Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher

Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher


Plagegeister aller Art und deren Bekämpfung: Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 20.01.2010, 09:33   #1
arumpel
 
Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher - Standard

Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher


Hallo

IE öffnet manchmal nicht die eingegebene Webseite sondern Werbeseiten. Sind meistens sogar die gleichen. Am häufigsten vom Vodafone Shop, manchmal Conrad Electronic, ELV Elektronik, T-Shirt Seite...

Habe Spypot und Antivir schon vor dem Problem auf dem PC gehabt und hier hat nie was gemeckert.

Bisher habe ich Malwarebytes AntiMalware, AdAware, CCleaner, Trojan Remover und SDFix probiert. Es wurde eigentlich nichts gefunden. Nur SDFix hat mal eine hook.dll gemeldet aber das Problem beseitigt. Der IE macht allerdings immer noch das gleiche. Ist nicht sonderlich oft, vielleicht alle 20min mal ne Werbung aber ich verzweifle bald.

Hier das Log von RSIT

Logfile of random's system information tool 1.06 (written by random/random)
Run by Andre at 2010-01-20 09:13:17
Microsoft Windows XP Professional Service Pack 3
System drive C: has 1 GB (5%) free of 30 GB
Total RAM: 1022 MB (4% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:13:29, on 20.01.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir Desktop\sched.exe
C:\Programme\Avira\AntiVir Desktop\avguard.exe
C:\Programme\Conceptronic\Bluetooth Software\bin\btwdins.exe
C:\Programme\DriveCrypt Plus Pack\DCPP2Svc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Fast.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\taskswitch.exe
C:\WINDOWS\system32\fast.exe
C:\Programme\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
C:\Programme\Multimedia Card Reader\shwicon2k.exe
C:\Programme\UltraMon\UltraMon.exe
C:\Programme\Avira\AntiVir Desktop\avgnt.exe
C:\Programme\UltraMon\UltraMonTaskbar.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\DAEMON Tools\daemon.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\Skype\Phone\Skype.exe
C:\Programme\GMX\GMX SMS-Manager\SMSMngr.exe
C:\Programme\Microsoft ActiveSync\wcescomm.exe
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\ICQ6.5\ICQ.exe
C:\Programme\Conceptronic\Bluetooth Software\BTTray.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Programme\Logitech\SetPoint\SetPoint.exe
C:\PROGRA~1\MICROS~2\Office10\OUTLOOK.EXE
C:\Programme\KatMouse\KatMouse.exe
C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Programme\Gemeinsame Dateien\Logishrd\KHAL2\KHALMNPR.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Programme\Skype\Plugin Manager\skypePM.exe
C:\Programme\Lavasoft\Ad-Aware\AAWTray.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Dokumente und Einstellungen\Andre\Lokale Einstellungen\Temporary Internet Files\Content.IE5\10G6EIXL\RSIT[1].exe
C:\Programme\Trend Micro\HijackThis\Andre.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.afterbuy.de/afterbuy/admin.aspx?
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = www-proxy.t-online.de:80
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar1.dll
O2 - BHO: (no name) - {ee1babcf-cbe2-4c07-8e18-dfe6fc08c30a} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar1.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [BackgroundSwitcher] C:\WINDOWS\system32\bgswitch.exe
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [FastUser] C:\WINDOWS\system32\fast.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Programme\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Sunkist2k] C:\Programme\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [UltraMon] "C:\Programme\UltraMon\UltraMon.exe" /auto
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [TrojanScanner] C:\Programme\Trojan Remover\Trjscan.exe /boot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Programme\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [GMX SMS-Manager] C:\Programme\GMX\GMX SMS-Manager\SMSMngr.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programme\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ICQ] "C:\Programme\ICQ6.5\ICQ.exe" silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: E-Mail.lnk = ?
O4 - Startup: KatMouse.lnk = C:\Programme\KatMouse\KatMouse.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Programme\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Outlook.lnk = ?
O8 - Extra context menu item: An vorhandenes PDF anfügen - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: In Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Senden an &Bluetooth - C:\Programme\Conceptronic\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Mobilen Favoriten erstellen... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Conceptronic\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Conceptronic\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {ADACAA8F-3595-47FE-9C31-9C7471B9BEC7} (OCXDownloadChecker Control) - http://webcam.geovision.com.tw/cab/OCXChecker_8320.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1807E434-9F9D-42CC-A01C-D8C3F2BB4394}: NameServer = 192.168.0.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{A88DFE2A-0613-4EF0-806C-807E0EA1B9BB}: NameServer = 192.168.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{1807E434-9F9D-42CC-A01C-D8C3F2BB4394}: NameServer = 192.168.0.3
O17 - HKLM\System\CS2\Services\Tcpip\..\{1807E434-9F9D-42CC-A01C-D8C3F2BB4394}: NameServer = 192.168.0.3
O17 - HKLM\System\CS3\Services\Tcpip\..\{1807E434-9F9D-42CC-A01C-D8C3F2BB4394}: NameServer = 192.168.0.3
O18 - Protocol: haufereader - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Programme\Conceptronic\Bluetooth Software\bin\btwdins.exe
O23 - Service: SecurStar DCPPv2 Service (DCPP2Svc) - Unknown owner - C:\Programme\DriveCrypt Plus Pack\DCPP2Svc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Programme\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Programme\Gemeinsame Dateien\Logishrd\Bluetooth\LBTServ.exe

--
End of file - 12481 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Daily 1).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 2).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 3).job
C:\WINDOWS\tasks\Ad-Aware Update (Daily 4).job
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-09-23 1088296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Programme\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Anmelde-Hilfsprogramm - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\programme\google\googletoolbar1.dll [2008-12-14 2042944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ee1babcf-cbe2-4c07-8e18-dfe6fc08c30a} ]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10 321120]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\programme\google\googletoolbar1.dll [2008-12-14 2042944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"BackgroundSwitcher"=C:\WINDOWS\system32\bgswitch.exe [2001-10-19 19520]
"CoolSwitch"=C:\WINDOWS\system32\taskswitch.exe [2001-10-19 45632]
"FastUser"=C:\WINDOWS\system32\fast.exe [2001-10-19 49216]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"Acrobat Assistant 8.0"=C:\Programme\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2008-01-11 623992]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-11-17 577536]
"ISUSScheduler"=C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe [2005-02-16 81920]
"Sunkist2k"=C:\Programme\Multimedia Card Reader\shwicon2k.exe [2004-12-10 139264]
"UltraMon"=C:\Programme\UltraMon\UltraMon.exe [2006-10-12 304640]
"QuickTime Task"=C:\Programme\QuickTime\qttask.exe [2008-09-07 413696]
"avgnt"=C:\Programme\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824]
"TrojanScanner"=C:\Programme\Trojan Remover\Trjscan.exe [2009-08-04 1068424]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"DAEMON Tools"=C:\Programme\DAEMON Tools\daemon.exe [2007-04-03 165784]
"MSMSGS"=C:\Programme\Messenger\msmsgs.exe [2008-04-14 1695232]
"Skype"=C:\Programme\Skype\Phone\Skype.exe [2008-09-23 21755688]
"GMX SMS-Manager"=C:\Programme\GMX\GMX SMS-Manager\SMSMngr.exe [2007-07-19 3539968]
"H/PC Connection Agent"=C:\Programme\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"SpybotSD TeaTimer"=C:\Programme\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"ICQ"=C:\Programme\ICQ6.5\ICQ.exe [2009-11-16 172792]

C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
BTTray.lnk - C:\Programme\Conceptronic\Bluetooth Software\BTTray.exe
Logitech SetPoint.lnk - C:\Programme\Logitech\SetPoint\SetPoint.exe
Microsoft Outlook.lnk -

C:\Dokumente und Einstellungen\Andre\Startmenü\Programme\Autostart
E-Mail.lnk -
KatMouse.lnk - C:\Programme\KatMouse\KatMouse.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\programme\gemeinsame dateien\logishrd\bluetooth\LBTWlgn.dll [2009-07-20 72208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableChangePassword"=0
"DisableLockWorkstation"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoLogOff"=0
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Programme\ICQLite\ICQLite.exe"="C:\Programme\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"C:\Programme\Internet Explorer\IEXPLORE.EXE"="C:\Programme\Internet Explorer\IEXPLORE.EXE:*:Enabled:Internet Explorer"
"C:\Programme\WatchTVPro Ex Demo Version\WatchTVProExDemo.exe"="C:\Programme\WatchTVPro Ex Demo Version\WatchTVProExDemo.exe:*:Enabled:WatchTV Professional Ex TV-Software"
"C:\EASYLOG V5.0\SqlAny9\dbeng9.exe"="C:\EASYLOG V5.0\SqlAny9\dbeng9.exe:*:Enabled:Adaptive Server Anywhere Database Engine"
"C:\networkdvr\remote.exe"="C:\networkdvr\remote.exe:*:Enabled:remote"
"C:\Programme\Microsoft ActiveSync\wcescomm.exe"="C:\Programme\Microsoft ActiveSync\wcescomm.exe:*:Enabled:ActiveSync Connection Manager"
"C:\WINDOWS\system32\Bdvr.exe"="C:\WINDOWS\system32\Bdvr.exe:*:Enabled:Bdvr"
"C:\WINDOWS\system32\WebServer.exe"="C:\WINDOWS\system32\WebServer.exe:*:Enabled:WebServer"
"C:\Programme\Installationsassistent\Installationsassistent.exe"="C:\Programme\Installationsassistent\Installationsassistent.exe:*:Enabled:Installatio nsassistent"
"C:\Programme\FTP\WS_FTP95.exe"="C:\Programme\FTP\WS_FTP95.exe:*:Enabled:WS_FTP 95"
"C:\Programme\HS-InfoMan\HS-InfoMan\voicemail.exe"="C:\Programme\HS-InfoMan\HS-InfoMan\voicemail.exe:*:Enabled:voicemail"
"C:\Programme\HS-InfoMan\HS-InfoMan\HS-InfoMan.exe"="C:\Programme\HS-InfoMan\HS-InfoMan\HS-InfoMan.exe:*:Enabled:HS-InfoMan"
"C:\Programme\Bonjour\mDNSResponder.exe"="C:\Programme\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Programme\Messenger\msmsgs.exe"="C:\Programme\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Programme\Look@LAN\LookAtLan.exe"="C:\Programme\Look@LAN\LookAtLan.exe:*:Enabled:Look@LAN"
"D:\CAM_EZ Search.exe"="D:\CAM_EZ Search.exe:*:Enabled:CAM_EZ Search"
"C:\Programme\D-Link\AP Manager for DWL-2100AP\APMGR7XXX.exe"="C:\Programme\D-Link\AP Manager for DWL-2100AP\APMGR7XXX.exe:*:Enabled:APMGR7XXX"
"C:\Dokumente und Einstellungen\Andre\Desktop\NewTuxFlashx\NewTuxFlash.exe"="C:\Dokumente und Einstellungen\Andre\Desktop\NewTuxFlashx\NewTuxFlash.exe:*:Enabled:NewTuxFlash Application"
"E:\dbox\bootmanager\DBox_Boot.exe"="E:\dbox\bootmanager\DBox_Boot.exe:*:EnabledBox II Boot-Manager"
"D:\Tools\SearchNVS.exe"="D:\Tools\SearchNVS.exe:*:Enabled:SearchDVS Microsoft"
"C:\Programme\NVSCenter\NVSCenterV5.6\Center.exe"="C:\Programme\NVSCenter\NVSCenterV5.6\Center.exe:*:Enabled:V5.6"
"C:\Programme\RealVNC\VNC4\vncviewer.exe"="C:\Programme\RealVNC\VNC4\vncviewer.exe:*:Enabled:VNC Viewer for Win32"
"D:\Tools\DevFind_en.exe"="D:\Tools\DevFind_en.exe:*:EnabledevFind_en"
"E:\Multimedia\Easyn.cn SpeedDome\cd\IPCam??_??\Tools\DevFind_en.exe"="E:\Multimedia\Easyn.cn SpeedDome\cd\IPCam??_??\Tools\DevFind_en.exe:*:EnabledevFind_en"
"C:\EASYLOG V5.0\Client\EasyLog.exe"="C:\EASYLOG V5.0\Client\EasyLog.exe:*:Enabled:EASYLOG V5.0 Standalone"
"C:\Programme\ICQ6\ICQ.exe"="C:\Programme\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\ICQ6.5\ICQ.exe"="C:\Programme\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Programme\v8200\DMMultiView\MultiView.exe"="C:\Programme\v8200\DMMultiView\MultiView.exe:*:Enabled:MultiView"
"D:\fsetup.exe"="D:\fsetup.exe:*:Enabled:AVM FSetup Application"
"C:\Programme\Microsoft ActiveSync\rapimgr.exe"="C:\Programme\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Programme\Microsoft ActiveSync\WCESMgr.exe"="C:\Programme\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Programme\FRITZ!\igd_finder.exe"="C:\Programme\FRITZ!\igd_finder.exe:LocalSubNet:Enabled:AVM FRITZ!fax for FRITZ!Box - igd_finder.exe"
"C:\GV1480\GV1480.exe"="C:\GV1480\GV1480.exe:*:Enabled:Multicam Surveillance System"
"C:\GV1480\DMMcast.exe"="C:\GV1480\DMMcast.exe:*:Enabled:Multicast Application"
"C:\GV1480\TCPsvr.exe"="C:\GV1480\TCPsvr.exe:*:Enabled:TcpSvr Application"
"C:\Programme\Skype\Phone\Skype.exe"="C:\Programme\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\Microsoft ActiveSync\rapimgr.exe"="C:\Programme\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Programme\Microsoft ActiveSync\wcescomm.exe"="C:\Programme\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Programme\Microsoft ActiveSync\WCESMgr.exe"="C:\Programme\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ade13139-e560-11de-b000-00115b872598}]
shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b219de36-a0fb-11de-af6d-00115b872598}]
shell\AutoRun\command - F:\USBAutoRun.exe


======File associations======

.js - open - "C:\Programme\Macromedia\Dreamweaver 4\Dreamweaver.exe" "%1"
.scr - open - "C:\WINDOWS\notepad.exe" "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2010-01-17 19:26:15 ----A---- C:\WINDOWS\system32\ztvunrar36.dll
2010-01-17 19:26:15 ----A---- C:\WINDOWS\system32\ztvunace26.dll
2010-01-17 19:26:15 ----A---- C:\WINDOWS\system32\ztvcabinet.dll
2010-01-17 19:26:15 ----A---- C:\WINDOWS\system32\UNRAR3.dll
2010-01-17 19:26:15 ----A---- C:\WINDOWS\system32\unacev2.dll
2010-01-17 19:26:11 ----D---- C:\Programme\Trojan Remover
2010-01-17 19:26:11 ----D---- C:\Dokumente und Einstellungen\Andre\Anwendungsdaten\Simply Super Software
2010-01-17 19:26:11 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Simply Super Software
2010-01-17 10:53:50 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-16 20:59:51 ----A---- C:\WINDOWS\imsins.BAK
2010-01-16 20:59:42 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-16 20:47:42 ----D---- C:\WINDOWS\temp
2010-01-16 20:39:45 ----D---- C:\WINDOWS\ERUNT
2010-01-16 20:38:33 ----A---- C:\WINDOWS\ntbtlog.txt
2010-01-16 20:28:46 ----D---- C:\SDFix
2010-01-16 20:28:28 ----A---- C:\SDFix.exe
2010-01-12 18:29:08 ----D---- C:\Qoobox
2010-01-12 11:38:55 ----D---- C:\Temp
2010-01-10 20:28:24 ----D---- C:\rsit
2010-01-10 20:26:55 ----D---- C:\Programme\Malwarebytes' Anti-Malware
2010-01-10 20:26:10 ----D---- C:\Programme\CCleaner
2010-01-07 22:10:25 ----A---- C:\WINDOWS\geomdbrepair.ini
2010-01-07 22:10:21 ----A---- C:\WINDOWS\GeoHWRecSetting.ini
2010-01-07 22:10:20 ----A---- C:\WINDOWS\Upload.ini
2010-01-07 22:10:20 ----A---- C:\WINDOWS\geobcast.ini
2010-01-07 22:10:19 ----A---- C:\WINDOWS\geolan.ini
2010-01-07 22:10:19 ----A---- C:\WINDOWS\GEO_CS.ini
2010-01-07 22:10:18 ----A---- C:\WINDOWS\GeoRuntime.ini
2010-01-07 22:10:17 ----A---- C:\WINDOWS\YAAN_U.ini
2010-01-07 22:10:17 ----A---- C:\WINDOWS\GvPTZ_General.ini
2010-01-07 22:10:17 ----A---- C:\WINDOWS\GeoMpeg4.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\VIDO_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\VCC50i_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\TOA_cc551_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\Samsung(SPD-3300)_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\SAE_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\Pishion 22X_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\PelcoSpetra3_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\PelcoSpetra Mini Dome ( SD4-WO)_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\Panasonic(CS960)_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\NanWang_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\Minking_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\Messoa_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\MESSOA D-700 series_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\Lilin7625_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\LG_Multix_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\KZC_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\KamKo_U.ini
2010-01-07 22:10:16 ----A---- C:\WINDOWS\JVC_TK_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\ZC-122_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\SonySNC_RZ50_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\SonySNC_RZ25_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\SonySNC_RX550_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\SonySNC_P5_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\PTU_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\Panasonic_BB381_481_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\Panasonic_BB_BL_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\JVC_IPCAM_PTZ_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\JEC_P_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\HiSharp PelcoP_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\HiSharp PelcoD_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\GKB_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\EverFocus_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\ELBEX_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\Dynacolor2_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\D-max_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\CPT_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\Bosch_U.ini
2010-01-07 22:10:15 ----A---- C:\WINDOWS\Axis_PTZ_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\VCC4_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Sony_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Semsonmatic_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Samsung_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Samsung(SDC-1600)_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Panasonic_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Lilin_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Kalatal_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Dynacolor_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\DongYang_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Dome_PelcoP_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\Dome_PelcoD_U.ini
2010-01-07 22:10:14 ----A---- C:\WINDOWS\AdemCo_U.ini
2010-01-07 22:10:13 ----A---- C:\WINDOWS\VCC3_U.ini
2010-01-07 22:10:13 ----A---- C:\WINDOWS\PTZBackupFile.ini
2010-01-07 22:10:13 ----A---- C:\WINDOWS\M3JPEG.ini
2010-01-07 22:10:13 ----A---- C:\WINDOWS\GeoDebug61.ini
2010-01-07 22:10:12 ----A---- C:\WINDOWS\GeoDebugMP4U.ini
2010-01-07 22:10:11 ----A---- C:\WINDOWS\Mpg4c32.dll
2010-01-07 22:10:11 ----A---- C:\WINDOWS\GeoDataFIFO.ini
2010-01-07 22:10:10 ----A---- C:\WINDOWS\GeoVStatus.ini
2010-01-07 22:10:10 ----A---- C:\WINDOWS\GeoDebugVS.ini
2010-01-07 22:10:08 ----A---- C:\WINDOWS\GeoWT.ini
2010-01-07 22:10:05 ----D---- C:\WINDOWS\MyTempDll
2010-01-07 21:54:52 ----D---- C:\WINDOWS\IPCAMX
2010-01-07 21:54:52 ----A---- C:\WINDOWS\GeoIPCamXList.ini
2010-01-07 21:54:52 ----A---- C:\WINDOWS\GeoIPCamXGeneral.ini
2010-01-07 21:54:01 ----A---- C:\WINDOWS\GeoMulti.ini
2010-01-07 21:54:01 ----A---- C:\WINDOWS\GeoDxDraw.ini
2010-01-07 21:47:36 ----A---- C:\WINDOWS\GeoHealth.ini
2010-01-06 22:48:15 ----A---- C:\WINDOWS\system32\GXJPG.dll
2010-01-06 22:48:15 ----A---- C:\WINDOWS\system32\GXGM20.dll
2010-01-06 22:48:15 ----A---- C:\WINDOWS\system32\GXAVC.dll
2010-01-06 22:48:15 ----A---- C:\WINDOWS\system32\GXAMP4.dll
2010-01-06 22:48:15 ----A---- C:\WINDOWS\system32\GX264.dll
2010-01-06 22:48:15 ----A---- C:\WINDOWS\system32\GeoCodec.dll
2010-01-06 22:48:14 ----D---- C:\WINDOWS\system32\v8320
2010-01-06 22:47:59 ----A---- C:\WINDOWS\VISCA.dll
2010-01-06 22:47:59 ----A---- C:\WINDOWS\PTZRUI.dll

======List of files/folders modified in the last 1 months======

2010-01-20 09:13:24 ----D---- C:\WINDOWS\Prefetch
2010-01-20 09:03:59 ----AD---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
2010-01-20 08:56:54 ----SD---- C:\WINDOWS\Tasks
2010-01-20 08:51:47 ----D---- C:\Dokumente und Einstellungen\Andre\Anwendungsdaten\ICQ
2010-01-20 08:51:43 ----D---- C:\Dokumente und Einstellungen\Andre\Anwendungsdaten\Skype
2010-01-20 08:51:15 ----D---- C:\Dokumente und Einstellungen\Andre\Anwendungsdaten\skypePM
2010-01-20 08:49:31 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-19 23:36:32 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-19 21:49:58 ----D---- C:\Programme\Mozilla Firefox
2010-01-19 20:10:56 ----A---- C:\WINDOWS\netscape.INI
2010-01-19 13:51:07 ----D---- C:\WINDOWS\system32
2010-01-19 12:40:55 ----D---- C:\Programme\EASYLOG V6.0
2010-01-18 09:06:13 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-17 19:26:11 ----D---- C:\Programme
2010-01-17 14:02:28 ----D---- C:\LEXWARE_backup
2010-01-17 13:52:10 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BTrieve
2010-01-17 13:38:11 ----AD---- C:\WINDOWS
2010-01-17 10:53:58 ----HD---- C:\WINDOWS\inf
2010-01-17 10:53:53 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-01-17 10:53:29 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-17 10:50:19 ----D---- C:\WINDOWS\Debug
2010-01-17 10:30:09 ----D---- C:\WINDOWS\AppPatch
2010-01-16 20:58:48 ----D---- C:\WINDOWS\system32\CatRoot
2010-01-12 15:35:15 ----D---- C:\Programme\JFritz
2010-01-12 11:34:16 ----D---- C:\WINDOWS\system32\drivers
2010-01-12 11:33:47 ----SHD---- C:\WINDOWS\Installer
2010-01-12 11:33:47 ----SHD---- C:\Config.Msi
2010-01-12 11:32:51 ----D---- C:\Programme\LG Electronics
2010-01-10 22:27:24 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy
2010-01-10 20:54:47 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2010-01-10 20:52:27 ----D---- C:\WINDOWS\Minidump
2010-01-08 08:36:12 ----A---- C:\WINDOWS\Tobit.ini
2010-01-07 22:10:19 ----AC---- C:\WINDOWS\GeoPAL.ini
2010-01-07 21:59:28 ----D---- C:\Programme\Microsoft ActiveSync
2010-01-07 21:55:06 ----D---- C:\Programme\Microsoft Windows Mobile 5.0 MSFP Emulator Images
2010-01-07 21:54:52 ----HD---- C:\Programme\InstallShield Installation Information
2010-01-07 21:53:36 ----D---- C:\Programme\DivX
2010-01-06 22:40:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-04 08:00:56 ----D---- C:\Programme\ICQ6.5

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2001-08-10 3252]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-12-10 56816]
R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; \??\C:\WINDOWS\system32\drivers\btslbcsp.sys []
R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2009-06-17 10384]
R2 UltraMonUtility;UltraMon Utility Driver; \??\C:\Programme\Gemeinsame Dateien\Realtime Soft\UltraMonMirrorDrv\x32\UltraMonUtility.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-01-25 4027456]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 BtAudio;Bluetooth Audio; C:\WINDOWS\system32\DRIVERS\btaudio.sys [2003-08-14 21861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2003-08-14 30235]
R3 FETNDIS;VIA PCI 10/100-MBit/s-Fast Ethernetadapter-NT-Treiber; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 HidUsb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2009-06-17 20240]
R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2009-06-17 63248]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2009-06-17 79248]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2009-06-17 28560]
R3 mf;mf; C:\WINDOWS\system32\DRIVERS\mf.sys [2008-04-13 63744]
R3 mouhid;Maus-HID-Treiber; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-18 12288]
R3 SunkFilt;Alcor Micro Corp Reader; \??\C:\WINDOWS\System32\Drivers\sunkfilt.sys []
R3 UltraMonMirror;UltraMonMirror; C:\WINDOWS\system32\DRIVERS\UltraMonMirror.sys [2006-09-24 3584]
R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Microsoft USB-Standardhubtreiber; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2007-01-29 59280]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-12-11 391424]
S3 apls6w65;apls6w65; C:\WINDOWS\system32\drivers\apls6w65.sys []
S3 Arp1394;1394-ARP-Clientprotokoll; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 BthEnum;Bluetooth-Anforderungsblocktreiber; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BTHMODEM;Serieller Kommunikationstreiber für Bluetooth; C:\WINDOWS\system32\DRIVERS\bthmodem.sys [2008-04-13 37888]
S3 BthPan;Bluetooth-Gerät (PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Bluetooth-Porttreiber; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 273024]
S3 BTHUSB;USB-Treiber für Bluetooth-Funkgerät; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2003-08-14 146812]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2003-08-14 51848]
S3 catchme;catchme; \??\C:\DOKUME~1\Andre\LOKALE~1\Temp\catchme.sys []
S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Programme\MediaCoder\SysInfo.sys []
S3 FlashUSB;FlashUSB; C:\WINDOWS\system32\DRIVERS\FlashUSB.sys [2009-05-12 16896]
S3 GVECP;GVECP; C:\WINDOWS\system32\drivers\GVECP.sys [2008-02-01 68192]
S3 HidBth;Microsoft Bluetooth-HID-Miniport; C:\WINDOWS\system32\DRIVERS\hidbth.sys [2008-04-14 25856]
S3 LgBttPort;LGE Bluetooth TransPort; C:\WINDOWS\system32\DRIVERS\lgbtport.sys []
S3 lgbusenum;LG Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\lgbtbus.sys []
S3 LGVMODEM;LGE Virtual Modem; C:\WINDOWS\system32\DRIVERS\lgvmodem.sys []
S3 LHidFlt2;Logitech HID/USB Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFlt2.sys []
S3 LHidUsb;Logitech USB Receiver device driver; C:\WINDOWS\system32\drivers\LHidUsb.Sys [2004-03-03 37887]
S3 motmodem;Motorola USB CDC ACM Driver; C:\WINDOWS\system32\DRIVERS\motmodem.sys [2006-12-13 20992]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394-Netzwerktreiber; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 NPF;NPF; \??\C:\Programme\DBoxBoot\PACKET.SYS []
S3 Pcouffin;Low level access layer for CD devices; C:\WINDOWS\System32\Drivers\Pcouffin.sys []
S3 QV2KUX;Casio-Digitalkamera; C:\WINDOWS\system32\DRIVERS\qv2kux.sys [2001-08-17 3328]
S3 RFCOMM;Bluetooth-Gerät (RFCOMM-Protokoll-TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 SAA7146n;TT DVB-PCI driver (SAA7146n); C:\WINDOWS\system32\DRIVERS\saa7146n.sys [2003-07-01 65856]
S3 Ser2pl;Prolific2 Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2004-10-20 110976]
S3 slabbus;ANVIZ USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\slabbus.sys []
S3 slabser;ANVIZ USB to UART Bridge Controller Drivers; C:\WINDOWS\system32\DRIVERS\slabser.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SoC PC-Camera Service;SoC PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-06-17 136832]
S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TTLOOPHE;Virtual DVB-S/-C/-T Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\ttloophe.sys [2004-02-03 39984]
S3 usb_rndisx;USB-RNDIS-Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 usbaudio;USB-Audiotreiber (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2008-11-19 13056]
S3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2008-11-19 19968]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2008-11-19 24832]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\yukonwxp.sys [2003-12-22 174464]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Programme\Conceptronic\Bluetooth Software\bin\btwdins.exe [2003-08-14 135168]
R2 DCPP2Svc;SecurStar DCPPv2 Service; C:\Programme\DriveCrypt Plus Pack\DCPP2Svc.exe [2006-04-27 90112]
R2 InteractiveLogon;InteractiveLogon; C:\WINDOWS\system32\Fast.exe [2001-10-19 49216]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Programme\Lavasoft\Ad-Aware\AAWService.exe [2009-12-20 1181328]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2007-05-27 654848]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LBTServ;Logitech Bluetooth Service; C:\Programme\Gemeinsame Dateien\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 121360]
S3 WLSetupSvc;Windows Live Setup Service; C:\Programme\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

 

Themen zu Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher
ad-aware, antivir, antivir guard, ap manager, avgntflt.sys, avira, bho, bonjour, browser, content.ie5, desktop, device driver, excel, fontcache, fritz!, hijack, hijackthis, hkus\s-1-5-18, internet, internet explorer, kis, lexware, mozilla, notepad.exe, pdf-datei, problem, realtek, registry, schannel.dll, senden, software, super, system, toolbars, trojan, virtual machine, vodafone, werbung, windows, windows xp


« Olmarik Trojaner gefunden, Avira Antivir streikt | Outlook 2007 versendet selbständig mail »


Ähnliche Themen: Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher


  1. bka trojaner - kapersky 10 & otlpe bisher erfolglos
    Plagegeister aller Art und deren Bekämpfung - 19.08.2011 (3)
  2. Whistler@mbr bisher erfolglos versucht zu löschen
    Plagegeister aller Art und deren Bekämpfung - 01.04.2011 (4)
  3. Internet Explorer öffnet sich automatisch mit Werbeseiten
    Log-Analyse und Auswertung - 20.03.2011 (1)
  4. Problem mit dem Internet Explorer: Öffnet Werbeseiten
    Log-Analyse und Auswertung - 20.02.2011 (1)
  5. Internet Explorer öffnet sich automatisch mit Werbeseiten
    Log-Analyse und Auswertung - 13.01.2011 (10)
  6. Internet Explorer öffnet sich automatisch mit Werbeseiten!
    Log-Analyse und Auswertung - 08.01.2011 (14)
  7. Internet Explorer öffnet sich von alleine und hat Werbeseiten
    Log-Analyse und Auswertung - 03.07.2010 (1)
  8. Internet Explorer öffnet sich automatisch und öffnet Werbeseiten
    Log-Analyse und Auswertung - 18.06.2010 (1)
  9. Internet Explorer öffnet sich von alleine und hat Werbeseiten
    Log-Analyse und Auswertung - 13.05.2010 (5)
  10. Windows Internet-Explorer öffnet automaitsch Werbeseiten
    Log-Analyse und Auswertung - 29.04.2010 (1)
  11. Internet Explorer öffnet sich mit Werbeseiten von alleine
    Log-Analyse und Auswertung - 03.04.2010 (2)
  12. Internet Explorer öffnet sich automatisch und hat Werbeseiten
    Log-Analyse und Auswertung - 10.11.2009 (11)
  13. Internet Explorer öffnet automatisch Werbeseiten
    Log-Analyse und Auswertung - 20.09.2009 (11)
  14. hilfe mein internet explorer öffnet ständig werbeseiten
    Plagegeister aller Art und deren Bekämpfung - 20.05.2009 (28)
  15. Internet Explorer öffnet automatisch Werbeseiten
    Log-Analyse und Auswertung - 27.12.2007 (4)
  16. Internet Explorer öffnet Werbeseiten und wir mit der Zeit immer langsamer
    Log-Analyse und Auswertung - 17.10.2007 (15)
  17. HIJACK LOGFILE. Internet Explorer öffnet automatisch Werbeseiten!
    Mülltonne - 26.10.2006 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher - Hallo IE öffnet manchmal nicht die eingegebene Webseite sondern Werbeseiten. Sind meistens sogar die gleichen. Am häufigsten vom Vodafone Shop, manchmal Conrad Electronic, ELV Elektronik, T-Shirt Seite... Habe Spypot und - Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher...
Archiv
Du betrachtest: Internet Explorer öffnet Werbeseiten, sämtliche Tools erfolglos bisher auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131