Fehlermeldung: tcbhn wurde geschlossen

wct · 06.07.2013, 11:46

Code:

ATTFilter

# AdwCleaner v2.304 - Datei am 06/07/2013 um 12:40:58 erstellt
# Aktualisiert am 03/07/2013 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzer : pam - PAM-80EA0583665
# Bootmodus : Normal
# Ausgeführt unter : C:\Dokumente und Einstellungen\pam\Eigene Dateien\Downloads\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gelöscht : C:\WINDOWS\Tasks\GinyasBrowserCompanion Chrome Watcher.job
Datei Gelöscht : C:\WINDOWS\Tasks\GinyasBrowserCompanion FireFox Watcher.job
Datei Gelöscht : C:\WINDOWS\Tasks\GinyasBrowserCompanion Runner.job
Datei Gelöscht : C:\WINDOWS\Tasks\GinyasBrowserCompanion Stats Report.job
Datei Gelöscht : C:\WINDOWS\Tasks\GinyasBrowserCompanion Update Checker.job
Gelöscht mit Neustart : C:\Dokumente und Einstellungen\pam\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\bodddioamolcibagionmmobehnbhiakf
Gelöscht mit Neustart : C:\Dokumente und Einstellungen\pam\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\clbfjfbnelcflpgpklppgplejolacbej
Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Babylon
Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\GinyasBrowserCompanion
Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Trymedia
Ordner Gelöscht : C:\Dokumente und Einstellungen\pam\Anwendungsdaten\Mozilla\Firefox\Profiles\pl3eq81a.default\extensions\bbrs_002@blabbers.com
Ordner Gelöscht : C:\Dokumente und Einstellungen\pam\Lokale Einstellungen\Anwendungsdaten\Babylon

***** [Registrierungsdatenbank] *****

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\Software\GinyasBrowserCompanion
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\clbfjfbnelcflpgpklppgplejolacbej
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BrowserCompanion
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar

***** [Internet Browser] *****

-\\ Internet Explorer v7.0.6000.21337

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Mozilla Firefox v22.0 (de)

Datei : C:\Dokumente und Einstellungen\pam\Anwendungsdaten\Mozilla\Firefox\Profiles\pl3eq81a.default\prefs.js

[OK] Die Datei ist sauber.

-\\ Google Chrome v27.0.1453.116

Datei : C:\Dokumente und Einstellungen\pam\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Preferences

Gelöscht [l.2237] : homepage = "hxxp://search.babylon.com/?babsrc=HP_ss&affID=101241&mntrId=f007a7b30000000000000025[...]
Gelöscht [l.2686] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?babsrc=HP_ss&affID=101241&mntrId=f[...]

-\\ Opera v12.16.1860.0

Datei : C:\Dokumente und Einstellungen\pam\Anwendungsdaten\Opera\Opera\operaprefs.ini

[OK] Die Datei ist sauber.

*************************

AdwCleaner[S1].txt - [7074 octets] - [06/07/2013 12:40:58]

########## EOF - C:\AdwCleaner[S1].txt - [7134 octets] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Microsoft Windows XP x86
Ran by pam on 06.07.2013 at 12:37:51,89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC}
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2025429265-1644491937-839522115-1003\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\escort.escortiepane
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\escort.escortiepane.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\esrv.babylonesrvc
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\esrv.babylonesrvc.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\babylontoolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylontoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\blabbers
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\browsercompanion
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\browsercompanion
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escort.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escortapp.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escorteng.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\escortlbr.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\esrv.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\tdataprotocol.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\updatebho.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\wit4ie.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\b
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\babylon.dskbnd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\babylon.dskbnd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylnapp.appcore
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylnapp.appcore.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\escort.escrtbtn.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Dokumente und Einstellungen\pam\Anwendungsdaten\babylon"
Successfully deleted: [Folder] "C:\Dokumente und Einstellungen\pam\Anwendungsdaten\babylontoolbar"
Successfully deleted: [Folder] "C:\Dokumente und Einstellungen\pam\Anwendungsdaten\dvdvideosoftiehelpers"
Successfully deleted: [Folder] "C:\Programme\babylontoolbar"



~~~ FireFox

Successfully deleted: [File] C:\user.js
Successfully deleted: [File] "C:\Programme\Mozilla Firefox\searchplugins\babylon.xml"
Successfully deleted: [File] C:\Dokumente und Einstellungen\pam\Anwendungsdaten\mozilla\firefox\profiles\pl3eq81a.default\user.js
Successfully deleted: [Folder] C:\Dokumente und Einstellungen\pam\Anwendungsdaten\mozilla\firefox\profiles\pl3eq81a.default\extensions\ffxtlbr@babylon.com
Successfully deleted: [Folder] C:\Dokumente und Einstellungen\pam\Anwendungsdaten\mozilla\firefox\profiles\pl3eq81a.default\extensions\bbrs_002@blabbers.com
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Successfully deleted the following from C:\Dokumente und Einstellungen\pam\Anwendungsdaten\mozilla\firefox\profiles\pl3eq81a.default\prefs.js

user_pref("extensions.BabylonToolbar.admin", false);
user_pref("extensions.BabylonToolbar.aflt", "babsst");
user_pref("extensions.BabylonToolbar.babExt", "");
user_pref("extensions.BabylonToolbar.babTrack", "affID=101241");
user_pref("extensions.BabylonToolbar.bbDpng", 6);
user_pref("extensions.BabylonToolbar.dfltSrch", false);
user_pref("extensions.BabylonToolbar.hmpg", false);
user_pref("extensions.BabylonToolbar.id", "f007a7b300000000000000252270e909");
user_pref("extensions.BabylonToolbar.instlDay", "15407");
user_pref("extensions.BabylonToolbar.instlRef", "sst");
user_pref("extensions.BabylonToolbar.lastDP", 6);
user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1717:44:15");
user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "22.0");
user_pref("extensions.BabylonToolbar.newTab", true);
user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
user_pref("extensions.BabylonToolbar.propectorlck", 111666384);
user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
user_pref("extensions.BabylonToolbar.ptch_0717", true);
user_pref("extensions.BabylonToolbar.smplGrp", "tzb");
user_pref("extensions.BabylonToolbar.srcExt", "ss");
user_pref("extensions.BabylonToolbar.tlbrId", "base");
user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1717:44:15");
user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
user_pref("extensions.BabylonToolbar_i.babExt", "");
user_pref("extensions.BabylonToolbar_i.babTrack", "affID=101241");
user_pref("extensions.BabylonToolbar_i.hardId", "f007a7b300000000000000252270e909");
user_pref("extensions.BabylonToolbar_i.id", "f007a7b300000000000000252270e909");
user_pref("extensions.BabylonToolbar_i.instlDay", "15407");
user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
user_pref("extensions.BabylonToolbar_i.newTab", false);
user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1717:44:15");
user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Emptied folder: C:\Dokumente und Einstellungen\pam\Anwendungsdaten\mozilla\firefox\profiles\pl3eq81a.default\minidumps [4 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.07.2013 at 12:39:04,15
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-07-2013
Ran by pam (administrator) on 06-07-2013 12:53:23
Running from C:\Dokumente und Einstellungen\pam\Eigene Dateien\Downloads
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) c:\Programme\Microsoft Security Client\MsMpEng.exe
(ABBYY) C:\Programme\Gemeinsame Dateien\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(AVM Berlin) C:\Programme\avmwlanstick\WlanNetService.exe
(Microsoft Corporation.) C:\Programme\Microsoft\BingBar\7.1.361.0\BBSvc.exe
(Oracle Corporation) C:\Programme\Java\jre7\bin\jqs.exe
(Musicmatch, Inc.) C:\Programme\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
(AVM Berlin) C:\Programme\avmwlanstick\wlangui.exe
(Musicmatch Inc.) C:\Programme\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
(Microsoft Corporation) C:\Programme\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Analog Devices, Inc.) C:\Programme\Analog Devices\Core\smax4pnp.exe
(SEIKO EPSON CORPORATION) C:\Programme\Epson Software\Event Manager\EEventManager.exe
(Oracle Corporation) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
(FUJI PHOTO FILM CO., LTD.) C:\Programme\FinePixViewer\QuickDCF.exe
(McAfee, Inc.) C:\Programme\McAfee Security Scan\3.0.318\SSScheduler.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Mozilla Corporation) C:\Programme\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] C:\Programme\VIA\VIAudioi\HDADeck\HDeck.exe 1 [33718272 2009-12-03] (VIA Technologies, Inc.)
HKLM\...\Run: [MMTray] C:\Programme\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe [131072 2004-08-29] (Musicmatch, Inc.)
HKLM\...\Run: [AVMWlanClient] C:\Programme\avmwlanstick\wlangui.exe [1904640 2009-05-07] (AVM Berlin)
HKLM\...\Run: [Adobe ARM] "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [REGSHAVE] C:\Programme\REGSHAVE\REGSHAVE.EXE /AUTORUN [53248 2002-02-04] (FUJI PHOTO FILM CO., LTD.)
HKLM\...\Run: [mmtask] C:\Programme\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe [53248 2004-08-29] (Musicmatch Inc.)
HKLM\...\Run: [MSC] "c:\Programme\Microsoft Security Client\msseces.exe" -hide -runkey [947152 2013-01-27] (Microsoft Corporation)
HKLM\...\Run: [SoundMAXPnP] C:\Programme\Analog Devices\Core\smax4pnp.exe [1040384 2009-04-22] (Analog Devices, Inc.)
HKLM\...\Run: [EEventManager] "C:\Programme\Epson Software\Event Manager\EEventManager.exe" [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation)
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Programme\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Programme\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Programme\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Programme\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Programme\Microsoft\BingBar\7.1.361.0\BingExt.dll" No File
Toolbar: HKCU -&Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
Handler: ipp - No CLSID Value - 
Handler: msdaipp - No CLSID Value - 
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\pam\Anwendungsdaten\Mozilla\Firefox\Profiles\pl3eq81a.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.gmx.de/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Programme\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Programme\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Programme\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: Adobe Reader - C:\Programme\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Dokumente und Einstellungen\pam\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.149\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Dokumente und Einstellungen\pam\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.149\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Dokumente und Einstellungen\pam\Anwendungsdaten\Mozilla\Firefox\Profiles\pl3eq81a.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

========================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Programme\Gemeinsame Dateien\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AVM WLAN Connection Service; C:\Programme\avmwlanstick\WlanNetService.exe [368640 2009-05-07] (AVM Berlin)
R2 BBSvc; C:\Programme\Microsoft\BingBar\7.1.361.0\BBSvc.exe [193816 2012-02-10] (Microsoft Corporation.)
S3 BBUpdate; C:\Programme\Microsoft\BingBar\7.1.361.0\SeaPort.exe [240408 2012-02-10] (Microsoft Corporation.)
R3 hpqcxs08; C:\Programme\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-01-02] (Hewlett-Packard Co.)
R2 hpqddsvc; C:\Programme\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2006-12-11] (Hewlett-Packard Co.)
S3 McComponentHostService; C:\Programme\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [117144 2013-07-02] (Mozilla Foundation)
R2 MsMpSvc; c:\Programme\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
R2 JavaQuickStarterService; "C:\Programme\Java\jre7\bin\jqs.exe" -service -config "C:\Programme\Java\jre7\lib\deploy\jqs\jqs.conf" [x]

==================== Drivers (Whitelisted) ====================

S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [4352 2009-05-07] (AVM Berlin)
R3 e1kexpress; C:\Windows\System32\DRIVERS\e1k5132.sys [160424 2010-01-08] (Intel Corporation)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [264704 2006-04-06] (AVM GmbH)
R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [440832 2009-05-07] (AVM GmbH)
R3 HDAudBus; C:\Windows\System32\DRIVERS\HDAudBus.sys [144384 2008-04-13] (Windows (R) Server 2003 DDK provider)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49920 2007-07-10] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2007-07-10] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2007-07-10] (HP)
R2 MASPINT; C:\Windows\System32\Drivers\MASPINT.sys [8096 2000-03-29] (MicroStaff Co.,Ltd.)
S3 MonFilt; C:\Windows\System32\drivers\MonFilt.sys [1389056 2008-12-02] (Creative Technology Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
R3 MxlW2k; C:\Windows\System32\Drivers\MxlW2k.sys [28352 2012-10-02] (MusicMatch, Inc.)
S3 NAL; C:\WINDOWS\system32\Drivers\iqvw32.sys [28632 2009-09-21] (Intel Corporation )
S3 RTLE8023xp; C:\Windows\System32\DRIVERS\Rtenicxp.sys [143360 2009-07-28] (Realtek Semiconductor Corporation                           )
R3 SenFiltService; C:\Windows\System32\drivers\Senfilt.sys [8704 2009-04-22] (Analog Devices, Inc.)
S3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1617408 2009-11-25] (VIA Technologies, Inc.)
S3 AMBFilt; system32\drivers\AMBFilt.sys [x]
S3 catchme; \??\C:\DOKUME~1\pam\LOKALE~1\Temp\catchme.sys [x]
S4 IntelIde; No ImagePath

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-06 12:40 - 2013-07-06 12:41 - 00007203 ____A C:\AdwCleaner[S1].txt
2013-07-06 12:37 - 2013-07-06 12:37 - 00000000 ____D C:\Windows\ERUNT
2013-07-06 12:37 - 2013-07-06 12:37 - 00000000 ____D C:\JRT
2013-07-06 12:23 - 2013-07-06 12:23 - 00014724 ____A C:\ComboFix.txt
2013-07-06 12:17 - 2013-07-06 12:17 - 00000000 RASHD C:\cmdcons
2013-07-06 12:17 - 2011-12-03 14:38 - 00000211 ____A C:\Boot.bak
2013-07-06 12:17 - 2004-08-03 23:00 - 00262448 _RASH C:\cmldr
2013-07-06 12:16 - 2013-07-06 12:23 - 00000000 ____D C:\Qoobox
2013-07-06 12:16 - 2013-07-06 12:22 - 00000000 ____D C:\Windows\erdnt
2013-07-06 12:16 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-07-06 12:16 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-07-06 12:16 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-07-06 12:16 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-07-06 12:16 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-07-06 12:16 - 2000-08-31 02:00 - 00212480 ____A (SteelWerX) C:\Windows\SWXCACLS.exe
2013-07-06 12:16 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-07-06 12:16 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-07-06 12:16 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-07-06 11:46 - 2013-07-06 11:46 - 00000000 ____D C:\FRST
2013-07-06 07:15 - 2013-04-04 14:50 - 00022856 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2013-07-06 07:00 - 2013-07-06 07:00 - 00024380 ____A C:\Windows\AVMInstall.Log
2013-07-06 07:00 - 2013-07-06 07:00 - 00019603 ____A C:\Windows\avmfwlanci.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00014335 ____A C:\Windows\avmacc.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00002180 ____A C:\Windows\avmadd32.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00001400 ____A C:\Windows\avmfwlanci1.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00000561 ____A C:\Windows\avmacc1.log
2013-07-06 07:00 - 2009-05-07 02:01 - 00440832 ___RA (AVM GmbH) C:\Windows\System32\Drivers\fwlanusbn.sys
2013-07-06 07:00 - 2009-05-07 02:01 - 00077824 ___RA (AVM Berlin) C:\Windows\System32\fwusbnci.dll
2013-07-06 07:00 - 2009-05-07 02:01 - 00016037 ___RA C:\Windows\System32\Drivers\fwlanusbn.bin
2013-07-06 07:00 - 2009-05-07 02:01 - 00004352 ___RA (AVM Berlin) C:\Windows\System32\Drivers\avmeject.sys
2013-07-06 06:59 - 2013-07-06 07:00 - 00007435 ____A C:\Windows\avmsetup.log
2013-06-12 16:22 - 2013-06-12 16:22 - 09089416 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2013-06-12 16:04 - 2013-06-12 16:04 - 00000000 __HDC C:\Windows\$NtUninstallKB2839229$
2013-06-12 12:58 - 2013-06-12 16:05 - 00105944 ____A C:\Windows\KB2838727-IE7.log
2013-06-12 12:58 - 2013-06-12 16:04 - 00010099 ____A C:\Windows\KB2839229.log

==================== One Month Modified Files and Folders ========

2013-07-06 12:45 - 2011-12-03 14:42 - 01266477 ____A C:\Windows\WindowsUpdate.log
2013-07-06 12:43 - 2011-12-05 13:59 - 00000159 ____A C:\Windows\wiadebug.log
2013-07-06 12:43 - 2011-12-05 13:59 - 00000050 ____A C:\Windows\wiaservc.log
2013-07-06 12:43 - 2011-12-03 15:29 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-06 12:43 - 2006-02-28 14:00 - 00001374 ____A C:\Windows\System32\wpa.dbl
2013-07-06 12:42 - 2011-12-03 15:29 - 00032530 ____A C:\Windows\SchedLgU.Txt
2013-07-06 12:41 - 2013-07-06 12:40 - 00007203 ____A C:\AdwCleaner[S1].txt
2013-07-06 12:39 - 2011-12-03 19:58 - 00001202 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1644491937-839522115-1003UA.job
2013-07-06 12:38 - 2011-12-03 14:33 - 00000000 ___RD C:\Programme
2013-07-06 12:37 - 2013-07-06 12:37 - 00000000 ____D C:\Windows\ERUNT
2013-07-06 12:37 - 2013-07-06 12:37 - 00000000 ____D C:\JRT
2013-07-06 12:23 - 2013-07-06 12:23 - 00014724 ____A C:\ComboFix.txt
2013-07-06 12:23 - 2013-07-06 12:16 - 00000000 ____D C:\Qoobox
2013-07-06 12:22 - 2013-07-06 12:16 - 00000000 ____D C:\Windows\erdnt
2013-07-06 12:21 - 2006-02-28 14:00 - 00000227 ____A C:\Windows\system.ini
2013-07-06 12:17 - 2013-07-06 12:17 - 00000000 RASHD C:\cmdcons
2013-07-06 12:17 - 2011-12-03 15:31 - 00000327 _RASH C:\boot.ini
2013-07-06 11:46 - 2013-07-06 11:46 - 00000000 ____D C:\FRST
2013-07-06 11:22 - 2012-05-03 12:58 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-06 10:10 - 2013-03-18 14:57 - 00000448 ____A C:\Windows\Tasks\At1.job
2013-07-06 10:01 - 2013-04-28 11:10 - 00049766 ____A C:\Windows\setupapi.log
2013-07-06 09:57 - 2011-12-03 20:27 - 00000000 __HDC C:\Windows\$NtUninstallKB946648_0$
2013-07-06 07:00 - 2013-07-06 07:00 - 00024380 ____A C:\Windows\AVMInstall.Log
2013-07-06 07:00 - 2013-07-06 07:00 - 00019603 ____A C:\Windows\avmfwlanci.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00014335 ____A C:\Windows\avmacc.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00002180 ____A C:\Windows\avmadd32.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00001400 ____A C:\Windows\avmfwlanci1.log
2013-07-06 07:00 - 2013-07-06 07:00 - 00000561 ____A C:\Windows\avmacc1.log
2013-07-06 07:00 - 2013-07-06 06:59 - 00007435 ____A C:\Windows\avmsetup.log
2013-07-06 06:54 - 2013-04-10 16:01 - 00000135 ____A C:\Windows\setupact.log
2013-07-05 14:39 - 2011-12-03 19:58 - 00001150 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1644491937-839522115-1003Core.job
2013-07-05 14:00 - 2013-03-18 14:57 - 00000448 ____A C:\Windows\Tasks\At4.job
2013-07-05 13:57 - 2013-03-18 14:57 - 00000448 ____A C:\Windows\Tasks\At3.job
2013-07-03 20:40 - 2013-03-18 14:57 - 00000448 ____A C:\Windows\Tasks\At2.job
2013-07-02 08:52 - 2011-12-03 14:33 - 01050760 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-22 17:56 - 2012-08-08 13:04 - 00000000 ____D C:\SHORGA
2013-06-22 17:56 - 2011-12-03 15:25 - 00000000 ____D C:\Windows\system
2013-06-22 10:09 - 2012-03-02 15:34 - 00000014 ____A C:\Windows\popcinfo.dat
2013-06-22 10:09 - 2012-03-02 15:28 - 00000056 ____H C:\Windows\popcreg.dat
2013-06-22 10:09 - 2012-03-02 15:28 - 00000018 ____A C:\Windows\popcinfot.dat
2013-06-12 16:22 - 2013-06-12 16:22 - 09089416 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerInstaller.exe
2013-06-12 16:22 - 2012-05-03 12:58 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-12 16:22 - 2011-12-03 19:55 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-06-12 16:05 - 2013-06-12 12:58 - 00105944 ____A C:\Windows\KB2838727-IE7.log
2013-06-12 16:05 - 2013-04-10 16:04 - 00017044 ____A C:\Windows\updspapi.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00066238 ____A C:\Windows\iis6.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00061829 ____A C:\Windows\FaxSetup.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00029560 ____A C:\Windows\ocgen.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00028210 ____A C:\Windows\tsoc.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00020214 ____A C:\Windows\comsetup.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00018704 ____A C:\Windows\msmqinst.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00012254 ____A C:\Windows\ntdtcsetup.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00010830 ____A C:\Windows\netfxocm.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00004250 ____A C:\Windows\MedCtrOC.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00003420 ____A C:\Windows\ocmsn.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00003110 ____A C:\Windows\tabletoc.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00003090 ____A C:\Windows\msgsocm.log
2013-06-12 16:05 - 2013-04-10 16:01 - 00001374 ____A C:\Windows\imsins.log
2013-06-12 16:05 - 2011-12-03 21:04 - 00000000 ____D C:\Windows\System32\de-de
2013-06-12 16:04 - 2013-06-12 16:04 - 00000000 __HDC C:\Windows\$NtUninstallKB2839229$
2013-06-12 16:04 - 2013-06-12 12:58 - 00010099 ____A C:\Windows\KB2839229.log
2013-06-12 16:04 - 2013-04-10 16:01 - 00001374 ____A C:\Windows\imsins.BAK
2013-06-12 16:04 - 2011-12-06 17:00 - 00000000 ____D C:\Windows\ie7updates
2013-06-12 16:00 - 2011-12-03 20:45 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

Files to move or delete:
====================
C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At2.job
C:\Windows\Tasks\At3.job
C:\Windows\Tasks\At4.job

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2006-02-28 14:00] - [2008-04-14 04:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e 

C:\Windows\System32\winlogon.exe
[2006-02-28 14:00] - [2008-04-14 04:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a 

C:\Windows\System32\svchost.exe
[2006-02-28 14:00] - [2008-04-14 04:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 

C:\Windows\System32\services.exe
[2006-02-28 14:00] - [2009-02-09 13:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc 

C:\Windows\System32\User32.dll
[2006-02-28 14:00] - [2008-04-14 04:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd 

C:\Windows\System32\userinit.exe
[2006-02-28 14:00] - [2008-04-14 04:23] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 

C:\Windows\System32\Drivers\volsnap.sys
[2006-02-28 14:00] - [2008-04-14 03:52] - 0053760 ____A (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d 


==================== End Of Log ============================

--- --- ---

Fehlermeldung: tcbhn wurde geschlossen

Log-Analyse und Auswertung: Fehlermeldung: tcbhn wurde geschlossen

Fehlermeldung: tcbhn wurde geschlossen

Ähnliche Themen: Fehlermeldung: tcbhn wurde geschlossen