PC langsam / seltsame Fehler

cosinus · 18.04.2011, 20:34

Starte Windows neu und wiederhol die Prozedur.

Randi · 18.04.2011, 20:40

den einfall hatte ich auch, als du kurz nicht geantwortet hast

hier nun das neue logfile:

Combofix Logfile:

Code:

ATTFilter

ComboFix 11-04-17.03 - sushikiste 18.04.2011  21:21:21.3.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6000.0.1252.49.1031.18.3582.2609 [GMT 2:00]
ausgeführt von:: c:\users\sushikiste\Desktop\cofi.exe
Benutzte Befehlsschalter :: c:\users\sushikiste\Desktop\CFScript.txt
.
FILE ::
"c:\program files\patcher_update_tmp.exe"
"c:\users\SUSHIK~1\AppData\Local\Temp\cdrmkaun.sys"
"c:\windows\system32\SVKP.sys"
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\patcher_update_tmp.exe
c:\program files\unlgluhp
c:\users\sushikiste\A96BFADFA15943958E9CA9E2F059A3BB.TMP
c:\users\sushikiste\A96BFADFA15943958E9CA9E2F059A3BB.TMP\WiseCustomCalla.dll
c:\users\sushikiste\A96BFADFA15943958E9CA9E2F059A3BB.TMP\WiseCustomCalla3.exe
c:\windows\system32\SVKP.sys
c:\windows\TEMP\logishrd\LVPrcInj01.dll
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_CDRMKAUN
-------\Legacy_SVKP
-------\Service_cdrmkaun
-------\Service_SVKP
.
.
(((((((((((((((((((((((   Dateien erstellt von 2011-03-18 bis 2011-04-18  ))))))))))))))))))))))))))))))
.
.
2011-04-18 19:26 . 2011-04-18 19:26	--------	d-----w-	c:\users\Public\AppData\Local\temp
2011-04-18 19:26 . 2011-04-18 19:26	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-04-18 19:26 . 2011-04-18 19:26	--------	d-----w-	c:\users\Andere\AppData\Local\temp
2011-04-18 18:19 . 2011-04-18 18:33	--------	d-----w-	C:\cofi170c
2011-04-18 14:11 . 2011-04-18 15:18	--------	d-----w-	c:\program files\Fraps
2011-04-15 01:04 . 2011-04-15 01:04	--------	d-----w-	c:\program files\Common Files\Adobe
2011-04-12 23:37 . 2011-04-12 23:37	--------	d-----w-	c:\program files\lol-cb3.patcher_15
2011-04-12 23:36 . 2008-07-12 06:18	467984	----a-w-	c:\windows\system32\d3dx10_39.dll
2011-04-12 23:36 . 2008-07-12 06:18	1493528	----a-w-	c:\windows\system32\D3DCompiler_39.dll
2011-04-12 23:36 . 2008-07-12 06:18	3851784	----a-w-	c:\windows\system32\D3DX9_39.dll
2011-04-12 23:35 . 2011-04-12 23:35	--------	d-----w-	c:\program files\html
2011-04-12 20:30 . 2011-04-13 02:13	--------	d-----w-	c:\users\sushikiste\AppData\Local\PMB Files
2011-04-12 20:30 . 2011-04-12 20:31	--------	d-----w-	c:\programdata\PMB Files
2011-04-11 20:46 . 2011-04-11 20:46	--------	d-----w-	c:\program files\Common Files\Java
2011-04-11 20:46 . 2011-04-11 20:46	--------	d-----w-	c:\program files\Java
2011-04-11 16:23 . 2011-04-11 16:24	--------	d-----w-	c:\program files\ICQ7.4
2011-04-11 16:14 . 2011-04-11 16:14	--------	d-----w-	c:\program files\Teamspeak3
2011-04-03 10:57 . 2011-04-03 10:57	--------	d-----w-	c:\program files\LogMeIn Hamachi
2011-03-28 17:53 . 2011-03-28 17:53	--------	d-----w-	c:\users\sushikiste\AppData\Local\Conduit
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-11 20:46 . 2010-08-11 01:46	472808	----a-w-	c:\windows\system32\deployJava1.dll
2011-03-17 13:55 . 2010-05-08 11:08	137656	----a-w-	c:\windows\system32\drivers\avipbb.sys
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2007-03-01 4390912]
"Launch LgDeviceAgent"="c:\program files\Logitech\GamePanel Software\LgDevAgt.exe" [2010-02-18 357448]
"Launch LCDMon"="c:\program files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2010-02-18 1573448]
"Launch LGDCore"="c:\program files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2010-02-18 3203144]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-11-03 281768]
"Ocs_SM"="c:\users\sushikiste\AppData\Roaming\OCS\SM\SearchAnonymizer.exe" [2010-05-13 106496]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2010-12-06 74752]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2011-03-28 1910152]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-12-20 963976]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2011-01-30 35736]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
NETGEAR WG111v3 Smart Wizard.lnk - c:\program files\NETGEAR\WG111v3\WG111v3.exe [2006-5-29 1708032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2011-04-11 16:23	119608	----a-w-	c:\program files\ICQ7.4\ICQ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2010-03-25 23:10	142120	----a-w-	c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Livestream Procaster]
2010-09-27 07:05	3831072	----a-w-	c:\program files\Livestream Procaster\Procaster.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
2009-07-16 14:35	5458704	------w-	c:\program files\Logitech\Logitech Vid\Vid.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2011-03-28 13:41	1910152	----a-w-	c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ Malwarebytes Anti-Malware  (reboot)]
2010-12-20 17:08	963976	----a-w-	c:\program files\Malwarebytes' Anti-Malware\mbam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-04-16 20:12	3872080	----a-w-	c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2010-05-13 14:12	26192168	----a-r-	c:\program files\Skype\Phone\Skype.exe
.
R3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver;c:\windows\system32\DRIVERS\wg111v3.sys [2007-04-23 227328]
R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
R3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
R3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
R3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
R3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
R3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
R3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-05-29 691696]
S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2010-11-03 135336]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2011-03-28 1242504]
S2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
S2 SearchAnonymizer;SearchAnonymizer;c:\users\sushikiste\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe [2010-05-13 40960]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]
S2 TeamViewer5;TeamViewer 5;c:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-23 19720]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-23 14856]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
.
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.de
uInternet Settings,ProxyOverride = *.local
IE: &Winamp Search - c:\programdata\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: Free YouTube to Mp3 Converter - c:\users\sushikiste\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
FF - ProfilePath - c:\users\sushikiste\AppData\Roaming\Mozilla\Firefox\Profiles\aumc5ur9.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2011-04-18 21:34
Windows 6.0.6000  NTFS
.
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
Scanne versteckte Dateien... 
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\NVIDIA Corporation\nTune\nTuneService.exe
c:\windows\system32\WUDFHost.exe
c:\program files\Windows Media Player\WMPSideShowGadget.exe
c:\program files\Windows Media Player\wmplayer.exe
c:\windows\system32\conime.exe
c:\windows\RtHDVCpl.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDCountdown.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDClock.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDRSS.exe
c:\program files\Logitech\GamePanel Software\Applets\LCDMedia.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Common Files\Logishrd\LQCVFX\COCIManager.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Zeit der Fertigstellung: 2011-04-18  21:38:12 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2011-04-18 19:38
ComboFix2.txt  2011-04-18 18:33
ComboFix3.txt  2010-06-24 14:59
.
Vor Suchlauf: 16 Verzeichnis(se), 148.109.680.640 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 147.247.058.944 Bytes frei
.
- - End Of File - - B332B86F9002B293567AD01C03DAAAEC

--- --- ---

das problem (programme können nur als admin ausgeführt werden) besteht nach dem neustart nach der anwendung von combofix aber immernoch.

cosinus · 18.04.2011, 21:00

Ok. Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.

Downloade Dir danach bitte MBRCheck (by a_d_13) und speichere die Datei auf dem Desktop.

Doppelklick auf die MBRCheck.exe.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Das Tool braucht nur wenige Sekunden.
Danach solltest du eine MBRCheck_<Datum>_<Uhrzeit>.txt auf dem Desktop finden.

Poste mir bitte den Inhalt des .txt Dokumentes

Randi · 18.04.2011, 21:43

GMER wollte nicht ..

OSAM:

Code:

ATTFilter

OSAM Logfile:

	Code: 

 ATTFilter

  
	Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 22:41:48 on 18.04.2011

OS: Windows Vista Home Premium Edition (Build 6000), 32-bit
Default Browser: Opera Software Opera Internet Browser 11.10

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Control Panel Objects]
-----( %SystemRoot%\system32 )-----
"DivXControlPanelApplet.cpl" - "DivX, Inc." - C:\Windows\system32\DivXControlPanelApplet.cpl
"nvcpl.cpl" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.cpl
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )-----
"lgLcdCpl" - ? - C:\Program Files\Logitech\GamePanel Software\LCD Manager\LgLcdCpl.cpl
"Pando" - "Pando Networks" - C:\Program Files\Pando Networks\Media Booster\PMB.cpl
"QuickTime" - "Apple Inc." - C:\Program Files\QuickTime\QTSystem\QuickTime.cpl

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"a112q9ec" (a112q9ec) - "Microsoft Corporation" - C:\Windows\system32\drivers\a112q9ec.sys  (Hidden registry entry, rootkit activity | File signed by Microsoft)
"avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys
"avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys
"catchme" (catchme) - ? - C:\Users\SUSHIK~1\AppData\Local\Temp\catchme.sys  (File not found)
"Conexant Setup API" (UIUSys) - ? - C:\Windows\System32\DRIVERS\UIUSYS.SYS  (File not found)
"Hamachi Network Interface" (hamachi) - "LogMeIn, Inc." - C:\Windows\System32\DRIVERS\hamachi.sys
"IP in IP Tunnel Driver" (IpInIp) - ? - C:\Windows\System32\DRIVERS\ipinip.sys  (File not found)
"IPX Traffic Filter Driver" (NwlnkFlt) - ? - C:\Windows\System32\DRIVERS\nwlnkflt.sys  (File not found)
"IPX Traffic Forwarder Driver" (NwlnkFwd) - ? - C:\Windows\System32\DRIVERS\nwlnkfwd.sys  (File not found)
"Logitech USB Monitor Filter" (LVUSBSta) - ? - C:\Windows\System32\drivers\LVUSBSta.sys  (File not found)
"NVR0Dev" (NVR0Dev) - "NVidia Corp." - C:\Windows\nvoclock.sys
"sptd" (sptd) - "Duplex Secure Ltd." - C:\Windows\System32\Drivers\sptd.sys  (File is exclusively opened, access blocked)
"ssmdrv" (ssmdrv) - "Avira GmbH" - C:\Windows\System32\DRIVERS\ssmdrv.sys

[Explorer]
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
-----( HKLM\Software\Classes\Protocols\Filter )-----
{807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
-----( HKLM\Software\Classes\Protocols\Handler )-----
{314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} "IEProtocolHandler Class" - "Skype Technologies" - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
{828030A1-22C1-4009-854F-8E305202313F} "livecall" - "Microsoft Corporation" - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
{828030A1-22C1-4009-854F-8E305202313F} "msnim" - "Microsoft Corporation" - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks )-----
{AEB6717E-7E19-11d0-97EE-00C04FD91972} "{AEB6717E-7E19-11d0-97EE-00C04FD91972}" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{911051fa-c21c-4246-b470-070cd8df6dc4} ".cab or .zip files" - ? -   (File not found | COM-object registry key not found)
{1b24a030-9b20-49bc-97ac-1be4426f9e59} "ActiveDirectory Folder" - ? -   (File not found | COM-object registry key not found)
{34449847-FD14-4fc8-A75A-7432F5181EFB} "ActiveDirectory Folder" - ? -   (File not found | COM-object registry key not found)
{0F8604A5-4ECE-4DE1-BA7D-CF10F8AA4F48} "Contacts folder" - ? -   (File not found | COM-object registry key not found)
{A70C977A-BF00-412C-90B7-034C51DA2439} "DesktopContext Class" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll
{2C2577C2-63A7-40e3-9B7F-586602617ECB} "Explorer Query Band" - ? -   (File not found | COM-object registry key not found)
{FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} "IE User Assist" - ? -   (File not found | COM-object registry key not found)
{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} "iTunes" - "Apple Inc." - C:\Program Files\iTunes\iTunesMiniPlayer.dll
{00020d75-0000-0000-c000-000000000046} "lnkfile" - ? -   (File not found | COM-object registry key not found)
{42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\msohevi.dll
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~2\Office12\ONFILTER.DLL
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} "NVIDIA CPL Context Menu Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvshext.dll
{FFB699E0-306A-11d3-8BD1-00104B6F7516} "NVIDIA CPL Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll
{C8494E42-ACDD-4739-B0FB-217361E4894F} "Sam Account Folder" - ? -   (File not found | COM-object registry key not found)
{E29F9716-5C08-4FCD-955A-119FDB5A522D} "Sam Account Folder" - ? -   (File not found | COM-object registry key not found)
{45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\shlext.dll
{da67b8ad-e81b-4c70-9b91b417b5e33527} "Windows Search Shell Service" - ? -   (File not found | COM-object registry key not found)
{B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" - "Alexander Roshal" - C:\Program Files\WinRAR\rarext.dll

[Internet Explorer]
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
ITBar7Height "ITBar7Height" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBar7Layout" - ? -   (File not found | COM-object registry key not found)
<binary data> "ITBarLayout" - ? -   (File not found | COM-object registry key not found)
-----( HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks )-----
 "{855F3B16-6D32-4fe6-8A56-BBB695989046}" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_24" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\npjpi160_24.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
"ICQ7.2" - ? - C:\Program Files\ICQ7.2\ICQ.exe  (File not found)
"ICQ7.4" - "ICQ, LLC." - C:\Program Files\ICQ7.4\ICQ.exe
{FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2ssv.dll
{9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live Anmelde-Hilfsprogramm" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\sushikiste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
"NETGEAR WG111v3 Smart Wizard.lnk" - ? - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe  (Shortcut exists | File exists)
-----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )-----
"StartupPrograms" - ? - rdpclip  (File not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"Adobe ARM" - "Adobe Systems Incorporated" - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Reader Speed Launcher" - "Adobe Systems Incorporated" - "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"avgnt" - "Avira GmbH" - "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
"DivXUpdate" - ? - "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"Launch LCDMon" - ? - "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
"Launch LGDCore" - ? - "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
"Launch LgDeviceAgent" - ? - "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe"
"LogitechQuickCamRibbon" - "Logitech Inc." - "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
"LogMeIn Hamachi Ui" - "LogMeIn Inc." - "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"Malwarebytes' Anti-Malware (reboot)" - "Malwarebytes Corporation" - "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
"Ocs_SM" - "OCS" - C:\Users\sushikiste\AppData\Roaming\OCS\SM\SearchAnonymizer.exe
"SunJavaUpdateSched" - "Sun Microsystems, Inc." - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"WinampAgent" - "Nullsoft, Inc." - "C:\Program Files\Winamp\winampa.exe"

[Print Monitors]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )-----
"Send To Microsoft OneNote Monitor" - "Microsoft Corporation" - C:\Windows\system32\msonpmon.dll

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
"Avira AntiVir Guard" (AntiVirService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
"Avira AntiVir Planer" (AntiVirSchedulerService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\sched.exe
"Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Program Files\Bonjour\mDNSResponder.exe
"iPod-Dienst" (iPod Service) - "Apple Inc." - C:\Program Files\iPod\bin\iPodService.exe
"LogMeIn Hamachi 2.0 Tunneling Engine" (Hamachi2Svc) - "LogMeIn Inc." - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
"Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
"nTune Service" (nTuneService) - "NVIDIA" - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
"NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe
"NVIDIA Stereoscopic 3D Driver Service" (Stereo Service) - "NVIDIA Corporation" - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
"Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"Process Monitor" (LVPrcSrv) - "Logitech Inc." - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
"SearchAnonymizer" (SearchAnonymizer) - ? - C:\Users\sushikiste\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe
"Sony Ericsson OMSI download service" (OMSI download service) - ? - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe  (File found, but it contains no detailed information)
"TeamViewer 5" (TeamViewer5) - "TeamViewer GmbH" - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe

[Winsock Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )-----
"mdnsNSP" - "Apple Inc." - C:\Program Files\Bonjour\mdnsNSP.dll

===[ Logfile end ]=========================================[ Logfile end ]===
         
 --- --- ---

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru

MBRCheck:

Code:

ATTFilter

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:			
Windows Version:		Windows Vista Home Premium Edition
Windows Information:		 (build 6000), 32-bit
Base Board Manufacturer:	Dell Inc.
BIOS Manufacturer:		Dell Inc.
System Manufacturer:		Dell Inc.
System Product Name:		Inspiron 531
Logical Drives Mask:		0x000005fc

Kernel Drivers (total 145):
  0x82000000 \SystemRoot\system32\ntkrnlpa.exe
  0x823A1000 \SystemRoot\system32\hal.dll
  0x802C6000 \SystemRoot\system32\kdcom.dll
  0x802BD000 \SystemRoot\system32\PSHED.dll
  0x802B5000 \SystemRoot\system32\BOOTVID.dll
  0x8027A000 \SystemRoot\system32\CLFS.SYS
  0x8051F000 \SystemRoot\system32\CI.dll
  0x804A4000 \SystemRoot\system32\drivers\Wdf01000.sys
  0x8026D000 \SystemRoot\system32\drivers\WDFLDR.SYS
  0x8070D000 \SystemRoot\System32\Drivers\spem.sys
  0x80264000 \SystemRoot\System32\Drivers\WMILIB.SYS
  0x8023E000 \SystemRoot\System32\Drivers\SCSIPORT.SYS
  0x80461000 \SystemRoot\system32\drivers\acpi.sys
  0x80236000 \SystemRoot\system32\drivers\msisadrv.sys
  0x80227000 \SystemRoot\system32\drivers\volmgr.sys
  0x80202000 \SystemRoot\system32\drivers\pci.sys
  0x80451000 \SystemRoot\System32\drivers\mountmgr.sys
  0x8044A000 \SystemRoot\system32\drivers\pciide.sys
  0x8043C000 \SystemRoot\system32\drivers\PCIIDEX.SYS
  0x806C3000 \SystemRoot\System32\drivers\volmgrx.sys
  0x80434000 \SystemRoot\system32\drivers\atapi.sys
  0x80416000 \SystemRoot\system32\drivers\ataport.SYS
  0x80409000 \SystemRoot\system32\drivers\nvstor.sys
  0x80683000 \SystemRoot\system32\drivers\storport.sys
  0x80652000 \SystemRoot\system32\drivers\fltmgr.sys
  0x80642000 \SystemRoot\system32\drivers\fileinfo.sys
  0x81EFC000 \SystemRoot\system32\drivers\ndis.sys
  0x80617000 \SystemRoot\system32\drivers\msrpc.sys
  0x81EC3000 \SystemRoot\system32\drivers\NETIO.SYS
  0x828F8000 \SystemRoot\System32\Drivers\Ntfs.sys
  0x81E59000 \SystemRoot\System32\Drivers\ksecdd.sys
  0x81E23000 \SystemRoot\system32\drivers\volsnap.sys
  0x80401000 \SystemRoot\System32\Drivers\spldr.sys
  0x80608000 \SystemRoot\System32\drivers\partmgr.sys
  0x81E14000 \SystemRoot\System32\Drivers\mup.sys
  0x828D3000 \SystemRoot\System32\drivers\ecache.sys
  0x81E03000 \SystemRoot\system32\drivers\disk.sys
  0x828B2000 \SystemRoot\system32\drivers\CLASSPNP.SYS
  0x828A9000 \SystemRoot\system32\drivers\crcdisk.sys
  0x8E635000 \SystemRoot\system32\DRIVERS\tunnel.sys
  0x8E753000 \SystemRoot\system32\DRIVERS\tunmp.sys
  0x8C21F000 \SystemRoot\system32\DRIVERS\amdk8.sys
  0x8C637000 \SystemRoot\system32\DRIVERS\usbohci.sys
  0x8ED73000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
  0x82A40000 \SystemRoot\system32\DRIVERS\usbehci.sys
  0x8EC1E000 \SystemRoot\system32\DRIVERS\bcmwl6.sys
  0x8E623000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
  0x8E60B000 \SystemRoot\system32\DRIVERS\cdrom.sys
  0x8F782000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
  0x8C714000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
  0x8F6E5000 \SystemRoot\System32\drivers\dxgkrnl.sys
  0x8C73A000 \SystemRoot\System32\drivers\watchdog.sys
  0x8F6AC000 \SystemRoot\System32\Drivers\a112q9ec.SYS
  0x8F0D5000 \SystemRoot\system32\DRIVERS\msiscsi.sys
  0x8E600000 \SystemRoot\system32\DRIVERS\TDI.SYS
  0x8EC07000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
  0x8F0CA000 \SystemRoot\system32\DRIVERS\ndistapi.sys
  0x8F0A7000 \SystemRoot\system32\DRIVERS\ndiswan.sys
  0x8C22E000 \SystemRoot\system32\DRIVERS\raspppoe.sys
  0x8F094000 \SystemRoot\system32\DRIVERS\raspptp.sys
  0x8EDBA000 \SystemRoot\system32\DRIVERS\hamachi.sys
  0x8C23D000 \SystemRoot\system32\DRIVERS\termdd.sys
  0x8F089000 \SystemRoot\system32\DRIVERS\kbdclass.sys
  0x8F07E000 \SystemRoot\system32\DRIVERS\mouclass.sys
  0x8C6C4000 \SystemRoot\system32\DRIVERS\seehcri.sys
  0x8C716000 \SystemRoot\system32\DRIVERS\swenum.sys
  0x8F054000 \SystemRoot\system32\DRIVERS\ks.sys
  0x8E674000 \SystemRoot\system32\drivers\LGBusEnum.sys
  0x8F04A000 \SystemRoot\system32\DRIVERS\mssmbios.sys
  0x8C754000 \SystemRoot\system32\DRIVERS\umbus.sys
  0x8F016000 \SystemRoot\system32\DRIVERS\usbhub.sys
  0x8C3E0000 \SystemRoot\System32\Drivers\NDProxy.SYS
  0x90457000 \SystemRoot\system32\drivers\RTKVHDA.sys
  0x8F1D3000 \SystemRoot\system32\drivers\portcls.sys
  0x8F1AE000 \SystemRoot\system32\drivers\drmk.sys
  0x8E777000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
  0x8E6CD000 \SystemRoot\System32\Drivers\Null.SYS
  0x8E6D4000 \SystemRoot\System32\Drivers\Beep.SYS
  0x8E6DB000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
  0x82A27000 \SystemRoot\System32\drivers\vga.sys
  0x8F14D000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
  0x8E788000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
  0x8E790000 \SystemRoot\system32\drivers\rdpencdd.sys
  0x8F122000 \SystemRoot\System32\Drivers\Msfs.SYS
  0x8EC93000 \SystemRoot\System32\Drivers\Npfs.SYS
  0x8E6F0000 \SystemRoot\System32\DRIVERS\rasacd.sys
  0x9066B000 \SystemRoot\System32\drivers\tcpip.sys
  0x8F109000 \SystemRoot\System32\drivers\fwpkclnt.sys
  0x8F697000 \SystemRoot\system32\DRIVERS\tdx.sys
  0x8F683000 \SystemRoot\system32\DRIVERS\smb.sys
  0x8F63C000 \SystemRoot\system32\drivers\afd.sys
  0x8F60A000 \SystemRoot\System32\DRIVERS\netbt.sys
  0x90441000 \SystemRoot\system32\DRIVERS\pacer.sys
  0x8ECA1000 \SystemRoot\system32\DRIVERS\netbios.sys
  0x9042E000 \SystemRoot\system32\DRIVERS\wanarp.sys
  0x8C6D6000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
  0x90630000 \SystemRoot\system32\DRIVERS\rdbss.sys
  0x8F600000 \SystemRoot\system32\drivers\nsiproxy.sys
  0x90417000 \SystemRoot\System32\Drivers\dfsc.sys
  0x9060A000 \SystemRoot\system32\DRIVERS\avipbb.sys
  0x8E76E000 \SystemRoot\system32\DRIVERS\hidusb.sys
  0x8C380000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
  0x8C700000 \SystemRoot\system32\DRIVERS\USBD.SYS
  0x8E7F8000 \SystemRoot\system32\DRIVERS\mouhid.sys
  0x909AE000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
  0x90997000 \SystemRoot\system32\DRIVERS\usbccgp.sys
  0x82810000 \SystemRoot\system32\DRIVERS\kbdhid.sys
  0x90981000 \SystemRoot\system32\DRIVERS\cdfs.sys
  0x8C76E000 \SystemRoot\System32\Drivers\crashdmp.sys
  0x8C607000 \SystemRoot\System32\Drivers\dump_diskdump.sys
  0x8C77B000 \SystemRoot\System32\Drivers\dump_nvstor.sys
  0x96E00000 \SystemRoot\System32\win32k.sys
  0x908B5000 \SystemRoot\System32\drivers\Dxapi.sys
  0x8C26A000 \SystemRoot\system32\DRIVERS\monitor.sys
  0x9A400000 \SystemRoot\System32\TSDDD.dll
  0x9A410000 \SystemRoot\System32\cdd.dll
  0x9AC55000 \SystemRoot\system32\drivers\luafv.sys
  0x9AC40000 \SystemRoot\system32\DRIVERS\avgntflt.sys
  0x9CF32000 \SystemRoot\system32\drivers\spsys.sys
  0x8C350000 \SystemRoot\system32\DRIVERS\lltdio.sys
  0x9CF07000 \SystemRoot\system32\DRIVERS\nwifi.sys
  0x90919000 \SystemRoot\system32\DRIVERS\ndisuio.sys
  0x9CEF4000 \SystemRoot\system32\DRIVERS\rspndr.sys
  0x9CE5F000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
  0x9CE4D000 \SystemRoot\system32\DRIVERS\WUDFPf.sys
  0x9D357000 \SystemRoot\system32\drivers\HTTP.sys
  0x9CE32000 \SystemRoot\System32\DRIVERS\srvnet.sys
  0x9D28E000 \SystemRoot\system32\DRIVERS\bowser.sys
  0x9D27A000 \SystemRoot\System32\drivers\mpsdrv.sys
  0x9D25A000 \SystemRoot\system32\drivers\mrxdav.sys
  0x9D23C000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
  0x9D203000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
  0x9E3AE000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
  0x9E38A000 \SystemRoot\System32\DRIVERS\srv2.sys
  0x9E339000 \SystemRoot\System32\DRIVERS\srv.sys
  0x9EB3E000 \SystemRoot\System32\Drivers\fastfat.SYS
  0x9F922000 \SystemRoot\system32\drivers\peauth.sys
  0x9090F000 \SystemRoot\System32\Drivers\secdrv.SYS
  0x9AD73000 \SystemRoot\System32\drivers\tcpipreg.sys
  0x8E7B0000 \??\C:\Windows\nvoclock.sys
  0x8EDD8000 \SystemRoot\system32\DRIVERS\LVPr2Mon.sys
  0x8C70C000 \SystemRoot\system32\drivers\LGVirHid.sys
  0xA787E000 \SystemRoot\system32\DRIVERS\nvmfdx32.sys
  0x779F0000 \Windows\System32\ntdll.dll
  0x10000000 \Program Files\DAEMON Tools Lite\Engine.dll

Processes (total 73):
       0 System Idle Process
       4 System
     432 C:\Windows\System32\smss.exe
     556 csrss.exe
     604 C:\Windows\System32\wininit.exe
     616 csrss.exe
     648 C:\Windows\System32\services.exe
     672 C:\Windows\System32\lsass.exe
     680 C:\Windows\System32\lsm.exe
     780 C:\Windows\System32\winlogon.exe
     860 C:\Windows\System32\svchost.exe
     924 C:\Windows\System32\nvvsvc.exe
     952 C:\Windows\System32\svchost.exe
     992 C:\Windows\System32\svchost.exe
    1032 C:\Windows\System32\svchost.exe
    1044 C:\Windows\System32\svchost.exe
    1124 C:\Windows\System32\audiodg.exe
    1144 C:\Windows\System32\svchost.exe
    1160 C:\Windows\System32\SLsvc.exe
    1188 C:\Windows\System32\svchost.exe
    1332 C:\Windows\System32\svchost.exe
    1548 C:\Windows\System32\spoolsv.exe
    1572 WUDFHost.exe
    1584 C:\Program Files\Avira\AntiVir Desktop\sched.exe
    1612 C:\Windows\System32\svchost.exe
    1788 WUDFHost.exe
    1924 C:\Windows\System32\nvvsvc.exe
     260 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
     356 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
     368 C:\Program Files\Bonjour\mDNSResponder.exe
     536 C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
     424 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
     676 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
    1244 C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
    1420 C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
    2096 C:\Windows\System32\svchost.exe
    2108 C:\Users\sushikiste\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe
    2176 C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    2196 C:\Windows\System32\svchost.exe
    2224 C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
    2304 C:\Windows\System32\dwm.exe
    2344 C:\Windows\explorer.exe
    2400 C:\Windows\System32\svchost.exe
    2696 WUDFHost.exe
    2876 C:\Windows\System32\taskeng.exe
    2972 C:\Windows\System32\taskeng.exe
    3280 C:\Windows\RtHDVCpl.exe
    3316 C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
    3356 C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
    3392 C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
    3408 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    3460 C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
    3492 C:\Program Files\Winamp\winampa.exe
    3540 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
    3552 C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
    3584 C:\Program Files\Common Files\Java\Java Update\jusched.exe
    3640 C:\Program Files\Windows Media Player\wmpnscfg.exe
    3652 C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    3800 C:\Program Files\Windows Media Player\wmpnetwk.exe
    2148 C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe
    2220 C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe
    2384 C:\Program Files\Logitech\GamePanel Software\Applets\LCDPop3.exe
    1448 C:\Program Files\Logitech\GamePanel Software\Applets\LCDRSS.exe
    1916 C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe
     708 C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
    3064 C:\Program Files\Windows Media Player\WMPSideShowGadget.exe
     872 C:\Program Files\Windows Media Player\wmplayer.exe
    2480 C:\Program Files\Opera\opera.exe
    4016 taskeng.exe
    4332 C:\Windows\servicing\TrustedInstaller.exe
    4180 WmiPrvSE.exe
    5672 C:\Users\sushikiste\Desktop\MBRCheck.exe
    4932 C:\Windows\System32\conime.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`83700000  (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`03700000  (NTFS)

PhysicalDrive0 Model Number: WDC WD3200AAKS-75SBA, Rev: 12.0

      Size  Device Name          MBR Status
  --------------------------------------------
    298 GB  \\.\PhysicalDrive0   Windows Vista MBR code detected
            SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979


Done!

cosinus · 18.04.2011, 21:55

Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!

18.04.2011, 20:34	#16
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	PC langsam / seltsame Fehler Starte Windows neu und wiederhol die Prozedur. __________________ Logfiles bitte immer in CODE-Tags posten

18.04.2011, 21:55	#20
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	PC langsam / seltsame Fehler Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!! __________________ Logfiles bitte immer in CODE-Tags posten

PC langsam / seltsame Fehler

Log-Analyse und Auswertung: PC langsam / seltsame Fehler