| |
| |||||||
Log-Analyse und Auswertung: kann nicht weiter an meiner Präsentation arbeitenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
10.06.2009, 17:49
| #1 |
 |  kann nicht weiter an meiner Präsentation arbeiten Malwarebytes' Anti-Malware 1.37 Datenbank Version: 2257 Windows 6.0.6000 10.06.2009 18:34:08 mbam-log-2009-06-10 (18-34-08).txt Scan-Methode: Vollständiger Scan (C:\|D:\|) Durchsuchte Objekte: 153391 Laufzeit: 2 hour(s), 13 minute(s), 9 second(s) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 1 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 1 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully. Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: c:\Users\ali\downloads\PopularScreensaversSetup2.3.50.10.exe (Adware.MyWeb) -> Quarantined and deleted successfully. |
|
10.06.2009, 19:23
| #2 | |
| /// AVZ-Toolkit Guru   | kann nicht weiter an meiner Präsentation arbeiten Hallöle.
__________________Es wäre nett wenn du die zehn goldenen Regeln, insb. Nr 5 Zitat:
Dann kann dir mit Sicherheit jemand helfen.
__________________ |
|
10.06.2009, 19:58
| #3 |
| | kann nicht weiter an meiner Präsentation arbeiten Hallo,
__________________also mein Rechner ist total langsam, wenn ich den hochfahre dauert es sehr lange bis ich arbeiten kann... die ordner öffnen sich auch sehr spät :-( kann nichts mehr installieren, alles zu lange... ich schreibe in 2 tagen eine klausur und ausgerechnet jetzt spielt der rechner verrückt :-( ich bin gerade dabei mit HijackThis werde das ergebnis hier reinposten ich bitte um eure hilfe |
|
10.06.2009, 20:11
| #4 |
| | kann nicht weiter an meiner Präsentation arbeiten Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 01:14:22, on 22.12.2005 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16830) Boot mode: Normal Running processes: C:\Windows\Explorer.EXE C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam10\QuickCam10.exe C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://format.packardbell.com/cgi-bin/redirect/?country=DE&range=AD&phase=8&key=IESTART R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://format.packardbell.com/cgi-bin/redirect/?country=DE&range=AD&phase=8&key=IESTART R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe" O4 - HKLM\..\Run: [TQ566808] "D:\Setup.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe" O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST') O4 - Startup: wkcalrem.LNK = C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe O13 - Gopher Prefix: O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.yayindayiz.biz/codec/nsvplayx_vp6_mp3.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F557} (Flatcast Viewer 5.0) - http://80.237.209.20/objects/NpFv501.dll O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{4DFD7D6F-3627-4B2E-BE65-D99C3B7ABCAC}: NameServer = 195.50.140.178 195.50.140.114 O17 - HKLM\System\CCS\Services\Tcpip\..\{723AC188-7469-4DEF-90D9-87C65F58B6E1}: NameServer = 213.191.74.11 213.191.92.82 O17 - HKLM\System\CCS\Services\Tcpip\..\{F6064D3A-4764-47CB-9B18-9D391CBC9C54}: NameServer = 195.50.140.250 195.50.140.114 O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Automatisches LiveUpdate - Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe O23 - Service: Symantec IS Kennwortprüfung (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- End of file - 7412 bytes |
|
10.06.2009, 20:18
| #5 |
| /// AVZ-Toolkit Guru | kann nicht weiter an meiner Präsentation arbeiten Dein System stammt aus dem Mittelalter. Service Pack 1 bzw. demnächst auch das Service Pack 2 ist absolute Pflicht für Vista. Installiere es bitte. Danach: Prevx
__________________ - Sämtliche Hilfestellungen im Forum werden ohne Gewährleistung oder Haftung gegeben - |
|
10.06.2009, 20:32
| #6 |
| | kann nicht weiter an meiner Präsentation arbeiten danke für deine hilfe ich bin gerade dabei den service pack 1 zu installieren die wächter zu deaktivieren habe ich probleme ich hatte vor kurzem norton gehabt...den habe ich deinstalliert aber unten ist er immer noch zu sehen :-( habe dafür jetzt abtivir |
|
11.06.2009, 06:44
| #7 |
| /// AVZ-Toolkit Guru | kann nicht weiter an meiner Präsentation arbeiten Um Norton los zu werden lasse das removal tool laufen: http://service1.symantec.com/support...50412095959924
__________________ - Sämtliche Hilfestellungen im Forum werden ohne Gewährleistung oder Haftung gegeben - |
|
11.06.2009, 10:53
| #8 |
| | kann nicht weiter an meiner Präsentation arbeiten http://rapidshare.com/files/24329206..._Scan.log.html http://rapidshare.com/files/24329292...ation.log.html wie du es haben wolltest :aplaus: Übrigens dieser Norton Removal Toll soll abgelaufen sein... DenService Pack 1 konnte ich auch nicht installieren Immer wenn ich den Rechner neu anmache, bekomme ich einen schwarzen Bildschirm, mit 2 Warnungen: - Warning 0251 System Cmos checksum bad/default configuration - Warning 0271 Check date and time settings Ich muss dann immer um fortfahren zu können auf F1 drücken Geändert von Ali-Student (11.06.2009 um 11:35 Uhr) |
|
11.06.2009, 14:19
| #9 | |
| | kann nicht weiter an meiner Präsentation arbeitenZitat:
es hat sich nichts geändert :-( |
|
11.06.2009, 20:24
| #10 |
| /// AVZ-Toolkit Guru | kann nicht weiter an meiner Präsentation arbeiten ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Wichtiger Hinweis: Combofix darf ausschließlich ausgeführt werden wenn ein Kompetenzler dies ausdrücklich empfohlen hat!Hinweis: Combofix verhindert die Autostart Funktion aller CD / DVD und USB - Laufwerken um so eine Verbeitung einzudämmen. Wenn es hierdurch zu Problemen kommt, diese im Thread posten.
__________________ - Sämtliche Hilfestellungen im Forum werden ohne Gewährleistung oder Haftung gegeben - |
|
12.06.2009, 10:20
| #11 |
| | kann nicht weiter an meiner Präsentation arbeiten ComboFix 09-06-11.06 - ali 22.12.2005 15:19.1 - NTFSx86 Microsoft® Windows Vista™ Home Basic 6.0.6000.0.1252.49.1031.18.446.102 [GMT 1:00] ausgeführt von:: c:\users\ali\Desktop\ComboFix.exe AV: AntiVir Desktop *On-access scanning enabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7} AV: Norton Internet Security *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8} FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220} SP: AntiVir Desktop *enabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7} SP: Norton Internet Security *enabled* (Outdated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A} SP: Windows-Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . ((((((((((((((((((((((( Dateien erstellt von 2005-11-22 bis 2005-12-22 )))))))))))))))))))))))))))))) . 2009-06-10 13:56 . 2009-04-21 12:04 2028032 ----a-w- c:\windows\system32\win32k.sys 2009-06-10 13:56 . 2009-04-23 12:56 696832 ----a-w- c:\windows\system32\localspl.dll 2009-06-10 13:54 . 2009-04-23 13:01 788992 ----a-w- c:\windows\system32\rpcrt4.dll 2009-06-10 13:15 . 2009-06-10 13:15 -------- d-----w- c:\users\ali\AppData\Roaming\Malwarebytes 2009-06-10 13:15 . 2009-05-26 11:20 40160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-06-10 13:15 . 2009-06-10 13:15 -------- d-----w- c:\programdata\Malwarebytes 2009-06-10 13:15 . 2009-05-26 11:19 19096 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-06-10 13:15 . 2009-06-10 13:15 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-06-10 13:03 . 2009-06-10 13:03 -------- d-----w- c:\program files\CCleaner 2009-06-10 12:11 . 2009-03-30 08:33 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys 2009-06-10 12:11 . 2009-03-24 14:08 55640 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2009-06-10 12:11 . 2009-06-10 12:11 -------- d-----w- c:\programdata\Avira 2009-06-10 12:11 . 2009-06-10 12:11 -------- d-----w- c:\program files\Avira 2009-04-15 21:04 . 2008-12-08 04:34 376832 ----a-w- c:\windows\system32\winhttp.dll 2009-04-15 21:00 . 2009-02-13 07:26 1233408 ----a-w- c:\windows\system32\lsasrv.dll 2009-04-15 21:00 . 2009-02-13 07:26 72704 ----a-w- c:\windows\system32\secur32.dll 2009-04-15 21:00 . 2009-03-17 03:16 14848 ----a-w- c:\windows\system32\apilogen.dll 2009-04-15 21:00 . 2009-02-13 07:26 7680 ----a-w- c:\windows\system32\lsass.exe 2009-04-15 21:00 . 2009-03-17 03:16 25600 ----a-w- c:\windows\system32\amxread.dll 2009-03-11 21:22 . 2008-12-16 05:53 7680 ----a-w- c:\windows\system32\spwmp.dll 2009-03-11 21:22 . 2008-12-16 05:53 4096 ----a-w- c:\windows\system32\dxmasf.dll 2009-03-11 21:22 . 2008-12-16 04:00 8147968 ----a-w- c:\windows\system32\wmploc.DLL 2009-03-11 21:22 . 2008-11-27 04:42 269824 ----a-w- c:\windows\system32\schannel.dll 2009-03-11 20:41 . 2008-06-20 01:17 97800 ----a-w- c:\windows\system32\infocardapi.dll 2009-03-11 20:41 . 2008-06-20 01:18 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2009-03-11 20:41 . 2008-06-20 01:17 622080 ----a-w- c:\windows\system32\icardagt.exe 2009-03-11 20:41 . 2008-06-20 01:17 11264 ----a-w- c:\windows\system32\icardres.dll 2009-03-11 20:41 . 2008-06-20 01:18 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2009-03-11 20:40 . 2008-06-20 01:18 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll 2009-03-11 20:40 . 2008-06-20 01:18 326160 ----a-w- c:\windows\system32\PresentationHost.exe 2009-03-11 19:56 . 2008-07-27 18:00 96760 ----a-w- c:\windows\system32\dfshim.dll 2009-03-11 19:55 . 2008-07-27 18:00 282112 ----a-w- c:\windows\system32\mscoree.dll 2009-03-11 19:55 . 2008-07-27 18:00 41984 ----a-w- c:\windows\system32\netfxperf.dll 2009-03-11 19:53 . 2008-07-27 18:00 158720 ----a-w- c:\windows\system32\mscorier.dll 2009-03-11 19:52 . 2008-07-27 18:00 83968 ----a-w- c:\windows\system32\mscories.dll 2009-02-05 18:59 . 2009-02-05 18:59 -------- d-----w- c:\users\ali\AppData\Roaming\TeamViewer 2009-02-05 18:57 . 2009-02-05 18:57 -------- d-----w- c:\users\ali\temp 2009-01-24 18:54 . 2006-10-13 14:55 91232 ----a-w- c:\programdata\Symantec\SyKnAppS\Freezer\CAV\patch25.dll 2009-01-24 18:54 . 2006-10-17 17:14 1291872 ----a-w- c:\programdata\Symantec\SyKnAppS\Freezer\CAV\SyKnAppS.dll 2009-01-14 18:51 . 2008-12-16 03:14 290304 ----a-w- c:\windows\system32\drivers\srv.sys 2008-12-14 22:48 . 2008-12-15 01:18 -------- d-----w- c:\programdata\NOS 2008-12-14 22:48 . 2008-12-15 01:18 -------- d-----w- c:\program files\NOS 2008-12-12 19:09 . 2008-12-12 19:06 410984 ----a-w- c:\windows\system32\deploytk.dll 2008-12-10 19:16 . 2008-10-21 23:31 2048 ----a-w- c:\windows\system32\tzres.dll 2008-12-09 23:16 . 2008-10-31 23:38 4247552 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2008-12-09 23:16 . 2008-11-01 03:33 1687040 ----a-w- c:\windows\system32\gameux.dll 2008-12-09 23:16 . 2008-11-01 03:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2008-12-09 23:14 . 2008-10-21 05:16 297472 ----a-w- c:\windows\system32\gdi32.dll 2008-12-09 23:10 . 2008-10-29 06:20 2923520 ----a-w- c:\windows\explorer.exe 2008-12-09 23:02 . 2008-06-23 01:52 2855424 ----a-w- c:\windows\system32\mf.dll 2008-12-09 23:02 . 2008-06-23 01:52 996352 ----a-w- c:\windows\system32\WMNetMgr.dll 2008-12-09 23:02 . 2008-06-23 01:52 94720 ----a-w- c:\windows\system32\logagent.exe 2008-12-09 23:02 . 2008-06-23 01:52 52736 ----a-w- c:\windows\system32\rrinstaller.exe 2008-12-09 23:02 . 2008-06-23 01:52 98816 ----a-w- c:\windows\system32\mfps.dll 2008-12-09 23:02 . 2008-06-23 01:52 24576 ----a-w- c:\windows\system32\mfpmp.exe 2008-12-09 23:02 . 2008-06-22 22:34 2048 ----a-w- c:\windows\system32\mferror.dll 2008-11-30 17:02 . 2008-11-20 09:00 89104 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\NAVENG.SYS 2008-11-30 17:02 . 2008-11-20 09:00 876112 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\NAVEX15.SYS 2008-11-30 17:02 . 2008-11-20 09:00 177520 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\NAVENG32.DLL 2008-11-30 17:02 . 2008-11-20 09:00 1181040 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\NAVEX32A.DLL 2008-11-30 17:02 . 2008-10-15 13:46 750 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\hub.scr 2008-11-30 17:02 . 2008-11-20 09:00 259368 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\ECMSVR32.DLL 2008-11-30 17:02 . 2008-10-15 13:46 99376 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\ERASER.SYS 2008-11-30 17:02 . 2008-10-15 13:46 371248 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\EECTRL.SYS 2008-11-30 17:02 . 2008-11-20 09:00 2393648 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081130.004\CCERASER.DLL 2008-11-26 19:21 . 2008-10-16 21:09 43544 ----a-w- c:\windows\system32\wups2.dll 2008-11-26 19:21 . 2008-10-16 21:13 1809944 ----a-w- c:\windows\system32\wuaueng.dll 2008-11-26 19:21 . 2008-10-16 21:09 51224 ----a-w- c:\windows\system32\wuauclt.exe 2008-11-26 19:21 . 2008-10-16 20:56 1524736 ----a-w- c:\windows\system32\wucltux.dll 2008-11-26 19:21 . 2008-10-16 21:08 34328 ----a-w- c:\windows\system32\wups.dll 2008-11-26 19:21 . 2008-10-16 21:12 561688 ----a-w- c:\windows\system32\wuapi.dll 2008-11-26 19:21 . 2008-10-16 20:55 83456 ----a-w- c:\windows\system32\wudriver.dll 2008-11-26 19:20 . 2008-10-16 13:08 162064 ----a-w- c:\windows\system32\wuwebv.dll 2008-11-26 19:20 . 2008-10-16 12:56 31232 ----a-w- c:\windows\system32\wuapp.exe 2008-11-23 17:06 . 2008-11-20 09:00 89104 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\NAVENG.SYS 2008-11-23 17:06 . 2008-11-20 09:00 876112 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\NAVEX15.SYS 2008-11-23 17:06 . 2008-11-20 09:00 177520 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\NAVENG32.DLL 2008-11-23 17:06 . 2008-11-20 09:00 1181040 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\NAVEX32A.DLL 2008-11-23 17:06 . 2008-10-15 13:46 750 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\hub.scr 2008-11-23 17:06 . 2008-11-20 09:00 259368 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\ECMSVR32.DLL 2008-11-23 17:06 . 2008-11-20 09:00 2393648 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\CCERASER.DLL 2008-11-23 17:06 . 2008-10-15 13:46 99376 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\ERASER.SYS 2008-11-23 17:06 . 2008-10-15 13:46 371248 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081123.004\EECTRL.SYS 2008-11-20 09:00 . 2008-11-20 09:00 89104 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\naveng.sys 2008-11-20 09:00 . 2008-11-20 09:00 876112 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\navex15.sys 2008-11-20 09:00 . 2008-11-20 09:00 259368 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\ecmsvr32.dll 2008-11-20 09:00 . 2008-11-20 09:00 2393648 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\cceraser.dll 2008-11-20 09:00 . 2008-11-20 09:00 177520 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\naveng32.dll 2008-11-20 09:00 . 2008-11-20 09:00 1181040 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\navex32a.dll 2008-11-12 17:03 . 2008-10-15 13:46 99376 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\ERASER.sys 2008-11-12 17:03 . 2008-10-15 13:46 371248 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\BinHub\eeCtrl.sys 2008-11-11 23:54 . 2008-08-26 01:11 211456 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys 2008-11-11 23:54 . 2008-09-05 04:48 1194496 ----a-w- c:\windows\system32\msxml3.dll 2008-11-11 23:54 . 2008-09-05 04:45 2048 ----a-w- c:\windows\system32\msxml3r.dll 2008-11-11 23:54 . 2008-09-10 03:25 1341440 ----a-w- c:\windows\system32\msxml6.dll 2008-11-11 23:54 . 2008-09-10 03:21 2048 ----a-w- c:\windows\system32\msxml6r.dll 2008-10-29 20:54 . 2008-08-12 03:29 441856 ----a-w- c:\windows\system32\win32spl.dll 2008-10-29 20:54 . 2008-08-12 03:29 37376 ----a-w- c:\windows\system32\printcom.dll 2008-10-19 14:38 . 2008-10-19 14:38 -------- d-sh--w- C:\found.001 2008-10-17 16:02 . 2008-09-17 08:00 99376 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\ERASER.SYS 2008-10-17 16:02 . 2008-09-17 08:00 371248 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\EECTRL.SYS 2008-10-17 16:02 . 2008-08-25 07:15 89104 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\NAVENG.SYS 2008-10-17 16:02 . 2008-08-25 07:15 873552 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\NAVEX15.SYS 2008-10-17 16:02 . 2008-08-25 07:15 750 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\hub.scr 2008-10-17 16:02 . 2008-08-25 07:15 177520 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\NAVENG32.DLL 2008-10-17 16:02 . 2008-08-25 07:15 1176944 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\NAVEX32A.DLL 2008-10-17 16:02 . 2008-09-17 08:00 2394160 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\CCERASER.DLL 2008-10-17 16:02 . 2008-08-25 07:15 259440 ----a-w- c:\programdata\Symantec\Definitions\SymcData\virusdefs-2.5-e\20081016.004\ECMSVR32.DLL 2008-09-30 15:43 . 2008-09-30 15:43 1286152 ----a-w- c:\windows\system32\msxml4.dll 2008-09-24 08:29 . 2008-09-24 08:30 -------- d-----w- C:\fcabb68b4cae82f365edb9008d 2008-09-09 21:43 . 2008-06-26 03:22 303616 ----a-w- c:\windows\system32\wmpeffects.dll 2008-08-29 21:57 . 2005-12-21 23:38 -------- d-----w- c:\windows\system32\Adobe 2008-08-14 21:36 . 2008-06-19 03:25 272896 ----a-w- c:\windows\system32\polstore.dll 2008-08-14 21:36 . 2008-06-19 03:25 361984 ----a-w- c:\windows\system32\IPSECSVC.DLL 2008-08-14 21:36 . 2008-06-19 03:25 28672 ----a-w- c:\windows\system32\FwRemoteSvr.dll 2008-08-14 21:36 . 2008-06-19 03:25 61440 ----a-w- c:\windows\system32\winipsec.dll 2008-08-14 21:36 . 2008-04-19 08:13 268800 ----a-w- c:\windows\system32\es.dll 2008-08-14 21:34 . 2008-04-10 05:01 737792 ----a-w- c:\windows\system32\inetcomm.dll 2008-08-14 21:34 . 2008-04-10 02:43 84480 ----a-w- c:\windows\system32\INETRES.dll 2008-08-09 19:27 . 2008-08-09 19:27 -------- d-sh--w- C:\found.000 2008-07-15 14:28 . 2008-07-15 14:28 -------- d-----w- C:\9b4dfa6f03b88e3841a18715 2008-07-13 16:43 . 2008-06-26 00:33 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll 2008-07-13 16:43 . 2008-06-26 00:33 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll 2008-07-13 16:41 . 2008-06-26 03:22 3102720 ----a-w- c:\windows\system32\NlsData004c.dll 2008-07-13 16:40 . 2008-06-26 00:34 7042560 ----a-w- c:\windows\system32\NlsLexicons081a.dll . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-06-10 22:00 . 2005-12-22 00:45 -------- d-----w- c:\programdata\PrevxCSI 2009-04-24 16:22 . 2009-06-10 13:55 827392 ----a-w- c:\windows\system32\wininet.dll 2009-04-24 16:14 . 2009-06-10 13:55 56320 ----a-w- c:\windows\system32\iesetup.dll 2009-04-24 16:14 . 2009-06-10 13:55 78336 ----a-w- c:\windows\system32\ieencode.dll 2009-04-24 16:11 . 2009-06-10 13:55 72704 ----a-w- c:\windows\system32\admparse.dll 2009-04-24 13:53 . 2009-06-10 13:55 26624 ----a-w- c:\windows\system32\ieUnatt.exe 2009-04-24 12:25 . 2009-06-10 13:55 48128 ----a-w- c:\windows\system32\mshtmler.dll 2009-03-03 04:24 . 2009-04-15 21:03 3469280 ----a-w- c:\windows\system32\ntoskrnl.exe 2009-03-03 04:24 . 2009-04-15 21:03 3503584 ----a-w- c:\windows\system32\ntkrnlpa.exe 2009-03-03 04:20 . 2009-04-15 21:03 501760 ----a-w- c:\windows\system32\wbem\WmiPrvSD.dll 2009-03-03 04:20 . 2009-04-15 21:03 130560 ----a-w- c:\windows\system32\wbem\WmiDcPrv.dll 2009-03-03 04:19 . 2009-04-15 21:03 158720 ----a-w- c:\windows\system32\sdohlp.dll 2009-03-03 04:19 . 2009-04-15 21:03 549888 ----a-w- c:\windows\system32\rpcss.dll 2009-03-03 04:19 . 2009-04-15 21:03 24576 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll 2009-03-03 04:16 . 2009-04-15 21:03 97280 ----a-w- c:\windows\system32\iasrecst.dll 2009-03-03 04:16 . 2009-04-15 21:03 53248 ----a-w- c:\windows\system32\iasads.dll 2009-03-03 04:16 . 2009-04-15 21:03 37888 ----a-w- c:\windows\system32\iasdatastore.dll 2009-03-03 04:16 . 2009-04-15 21:03 614912 ----a-w- c:\windows\system32\wbem\fastprox.dll 2009-03-03 02:40 . 2009-04-15 21:03 654336 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe 2009-03-03 01:59 . 2009-04-15 21:03 247296 ----a-w- c:\windows\system32\wbem\WmiPrvSE.exe 2008-07-06 21:05 . 2008-07-06 21:05 56 ---ha-w- c:\programdata\ezsidmv.dat 2008-06-26 00:34 . 2008-07-13 16:40 7964672 ----a-w- c:\windows\system32\NlsLexicons0024.dll 2008-06-26 00:33 . 2008-07-13 16:40 1808896 ----a-w- c:\windows\system32\NlsLexicons0046.dll 2008-06-19 19:12 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat 2008-06-05 04:50 . 2009-04-15 21:03 30208 ----a-w- c:\windows\system32\xolehlp.dll 2008-06-05 04:50 . 2009-04-15 21:03 500736 ----a-w- c:\windows\system32\msdtcprx.dll 2008-01-10 20:16 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Sidebar 2007-06-06 01:14 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail 2007-06-03 10:52 . 2007-06-03 10:52 -------- d-sh--we c:\programdata\Vorlagen 2007-06-03 10:52 . 2007-06-03 10:52 -------- d-sh--we c:\programdata\Startmenü 2007-06-03 10:52 . 2007-06-03 10:52 -------- d-sh--we c:\programdata\Favoriten 2007-06-03 10:52 . 2007-06-03 10:52 -------- d-sh--we c:\programdata\Dokumente 2007-06-03 10:52 . 2007-06-03 10:52 -------- d-sh--we c:\programdata\Anwendungsdaten 2007-06-03 10:52 . 2007-06-03 10:52 -------- d-sh--we c:\program files\Gemeinsame Dateien 2007-03-01 10:34 . 2006-11-02 07:36 53760 ----a-w- c:\windows\system32\drivers\hdaudbus.sys 2007-03-01 10:33 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Photo Gallery 2007-03-01 10:33 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Collaboration 2007-03-01 10:33 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Calendar 2007-03-01 10:33 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Defender 2007-03-01 10:28 . 2007-03-01 10:29 36916 ----a-w- c:\windows\inf\PERFLIB\0407\perfd.dat 2007-03-01 10:28 . 2007-03-01 10:29 36916 ----a-w- c:\windows\inf\PERFLIB\0407\perfc.dat 2007-03-01 10:28 . 2007-03-01 10:29 290748 ----a-w- c:\windows\inf\PERFLIB\0407\perfi.dat 2007-03-01 10:28 . 2007-03-01 10:29 290748 ----a-w- c:\windows\inf\PERFLIB\0407\perfh.dat 2006-11-03 17:04 . 2006-11-03 17:04 1430 ----a-w- c:\windows\system32\drivers\srtspl.inf 2006-11-03 17:04 . 2006-11-03 17:04 1421 ----a-w- c:\windows\system32\drivers\srtspx.inf 2006-11-03 17:04 . 2006-11-03 17:04 1415 ----a-w- c:\windows\system32\drivers\srtsp.inf 2006-11-02 12:59 . 2006-11-02 12:59 -------- d-sh--we c:\programdata\Templates 2006-11-02 12:59 . 2006-11-02 12:59 -------- d-sh--we c:\programdata\Start Menu 2006-11-02 12:59 . 2006-11-02 12:59 -------- d-sh--we c:\programdata\Favorites 2006-11-02 12:59 . 2006-11-02 12:59 -------- d-sh--we c:\programdata\Documents 2006-11-02 12:59 . 2006-11-02 12:59 -------- d-sh--we c:\programdata\Desktop 2006-11-02 12:34 . 2006-11-02 12:34 21504 ----a-w- c:\windows\system32\HotStartUserAgent.dll 2006-11-02 12:33 . 2006-11-02 12:33 331264 ----a-w- c:\windows\system32\mssph.dll 2006-11-02 09:51 . 2006-11-02 08:31 1056360 ----a-w- c:\windows\system32\drivers\ntfs.sys 2006-11-02 09:50 . 2006-11-02 08:51 140392 ----a-w- c:\windows\system32\drivers\scsiport.sys 2006-11-02 09:49 . 2006-11-02 08:35 56936 ----a-w- c:\windows\system32\drivers\UAGP35.SYS 2006-11-02 09:47 . 2006-11-02 08:31 1162656 ----a-w- c:\windows\system32\ntdll.dll 2006-11-02 09:47 . 2006-11-02 08:45 228968 ----a-w- c:\windows\system32\rsaenh.dll 2006-11-02 09:47 . 2006-11-02 08:45 165992 ----a-w- c:\windows\system32\dssenh.dll 2006-11-02 09:47 . 2006-11-02 08:43 121960 ----a-w- c:\windows\system32\basecsp.dll 2006-11-02 09:47 . 2006-11-02 07:12 991232 ----a-w- c:\windows\system32\Narrator.exe 2006-11-02 09:47 . 2006-11-02 08:57 98816 ----a-w- c:\windows\system32\NAPHLPR.DLL 2006-11-02 09:47 . 2006-11-02 08:57 39936 ----a-w- c:\windows\system32\NAPCRYPT.DLL 2006-11-02 09:45 . 2006-11-02 08:44 34304 ----a-w- c:\windows\system32\wlrmdr.exe 2006-11-02 09:44 . 2006-11-02 08:58 83968 ----a-w- c:\windows\system32\cmstp.exe 2006-11-02 09:43 . 2006-11-02 07:01 7680 ----a-w- c:\windows\system32\spwizres.dll 2006-11-02 09:43 . 2006-11-02 07:01 5963264 ----a-w- c:\windows\system32\spwizimg.dll 2006-11-02 09:43 . 2006-11-02 06:59 57344 ----a-w- c:\windows\system32\nlsbres.dll 2006-11-02 09:43 . 2006-11-02 08:43 5120 ----a-w- c:\windows\system32\security.dll 2006-11-02 09:43 . 2006-11-02 08:58 2560 ----a-w- c:\windows\system32\rnr20.dll 2006-11-02 09:42 . 2006-11-02 09:02 107520 ----a-w- c:\windows\system32\RDPENCDD.dll 2006-11-02 09:42 . 2006-11-02 08:11 229376 ----a-w- c:\windows\system32\odbcint.dll 2006-11-02 09:41 . 2006-11-02 07:21 2048 ----a-w- c:\windows\system32\netmsg.dll 2006-11-02 09:41 . 2006-11-02 07:40 15360 ----a-w- c:\windows\system32\netevent.dll 2006-11-02 09:41 . 2006-11-02 07:21 2048 ----a-w- c:\windows\system32\neth.dll 2006-11-02 09:41 . 2006-11-02 08:29 61440 ----a-w- c:\windows\system32\msvcrt40.dll 2006-11-02 09:41 . 2006-11-02 06:52 58368 ----a-w- c:\windows\system32\msobjs.dll 2006-11-02 09:40 . 2006-11-02 08:58 3072 ----a-w- c:\windows\system32\msafd.dll 2006-11-02 09:40 . 2006-11-02 06:52 145920 ----a-w- c:\windows\system32\msaudite.dll 2006-11-02 09:23 . 2006-11-02 08:56 93184 ----a-w- c:\windows\system32\drivers\bridge.sys 2006-11-02 09:20 . 2006-11-02 10:25 130048 ----a-w- c:\windows\system32\drivers\drmk.sys 2006-11-02 09:20 . 2006-11-02 10:33 287440 ----a-w- c:\windows\system32\perfi009.dat 2006-11-02 09:20 . 2006-11-02 10:22 287440 ----a-w- c:\windows\inf\PERFLIB\0000\perfi.dat 2006-11-02 09:20 . 2006-11-02 10:22 287440 ----a-w- c:\windows\inf\PERFLIB\0000\perfh.dat 2006-11-02 09:20 . 2006-11-02 10:33 30674 ----a-w- c:\windows\system32\perfd009.dat 2006-11-02 09:20 . 2006-11-02 10:22 30674 ----a-w- c:\windows\inf\PERFLIB\0000\perfd.dat 2006-11-02 09:20 . 2006-11-02 10:22 30674 ----a-w- c:\windows\inf\PERFLIB\0000\perfc.dat 2006-11-02 09:14 . 2006-11-02 09:14 18944 ----a-w- c:\windows\system32\drivers\usbprint.sys 2006-11-02 09:14 . 2006-11-02 10:25 9216 ----a-w- c:\windows\system32\drivers\serscan.sys 2006-11-02 09:04 . 2006-11-02 09:04 878080 ----a-w- c:\windows\system32\drivers\PEAuth.sys 2006-11-02 09:04 . 2006-11-02 10:25 39936 ----a-w- c:\windows\system32\drivers\WpdUsb.sys 2006-11-02 09:03 . 2006-11-02 09:03 3072 ----a-w- c:\windows\system32\dpnlobby.dll 2006-11-02 09:03 . 2006-11-02 09:03 3072 ----a-w- c:\windows\system32\dpnaddr.dll 2006-11-02 09:03 . 2006-11-02 09:03 242688 ----a-w- c:\windows\system32\drivers\rdpdr.sys 2006-11-02 09:02 . 2006-11-02 09:02 124416 ----a-w- c:\windows\system32\rdpdd.dll 2006-11-02 09:02 . 2006-11-02 09:02 160256 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2006-11-02 09:02 . 2006-11-02 09:02 23552 ----a-w- c:\windows\system32\drivers\tssecsrv.sys 2006-11-02 09:02 . 2006-11-02 09:02 14336 ----a-w- c:\windows\system32\tsddd.dll 2006-11-02 09:02 . 2006-11-02 09:02 6144 ----a-w- c:\windows\system32\drivers\RDPENCDD.sys 2006-11-02 09:02 . 2006-11-02 09:02 6144 ----a-w- c:\windows\system32\drivers\RDPCDD.sys |
|
12.06.2009, 10:25
| #12 |
| | kann nicht weiter an meiner Präsentation arbeiten (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5674352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-11-16 815104] "ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-07-11 90112] "LogitechCommunicationsManager"="c:\program files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-02-08 488984] "LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam10\QuickCam10.exe" [2007-02-08 774168] "LVCOMSX"="c:\program files\Common Files\Logitech\LComMgr\LVComSX.exe" [2007-02-06 252704] "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2006-10-24 107112] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "PrevxCSI"="c:\program files\Prevx\prevx.exe" [2005-12-22 4368952] "RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2006-11-09 3784704] c:\users\ali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ wkcalrem.LNK - c:\program files\Common Files\microsoft shared\Works Shared\WkCalRem.exe [2002-6-26 24651] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "UacDisableNotify"=dword:00000001 "InternetSettingsDisableNotify"=dword:00000001 "AutoUpdateDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules] "{B11C7FA0-33EF-4F23-9B2B-C1E8CCD7AF47}"= UDP:c:\program files\Common Files\aol\acs\AOLDial.exe:AOL Optimized Dial-In "{EA207FEE-32EB-40ED-92EC-D4C53F3FE099}"= TCP:c:\program files\Common Files\aol\acs\AOLDial.exe:AOL Optimized Dial-In "{45F9BEC4-E00D-4C16-BE95-07AA1F5CBE47}"= UDP:c:\program files\Common Files\aol\acs\AOLacsd.exe:AOL Optimized Dial-In "{F7C7218E-A162-4D89-8304-F90386AFAC6B}"= TCP:c:\program files\Common Files\aol\acs\AOLacsd.exe:AOL Optimized Dial-In "{85A9928A-9A25-469C-90F0-9E34705EA072}"= UDP:c:\program files\AOL 9.0 VR\waol.exe:AOL "{CD0F6294-13E4-4AA5-AC17-95DEC26B14CC}"= TCP:c:\program files\AOL 9.0 VR\waol.exe:AOL "{B1F636EA-2BAC-4D23-B0AB-C13DB0DD5071}"= UDP:c:\program files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:AOL TopSpeed "{0B2B02FC-6382-4580-A66A-ED0E65BDEFC8}"= TCP:c:\program files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:AOL TopSpeed "{FD4B022D-E112-4CC7-A085-8D486D07069A}"= UDP:c:\program files\Common Files\aol\Loader\aolload.exe:AOL Loader "{7B5028F2-A2AA-4F57-950F-B3403B5F2537}"= TCP:c:\program files\Common Files\aol\Loader\aolload.exe:AOL Loader "{D72D6687-0A1F-4848-9BBC-F29406913479}"= UDP:c:\program files\Common Files\aol\System Information\sinf.exe:AOL System Information "{9E047820-2355-4C0A-A978-3D4588620860}"= TCP:c:\program files\Common Files\aol\System Information\sinf.exe:AOL System Information "{2D5B2FF0-BF07-4FEE-AF92-1114A105262D}"= UDP:c:\program files\Skype\Phone\Skype.exe:Skype "{788C35DD-8C8E-45AF-A319-C93FE94F6213}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone) "TCP Query User{AF1B2EC7-FA5D-49DB-9F39-4116EB9F8A7C}c:\\program files\\hercules\\hercules blog webcam\\station2.exe"= UDP:c:\program files\hercules\hercules blog webcam\station2.exe:Hercules Webcam Station Evolution "UDP Query User{7807F0B0-94C3-425E-BD6C-1724EDC250D5}c:\\program files\\hercules\\hercules blog webcam\\station2.exe"= TCP:c:\program files\hercules\hercules blog webcam\station2.exe:Hercules Webcam Station Evolution "{36E57111-6645-45AD-8D67-B5B948189B52}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone) "{93C8E45B-2D90-4B27-B123-98391C2D4F90}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone) "{6888CB65-538D-4D28-A252-567DB40648AC}"= UDP:c:\users\ali\AppData\Local\Temp\7zS50.tmp\SymNRT.exe:Norton Removal Tool "{B27D77EF-3B1D-483D-8274-2FDA2D4A0447}"= TCP:c:\users\ali\AppData\Local\Temp\7zS50.tmp\SymNRT.exe:Norton Removal Tool "{25D5AFED-4ADD-4C52-BE5D-12C0B116CC4F}"= UDP:c:\users\ali\AppData\Local\Temp\7zSD989.tmp\SymNRT.exe:Norton Removal Tool "{ADB6E321-48D5-48D7-8FFA-106675DBD3C4}"= TCP:c:\users\ali\AppData\Local\Temp\7zSD989.tmp\SymNRT.exe:Norton Removal Tool "{AB1FE9EF-7D84-4BB1-97DF-EA78C97DDAF4}"= UDP:c:\users\ali\AppData\Local\Temp\7zS3ACE.tmp\SymNRT.exe:Norton Removal Tool "{679CC036-D20D-45DC-B821-46E77281F08B}"= TCP:c:\users\ali\AppData\Local\Temp\7zS3ACE.tmp\SymNRT.exe:Norton Removal Tool [HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System] "DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic| R0 pxscan;pxscan;c:\windows\System32\drivers\pxscan.sys [22.12.2005 01:45 22024] R0 pxsec;pxsec;c:\windows\System32\drivers\pxsec.sys [22.12.2005 01:45 27656] R2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [10.06.2009 13:11 108289] R2 Automatisches LiveUpdate - Scheduler;Automatisches LiveUpdate - Scheduler;c:\program files\Symantec\LiveUpdate\AluSchedulerSvc.exe [01.03.2007 03:10 194240] R3 rt61x86;Ralink RT61 Wireless Driver for Windows Vista;c:\windows\System32\drivers\netr61.sys [11.05.2007 16:28 357376] S2 CSIScanner;CSIScanner;c:\program files\Prevx\prevx.exe [22.12.2005 01:45 4368952] S3 APL531;Hercules Blog Webcam;c:\windows\System32\drivers\BLvid.sys [20.06.2007 22:30 275072] S3 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\idsdefs\20061025.029\IDSvix86.sys [01.03.2007 03:18 202872] --- Andere Dienste/Treiber im Speicher --- *NewlyCreated* - COMHOST [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc . Inhalt des "geplante Tasks" Ordners . - - - - Entfernte verwaiste Registrierungseinträge - - - - HKLM-Run-TQ566808 - D:\Setup.exe . ------- Zusätzlicher Suchlauf ------- . uStart Page = hxxp://format.packardbell.com/cgi-bin/redirect/?country=DE&range=AD&phase=8&key=IESTART uSearchURL,(Default) = hxxp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR TCP: {4DFD7D6F-3627-4B2E-BE65-D99C3B7ABCAC} = 195.50.140.178 195.50.140.114 TCP: {723AC188-7469-4DEF-90D9-87C65F58B6E1} = 213.191.74.11 213.191.92.82 TCP: {F6064D3A-4764-47CB-9B18-9D391CBC9C54} = 195.50.140.250 195.50.140.114 DPF: {E55FD215-A32E-43FE-A777-A7E8F165F557} - hxxp://80.237.209.20/objects/NpFv501.dll . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2005-12-22 15:37 Windows 6.0.6000 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostarteinträge... Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** . Zeit der Fertigstellung: 2005-12-22 15:44 ComboFix-quarantined-files.txt 2005-12-22 14:44 Vor Suchlauf: 9 Verzeichnis(se), 55.986.626.560 Bytes frei Nach Suchlauf: 9 Verzeichnis(se), 55.888.138.240 Bytes frei 342 --- E O F --- 2005-12-22 02:20 PS: ICH HABE DAS IN 2 TEILEN GEMACHT JETZT HAST DU WAS DU HABEN WOLLTEST WAS MUSS ICH JETZT MACHEN ??? |
|
12.06.2009, 17:10
| #13 |
| /// AVZ-Toolkit Guru | kann nicht weiter an meiner Präsentation arbeiten Wichtige Frage: Hast du manuell eine Bedrohung die Prevx gemacht hat ignoriert bzw. die Datei zu den Ausnahmen hinzugefügt?? So sieht das nämlich im log aus und ich kann mir nicht erklären wie das sonst zu Stande kommen kann. Prevx hat doch was gefunden oder? Was hast du in dem nachfolgendem Fenster angeklickt? "Ignor" oder?! Poste bitte nocheinmal ein Prevx Deep Scan log. Schalte den Rechner danach nicht aus! Und starte ihn nicht neu bis ich dir weitere Anweisungen gebe. Da sitzt ein Schädling im System der bei jedem Systemstart seinen Namen ändert. Um den zu erwischen ohne, dass du dir Prevx kaufst muss ich den Dateinamen haben und wir müssen ihn während der gleichen Sitzung löschen.
__________________ - Sämtliche Hilfestellungen im Forum werden ohne Gewährleistung oder Haftung gegeben - |
|
12.06.2009, 17:37
| #14 |
| | kann nicht weiter an meiner Präsentation arbeiten wieso kann ich die das nicht einfach einfügen? das ist zu groß, kann es also nicht alles in einem thread reinposten muss es teilen :-( |
|
12.06.2009, 17:40
| #15 |
| | kann nicht weiter an meiner Präsentation arbeiten [G] c:\windows\system32\themeui.dll [PX5: 8A7ECF2A00FF50DC643E09F191FC49002691AAE5] [G] c:\windows\system32\xmlfilter.dll [PX5: B6B8E38B002CB3ADB0C001A6B0FF5600CF3CD545] [G] c:\program files\windows collaboration\wincollabfile.dll [PX5: F86A21EC008042C982BC028991541F0059F6B211] [G] c:\windows\system32\docprop.dll [PX5: 25EAD00E005ECA5E900100816A51960081586BFD] [G] c:\windows\system32\vbscript.dll [PX5: 2FFF79BE00A6509E5020069B04B39A0051E55F83] [G] c:\windows\system32\ddraw.dll [PX5: 6CF3345D00EC4BF81017083DC3433C006DFE21A5] [G] c:\windows\system32\dplayx.dll [PX5: 4C543040002B770C400903839FD1C400BC43DD6A] [G] c:\windows\system32\xmlprovi.dll [PX5: 9D9F3AF200E9729540B0009F3955CD00568D54B1] [G] c:\windows\system32\win32spl.dll [PX5: A9EF6ADC00893593BE67062044638500C0C7BEA3] [G] c:\windows\system32\wiavideo.dll [PX5: 68386C9300FF6A4EACFE01A695234500BD78816E] [G] c:\windows\system32\deskmon.dll [PX5: 1364AB58007E756AAEF800651F49A800702BC785] [G] c:\windows\system32\ime\shared\mscand20.dll [PX5: 43CFA65D002A6550D2FD08BB042259009282C666] [G] c:\windows\system32\speech\engines\sr\srloc.dll [PX5: A4FC7825009F028A226D064605F2CF00EFE2890A] [G] c:\program files\windows collaboration\wincollabcontacts.dll [PX5: E581D2520005A145DCFB00B227005D0067A503F2] [G] c:\windows\system32\prntvpt.dll [PX5: 270F22460042085BD2D40156B986BF00AFF83850] [G] c:\windows\system32\accessibilitycpl.dll [PX5: EDC712A100B58AAA6272267619F148005A09EBDB] [G] c:\windows\system32\mshta.exe [PX5: 5730EBA300D16E23B2420074D2A6EE009CB602F4] [G] c:\windows\system32\psisdecd.dll [PX5: E489975900A2BDCE760D043342721400803962B8] [G] c:\program files\windows collaboration\wincollabelev.dll [PX5: 47BE272700EDC2DC028101B5B7C48D000E1D2590] [G] c:\windows\system32\hhctrl.ocx [PX5: ECE7269800CFE517023908C377782900CC499457] [G] c:\windows\system32\sndvolsso.dll [PX5: 0D89FF98004A3C81D66D0208598C8100C854B619] [G] c:\windows\system32\vbicodec.ax [PX5: 9CD78A3A00F758C0825902DEC6B73600B2E25B94] [G] c:\windows\system32\msutb.dll [PX5: 49269CBE000069F27A9C021DBAEB93009A951C38] [G] c:\windows\system32\raserver.exe [PX5: E0B646600086576178FA025B835D5900336DBF77] [G] c:\windows\system32\d3dxof.dll [PX5: E219F82400DFB4C6D0EC0069BEEABB002A77B926] [G] c:\windows\system32\dmusic.dll [PX5: C808D244007A57DB8CD101E9C83DD600132D7F41] [G] c:\program files\common files\speechengines\microsoft\tts20\msttsdecwrp.dll [PX5: D69228F1003AEDCCB81C0093DC4BCC006D54A5CE] [G] c:\windows\system32\fdwcn.dll [PX5: 898A582300EB79EA000C01222F40FE0073BD0E67] [G] c:\windows\system32\atl.dll [PX5: 285826750078FA3F180401EDF3402E005914F9FC] [G] c:\windows\system32\wpdshext.dll [PX5: BC7C162B005CAC58B6062616E0521800BD24E834] [G] c:\windows\system32\colbact.dll [PX5: 08F037D90070E0FCF4BF007D5B201300A61771C4] [G] c:\windows\system32\iepeers.dll [PX5: 7B85592500503AC7F0CA02BCB9FD1D00FD60E586] [G] c:\windows\system32\wlangpui.dll [PX5: B9FFCBFF006FA830F431054F22CB3E004DA088F8] [G] c:\windows\system32\playsndsrv.dll [PX5: A901406B007285F84632006ED745DA00462460C9] [G] c:\windows\system32\cmstplua.dll [PX5: D75041CE0041E81B38410007349FE700CC188B61] [G] c:\windows\system32\fdwnet.dll [PX5: B87EB99700BC3FA2604B008B8AC116005AEDA737] [G] c:\windows\system32\xpsshhdr.dll [PX5: A7576DEC0014CA44BE4A08A43126C6009A719C1E] [G] c:\windows\system32\ntshrui.dll [PX5: 3FD5621A00B0A223862C0454B72E5F00CBCEFA46] [G] c:\windows\system32\dsound.dll [PX5: 136CD5C2008C895FCC1C0663130BA400C9D563D4] [G] c:\windows\system32\mssrch.dll [PX5: B121933B0069E71B56D915DEC4B2C5000566C20C] [G] c:\windows\system32\extmgr.dll [PX5: E01CFA030095EA9B06B702B6426A8700546CB4E1] [G] c:\windows\system32\tdc.ocx [PX5: A490C3D600C7611D040301BCAA012800329D5876] [G] c:\windows\system32\deskadp.dll [PX5: 96D779EF003A7178BA89007D90BB0B00096A5D32] [G] c:\windows\system32\termmgr.dll [PX5: 31C928400034B9386CB6053ACA0BE800279FB8BC] [G] c:\windows\system32\mydocs.dll [PX5: BCB1FE6C006D56AD12360241F0D35C00F3A46F92] [G] c:\windows\servicing\cbsapi.dll [PX5: ABB2BE84001A17083A65004F8DD9F700AAAF706A] [G] c:\windows\system32\syncui.dll [PX5: B770CDA9005EDF81AEEE02F9B2DFA4004A82D87A] [G] c:\windows\system32\intl.cpl [PX5: 9875EDA30023DBCB241A053B3C2E0700BFAC9D37] [G] c:\windows\system32\shwebsvc.dll [PX5: E90D60DA00FA43907E0C0677C11C2100A43309EF] [G] c:\windows\system32\wscui.cpl [PX5: A10969C5007FD865B82C19F584789E00DCEB0858] [G] c:\windows\system32\wmpeffects.dll [PX5: FF9594DB0071D9FBA29704DF28E3F000517AFE17] [G] c:\windows\system32\rascfg.dll [PX5: 49F6E15F000DC46630970186A5D98C0000E36513] [G] c:\windows\system32\devmgr.dll [PX5: 0E1E6446008E5764C27A05D5DCFCF20026077A2B] [G] c:\windows\system32\wmadmoe.dll [PX5: 1965B76D00B49D1A126811C0E4003C0029FE6726] [G] c:\windows\system32\dsprop.dll [PX5: 03F97CC300908A411883025E2AA5A60046FD9C4B] [G] c:\windows\system32\mpeg2data.ax [PX5: 74186302003D49CF0C140193E68CE3002B8F0344] [G] c:\windows\system32\netcfgx.dll [PX5: 0DD1C7FB00376E8EDA9405615D649700DC76400B] [G] c:\windows\system32\iasrad.dll [PX5: 85A575A500C90D6548B0023D9EDDCE0020D42AC2] [G] c:\windows\system32\portabledevicewmdrm.dll [PX5: 505D93DC00F88D03FE370284E339AC000F8DEA43] [G] c:\windows\system32\dmime.dll [PX5: ACECE5B3002CC022BABC02A8C48AB800A1CDB2CF] [G] c:\windows\system32\tabbtnex.dll [PX5: 40CC6ACE0063EB71CC8A0006340CB90046BBAA38] [G] c:\windows\system32\winsockhc.dll [PX5: 47310503000D5669BE8200709471B30063837A7A] [G] c:\windows\system32\ntlanui2.dll [PX5: D6F8CE2D00876EFB3E5E00785B354D00C8797C96] [G] c:\windows\system32\photowiz.dll [PX5: 6E2D39FC008EBF9072CD04CA906A0200B1BAACC3] [G] c:\windows\system32\spp.dll [PX5: E8FCB31D00EAB5A51C610289E1AE1500AACD5E96] [G] c:\windows\system32\msimtf.dll [PX5: 6932A40300516BE37AE500F76FECCA00FA886694] [G] c:\windows\system32\racpldlg.dll [PX5: D2FDB0D40058FBCDA00F00AFCB6360004035C8A4] [G] c:\windows\system32\com\comadmin.dll [PX5: 72C8258300D6CC3512ED03DE24047A00F9B8A6BB] [G] c:\windows\system32\wdc.dll [PX5: 0AC2A5750092FFCE928C0F9E39A34F00B9CCE899] [G] c:\windows\system32\fundisc.dll [PX5: 8BF14C5700EFE7033C22020F451E4400FB9FFC3C] [G] c:\windows\system32\xwreg.dll [PX5: AC538A4F00C0BA5336AA013ABC6A4A00E3428F80] [G] c:\windows\system32\dmsynth.dll [PX5: 75881022000307BD9C9F01DD8A0B6900816E080E] [G] c:\windows\system32\wlanmmhc.dll [PX5: 2EB3134C0057AC83A286006B577A10003332508A] [G] c:\windows\system32\wshext.dll [PX5: CECD9F50004FAB1D102C017EB313A200907898D4] [G] c:\windows\system32\iashlpr.dll [PX5: 535EAD1400F29AE0F85500F4A90FAA0005B27D03] [G] c:\windows\system32\acppage.dll [PX5: 6BA9187B00E9B62898E60016A8E9C1002B023CFC] [G] c:\windows\system32\icsigd.dll [PX5: 2FFEB29C001414E7FCBE02B90AC715007BD5FC77] [G] c:\windows\system32\rasqec.dll [PX5: 3C0289B9002385B906CF01531C4BD3008CCAFE31] [G] c:\windows\system32\imapi.dll [PX5: BF261AC000DF848B9E9101C2714705002F2091A8] [G] c:\program files\windows sidebar\sbdrop.dll [PX5: D75524FD00B00E7C02BE015AEFB31E002D34EE04] [G] c:\windows\system32\msfeedsbs.dll [PX5: B53A2D6500B781D9CAEB00D579334400830B1BCA] [G] c:\windows\system32\osblprov.dll [PX5: 8D30426100715433A68D001E742DEC0048573006] [G] c:\windows\system32\odbcconf.dll [PX5: 273A105F00FAAA14A06C006920D58200B43E05BC] [G] c:\windows\system32\smbhelperclass.dll [PX5: 346B07590087B6E97C2A002230D8920088B5FFE5] [G] c:\windows\system32\wshcon.dll [PX5: F9D6FF68002A6329904400974D8786007D535E3F] [G] c:\windows\system32\mimefilt.dll [PX5: 4F00B835008D9AF38A7B000416F2FC00A9E44ED8] [G] c:\windows\system32\itss.dll [PX5: 172F16A0009235ED2A7B020BFEF0130074C5FFC0] [G] c:\program files\movie maker\videocameraautoplaymanager.exe [PX5: 9EF5126000206D7DE4CB00DF77F50800023B7ABA] [G] c:\windows\system32\ddrawex.dll [PX5: 53C6E03E0028DB00767900BFB8663C004E6EC18F] [G] c:\windows\system32\puiapi.dll [PX5: 5E66839C004889018A4702770D0B62000FDA14D2] [G] c:\windows\system32\msnetobj.dll [PX5: 37D3004400053369BE77025DC0106700F9A198D2] [G] c:\windows\system32\mfwmaaec.dll [PX5: 29973A230018010B642109CEF19581004724E5CC] [G] c:\windows\system32\iaspolcy.dll [PX5: 64A479AC000E2D8B84F000532306EF007C72EDC3] [G] c:\program files\movie maker\capturewizard.exe [PX5: E56A007E003C5A05EC4E2C54658144006BFB9162] [G] c:\windows\system32\iasacct.dll [PX5: 44CE1C1F00AC21D8D06600025AC98A009FB67D51] [G] c:\windows\system32\timedate.cpl [PX5: 17D02C8D00024DB8E69D0ACA77D5C500C0D79ADE] [G] c:\windows\system32\diskcopy.dll [PX5: 97C776E5000465A5EEE2169C530FA7001C01396D] [G] c:\windows\system32\portabledevicewiacompat.dll [PX5: 1D00D5380057BD27E8B9013FC0CE41009BDBDCE2] [G] c:\windows\system32\thumbcache.dll [PX5: 1B03ACB000BE60CDFE4C007EBD7B91008DD0ED9F] [G] c:\windows\system32\wavemsp.dll [PX5: E816A47D00BA20C36646038148B81700A97F9081] [G] c:\windows\system32\amstream.dll [PX5: D3BBF03D007D35DC123D01D747A5B1000E810731] [G] c:\windows\system32\printui.dll [PX5: 264FAF35007FF57518A90D46F39E5A0076B0AA41] [G] c:\windows\system32\slcinst.dll [PX5: 622BDA04003F22A19C3B00AB6A7EDE00D3685815] [G] c:\windows\system32\xwtpw32.dll [PX5: 236E805F005CAE7D747001C7301C5B007591442F] [G] c:\windows\system32\dmdlgs.dll [PX5: 6269293700958720FA6D05211D9A3B0071473843] [G] c:\windows\system32\shimgvw.dll [PX5: B013132100325DB3F23A017D8073CF00BA54DA88] [G] c:\windows\system32\upnpcont.exe [PX5: 9389E58B005FE8B2580B008CB6FFEA00BFADFAC9] [G] c:\windows\system32\fdproxy.dll [PX5: 86C0985F0033D5345296004B7799F10016E99F98] [G] c:\windows\system32\shgina.dll [PX5: A263B31C00758EA60CFE0125159AD60082AA9A2C] [G] c:\windows\system32\iassvcs.dll [PX5: B3CFDBC20048EE24FC8A008CE27DA300C36887BB] [G] c:\windows\system32\rasgcw.dll [PX5: DBF21A5E006DA280CA9C095737C0E900403343EF] [G] c:\windows\system32\ksxbar.ax [PX5: 0B91655A0027A86FAAC400D6F320E3008931ABFB] [G] c:\windows\system32\dimsjob.dll [PX5: 5B54D44400B694728AA20033B1D94A0046E7086D] [G] c:\windows\system32\iassam.dll [PX5: B3F1D11F00716EB080CE0230D01CEB00718B233D] [G] c:\program files\windows collaboration\wincollabproj.dll [PX5: F435A72E004114D266B003C83973CC00944001EC] [G] c:\windows\system32\msnp.ax [PX5: DA8F6325005DF3183C4E013BC4C9AB00C337FF06] [G] c:\windows\system32\gameux.dll [PX5: 4EB7D8530017640CBED619E8F6281A0086E5DA42] [G] c:\windows\system32\inseng.dll [PX5: 3DC77D8700D1402D6E6201AB2BEFEC00930DAE92] [G] c:\windows\system32\portabledeviceclassextension.dll [PX5: B571A32D000A4E30742D01F55A0493009B23E907] [G] c:\program files\windows photo gallery\photoclassic.dll [PX5: 9FF1CA8700C99016763C01584D6C1F00FCB018FD] [G] c:\windows\system32\licmgr10.dll [PX5: F15936EA0042EA12A4F900E4BFFFA600F501F39F] [G] c:\windows\system32\iasads.dll [PX5: 677D5FD40062FC8AD0C200828B188300D2F08E4E] [G] c:\windows\system32\propsys.dll [PX5: 59F8573400235619321C0B9F10EEB4004FD29383] [G] c:\windows\system32\keymgr.dll [PX5: CC84BE2500EE8EF7688A022D94495B001229A931] [G] c:\windows\system32\helppaneproxy.dll [PX5: 447FDC7400C5D35A043101CE0B5941006080CB11] [G] c:\windows\system32\napdsnap.dll [PX5: 1D0BC8CC0081D7B408BA017D7274B00074F2DC97] [G] c:\windows\system32\speech\engines\sr\spsreng.dll [PX5: 537CAFAD00C89762FC120C598AFF1A00B11CAEF0] [G] c:\windows\system32\wcnwiz.dll [PX5: 0BF309BD007397F40EB01591AB9900008A949B7E] [G] c:\windows\system32\wmphoto.dll [PX5: 1715ED1F0066A1363A330452083FED0006158E56] [G] c:\windows\system32\ndfetw.dll [PX5: 1997209E009EABD172AC00F4A1A3C300B1575069] [G] c:\windows\system32\fde.dll [PX5: 0383E79100702DBDFE8701BB40EEB800B8822729] [G] c:\windows\system32\rpcndfp.dll [PX5: 38E0BBBE004B1C22AA5700048FE8EB0054F95272] [G] c:\windows\system32\sxsstore.dll [PX5: A9831EAB00F7FA9F566900D65BDB7E009DEBC362] [G] c:\windows\system32\taskschdps.dll [PX5: 0391DE890068201F1E2A01AEBA73910033A0B472] [G] c:\windows\system32\encapi.dll [PX5: 98053B7600E41130505100847C808B00C15E0769] [G] c:\windows\system32\netcenter.dll [PX5: D426A4D400116B31F48821D0ACDB7A003BFDA9AA] [G] c:\windows\system32\wpccpl.dll [PX5: E05774F300D48CCF1EDB18810C7538001807AA1C] [G] c:\windows\system32\wups2.dll [PX5: C42F62EC18C4806CAA68006E7A0A2200A2691D5B] [G] c:\windows\system32\findnetprinters.dll [PX5: FB662421000A2ADEFCBC00C95BA9B9009307431E] [G] c:\windows\system32\wmvxencd.dll [PX5: 1CCE0EF700BE7CC308F60AB5358A2500550FF064] [G] c:\windows\system32\dfrgfat.exe [PX5: 7DFA527700DA34B1744601B864452E001BE57C75] [G] c:\windows\system32\wisptis.exe [PX5: 871370F400196270BA50031C01248B007038BCD6] [G] c:\windows\system32\signdrv.dll [PX5: 5A6BA9C500245CB6A49900B0E15FA000A0E1C554] [G] c:\windows\system32\sdshext.dll [PX5: 7BEB87E900915C0A7E0701C54D68490037D713B0] [G] c:\program files\windows defender\msmpcom.dll [PX5: 341C4E906804D9243E7403495001B000E192FD15] [G] c:\windows\system32\gpedit.dll [PX5: 54F2F9BA0089B19A486C0EAF8C6234007E00687E] [G] c:\windows\system32\chtbrkr.dll [PX5: 1B330C1C0040C90620B35D96395279008F233F06] [G] c:\windows\system32\mssha.dll [PX5: 637347F400611E6D82C6028E0DE68F0083BFE6FC] [G] c:\windows\system32\wmpshell.dll [PX5: 97781E0600B655818CC8017BB6F0EB00CBEFEED0] [G] c:\windows\system32\colorcnv.dll [PX5: D5220F2D00DFCFB976FF0282AF0DCE000BE86AC0] [G] c:\program files\common files\system\msadc\msdaprst.dll [PX5: 5C12773800FF9259E0CA03537EFBA600BB852375] [G] c:\windows\system32\wmpps.dll [PX5: 806CCE78009B983D006E0214D4BB5800B12F06E5] [G] c:\windows\system32\smiengine.dll [PX5: 724ED11F005CBB65B0200AF8488E5300E3B5D959] [G] c:\windows\system32\dswave.dll [PX5: 2394133800A4CA8052E6007B3876D4009A8A895E] [G] c:\windows\system32\catsrvps.dll [PX5: 694DF67B003A29FD5CCA001CAC12BE00ED6EF4FC] [G] c:\windows\system32\dmdskmgr.dll [PX5: 04D434040066CC52CC5E027D36BF2D005FD508D0] [G] c:\windows\system32\comrepl.dll [PX5: 687B4E340088C64D6825014FDE9FF000A61ABB8C] [G] c:\windows\system32\msxml6.dll [PX5: C4888CA700387A26781F14FA4438D800BB987CE1] [G] c:\windows\system32\sendmail.dll [PX5: C90256A800BE343910DC0148FE3CBD009729EADE] [G] c:\windows\system32\hlink.dll [PX5: E2A3AC4800002D6C488A0121ED960F007FACD7F3] [G] c:\windows\system32\dmband.dll [PX5: C88AB28F00DB091E76A3001F86403300B0A6CCB2] [G] c:\windows\system32\zipfldr.dll [PX5: 5B3AFB5F001A5C552A66055C3F46A1008E4CF969] [G] c:\windows\system32\wpdsp.dll [PX5: 4D623BB6009D8DFE544805A738C0D1004B5187B2] [G] c:\windows\system32\evr.dll [PX5: F35135EB006DC25C3C3507FDA0618500181D20BB] [G] c:\windows\system32\networkmap.dll [PX5: 40F993B300600721E0532E528F5A3B003933A573] [G] c:\windows\system32\propdefs.dll [PX5: E0D1E669005A3AE7009501BF661660000511B0B1] [G] c:\program files\common files\system\ado\msadrh15.dll [PX5: B11F2ED8006E44DD00F401D2AEBEA3000C6BB3E6] [G] c:\windows\system32\vdsldr.exe [PX5: 446470150060AE5F60F7007D258FA3004A2AD000] [G] c:\windows\system32\pngfilt.dll [PX5: EC5D363A0055F14EAEDE00D6CBA32300A2E42EAD] [G] c:\windows\system32\dmloader.dll [PX5: DB733DEF0099313D964D0060DCEB0600191BCEC4] [G] c:\windows\system32\perfcentercpl.dll [PX5: 93B703090042B2B208C01324CF233A007E1A8E7D] [G] c:\windows\msagent\mslwvtts.dll [PX5: 9DE193AD008E78F4B074001ACE8E7300B78E072E] [G] c:\windows\system32\themecpl.dll [PX5: 6BBBB4F400B00A225C1A11BF1C65D100F5DACDD4] [G] c:\windows\system32\txflog.dll [PX5: 75D130C100A343895C0B01E582973500B8497201] [G] c:\windows\system32\gcdef.dll [PX5: 06764E8F006CE355D84401D7F0C35D005A62438C] [G] c:\program files\common files\system\msadc\msdfmap.dll [PX5: 131946E300ADBE1AA0BA001C752D2A00D383DD82] [G] c:\windows\system32\umb.dll [PX5: 1064684300FB40AEC0C400513F66D70059361901] [G] c:\windows\system32\wpdshextautoplay.exe [PX5: 3A5F5CDF00A68CE374D70089E957B800BD5C8D14] [G] c:\windows\system32\vbisurf.ax [PX5: BD7B3431002C856A7A710052545ABE0083D1004A] [G] c:\windows\system32\bcdsrv.dll [PX5: 5FC9C753006CE308A63E013E5CE483005E2CFF4E] [G] c:\windows\system32\touchx.dll [PX5: 21983C4B0079725EA4711F0878874500A91CA1F6] [G] c:\windows\system32\ndishc.dll [PX5: F3D4A34D00E22E82A67C002394A7B80038452E34] [G] c:\windows\system32\ime\imejp10\applets\imjpclst.dll [PX5: 2E379CC80086A5327EB8095C67B69B0010554D8E] [G] c:\windows\system32\alttab.dll [PX5: 742EF054001E9D10A89A002AE6EDCE009EAFAE2B] [G] c:\windows\system32\dfshim.dll [PX5: B61F8E51F89DD20A79E601F7468B08006786AAC7] [G] c:\windows\system32\wmvsdecd.dll [PX5: 8616478E0046726D1AE815613069AD00C90D9DBD] [G] c:\windows\system32\srwmi.dll [PX5: 75E3BB70009337185EE9008AA3623200CEC94C78] [G] c:\windows\system32\wmspdmod.dll [PX5: 446A8F6A00DF57A83A8109D50F8AF80098DB718B] [G] c:\windows\system32\credui.dll [PX5: F274F1C10087A9DDB8FF023171607000E1FF880F] [G] c:\windows\system32\smartcardcredentialprovider.dll [PX5: AB33B94300E2E59FF2C8019988EAEE0096CE695D] [G] c:\windows\system32\wmvdecod.dll [PX5: 4AA9C921002AD25DA0C517ABF5FD15004B4DBC2F] [G] c:\windows\system32\certenroll.dll [PX5: D303714F004A4CD9DE06100D67FA1F007DC2CD93] [G] c:\windows\system32\tschannel.dll [PX5: 5A128AF300550F2742F2003B3C2E0700E81AC6BF] [G] c:\windows\system32\srcore.dll [PX5: 92F2B9280019165AAC65051683BCE900B1C2173C] [G] c:\windows\system32\sllua.exe [PX5: 2C4B842000BB6E55D84802791895EF00D22A7EA4] [G] c:\windows\system32\mssph.dll [PX5: FB6706BB000B2AB40E9C05ADA26F5A006C8A84F2] [G] c:\windows\servicing\wrpintapi.dll [PX5: CF255B40001D16232647003B3C2E0700CA4F2B5D] [G] c:\windows\system32\wlanui.dll [PX5: 864B2EE3001B5EE50C3503C59751AE005ED6D772] [G] c:\windows\system32\dfrgntfs.exe [PX5: 02B3A5B5009546046E010286A7039C00F9CC268C] [G] c:\windows\system32\wmdrmsdk.dll [PX5: 288EBF5100AAF9C816C2089F6A68D0000D5C83C6] [G] c:\windows\system32\stclient.dll [PX5: 0DF2B7AA00D8EE38F8B800C8D71098009A548214] [G] c:\windows\system32\fphc.dll [PX5: 86C283F4002241A4C6E0007A02FBD3006C6BB0CD] [G] c:\windows\system32\mspaint.exe [PX5: D75BA4590048A5046810073985D0FE00A970A1F9] [G] c:\windows\system32\tstheme.exe [PX5: F5D51C7B008F3F33A41B00DE99F2140087A67FC7] [G] c:\windows\system32\rtffilt.dll [PX5: 586212BE0043D2AC684A0027AFF55F003949154F] [G] c:\windows\system32\dfsshlex.dll [PX5: E8F33ED6009F1F0E8AF1002D038EE1007F560DE9] [G] c:\windows\system32\presentationhost.exe [PX5: FDA30DF510C3E58AFAB40415801870009407FCC4] [G] c:\windows\system32\iassdo.dll [PX5: 26B80F7B00F5EE03C0A1035F792747001B22D1B2] [G] c:\windows\system32\dmocx.dll [PX5: 9C46997200F43F5FA6C900123057D9000A72BBC0] [G] c:\windows\system32\msjetoledb40.dll [PX5: F5410DB7000B24C39088056A91386B00FB7E409C] [G] c:\windows\system32\winethc.dll [PX5: CCE8203E000BD33DF4C1000408DE21000E5271DD] [G] c:\windows\system32\msctfp.dll [PX5: 7E044C4900EC9B1D4600016F08415D004BF58DE2] [G] c:\windows\system32\vdsbas.dll [PX5: F935B33600754F4992540236DBD44B00B5974668] [G] c:\windows\system32\ncdprop.dll [PX5: AB998CEC00898E9D4EF400B575125C0049E598BF] [G] c:\windows\system32\speech\speechux\speechuxps.dll [PX5: 5797D76300F7392B402700461000540028638361] [G] c:\windows\system32\tvratings.dll [PX5: C3929A9E0096FFFE684C0033C502A30047EEE3B6] [G] c:\windows\system32\icsfiltr.dll [PX5: 6224AAC3009AD3BE2CDC02B9E22FBB00F8989CD8] [G] c:\windows\system32\nlhtml.dll [PX5: 25D124C8009743AADE940157A89D69009FF92962] [G] c:\windows\system32\sdohlp.dll [PX5: 82B8F01D006E0CC66CF702418B303E00D51CC5C2] [G] c:\windows\system32\l2sechc.dll [PX5: CF861CEC0051A965E4D301DC4DF19D00586309D1] [G] c:\windows\system32\mssprxy.dll [PX5: 987647890070D4597E57007C9694F500215D92B9] [G] c:\windows\system32\thawbrkr.dll [PX5: F82D6AEA00CD224FC80E04E3333069008F49939F] [G] c:\windows\system32\dxdiagn.dll [PX5: D9D4B1BF0004308BF8B702B96BC27B0037D671F3] [G] c:\windows\system32\wavdest.dll [PX5: 1787C2DE00788A70B62E00CD3400A7000D396A1F] [G] c:\windows\system32\mfps.dll [PX5: 661961D000A4F4E28294011BA5EFBF00D612BD82] [G] c:\windows\system32\resampledmo.dll [PX5: C338338700910C4250840308A691AB0092FC3B35] [G] c:\windows\system32\vds_ps.dll [PX5: D15584280097653990D10036E6C53900A2B04DB3] [G] c:\windows\system32\ime\imejp10\applets\imjpcac.dll [PX5: 7D3DCE5F00A77AA53CC9058E34FD230061F43A01] [G] c:\windows\system32\msctfui.dll [PX5: E4339DE6004F3C724C52010363A2FA00FC28D60B] [G] c:\windows\system32\iscsiwmi.dll [PX5: E3EFE2F5007753C2F8D5000BCA0E6200D67BAB91] [G] c:\windows\system32\fdwsd.dll [PX5: A46C0654007332C4FEB600647BAE77006B7BD717] [G] c:\windows\system32\encdec.dll [PX5: C400C17A0072C47088E4064459CA7D00B2D64DB5] [G] c:\windows\system32\ndproxystub.dll [PX5: 599E945B00BBC0182E4D0075483FC800F33098DD] [G] c:\windows\system32\wsmauto.dll [PX5: 7CAE0E6A00CF00C284E501E1B9046700CC565927] [G] c:\windows\system32\dmview.ocx [PX5: D93DB7990015457058EF013037C69C006A83AA1C] [G] c:\windows\system32\ieapfltr.dll [PX5: FC3839A4003713B3DA7305F905604D00100DAC8D] [G] c:\windows\msagent\agentdp2.dll [PX5: 790D993300BCC622BC56006373497500D11D27D4] [G] c:\windows\system32\pnpxassoc.dll [PX5: 70BD2C570044DA2010C3011F4EBF9100AF5F45AD] [G] c:\windows\msagent\agentctl.dll [PX5: AE84018B00580FC478C703323D2EAD0083F93759] [G] c:\windows\system32\userenv.dll [PX5: 4E06834300F95804A2B0018F84EAF30092F4702D] [G] c:\windows\system32\pid.dll [PX5: 964CE416000111DD8E7100A943E33600FB202E6F] [G] c:\windows\system32\dot3dlg.dll [PX5: E67ADA5D00DB2E3CB28A004D3EFA9F007A960230] [G] c:\windows\system32\ipsecsnp.dll [PX5: 6399EB4700F7ED6F941C0B5DE9F06F00612AF3BE] [G] c:\windows\system32\wmvencod.dll [PX5: 02E6D79D00D2CB620A4D18817D2DE3003AF68688] [G] c:\windows\system32\msident.dll [PX5: A54ACE4B00943835D06E00574E31450052A0EB9E] [G] c:\windows\system32\ndfapi.dll [PX5: 05FC3BAE00A3A12A0EB50262384A0400703EFEB4] [G] c:\windows\system32\cdosys.dll [PX5: F3F26A700066669742A10C5B47E6D400E85FA42C] [G] c:\windows\system32\slui.exe [PX5: 97ADED47002FC2745438053EDA471700B99D6843] [G] c:\windows\msagent\agentdpv.dll [PX5: 5B8FB4CA0061415A00BF018045C1BA00B6CF1F9B] [G] c:\windows\system32\ime\imetc10\applets\imtccac.dll [PX5: 4FF57A0700D0771C78890492457B1500960CD742] [G] c:\windows\system32\advancedinstallers\cmiv2.dll [PX5: 62CC69D2006F54CB36081ED18912A900B4F01214] [G] c:\windows\system32\vss_ps.dll [PX5: A5C1DC71006AB10562DF0013B801580038A16467] [G] c:\windows\system32\panmap.dll [PX5: DF509F1200F71DDB2A2300B7B2423800F59F0542] [G] c:\windows\system32\msvbvm60.dll [PX5: 975F4C9B1048E26B01D1153100545B00A48A39CB] [G] c:\windows\system32\infocardapi.dll [PX5: FB6F6573087EA6887E0A012375541400434C6FA9] [G] c:\program files\common files\speechengines\microsoft\tts20\msttsengine.dll [PX5: 2045E075007828F448CE0249599DE400AE21508B] [G] c:\windows\system32\printfilterpipelinesvc.exe [PX5: C6F699AB00FEE11EFC4809578174E500DB124B38] [G] c:\windows\system32\packager.dll [PX5: 6198BC8200A34064083C012E2FE9CC005C725272] [G] c:\windows\system32\mssphtb.dll [PX5: 44F6076900C01D456CFC0295E6409000EC7466BA] [G] c:\windows\system32\jscript.dll [PX5: 729866DF0099A2C680B40759FAAFCA003111D79F] [G] c:\windows\system32\wups.dll [PX5: 6C3A0D501835396B866D00A4D094600028D4A328] [G] c:\windows\system32\qcliprov.dll [PX5: F388832C00D80A3C0C17013E633D2B0095CCFE98] [G] c:\windows\system32\offfilt.dll [PX5: 98CEC094007FB6ABF88602823E90650051D0F153] [G] c:\windows\system32\sdchange.exe [PX5: 6E6E996C0013B36144DC016C02AEE10044B92683] [G] c:\windows\system32\netplwiz.dll [PX5: F00A834E009FAC57C2B102B6C57DDD007777DECD] [G] c:\windows\msagent\agentsvr.exe [PX5: 03AE54B9000BA1E37891042A62486300F0FB347F] [G] c:\windows\system32\dnshc.dll [PX5: FBF9A58B009CE6B1BA3C001CEC00A5007021FB08] [G] c:\windows\system32\wlanmm.dll [PX5: 45B1C0F400EDAD7BE81F0DED5721BD0008347E44] [G] c:\windows\system32\wsepno.dll [PX5: A35D7BDF00AA33B46AE2005541510D007AAC6978] [G] c:\windows\system32\slwmi.dll [PX5: 32288C8700C5CCB182A900ABDCA1FE005FCE1542] [G] c:\windows\system32\comdlg32.dll [PX5: B48A8AF6002DC02CF048062CDE9D730089F05121] [G] c:\windows\system32\dmcompos.dll [PX5: BD98689000DDD9A0F64900A1408C83007CF70F0B] [G] c:\windows\system32\inked.dll [PX5: 5BD8A955005959E950C003F2F62F9400F593EFE1] [G] c:\windows\system32\wmpmde.dll [PX5: BEB1313C004D9780E843138A25D06A00F9041BD6] [G] c:\windows\system32\wpdshserviceobj.dll [PX5: 192630BE0043D9F6008302F062419F009EDE7C12] [G] c:\windows\system32\eqossnap.dll [PX5: 95640880005DE9CCD62000FBA1531400E8B7C46A] [G] c:\windows\system32\networkexplorer.dll [PX5: C1A1C70700D4B15BFA312177CC3490005EE871FA] [G] c:\windows\system32\actxprxy.dll [PX5: D9C55D73002C6863FEBA04156136110061C3A838] [G] c:\windows\system32\presentationhostproxy.dll [PX5: A525716F18461E2FAA2800261543640032005F25] [G] c:\windows\system32\wmvsencd.dll [PX5: 04FA083700FBC9B6B6310B374E2E6500E32CACC0] [G] c:\windows\system32\lltdapi.dll [PX5: 3EC4EF6A00A92A257AAB00CAAA2FDF00A3AFAA40] |
|
| Themen zu kann nicht weiter an meiner Präsentation arbeiten |
| adware.mywebsearch, anti-malware, arbeiten, bösartige, current, dateien, downloads, gefunde, malwarebytes, malwarebytes' anti-malware, microsoft, minute, objekte, präsentation, registrierungsschlüssel, software, users, version, verzeichnisse, vollständiger |
Linear-Darstellung
