Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Grauer Bildschirm bei Windows Start (Win 7)

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 13.11.2013, 00:34   #1
Buschmaster
 
Grauer Bildschirm bei Windows Start (Win 7) - Standard

Grauer Bildschirm bei Windows Start (Win 7)



Hallo, seitdem ich gestern Abend meinen Rechner neugestartet habe erscheint immer ein Grauer Bildschirm beim Start und ich bin nicht in der Lage etwas zu machen, nach langer suche kam ich zu eurem Forum und dachte mir das ihr mich hoffentlich helfen könnte, einen Suchlauf mit frst habe ich bereits gemacht und den Log findet ihr in den Anhängen, danke im Vorraus !
Achja und der abgesicherte Modus sowie der abgesicherter Modus mit Netzwerk funktioniert.

Hier nochmal das Log als Code

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2013 01
Ran by SYSTEM on MININT-CH471KH on 13-11-2013 01:21:02
Running from E:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Recovery
 
The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12558440 2011-07-07] (Realtek Semiconductor)
HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware ] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware  (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [SSDMonitor] - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [103896 2011-10-25] (PC Tools)
HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\Marcel\...\Run: [HW_OPENEYE_OUC_Telekom Internet Manager] - C:\Program Files (x86)\Telekom\InternetManager_H\UpdateDog\ouc.exe [110592 2009-12-31] (Huawei Technologies Co., Ltd.)
HKU\Marcel\...\Run: [Facebook Update] - C:\Users\Marcel\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-28] (Facebook Inc.)
HKU\Marcel\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)
HKU\Marcel\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKU\Marcel\...\Run: [Spotify Web Helper] - C:\Users\Marcel\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2013-10-25] (Spotify Ltd)
HKU\Marcel\...\Run: [Akamai NetSession Interface] - C:\Users\Marcel\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\Marcel\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\Marcel\...\RunOnce: [Report] - C:\AdwCleaner\AdwCleaner[S0].txt [57411 2013-11-13] ()
AppInit_DLLs:    [0 ] ()
IMEO\desura.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\desura_uninstaller.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\dllfixer.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\facebookmessenger.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\helplauncher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\quickstart.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\sbase.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\scalc.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\sdraw.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\simpress.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\smath.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\soffice.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\swriter.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\unins000.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\usbconfig.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\vcd-uninst.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\vcdmount.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IMEO\vcdprefs.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
Startup: C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
Startup: C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk ->  (No File)
Startup: C:\Users\Marcel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
BootExecute: autocheck autochk * bootdelete
 
==================== Services (Whitelisted) =================
 
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-28] (Advanced Micro Devices, Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-11] ()
S2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [229376 2010-08-19] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
S4 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
S2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2011-10-25] (PC Tools)
S2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-16] ()
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2100024 2013-08-30] (TuneUp Software)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH)
S4 UsbService; C:\Program Files\Eltima Software\USB Network Gate\UsbService64.exe [3287856 2012-09-13] (ELTIMA Software)
 
==================== Drivers (Whitelisted) ====================
 
S2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2011-11-26] ()
S0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2009-12-15] (Bytemobile, Inc.)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-04] (Disc Soft Ltd)
S3 E100B; C:\Windows\System32\DRIVERS\efe5b32e.sys [192256 2009-06-10] (Intel Corporation)
S3 ELTIMA_USB_HUB_FILTER; C:\Program Files\Eltima Software\USB Network Gate\drv\NT6x64\fusbhub.sys [78128 2012-09-13] (ELTIMA Software)
S3 eustub; C:\Windows\System32\DRIVERS\eusbstub.sys [16176 2012-09-13] (ELTIMA Software)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-10-12] (Huawei Technologies Co., Ltd.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2011-11-26] ()
S2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.)
S3 nvamacpi; C:\Windows\system32\drivers\NVAMACPI.sys [28192 2009-07-17] (NVIDIA Corporation)
S2 SecDrv; C:\Windows\SysWow64\drivers\SECDRV.SYS [163644 2013-06-23] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2009-12-15] (Bytemobile, Inc.)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-08-21] (TuneUp Software)
S3 vuhub; C:\Windows\System32\DRIVERS\vuhub.sys [67376 2012-09-13] (ELTIMA Software)
S5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [256000 2010-08-31] (Huawei Technologies Co., Ltd.)
S3 motmodem; system32\DRIVERS\motmodem.sys [x]
S3 X6va007; \??\C:\Users\Marcel\AppData\Local\Temp\00798D1.tmp [x]
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2013-11-13 01:08 - 2013-11-13 01:08 - 00000000 _____ C:\ProgramData\rebootpending.txt
2013-11-13 01:01 - 2013-11-13 01:01 - 00012872 _____ (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2013-11-13 01:01 - 2013-11-13 01:01 - 00000286 _____ C:\Windows\System32\bootdelete.lst
2013-11-13 00:55 - 2013-11-13 01:02 - 00000000 ____D C:\ProgramData\HitmanPro
2013-11-13 00:41 - 2013-11-13 00:47 - 00000000 ____D C:\AdwCleaner
2013-11-13 00:41 - 2013-11-13 00:41 - 01085542 _____ C:\Users\Marcel\Downloads\adwcleaner.exe
2013-11-13 00:25 - 2013-11-13 00:25 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Marcel\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-13 00:16 - 2013-11-13 00:16 - 00000000 ____D C:\FRST
2013-11-12 23:49 - 2013-11-12 23:49 - 00000000 ____D C:\Windows\LastGood
2013-11-12 23:28 - 2013-11-12 23:28 - 00000000 ____D C:\Windows\LastGood.Tmp
2013-11-10 21:25 - 2013-11-10 21:25 - 00000945 _____ C:\Users\Marcel\Desktop\Open Broadcaster Software.lnk
2013-11-10 21:25 - 2013-11-10 21:25 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\OBS
2013-11-10 21:25 - 2013-11-10 21:25 - 00000000 ____D C:\Program Files\OBS
2013-11-10 21:25 - 2013-11-10 21:25 - 00000000 ____D C:\Program Files (x86)\OBS
2013-11-10 21:24 - 2013-11-10 21:24 - 07630870 _____ C:\Users\Marcel\Downloads\OBS_0_583b_Installer.exe
2013-11-09 22:24 - 2013-11-09 22:24 - 04413104 _____ (CCP hf.) C:\Users\Marcel\Downloads\EVE_Online_Installer_640633.exe
2013-11-09 15:44 - 2013-11-09 15:44 - 00000000 ____D C:\ProgramData\Oracle
2013-11-09 15:43 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-09 15:43 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-09 15:43 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-09 15:43 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-09 15:40 - 2013-11-09 15:43 - 00004886 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-09 15:32 - 2013-11-09 15:32 - 00915368 _____ (Oracle Corporation) C:\Users\Marcel\Downloads\jxpiinstall.exe
2013-11-09 15:28 - 2013-11-09 15:30 - 04897880 _____ (Adobe Systems Inc.) C:\Users\Marcel\Downloads\Shockwave_Installer_Slim.exe
2013-11-09 15:20 - 2013-11-09 15:20 - 00626688 _____ C:\Users\Marcel\Downloads\Detection.msi
2013-11-07 22:27 - 2013-11-07 22:51 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2013-11-07 22:23 - 2013-11-07 22:23 - 05913048 _____ (Blizzard Entertainment) C:\Users\Marcel\Downloads\Hearthstone-Beta-Setup-deDE(1).exe
2013-11-06 06:20 - 2013-11-06 06:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-04 16:53 - 2013-11-04 16:54 - 00283064 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2013-11-04 16:53 - 2013-11-04 16:53 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-04 16:44 - 2013-11-04 16:48 - 820998144 _____ C:\Users\Marcel\Documents\OfficeProfessionalPlus_x64_de-de.img
2013-11-04 16:44 - 2013-11-04 16:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Marcel\Downloads\my_downloader_installer.exe
2013-11-04 16:44 - 2013-11-04 16:44 - 00000000 ____D C:\Users\Marcel\AppData\Local\Akamai
2013-11-01 20:45 - 2013-11-01 20:45 - 00000000 ____D C:\Users\Marcel\AppData\Local\Blizzard
2013-11-01 20:21 - 2013-11-01 20:21 - 05913048 _____ (Blizzard Entertainment) C:\Users\Marcel\Downloads\Hearthstone-Beta-Setup-deDE.exe
2013-10-28 21:26 - 2013-10-28 22:05 - 00000000 ____D C:\Program Files (x86)\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst
2013-10-27 19:19 - 2013-10-27 19:19 - 00000000 ____D C:\Users\Marcel\Documents\How To Survive Saves
2013-10-24 22:07 - 2013-10-29 19:53 - 00000000 ____D C:\Users\Marcel\Batman Arkham Origins
2013-10-24 21:02 - 2012-01-20 12:58 - 01386496 _____ (Microsoft Corporation) C:\Windows\System32\Msvbvm60.dll
2013-10-24 20:58 - 2013-10-24 20:59 - 50449456 _____ (Microsoft Corporation) C:\Users\Marcel\Downloads\dotNetFx40_Full_x86_x64.exe
2013-10-24 20:45 - 2013-10-24 20:45 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-10-24 19:34 - 2013-10-24 20:23 - 00000000 ____D C:\Program Files (x86)\Batman Arkham Origins
2013-10-24 18:31 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2013-10-24 18:31 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2013-10-24 18:31 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2013-10-24 18:31 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2013-10-24 18:31 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2013-10-24 18:31 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2013-10-24 18:31 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2013-10-22 15:01 - 2013-10-29 18:36 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\.minecraft
2013-10-21 20:22 - 2013-10-21 20:22 - 00000000 ____D C:\Program Files (x86)\Galactic Cafe
2013-10-19 00:23 - 2013-10-19 00:23 - 00000000 ____D C:\Program Files (x86)\Viscera Cleanup Detail Shadow Warrior
2013-10-18 22:56 - 2013-11-12 22:57 - 00000000 ____D C:\Users\Marcel\AppData\Local\Battle.net
2013-10-18 22:56 - 2013-11-12 20:35 - 00000000 ____D C:\Program Files (x86)\Battle.net
2013-10-18 22:56 - 2013-10-18 22:58 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\Battle.net
2013-10-18 22:56 - 2013-10-18 22:56 - 00000000 ____D C:\Users\Marcel\AppData\Local\Blizzard Entertainment
2013-10-18 20:35 - 2013-10-18 20:39 - 00000000 ____D C:\Program Files (x86)\Shadow Warrior
2013-10-18 20:28 - 2013-10-18 20:28 - 00000000 ____D C:\Users\Marcel\Documents\Shadow Warrior
2013-10-18 19:38 - 2013-10-29 20:59 - 00000000 ____D C:\Foul Play
2013-10-18 18:00 - 2013-10-18 18:00 - 00000000 ____D C:\Program Files (x86)\Subatomic Studios LLC
2013-10-15 19:17 - 2013-10-15 19:26 - 00000000 ____D C:\Program Files (x86)\The Wolf Among Us
 
==================== One Month Modified Files and Folders =======
 
2013-11-13 01:12 - 2011-09-29 14:30 - 02012002 _____ C:\Windows\WindowsUpdate.log
2013-11-13 01:08 - 2013-11-13 01:08 - 00000000 _____ C:\ProgramData\rebootpending.txt
2013-11-13 01:02 - 2013-11-13 00:55 - 00000000 ____D C:\ProgramData\HitmanPro
2013-11-13 01:01 - 2013-11-13 01:01 - 00012872 _____ (SurfRight B.V.) C:\Windows\System32\bootdelete.exe
2013-11-13 01:01 - 2013-11-13 01:01 - 00000286 _____ C:\Windows\System32\bootdelete.lst
2013-11-13 01:01 - 2011-09-29 14:30 - 00000000 ____D C:\users\Marcel
2013-11-13 00:49 - 2013-09-04 19:35 - 00010875 _____ C:\Windows\setupact.log
2013-11-13 00:49 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-13 00:47 - 2013-11-13 00:41 - 00000000 ____D C:\AdwCleaner
2013-11-13 00:41 - 2013-11-13 00:41 - 01085542 _____ C:\Users\Marcel\Downloads\adwcleaner.exe
2013-11-13 00:37 - 2013-09-05 10:58 - 00252024 _____ C:\Windows\PFRO.log
2013-11-13 00:26 - 2012-02-02 23:12 - 00001119 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-13 00:26 - 2012-02-02 23:12 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-13 00:25 - 2013-11-13 00:25 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Marcel\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-13 00:16 - 2013-11-13 00:16 - 00000000 ____D C:\FRST
2013-11-13 00:09 - 2011-04-12 08:43 - 00697090 _____ C:\Windows\System32\perfh007.dat
2013-11-13 00:09 - 2011-04-12 08:43 - 00148128 _____ C:\Windows\System32\perfc007.dat
2013-11-13 00:09 - 2009-07-14 06:13 - 01614112 _____ C:\Windows\System32\PerfStringBackup.INI
2013-11-12 23:49 - 2013-11-12 23:49 - 00000000 ____D C:\Windows\LastGood
2013-11-12 23:28 - 2013-11-12 23:28 - 00000000 ____D C:\Windows\LastGood.Tmp
2013-11-12 23:24 - 2012-05-05 21:45 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-12 23:24 - 2012-05-02 15:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-12 23:20 - 2012-06-03 01:22 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\uTorrent
2013-11-12 23:02 - 2011-10-12 19:56 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\Skype
2013-11-12 22:58 - 2013-06-11 22:33 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-12 22:57 - 2013-10-18 22:56 - 00000000 ____D C:\Users\Marcel\AppData\Local\Battle.net
2013-11-12 22:55 - 2011-10-01 21:48 - 00000000 ____D C:\Users\Marcel\Documents\My Games
2013-11-12 22:55 - 2011-07-26 06:40 - 01591070 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-11-12 21:25 - 2011-09-26 06:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-12 20:39 - 2013-09-15 21:55 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\Dropbox
2013-11-12 20:35 - 2013-10-18 22:56 - 00000000 ____D C:\Program Files (x86)\Battle.net
2013-11-12 03:05 - 2011-10-12 16:38 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-12 01:40 - 2012-06-16 18:10 - 00000000 ___HD C:\Users\Marcel\AppData\Roaming\Spotify
2013-11-11 13:51 - 2012-06-16 18:10 - 00000000 ____D C:\Users\Marcel\AppData\Local\Spotify
2013-11-10 21:25 - 2013-11-10 21:25 - 00000945 _____ C:\Users\Marcel\Desktop\Open Broadcaster Software.lnk
2013-11-10 21:25 - 2013-11-10 21:25 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\OBS
2013-11-10 21:25 - 2013-11-10 21:25 - 00000000 ____D C:\Program Files\OBS
2013-11-10 21:25 - 2013-11-10 21:25 - 00000000 ____D C:\Program Files (x86)\OBS
2013-11-10 21:24 - 2013-11-10 21:24 - 07630870 _____ C:\Users\Marcel\Downloads\OBS_0_583b_Installer.exe
2013-11-09 22:24 - 2013-11-09 22:24 - 04413104 _____ (CCP hf.) C:\Users\Marcel\Downloads\EVE_Online_Installer_640633.exe
2013-11-09 15:57 - 2011-10-26 22:07 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2013-11-09 15:44 - 2013-11-09 15:44 - 00000000 ____D C:\ProgramData\Oracle
2013-11-09 15:43 - 2013-11-09 15:40 - 00004886 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-09 15:43 - 2011-09-29 16:27 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-09 15:32 - 2013-11-09 15:32 - 00915368 _____ (Oracle Corporation) C:\Users\Marcel\Downloads\jxpiinstall.exe
2013-11-09 15:30 - 2013-11-09 15:28 - 04897880 _____ (Adobe Systems Inc.) C:\Users\Marcel\Downloads\Shockwave_Installer_Slim.exe
2013-11-09 15:20 - 2013-11-09 15:20 - 00626688 _____ C:\Users\Marcel\Downloads\Detection.msi
2013-11-07 22:51 - 2013-11-07 22:27 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2013-11-07 22:23 - 2013-11-07 22:23 - 05913048 _____ (Blizzard Entertainment) C:\Users\Marcel\Downloads\Hearthstone-Beta-Setup-deDE(1).exe
2013-11-06 18:15 - 2012-11-03 17:49 - 00000073 _____ C:\Users\Marcel\Desktop\Neues Textdokument.txt
2013-11-06 06:21 - 2013-11-06 06:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-04 17:00 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-04 16:54 - 2013-11-04 16:53 - 00283064 _____ (Disc Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys
2013-11-04 16:53 - 2013-11-04 16:53 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-04 16:48 - 2013-11-04 16:44 - 820998144 _____ C:\Users\Marcel\Documents\OfficeProfessionalPlus_x64_de-de.img
2013-11-04 16:44 - 2013-11-04 16:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Marcel\Downloads\my_downloader_installer.exe
2013-11-04 16:44 - 2013-11-04 16:44 - 00000000 ____D C:\Users\Marcel\AppData\Local\Akamai
2013-11-02 10:18 - 2011-09-29 16:00 - 00000000 ____D C:\Users\Marcel\Desktop\Games
2013-11-01 23:19 - 2012-03-21 23:15 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\vlc
2013-11-01 22:42 - 2013-03-16 02:14 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2013-11-01 20:45 - 2013-11-01 20:45 - 00000000 ____D C:\Users\Marcel\AppData\Local\Blizzard
2013-11-01 20:21 - 2013-11-01 20:21 - 05913048 _____ (Blizzard Entertainment) C:\Users\Marcel\Downloads\Hearthstone-Beta-Setup-deDE.exe
2013-11-01 20:21 - 2012-04-23 23:30 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-10-31 17:42 - 2009-07-14 05:45 - 00021680 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-31 17:42 - 2009-07-14 05:45 - 00021680 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-31 17:32 - 2013-09-15 21:58 - 00000000 ___RD C:\Users\Marcel\Dropbox
2013-10-29 20:59 - 2013-10-18 19:38 - 00000000 ____D C:\Foul Play
2013-10-29 19:59 - 2013-07-14 06:22 - 00000000 ____D C:\Program Files (x86)\Sid Meier's Civilization V
2013-10-29 19:58 - 2013-08-20 14:21 - 00000000 ____D C:\Program Files (x86)\The Bureau
2013-10-29 19:54 - 2013-08-23 23:21 - 00000000 ____D C:\Program Files (x86)\Saints Row IV
2013-10-29 19:53 - 2013-10-24 22:07 - 00000000 ____D C:\Users\Marcel\Batman Arkham Origins
2013-10-29 19:53 - 2013-09-03 19:33 - 00000000 ____D C:\Program Files (x86)\Total War ROME II
2013-10-29 18:36 - 2013-10-22 15:01 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\.minecraft
2013-10-28 22:41 - 2012-06-03 18:36 - 00000000 ____D C:\Games
2013-10-28 22:40 - 2013-04-25 11:49 - 00000000 ____D C:\Program Files (x86)\Don't Starve
2013-10-28 22:05 - 2013-10-28 21:26 - 00000000 ____D C:\Program Files (x86)\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst
2013-10-27 19:19 - 2013-10-27 19:19 - 00000000 ____D C:\Users\Marcel\Documents\How To Survive Saves
2013-10-26 12:49 - 2011-10-08 09:39 - 00000000 ____D C:\Users\Marcel\AppData\Local\SKIDROW
2013-10-25 11:03 - 2012-09-14 16:17 - 00000000 ____D C:\Users\Marcel\Documents\WB Games
2013-10-24 20:59 - 2013-10-24 20:58 - 50449456 _____ (Microsoft Corporation) C:\Users\Marcel\Downloads\dotNetFx40_Full_x86_x64.exe
2013-10-24 20:45 - 2013-10-24 20:45 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-10-24 20:45 - 2013-04-05 23:47 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-24 20:36 - 2013-09-06 14:33 - 00141583 _____ C:\Windows\DirectX.log
2013-10-24 20:23 - 2013-10-24 19:34 - 00000000 ____D C:\Program Files (x86)\Batman Arkham Origins
2013-10-23 01:15 - 2012-05-18 17:14 - 00003694 _____ C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-10-21 20:22 - 2013-10-21 20:22 - 00000000 ____D C:\Program Files (x86)\Galactic Cafe
2013-10-19 00:23 - 2013-10-19 00:23 - 00000000 ____D C:\Program Files (x86)\Viscera Cleanup Detail Shadow Warrior
2013-10-18 22:58 - 2013-10-18 22:56 - 00000000 ____D C:\Users\Marcel\AppData\Roaming\Battle.net
2013-10-18 22:56 - 2013-10-18 22:56 - 00000000 ____D C:\Users\Marcel\AppData\Local\Blizzard Entertainment
2013-10-18 20:39 - 2013-10-18 20:35 - 00000000 ____D C:\Program Files (x86)\Shadow Warrior
2013-10-18 20:28 - 2013-10-18 20:28 - 00000000 ____D C:\Users\Marcel\Documents\Shadow Warrior
2013-10-18 18:00 - 2013-10-18 18:00 - 00000000 ____D C:\Program Files (x86)\Subatomic Studios LLC
2013-10-17 17:20 - 2013-10-12 18:25 - 00000000 ____D C:\Users\Marcel\Documents\FIFA 14
2013-10-15 19:36 - 2012-04-25 18:38 - 00000000 ____D C:\Users\Marcel\Documents\Telltale Games
2013-10-15 19:26 - 2013-10-15 19:17 - 00000000 ____D C:\Program Files (x86)\The Wolf Among Us
 
ZeroAccess:
C:\Windows\Installer\{03107599-fc96-4cc7-5d56-7b281c3629d4}
 
Some content of TEMP:
====================
C:\Users\Marcel\AppData\Local\Temp\HitmanPro.exe
C:\Users\Marcel\AppData\Local\Temp\Kickstarter.exe
C:\Users\Marcel\AppData\Local\Temp\Quarantine.exe
 
 
==================== Known DLLs (Whitelisted) ================
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
==================== EXE ASSOCIATION =====================
 
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
 
==================== Restore Points  =========================
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 14%
Total physical RAM: 4094.46 MB
Available physical RAM: 3485.13 MB
Total Pagefile: 4092.66 MB
Available Pagefile: 3472.34 MB
Total Virtual: 8192 MB
Available Virtual: 8191.87 MB
 
==================== Drives ================================
 
Drive c: (System) (Fixed) (Total:465.76 GB) (Free:96.56 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: () (Removable) (Total:1.96 GB) (Free:1.95 GB) FAT
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 4A4EAA14)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (Size: 2 GB) (Disk ID: 00CB60C2)
Partition 1: (Active) - (Size=2 GB) - (Type=06)
 
 
LastRegBack: 2013-11-10 06:20
 
==================== End Of Log ============================
         
--- --- ---

--- --- ---

--- --- ---
Angehängte Dateien
Dateityp: txt FRST.txt (26,2 KB, 132x aufgerufen)

Alt 13.11.2013, 05:33   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Grauer Bildschirm bei Windows Start (Win 7) - Standard

Grauer Bildschirm bei Windows Start (Win 7)



Hi,

wann genau erscheint der graue Bildschirm?
__________________

__________________

Alt 13.11.2013, 06:08   #3
Buschmaster
 
Grauer Bildschirm bei Windows Start (Win 7) - Standard

Grauer Bildschirm bei Windows Start (Win 7)



Der Bildschirm erscheint direkt nach dem Willkommensbildschirm, normalerweise sollte ja der Desktop booten aber da erscheint dann halt der grauer Bildschirm.
__________________

Alt 13.11.2013, 11:46   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Grauer Bildschirm bei Windows Start (Win 7) - Standard

Grauer Bildschirm bei Windows Start (Win 7)



Gibt es mehrere Benutzer auf dem Rechner?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 13.11.2013, 11:55   #5
Buschmaster
 
Grauer Bildschirm bei Windows Start (Win 7) - Standard

Grauer Bildschirm bei Windows Start (Win 7)



Nein ich bin der einzige Benutzer


Alt 14.11.2013, 07:54   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Grauer Bildschirm bei Windows Start (Win 7) - Standard

Grauer Bildschirm bei Windows Start (Win 7)



Schon die Startreparatur versucht? Als nächstes wäre ne Rep-Installation dran, malware ist das nicht.
__________________
--> Grauer Bildschirm bei Windows Start (Win 7)

Antwort

Themen zu Grauer Bildschirm bei Windows Start (Win 7)
abgesicherte, abgesicherter, anhänge, anhängen, association, bereits, bildschirm, erscheint, farbar, farbar recovery scan tool, forum, funktioniert, gen, gestern, grauer, hoffe, hänge, hängen, langer, log, modus, netzwerk, rechner, seitdem, spotify web helper, start, suche, windows, windows start



Ähnliche Themen: Grauer Bildschirm bei Windows Start (Win 7)


  1. Nur grauer Bildschirm mit Maus, wenn Windows 7 startet...
    Log-Analyse und Auswertung - 16.10.2015 (5)
  2. Windows 7 grauer Bildschirm, lässt sich nicht mehr starten
    Log-Analyse und Auswertung - 21.01.2015 (33)
  3. Win 7 grauer Bildschirm
    Log-Analyse und Auswertung - 05.12.2014 (5)
  4. Grauer/Schwarzer Bildschirm-Trojaner?
    Alles rund um Windows - 23.11.2014 (10)
  5. Windows 8 Grauer Bildschirm verhindert Windows Start
    Alles rund um Windows - 27.02.2014 (11)
  6. Windows 8 grauer Bildschirm
    Log-Analyse und Auswertung - 22.12.2013 (3)
  7. Windows 8 64-Bit: Grauer Bildschirm verhindert Windows-Start
    Log-Analyse und Auswertung - 06.11.2013 (11)
  8. Windows 7: BKA? Grauer Screen beim Start, abgesicherter Modus nicht möglich.
    Log-Analyse und Auswertung - 01.11.2013 (9)
  9. Windows 7: Computer startet nicht - grauer Bildschirm, Mauszeiger reagiert
    Plagegeister aller Art und deren Bekämpfung - 08.10.2013 (11)
  10. Grauer Bildschirm nach Windowsstart
    Log-Analyse und Auswertung - 23.04.2013 (14)
  11. Grauer Bildschirm nach Windows XP Start
    Plagegeister aller Art und deren Bekämpfung - 22.02.2013 (14)
  12. Grauer Bildschirm nach Windowsstart
    Plagegeister aller Art und deren Bekämpfung - 13.02.2013 (16)
  13. Nach Laptop start grauer Bildschirm Windows 8
    Plagegeister aller Art und deren Bekämpfung - 30.01.2013 (1)
  14. Grauer Bildschirm nach Start mit Windows Vista
    Plagegeister aller Art und deren Bekämpfung - 10.01.2013 (41)
  15. grauer Bildschirm nach Anmeldung, Windows XP
    Log-Analyse und Auswertung - 01.01.2013 (13)
  16. SpyHunter + grauer Bildschirm
    Plagegeister aller Art und deren Bekämpfung - 18.01.2012 (35)
  17. Virus: Beim Start Grauer Bildschirm, Öffnet Werbung in Firefox und IE
    Plagegeister aller Art und deren Bekämpfung - 10.04.2010 (5)

Zum Thema Grauer Bildschirm bei Windows Start (Win 7) - Hallo, seitdem ich gestern Abend meinen Rechner neugestartet habe erscheint immer ein Grauer Bildschirm beim Start und ich bin nicht in der Lage etwas zu machen, nach langer suche kam - Grauer Bildschirm bei Windows Start (Win 7)...
Archiv
Du betrachtest: Grauer Bildschirm bei Windows Start (Win 7) auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.