Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Werbung öffnet sich

Werbung öffnet sich


Plagegeister aller Art und deren Bekämpfung: Werbung öffnet sich

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 08.10.2009, 15:06   #1
Teimaui
 
Werbung öffnet sich - Standard

Werbung öffnet sich


Hallo
Seit kurzem öffnen sich bei mir ständig Internet Explorer Fenster mit verschiedener Werbung. Mir ist bewusst, dass die hier bereits mehrmals gemeldet wurde, doch da jedes mal spezifisch auf das Problem des Posters eingegangen wurde, wollte ich doch gerne einen neuen Thread erstellen. Ich hab meine Festplatten mit Kaspersky Internet Security 2010 und AntiVir scannen lassen, die haben auch etwas gefunden, doch das Problem besteht weiterhin. Den C-Cleaner habe ich ebenfalls benutzt, doch auch das hat nichts gebracht, der Anti-Malware Log wird noch nachgereicht.

Hier meine HiJack Log-Daten

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:02:11, on 08.10.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18294)
Boot mode: Normal

Running processes:
D:\Spiele usw\Musik\Tobit ClipInc\Player\ClipIncTray.exe
C:\Windows\msb.exe
C:\Program Files (x86)\iTunes\iTunes.exe
C:\Users\Navid\AppData\Local\Temp\b.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEUser.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&s=1&o=vp64&d=0809&m=imedia_x7600_ge
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://de.msn.com/default.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&s=1&o=vp64&d=0809&m=imedia_x7600_ge
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&s=1&o=vp64&d=0809&m=imedia_x7600_ge
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKCU\..\Run: [ClipIncSrvTray] "d:\Spiele Usw\Musik\Tobit ClipInc\Player\ClipIncTray.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [PopRock] C:\Users\Navid\AppData\Local\Temp\b.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Save YouTube Video as MP3 - res://C:\Program Files (x86)\Common Files\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe
O13 - Gopher Prefix:
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: ClipInc 001 (ClipInc001) - Unknown owner - d:\Spiele Usw\Musik\Tobit ClipInc\Server\ClipInc-Server.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\PACKARDBELL\Packard Bell Recovery Management\Service\ETService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10125 bytes


Danke im Vorraus für jede Hilfe.

Alt 08.10.2009, 15:36   #2
Teimaui
 
Werbung öffnet sich - Standard

Werbung öffnet sich


Malwarebytes' Anti-Malware 1.41
Datenbank Version: 2925
Windows 6.0.6001 Service Pack 1

08.10.2009 16:36:03
mbam-log-2009-10-08 (16-35-58).txt

Scan-Methode: Vollständiger Scan (C:\|D:\|)
Durchsuchte Objekte: 276930
Laufzeit: 49 minute(s), 4 second(s)

Infizierte Speicherprozesse: 1
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 3
Infizierte Registrierungswerte: 1
Infizierte Dateiobjekte der Registrierung: 1
Infizierte Verzeichnisse: 0
Infizierte Dateien: 6

Infizierte Speicherprozesse:
C:\Windows\msb.exe (Trojan.Agent) -> No action taken.

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_CURRENT_USER\SOFTWARE\NordBull (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\poprock (Trojan.Downloader) -> No action taken.

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\poprock (Trojan.Downloader) -> No action taken.

Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Windows\System32\msxml71.dll (Trojan.FakeAlert) -> No action taken.
C:\Windows\msa.exe (Trojan.Agent) -> No action taken.
C:\Windows\msb.exe (Trojan.Agent) -> No action taken.
C:\Windows\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job (Trojan.Downloader) -> No action taken.
C:\Windows\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job (Trojan.Downloader) -> No action taken.
C:\Users\Navid\AppData\Local\Temp\b.exe (Trojan.Downloader) -> No action taken.
__________________
Alt 08.10.2009, 15:40   #3
Teimaui
 
Werbung öffnet sich - Standard

Werbung öffnet sich


Hier ist die Log-Datei von RSIT


Logfile of random's system information tool 1.06 (written by random/random)
Run by Navid at 2009-10-08 16:39:20
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 341 GB (67%) free of 509 GB
Total RAM: 6142 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:39:21, on 08.10.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18294)
Boot mode: Normal

Running processes:
D:\Spiele usw\Musik\Tobit ClipInc\Player\ClipIncTray.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\IEUser.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Users\Navid\AppData\Local\Temp\b.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Navid\Desktop\RSIT.exe
C:\Program Files (x86)\Trend Micro\HijackThis\Navid.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&s=1&o=vp64&d=0809&m=imedia_x7600_ge
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://de.msn.com/default.aspx
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&s=1&o=vp64&d=0809&m=imedia_x7600_ge
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&s=1&o=vp64&d=0809&m=imedia_x7600_ge
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKLM\..\Run: [ Malwarebytes Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /install /silent
O4 - HKCU\..\Run: [ClipIncSrvTray] "d:\Spiele Usw\Musik\Tobit ClipInc\Player\ClipIncTray.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Save YouTube Video as MP3 - res://C:\Program Files (x86)\Common Files\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: &Virtuelle Tastatur - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Li&nks untersuchen - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe
O13 - Gopher Prefix:
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: ClipInc 001 (ClipInc001) - Unknown owner - d:\Spiele Usw\Musik\Tobit ClipInc\Server\ClipInc-Server.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\PACKARDBELL\Packard Bell Recovery Management\Service\ETService.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10290 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll [2009-05-25 68112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Anmelde-Hilfsprogramm - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2009-09-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll [2009-10-07 264720]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-05-25 303376]
" Malwarebytes Anti-Malware (reboot)"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2009-09-10 420176]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ClipIncSrvTray"=d:\Spiele Usw\Musik\Tobit ClipInc\Player\ClipIncTray.exe [2009-03-16 668424]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableTaskMgr"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"HideFastUserSwitching"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoLogoff"=0
"NoClose"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"ForceActiveDesktopOn"=
"NoActiveDesktopChanges"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1fe94322-ab66-11de-b3dc-00226838e33b}]
shell\AutoRun\command - K:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{604bef7c-91b9-11de-aef1-806e6f6e6963}]
shell\AutoRun\command - E:\autorun.exe


======List of files/folders created in the last 1 months======

2009-10-08 16:37:36 ----D---- C:\rsit
2009-10-08 15:42:10 ----D---- C:\Users\Navid\AppData\Roaming\Malwarebytes
2009-10-08 15:42:05 ----D---- C:\ProgramData\Malwarebytes
2009-10-08 15:42:05 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2009-10-08 15:38:23 ----D---- C:\Program Files (x86)\CCleaner
2009-10-08 15:01:56 ----D---- C:\Program Files (x86)\Trend Micro
2009-10-07 21:11:55 ----D---- C:\ProgramData\Kaspersky Lab
2009-10-07 16:40:08 ----D---- C:\Program Files (x86)\DAMN NFO Viewer
2009-10-04 09:10:02 ----A---- C:\Windows\dd_ATL90SP1_KB973924MSI604C.txt
2009-10-04 09:10:00 ----A---- C:\Windows\dd_ATL90SP1_KB973924UI604C.txt
2009-10-03 16:15:39 ----D---- C:\Program Files (x86)\USB STORM TROOPER GAME PAD
2009-10-03 16:15:39 ----A---- C:\Windows\setreg.exe
2009-10-03 16:15:39 ----A---- C:\Windows\Property.exe
2009-10-03 16:15:39 ----A---- C:\Windows\GetWinVer.exe
2009-10-03 16:15:39 ----A---- C:\Windows\FCVAP64.dll
2009-10-03 16:15:39 ----A---- C:\Windows\EZFRD64.dll
2009-10-03 15:30:33 ----D---- C:\Users\Navid\AppData\Roaming\Leadertech
2009-10-02 17:48:05 ----D---- C:\ProgramData\Electronic Arts
2009-10-02 17:11:58 ----A---- C:\Windows\system32\d3dx10_40.dll
2009-10-02 17:11:58 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2009-10-02 17:11:56 ----A---- C:\Windows\system32\D3DX9_40.dll
2009-10-02 17:00:42 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2009-10-02 16:59:18 ----D---- C:\Windows\system32\AGEIA
2009-10-02 16:59:18 ----D---- C:\Program Files (x86)\AGEIA Technologies
2009-10-02 16:59:01 ----D---- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2009-10-02 16:56:58 ----D---- C:\NVIDIA
2009-10-02 16:53:20 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2009-10-02 16:41:32 ----D---- C:\Users\Navid\AppData\Roaming\temp
2009-10-02 16:37:24 ----A---- C:\Windows\system32\D3DX9_39.dll
2009-10-01 19:23:16 ----D---- C:\Program Files (x86)\Kaspersky Lab
2009-10-01 19:21:58 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2009-09-27 16:11:54 ----D---- C:\Users\Navid\AppData\Roaming\U3
2009-09-27 14:06:30 ----D---- C:\Program Files (x86)\Lineage II
2009-09-27 14:05:55 ----D---- C:\Users\Navid\AppData\Roaming\InstallShield
2009-09-26 23:26:31 ----D---- C:\Program Files (x86)\Fussball Manager 2008
2009-09-26 20:46:16 ----D---- C:\ProgramData\FLEXnet
2009-09-26 18:31:34 ----D---- C:\Program Files (x86)\iTunes
2009-09-25 23:17:22 ----A---- C:\Windows\system32\javaws.exe
2009-09-25 23:17:22 ----A---- C:\Windows\system32\javaw.exe
2009-09-25 23:17:22 ----A---- C:\Windows\system32\java.exe
2009-09-25 23:17:22 ----A---- C:\Windows\system32\deploytk.dll
2009-09-25 23:17:09 ----D---- C:\Program Files (x86)\Java
2009-09-23 17:51:26 ----D---- C:\Users\Navid\AppData\Roaming\Sports Interactive
2009-09-23 17:19:02 ----HD---- C:\Program Files (x86)\Zero G Registry
2009-09-23 17:19:02 ----D---- C:\Program Files (x86)\Sports Interactive
2009-09-23 15:55:47 ----D---- C:\Program Files (x86)\VID_0E8F&PID_0012
2009-09-22 18:32:50 ----D---- C:\ProgramData\DAEMON Tools Lite
2009-09-22 18:32:36 ----D---- C:\Program Files (x86)\DAEMON Tools Toolbar
2009-09-22 18:32:34 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2009-09-22 18:30:16 ----D---- C:\Users\Navid\AppData\Roaming\DAEMON Tools Lite
2009-09-22 18:26:50 ----D---- C:\Program Files (x86)\EA SPORTS
2009-09-21 21:34:37 ----D---- C:\Program Files (x86)\PokerStars.NET
2009-09-20 13:37:17 ----A---- C:\Windows\system32\D3DX81ab.dll
2009-09-19 21:37:56 ----D---- C:\Program Files (x86)\Windows Live Safety Center
2009-09-19 19:28:53 ----D---- C:\Program Files (x86)\WinPcap
2009-09-19 14:12:32 ----D---- C:\Program Files (x86)\Common Files\Blizzard Entertainment
2009-09-19 14:03:28 ----D---- C:\Program Files (x86)\Warcraft III
2009-09-17 20:53:06 ----D---- C:\Program Files (x86)\DVDVideoSoft
2009-09-17 20:53:06 ----D---- C:\Program Files (x86)\Common Files\DVDVideoSoft
2009-09-17 20:21:19 ----A---- C:\Windows\system32\XAudio2_5.dll
2009-09-17 20:21:19 ----A---- C:\Windows\system32\xactengine3_5.dll
2009-09-17 20:21:18 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2009-09-17 20:21:17 ----A---- C:\Windows\system32\D3DX9_42.dll
2009-09-17 20:21:17 ----A---- C:\Windows\system32\d3dx11_42.dll
2009-09-17 20:21:17 ----A---- C:\Windows\system32\d3dx10_42.dll
2009-09-17 20:21:17 ----A---- C:\Windows\system32\d3dcsx_42.dll
2009-09-17 20:21:16 ----A---- C:\Windows\system32\d3dx10_41.dll
2009-09-17 20:21:16 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2009-09-17 20:21:15 ----A---- C:\Windows\system32\XAudio2_4.dll
2009-09-17 20:21:15 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2009-09-17 20:21:15 ----A---- C:\Windows\system32\D3DX9_41.dll
2009-09-17 20:21:14 ----A---- C:\Windows\system32\xactengine3_4.dll
2009-09-17 20:21:13 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2009-09-17 20:21:12 ----A---- C:\Windows\system32\XAudio2_3.dll
2009-09-17 20:21:12 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2009-09-17 20:21:12 ----A---- C:\Windows\system32\xactengine3_3.dll
2009-09-17 20:21:12 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2009-09-17 20:21:11 ----A---- C:\Windows\system32\XAudio2_2.dll
2009-09-17 20:21:11 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2009-09-17 20:21:11 ----A---- C:\Windows\system32\xactengine3_2.dll
2009-09-17 20:21:10 ----A---- C:\Windows\system32\d3dx10_39.dll
2009-09-17 20:21:10 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2009-09-17 20:20:10 ----HD---- C:\Windows\msdownld.tmp
2009-09-17 20:20:06 ----D---- C:\Windows\system32\directx
2009-09-17 17:09:48 ----D---- C:\Users\Navid\AppData\Roaming\Azureus
2009-09-17 17:09:48 ----D---- C:\ProgramData\Azureus
2009-09-17 17:09:18 ----D---- C:\Program Files (x86)\Vuze
2009-09-17 17:09:18 ----D---- C:\Program Files (x86)\Common Files\i4j_jres
2009-09-15 20:40:21 ----D---- C:\Users\Navid\AppData\Roaming\Tobit
2009-09-15 20:40:10 ----D---- C:\Program Files (x86)\Common Files\Tobit
2009-09-15 20:40:10 ----A---- C:\Windows\system32\dvmsg.dll
2009-09-15 20:40:10 ----A---- C:\Windows\CISUnins.exe
2009-09-15 20:40:10 ----A---- C:\Windows\CICUnins.exe
2009-09-14 19:07:35 ----A---- C:\Windows\dd_ATL80SP1_KB973923MSI0F00.txt
2009-09-14 19:07:34 ----A---- C:\Windows\dd_ATL80SP1_KB973923UI0F00.txt
2009-09-14 19:07:28 ----A---- C:\Windows\dd_ATL80SP1_KB973923MSI0ED5.txt
2009-09-14 19:07:21 ----A---- C:\Windows\dd_ATL80SP1_KB973923UI0ED5.txt
2009-09-14 18:04:52 ----D---- C:\Users\Navid\AppData\Roaming\WinRAR
2009-09-14 17:09:53 ----A---- C:\Windows\system32\PnkBstrB.exe
__________________
Alt 08.10.2009, 15:41   #4
Teimaui
 
Werbung öffnet sich - Standard

Werbung öffnet sich


Fortsetzung

2009-09-14 17:09:52 ----A---- C:\Windows\system32\PnkBstrA.exe
2009-09-14 17:09:51 ----A---- C:\Windows\game.ini
2009-09-14 16:54:39 ----D---- C:\Program Files (x86)\Activision
2009-09-14 16:32:23 ----D---- C:\Users\Navid\AppData\Roaming\Nero
2009-09-14 14:21:38 ----D---- C:\ProgramData\Messenger Plus!
2009-09-13 21:13:23 ----A---- C:\Windows\system32\GEARAspi.dll
2009-09-13 21:12:56 ----D---- C:\ProgramData\{0DD0EEEE-2A7C-411C-9243-1AE62F445FC3}
2009-09-13 21:12:18 ----D---- C:\Program Files (x86)\Bonjour
2009-09-13 21:11:57 ----D---- C:\Program Files (x86)\QuickTime
2009-09-13 21:09:16 ----D---- C:\Program Files (x86)\Common Files\Apple
2009-09-13 20:53:24 ----D---- C:\Program Files (x86)\Messenger Plus! Live
2009-09-13 20:50:55 ----D---- C:\Program Files (x86)\Microsoft
2009-09-13 20:50:42 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2009-09-13 20:50:26 ----D---- C:\Program Files (x86)\Windows Live
2009-09-13 20:49:25 ----D---- C:\ProgramData\Apple
2009-09-13 20:49:25 ----D---- C:\Program Files (x86)\Apple Software Update
2009-09-13 20:47:44 ----D---- C:\Program Files (x86)\Common Files\Windows Live
2009-09-13 16:41:26 ----A---- C:\Windows\system32\CmdLineExt_x64.dll
2009-09-13 16:41:04 ----A---- C:\Windows\system32\XAudio2_1.dll
2009-09-13 16:41:04 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2009-09-13 16:41:03 ----A---- C:\Windows\system32\xactengine3_1.dll
2009-09-13 16:41:03 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2009-09-13 16:41:03 ----A---- C:\Windows\system32\d3dx10_38.dll
2009-09-13 16:41:03 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2009-09-13 16:41:02 ----A---- C:\Windows\system32\D3DX9_38.dll
2009-09-13 16:41:01 ----A---- C:\Windows\system32\XAudio2_0.dll
2009-09-13 16:41:00 ----A---- C:\Windows\system32\xactengine3_0.dll
2009-09-13 16:41:00 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2009-09-13 16:40:59 ----A---- C:\Windows\system32\xactengine2_10.dll
2009-09-13 16:40:58 ----A---- C:\Windows\system32\d3dx10_36.dll
2009-09-13 16:40:58 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2009-09-13 16:40:57 ----A---- C:\Windows\system32\d3dx9_36.dll
2009-09-13 16:40:56 ----A---- C:\Windows\system32\xactengine2_9.dll
2009-09-13 16:40:55 ----A---- C:\Windows\system32\d3dx9_35.dll
2009-09-13 16:40:55 ----A---- C:\Windows\system32\d3dx10_35.dll
2009-09-13 16:40:55 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2009-09-13 16:40:54 ----A---- C:\Windows\system32\xactengine2_8.dll
2009-09-13 16:40:54 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2009-09-13 16:40:54 ----A---- C:\Windows\system32\d3dx10_34.dll
2009-09-13 16:40:54 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2009-09-13 16:40:53 ----A---- C:\Windows\system32\d3dx9_34.dll
2009-09-13 16:40:52 ----A---- C:\Windows\system32\xactengine2_7.dll
2009-09-13 16:40:52 ----A---- C:\Windows\system32\d3dx9_33.dll
2009-09-13 16:40:52 ----A---- C:\Windows\system32\d3dx10_33.dll
2009-09-13 16:40:52 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2009-09-13 16:40:51 ----A---- C:\Windows\system32\xactengine2_6.dll
2009-09-13 16:40:50 ----A---- C:\Windows\system32\xactengine2_5.dll
2009-09-13 16:40:49 ----A---- C:\Windows\system32\xactengine2_4.dll
2009-09-13 16:40:49 ----A---- C:\Windows\system32\x3daudio1_1.dll
2009-09-13 16:40:49 ----A---- C:\Windows\system32\d3dx9_32.dll
2009-09-13 16:40:49 ----A---- C:\Windows\system32\d3dx10.dll
2009-09-13 16:40:48 ----A---- C:\Windows\system32\xinput1_2.dll
2009-09-13 16:40:48 ----A---- C:\Windows\system32\xactengine2_3.dll
2009-09-13 16:40:48 ----A---- C:\Windows\system32\d3dx9_31.dll
2009-09-13 16:40:47 ----A---- C:\Windows\system32\xinput1_1.dll
2009-09-13 16:40:47 ----A---- C:\Windows\system32\xactengine2_2.dll
2009-09-13 16:40:46 ----A---- C:\Windows\system32\xactengine2_1.dll
2009-09-13 16:40:42 ----A---- C:\Windows\system32\xactengine2_0.dll
2009-09-13 16:40:42 ----A---- C:\Windows\system32\x3daudio1_0.dll
2009-09-13 16:40:42 ----A---- C:\Windows\system32\d3dx9_29.dll
2009-09-13 16:40:41 ----A---- C:\Windows\system32\d3dx9_27.dll
2009-09-13 16:40:40 ----A---- C:\Windows\system32\d3dx9_26.dll
2009-09-13 16:40:40 ----A---- C:\Windows\system32\d3dx9_25.dll
2009-09-13 16:40:40 ----A---- C:\Windows\system32\d3dx9_24.dll
2009-09-13 16:40:15 ----A---- C:\Windows\system32\xinput1_3.dll
2009-09-13 16:40:15 ----A---- C:\Windows\system32\D3DX9_37.dll
2009-09-13 16:40:15 ----A---- C:\Windows\system32\d3dx10_37.dll
2009-09-13 16:40:15 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2009-09-13 16:40:12 ----D---- C:\Windows\system32\xlive
2009-09-13 16:40:12 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2009-09-13 16:11:08 ----D---- C:\Program Files (x86)\Common Files\DivX Shared
2009-09-13 15:34:16 ----D---- C:\Program Files (x86)\Rockstar Games
2009-09-13 15:33:10 ----D---- C:\Users\Navid\AppData\Roaming\vlc
2009-09-13 15:16:52 ----D---- C:\Users\Navid\AppData\Roaming\DivX
2009-09-13 15:14:32 ----A---- C:\Windows\system32\win_utilman.exe
2009-09-13 15:02:53 ----D---- C:\Users\Navid\AppData\Roaming\Macromedia
2009-09-13 15:02:51 ----D---- C:\Users\Navid\AppData\Roaming\Adobe
2009-09-13 14:34:45 ----A---- C:\Windows\dd_NET_Framework35_LangPack_MSI700F.txt
2009-09-13 14:33:22 ----A---- C:\Windows\dd_depcheck_NETFX_EXP_35.txt
2009-09-13 14:33:03 ----A---- C:\Windows\dd_dotnetfx35error_lp.txt
2009-09-13 14:33:02 ----A---- C:\Windows\dd_dotnetfx35install_lp.txt
2009-09-13 14:13:38 ----D---- C:\Users\Navid\AppData\Roaming\Opera
2009-09-13 14:13:17 ----D---- C:\Program Files (x86)\Opera
2009-09-13 13:53:53 ----D---- C:\Users\Navid\AppData\Roaming\GlarySoft
2009-09-13 13:34:27 ----D---- C:\Program Files (x86)\WinRAR
2009-09-13 13:33:49 ----D---- C:\Program Files (x86)\Common Files\PX Storage Engine
2009-09-13 13:33:39 ----D---- C:\Program Files (x86)\DivX
2009-09-13 13:32:26 ----D---- C:\Users\Navid\AppData\Roaming\Apple Computer
2009-09-13 13:30:59 ----D---- C:\ProgramData\Apple Computer
2009-09-13 13:29:33 ----D---- C:\Program Files (x86)\VideoLAN
2009-09-12 22:39:58 ----D---- C:\Program Files (x86)\MSXML 4.0
2009-09-12 22:35:44 ----A---- C:\Windows\system32\tzres.dll
2009-09-12 22:05:57 ----D---- C:\Program Files (x86)\Mozilla Firefox
2009-09-12 12:53:43 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-09-12 12:53:43 ----A---- C:\Windows\system32\icardres.dll
2009-09-12 12:53:42 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-09-12 12:53:42 ----A---- C:\Windows\system32\infocardapi.dll
2009-09-12 12:53:42 ----A---- C:\Windows\system32\icardagt.exe
2009-09-12 12:53:37 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-09-12 12:53:34 ----A---- C:\Windows\system32\PresentationHost.exe
2009-09-12 12:48:13 ----A---- C:\Windows\system32\netfxperf.dll
2009-09-12 12:48:04 ----A---- C:\Windows\system32\dfshim.dll
2009-09-12 12:47:57 ----A---- C:\Windows\system32\mscoree.dll
2009-09-12 12:47:50 ----A---- C:\Windows\system32\mscorier.dll
2009-09-12 12:47:47 ----A---- C:\Windows\system32\mscories.dll
2009-09-12 12:39:10 ----A---- C:\Windows\system32\mshtml.dll
2009-09-12 12:39:08 ----A---- C:\Windows\system32\occache.dll
2009-09-12 12:39:07 ----A---- C:\Windows\system32\ieframe.dll
2009-09-12 12:39:06 ----A---- C:\Windows\system32\urlmon.dll
2009-09-12 12:39:05 ----A---- C:\Windows\system32\wininet.dll
2009-09-12 12:39:05 ----A---- C:\Windows\system32\iertutil.dll
2009-09-12 12:39:04 ----A---- C:\Windows\system32\msfeeds.dll
2009-09-12 12:39:04 ----A---- C:\Windows\system32\ieUnatt.exe
2009-09-12 12:39:04 ----A---- C:\Windows\system32\iedkcs32.dll
2009-09-12 12:39:04 ----A---- C:\Windows\system32\ieaksie.dll
2009-09-12 12:39:03 ----A---- C:\Windows\system32\mstime.dll
2009-09-12 12:39:03 ----A---- C:\Windows\system32\jsproxy.dll
2009-09-12 12:39:03 ----A---- C:\Windows\system32\ieencode.dll
2009-09-12 12:38:55 ----A---- C:\Windows\system32\EncDec.dll
2009-09-12 12:38:54 ----A---- C:\Windows\system32\psisdecd.dll
2009-09-12 12:38:26 ----A---- C:\Windows\system32\TCPSVCS.EXE
2009-09-12 12:38:26 ----A---- C:\Windows\system32\NETSTAT.EXE
2009-09-12 12:38:26 ----A---- C:\Windows\system32\netiohlp.dll
2009-09-12 12:38:26 ----A---- C:\Windows\system32\MRINFO.EXE
2009-09-12 12:38:26 ----A---- C:\Windows\system32\HOSTNAME.EXE
2009-09-12 12:38:26 ----A---- C:\Windows\system32\finger.exe
2009-09-12 12:38:26 ----A---- C:\Windows\system32\ARP.EXE
2009-09-12 12:38:25 ----A---- C:\Windows\system32\ROUTE.EXE
2009-09-12 12:38:25 ----A---- C:\Windows\system32\netevent.dll
2009-09-12 12:38:03 ----A---- C:\Windows\system32\sdohlp.dll
2009-09-12 12:38:03 ----A---- C:\Windows\system32\iasrecst.dll
2009-09-12 12:38:03 ----A---- C:\Windows\system32\iashost.exe
2009-09-12 12:38:03 ----A---- C:\Windows\system32\iasdatastore.dll
2009-09-12 12:38:03 ----A---- C:\Windows\system32\iasads.dll
2009-09-12 12:37:56 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-09-12 12:37:55 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2009-09-12 12:37:50 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-09-12 12:37:50 ----A---- C:\Windows\system32\logagent.exe
2009-09-12 12:37:36 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-09-12 12:37:35 ----A---- C:\Windows\system32\mf.dll
2009-09-12 12:37:25 ----A---- C:\Windows\system32\wmp.dll
2009-09-12 12:37:23 ----A---- C:\Windows\system32\wmpdxm.dll
2009-09-12 12:37:22 ----A---- C:\Windows\system32\spwmp.dll
2009-09-12 12:37:22 ----A---- C:\Windows\system32\dxmasf.dll
2009-09-12 12:37:21 ----A---- C:\Windows\system32\wmploc.DLL
2009-09-12 12:37:14 ----A---- C:\Windows\system32\secur32.dll
2009-09-12 12:37:14 ----A---- C:\Windows\system32\kernel32.dll
2009-09-12 12:37:14 ----A---- C:\Windows\system32\apilogen.dll
2009-09-12 12:37:14 ----A---- C:\Windows\system32\amxread.dll
2009-09-12 12:37:11 ----A---- C:\Windows\system32\rpcrt4.dll
2009-09-12 12:37:07 ----A---- C:\Windows\system32\mstscax.dll
2009-09-12 12:37:05 ----A---- C:\Windows\system32\msxml3.dll
2009-09-12 12:37:00 ----A---- C:\Windows\system32\shell32.dll
2009-09-12 12:36:55 ----A---- C:\Windows\system32\t2embed.dll
2009-09-12 12:36:55 ----A---- C:\Windows\system32\fontsub.dll
2009-09-12 12:36:55 ----A---- C:\Windows\system32\dciman32.dll
2009-09-12 12:36:55 ----A---- C:\Windows\system32\atmfd.dll
2009-09-12 12:36:53 ----A---- C:\Windows\system32\jscript.dll
2009-09-12 12:36:52 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-09-12 12:36:52 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-09-12 12:36:52 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-09-12 12:36:50 ----A---- C:\Windows\system32\localspl.dll
2009-09-12 12:36:46 ----A---- C:\Windows\system32\msxml6.dll
2009-09-12 12:36:45 ----A---- C:\Windows\system32\win32spl.dll
2009-09-12 12:36:43 ----A---- C:\Windows\system32\schannel.dll
2009-09-12 12:36:40 ----A---- C:\Windows\system32\gdi32.dll
2009-09-12 12:36:39 ----A---- C:\Windows\system32\connect.dll
2009-09-12 12:36:36 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-09-12 12:36:35 ----A---- C:\Windows\system32\winhttp.dll
2009-09-12 12:36:33 ----A---- C:\Windows\system32\explorer.exe
2009-09-12 12:36:33 ----A---- C:\Windows\explorer.exe
2009-09-12 12:36:32 ----A---- C:\Windows\system32\wmpeffects.dll
2009-09-12 12:36:28 ----A---- C:\Windows\system32\atl.dll
2009-09-12 12:36:25 ----A---- C:\Windows\system32\dataclen.dll
2009-09-12 12:36:22 ----A---- C:\Windows\system32\wlansec.dll
2009-09-12 12:36:22 ----A---- C:\Windows\system32\wlanmsm.dll
2009-09-12 12:36:22 ----A---- C:\Windows\system32\L2SecHC.dll
2009-09-12 12:36:15 ----A---- C:\Windows\system32\xolehlp.dll
2009-09-12 12:36:15 ----A---- C:\Windows\system32\msdtcprx.dll
2009-09-12 12:36:13 ----A---- C:\Windows\system32\avifil32.dll
2009-09-12 12:36:12 ----A---- C:\Windows\system32\Faultrep.dll
2009-09-12 12:29:35 ----D---- C:\Users\Navid\AppData\Roaming\Google
2009-09-12 12:29:30 ----A---- C:\Windows\system32\netapi32.dll
2009-09-12 12:28:20 ----SD---- C:\Users\Navid\AppData\Roaming\Microsoft
2009-09-12 12:28:20 ----D---- C:\Users\Navid\AppData\Roaming\Media Center Programs
2009-09-12 12:25:17 ----SHD---- C:\Programme
2009-09-12 12:25:17 ----SHD---- C:\ProgramData\Vorlagen
2009-09-12 12:25:17 ----SHD---- C:\ProgramData\Startmenü
2009-09-12 12:25:17 ----SHD---- C:\ProgramData\Favoriten
2009-09-12 12:25:17 ----SHD---- C:\ProgramData\Dokumente
2009-09-12 12:25:17 ----SHD---- C:\ProgramData\Anwendungsdaten
2009-09-12 12:25:17 ----SHD---- C:\Dokumente und Einstellungen
2009-09-12 11:42:18 ----A---- C:\Windows\system32\hcwutl32_priv.dll
2009-09-12 11:42:18 ----A---- C:\Windows\system32\hcwutl32.dll
2009-09-12 11:42:18 ----A---- C:\Windows\system32\hcwpnp32_priv.dll
2009-09-12 11:42:18 ----A---- C:\Windows\system32\hcwpnp32.dll
2009-09-12 11:42:18 ----A---- C:\Windows\system32\hcwi2c32.dll
2009-09-12 11:37:44 ----D---- C:\Users\Navid\AppData\Roaming\Symantec
2009-09-12 11:37:15 ----D---- C:\Users\Navid\AppData\Roaming\Identities
2009-09-12 11:31:31 ----A---- C:\Windows\system32\wups.dll
2009-09-12 11:31:31 ----A---- C:\Windows\system32\wudriver.dll
2009-09-12 11:31:31 ----A---- C:\Windows\system32\wuapi.dll
2009-09-12 11:31:27 ----A---- C:\Windows\system32\wuwebv.dll
2009-09-12 11:31:27 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 months======

2009-10-08 16:39:16 ----D---- C:\Windows\Temp
2009-10-08 16:37:04 ----D---- C:\Windows\Tasks
2009-10-08 16:37:04 ----D---- C:\Windows\SysWOW64
2009-10-08 16:37:04 ----D---- C:\Windows
2009-10-08 15:51:11 ----RD---- C:\Program Files (x86)
2009-10-08 15:42:06 ----D---- C:\Windows\system32\drivers
2009-10-08 15:42:05 ----HD---- C:\ProgramData
2009-10-08 15:39:38 ----D---- C:\Windows\Debug
2009-10-08 15:03:43 ----SHD---- C:\Windows\Installer
2009-10-08 11:59:34 ----D---- C:\ProgramData\NVIDIA
2009-10-07 21:12:35 ----D---- C:\Windows\Prefetch
2009-10-07 21:12:24 ----D---- C:\Windows\System32
2009-10-07 21:12:19 ----D---- C:\Windows\inf
2009-10-07 21:11:22 ----SHD---- C:\System Volume Information
2009-10-04 09:10:10 ----D---- C:\Windows\winsxs
2009-10-03 16:15:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2009-10-03 15:15:06 ----RSD---- C:\Windows\assembly
2009-10-02 16:59:01 ----D---- C:\Program Files (x86)\Common Files
2009-10-02 16:52:16 ----SD---- C:\Windows\Downloaded Program Files
2009-09-26 20:47:45 ----D---- C:\ProgramData\Adobe
2009-09-26 18:31:35 ----RD---- C:\Program Files
2009-09-21 22:22:15 ----D---- C:\ProgramData\Microsoft Help
2009-09-18 14:08:40 ----SHD---- C:\Boot
2009-09-14 19:09:21 ----D---- C:\Program Files (x86)\Microsoft Works
2009-09-13 20:50:46 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2009-09-13 16:40:44 ----D---- C:\Windows\Microsoft.NET
2009-09-13 16:40:16 ----D---- C:\Windows\Logs
2009-09-13 14:59:57 ----RD---- C:\Users
2009-09-13 14:45:16 ----D---- C:\Windows\AppPatch
2009-09-13 14:45:14 ----D---- C:\Windows\ehome
2009-09-13 14:45:12 ----D---- C:\Windows\system32\manifeststore
2009-09-13 14:45:06 ----D---- C:\Program Files (x86)\Common Files\Symantec Shared
2009-09-13 14:25:44 ----D---- C:\ProgramData\Symantec
2009-09-13 13:57:40 ----D---- C:\ProgramData\Google
2009-09-13 13:57:40 ----D---- C:\Program Files (x86)\Google
2009-09-13 13:31:22 ----D---- C:\Program Files (x86)\Internet Explorer
2009-09-13 12:27:27 ----D---- C:\Windows\rescache
2009-09-13 09:11:34 ----D---- C:\Windows\system32\de-DE
2009-09-13 09:11:28 ----D---- C:\Windows\system32\XPSViewer
2009-09-13 09:11:24 ----D---- C:\Windows\system32\wbem
2009-09-13 09:11:24 ----D---- C:\Windows\system32\en-US
2009-09-13 09:11:03 ----D---- C:\Program Files (x86)\Windows Mail
2009-09-13 09:10:58 ----D---- C:\Windows\system32\migration
2009-09-13 09:10:55 ----D---- C:\Program Files (x86)\Windows Media Player
2009-09-12 20:40:13 ----SD---- C:\ProgramData\Microsoft
2009-09-12 11:37:29 ----SHD---- C:\$Recycle.Bin
2009-09-12 11:31:49 ----D---- C:\Windows\SoftwareDistribution

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys []
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys []
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys []
R2 int15;int15; \??\C:\Windows\SysWOW64\drivers\int15_64.sys [2008-07-16 17952]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx64.sys []
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys []
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys []
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys []
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S3 a4fxeao0;a4fxeao0; C:\Windows\system32\drivers\a4fxeao0.sys []
S3 drmkaud;Microsoft Kernel-DRM-Audioentschlüsselung; C:\Windows\system32\drivers\drmkaud.sys []
S3 HdAudAddService;Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst; C:\Windows\system32\drivers\HdAudio.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys []
S3 MSPCLOCK;Microsoft Proxy für Streaming Clock; C:\Windows\system32\drivers\MSPCLOCK.sys []
S3 MSPQM;Microsoft Proxy für Streaming Quality Manager; C:\Windows\system32\drivers\MSPQM.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\Windows\system32\drivers\MSTEE.sys []
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys []
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys []
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6; C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [2007-09-11 124832]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Bonjour Service;Bonjour-Dienst; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ClipInc001;ClipInc 001; d:\Spiele Usw\Musik\Tobit ClipInc\Server\ClipInc-Server.exe [2009-05-27 2230024]
R2 ETService;Empowering Technology Service; C:\Program Files\PACKARDBELL\Packard Bell Recovery Management\Service\ETService.exe [2008-07-16 24576]
R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2008-09-08 726016]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]
R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2008-09-08 221696]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-09-14 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2009-10-07 190144]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2009-08-17 239648]
R3 iPod Service;iPod-Dienst; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 660256]
S2 AVP;Kaspersky Internet Security; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-05-25 303376]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2008-07-27 93184]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-11-14 654848]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-08-25 138168]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-04-28 529704]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-21 19968]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2008-12-23 117264]

-----------------EOF-----------------

Antwort

Themen zu Werbung öffnet sich
antivir, avp, avp.exe, bho, c.exe, festplatte, google, hijack, hijackthis, internet, internet explorer, internet security, internet security 2010, kaspersky, local\temp, monitor, mp3, musik, packard bell, plug-in, problem, rundll, scan, security, senden, server, software, syswow64, tastatur, virtuelle tastatur, vista, werbung, windows


« Datei löschen scheitert, selbst im abgesicherten Modus!! | Trojan.Win32.TDSS.ajrr »


Ähnliche Themen: Werbung öffnet sich


  1. Werbung in Firefox, Fenster mit PC Optimierung Werbung öffnet sich automatisch
    Log-Analyse und Auswertung - 10.04.2015 (11)
  2. Inernet öffnet sich von alleine + Tabs öffnen sich mit Werbung
    Plagegeister aller Art und deren Bekämpfung - 08.12.2014 (27)
  3. Werbung öffnet sich Immer
    Plagegeister aller Art und deren Bekämpfung - 24.07.2013 (7)
  4. Werbung öffnet sich ungewollt
    Plagegeister aller Art und deren Bekämpfung - 13.05.2011 (7)
  5. IE öffnet sich alleine/Werbung
    Log-Analyse und Auswertung - 14.11.2010 (18)
  6. Es öffnet sich dauernd Werbung!
    Log-Analyse und Auswertung - 24.08.2010 (1)
  7. Firefox öffnet Tabs mit Werbung / Anstelle einer verlinkten URL öffnet sich Werbung
    Plagegeister aller Art und deren Bekämpfung - 08.08.2010 (4)
  8. IE Werbung öffnet sich ständig
    Log-Analyse und Auswertung - 10.06.2010 (19)
  9. IE Öffnet sich immer mit Werbung was tun?
    Log-Analyse und Auswertung - 17.05.2010 (1)
  10. werbung öffnet sich...
    Log-Analyse und Auswertung - 27.03.2010 (8)
  11. IE öffnet sich automatisch mit Werbung
    Plagegeister aller Art und deren Bekämpfung - 24.02.2010 (8)
  12. IE öffnet sich regelmäßig mit Werbung
    Log-Analyse und Auswertung - 23.12.2009 (11)
  13. Internetexplorer öffnet sich mit Werbung
    Log-Analyse und Auswertung - 22.09.2009 (5)
  14. Werbung öffnet sich
    Alles rund um Windows - 18.02.2009 (7)
  15. Werbung die sich öffnet
    Plagegeister aller Art und deren Bekämpfung - 02.08.2008 (0)
  16. IE Werbung Pop-up öffnet sich von allein
    Log-Analyse und Auswertung - 25.01.2008 (1)
  17. IE öffnet sich von selbst mit Werbung...
    Log-Analyse und Auswertung - 11.01.2008 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Werbung öffnet sich - Hallo Seit kurzem öffnen sich bei mir ständig Internet Explorer Fenster mit verschiedener Werbung. Mir ist bewusst, dass die hier bereits mehrmals gemeldet wurde, doch da jedes mal spezifisch auf - Werbung öffnet sich...
Archiv
Du betrachtest: Werbung öffnet sich auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55