| |
| |||||||
Log-Analyse und Auswertung: Bitte einmal Logfile checkenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
04.08.2009, 22:35
| #1 | |
 |  Bitte einmal Logfile checken Hi, bin ganz neu hier und habe nen Problem. Seit mehreren Wochen laufen fast alle Games nicht mehr so flüssig wie vorher. Habe nen 2,8 GHZ Prozessor und jetzt lahmen selbst so Spiele wie Sim City 4 zwischendurch. Auch die restlichen Spiele machen Probleme. Sonst liefen die Games immer flüssig und ohne Probleme, aber auf einmal, seit ein paar Wochen halt nicht mehr. Ich habe hier schon einige Beiträge gelesen und poste jetzt einfach mal den Logfile. Hoffentlich hab ich alles richtig gemacht^^. Zitat:
|
|
05.08.2009, 12:37
| #2 |
| |  Bitte einmal Logfile checken Warum antwortet nie jemand?
__________________ |
|
05.08.2009, 12:39
| #3 |
| | Bitte einmal Logfile checken bei deiner logfile fehlt das ende..
__________________also bitte komplett uppen dann kriegst du auch ne antwort |
|
05.08.2009, 12:44
| #4 | |
| | Bitte einmal Logfile checken Ups, bin ich blöd.^^ Zitat:
Kann jetzt jemand helfen? |
|
05.08.2009, 12:45
| #5 |
| | Bitte einmal Logfile checken ich schau mal was ich finden / tun kann. |
|
05.08.2009, 12:57
| #6 |
| | Bitte einmal Logfile checken also du hast ziehmlich viel auf deinem Pc drauf, ich würde mevtl einfachmal defragmentieren. so mal allg. zu deinem log gibt es folgendes zu sagen, also das hauptproblem , ist einfach das solche programme wie -[BitTorrent DNA] "C:\Programme\DNA\btdna.exe" -O9 - Extra button: VideograbberIE - {2000FDDF-CC78-BD33-56CD- 8802FF9B0003} - C:\Programme\Videograbber IE\VideograbberIE2.EXE beim benutzen auf den jeweiligen inet-seiten immer irgendetwas mit sich ziehen, demnach empfehle ich halt immer Firefox neuste version, genau wie die addons, Wot,Adblock Plus und Noscript + Brain.exe in deiner logfile solltest du mal : -C:\Programme\DNA\btdna.exe -R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local -O2 - BHO: (no name) - {8a194578-81ea-4850-9911-13ba2d71efbd} - (no file) -O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Programme\AskBarDis\bar\bin\askBar.dll -O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Programme\DNA\btdna.exe" -O9 - Extra button: VideograbberIE - {2000FDDF-CC78-BD33-56CD-8802FF9B0003} - C:\Programme\Videograbber IE\VideograbberIE2.EXE Fixxen und danach mal mbam drüberlaufen lassen , und die mal ein nettes antiviren Programm wie Avast besorgen :-) wenn nach dem fixxen und mbam dem löschen der beiden programme"bittorrent,Videograbber" und der defragmentierung , dein rechner immer noch so langsam sein. formatier ihn einfach mal, frag evtl mal nen freund der sich mit dem scripten auskennt ob er dir eine cd machen kann damit du beim formatieren afk gehn kannst und dein pc alles alleine macht , z.B gesamte format,einstellungen , icq mozilla installation etc. naja greeetzzz hoffe konnte dir helfen |
|
05.08.2009, 13:04
| #7 | |
| | Bitte einmal Logfile checken Ok. Danke! Aber Anzeichen eines Virus oder sowas gibt es nicht oder? Und noch eine Frage: Was meinst du mit Fixxen?^^ Zitat:
|
|
05.08.2009, 13:10
| #8 |
| | Bitte einmal Logfile checken R3 - URLSearchHook: (no name) - - (no file) (nicht sicher) O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_07\bin\jusched.exe " (der wird als schädlich eingestuft demnach evtl was drin) fixx die beiden und scan die datein mit mbam. wie gesagt wenn du dein rechner fit halten willst , arbeite die anleitung von gerade ab, dann passts wieda , wegen dem virus mhm ist wie gesagt evtl einer weil als schädlich eingestuft demnach denke ich du solltest mal gucken das du dir ne gute Fwall und nen gutes Aviprog holst. lg |
|
05.08.2009, 13:12
| #9 | |
| | Bitte einmal Logfile checkenZitat:
|
|
05.08.2009, 13:25
| #10 | |
| /// Selecta Jahrusso   | Bitte einmal Logfile checkenZitat:
Bei Fragen, bitte Via PN  DavidGEine Bereinigung ist mitunter mit viel Arbeit für Dich verbunden.
Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der Schnellere und immer der sicherste Weg. Solltest Du Dich für eine Bereinigung entscheiden, arbeite bitte folgendes ab. Poste bitte alle Logfiles in Code-Tags. Klicke antworten --> # danach [code]text[/code] So sollte das dann hier aussehen nach dem antworten: Code:
ATTFilter deine Logfile
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
|
05.08.2009, 13:35
| #11 | |
| | Bitte einmal Logfile checkenZitat:
Habe jetzt den ersten Schritt fertig, aber das Zeichenlimit hier im Board macht mir Probleme. Allein die log.txt hat über 50.000 Zeichen. Hier sind aber nur 25.000 erlaubt. Wie soll ich das am besten machen? Einfach splitten? David. |
|
05.08.2009, 13:37
| #12 |
| /// Selecta Jahrusso | Bitte einmal Logfile checken Entweder, Du teilst die Logfiles auf, oder du ladest sie wie die HJT Logfile hoch  Wurde mit Malwarebytes gescannt? Wenn ja, bitte ebenfalls Logfile posten. Wenn Nein, dann belass auch dabei
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
|
05.08.2009, 13:47
| #13 |
| | Bitte einmal Logfile checken log.txt Teil I Code:
ATTFilter Logfile of random's system information tool 1.06 (written by random/random) Run by DavidG at 2009-08-05 14:32:42 Microsoft Windows XP Home Edition Service Pack 2 System drive C: has 36 GB (15%) free of 238 GB Total RAM: 1023 MB (40% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:32:43, on 05.08.2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Avira\AntiVir Desktop\sched.exe C:\Programme\Avira\AntiVir Desktop\avguard.exe C:\Programme\FRITZ!DSL\IGDCTRL.EXE C:\Programme\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Programme\Google\Update\1.2.183.7\GoogleCrashHandler.exe C:\Programme\TomTom HOME 2\TomTomHOMEService.exe C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe C:\WINDOWS\Explorer.EXE C:\Programme\Analog Devices\Core\smax4pnp.exe C:\Programme\Analog Devices\SoundMAX\Smax4.exe C:\WINDOWS\system32\ctfmon.exe C:\Programme\Gemeinsame Dateien\Logitech\G-series Software\LGDCore.exe C:\Programme\Java\jre1.6.0_07\bin\jusched.exe C:\Programme\DAEMON Tools\daemon.exe C:\WINDOWS\System32\svchost.exe C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe C:\Programme\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\Dit.exe C:\WINDOWS\DitExp.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Programme\DNA\btdna.exe C:\Programme\phonostar\ps_agent.exe C:\Programme\phonostar\ps_timer.exe C:\Programme\TomTom HOME 2\TomTomHOMERunner.exe C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Programme\Stardock\ObjectDock\ObjectDock.exe C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Programme\Java\jre1.6.0_07\bin\jucheck.exe C:\Programme\Microsoft Office\Office12\WINWORD.EXE C:\Programme\ICQ6.5\ICQ.exe C:\WINDOWS\system32\rundll32.exe C:\Programme\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\wuauclt.exe C:\Dokumente und Einstellungen\DavidG\Desktop\RSIT.exe C:\Programme\Trend Micro\HijackThis\DavidG.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://de.rd.yahoo.com/customize/ycomp/defaults/sb/*http://de.docs.yahoo.com/info/ie6.html R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://de.rd.yahoo.com/customize/ycomp/defaults/sp/*http://de.yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://de.rd.yahoo.com/customize/ycomp/defaults/su/*http://de.yahoo.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll R3 - URLSearchHook: (no name) - - (no file) O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Programme\AskBarDis\bar\bin\askBar.dll O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Programme\Canon\Easy-WebPrint\EWPBrowseLoader.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {8a194578-81ea-4850-9911-13ba2d71efbd} - (no file) O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Programme\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll O2 - BHO: kikin Plugin - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Programme\kikin\ie_kikin.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Programme\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Programme\AskBarDis\bar\bin\askBar.dll O4 - HKLM\..\Run: [Gainward] C:\Programme\XpertVision\TBPanel.exe /A O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM\..\Run: [SoundMAXPnP] C:\Programme\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [SoundMAX] "C:\Programme\Analog Devices\SoundMAX\Smax4.exe" /tray O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Programme\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [Launch LGDCore] "C:\Programme\Gemeinsame Dateien\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [DAEMON Tools] "C:\Programme\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Dit] Dit.exe O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [LDM] C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Programme\DNA\btdna.exe" O4 - HKCU\..\Run: [PhonostarAgent] C:\Programme\phonostar\ps_agent.exe O4 - HKCU\..\Run: [PhonostarTimer] C:\Programme\phonostar\ps_timer.exe O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Programme\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: FRITZ!DSL Startcenter.lnk = C:\Programme\FRITZ!DSL\StCenter.exe O4 - Startup: Stardock ObjectDock.lnk = C:\Programme\Stardock\ObjectDock\ObjectDock.exe O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Programme\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Easy-WebPrint - Drucken - res://C:\Programme\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint - Schnelldruck - res://C:\Programme\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint - Vorschau - res://C:\Programme\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html O8 - Extra context menu item: Easy-WebPrint - Zu Druckliste hinzufügen - res://C:\Programme\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Programme\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll O9 - Extra 'Tools' menuitem: &Gears-Einstellungen - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Programme\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll O9 - Extra button: (no name) - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Programme\kikin\ie_kikin.dll O9 - Extra 'Tools' menuitem: My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Programme\kikin\ie_kikin.dll O9 - Extra button: VideograbberIE - {2000FDDF-CC78-BD33-56CD-8802FF9B0003} - C:\Programme\Videograbber IE\VideograbberIE2.EXE O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O18 - Protocol: bw+0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: offline-8876480 - {2CCE8ECF-88EA-4F96-9E11-19519D265C97} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe O23 - Service: AVM IGD CTRL Service - AVM Berlin - C:\Programme\FRITZ!DSL\IGDCTRL.EXE O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\Programme\Gemeinsame Dateien\AVM\de_serv.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Update Service (gupdate1c9ad6c3a26de0e) (gupdate1c9ad6c3a26de0e) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Programme\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Programme\Gemeinsame Dateien\Logishrd\Bluetooth\LBTServ.exe O23 - Service: NBService - Nero AG - C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Programme\WinPcap\rpcapd.exe O23 - Service: ServiceLayer - Nokia. - C:\Programme\PC Connectivity Solution\ServiceLayer.exe O23 - Service: TomTomHOMEService - TomTom - C:\Programme\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: TuneUp Drive Defrag-Dienst (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe -- End of file - 24593 bytes |
|
05.08.2009, 13:48
| #14 |
| | Bitte einmal Logfile checken log.txt Teil II Code:
ATTFilter ======Scheduled tasks folder======
C:\WINDOWS\tasks\1-Klick-Wartung.job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll [2007-10-19 817936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Programme\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Programme\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8a194578-81ea-4850-9911-13ba2d71efbd} ]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53}]
Google Gears Helper - C:\Programme\Google\Google Gears\Internet Explorer\0.5.30.0\gears.dll [2009-07-17 2097152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E601996F-E400-41CA-804B-CD6373A7EEE2}]
kikin Plugin - C:\Programme\kikin\ie_kikin.dll [2009-06-09 429280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Programme\Canon\Easy-WebPrint\Toolband.dll [2006-04-18 552960]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll [2007-10-19 817936]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Programme\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Gainward"=C:\Programme\XpertVision\TBPanel.exe [2006-08-30 2154496]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2004-10-27 61952]
"SoundMAXPnP"=C:\Programme\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]
"SoundMAX"=C:\Programme\Analog Devices\SoundMAX\Smax4.exe [2005-09-07 716800]
"Easy-PrintToolBox"=C:\Programme\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]
"Launch LGDCore"=C:\Programme\Gemeinsame Dateien\Logitech\G-series Software\LGDCore.exe [2006-07-23 1126400]
"SunJavaUpdateSched"=C:\Programme\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"Adobe Reader Speed Launcher"=C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"DAEMON Tools"=C:\Programme\DAEMON Tools\daemon.exe [2006-09-14 157592]
"GrooveMonitor"=C:\Programme\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"avgnt"=C:\Programme\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"Dit"=C:\WINDOWS\Dit.exe [2003-07-16 86016]
"nwiz"=nwiz.exe /install []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-06-10 13758464]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-06-10 86016]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2006-02-28 15360]
"LDM"=C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-07-26 32768]
"BitTorrent DNA"=C:\Programme\DNA\btdna.exe [2008-12-19 342848]
"PhonostarAgent"=C:\Programme\phonostar\ps_agent.exe [2009-05-13 98304]
"PhonostarTimer"=C:\Programme\phonostar\ps_timer.exe [2009-05-13 126976]
"TomTomHOME.exe"=C:\Programme\TomTom HOME 2\TomTomHOMERunner.exe [2009-06-03 251240]
C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
Bluetooth Manager.lnk - C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
Logitech Desktop Messenger.lnk - C:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Logitech SetPoint.lnk - C:\Programme\Logitech\SetPoint\SetPoint.exe
C:\Dokumente und Einstellungen\DavidG\Startmenü\Programme\Autostart
FRITZ!DSL Startcenter.lnk - C:\Programme\FRITZ!DSL\StCenter.exe
Stardock ObjectDock.lnk - C:\Programme\Stardock\ObjectDock\ObjectDock.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTWlgn.dll [2008-05-02 72208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\fsetup.exe"="E:\fsetup.exe:*:Enabled:AVM FSetup Application"
"C:\Programme\DNA\btdna.exe"="C:\Programme\DNA\btdna.exe:*:Enabled:DNA"
"C:\Programme\BitTorrent\bittorrent.exe"="C:\Programme\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Programme\ICQ6\ICQ.exe"="C:\Programme\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Disabled:Logitech Desktop Messenger"
"C:\Programme\TVUPlayer\TVUPlayer.exe"="C:\Programme\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"
"C:\Spiele\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Spiele\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"C:\Spiele\Microsoft Games\Age of Empires II\empires2.exe"="C:\Spiele\Microsoft Games\Age of Empires II\empires2.exe:*:Enabled:Age of Empires II"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\SopCast\SopCast.exe"="C:\Programme\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Programme\SopCast\adv\SopAdver.exe"="C:\Programme\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Spiele\TmNationsForever\TmForever.exe"="C:\Spiele\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Programme\uusee\UUSeePlayer.exe"="C:\Programme\uusee\UUSeePlayer.exe:*:Enabled:UUPlayer"
"C:\Programme\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Programme\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Programme\Microsoft Office\Office12\GROOVE.EXE"="C:\Programme\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Programme\Microsoft Office\Office12\ONENOTE.EXE"="C:\Programme\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Spiele\Firefly Studios\Stronghold 2\Stronghold2.exe"="C:\Spiele\Firefly Studios\Stronghold 2\Stronghold2.exe:*:Enabled:Stronghold 2"
"C:\Spiele\Firefly Studios\Stronghold Legends\StrongholdLegends.exe"="C:\Spiele\Firefly Studios\Stronghold Legends\StrongholdLegends.exe:*:Enabled:Stronghold Legends"
"C:\Programme\Electronic Arts\EADM\Core.exe"="C:\Programme\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"C:\Programme\Bonjour\mDNSResponder.exe"="C:\Programme\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Programme\iTunes\iTunes.exe"="C:\Programme\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Spiele\EA Games\Battlefield 2\BF2.exe"="C:\Spiele\EA Games\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Dokumente und Einstellungen\DavidG\Eigene Dateien\RouterClient.exe"="C:\Dokumente und Einstellungen\DavidG\Eigene Dateien\RouterClient.exe:*:Enabled:RouterClient"
"C:\Spiele\2K Games\Firaxis Games\Sid Meier's Railroads!\RailRoads.exe"="C:\Spiele\2K Games\Firaxis Games\Sid Meier's Railroads!\RailRoads.exe:*:Enabled:Sid Meier's Railroads!"
"C:\Spiele\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Spiele\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Spiele\Activision\Call of Duty - World at War\CoDWaW.unpacked.exe"="C:\Spiele\Activision\Call of Duty - World at War\CoDWaW.unpacked.exe:*:Enabled:Call of Duty(R): World at War Campaign/Coop"
"C:\Programme\Mozilla Firefox\firefox.exe"="C:\Programme\Mozilla Firefox\firefox.exe:*:Disabled:Firefox"
"C:\Programme\Electronic Arts\Die Schlacht um Mittelerde II\game.dat"="C:\Programme\Electronic Arts\Die Schlacht um Mittelerde II\game.dat:*:Enabled:Die Schlacht um Mittelerde™ II"
"C:\Dokumente und Einstellungen\DavidG\temp\TeamViewer\Version4\TeamViewer.exe"="C:\Dokumente und Einstellungen\DavidG\temp\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"C:\Programme\TVAnts\Tvants.exe"="C:\Programme\TVAnts\Tvants.exe:*:Enabled:TVAnts"
"C:\Spiele\TmUnitedForever\TmForever.exe"="C:\Spiele\TmUnitedForever\TmForever.exe:*:Enabled:TmForever"
"C:\Dokumente und Einstellungen\DavidG\Desktop\Downloads\CryptLoad.exe"="C:\Dokumente und Einstellungen\DavidG\Desktop\Downloads\CryptLoad.exe:*:Enabled:CryptLoad"
"E:\CounterStrike 1.6\hltv.exe"="E:\CounterStrike 1.6\hltv.exe:*:Enabled:HLTV Launcher"
"E:\CounterStrike 1.6\hl.exe"="E:\CounterStrike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Dokumente und Einstellungen\DavidG\Desktop\Spiele\CounterStrike 1.6\hl.exe"="C:\Dokumente und Einstellungen\DavidG\Desktop\Spiele\CounterStrike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Spiele\EA SPORTS\FIFA 09\FIFA09.exe"="C:\Spiele\EA SPORTS\FIFA 09\FIFA09.exe:*:Enabled:FIFA09"
"C:\Programme\Miranda IM\miranda32.exe"="C:\Programme\Miranda IM\miranda32.exe:*:Enabled:Miranda IM"
"C:\Programme\Trillian\trillian.exe"="C:\Programme\Trillian\trillian.exe:*:Enabled:Trillian"
"C:\Programme\Java\jre1.6.0_07\bin\javaw.exe"="C:\Programme\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Programme\FRITZ!DSL\IGDCTRL.EXE"="C:\Programme\FRITZ!DSL\IGDCTRL.EXE:*:Enabled:FRITZ!DSL - igdctrl.exe"
"C:\Programme\FRITZ!DSL\FBOXUPD.EXE"="C:\Programme\FRITZ!DSL\FBOXUPD.EXE:*:Enabled:AVM FRITZ!Box Firmware-Update"
"C:\Programme\ICQLite\ICQ.exe"="C:\Programme\ICQLite\ICQ.exe:*:Enabled:ICQ Lite"
"C:\Programme\ICQ6.5\ICQ.exe"="C:\Programme\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0f79cd6e-7848-11de-8087-0017316c2c50}]
shell\AutoRun\command - J:\InstallTomTomHOME.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{abd8b418-7505-11dd-bea3-001bdc0fd2c4}]
shell\AutoRun\command - F:\autorun.exe
======List of files/folders created in the last 1 months======
2009-08-05 14:32:42 ----D---- C:\rsit
2009-08-05 14:14:13 ----SHD---- C:\Config.Msi
2009-08-03 16:29:03 ----D---- C:\Programme\Trend Micro
2009-08-02 14:11:08 ----D---- C:\Programme\BSCCleanitol
2009-07-24 20:22:19 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TomTom
2009-07-24 20:21:57 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\TomTom
2009-07-24 20:21:52 ----D---- C:\Programme\TomTom International B.V
2009-07-24 20:21:35 ----D---- C:\Programme\TomTom HOME 2
2009-07-24 20:21:14 ----D---- C:\Programme\TomTom DesktopSuite
2009-07-22 16:49:11 ----D---- C:\WINDOWS\system32\URTTEMP
2009-07-22 16:46:42 ----D---- C:\WINDOWS\San Andreas Mod Installer
2009-07-22 16:46:42 ----D---- C:\Programme\San Andreas Mod Installer
2009-07-21 13:14:18 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\phonostar-Player
2009-07-21 13:14:17 ----D---- C:\Programme\phonostar
2009-07-21 13:08:41 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\streamripper
2009-07-21 13:08:24 ----D---- C:\Programme\Streamripper
2009-07-20 22:32:14 ----D---- C:\Programme\Flash Movie Extract Pilot
2009-07-20 22:22:15 ----D---- C:\Programme\WinPcap
2009-07-20 22:20:31 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\Sytexis Software
2009-07-20 22:20:31 ----A---- C:\wsr.txt
2009-07-20 22:20:28 ----D---- C:\Programme\Sytexis Software
2009-07-20 18:34:48 ----D---- C:\Programme\Xvid
2009-07-20 18:34:48 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2009-07-20 18:34:48 ----A---- C:\WINDOWS\system32\xvidcore.dll
2009-07-15 23:57:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
2009-07-15 23:57:43 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-07-15 23:54:39 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
2009-07-15 22:32:08 ----D---- C:\Program
2009-07-15 15:40:50 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\kikin
2009-07-15 15:40:49 ----D---- C:\Programme\kikin
2009-07-15 12:47:24 ----D---- C:\Programme\ICQ-Banner-Remover
2009-07-14 20:58:10 ----D---- C:\Programme\ICQ6.5
2009-07-14 20:50:14 ----D---- C:\Programme\ICQLite
2009-07-14 19:47:44 ----D---- C:\Programme\Common Files
2009-07-14 19:38:40 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ICQ
2009-07-14 15:17:28 ----D---- C:\Eigene Dateien
2009-07-14 13:31:59 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TrackMania
2009-07-13 21:04:19 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\Command & Conquer 3 Tiberium Wars
2009-07-13 11:40:49 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\Ubisoft
2009-07-13 11:31:01 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Tages
2009-07-13 11:28:44 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-07-13 11:28:44 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-07-13 11:28:43 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-07-13 11:28:43 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-07-13 11:28:43 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-07-13 11:28:42 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-07-13 11:28:42 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-07-13 11:28:41 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2009-07-13 11:28:41 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2009-07-13 11:28:41 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2009-07-13 11:28:40 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2009-07-13 11:28:40 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2009-07-13 11:28:40 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2009-07-13 11:28:39 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2009-07-13 00:06:40 ----A---- C:\WINDOWS\system32\lsdelete.exe
2009-07-12 23:18:53 ----HDC---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{EF63305C-BAD7-4144-9208-D65528260864}
2009-07-12 23:18:31 ----D---- C:\Programme\Lavasoft
2009-07-12 18:42:20 ----D---- C:\Programme\Smart PC Solutions
2009-07-08 12:05:39 ----D---- C:\WINDOWS\ie8updates
2009-07-08 12:04:40 ----D---- C:\WINDOWS\WBEM
2009-07-08 12:03:34 ----HDC---- C:\WINDOWS\ie8
2009-07-08 12:03:34 ----D---- C:\WINDOWS\system32\de-DE
2009-07-07 09:52:06 ----A---- C:\WINDOWS\IE4 Error Log.txt
2009-07-06 14:56:30 ----D---- C:\WINDOWS\system32\zonelinkfs2009s
2009-07-06 14:55:56 ----A---- C:\WINDOWS\system32\Control.dll
2009-07-06 14:55:55 ----A---- C:\WINDOWS\system32\unicows.dll
2009-07-06 14:55:53 ----D---- C:\Programme\zonelink
======List of files/folders modified in the last 1 months======
2009-08-05 14:26:48 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\DNA
2009-08-05 14:21:37 ----D---- C:\Programme\Mozilla Firefox
2009-08-05 14:21:28 ----D---- C:\WINDOWS\Prefetch
2009-08-05 14:14:17 ----SHD---- C:\WINDOWS\Installer
2009-08-05 14:14:16 ----D---- C:\Programme
2009-08-05 14:07:22 ----HD---- C:\WINDOWS\inf
2009-08-05 14:07:22 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-08-05 14:07:20 ----D---- C:\Programme\Gemeinsame Dateien\Apple
2009-08-05 13:37:00 ----D---- C:\WINDOWS\Temp
2009-08-05 10:26:23 ----D---- C:\Programme\DNA
2009-08-05 10:16:55 ----D---- C:\WINDOWS\system32\CatRoot2
2009-08-05 10:15:36 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-05 00:45:50 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\BitTorrent
2009-08-03 22:46:43 ----A---- C:\WINDOWS\NeroDigital.ini
2009-08-03 17:56:24 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\Move Networks
2009-08-02 10:47:10 ----D---- C:\WINDOWS
2009-08-02 10:44:20 ----D---- C:\WINDOWS\system32
2009-08-01 22:54:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-08-01 22:54:34 ----D---- C:\Programme\Internet Explorer
2009-08-01 22:54:00 ----HD---- C:\WINDOWS\$hf_mig$
2009-08-01 22:53:59 ----D---- C:\WINDOWS\system32\CatRoot
2009-07-23 22:59:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-07-23 22:59:13 ----D---- C:\WINDOWS\Registration
2009-07-22 16:54:51 ----SD---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\Microsoft
2009-07-22 16:49:43 ----RSD---- C:\WINDOWS\assembly
2009-07-21 11:17:24 ----D---- C:\Spiele
2009-07-20 22:22:15 ----D---- C:\WINDOWS\system32\drivers
2009-07-19 18:53:41 ----D---- C:\Programme\Adobe
2009-07-19 18:41:10 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-07-19 15:11:12 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-07-18 11:12:13 ----D---- C:\Programme\Google
2009-07-17 14:43:48 ----D---- C:\Programme\Videograbber IE
2009-07-16 23:41:45 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\Hamachi
2009-07-16 23:07:35 ----D---- C:\Dokumente und Einstellungen\DavidG\Anwendungsdaten\ICQ
2009-07-16 09:28:27 ----D---- C:\WINDOWS\network diagnostic
2009-07-15 23:57:51 ----A---- C:\WINDOWS\imsins.BAK
2009-07-14 19:47:44 ----HD---- C:\Programme\InstallShield Installation Information
2009-07-13 21:02:01 ----D---- C:\WINDOWS\system32\DirectX
2009-07-13 21:01:52 ----D---- C:\WINDOWS\WinSxS
2009-07-12 23:20:36 ----SD---- C:\WINDOWS\Tasks
2009-07-12 23:18:04 ----D---- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2009-07-12 18:48:23 ----RSD---- C:\WINDOWS\Fonts
2009-07-08 13:06:32 ----D---- C:\WINDOWS\Help
2009-07-08 12:04:47 ----D---- C:\WINDOWS\system32\config
2009-07-08 12:04:33 ----D---- C:\WINDOWS\Media
2009-07-08 11:56:20 ----D---- C:\WINDOWS\Debug
2009-07-07 21:53:38 ----A---- C:\WINDOWS\DFC.INI
2009-07-07 17:10:56 ----A---- C:\WINDOWS\system32\MRT.exe
|
|
05.08.2009, 13:50
| #15 |
| | Bitte einmal Logfile checken log.txt Teil III Code:
ATTFilter ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-04-27 96104] R1 intelppm;Intel-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-02-28 40192] R1 kbdhid;Tastatur-HID-Treiber; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-02-28 14848] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-06-09 28520] R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896] R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-07-13 281760] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-04-27 55640] R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-07-13 25888] R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2002-07-27 5306] R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2005-10-05 141312] R3 AEAudioService;AEAudio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2005-03-04 127872] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464] R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-04-13 25280] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-10-27 138240] R3 hidusb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-02-28 9600] R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-02-29 63120] R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-02-29 79120] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-06-10 8087712] R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2006-02-28 5888] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-04-06 81664] R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2005-08-11 393088] R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600] R3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-02-28 31616] R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624] R3 usbhub;Microsoft USB-Standardhubtreiber; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600] R3 usbprint;Microsoft USB-Druckerklasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856] R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480] S3 akjn1ski;akjn1ski; C:\WINDOWS\system32\drivers\akjn1ski.sys [] S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS [] S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024] S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-10-27 145920] S3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-02-29 20240] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504] S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376] S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880] S3 nm;Netzwerkmonitortreiber; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2006-02-28 40320] S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-01-25 42000] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136] S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360] S3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792] S3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480] S3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728] S3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612] S3 TosRfSnd;Bluetooth Audio; C:\WINDOWS\system32\drivers\tosrfsnd.sys [2007-01-22 53376] S3 tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576] S3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2009-06-09 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2009-06-09 185089] R2 AVM IGD CTRL Service;AVM IGD CTRL Service; C:\Programme\FRITZ!DSL\IGDCTRL.EXE [2005-11-21 81920] R2 Bonjour Service;Bonjour-Dienst; C:\Programme\Bonjour\mDNSResponder.exe [2008-08-29 238888] R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-06-10 168004] R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-11-01 66872] R2 TomTomHOMEService;TomTomHOMEService; C:\Programme\TomTom HOME 2\TomTomHOMEService.exe [2009-06-03 92008] R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Programme\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-02 118784] R2 UxTuneUp;TuneUp Designerweiterung; C:\WINDOWS\System32\svchost.exe [2006-02-28 14336] S2 gupdate1c9ad6c3a26de0e;Google Update Service (gupdate1c9ad6c3a26de0e); C:\Programme\Google\Update\GoogleUpdate.exe [2009-03-25 133104] S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Programme\Lavasoft\Ad-Aware\AAWService.exe [2009-07-03 1029456] S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2006-02-28 14336] S3 Adobe LM Service;Adobe LM Service; C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-07-26 72704] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 de_serv;AVM FRITZ!web Routing Service; C:\Programme\Gemeinsame Dateien\AVM\de_serv.exe [2005-11-21 315392] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-08-04 654848] S3 gusvc;Google Updater Service; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-04 136120] S3 IDriverT;InstallDriver Table Manager; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 iPod Service;iPod-Dienst; C:\Programme\iPod\bin\iPodService.exe [2008-10-01 536872] S3 LBTServ;Logitech Bluetooth Service; C:\Programme\Gemeinsame Dateien\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824] S3 NBService;NBService; C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144] S3 odserv;Microsoft Office Diagnostics Service; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Programme\WinPcap\rpcapd.exe [2007-01-25 93048] S3 ServiceLayer;ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [2007-03-26 292864] S3 TuneUp.Defrag;TuneUp Drive Defrag-Dienst; C:\WINDOWS\System32\TuneUpDefragService.exe [2008-07-24 355584] S3 WMPNetworkSvc;Windows Media Player-Netzwerkfreigabedienst; C:\Programme\Windows Media Player\WMPNetwk.exe [2006-10-24 920576] -----------------EOF----------------- |
|
| Themen zu Bitte einmal Logfile checken |
| ad-aware, antivir, antivir guard, ask toolbar, askbar, auf einmal, avira, bho, bonjour, browser, canon, desktop, dsl, excel, firefox, gainward, google update, gupdate, helper, hijack, hijackthis, hkus\s-1-5-18, internet, internet explorer, launch, logfile, mozilla, prozessor, rundll, senden, shortcut, software, solution, system, tuneup.defrag, windows, windows xp |
Linear-Darstellung
