| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Firefox startet nicht, Taskmanager hängt extremWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
22.12.2011, 21:08
| #1 |
 |  Firefox startet nicht, Taskmanager hängt extrem Hey Leute, ich hoffe ihr könnt mir helfen. Ich hab die Boardsuche benutzt und auch Google, aber ich bin zu keinem Ergebniss gekommen.  Ich schildere kurz das Problem: Wenn ich meinen Taskmanager öffne, dann dauert es schonma 3-5 Sekunden bis sich überhaupt irgendwas tut, zuerst öffnet sich das Fenster und dann kommt das Icon in der Taskleiste langsam hinterher. So weit, so gut, aber der Manager hängt extrem und braucht allein 30 Sekunden bis er die Prozesse geladen hat und auf Klicken mit der Maus reagiert er auch erst 5-10 Sekunden später. Und dann hab ich neuerdings auch noch ein Problem mit Firefox, ich kann 1000 Mal auf die Verknüpfung klicken und es tut sich nichts, außerdem hat der PC ab und zu kurze hänger und die Systemauslastung steigt an. Könnt ihr mir helfen, ich verzweifel noch mit dem Ding..  Danke schonmal im Voraus.  |
|
22.12.2011, 21:38
| #2 |
| /// Malware-holic   | Firefox startet nicht, Taskmanager hängt extrem hi
__________________Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
ATTFilter activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
__________________ |
|
22.12.2011, 23:08
| #3 |
| | Firefox startet nicht, Taskmanager hängt extrem Extras.txt
__________________Code:
ATTFilter OTL Extras logfile created on: 22.12.2011 22:13:29 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Dell\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,12 Gb Available Physical Memory | 70,69% Memory free
5,99 Gb Paging File | 4,91 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455,59 Gb Total Space | 249,10 Gb Free Space | 54,68% Space Free | Partition Type: NTFS
Drive D: | 232,88 Gb Total Space | 186,31 Gb Free Space | 80,00% Space Free | Partition Type: NTFS
Drive E: | 10,00 Gb Total Space | 2,78 Gb Free Space | 27,76% Space Free | Partition Type: NTFS
Computer Name: DELL-STUDIO | User Name: Dell | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{1226B9A5-FBFD-4120-9AED-08CABCDAF3AB}" = Nokia Ovi Player
"{1E11EE30-C0D4-46BC-9142-27EB4C37BE35}" = Angry Birds
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 29
"{2A0A6470-FD0F-4F45-9B11-85F3167DB943}" = Nokia Flashing Cable Driver
"{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"{340A2AD6-0679-46DA-9180-DABBD5B36FD1}" = BitDefender Total Security 2011
"{3521F7CF-9343-4C1F-AE5E-0D2A57A18D2B}" = Call of Duty(R) - World at War(TM) 1.5 Patch
"{39DB116F-E088-486F-B13C-8925ECE7A6E5}" = 3D Sound Back Beta0.1
"{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}" = Überwachungstool für die Intel® Turbo-Boost-Technik
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DAD83B9-4C8B-4AC6-BF5E-B9FB181CCBE8}" = Nokia Service Tool Drivers
"{4216D328-0FE8-48B8-85B8-BD300E6F080F}" = Nokia Connectivity Cable Driver
"{4343080E-91B7-4388-AB4D-FB1000008200}" = Dead Rising 2
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{54194F60-988C-4D03-B922-C2B00EFDA39A}" = NVIDIA PhysX
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1" = Amnesia - The Dark Descent
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{576CA494-F771-4B10-9AF0-8ED4A7AFB0CC}_is1" = Amnesia - The Dark Descent Demo
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5A32C25A-7E99-4A77-B419-B47DA290DD67}" = Phoenix Service Software
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5D4C60AA-84E6-4E1A-8A68-69970D387BE1}" = TuneUp Utilities Language Pack (de-DE)
"{5E1375CB-6792-4464-8715-CC3EC83D48FA}" = VirtualDJ Home FREE
"{5F4B9958-F507-449A-A6E1-FD223314AF5A}" = TMPGEnc 4.0 XPress Testversion
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66A405D2-BA14-4594-BF36-B3B544F0754E}" = Stronghold Legends
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{7C11154F-3539-4CB5-979D-EF7913473E53}" = Prince of Persia
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{853A4763-6643-4604-8D64-28BDD8925F4C}" = Apple Application Support
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{942E5031-2BD6-4C1B-918C-C8A1CBAE7B8C}" = Microsoft IntelliPoint 8.2
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
"{97EE1BAC-C04F-4935-8110-B1BBAB99D09D}" = Call of Duty(R) - World at War(TM) 1.4.1 Patch
"{986A654F-F1E4-11DD-9FCA-005056C00008}" = Paragon Partition Manager™ 11 Personal Demo
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Deutsch
"{AEDBD563-24BB-4EE3-8366-A654DAC2D988}" = Mirror's Edge™
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B547567F-6BD1-3E76-E945-9DA067EF5AAA}" = AMD Catalyst Install Manager
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = Die*Sims™*3
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CC862A04-B2B0-4A79-ADD2-4B76D6CF4DCD}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}" = PC Connectivity Solution
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{D8A39D68-A269-45C2-8730-23AA08F75D64}" = O2Micro Flash Memory Card Windows Driver
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E4423F16-0E98-4855-BFF4-3EF016C55D67}" = Nokia_Multimedia_Common_Components_2_5
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F38FD0E4-B991-462B-873D-F2115EADD093}" = Nokia PC Suite
"{F59A9E08-A6A4-4ACF-91F2-D0344956C30B}" = iTunes
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{FE83F463-7E61-4B18-9FA0-B94B90A0B6B9}" = Nero Burning ROM 10
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"504244733D18C8F63FF584AEB290E3904E791693" = Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"6DA48AFDE796708D5A4C9121A83E7617A63A9A15" = Windows-Treiberpaket - Nokia Modem (10/07/2010 4.6)
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AnyDVD" = AnyDVD
"Audacity_is1" = Audacity 1.2.6
"Aura DVD Ripper Professional_is1" = Aura DVD Ripper Professional 1.3.3
"Aura Software Manager_is1" = Aura Software Manager 1.0.3
"AviSynth" = AviSynth 2.5
"BitDefender" = BitDefender Total Security 2011
"Call of Duty Black Ops GERMAN Uncut 1.00" = Call of Duty Black Ops GERMAN Uncut 1.00
"CrystalDiskInfo_is1" = CrystalDiskInfo 3.10.0
"CyberGhost VPN_is1" = CyberGhost VPN
"Demo von StarCraft II" = Demo von StarCraft II
"DESkey DK2 Uninstall" = DK2 Drivers v 6.21.0.169
"DivX Setup.divx.com" = DivX-Setup
"E5372C32E8562C76C24DBA6525002B1031495F34" = Windows-Treiberpaket - Nokia Modem (06/09/2010 7.01.0.8)
"FileZilla Client" = FileZilla Client 3.5.0
"Firebird SQL Server D" = Firebird SQL Server - MAGIX Edition
"FLSINST" = FLS-4 Driver Installation
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free iPod Video Converter_is1" = Free iPod Video Converter 1.34
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.40.602
"GCFScape_is1" = GCFScape 1.8.2
"GFWL_{4343080E-91B7-4388-AB4D-FB1000008200}" = Dead Rising 2
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"InstallShield_{3521F7CF-9343-4C1F-AE5E-0D2A57A18D2B}" = Call of Duty(R) - World at War(TM) 1.5 Patch
"InstallShield_{97EE1BAC-C04F-4935-8110-B1BBAB99D09D}" = Call of Duty(R) - World at War(TM) 1.4.1 Patch
"InstallShield_{CC862A04-B2B0-4A79-ADD2-4B76D6CF4DCD}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"InstallShield_{D8A39D68-A269-45C2-8730-23AA08F75D64}" = O2Micro Flash Memory Card Windows Driver
"JDownloader" = JDownloader
"LAME for Audacity_is1" = LAME v3.98.3 for Audacity
"LameACM" = LameACM
"MAGIX Fotobuch" = MAGIX Fotobuch 3.6
"MAGIX Online Druck Service D" = MAGIX Online Druck Service 3.4.3.0 (D)
"MAGIX Screenshare D" = MAGIX Screenshare 4.3.6.1987 (D)
"MAGIX Xtreme Web Designer 5 D" = MAGIX Xtreme Web Designer 5 5.0.1.8579 (D)
"McAfee Security Scan" = McAfee Security Scan Plus
"Media Converter SA Edition" = Media Converter SA Edition 0.8
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft IntelliPoint 8.2" = Microsoft IntelliPoint 8.2
"Mozilla Firefox 9.0.1 (x86 de)" = Mozilla Firefox 9.0.1 (x86 de)
"Nokia PC Suite" = Nokia PC Suite
"NSS" = Norton Security Scan
"Opera 11.60.1185" = Opera 11.60
"Phoenix Service Software 2009.20.010.39068_is1" = Phoenix Service Software 2009.20.010.39068
"PowerISO" = PowerISO
"Sauerbraten" = Sauerbraten
"Serious Sam HD The First Encounter_is1" = Serious Sam HD The First Encounter
"Steam App 40950" = Stronghold
"Steam App 47400" = Stronghold 3
"Steam App 57940" = Duke Nukem Forever Demo
"Steam App 620" = Portal 2
"SWiSH Max4" = SWiSH Max4
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"Uninstall_is1" = Uninstall 1.0.0.1
"Videora Nokia 5800 XpressMusic Converter" = Videora Nokia 5800 XpressMusic Converter 6
"Virtual DJ Home - Atomix Productions" = Virtual DJ Home - Atomix Productions
"VLC media player" = VLC media player 1.1.11
"WBFS Manager 3.0" = WBFS Manager 3.0
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinRAR archiver" = WinRAR
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{EF36A836-BF89-4A4F-B079-057B0C68C1E0}" = Sid Meier's Civilization IV Colonization
"f018cf21c0452c64" = AVM FRITZ!Box USB-Fernanschluss
"Tropico 4 Demo" = Tropico 4 Demo 1.00
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 21.12.2011 14:02:23 | Computer Name = Dell-Studio | Source = SideBySide | ID = 16842785
Description = Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Nokia\Nokia
PC Suite 7\TIS_Windows7PIM.dll". Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0""
konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm
"sxstrace.exe".
Error - 21.12.2011 14:05:15 | Computer Name = Dell-Studio | Source = SideBySide | ID = 16842815
Description = Fehler beim Generieren des Aktivierungskontextes für "c:\program files\spybot
- search & destroy\DelZip179.dll". Fehler in Manifest- oder Richtliniendatei "c:\program
files\spybot - search & destroy\DelZip179.dll" in Zeile 8. Der Wert "*" des "language"-Attributs
im assemblyIdentity-Element ist ungültig.
Error - 21.12.2011 17:30:55 | Computer Name = Dell-Studio | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: opera.exe, Version: 11.52.1100.0,
Zeitstempel: 0x4e9c6c1d Name des fehlerhaften Moduls: Opera.dll, Version: 11.52.1100.0,
Zeitstempel: 0x4e9c79de Ausnahmecode: 0xc0000005 Fehleroffset: 0x00673ea6 ID des fehlerhaften
Prozesses: 0x137c Startzeit der fehlerhaften Anwendung: 0x01ccbff2eaf003b3 Pfad der
fehlerhaften Anwendung: C:\Program Files\Opera\opera.exe Pfad des fehlerhaften Moduls:
C:\Program Files\Opera\Opera.dll Berichtskennung: 103fb50a-2c1b-11e1-af40-0021708d5458
Error - 22.12.2011 11:48:53 | Computer Name = Dell-Studio | Source = Application Hang | ID = 1002
Description = Programm taskmgr.exe, Version 6.1.7601.17514 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: 1278 Startzeit: 01ccc0c12d0d943b Endzeit: 13 Anwendungspfad:
C:\Windows\system32\taskmgr.exe Berichts-ID: 70a8f56a-2cb4-11e1-af40-0021708d5458
Error - 22.12.2011 13:00:02 | Computer Name = Dell-Studio | Source = Application Hang | ID = 1002
Description = Programm taskmgr.exe, Version 6.1.7601.17514 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: 1f4 Startzeit: 01ccc0caef93fc35 Endzeit: 130 Anwendungspfad:
C:\Windows\system32\taskmgr.exe Berichts-ID: 61312b9e-2cbe-11e1-af40-0021708d5458
Error - 22.12.2011 13:05:09 | Computer Name = Dell-Studio | Source = Application Hang | ID = 1002
Description = Programm taskmgr.exe, Version 6.1.7601.17514 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: 101c Startzeit: 01ccc0cbaea14ca1 Endzeit: 38 Anwendungspfad:
C:\Windows\system32\taskmgr.exe Berichts-ID: 18838f1f-2cbf-11e1-af40-0021708d5458
Error - 22.12.2011 15:39:33 | Computer Name = Dell-Studio | Source = VSS | ID = 18
Description =
Error - 22.12.2011 15:39:33 | Computer Name = Dell-Studio | Source = VSS | ID = 8193
Description =
Error - 22.12.2011 15:39:33 | Computer Name = Dell-Studio | Source = System Restore | ID = 8193
Description =
Error - 22.12.2011 15:56:13 | Computer Name = Dell-Studio | Source = Application Hang | ID = 1002
Description = Programm taskmgr.exe, Version 6.1.7601.17514 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: cf0 Startzeit: 01ccc0e3bb599b0c Endzeit: 187 Anwendungspfad:
C:\Windows\system32\taskmgr.exe Berichts-ID: ff220e02-2cd6-11e1-b5e4-0021708d5458
[ System Events ]
Error - 22.12.2011 15:51:47 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location
Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 22.12.2011 15:51:48 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location
Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 22.12.2011 15:51:48 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location
Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 22.12.2011 15:51:48 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location
Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 22.12.2011 15:51:48 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location
Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 22.12.2011 15:51:48 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location
Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 22.12.2011 15:51:48 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location
Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1068
Error - 22.12.2011 15:53:49 | Computer Name = Dell-Studio | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 22.12.2011 15:53:49 | Computer Name = Dell-Studio | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 22.12.2011 15:54:44 | Computer Name = Dell-Studio | Source = Service Control Manager | ID = 7001
Description = Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host"
abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058
[ TuneUp Events ]
Error - 15.12.2011 17:28:05 | Computer Name = Dell-Studio | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
Error - 15.12.2011 17:28:06 | Computer Name = Dell-Studio | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
Error - 15.12.2011 17:28:06 | Computer Name = Dell-Studio | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
< End of report >
|
|
22.12.2011, 23:12
| #4 |
| | Firefox startet nicht, Taskmanager hängt extrem OTL.txt Code:
ATTFilter OTL logfile created on: 22.12.2011 22:13:29 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Dell\Desktop Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 2,12 Gb Available Physical Memory | 70,69% Memory free 5,99 Gb Paging File | 4,91 Gb Available in Paging File | 82,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 455,59 Gb Total Space | 249,10 Gb Free Space | 54,68% Space Free | Partition Type: NTFS Drive D: | 232,88 Gb Total Space | 186,31 Gb Free Space | 80,00% Space Free | Partition Type: NTFS Drive E: | 10,00 Gb Total Space | 2,78 Gb Free Space | 27,76% Space Free | Partition Type: NTFS Computer Name: DELL-STUDIO | User Name: Dell | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011.12.22 22:12:30 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Dell\Desktop\OTL.exe PRC - [2011.12.21 08:42:28 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe PRC - [2011.08.01 14:56:42 | 001,821,576 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft IntelliPoint\ipoint.exe PRC - [2011.08.01 14:56:42 | 000,412,552 | ---- | M] (Microsoft Corporation) -- C:\Programme\Microsoft IntelliPoint\dpupdchk.exe PRC - [2011.07.17 13:01:18 | 002,090,016 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\vsserv.exe PRC - [2011.07.17 13:01:04 | 001,451,928 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\bdagent.exe PRC - [2011.06.18 10:16:04 | 000,064,048 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\pchooklaunch32.exe PRC - [2011.06.18 10:12:23 | 000,043,936 | ---- | M] (BitDefender S.R.L.) -- C:\Programme\BitDefender\BitDefender 2011\updatesrv.exe PRC - [2011.06.06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2011.03.30 18:49:44 | 000,671,552 | ---- | M] (TuneUp Software) -- C:\Programme\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe PRC - [2011.03.30 18:48:00 | 001,523,008 | ---- | M] (TuneUp Software) -- C:\Programme\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe PRC - [2011.03.04 10:39:14 | 000,584,488 | ---- | M] (Nero AG) -- C:\Programme\Nero\Update\NASvc.exe PRC - [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2010.11.20 13:17:56 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe PRC - [2010.11.20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe PRC - [2009.03.05 15:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Programme\Spybot - Search & Destroy\TeaTimer.exe PRC - [2009.01.26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Programme\Spybot - Search & Destroy\SDWinSec.exe ========== Modules (No Company Name) ========== MOD - [2011.12.21 08:42:28 | 002,124,760 | ---- | M] () -- C:\Programme\Mozilla Firefox\mozjs.dll MOD - [2011.07.17 13:01:05 | 000,185,040 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\framework.dll MOD - [2011.06.18 10:14:24 | 000,109,344 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\connector.dll MOD - [2011.06.18 10:14:05 | 000,189,184 | ---- | M] () -- C:\Programme\BitDefender\BitDefender 2011\txmlutil.dll MOD - [2011.05.22 18:21:36 | 000,093,696 | ---- | M] () -- C:\Programme\FileZilla FTP Client\fzshellext.dll MOD - [2010.03.15 11:28:22 | 000,141,824 | ---- | M] () -- C:\Programme\WinRAR\RarExt.dll ========== Win32 Services (SafeList) ========== SRV - [2011.12.10 12:23:11 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2011.07.17 13:01:18 | 002,090,016 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe -- (VSSERV) SRV - [2011.07.05 10:28:46 | 002,428,968 | ---- | M] (mobile concepts GmbH) [On_Demand | Stopped] -- C:\Programme\CyberGhost VPN\CGVPNCliService.exe -- (CGVPNCliSrvc) SRV - [2011.06.18 10:12:23 | 000,043,936 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe -- (Updatesrv) SRV - [2011.06.06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2011.03.30 18:48:00 | 001,523,008 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2011.03.30 18:45:32 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp) SRV - [2011.03.04 10:39:14 | 000,584,488 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2011.02.22 21:25:17 | 000,307,544 | ---- | M] (BitDefender) [On_Demand | Stopped] -- C:\Programme\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Update Server) SRV - [2010.12.08 13:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010.01.15 13:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService) SRV - [2009.11.02 12:48:12 | 000,099,728 | ---- | M] (Intel(R) Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost) SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility) SRV - [2009.07.14 02:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc) SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc) SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2009.01.26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Programme\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService) SRV - [2005.11.17 14:18:52 | 001,527,900 | ---- | M] (MAGIX®) [Disabled | Stopped] -- C:\Programme\MAGIX\Common\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance) ========== Driver Services (SafeList) ========== DRV - [2011.12.02 18:38:08 | 000,199,528 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService) DRV - [2011.09.08 09:23:34 | 000,211,984 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService) DRV - [2011.08.01 14:56:42 | 000,045,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dc3d.sys -- (dc3d) MS Hardware Device Detection Driver (USB) DRV - [2011.06.30 18:18:56 | 000,122,552 | ---- | M] (BitDefender LLC) [Kernel | On_Demand | Running] -- C:\Programme\BitDefender\BitDefender 2011\bdselfpr.sys -- (bdselfpr) DRV - [2011.06.25 17:18:22 | 000,010,454 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\parldr2k.sys -- (PARLDR2K) DRV - [2011.06.25 16:28:29 | 000,033,402 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\flsvcom.sys -- (FLSVCOM) DRV - [2011.06.25 16:28:29 | 000,008,344 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\flsser.sys -- (FLSSER) DRV - [2011.06.25 16:28:28 | 000,033,404 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\fle5wnnt.sys -- (FLE5WNNT) DRV - [2011.06.25 16:28:28 | 000,016,314 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\flspar.sys -- (FLSPAR) DRV - [2011.06.25 16:28:28 | 000,013,440 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\flsiface.sys -- (FLSIFACE) DRV - [2011.06.18 09:12:52 | 000,306,320 | ---- | M] (BitDefender S.R.L.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\trufos.sys -- (Trufos) DRV - [2011.04.09 09:16:10 | 000,353,096 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\bdfsfltr.sys -- (bdfsfltr) DRV - [2011.03.25 03:57:58 | 000,020,480 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\usbohci.sys -- (usbohci) DRV - [2011.02.10 10:22:58 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Programme\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2011.02.03 20:52:56 | 000,101,248 | ---- | M] (AVM Berlin) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avmaudio.sys -- (avmaudio) DRV - [2010.12.02 11:13:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010.12.02 11:13:22 | 000,018,304 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010.12.02 09:36:42 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu) DRV - [2010.12.02 09:36:42 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc) DRV - [2010.12.01 20:06:29 | 000,108,104 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD) DRV - [2010.11.20 13:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus) DRV - [2010.11.20 13:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt) DRV - [2010.11.20 13:30:15 | 000,028,032 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc) DRV - [2010.11.20 13:30:14 | 000,160,128 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vhdmp.sys -- (vhdmp) DRV - [2010.11.20 13:30:12 | 000,053,120 | ---- | M] () [Kernel | System | Running] -- C:\Windows\system32\drivers\termdd.sys -- (TermDD) DRV - [2010.11.20 13:30:10 | 000,085,376 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sbp2port.sys -- (sbp2port) DRV - [2010.11.20 13:30:05 | 000,233,344 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\msiscsi.sys -- (iScsiPrt) DRV - [2010.11.20 13:30:04 | 000,116,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\msdsm.sys -- (msdsm) DRV - [2010.11.20 13:30:01 | 000,130,432 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\mpio.sys -- (mpio) DRV - [2010.11.20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2010.11.20 11:01:12 | 000,164,864 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\1394ohci.sys -- (1394ohci) DRV - [2010.11.20 11:00:24 | 000,039,936 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\umbus.sys -- (umbus) DRV - [2010.11.20 11:00:21 | 000,304,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\HdAudio.sys -- (HdAudAddService) DRV - [2010.11.20 11:00:21 | 000,146,432 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\usbvideo.sys -- (usbvideo) USB-Videogerät (WDM) DRV - [2010.11.20 10:59:46 | 000,027,648 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\usbser.sys -- (usbser) DRV - [2010.11.20 10:59:44 | 000,080,768 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\usbaudio.sys -- (usbaudio) USB-Audiotreiber (WDM) DRV - [2010.11.20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb) DRV - [2010.11.20 10:50:21 | 000,031,232 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\CompositeBus.sys -- (CompositeBus) DRV - [2010.11.20 10:50:10 | 000,028,160 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\kbdhid.sys -- (kbdhid) DRV - [2010.11.20 10:19:15 | 000,065,536 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\IPMIDrv.sys -- (IPMIDRV) DRV - [2010.11.20 10:14:45 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID) DRV - [2010.11.20 10:14:41 | 000,005,632 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap) DRV - [2010.11.20 09:54:02 | 000,084,992 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\sdbus.sys -- (sdbus) DRV - [2010.11.20 09:47:55 | 000,010,240 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\acpipmi.sys -- (AcpiPmi) DRV - [2010.08.20 17:41:54 | 000,088,144 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Programme\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys -- (bdfwfpf) DRV - [2010.08.20 14:41:58 | 000,072,784 | ---- | M] (BitDefender) [Kernel | System | Running] -- c:\Programme\Common Files\BitDefender\BitDefender Firewall\bdfndisf6.sys -- (Bdfndisf) DRV - [2010.07.30 13:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2010.07.30 13:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2010.06.28 11:55:42 | 000,970,320 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\avckf.sys -- (avckf) DRV - [2010.06.28 11:55:36 | 000,633,424 | ---- | M] (BitDefender) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\avc3.sys -- (avc3) DRV - [2010.05.28 12:24:56 | 000,040,560 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hotcore3.sys -- (hotcore3) DRV - [2010.05.13 15:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\bdfm.sys -- (BDFM) DRV - [2010.02.25 16:51:02 | 000,025,216 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901) DRV - [2010.01.19 18:32:40 | 000,085,128 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Windows\System32\drivers\bdvedisk.sys -- (Bdvedisk) DRV - [2009.11.02 12:45:44 | 000,014,808 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TurboB.sys -- (TurboB) DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2009.07.14 02:26:15 | 000,053,312 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\agp440.sys -- (agp440) DRV - [2009.07.14 02:26:15 | 000,014,912 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\amdide.sys -- (amdide) DRV - [2009.07.14 02:20:45 | 000,012,368 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\pciide.sys -- (pciide) DRV - [2009.07.14 02:20:44 | 000,105,024 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\nv_agp.sys -- (nv_agp) DRV - [2009.07.14 02:20:44 | 000,028,240 | ---- | M] () [Kernel | System | Running] -- C:\Windows\system32\drivers\mssmbios.sys -- (mssmbios) DRV - [2009.07.14 02:20:36 | 000,046,656 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\isapnp.sys -- (isapnp) DRV - [2009.07.14 02:20:36 | 000,042,576 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\kbdclass.sys -- (kbdclass) DRV - [2009.07.14 02:20:36 | 000,015,424 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\intelide.sys -- (intelide) DRV - [2009.07.14 02:20:28 | 000,057,936 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\gagp30kx.sys -- (gagp30kx) DRV - [2009.07.14 02:20:28 | 000,022,096 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Windows\system32\DRIVERS\crcdisk.sys -- (crcdisk) DRV - [2009.07.14 02:19:11 | 000,057,424 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\uliagpkx.sys -- (uliagpkx) DRV - [2009.07.14 02:19:11 | 000,019,024 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\wd.sys -- (Wd) DRV - [2009.07.14 02:19:10 | 000,055,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\uagp35.sys -- (uagp35) DRV - [2009.07.14 02:19:10 | 000,053,328 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\viaagp.sys -- (viaagp) DRV - [2009.07.14 02:19:10 | 000,012,240 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\swenum.sys -- (swenum) DRV - [2009.07.14 02:19:03 | 000,180,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\pcmcia.sys -- (pcmcia) DRV - [2009.07.14 00:51:35 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass) DRV - [2009.07.14 00:51:34 | 000,056,320 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bthmodem.sys -- (BTHMODEM) DRV - [2009.07.14 00:51:33 | 000,091,136 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\hidbth.sys -- (HidBth) DRV - [2009.07.14 00:51:29 | 000,062,464 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\ohci1394.sys -- (ohci1394) OHCI-konformer 1394-Hostcontroller (alt) DRV - [2009.07.14 00:51:18 | 000,086,016 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\usbcir.sys -- (usbcir) eHome-Infrarotempfänger (USBCIR) DRV - [2009.07.14 00:51:17 | 000,037,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\circlass.sys -- (circlass) DRV - [2009.07.14 00:51:05 | 000,037,888 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\hidir.sys -- (HidIr) DRV - [2009.07.14 00:46:55 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig) DRV - [2009.07.14 00:46:53 | 000,021,632 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\wacompen.sys -- (WacomPen) DRV - [2009.07.14 00:45:52 | 000,013,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sfloppy.sys -- (sfloppy) DRV - [2009.07.14 00:45:52 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\sffp_mmc.sys -- (sffp_mmc) DRV - [2009.07.14 00:45:45 | 000,025,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\fdc.sys -- (fdc) DRV - [2009.07.14 00:45:45 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\flpydisk.sys -- (flpydisk) DRV - [2009.07.14 00:45:35 | 000,079,360 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\parport.sys -- (Parport) DRV - [2009.07.14 00:45:33 | 000,083,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\serial.sys -- (Serial) DRV - [2009.07.14 00:45:29 | 000,008,704 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\system32\DRIVERS\parvdm.sys -- (Parvdm) DRV - [2009.07.14 00:45:28 | 000,017,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\serenum.sys -- (Serenum) DRV - [2009.07.14 00:45:08 | 000,019,968 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sermouse.sys -- (sermouse) DRV - [2009.07.14 00:19:21 | 000,021,504 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt) DRV - [2009.07.14 00:19:19 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\errdev.sys -- (ErrDev) DRV - [2009.07.14 00:19:17 | 000,011,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\wmiacpi.sys -- (WmiAcpi) DRV - [2009.07.14 00:11:24 | 000,080,896 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\system32\drivers\i8042prt.sys -- (i8042prt) DRV - [2009.07.14 00:11:04 | 000,055,296 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdk8.sys -- (AmdK8) DRV - [2009.07.14 00:11:04 | 000,052,736 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viac7.sys -- (ViaC7) DRV - [2009.07.14 00:11:04 | 000,052,736 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM) DRV - [2009.07.14 00:11:04 | 000,052,224 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\processr.sys -- (Processor) DRV - [2009.07.13 23:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Intel(R) DRV - [2009.07.13 23:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\k57nd60x.sys -- (k57nd60x) Broadcom NetLink (TM) DRV - [2008.08.26 08:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008.03.14 07:04:29 | 000,046,652 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2007.06.29 13:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AmdLLD.sys -- (AmdLLD) DRV - [2006.11.14 17:35:20 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp) DRV - [2005.11.22 11:12:32 | 000,042,624 | ---- | M] (Data Encryption Systems Limited) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\dk2drv.sys -- (dk2drv) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 00 30 B8 89 93 F0 CB 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Facemoods Search" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/||hxxp://www.facebook.com/" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1 FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:2.0 FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94 FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\ [2011.10.11 18:02:35 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011.03.11 23:37:19 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011.03.11 23:37:19 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.12.22 18:05:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.09.19 14:54:45 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdtbext\ [2011.10.11 18:02:35 | 000,000,000 | ---D | M] [2011.02.02 21:12:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dell\AppData\Roaming\mozilla\Extensions [2011.12.20 16:50:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dell\AppData\Roaming\mozilla\Firefox\Profiles\n7wz0213.default\extensions [2011.02.03 18:42:09 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\Dell\AppData\Roaming\mozilla\Firefox\Profiles\n7wz0213.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2011.11.12 18:25:33 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Dell\AppData\Roaming\mozilla\Firefox\Profiles\n7wz0213.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2011.12.20 16:50:37 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Users\Dell\AppData\Roaming\mozilla\Firefox\Profiles\n7wz0213.default\extensions\foxyproxy@eric.h.jung [2011.12.22 18:05:09 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions () (No name found) -- C:\USERS\DELL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\N7WZ0213.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI [2011.12.21 08:42:29 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011.10.03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011.12.21 06:08:50 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml [2011.12.21 06:02:40 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2011.12.21 06:08:50 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml [2011.12.21 06:08:50 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml [2011.12.21 06:08:50 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml [2011.12.21 06:08:50 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2011.12.22 20:50:11 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O3 - HKLM\..\Toolbar: (Bitdefender Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Programme\BitDefender\BitDefender 2011\ietoolbar.dll (BitDefender S.R.L.) O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (BitDefender S.R.L.) O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe (BitDefender S.R.L.) O4 - HKLM..\Run: [NokiaMusic FastStart] C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe (Nokia) O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Dell\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Nach Microsoft &Excel exportieren - C:\Programme\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BD2B9DE0-579C-4040-BD43-B6F0EAC6852D}: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9423DBA-B676-4608-91BA-8ECDD0E96D9D}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Common Files\microsoft shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Common Files\microsoft shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0 ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Webordner ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software) NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2011.12.22 22:11:09 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Dell\Desktop\OTL.exe [2011.12.22 20:51:41 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN [2011.12.22 20:51:38 | 000,000,000 | ---D | C] -- C:\Windows\temp [2011.12.22 20:51:38 | 000,000,000 | ---D | C] -- C:\Users\Dell\AppData\Local\temp [2011.12.22 20:39:30 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe [2011.12.22 20:39:30 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe [2011.12.22 20:39:30 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe [2011.12.22 20:39:25 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2011.12.22 20:36:14 | 004,348,814 | R--- | C] (Swearware) -- C:\ComboFix.exe [2011.12.22 20:30:07 | 000,000,000 | ---D | C] -- C:\Qoobox [2011.12.20 22:03:35 | 003,296,600 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEP32H.dll [2011.12.20 22:03:35 | 000,357,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32H.dll [2011.12.20 22:03:35 | 000,345,944 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EED32H.dll [2011.12.20 22:03:35 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RH3DHT32.dll [2011.12.20 22:03:35 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RH3DAA32.dll [2011.12.20 22:03:35 | 000,170,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32H.dll [2011.12.20 22:03:35 | 000,103,256 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEL32H.dll [2011.12.20 22:03:35 | 000,088,408 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEA32H.dll [2011.12.20 22:03:35 | 000,076,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32H.dll [2011.12.20 22:03:35 | 000,064,856 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32H.dll [2011.12.20 22:03:35 | 000,061,272 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEG32H.dll [2011.12.20 21:53:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\newfolder3 [2011.12.20 20:51:55 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2011.12.20 20:51:53 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp [2011.12.20 17:44:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth [2011.12.13 10:50:57 | 000,000,000 | ---D | C] -- C:\Users\Dell\Desktop\Zubehör [2011.12.11 11:52:26 | 000,000,000 | -HSD | C] -- C:\Users\Dell\Phone Browser [2011.12.10 14:42:11 | 000,000,000 | ---D | C] -- C:\Users\Dell\AppData\Local\Chromium [2011.12.08 15:46:25 | 000,000,000 | ---D | C] -- C:\Users\Dell\Desktop\sh3u56f [2011.12.08 15:20:42 | 000,000,000 | ---D | C] -- C:\Users\Dell\Documents\Stronghold 3 [2011.11.27 16:12:00 | 000,000,000 | ---D | C] -- C:\Users\Dell\AppData\Roaming\SWiSH Max4 [2011.11.27 16:07:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SWiSH Max4 [2011.11.27 16:07:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LameACM [2011.11.27 16:07:24 | 000,000,000 | ---D | C] -- C:\Program Files\LameACM [2011.11.27 16:06:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SWiSHzone.com [2011.11.27 16:06:57 | 000,000,000 | ---D | C] -- C:\Program Files\SWiSH Max4 [2011.11.27 15:53:32 | 056,654,648 | ---- | C] (SWiSHzone.com) -- C:\Users\Dell\Desktop\SetupSwishmax4.exe [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011.12.22 22:12:30 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Dell\Desktop\OTL.exe [2011.12.22 21:39:16 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011.12.22 21:01:42 | 000,014,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011.12.22 21:01:42 | 000,014,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011.12.22 20:59:25 | 000,705,096 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011.12.22 20:59:25 | 000,660,374 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011.12.22 20:59:25 | 000,151,424 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011.12.22 20:59:25 | 000,124,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011.12.22 20:54:21 | 000,001,090 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011.12.22 20:53:55 | 000,000,434 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Dell.job [2011.12.22 20:53:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.12.22 20:53:41 | 2411,900,928 | -HS- | M] () -- C:\hiberfil.sys [2011.12.22 20:50:11 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts [2011.12.22 20:27:12 | 004,348,814 | R--- | M] (Swearware) -- C:\ComboFix.exe [2011.12.22 18:05:16 | 000,001,094 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2011.12.20 17:44:17 | 000,002,172 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk [2011.12.15 14:23:25 | 000,387,392 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011.12.13 11:03:24 | 001,328,721 | ---- | M] () -- C:\Users\Dell\Desktop\iw3mp_17.rar [2011.12.13 10:50:52 | 002,399,568 | ---- | M] () -- C:\Users\Dell\Desktop\Zubehoer.rar [2011.12.10 17:45:23 | 000,641,127 | ---- | M] () -- C:\Users\Dell\Desktop\PeZBOT_002p_-_World_at_War.zip [2011.12.10 13:54:44 | 000,363,580 | ---- | M] () -- C:\Users\Dell\Desktop\loc.v [2011.12.08 15:46:22 | 001,204,704 | ---- | M] () -- C:\Users\Dell\Desktop\sh3u56f.rar [2011.12.06 20:23:34 | 005,615,808 | ---- | M] () -- C:\Users\Dell\Desktop\Taio_Cruz_ft._Flo_Rida_-_Hangover_Hardwell_Extende....mp3 [2011.11.27 16:07:26 | 000,000,982 | ---- | M] () -- C:\Users\Public\Desktop\SWiSH Max4.lnk [2011.11.27 16:06:37 | 056,654,648 | ---- | M] (SWiSHzone.com) -- C:\Users\Dell\Desktop\SetupSwishmax4.exe [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2011.12.22 20:39:30 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe [2011.12.22 20:39:30 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe [2011.12.22 20:39:30 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2011.12.22 20:39:30 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe [2011.12.22 20:39:30 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2011.12.20 17:44:17 | 000,002,172 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk [2011.12.13 11:03:50 | 003,330,048 | ---- | C] () -- C:\Users\Dell\Desktop\iw3mp.exe [2011.12.13 11:03:12 | 001,328,721 | ---- | C] () -- C:\Users\Dell\Desktop\iw3mp_17.rar [2011.12.13 10:50:29 | 002,399,568 | ---- | C] () -- C:\Users\Dell\Desktop\Zubehoer.rar [2011.12.11 11:52:50 | 003,515,964 | ---- | C] () -- C:\Users\Dell\Desktop\Rihanna feat. Calvin Harris - We Found Love.mp3 [2011.12.10 17:45:20 | 000,641,127 | ---- | C] () -- C:\Users\Dell\Desktop\PeZBOT_002p_-_World_at_War.zip [2011.12.10 15:03:05 | 000,363,580 | ---- | C] () -- C:\Users\Dell\Desktop\loc.v [2011.12.08 15:46:10 | 001,204,704 | ---- | C] () -- C:\Users\Dell\Desktop\sh3u56f.rar [2011.12.06 20:17:23 | 005,615,808 | ---- | C] () -- C:\Users\Dell\Desktop\Taio_Cruz_ft._Flo_Rida_-_Hangover_Hardwell_Extende....mp3 [2011.11.27 16:07:26 | 000,000,982 | ---- | C] () -- C:\Users\Public\Desktop\SWiSH Max4.lnk [2011.09.27 17:51:24 | 000,007,615 | ---- | C] () -- C:\Users\Dell\AppData\Local\Resmon.ResmonCfg [2011.07.28 16:49:12 | 000,053,760 | ---- | C] () -- C:\Windows\System32\OVDecode.dll [2011.06.25 16:28:34 | 000,000,064 | ---- | C] () -- C:\Windows\FLS1.INI [2011.06.25 16:28:29 | 000,081,920 | ---- | C] () -- C:\Windows\System32\FLSDEVCP.EXE [2011.06.25 16:28:27 | 001,695,744 | ---- | C] () -- C:\Windows\System32\flsinst.dll [2011.06.25 16:28:27 | 000,004,122 | ---- | C] () -- C:\Windows\System32\flsinst.ini [2011.06.23 20:20:14 | 000,233,344 | ---- | C] () -- C:\Windows\System32\drivers\msiscsi.sys [2011.06.23 20:19:54 | 000,164,864 | ---- | C] () -- C:\Windows\System32\drivers\1394ohci.sys [2011.06.23 20:19:52 | 000,116,096 | ---- | C] () -- C:\Windows\System32\drivers\msdsm.sys [2011.06.23 20:19:49 | 000,053,120 | ---- | C] () -- C:\Windows\System32\drivers\termdd.sys [2011.06.23 20:19:47 | 000,085,376 | ---- | C] () -- C:\Windows\System32\drivers\sbp2port.sys [2011.06.23 20:19:45 | 000,160,128 | ---- | C] () -- C:\Windows\System32\drivers\vhdmp.sys [2011.06.23 20:19:39 | 000,146,432 | ---- | C] () -- C:\Windows\System32\drivers\usbvideo.sys [2011.06.23 20:19:39 | 000,130,432 | ---- | C] () -- C:\Windows\System32\drivers\mpio.sys [2011.06.23 20:19:37 | 000,028,032 | ---- | C] () -- C:\Windows\System32\drivers\storvsc.sys [2011.06.23 20:19:27 | 000,084,992 | ---- | C] () -- C:\Windows\System32\drivers\sdbus.sys [2011.06.23 20:19:23 | 000,080,768 | ---- | C] () -- C:\Windows\System32\drivers\USBAUDIO.sys [2011.06.23 20:19:18 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe [2011.06.23 20:19:17 | 000,031,232 | ---- | C] () -- C:\Windows\System32\drivers\CompositeBus.sys [2011.06.23 20:19:15 | 000,017,920 | ---- | C] () -- C:\Windows\System32\drivers\VMBusHID.sys [2011.06.23 20:19:15 | 000,010,240 | ---- | C] () -- C:\Windows\System32\drivers\acpipmi.sys [2011.06.23 20:19:14 | 000,065,536 | ---- | C] () -- C:\Windows\System32\drivers\IPMIDrv.sys [2011.06.23 20:19:14 | 000,028,160 | ---- | C] () -- C:\Windows\System32\drivers\kbdhid.sys [2011.06.23 20:19:14 | 000,027,648 | ---- | C] () -- C:\Windows\System32\drivers\usbser.sys [2011.06.23 20:19:13 | 000,304,128 | ---- | C] () -- C:\Windows\System32\drivers\HdAudio.sys [2011.06.23 20:19:13 | 000,108,544 | ---- | C] () -- C:\Windows\System32\drivers\hdaudbus.sys [2011.06.23 20:19:13 | 000,039,936 | ---- | C] () -- C:\Windows\System32\drivers\umbus.sys [2011.06.23 20:19:11 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\vms3cap.sys [2011.05.11 14:05:49 | 000,020,480 | ---- | C] () -- C:\Windows\System32\drivers\usbohci.sys [2011.04.27 21:23:36 | 000,143,744 | ---- | C] () -- C:\Windows\System32\drivers\nvstor.sys [2011.04.27 21:23:36 | 000,117,120 | ---- | C] () -- C:\Windows\System32\drivers\nvraid.sys [2011.04.27 21:23:36 | 000,080,256 | ---- | C] () -- C:\Windows\System32\drivers\amdsata.sys [2011.04.27 21:23:35 | 000,332,160 | ---- | C] () -- C:\Windows\System32\drivers\iaStorV.sys [2011.04.15 20:21:54 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll [2011.04.15 20:21:34 | 000,007,119 | ---- | C] () -- C:\Windows\mgxoschk.ini [2011.04.14 20:17:29 | 000,000,259 | ---- | C] () -- C:\Windows\WinInit.Ini [2011.03.13 20:37:56 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib [2011.02.02 23:08:15 | 000,000,016 | ---- | C] () -- C:\Windows\System32\asdict.dat [2011.02.02 22:44:14 | 000,063,007 | ---- | C] () -- C:\ProgramData\bdinstall.bin [2011.02.02 21:22:32 | 000,000,400 | ---- | C] () -- C:\Windows\ODBC.INI [2011.02.02 21:12:36 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat [2011.02.02 21:06:22 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat [2011.02.02 13:30:31 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2010.07.08 09:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe [2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [2009.11.02 12:45:44 | 000,014,808 | ---- | C] () -- C:\Windows\System32\drivers\TurboB.sys [2009.07.14 10:00:12 | 000,705,096 | ---- | C] () -- C:\Windows\System32\perfh007.dat [2009.07.14 10:00:12 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat [2009.07.14 10:00:12 | 000,151,424 | ---- | C] () -- C:\Windows\System32\perfc007.dat [2009.07.14 10:00:12 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat [2009.07.14 05:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009.07.14 05:33:53 | 000,387,392 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2009.07.14 03:05:48 | 000,660,374 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2009.07.14 03:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2009.07.14 03:05:48 | 000,124,370 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2009.07.14 03:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2009.07.14 03:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2009.07.14 03:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2009.07.14 01:59:16 | 000,013,568 | ---- | C] () -- C:\Windows\System32\drivers\BrFiltLo.sys [2009.07.14 01:59:02 | 000,062,336 | ---- | C] () -- C:\Windows\System32\drivers\BrSerWdm.sys [2009.07.14 01:58:59 | 000,005,248 | ---- | C] () -- C:\Windows\System32\drivers\BrFiltUp.sys [2009.07.14 01:58:35 | 000,011,904 | ---- | C] () -- C:\Windows\System32\drivers\BrUsbSer.sys [2009.07.14 01:58:27 | 000,012,160 | ---- | C] () -- C:\Windows\System32\drivers\BrUsbMdm.sys [2009.07.14 01:57:25 | 000,272,128 | ---- | C] () -- C:\Windows\System32\drivers\BrSerId.sys [2009.07.14 01:55:09 | 001,332,736 | ---- | C] () -- C:\Windows\System32\hpotiop1.dll [2009.07.14 00:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2009.07.14 00:51:35 | 000,008,192 | ---- | C] () -- C:\Windows\System32\drivers\umpass.sys [2009.07.14 00:51:34 | 000,056,320 | ---- | C] () -- C:\Windows\System32\drivers\bthmodem.sys [2009.07.14 00:51:33 | 000,091,136 | ---- | C] () -- C:\Windows\System32\drivers\hidbth.sys [2009.07.14 00:51:29 | 000,062,464 | ---- | C] () -- C:\Windows\System32\drivers\ohci1394.sys [2009.07.14 00:51:18 | 000,086,016 | ---- | C] () -- C:\Windows\System32\drivers\usbcir.sys [2009.07.14 00:51:17 | 000,037,888 | ---- | C] () -- C:\Windows\System32\drivers\circlass.sys [2009.07.14 00:51:05 | 000,037,888 | ---- | C] () -- C:\Windows\System32\drivers\hidir.sys [2009.07.14 00:46:55 | 000,012,288 | ---- | C] () -- C:\Windows\System32\drivers\MTConfig.sys [2009.07.14 00:46:53 | 000,021,632 | ---- | C] () -- C:\Windows\System32\drivers\wacompen.sys [2009.07.14 00:46:05 | 000,022,096 | ---- | C] () -- C:\Windows\System32\drivers\crcdisk.sys [2009.07.14 00:45:52 | 000,013,824 | ---- | C] () -- C:\Windows\System32\drivers\sfloppy.sys [2009.07.14 00:45:52 | 000,012,288 | ---- | C] () -- C:\Windows\System32\drivers\sffp_mmc.sys [2009.07.14 00:45:45 | 000,025,088 | ---- | C] () -- C:\Windows\System32\drivers\fdc.sys [2009.07.14 00:45:45 | 000,019,968 | ---- | C] () -- C:\Windows\System32\drivers\flpydisk.sys [2009.07.14 00:45:35 | 000,079,360 | ---- | C] () -- C:\Windows\System32\drivers\parport.sys [2009.07.14 00:45:33 | 000,083,456 | ---- | C] () -- C:\Windows\System32\drivers\serial.sys [2009.07.14 00:45:29 | 000,008,704 | ---- | C] () -- C:\Windows\System32\drivers\parvdm.sys [2009.07.14 00:45:28 | 000,017,920 | ---- | C] () -- C:\Windows\System32\drivers\serenum.sys [2009.07.14 00:45:08 | 000,019,968 | ---- | C] () -- C:\Windows\System32\drivers\sermouse.sys [2009.07.14 00:45:08 | 000,012,240 | ---- | C] () -- C:\Windows\System32\drivers\swenum.sys [2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll [2009.07.14 00:25:51 | 000,105,024 | ---- | C] () -- C:\Windows\System32\drivers\NV_AGP.SYS [2009.07.14 00:25:48 | 000,057,424 | ---- | C] () -- C:\Windows\System32\drivers\ULIAGPKX.SYS [2009.07.14 00:25:42 | 000,057,936 | ---- | C] () -- C:\Windows\System32\drivers\GAGP30KX.SYS [2009.07.14 00:25:41 | 000,055,888 | ---- | C] () -- C:\Windows\System32\drivers\UAGP35.SYS [2009.07.14 00:25:40 | 000,053,328 | ---- | C] () -- C:\Windows\System32\drivers\VIAAGP.SYS [2009.07.14 00:25:37 | 000,053,312 | ---- | C] () -- C:\Windows\System32\drivers\AGP440.sys [2009.07.14 00:25:36 | 000,053,312 | ---- | C] () -- C:\Windows\System32\drivers\AMDAGP.SYS [2009.07.14 00:25:36 | 000,052,304 | ---- | C] () -- C:\Windows\System32\drivers\SISAGP.SYS [2009.07.14 00:19:30 | 000,180,288 | ---- | C] () -- C:\Windows\System32\drivers\pcmcia.sys [2009.07.14 00:19:29 | 000,046,656 | ---- | C] () -- C:\Windows\System32\drivers\isapnp.sys [2009.07.14 00:19:26 | 000,028,240 | ---- | C] () -- C:\Windows\System32\drivers\mssmbios.sys [2009.07.14 00:19:21 | 000,021,504 | ---- | C] () -- C:\Windows\System32\drivers\hidbatt.sys [2009.07.14 00:19:19 | 000,007,168 | ---- | C] () -- C:\Windows\System32\drivers\errdev.sys [2009.07.14 00:19:17 | 000,011,264 | ---- | C] () -- C:\Windows\System32\drivers\wmiacpi.sys [2009.07.14 00:11:31 | 000,019,024 | ---- | C] () -- C:\Windows\System32\drivers\wd.sys [2009.07.14 00:11:24 | 000,080,896 | ---- | C] () -- C:\Windows\System32\drivers\i8042prt.sys [2009.07.14 00:11:20 | 000,016,976 | ---- | C] () -- C:\Windows\System32\drivers\viaide.sys [2009.07.14 00:11:20 | 000,012,368 | ---- | C] () -- C:\Windows\System32\drivers\pciide.sys [2009.07.14 00:11:19 | 000,015,424 | ---- | C] () -- C:\Windows\System32\drivers\intelide.sys [2009.07.14 00:11:19 | 000,014,912 | ---- | C] () -- C:\Windows\System32\drivers\amdide.sys [2009.07.14 00:11:18 | 000,015,952 | ---- | C] () -- C:\Windows\System32\drivers\cmdide.sys [2009.07.14 00:11:17 | 000,014,400 | ---- | C] () -- C:\Windows\System32\drivers\aliide.sys [2009.07.14 00:11:15 | 000,042,576 | ---- | C] () -- C:\Windows\System32\drivers\kbdclass.sys [2009.07.14 00:11:04 | 000,055,296 | ---- | C] () -- C:\Windows\System32\drivers\amdk8.sys [2009.07.14 00:11:04 | 000,052,736 | ---- | C] () -- C:\Windows\System32\drivers\viac7.sys [2009.07.14 00:11:04 | 000,052,736 | ---- | C] () -- C:\Windows\System32\drivers\amdppm.sys [2009.07.14 00:11:04 | 000,052,224 | ---- | C] () -- C:\Windows\System32\drivers\processr.sys [2009.07.13 23:54:14 | 000,026,624 | ---- | C] () -- C:\Windows\System32\drivers\hcw85cir.sys [2009.07.13 23:09:19 | 000,095,824 | ---- | C] () -- C:\Windows\System32\drivers\lsi_fc.sys [2009.07.13 23:09:18 | 000,106,064 | ---- | C] () -- C:\Windows\System32\drivers\ql40xx.sys [2009.07.13 23:09:18 | 000,096,848 | ---- | C] () -- C:\Windows\System32\drivers\lsi_scsi.sys [2009.07.13 23:09:18 | 000,089,168 | ---- | C] () -- C:\Windows\System32\drivers\lsi_sas.sys [2009.07.13 23:09:18 | 000,077,888 | ---- | C] () -- C:\Windows\System32\drivers\sisraid4.sys [2009.07.13 23:09:18 | 000,054,864 | ---- | C] () -- C:\Windows\System32\drivers\lsi_sas2.sys [2009.07.13 23:09:18 | 000,021,072 | ---- | C] () -- C:\Windows\System32\drivers\stexstor.sys [2009.07.13 23:09:17 | 000,235,584 | ---- | C] () -- C:\Windows\System32\drivers\MegaSR.sys [2009.07.13 23:09:17 | 000,086,608 | ---- | C] () -- C:\Windows\System32\drivers\arcsas.sys [2009.07.13 23:09:17 | 000,076,368 | ---- | C] () -- C:\Windows\System32\drivers\arc.sys [2009.07.13 23:09:17 | 000,067,152 | ---- | C] () -- C:\Windows\System32\drivers\HpSAMD.sys [2009.07.13 23:09:17 | 000,044,624 | ---- | C] () -- C:\Windows\System32\drivers\nfrd960.sys [2009.07.13 23:09:17 | 000,041,040 | ---- | C] () -- C:\Windows\System32\drivers\iirsp.sys [2009.07.13 23:09:16 | 000,297,552 | ---- | C] () -- C:\Windows\System32\drivers\adpahci.sys [2009.07.13 23:09:16 | 000,146,512 | ---- | C] () -- C:\Windows\System32\drivers\adpu320.sys [2009.06.18 19:29:04 | 000,197,654 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2009.06.10 22:20:26 | 000,070,720 | ---- | C] () -- C:\Windows\System32\drivers\djsvs.sys [2009.06.10 22:20:24 | 000,141,904 | ---- | C] () -- C:\Windows\System32\drivers\vsmraid.sys [2009.06.10 22:20:08 | 000,040,016 | ---- | C] () -- C:\Windows\System32\drivers\sisraid2.sys [2009.06.10 22:20:06 | 001,383,488 | ---- | C] () -- C:\Windows\System32\drivers\ql2300.sys [2009.06.10 22:20:03 | 000,159,312 | ---- | C] () -- C:\Windows\System32\drivers\amdsbs.sys [2009.06.10 22:19:35 | 000,030,800 | ---- | C] () -- C:\Windows\System32\drivers\megasas.sys [2009.06.10 22:19:19 | 000,453,712 | ---- | C] () -- C:\Windows\System32\drivers\elxstor.sys [2009.06.10 22:19:05 | 000,422,976 | ---- | C] () -- C:\Windows\System32\drivers\adp94xx.sys [2009.06.10 22:17:55 | 003,100,160 | ---- | C] () -- C:\Windows\System32\drivers\evbdx.sys [2009.06.10 22:17:52 | 000,430,080 | ---- | C] () -- C:\Windows\System32\drivers\bxvbdx.sys [2009.02.18 17:55:22 | 000,294,912 | ---- | C] () -- C:\Windows\System32\ATIODE.exe [2009.02.03 20:52:04 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe [2007.01.31 13:50:32 | 000,913,408 | ---- | C] () -- C:\Windows\System32\xreglib.dll [2005.05.06 19:06:00 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll [2003.02.20 17:53:42 | 000,005,702 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI [2001.08.29 13:11:40 | 000,398,848 | R--- | C] () -- C:\Windows\System32\dk2win32.dll ========== LOP Check ========== [2009.07.14 05:53:46 | 000,028,348 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*. > [2011.12.22 20:51:41 | 000,000,000 | -HSD | M] -- C:\$RECYCLE.BIN [2009.06.04 11:26:16 | 000,000,000 | ---D | M] -- C:\ATI [2011.07.31 22:02:38 | 000,000,000 | ---D | M] -- C:\Boot [2011.12.20 17:44:40 | 000,000,000 | ---D | M] -- C:\Config.Msi [2011.03.02 22:07:34 | 000,000,000 | ---D | M] -- C:\DELL [2008.08.05 13:36:12 | 000,000,000 | ---D | M] -- C:\doctemp [2009.07.14 05:53:55 | 000,000,000 | -HSD | M] -- C:\Documents and Settings [2008.12.04 20:49:57 | 000,000,000 | -HSD | M] -- C:\Dokumente und Einstellungen [2011.10.07 15:01:11 | 000,000,000 | ---D | M] -- C:\Download [2009.12.05 21:22:34 | 000,000,000 | ---D | M] -- C:\Downloads [2008.09.05 07:19:14 | 000,000,000 | ---D | M] -- C:\Drivers [2011.01.01 19:05:48 | 000,000,000 | ---D | M] -- C:\Fraps [2011.01.13 11:07:19 | 000,000,000 | ---D | M] -- C:\MeinBackup [2009.07.26 19:40:38 | 000,000,000 | R--D | M] -- C:\MSOCache [2010.02.13 19:54:36 | 000,000,000 | ---D | M] -- C:\Nokia [2010.12.26 11:48:39 | 000,000,000 | ---D | M] -- C:\OutputFolder [2009.07.14 03:37:05 | 000,000,000 | ---D | M] -- C:\PerfLogs [2011.12.20 20:51:55 | 000,000,000 | R--D | M] -- C:\Program Files [2011.09.08 09:52:50 | 000,000,000 | ---D | M] -- C:\ProgramData [2008.12.04 20:49:57 | 000,000,000 | -HSD | M] -- C:\Programme [2009.11.13 22:21:58 | 000,000,000 | ---D | M] -- C:\PSFonts [2011.12.22 20:51:39 | 000,000,000 | ---D | M] -- C:\Qoobox [2011.02.02 13:51:20 | 000,000,000 | ---D | M] -- C:\Recovery [2011.12.22 22:28:43 | 000,000,000 | -HSD | M] -- C:\System Volume Information [2010.08.15 14:26:41 | 000,000,000 | ---D | M] -- C:\totalcmd [2011.07.21 17:46:04 | 000,000,000 | R--D | M] -- C:\Users [2011.12.22 20:51:38 | 000,000,000 | ---D | M] -- C:\Windows [2011.04.25 08:46:22 | 000,000,000 | ---D | M] -- C:\Windows.old < %PROGRAMFILES%\*.exe > < %LOCALAPPDATA%\*.exe > < %systemroot%\*. /mp /s > < MD5 for: AGP440.SYS > [2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\ERDNT\cache\AGP440.sys [2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys [2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys [2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys [2009.07.14 02:26:15 | 000,053,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\AGP440.sys < MD5 for: ATAPI.SYS > [2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\ERDNT\cache\atapi.sys [2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys [2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys [2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys [2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys < MD5 for: CNGAUDIT.DLL > [2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\ERDNT\cache\cngaudit.dll [2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll [2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll < MD5 for: EVENTLOG.DLL > [2011.02.22 21:18:51 | 000,008,376 | ---- | M] () MD5=68F9AD291B0C16F6B4AAEBFC26960EFA -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\lib\eventlog.dll < MD5 for: EXPLORER.EXE > [2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe [2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe [2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe [2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe [2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe [2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\ERDNT\cache\explorer.exe [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe [2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe [2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe [2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe < MD5 for: IASTORV.SYS > [2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys [2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys [2011.03.11 06:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys [2011.03.11 06:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys [2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys [2010.11.20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys [2010.11.20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys [2011.03.11 06:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys [2011.03.11 06:38:51 | 000,332,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\iaStorV.sys < MD5 for: NETLOGON.DLL > [2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\ERDNT\cache\netlogon.dll [2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll [2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll [2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll < MD5 for: NVSTOR.SYS > [2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys [2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys [2011.03.11 06:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys [2011.03.11 06:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys [2011.03.11 06:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys [2010.11.20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys [2010.11.20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys [2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys [2011.03.11 06:39:00 | 000,143,744 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\nvstor.sys < MD5 for: SCECLI.DLL > [2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll [2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\ERDNT\cache\scecli.dll [2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll [2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll < MD5 for: USER32.DLL > [2009.07.14 02:16:17 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=34B7E222E81FAFA885F0C5F2CFA56861 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll [2010.11.20 13:21:33 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 -- C:\Windows\ERDNT\cache\user32.dll [2010.11.20 13:21:33 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 -- C:\Windows\System32\user32.dll [2010.11.20 13:21:33 | 000,811,520 | ---- | M] (Microsoft Corporation) MD5=F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll < MD5 for: USERINIT.EXE > [2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\ERDNT\cache\userinit.exe [2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe [2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe [2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe < MD5 for: WINLOGON.EXE > [2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe [2009.10.28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe [2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\ERDNT\cache\winlogon.exe [2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe [2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe [2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe < MD5 for: WS2IFSL.SYS > [2009.07.14 00:55:02 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=6DB3276587B853BF886B69528FDB048C -- C:\Windows\System32\drivers\ws2ifsl.sys [2009.07.14 00:55:02 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=6DB3276587B853BF886B69528FDB048C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.1.7600.16385_none_4f5cf6f829213bb2\ws2ifsl.sys < %systemroot%\system32\drivers\*.sys /lockedfiles > [2010.11.20 11:01:12 | 000,164,864 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\1394ohci.sys [2010.11.20 09:47:55 | 000,010,240 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\acpipmi.sys [2009.07.14 02:26:15 | 000,422,976 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adp94xx.sys [2009.07.14 02:26:17 | 000,297,552 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpahci.sys [2009.07.14 02:26:15 | 000,146,512 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\adpu320.sys [2009.07.14 02:26:15 | 000,053,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\AGP440.sys [2009.07.14 02:26:15 | 000,014,400 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\aliide.sys [2009.07.14 02:26:15 | 000,053,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\AMDAGP.SYS [2009.07.14 02:26:15 | 000,014,912 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdide.sys [2009.07.14 00:11:04 | 000,055,296 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdk8.sys [2009.07.14 00:11:04 | 000,052,736 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdppm.sys [2011.03.11 06:38:37 | 000,080,256 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdsata.sys [2009.07.14 02:26:15 | 000,159,312 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\amdsbs.sys [2009.07.14 02:26:15 | 000,076,368 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\arc.sys [2009.07.14 02:26:15 | 000,086,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\arcsas.sys [2010.05.13 15:52:04 | 000,152,528 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdfm.sys [2011.04.09 09:16:10 | 000,353,096 | ---- | M] (BitDefender) Unable to obtain MD5 -- C:\Windows\system32\drivers\bdfsfltr.sys [2009.07.13 23:53:28 | 000,013,568 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrFiltLo.sys [2009.07.13 23:53:28 | 000,005,248 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrFiltUp.sys [2009.07.14 01:57:25 | 000,272,128 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerId.sys [2009.07.13 23:53:32 | 000,062,336 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerWdm.sys [2009.07.13 23:53:33 | 000,012,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbMdm.sys [2009.07.13 23:53:33 | 000,011,904 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbSer.sys [2009.07.14 00:51:34 | 000,056,320 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\bthmodem.sys [2009.07.13 23:02:48 | 000,430,080 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\bxvbdx.sys [2009.07.14 00:51:17 | 000,037,888 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\circlass.sys [2009.07.14 02:26:21 | 000,015,952 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\cmdide.sys [2010.11.20 10:50:21 | 000,031,232 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\CompositeBus.sys [2009.07.14 02:20:28 | 000,022,096 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\crcdisk.sys [2009.07.14 02:20:28 | 000,070,720 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\djsvs.sys [2009.07.14 02:20:28 | 000,453,712 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\elxstor.sys [2009.07.14 00:19:19 | 000,007,168 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\errdev.sys [2009.07.13 23:02:48 | 003,100,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\evbdx.sys [2009.07.14 00:45:45 | 000,025,088 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\fdc.sys [2009.07.14 00:45:45 | 000,019,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\flpydisk.sys [2009.07.14 02:20:28 | 000,057,936 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\GAGP30KX.SYS [2009.07.13 23:54:14 | 000,026,624 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hcw85cir.sys [2010.11.20 10:59:29 | 000,108,544 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hdaudbus.sys [2010.11.20 11:00:21 | 000,304,128 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\HdAudio.sys [2009.07.14 00:19:21 | 000,021,504 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hidbatt.sys [2009.07.14 00:51:33 | 000,091,136 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hidbth.sys [2009.07.14 00:51:05 | 000,037,888 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\hidir.sys [2009.07.14 02:20:28 | 000,067,152 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\HpSAMD.sys [2009.07.14 00:11:24 | 000,080,896 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\i8042prt.sys [2011.03.11 06:38:51 | 000,332,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iaStorV.sys [2009.07.14 02:20:36 | 000,041,040 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\iirsp.sys [2009.07.14 02:20:36 | 000,015,424 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\intelide.sys [2010.11.20 10:19:15 | 000,065,536 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\IPMIDrv.sys [2009.07.14 02:20:36 | 000,046,656 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\isapnp.sys [2009.07.14 02:20:36 | 000,042,576 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\kbdclass.sys [2010.11.20 10:50:10 | 000,028,160 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\kbdhid.sys [2009.07.14 02:20:36 | 000,095,824 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_fc.sys [2009.07.14 02:20:37 | 000,089,168 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_sas.sys [2009.07.14 02:20:36 | 000,054,864 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_sas2.sys [2009.07.14 02:20:36 | 000,096,848 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\lsi_scsi.sys [2009.07.14 02:20:36 | 000,030,800 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\megasas.sys [2009.07.14 02:20:36 | 000,235,584 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\MegaSR.sys [2010.11.20 13:30:01 | 000,130,432 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\mpio.sys [2010.11.20 13:30:04 | 000,116,096 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\msdsm.sys [2010.11.20 13:30:05 | 000,233,344 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\msiscsi.sys [2009.07.14 02:20:44 | 000,028,240 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\mssmbios.sys [2009.07.14 00:46:55 | 000,012,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\MTConfig.sys [2009.07.14 02:20:44 | 000,044,624 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nfrd960.sys [2011.03.11 06:39:00 | 000,117,120 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nvraid.sys [2011.03.11 06:39:00 | 000,143,744 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\nvstor.sys [2009.07.14 02:20:44 | 000,105,024 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\NV_AGP.SYS [2009.07.14 00:51:29 | 000,062,464 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ohci1394.sys [2009.07.14 00:45:35 | 000,079,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\parport.sys [2009.07.14 00:45:29 | 000,008,704 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\parvdm.sys [2009.07.14 02:20:45 | 000,012,368 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\pciide.sys [2009.07.14 02:19:03 | 000,180,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\pcmcia.sys [2009.07.14 00:11:04 | 000,052,224 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\processr.sys [2009.07.14 02:19:04 | 001,383,488 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ql2300.sys [2009.07.14 02:19:04 | 000,106,064 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ql40xx.sys [2010.11.20 13:30:10 | 000,085,376 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sbp2port.sys [2010.11.20 09:54:02 | 000,084,992 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sdbus.sys [2009.07.14 00:45:28 | 000,017,920 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\serenum.sys [2009.07.14 00:45:33 | 000,083,456 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\serial.sys [2009.07.14 00:45:08 | 000,019,968 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sermouse.sys [2009.07.14 00:45:52 | 000,012,288 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sffp_mmc.sys [2009.07.14 00:45:52 | 000,013,824 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sfloppy.sys [2009.07.14 02:19:03 | 000,052,304 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\SISAGP.SYS [2009.07.14 02:19:04 | 000,040,016 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid2.sys [2009.07.14 02:19:04 | 000,077,888 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid4.sys [2009.07.14 02:19:04 | 000,021,072 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\stexstor.sys [2010.11.20 13:30:15 | 000,028,032 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\storvsc.sys [2009.07.14 02:19:10 | 000,012,240 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\swenum.sys [2010.11.20 13:30:12 | 000,053,120 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\termdd.sys [2009.07.14 02:19:10 | 000,055,888 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\UAGP35.SYS [2009.07.14 02:19:11 | 000,057,424 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\ULIAGPKX.SYS [2010.11.20 11:00:24 | 000,039,936 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\umbus.sys [2009.07.14 00:51:35 | 000,008,192 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\umpass.sys [2010.11.20 10:59:44 | 000,080,768 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\USBAUDIO.sys [2009.07.14 00:51:18 | 000,086,016 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbcir.sys [2011.03.25 03:57:58 | 000,020,480 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbohci.sys [2010.11.20 10:59:46 | 000,027,648 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbser.sys [2010.11.20 11:00:21 | 000,146,432 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\usbvideo.sys [2010.11.20 13:30:14 | 000,160,128 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\vhdmp.sys [2009.07.14 02:19:10 | 000,053,328 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\VIAAGP.SYS [2009.07.14 00:11:04 | 000,052,736 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\viac7.sys [2009.07.14 02:19:10 | 000,016,976 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\viaide.sys [2010.11.20 10:14:45 | 000,017,920 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\VMBusHID.sys [2010.11.20 10:14:41 | 000,005,632 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\vms3cap.sys [2009.07.14 02:19:11 | 000,141,904 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\vsmraid.sys [2009.07.14 00:46:53 | 000,021,632 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wacompen.sys [2009.07.14 02:19:11 | 000,019,024 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wd.sys [2009.07.14 00:19:17 | 000,011,264 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\wmiacpi.sys < %systemroot%\System32\config\*.sav > < %systemroot%\system32\*.dll /lockedfiles > < %USERPROFILE%\*.* > [2011.10.30 14:01:22 | 000,001,452 | ---- | M] () -- C:\Users\Dell\.recently-used.xbel [2011.12.22 22:52:16 | 008,912,896 | -HS- | M] () -- C:\Users\Dell\NTUSER.DAT [2011.12.22 22:52:16 | 000,262,144 | -HS- | M] () -- C:\Users\Dell\ntuser.dat.LOG1 [2011.02.02 13:51:30 | 000,000,000 | -HS- | M] () -- C:\Users\Dell\ntuser.dat.LOG2 [2011.02.02 13:52:32 | 000,065,536 | -HS- | M] () -- C:\Users\Dell\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf [2011.02.02 13:52:32 | 000,524,288 | -HS- | M] () -- C:\Users\Dell\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms [2011.02.02 13:52:32 | 000,524,288 | -HS- | M] () -- C:\Users\Dell\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms [2011.02.02 13:51:31 | 000,000,020 | -HS- | M] () -- C:\Users\Dell\ntuser.ini < %USERPROFILE%\Local Settings\Temp\*.exe > < %USERPROFILE%\Local Settings\Temp\*.dll > < %USERPROFILE%\Application Data\*.exe > < HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs > HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Required: DebugWindows [binary data] HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\\Windows: %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 < > ========== Alternate Data Streams ========== @Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:96D0C06F < End of report > |
|
02.01.2012, 10:37
| #5 |
| | Firefox startet nicht, Taskmanager hängt extrem Wie lang dauert normalerweise das Auswerten der Logfiles? |
|
02.01.2012, 17:20
| #6 |
| /// Malware-holic | Firefox startet nicht, Taskmanager hängt extrem sorry ich hab deinen thread irgendwie übersehen! 1. spybot deinstalieren, neustarten. es stört die reinigung und ist auch nicht mehr sonderlich hilfreich. Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde! Bitte downloade dir Combofix.exe und speichere es unbedingt auf deinem Desktop.
__________________ --> Firefox startet nicht, Taskmanager hängt extrem |
|
05.01.2012, 11:31
| #7 |
| | Firefox startet nicht, Taskmanager hängt extrem Hier ist das Log: Code:
ATTFilter ComboFix 12-01-05.01 - Dell 05.01.2012 11:12:49.2.2 - x86 NETWORK
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.3067.2494 [GMT 1:00]
ausgeführt von:: c:\users\Dell\Desktop\ComboFix1.exe
AV: BitDefender Antivirus *Disabled/Outdated* {50909708-FF80-02AF-F814-B28405891E92}
FW: BitDefender Firewall *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
SP: BitDefender AntiSpyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-12-05 bis 2012-01-05 ))))))))))))))))))))))))))))))
.
.
2011-12-22 17:05 . 2011-12-21 07:42 43992 ----a-w- c:\program files\Mozilla Firefox\mozutils.dll
2011-12-22 17:05 . 2011-12-21 04:29 626688 ----a-w- c:\program files\Mozilla Firefox\msvcr80.dll
2011-12-22 17:05 . 2011-12-21 04:29 548864 ----a-w- c:\program files\Mozilla Firefox\msvcp80.dll
2011-12-22 17:05 . 2011-12-21 04:29 479232 ----a-w- c:\program files\Mozilla Firefox\msvcm80.dll
2011-12-20 19:51 . 2011-12-20 20:53 -------- d-----w- c:\program files\Realtek
2011-12-20 19:51 . 2011-12-20 21:04 -------- d--h--w- c:\program files\Temp
2011-12-20 19:51 . 2011-12-13 10:01 1698408 ----a-w- c:\windows\RtlExUpd.dll
2011-12-20 19:51 . 2006-02-07 14:40 204800 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2011-12-20 19:51 . 2006-02-07 14:40 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2011-12-20 19:51 . 2006-02-07 14:40 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2011-12-20 19:51 . 2006-02-07 14:45 757760 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2011-12-20 19:51 . 2005-11-13 22:19 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2011-12-20 19:51 . 2011-12-20 19:51 200836 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2011-12-20 19:51 . 2011-12-20 19:51 331908 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2011-12-14 08:48 . 2011-11-24 04:25 2342912 ----a-w- c:\windows\system32\win32k.sys
2011-12-14 08:48 . 2011-11-05 04:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-12-14 08:47 . 2011-10-15 05:38 534528 ----a-w- c:\windows\system32\EncDec.dll
2011-12-14 08:47 . 2011-10-26 04:28 38912 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-14 08:47 . 2011-10-26 04:47 3912560 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-12-14 08:47 . 2011-10-26 04:47 3967856 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-12-11 10:52 . 2011-12-11 10:52 -------- d-sh--w- c:\users\Dell\Phone Browser
2011-12-10 13:42 . 2011-12-10 13:42 -------- d-----w- c:\users\Dell\AppData\Local\Chromium
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-27 17:01 . 2011-06-18 07:46 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2010-07-08 08:37 . 2010-07-08 08:37 101544 ----a-w- c:\program files\Common Files\LinkInstaller.exe
2011-12-21 07:42 . 2011-04-24 16:04 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BDAgent"="c:\program files\BitDefender\BitDefender 2011\bdagent.exe" [2011-07-17 1451928]
"NokiaMusic FastStart"="c:\program files\Nokia\Ovi Player\NokiaOviPlayer.exe" [2010-10-20 2192752]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitDefender Antiphishing Helper]
2011-06-18 09:13 92352 ----a-w- c:\program files\BitDefender\BitDefender 2011\ieshow.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"Steam"="c:\program files\Steam\Steam.exe" -silent
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"amd_dc_opt"=c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
.
R1 Bdvedisk;Bdvedisk;c:\windows\system32\DRIVERS\bdvedisk.sys [2010-01-19 85128]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 dk2drv;DK2 WindowsNT Driver;c:\windows\system32\Drivers\dk2drv.sys [2005-11-22 42624]
R2 FLE5WNNT;FLE-5 WindowsNT Driver;c:\windows\System32\Drivers\fle5wnnt.sys [2011-06-25 33404]
R2 FLSIFACE;FLSIFACE;c:\windows\System32\Drivers\flsiface.sys [2011-06-25 13440]
R2 FLSPAR;FLSPAR;c:\windows\System32\Drivers\flspar.sys [2011-06-25 16314]
R2 FLSSER;FLSSER;c:\windows\System32\Drivers\flsser.sys [2011-06-25 8344]
R2 FLSVCOM;FLSVCOM;c:\windows\System32\Drivers\flsvcom.sys [2011-06-25 33402]
R2 gupdate;Google Update-Dienst (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-06 136176]
R2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2011-03-04 584488]
R2 PARLDR2K;PARLDR2K;c:\windows\system32\drivers\parldr2k.sys [2011-06-25 10454]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-03-30 1523008]
R2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2009-11-02 14808]
R2 Updatesrv;BitDefender Desktop Update Service;c:\program files\BitDefender\BitDefender 2011\updatesrv.exe [2011-06-18 43936]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-09-08 211984]
R3 avmaudio;AVM Audio;c:\windows\system32\DRIVERS\avmaudio.sys [2011-02-03 101248]
R3 BDFM;BDFM;c:\windows\system32\DRIVERS\bdfm.sys [2010-05-13 152528]
R3 CGVPNCliSrvc;CyberGhost VPN Client;c:\program files\CyberGhost VPN\CGVPNCliService.exe [2011-07-05 2428968]
R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2011-08-01 45288]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-10-06 136176]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2010-12-02 137600]
R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2010-12-02 8576]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2011-02-10 10064]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2011-02-22 307544]
R4 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [2010-06-28 633424]
R4 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [2010-06-28 970320]
R4 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
R4 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 99728]
S0 hotcore3;hc3ServiceName;c:\windows\system32\DRIVERS\hotcore3.sys [2010-05-28 40560]
S1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2010-08-20 72784]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-08-20 88144]
S3 k57nd60x;Broadcom NetLink (TM)-Gigabit-Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000-Serie - Adaptertreiber für Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Inhalt des "geplante Tasks" Ordners
.
2012-01-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-06 20:45]
.
2012-01-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-10-06 20:45]
.
2011-12-28 c:\windows\Tasks\Norton Security Scan for Dell.job
- c:\progra~1\NORTON~2\Engine\351~1.8\Nss.exe [2011-11-02 23:02]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
mStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: Free YouTube to MP3 Converter - c:\users\Dell\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/||hxxp://www.facebook.com/
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-19526181-302486724-255597020-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:72,0f,9a,b5,d6,1b,d8,3b,3c,0a,58,73,63,fb,74,92,e6,3a,a0,c8,75,50,6c,
bb,93,53,02,4d,fc,0d,0f,a5,c7,9b,51,8c,e7,05,1f,67,de,1c,d4,2d,72,2b,c1,f7,\
"??"=hex:35,fc,c6,3d,c9,02,ad,db,37,1f,61,de,0f,33,8f,50
.
[HKEY_USERS\S-1-5-21-19526181-302486724-255597020-1000\Software\SecuROM\License information*]
"datasecu"=hex:1d,d8,40,c1,2c,60,6f,62,17,a3,5e,e1,7d,e1,8f,f7,3c,88,58,fa,9e,
ac,ef,6d,5a,d9,c6,2a,88,ad,6a,08,c7,35,b1,44,d0,2f,6f,01,76,71,77,4e,1e,c9,\
"rkeysecu"=hex:3f,56,5f,4b,9e,d0,6b,f8,61,68,41,da,d2,0d,a7,ec
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'Explorer.exe'(1076)
c:\windows\system32\CmdLineExt.dll
.
Zeit der Fertigstellung: 2012-01-05 11:23:08
ComboFix-quarantined-files.txt 2012-01-05 10:23
ComboFix2.txt 2011-12-22 19:51
.
Vor Suchlauf: 23 Verzeichnis(se), 264.180.375.552 Bytes frei
Nach Suchlauf: 24 Verzeichnis(se), 264.090.193.920 Bytes frei
.
- - End Of File - - 3670F241F572B1CE80117E43BD5AC7EB
|
|
05.01.2012, 12:58
| #8 |
| /// Malware-holic | Firefox startet nicht, Taskmanager hängt extrem malwarebytes: Downloade Dir bitte Malwarebytes
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
05.01.2012, 18:20
| #9 |
| | Firefox startet nicht, Taskmanager hängt extrem Fertig.  Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.60.0.1800 www.malwarebytes.org Datenbank Version: v2012.01.05.02 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 Dell :: DELL-STUDIO [Administrator] Schutz: Aktiviert 05.01.2012 15:03:48 mbam-log-2012-01-05 (15-03-48).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 524989 Laufzeit: 3 Stunde(n), 4 Minute(n), 40 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 3 C:\Users\Dell\Desktop\Phoenix\Phx_data\Res\GCFMgr.exe (Trojan.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Dell\Desktop\Phoenix\Phx_data\Res\EmuCfg.exe (Trojan.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Dell\Desktop\Phoenix\Phx_data\Res\ss.exe (Backdoor.Bot) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) |
|
05.01.2012, 18:38
| #10 |
| /// Malware-holic | Firefox startet nicht, Taskmanager hängt extrem prüfe bitte ob der firefox wieder läuft
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
05.01.2012, 18:42
| #11 |
| | Firefox startet nicht, Taskmanager hängt extrem nein, läuft leider immer noch nicht |
|
05.01.2012, 18:51
| #12 |
| /// Malware-holic | Firefox startet nicht, Taskmanager hängt extrem lass mal den tdss killer laufen log posten http://www.trojaner-board.de/82358-t...entfernen.html
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
05.01.2012, 19:01
| #13 |
| | Firefox startet nicht, Taskmanager hängt extremCode:
ATTFilter 18:57:47.0906 3328 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
18:57:49.0913 3328 ============================================================
18:57:49.0913 3328 Current date / time: 2012/01/05 18:57:49.0913
18:57:49.0913 3328 SystemInfo:
18:57:49.0913 3328
18:57:49.0913 3328 OS Version: 6.1.7601 ServicePack: 1.0
18:57:49.0913 3328 Product type: Workstation
18:57:49.0916 3328 ComputerName: DELL-STUDIO
18:57:49.0916 3328 UserName: Dell
18:57:49.0916 3328 Windows directory: C:\Windows
18:57:49.0916 3328 System windows directory: C:\Windows
18:57:49.0916 3328 Processor architecture: Intel x86
18:57:49.0916 3328 Number of processors: 2
18:57:49.0916 3328 Page size: 0x1000
18:57:49.0916 3328 Boot type: Normal boot
18:57:49.0916 3328 ============================================================
18:57:53.0328 3328 Initialize success
18:58:57.0612 3780 ============================================================
18:58:57.0612 3780 Scan started
18:58:57.0612 3780 Mode: Manual;
18:58:57.0612 3780 ============================================================
18:58:59.0983 3780 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
18:58:59.0983 3780 1394ohci - ok
18:59:00.0046 3780 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
18:59:00.0046 3780 ACPI - ok
18:59:00.0077 3780 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
18:59:00.0077 3780 AcpiPmi - ok
18:59:00.0170 3780 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
18:59:00.0170 3780 adp94xx - ok
18:59:00.0202 3780 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
18:59:00.0217 3780 adpahci - ok
18:59:00.0264 3780 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
18:59:00.0264 3780 adpu320 - ok
18:59:00.0342 3780 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
18:59:00.0342 3780 AFD - ok
18:59:00.0389 3780 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
18:59:00.0389 3780 agp440 - ok
18:59:00.0482 3780 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
18:59:00.0482 3780 aic78xx - ok
18:59:00.0545 3780 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
18:59:00.0560 3780 aliide - ok
18:59:00.0607 3780 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
18:59:00.0607 3780 amdagp - ok
18:59:00.0654 3780 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
18:59:00.0654 3780 amdide - ok
18:59:00.0685 3780 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
18:59:00.0685 3780 AmdK8 - ok
18:59:00.0748 3780 AmdLLD (ad8fa28d8ed0d0a689a0559085ce0f18) C:\Windows\system32\DRIVERS\AmdLLD.sys
18:59:00.0748 3780 AmdLLD - ok
18:59:00.0794 3780 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
18:59:00.0794 3780 AmdPPM - ok
18:59:00.0841 3780 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
18:59:00.0857 3780 amdsata - ok
18:59:00.0919 3780 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
18:59:00.0919 3780 amdsbs - ok
18:59:00.0950 3780 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
18:59:00.0966 3780 amdxata - ok
18:59:01.0028 3780 AnyDVD (40c279a23bd43553bfba6e88a9b38ae2) C:\Windows\system32\Drivers\AnyDVD.sys
18:59:01.0028 3780 AnyDVD - ok
18:59:01.0091 3780 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
18:59:01.0106 3780 AppID - ok
18:59:01.0184 3780 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
18:59:01.0184 3780 arc - ok
18:59:01.0216 3780 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
18:59:01.0231 3780 arcsas - ok
18:59:01.0294 3780 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
18:59:01.0294 3780 AsyncMac - ok
18:59:01.0340 3780 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
18:59:01.0340 3780 atapi - ok
18:59:01.0418 3780 AtiHDAudioService (84faf3d287d56d210f84db7c1349d43b) C:\Windows\system32\drivers\AtihdW73.sys
18:59:01.0434 3780 AtiHDAudioService - ok
18:59:01.0559 3780 atikmdag (04f09923a393e4e0e8453a8f78361e73) C:\Windows\system32\DRIVERS\atikmdag.sys
18:59:01.0730 3780 atikmdag - ok
18:59:01.0808 3780 avc3 (c6cf76384dfc739b0be55abb79ad4dc0) C:\Windows\system32\DRIVERS\avc3.sys
18:59:01.0840 3780 avc3 - ok
18:59:01.0918 3780 avckf (b758a219e95c085405b1e356a8267610) C:\Windows\system32\DRIVERS\avckf.sys
18:59:01.0964 3780 avckf - ok
18:59:02.0011 3780 avmaudio (728c4a6c722535c16d1025f51aa31e22) C:\Windows\system32\DRIVERS\avmaudio.sys
18:59:02.0027 3780 avmaudio - ok
18:59:02.0089 3780 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
18:59:02.0105 3780 b06bdrv - ok
18:59:02.0152 3780 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
18:59:02.0167 3780 b57nd60x - ok
18:59:02.0230 3780 BDFM (8d4efc5c378bffe34c298c92f37d3b14) C:\Windows\system32\DRIVERS\bdfm.sys
18:59:02.0230 3780 BDFM - ok
18:59:02.0308 3780 Bdfndisf (817fc12bc93a70b0449ebefaa4d6f4d2) c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
18:59:02.0323 3780 Bdfndisf - ok
18:59:02.0386 3780 bdfsfltr (c3e025d46368e3d18085eef26ef6f6a1) C:\Windows\system32\DRIVERS\bdfsfltr.sys
18:59:02.0386 3780 bdfsfltr - ok
18:59:02.0401 3780 bdfwfpf (f16b1b98871a44192c0364a23b57ff35) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys
18:59:02.0417 3780 bdfwfpf - ok
18:59:02.0479 3780 bdselfpr (2daa9e807c11b4677cafc1e43a98f8ce) C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys
18:59:02.0479 3780 bdselfpr - ok
18:59:02.0542 3780 Bdvedisk (375cd0b9f433465ec6f50d4df44e9448) C:\Windows\system32\DRIVERS\bdvedisk.sys
18:59:02.0542 3780 Bdvedisk - ok
18:59:02.0588 3780 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
18:59:02.0588 3780 Beep - ok
18:59:02.0620 3780 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
18:59:02.0620 3780 blbdrive - ok
18:59:02.0698 3780 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
18:59:02.0713 3780 bowser - ok
18:59:02.0744 3780 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:59:02.0744 3780 BrFiltLo - ok
18:59:02.0791 3780 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:59:02.0791 3780 BrFiltUp - ok
18:59:02.0854 3780 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
18:59:02.0854 3780 BridgeMP - ok
18:59:02.0885 3780 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
18:59:02.0900 3780 Brserid - ok
18:59:02.0932 3780 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
18:59:02.0947 3780 BrSerWdm - ok
18:59:02.0963 3780 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:59:02.0963 3780 BrUsbMdm - ok
18:59:03.0010 3780 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
18:59:03.0010 3780 BrUsbSer - ok
18:59:03.0041 3780 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
18:59:03.0056 3780 BTHMODEM - ok
18:59:03.0166 3780 catchme - ok
18:59:03.0197 3780 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
18:59:03.0197 3780 cdfs - ok
18:59:03.0244 3780 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
18:59:03.0275 3780 cdrom - ok
18:59:03.0337 3780 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
18:59:03.0337 3780 circlass - ok
18:59:03.0384 3780 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
18:59:03.0384 3780 CLFS - ok
18:59:03.0431 3780 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
18:59:03.0431 3780 CmBatt - ok
18:59:03.0478 3780 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
18:59:03.0478 3780 cmdide - ok
18:59:03.0524 3780 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
18:59:03.0524 3780 CNG - ok
18:59:03.0556 3780 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
18:59:03.0571 3780 Compbatt - ok
18:59:03.0618 3780 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
18:59:03.0634 3780 CompositeBus - ok
18:59:03.0680 3780 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
18:59:03.0680 3780 crcdisk - ok
18:59:03.0727 3780 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
18:59:03.0758 3780 CSC - ok
18:59:03.0805 3780 dc3d (90f8539fa0de4aafe4fdbe7f95d6a512) C:\Windows\system32\DRIVERS\dc3d.sys
18:59:03.0821 3780 dc3d - ok
18:59:03.0868 3780 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
18:59:03.0883 3780 DfsC - ok
18:59:03.0914 3780 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
18:59:03.0914 3780 discache - ok
18:59:03.0961 3780 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
18:59:03.0977 3780 Disk - ok
18:59:04.0039 3780 dk2drv (dd3a2ba0f02ece964669295a54c5b9a2) C:\Windows\system32\Drivers\dk2drv.sys
18:59:04.0039 3780 dk2drv - ok
18:59:04.0117 3780 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
18:59:04.0117 3780 drmkaud - ok
18:59:04.0164 3780 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
18:59:04.0211 3780 DXGKrnl - ok
18:59:04.0289 3780 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
18:59:04.0382 3780 ebdrv - ok
18:59:04.0445 3780 ElbyCDIO (d71233d7ccc2e64f8715a20428d5a33b) C:\Windows\system32\Drivers\ElbyCDIO.sys
18:59:04.0460 3780 ElbyCDIO - ok
18:59:04.0507 3780 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
18:59:04.0507 3780 elxstor - ok
18:59:04.0554 3780 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
18:59:04.0554 3780 ErrDev - ok
18:59:04.0616 3780 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
18:59:04.0616 3780 exfat - ok
18:59:04.0648 3780 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
18:59:04.0663 3780 fastfat - ok
18:59:04.0694 3780 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
18:59:04.0710 3780 fdc - ok
18:59:04.0726 3780 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
18:59:04.0726 3780 FileInfo - ok
18:59:04.0757 3780 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
18:59:04.0757 3780 Filetrace - ok
18:59:04.0819 3780 FLE5WNNT (ea7ed2075d7eed73dd5658835b61c558) C:\Windows\System32\Drivers\fle5wnnt.sys
18:59:04.0866 3780 FLE5WNNT - ok
18:59:05.0053 3780 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
18:59:05.0069 3780 flpydisk - ok
18:59:05.0100 3780 FLSIFACE (ebacbf7f420bbaa0cfd98bfc02a0ec40) C:\Windows\System32\Drivers\flsiface.sys
18:59:05.0116 3780 FLSIFACE - ok
18:59:05.0147 3780 FLSPAR (f85ec1ad593b1f889cf664d68da27274) C:\Windows\System32\Drivers\flspar.sys
18:59:05.0162 3780 FLSPAR - ok
18:59:05.0194 3780 FLSSER (84bf89b463893461c664880463e3eede) C:\Windows\System32\Drivers\flsser.sys
18:59:05.0209 3780 FLSSER - ok
18:59:05.0225 3780 FLSVCOM (18d789fefbb60020f3448bb27bbde8e5) C:\Windows\System32\Drivers\flsvcom.sys
18:59:05.0240 3780 FLSVCOM - ok
18:59:05.0287 3780 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
18:59:05.0287 3780 FltMgr - ok
18:59:05.0318 3780 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
18:59:05.0318 3780 FsDepends - ok
18:59:05.0350 3780 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
18:59:05.0350 3780 Fs_Rec - ok
18:59:05.0412 3780 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
18:59:05.0412 3780 fvevol - ok
18:59:05.0459 3780 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:59:05.0474 3780 gagp30kx - ok
18:59:05.0506 3780 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:59:05.0521 3780 GEARAspiWDM - ok
18:59:05.0615 3780 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
18:59:05.0630 3780 hcw85cir - ok
18:59:05.0677 3780 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
18:59:05.0693 3780 HdAudAddService - ok
18:59:05.0755 3780 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
18:59:05.0755 3780 HDAudBus - ok
18:59:05.0786 3780 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
18:59:05.0786 3780 HidBatt - ok
18:59:05.0818 3780 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
18:59:05.0818 3780 HidBth - ok
18:59:05.0864 3780 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
18:59:05.0864 3780 HidIr - ok
18:59:05.0927 3780 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
18:59:05.0942 3780 HidUsb - ok
18:59:06.0005 3780 hotcore3 (48ed16c0c98c950843e673eeee02ac94) C:\Windows\system32\DRIVERS\hotcore3.sys
18:59:06.0020 3780 hotcore3 - ok
18:59:06.0083 3780 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
18:59:06.0083 3780 HpSAMD - ok
18:59:06.0145 3780 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
18:59:06.0145 3780 HTTP - ok
18:59:06.0192 3780 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
18:59:06.0192 3780 hwpolicy - ok
18:59:06.0239 3780 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
18:59:06.0239 3780 i8042prt - ok
18:59:06.0286 3780 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
18:59:06.0301 3780 iaStorV - ok
18:59:06.0364 3780 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
18:59:06.0379 3780 iirsp - ok
18:59:06.0410 3780 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
18:59:06.0410 3780 intelide - ok
18:59:06.0457 3780 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
18:59:06.0457 3780 intelppm - ok
18:59:06.0488 3780 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:59:06.0504 3780 IpFilterDriver - ok
18:59:06.0551 3780 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
18:59:06.0566 3780 IPMIDRV - ok
18:59:06.0598 3780 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
18:59:06.0598 3780 IPNAT - ok
18:59:06.0660 3780 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
18:59:06.0660 3780 IRENUM - ok
18:59:06.0707 3780 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
18:59:06.0707 3780 isapnp - ok
18:59:06.0738 3780 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
18:59:06.0754 3780 iScsiPrt - ok
18:59:06.0800 3780 k57nd60x (c4c95805b85bce1eb9d20f4a02fc5f9b) C:\Windows\system32\DRIVERS\k57nd60x.sys
18:59:06.0816 3780 k57nd60x - ok
18:59:06.0847 3780 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
18:59:06.0847 3780 kbdclass - ok
18:59:06.0894 3780 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
18:59:06.0910 3780 kbdhid - ok
18:59:06.0956 3780 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys
18:59:06.0956 3780 KSecDD - ok
18:59:07.0003 3780 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
18:59:07.0003 3780 KSecPkg - ok
18:59:07.0066 3780 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
18:59:07.0066 3780 lltdio - ok
18:59:07.0112 3780 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:59:07.0128 3780 LSI_FC - ok
18:59:07.0159 3780 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:59:07.0159 3780 LSI_SAS - ok
18:59:07.0190 3780 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:59:07.0190 3780 LSI_SAS2 - ok
18:59:07.0237 3780 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:59:07.0237 3780 LSI_SCSI - ok
18:59:07.0268 3780 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
18:59:07.0268 3780 luafv - ok
18:59:07.0331 3780 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
18:59:07.0346 3780 MBAMProtector - ok
18:59:07.0409 3780 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
18:59:07.0409 3780 megasas - ok
18:59:07.0440 3780 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
18:59:07.0456 3780 MegaSR - ok
18:59:07.0487 3780 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
18:59:07.0487 3780 Modem - ok
18:59:07.0534 3780 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
18:59:07.0534 3780 monitor - ok
18:59:07.0580 3780 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
18:59:07.0580 3780 mouclass - ok
18:59:07.0627 3780 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
18:59:07.0627 3780 mouhid - ok
18:59:07.0690 3780 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
18:59:07.0690 3780 mountmgr - ok
18:59:07.0736 3780 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
18:59:07.0768 3780 mpio - ok
18:59:07.0814 3780 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
18:59:07.0830 3780 mpsdrv - ok
18:59:07.0861 3780 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
18:59:07.0877 3780 MRxDAV - ok
18:59:07.0908 3780 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:59:07.0924 3780 mrxsmb - ok
18:59:07.0970 3780 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:59:07.0986 3780 mrxsmb10 - ok
18:59:08.0002 3780 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:59:08.0017 3780 mrxsmb20 - ok
18:59:08.0048 3780 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
18:59:08.0064 3780 msahci - ok
18:59:08.0095 3780 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
18:59:08.0111 3780 msdsm - ok
18:59:08.0158 3780 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
18:59:08.0158 3780 Msfs - ok
18:59:08.0189 3780 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
18:59:08.0189 3780 mshidkmdf - ok
18:59:08.0220 3780 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
18:59:08.0236 3780 msisadrv - ok
18:59:08.0282 3780 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
18:59:08.0282 3780 MSKSSRV - ok
18:59:08.0314 3780 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
18:59:08.0314 3780 MSPCLOCK - ok
18:59:08.0345 3780 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
18:59:08.0345 3780 MSPQM - ok
18:59:08.0392 3780 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
18:59:08.0392 3780 MsRPC - ok
18:59:08.0423 3780 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
18:59:08.0423 3780 mssmbios - ok
18:59:08.0454 3780 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
18:59:08.0470 3780 MSTEE - ok
18:59:08.0501 3780 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
18:59:08.0516 3780 MTConfig - ok
18:59:08.0532 3780 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
18:59:08.0548 3780 Mup - ok
18:59:08.0594 3780 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
18:59:08.0594 3780 NativeWifiP - ok
18:59:08.0688 3780 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
18:59:08.0688 3780 NDIS - ok
18:59:08.0719 3780 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
18:59:08.0719 3780 NdisCap - ok
18:59:08.0766 3780 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
18:59:08.0766 3780 NdisTapi - ok
18:59:08.0813 3780 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
18:59:08.0813 3780 Ndisuio - ok
18:59:08.0860 3780 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
18:59:08.0860 3780 NdisWan - ok
18:59:08.0906 3780 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
18:59:08.0922 3780 NDProxy - ok
18:59:08.0953 3780 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
18:59:08.0953 3780 NetBIOS - ok
18:59:09.0000 3780 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
18:59:09.0000 3780 NetBT - ok
18:59:09.0172 3780 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
18:59:09.0281 3780 netw5v32 - ok
18:59:09.0328 3780 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
18:59:09.0328 3780 nfrd960 - ok
18:59:09.0390 3780 nmwcd (712bc0c22ba00b2ba324c6b8df668ee7) C:\Windows\system32\drivers\ccdcmb.sys
18:59:09.0406 3780 nmwcd - ok
18:59:09.0452 3780 nmwcdc (7312987b6ccde6f6cee32c14bed1ca2e) C:\Windows\system32\drivers\ccdcmbo.sys
18:59:09.0468 3780 nmwcdc - ok
18:59:09.0499 3780 nmwcdnsu (99145c5d4b6c4d6f5ce83ee6abffe294) C:\Windows\system32\drivers\nmwcdnsu.sys
18:59:09.0515 3780 nmwcdnsu - ok
18:59:09.0546 3780 nmwcdnsuc (faee7b61c6885b091cec1ff06da2e1ab) C:\Windows\system32\drivers\nmwcdnsuc.sys
18:59:09.0562 3780 nmwcdnsuc - ok
18:59:09.0593 3780 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
18:59:09.0608 3780 Npfs - ok
18:59:09.0640 3780 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
18:59:09.0640 3780 nsiproxy - ok
18:59:09.0702 3780 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
18:59:09.0718 3780 Ntfs - ok
18:59:09.0749 3780 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
18:59:09.0749 3780 Null - ok
18:59:09.0796 3780 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
18:59:09.0796 3780 nvraid - ok
18:59:09.0842 3780 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
18:59:09.0858 3780 nvstor - ok
18:59:09.0905 3780 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
18:59:09.0920 3780 nv_agp - ok
18:59:09.0967 3780 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
18:59:09.0967 3780 ohci1394 - ok
18:59:10.0045 3780 PARLDR2K (b129365892b2e7b5155e601a4924cd2f) C:\Windows\system32\drivers\parldr2k.sys
18:59:10.0061 3780 PARLDR2K - ok
18:59:10.0217 3780 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
18:59:10.0217 3780 Parport - ok
18:59:10.0279 3780 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
18:59:10.0279 3780 partmgr - ok
18:59:10.0310 3780 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
18:59:10.0326 3780 Parvdm - ok
18:59:10.0373 3780 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
18:59:10.0388 3780 pccsmcfd - ok
18:59:10.0420 3780 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
18:59:10.0420 3780 pci - ok
18:59:10.0466 3780 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
18:59:10.0466 3780 pciide - ok
18:59:10.0498 3780 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
18:59:10.0498 3780 pcmcia - ok
18:59:10.0529 3780 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
18:59:10.0529 3780 pcw - ok
18:59:10.0560 3780 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
18:59:10.0576 3780 PEAUTH - ok
18:59:10.0654 3780 Point32 (896d916de06f5502d301e8c4dc442ae8) C:\Windows\system32\DRIVERS\point32.sys
18:59:10.0669 3780 Point32 - ok
18:59:10.0716 3780 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
18:59:10.0716 3780 PptpMiniport - ok
18:59:10.0747 3780 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
18:59:10.0747 3780 Processor - ok
18:59:10.0810 3780 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
18:59:10.0810 3780 Psched - ok
18:59:10.0856 3780 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
18:59:10.0888 3780 ql2300 - ok
18:59:10.0934 3780 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
18:59:10.0934 3780 ql40xx - ok
18:59:10.0966 3780 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
18:59:10.0966 3780 QWAVEdrv - ok
18:59:10.0997 3780 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
18:59:10.0997 3780 RasAcd - ok
18:59:11.0044 3780 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:59:11.0044 3780 RasAgileVpn - ok
18:59:11.0075 3780 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:59:11.0090 3780 Rasl2tp - ok
18:59:11.0137 3780 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
18:59:11.0137 3780 RasPppoe - ok
18:59:11.0168 3780 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
18:59:11.0184 3780 RasSstp - ok
18:59:11.0215 3780 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
18:59:11.0231 3780 rdbss - ok
18:59:11.0262 3780 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
18:59:11.0262 3780 rdpbus - ok
18:59:11.0293 3780 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:59:11.0293 3780 RDPCDD - ok
18:59:11.0340 3780 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
18:59:11.0356 3780 RDPDR - ok
18:59:11.0371 3780 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
18:59:11.0371 3780 RDPENCDD - ok
18:59:11.0402 3780 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
18:59:11.0402 3780 RDPREFMP - ok
18:59:11.0449 3780 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
18:59:11.0465 3780 RDPWD - ok
18:59:11.0527 3780 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
18:59:11.0543 3780 rdyboost - ok
18:59:11.0590 3780 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
18:59:11.0605 3780 rismxdp - ok
18:59:11.0636 3780 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
18:59:11.0636 3780 rspndr - ok
18:59:11.0714 3780 RTHDMIAzAudService (99ffd5bbb261203fda695c84fa8be9f6) C:\Windows\system32\drivers\RtHDMIV.sys
18:59:11.0730 3780 RTHDMIAzAudService - ok
18:59:11.0777 3780 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
18:59:11.0777 3780 s3cap - ok
18:59:11.0839 3780 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
18:59:11.0839 3780 sbp2port - ok
18:59:11.0917 3780 SCDEmu (e9bbd87afd80dc1212ecd762858b45c7) C:\Windows\system32\drivers\SCDEmu.sys
18:59:11.0917 3780 SCDEmu - ok
18:59:11.0964 3780 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
18:59:11.0964 3780 scfilter - ok
18:59:12.0026 3780 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
18:59:12.0042 3780 sdbus - ok
18:59:12.0089 3780 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:59:12.0089 3780 secdrv - ok
18:59:12.0151 3780 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
18:59:12.0151 3780 Serenum - ok
18:59:12.0182 3780 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
18:59:12.0182 3780 Serial - ok
18:59:12.0229 3780 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
18:59:12.0229 3780 sermouse - ok
18:59:12.0276 3780 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
18:59:12.0276 3780 sffdisk - ok
18:59:12.0307 3780 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
18:59:12.0307 3780 sffp_mmc - ok
18:59:12.0354 3780 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\DRIVERS\sffp_sd.sys
18:59:12.0354 3780 sffp_sd - ok
18:59:12.0401 3780 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
18:59:12.0401 3780 sfloppy - ok
18:59:12.0479 3780 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
18:59:12.0479 3780 sisagp - ok
18:59:12.0510 3780 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:59:12.0526 3780 SiSRaid2 - ok
18:59:12.0541 3780 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
18:59:12.0557 3780 SiSRaid4 - ok
18:59:12.0604 3780 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
18:59:12.0619 3780 Smb - ok
18:59:12.0650 3780 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
18:59:12.0650 3780 spldr - ok
18:59:12.0728 3780 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
18:59:12.0791 3780 srv - ok
18:59:12.0838 3780 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
18:59:12.0853 3780 srv2 - ok
18:59:12.0884 3780 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
18:59:12.0900 3780 srvnet - ok
18:59:12.0978 3780 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
18:59:12.0978 3780 stexstor - ok
18:59:13.0009 3780 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
18:59:13.0025 3780 storflt - ok
18:59:13.0072 3780 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
18:59:13.0087 3780 storvsc - ok
18:59:13.0118 3780 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
18:59:13.0118 3780 swenum - ok
18:59:13.0196 3780 tap0901 (1e89de7a4fb7a854ebb241d0aa8996dd) C:\Windows\system32\DRIVERS\tap0901.sys
18:59:13.0212 3780 tap0901 - ok
18:59:13.0274 3780 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
18:59:13.0337 3780 Tcpip - ok
18:59:13.0399 3780 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
18:59:13.0399 3780 TCPIP6 - ok
18:59:13.0430 3780 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
18:59:13.0446 3780 tcpipreg - ok
18:59:13.0493 3780 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
18:59:13.0508 3780 TDPIPE - ok
18:59:13.0540 3780 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
18:59:13.0555 3780 TDTCP - ok
18:59:13.0586 3780 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
18:59:13.0602 3780 tdx - ok
18:59:13.0633 3780 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
18:59:13.0649 3780 TermDD - ok
18:59:13.0711 3780 Trufos (a919775c03303d0e0690b315d26a5e1d) C:\Windows\system32\DRIVERS\Trufos.sys
18:59:13.0727 3780 Trufos - ok
18:59:13.0774 3780 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:59:13.0789 3780 tssecsrv - ok
18:59:13.0852 3780 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
18:59:13.0852 3780 TsUsbFlt - ok
18:59:13.0945 3780 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
18:59:13.0945 3780 TuneUpUtilitiesDrv - ok
18:59:14.0008 3780 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
18:59:14.0023 3780 tunnel - ok
18:59:14.0070 3780 TurboB (08d15ade5701acadbbb2b59ab349f74f) C:\Windows\system32\DRIVERS\TurboB.sys
18:59:14.0086 3780 TurboB - ok
18:59:14.0132 3780 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
18:59:14.0132 3780 uagp35 - ok
18:59:14.0179 3780 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
18:59:14.0195 3780 udfs - ok
18:59:14.0273 3780 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
18:59:14.0273 3780 uliagpkx - ok
18:59:14.0335 3780 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
18:59:14.0335 3780 umbus - ok
18:59:14.0398 3780 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
18:59:14.0398 3780 UmPass - ok
18:59:14.0460 3780 upperdev (e526a166e6acafd0a9b3841d3941669e) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
18:59:14.0476 3780 upperdev - ok
18:59:14.0522 3780 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\Windows\system32\Drivers\usbaapl.sys
18:59:14.0538 3780 USBAAPL - ok
18:59:14.0600 3780 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys
18:59:14.0616 3780 usbaudio - ok
18:59:14.0663 3780 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
18:59:14.0678 3780 usbccgp - ok
18:59:14.0710 3780 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
18:59:14.0725 3780 usbcir - ok
18:59:14.0756 3780 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
18:59:14.0772 3780 usbehci - ok
18:59:14.0834 3780 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
18:59:14.0881 3780 usbhub - ok
18:59:14.0928 3780 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
18:59:14.0928 3780 usbohci - ok
18:59:14.0975 3780 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
18:59:14.0975 3780 usbprint - ok
18:59:15.0022 3780 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
18:59:15.0022 3780 usbscan - ok
18:59:15.0084 3780 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\Windows\system32\drivers\usbser.sys
18:59:15.0100 3780 usbser - ok
18:59:15.0146 3780 UsbserFilt (6f3e3c6811b930d2414552a2e4a40f36) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
18:59:15.0146 3780 UsbserFilt - ok
18:59:15.0193 3780 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:59:15.0209 3780 USBSTOR - ok
18:59:15.0240 3780 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
18:59:15.0240 3780 usbuhci - ok
18:59:15.0302 3780 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
18:59:15.0318 3780 usbvideo - ok
18:59:15.0365 3780 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
18:59:15.0365 3780 vdrvroot - ok
18:59:15.0443 3780 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
18:59:15.0443 3780 vga - ok
18:59:15.0474 3780 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
18:59:15.0474 3780 VgaSave - ok
18:59:15.0536 3780 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
18:59:15.0552 3780 vhdmp - ok
18:59:15.0583 3780 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
18:59:15.0583 3780 viaagp - ok
18:59:15.0614 3780 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
18:59:15.0614 3780 ViaC7 - ok
18:59:15.0661 3780 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
18:59:15.0677 3780 viaide - ok
18:59:15.0724 3780 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
18:59:15.0755 3780 vmbus - ok
18:59:15.0786 3780 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
18:59:15.0802 3780 VMBusHID - ok
18:59:15.0817 3780 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
18:59:15.0833 3780 volmgr - ok
18:59:15.0895 3780 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
18:59:15.0895 3780 volmgrx - ok
18:59:15.0911 3780 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
18:59:15.0958 3780 volsnap - ok
18:59:16.0036 3780 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
18:59:16.0036 3780 vsmraid - ok
18:59:16.0082 3780 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
18:59:16.0082 3780 vwifibus - ok
18:59:16.0129 3780 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
18:59:16.0129 3780 WacomPen - ok
18:59:16.0176 3780 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:59:16.0192 3780 WANARP - ok
18:59:16.0192 3780 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:59:16.0192 3780 Wanarpv6 - ok
18:59:16.0238 3780 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
18:59:16.0254 3780 Wd - ok
18:59:16.0270 3780 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
18:59:16.0285 3780 Wdf01000 - ok
18:59:16.0332 3780 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
18:59:16.0332 3780 WfpLwf - ok
18:59:16.0363 3780 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
18:59:16.0379 3780 WIMMount - ok
18:59:16.0457 3780 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
18:59:16.0472 3780 WinUsb - ok
18:59:16.0535 3780 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
18:59:16.0535 3780 WmiAcpi - ok
18:59:16.0628 3780 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
18:59:16.0628 3780 ws2ifsl - ok
18:59:16.0660 3780 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
18:59:16.0675 3780 WudfPf - ok
18:59:16.0738 3780 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:59:16.0738 3780 WUDFRd - ok
18:59:16.0784 3780 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:59:16.0847 3780 \Device\Harddisk0\DR0 - ok
18:59:16.0862 3780 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
18:59:16.0862 3780 \Device\Harddisk1\DR1 - ok
18:59:16.0878 3780 Boot (0x1200) (214ef0629ec1ef9bf0914d2718419c71) \Device\Harddisk0\DR0\Partition0
18:59:16.0878 3780 \Device\Harddisk0\DR0\Partition0 - ok
18:59:16.0894 3780 Boot (0x1200) (4a1cf225da04774af94ff5f13c1d0e2a) \Device\Harddisk0\DR0\Partition1
18:59:16.0894 3780 \Device\Harddisk0\DR0\Partition1 - ok
18:59:16.0894 3780 Boot (0x1200) (b630a39284fc54e7a3e9ce4aa391368f) \Device\Harddisk1\DR1\Partition0
18:59:16.0894 3780 \Device\Harddisk1\DR1\Partition0 - ok
18:59:16.0894 3780 ============================================================
18:59:16.0894 3780 Scan finished
18:59:16.0894 3780 ============================================================
18:59:16.0909 2428 Detected object count: 0
18:59:16.0909 2428 Actual detected object count: 0
|
|
05.01.2012, 19:32
| #14 |
| /// Malware-holic | Firefox startet nicht, Taskmanager hängt extrem lade hitmanpro: http://www.trojaner-board.de/99424-c...o-scannen.html doppelklicken, settings, license, activate test license scanner, dort funde in quarantäne, nach scan. dann am ende log als xml exportieren und hier anhängen
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
05.01.2012, 20:15
| #15 |
| | Firefox startet nicht, Taskmanager hängt extremCode:
ATTFilter <Log computer="DELL-STUDIO" scan="Normal" version="3.5.9.131" date="2012-01-05T19:40:41" timeSpentInSecs="331" filesProcessed="168264"><Item type="Suspicious" score="38.0" status="None"></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@ads.creative-serving[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@ads.fling[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@adtech[2].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@clicksor[2].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@content.yieldmanager[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@content.yieldmanager[3].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@creative-serving[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@eaeacom.112.2o7[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@fl01.ct2.comclick[2].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@invitemedia[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@mm.chitika[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@msnportal.112.2o7[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@myroitracking[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@overture[2].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@revsci[2].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@serving-sys[2].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@track.effiliation[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@track.effiliation[2].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\dell@xiti[1].txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Cookies\Q04LVW60.txt" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:2o7.net" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:ad.adnet.de" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:ad.zanox.com" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:de.partypoker.com" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:de.sitestat.com" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:partypoker.com" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:rts.pgmediaserve.com" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:stats.computecmedia.de" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:track.webtrekk.de" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:www.etracker.de" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:xiti.com" /></Item><Item type="Repair" score="0.0" status="Deleted"><File path="C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\n7wz0213.default\cookies.sqlite:yadro.ru" /></Item><Item type="Malware" malwareName="Trojan" score="106.0" status="Deleted"><Scanners><Scanner id="Ikarus" name="Trojan-Dropper!IK" /></Scanners><File path="C:\Users\Dell\Downloads\SteamEmu\SteamLauncher.exe" hash="2A0ADC3CAA9F100C643E51B345D212E8192C7667F627163D87990DB30F55B59E" /></Item></Log>
|
|
| Themen zu Firefox startet nicht, Taskmanager hängt extrem |
| brauch, fenster, firefox, google, hängt, icon, klicke, klicken, kurze, langsam, leute, maus, nichts, problem, prozesse, reagiert, sekunden, startet, startet nicht, steigt, systemauslastung, taskleiste, taskmanager, überhaupt, öffnet |
