERS\sr.sys 14:16:49.0609 2288 sr - ok 14:16:49.0656 2288 Srv (ab9c79ed12d65e800aaad3d72a04792f) C:\WINDOWS\system32\DRIVERS\srv.sys 14:16:49.0703 2288 Srv - ok 14:16:49.0718 2288 ssmdrv (5ec550b8952882ee856b862cf648522d) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 14:16:49.0734 2288 ssmdrv - ok 14:16:49.0750 2288 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 14:16:49.0875 2288 streamip - ok 14:16:49.0906 2288 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys 14:16:50.0015 2288 swenum - ok 14:16:50.0062 2288 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys 14:16:50.0171 2288 swmidi - ok 14:16:50.0187 2288 symc810 - ok 14:16:50.0187 2288 symc8xx - ok 14:16:50.0203 2288 sym_hi - ok 14:16:50.0218 2288 sym_u3 - ok 14:16:50.0234 2288 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys 14:16:50.0343 2288 sysaudio - ok 14:16:50.0390 2288 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys 14:16:50.0468 2288 Tcpip - ok 14:16:50.0500 2288 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys 14:16:50.0609 2288 TDPIPE - ok 14:16:50.0625 2288 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys 14:16:50.0765 2288 TDTCP - ok 14:16:50.0781 2288 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys 14:16:50.0906 2288 TermDD - ok 14:16:50.0921 2288 TosIde - ok 14:16:50.0953 2288 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys 14:16:51.0093 2288 Udfs - ok 14:16:51.0093 2288 ultra - ok 14:16:51.0125 2288 Update (a4815a4884898f355a3513e60843a4fd) C:\WINDOWS\system32\DRIVERS\update.sys 14:16:51.0265 2288 Update - ok 14:16:51.0343 2288 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys 14:16:51.0453 2288 usbaudio - ok 14:16:51.0484 2288 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 14:16:51.0593 2288 usbccgp - ok 14:16:51.0625 2288 usbehci (a45ea1550ea4b368c4fba7ca9d056bc9) C:\WINDOWS\system32\DRIVERS\usbehci.sys 14:16:51.0640 2288 usbehci - ok 14:16:51.0656 2288 usbhub (6d46b1f89134892a862ac56b00ac11fe) C:\WINDOWS\system32\DRIVERS\usbhub.sys 14:16:51.0671 2288 usbhub - ok 14:16:51.0718 2288 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys 14:16:51.0828 2288 usbprint - ok 14:16:51.0843 2288 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys 14:16:51.0968 2288 usbscan - ok 14:16:52.0000 2288 usbstor (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 14:16:52.0109 2288 usbstor - ok 14:16:52.0140 2288 usbuhci (0ee1925590ba1abec14254d54d9870f4) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 14:16:52.0156 2288 usbuhci - ok 14:16:52.0187 2288 usbvideo (1c7bcd04dea750586db4c74da6dc337d) C:\WINDOWS\system32\Drivers\usbvideo.sys 14:16:52.0218 2288 usbvideo - ok 14:16:52.0234 2288 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys 14:16:52.0375 2288 VgaSave - ok 14:16:52.0375 2288 ViaIde - ok 14:16:52.0406 2288 VolSnap (d6888520ff56d72a50437e371ca25fc9) C:\WINDOWS\system32\drivers\VolSnap.sys 14:16:52.0531 2288 VolSnap - ok 14:16:52.0546 2288 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys 14:16:52.0687 2288 Wanarp - ok 14:16:52.0687 2288 WDICA - ok 14:16:52.0718 2288 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys 14:16:52.0796 2288 wdmaud - ok 14:16:52.0875 2288 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 14:16:53.0000 2288 WSTCODEC - ok 14:16:53.0062 2288 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0 14:16:53.0234 2288 \Device\Harddisk0\DR0 - ok 14:16:53.0234 2288 Boot (0x1200) (01ba4e497cb29fbac4403a9bc9a35948) \Device\Harddisk0\DR0\Partition0 14:16:53.0234 2288 \Device\Harddisk0\DR0\Partition0 - ok 14:16:53.0265 2288 Boot (0x1200) (fc628f05ab0290fd46dfbfedcfbe413b) \Device\Harddisk0\DR0\Partition1 14:16:53.0265 2288 \Device\Harddisk0\DR0\Partition1 - ok 14:16:53.0265 2288 ============================================================ 14:16:53.0265 2288 Scan finished 14:16:53.0265 2288 ============================================================ 14:16:53.0390 2200 Detected object count: 6 14:16:53.0390 2200 Actual detected object count: 6 14:17:15.0875 2200 ANIO ( UnsignedFile.Multi.Generic ) - skipped by user 14:17:15.0875 2200 ANIO ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:17:15.0875 2200 Secdrv ( UnsignedFile.Multi.Generic ) - skipped by user 14:17:15.0875 2200 Secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:17:15.0875 2200 sfdrv01 ( UnsignedFile.Multi.Generic ) - skipped by user 14:17:15.0875 2200 sfdrv01 ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:17:15.0890 2200 sfhlp02 ( UnsignedFile.Multi.Generic ) - skipped by user 14:17:15.0890 2200 sfhlp02 ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:17:15.0890 2200 sfsync02 ( UnsignedFile.Multi.Generic ) - skipped by user 14:17:15.0890 2200 sfsync02 ( UnsignedFile.Multi.Generic ) - User select action: Skip 14:17:15.0890 2200 sfvfs02 ( UnsignedFile.Multi.Generic ) - skipped by user 14:17:15.0890 2200 sfvfs02 ( UnsignedFile.Multi.Generic ) - User select action: Skip |
|
| Themen zu einige trojaner agenten, viele backdoors und einen spyagent |
| backdoor.agent, bereit, bildschirm, blockiert, center, dateien, einstellungen, explorer, funktioniert, malewarbytes, microsoft, probleme, schwarzer bildschirm, security, seite, services, software, spyware.agent, svchost.exe, systemwiederherstellung, temp, trojan.agent, trojan.agent.ge, trojan.downloader.gen, trojan.spyeyes.gen, trojaner, version, video, viren, virus, youtube, zugriff, zugriff blockiert |
Linear-Darstellung
