Browser startet verdächtige Websites, Schutz-Programme können nicht ausgeführt werden

buddelbrooks · 02.11.2009, 11:28

======List of files/folders created in the last 2 months======

2009-11-02 00:56:38 ----D---- C:\Programme\trend micro
2009-11-02 00:56:37 ----D---- C:\rsit
2009-11-02 00:41:07 ----D---- C:\Programme\Malwarebytes' Anti-Malware
2009-11-02 00:41:07 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2009-11-02 00:32:28 ----D---- C:\Programme\CCleaner
2009-11-02 00:28:17 ----HDC---- C:\WINDOWS\$NtUninstallKB972260$
2009-10-08 17:23:44 ----A---- C:\WINDOWS\system32\lsdelete.exe
2009-10-08 17:11:43 ----HDC---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{EF63305C-BAD7-4144-9208-D65528260864}
2009-10-08 17:11:38 ----D---- C:\Programme\Lavasoft
2009-10-08 17:11:38 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lavasoft
2009-10-08 16:00:55 ----D---- C:\Programme\Spybot - Search & Destroy
2009-09-21 10:13:22 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SITEguard
2009-09-21 10:12:22 ----D---- C:\Programme\Gemeinsame Dateien\iS3
2009-09-21 10:12:21 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\STOPzilla!
2009-09-10 18:14:07 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-09-10 18:14:03 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-09-10 18:13:56 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$

======List of files/folders modified in the last 2 months======

2009-11-02 00:59:12 ----D---- C:\Programme\Mozilla Firefox
2009-11-02 00:57:32 ----D---- C:\WINDOWS
2009-11-02 00:57:27 ----HD---- C:\WINDOWS\inf
2009-11-02 00:56:38 ----RD---- C:\Programme
2009-11-02 00:53:08 ----D---- C:\WINDOWS\system32\drivers
2009-11-02 00:46:41 ----D---- C:\WINDOWS\Temp
2009-11-02 00:46:40 ----D---- C:\WINDOWS\system32\CatRoot2
2009-11-02 00:46:11 ----D---- C:\WINDOWS\system32
2009-11-02 00:45:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-11-02 00:33:09 ----D---- C:\WINDOWS\Minidump
2009-11-02 00:33:09 ----D---- C:\WINDOWS\Debug
2009-11-02 00:30:08 ----HD---- C:\WINDOWS\$hf_mig$
2009-11-02 00:28:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-09 10:43:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-09 10:43:13 ----SHD---- C:\System Volume Information
2009-10-09 10:43:13 ----D---- C:\WINDOWS\system32\Restore
2009-10-09 10:32:38 ----SH---- C:\boot.ini
2009-10-09 10:32:38 ----A---- C:\WINDOWS\win.ini
2009-10-09 10:32:38 ----A---- C:\WINDOWS\system.ini
2009-10-08 18:16:16 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy
2009-10-08 17:15:36 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-10-08 17:15:27 ----SD---- C:\WINDOWS\Tasks
2009-10-08 17:11:42 ----SHD---- C:\WINDOWS\Installer
2009-10-08 15:07:02 ----D---- C:\WINDOWS\system32\CatRoot
2009-10-08 15:06:57 ----D---- C:\WINDOWS\Prefetch
2009-10-08 15:05:12 ----D---- C:\Programme\Internet Explorer
2009-10-08 14:55:43 ----D---- C:\WINDOWS\system32\de-de
2009-10-08 14:55:43 ----D---- C:\WINDOWS\Help
2009-10-08 14:53:53 ----D---- C:\WINDOWS\ie7updates
2009-10-08 14:53:18 ----D---- C:\WINDOWS\WBEM
2009-09-25 12:44:17 ----A---- C:\WINDOWS\NeroDigital.ini
2009-09-21 10:12:22 ----D---- C:\Programme\Gemeinsame Dateien
2009-09-20 20:43:13 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\Skype
2009-09-20 11:33:46 ----D---- C:\Dokumente und Einstellungen\user\Anwendungsdaten\skypePM
2009-09-14 21:32:17 ----A---- C:\WINDOWS\PhotoSnapViewer.INI
2009-09-04 15:40:09 ----D---- C:\WINDOWS\Microsoft.NET

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 intelppm;Intel-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 kbdhid;Tastatur-HID-Treiber; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 WmiAcpi;Microsoft Windows-Verwaltungsschnittstelle für ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS-Dienstanbieter-Unterstützungsumgebung; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2007-10-29 12032]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-07-28 55656]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2007-06-05 42000]
R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-10-17 22016]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-04-11 338944]
R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 BTKRNL;Bluetooth-Bus-Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-04-03 879624]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-04-03 74688]
R3 CmBatt;Treiber für Microsoft-ACPI-Kontrollmethodenkompatible Batterie; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344]
R3 HDAudBus;Microsoft UAA-Bustreiber für High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-05-21 6018464]
R3 mouhid;Maus-HID-Treiber; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-18 12288]
R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-11-17 3636864]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2008-10-09 1810856]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-03-27 224672]
R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2-aktivierter Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SCR3XX2K;SCR3xx USB SmartCardReader; C:\WINDOWS\system32\DRIVERS\SCR3XX2K.sys [2007-06-21 56448]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-06-05 39424]
S3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;USB-Videogerät (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2008-04-04 296320]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 accvssvc;AccSys WLAN Control Service; C:\Programme\Gemeinsame Dateien\AccSys\AccVSSvc.exe [2008-07-09 131072]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\WINDOWS\system32\agrsmsvc.exe [2008-03-18 13312]
R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 Apple Mobile Device;Apple Mobile Device; C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712]
R2 Bonjour Service;Bonjour-Dienst; C:\Programme\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 btwdins;Bluetooth Service; C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-03-31 264800]
R2 IviRegMgr;IviRegMgr; C:\Programme\Gemeinsame Dateien\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152]
R2 JavaQuickStarterService;Java Quick Starter; C:\Programme\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R3 Com4QLBEx;Com4QLBEx; C:\Programme\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqwmiex;hpqwmiex; C:\Programme\Hewlett-Packard\Shared\hpqwmiex.exe [2008-05-01 165192]
R3 iPod Service;iPod-Dienst; C:\Programme\iPod\bin\iPodService.exe [2009-06-05 541992]
S2 gupdate1c9ff2b57c9ad22;Google Update Service (gupdate1c9ff2b57c9ad22); C:\Programme\Google\Update\GoogleUpdate.exe /svc []
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Programme\Lavasoft\Ad-Aware\AAWService.exe [2009-10-08 1028432]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]
S3 NMIndexingService;NMIndexingService; C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe [2007-06-01 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Windows Media Player-Netzwerkfreigabedienst; C:\Programme\Windows Media Player\WMPNetwk.exe [2006-11-03 920576]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Browser startet verdächtige Websites, Schutz-Programme können nicht ausgeführt werden

Plagegeister aller Art und deren Bekämpfung: Browser startet verdächtige Websites, Schutz-Programme können nicht ausgeführt werden

Log - 2. Teil

Ähnliche Themen: Browser startet verdächtige Websites, Schutz-Programme können nicht ausgeführt werden