|
Plagegeister aller Art und deren Bekämpfung: Ich will eine Daemontools datei loswerden aber wie?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
23.09.2010, 13:46 | #16 |
/// Selecta Jahrusso | Ich will eine Daemontools datei loswerden aber wie? Freut mich das es geklappt hat. Ich bin damit eben nicht so betucht Ne die Javara Log brauche ich eh nicht. Poste mir bitte nochmals die 2 DDS logfiles
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
24.09.2010, 01:25 | #17 |
| Ich will eine Daemontools datei loswerden aber wie?Code:
ATTFilter UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_10-03-17.01) Microsoft® Windows Vista™ Home Premium Boot Device: \Device\HarddiskVolume2 Install Date: 12.03.2009 09:50:28 System Uptime: 24.09.2010 01:18:38 (1 hours ago) Motherboard: FUJITSU SIEMENS | | MS-7293VP Processor: Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz | Socket 775 | 2200/200mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 217 GiB total, 116,487 GiB free. D: is FIXED (NTFS) - 106 GiB total, 105,792 GiB free. E: is CDROM () F: is CDROM (UDF) G: is Removable H: is Removable I: is Removable J: is Removable K: is Removable ==== Disabled Device Manager Items ============= Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Microsoft-6zu4-Adapter Device ID: ROOT\*6TO4MP\0026 Manufacturer: Microsoft Name: Microsoft-6zu4-Adapter #19 PNP Device ID: ROOT\*6TO4MP\0026 Service: tunnel Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Microsoft-ISATAP-Adapter Device ID: ROOT\*ISATAP\0008 Manufacturer: Microsoft Name: Microsoft-ISATAP-Adapter #8 PNP Device ID: ROOT\*ISATAP\0008 Service: tunnel Class GUID: {4D36E97B-E325-11CE-BFC1-08002BE10318} Description: A6VKSR85 IDE Controller Device ID: ACPI\PNPA000\4&5D18F2DF&0 Manufacturer: (Standard mass storage controllers) Name: A6VKSR85 IDE Controller PNP Device ID: ACPI\PNPA000\4&5D18F2DF&0 Service: a2l58c1m ==== System Restore Points =================== ==== Installed Programs ====================== Adobe AIR Adobe Download Manager Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Media Player Adobe Shockwave Player Advanced SystemCare 3 Ask Toolbar Avira AntiVir Personal - Free Antivirus BEWERBUNGS-MASTER Call of Juarez - Bound in Blood CCleaner CDDRV_Installer DHTML Editing Component Die Sims™ 3 DivX Player DivX Web Player erLT Feedback Tool FlashPeak SlimBrowser Game Booster GIMP 2.6.5 Grand Theft Auto IV Grand Theft Auto: Episodes from Liberty City HijackThis 2.0.2 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) ICQ Toolbar ICQ7.2 IrfanView (remove only) Java Auto Updater Java(TM) 6 Update 21 Junk Mail filter update KhalInstallWrapper Logitech QuickCam Logitech SetPoint Mafia II Malwarebytes' Anti-Malware Managed DirectX (0901) Microsoft .NET Framework 3.5 Language Pack SP1 - deu Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Extended DEU Language Pack Microsoft Application Error Reporting Microsoft Choice Guard Microsoft Games for Windows - LIVE Microsoft Games for Windows - LIVE Redistributable Microsoft Office PowerPoint Viewer 2003 Microsoft Search Enhancement Pack Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Sync Framework Runtime Native v1.0 (x86) Microsoft Sync Framework Services Native v1.0 (x86) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2010 Beta 1 x86 Redistributable - 10.0.20506 Microsoft WSE 3.0 Runtime Microsoft XML Parser Move Networks Media Player for Internet Explorer Mozilla Firefox (3.5.11) MSVCRT MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP2 Parser and SDK Need for Speed™ SHIFT Nero 7 Essentials NVIDIA Display Control Panel NVIDIA Drivers NVIDIA PhysX NVIDIA Stereoscopic 3D Driver OLYMPUS Master 2 OpenOffice.org 3.1 Opera 10.60 PhotoFiltre PhotoImpact X3 PhotoScape Pidgin Realtek High Definition Audio Driver Revo Uninstaller 1.89 Rockstar Games Social Club Security Update for CAPICOM (KB931906) Skype web features Spybot - Search & Destroy Steam SUPERAntiSpyware Systweak CacheBoost TuneUp Utilities 2007 Update for Microsoft .NET Framework 3.5 SP1 (KB963707) VC80CRTRedist - 8.0.50727.762 VIA Rhine-Family Fast-Ethernet Adapter VLC media player 0.9.8a Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Fotogalerie Windows Live Mail Windows Live Messenger Windows Live Movie Maker Windows Live OneCare safety scanner Windows Live Sync Windows Live Toolbar Windows Live Writer Windows Media Player Firefox Plugin WinRAR WISSEN DIGITAL 3D Führerschein Trainer 2009 WordPerfect Office X3 Yahoo! Toolbar ZoneAlarm ZoneAlarm Toolbar ==== End Of File =========================== Code:
ATTFilter DDS (Ver_10-03-17.01) - NTFSx86 Run by Standard at 2:18:05,51 on 24.09.2010 Internet Explorer: 9.0.7930.16406 BrowserJavaVersion: 1.6.0_21 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3070.1656 [GMT 2:00] SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9} SP: Windows-Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} SP: SUPERAntiSpyware *enabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7} ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\Dwm.exe C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskeng.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe C:\Windows\system32\taskeng.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\F-Secure Internet Security\Common\FSMA32.EXE C:\Program Files\ICQ6Toolbar\ICQ Service.exe C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\F-Secure Internet Security\Common\FSMB32.EXE C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchIndexer.exe C:\Program Files\F-Secure Internet Security\Common\FCH32.EXE C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe C:\Program Files\F-Secure Internet Security\Common\FAMEH32.EXE C:\Windows\system32\WUDFHost.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\taskeng.exe C:\Windows\System32\mobsync.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\consent.exe C:\Windows\system32\consent.exe C:\Windows\explorer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\svchost.exe -k SDRSVC C:\Program Files\SlimBrowser\sbrowser.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Users\Standard\Desktop\dds.scr C:\Windows\system32\conime.exe C:\Windows\system32\wbem\wmiprvse.exe ============== Pseudo HJT Report =============== uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll mURLSearchHooks: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll mURLSearchHooks: H - No File mURLSearchHooks: H - No File BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll BHO: {53707962-6F74-2D53-2644-206D7942484F} - No File BHO: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - No File BHO: {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - No File BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - No File BHO: {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - No File BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll TB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll TB: {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - No File TB: ZoneAlarm Security Engine: {ee2ac4e5-b0b0-4ec6-88a9-bca1a32ab107} - c:\program files\checkpoint\zaforcefield\trustchecker\bin\TrustCheckerIEPlugin.dll TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File EB: ICQToolBar: {855f3b16-6d32-4fe6-8a56-bbb695989046} - c:\program files\icq6toolbar\ICQToolBar.dll uRun: [RGSC] c:\program files\rockstar games\rockstar games social club\RGSCLauncher.exe /silent uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe" mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - c:\program files\icq7.2\ICQ.exe IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} DPF: {59136DB4-6CA3-4B40-8F2F-BBF84B6F1E91} - hxxps://stream.web.de/mail/activex/mail_upload_11213.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Hosts: 127.0.0.1 www.spywareinfo.com ================= FIREFOX =================== FF - ProfilePath - c:\users\standard\appdata\roaming\mozilla\firefox\profiles\e4ndxa7a.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2613550&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - ICQ Search FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/ FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.6&q= FF - component: c:\program files\checkpoint\zaforcefield\trustchecker\components\TrustCheckerMozillaPlugin.dll FF - component: c:\users\standard\appdata\roaming\mozilla\firefox\profiles\e4ndxa7a.default\extensions\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}\components\FFExternalAlert.dll FF - component: c:\users\standard\appdata\roaming\mozilla\firefox\profiles\e4ndxa7a.default\extensions\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}\components\RadioWMPCore.dll FF - plugin: c:\program files\checkpoint\zaforcefield\trustchecker\bin\npFFApi.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npzylomgamesplayer.dll FF - plugin: c:\program files\nos\bin\np_gp.dll FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll FF - plugin: c:\program files\opera\program\plugins\np_gp.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - plugin: c:\programdata\zylom\zylomgamesplayer\npzylomgamesplayer.dll FF - plugin: c:\users\standard\appdata\roaming\mozilla\firefox\profiles\e4ndxa7a.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp071303000004.dll FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} ---- FIREFOX POLICIES ---- FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true); c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", ""); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "hxxp://www.firefox.com"); ============= SERVICES / DRIVERS =============== R0 ViBus;ViBus;c:\windows\system32\drivers\ViBus.sys [2007-10-18 16896] R0 ViPrt;VIA SATA IDE Device Driver;c:\windows\system32\drivers\ViPrt.sys [2007-10-18 52224] R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2009-12-11 11608] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656] R2 ACEDRV09;ACEDRV09;c:\windows\system32\drivers\ACEDRV09.sys [2009-8-23 110304] R2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\avira\antivir desktop\sched.exe [2009-12-11 108289] R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2009-12-11 185089] R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2009-12-11 56816] R2 ICQ Service;ICQ Service;c:\program files\icq6toolbar\ICQ Service.exe [2009-3-17 246520] R2 ISWKL;ZoneAlarm Toolbar ISWKL;c:\program files\checkpoint\zaforcefield\ISWKL.sys [2010-6-15 26872] R2 IswSvc;ZoneAlarm Toolbar IswSvc;c:\program files\checkpoint\zaforcefield\ISWSVC.exe [2010-6-15 493048] R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2009-11-30 1153368] R3 FontCache;Windows-Dienst für Schriftartencache;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2009-4-13 21504] S2 CacheBoost Service;CacheBoost Performance Optimizer and Tuner Service;c:\program files\systweak\systweak cacheboost\cbSrv.exe [2009-8-24 187120] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\magix\common\database\bin\fbserver.exe [2007-10-18 1527900] S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2009-10-26 54632] S3 fsssvc;Windows Live Family Safety-Dienst;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864] S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2009-4-13 21504] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] S4 UPnPService;UPnPService;c:\program files\common files\magix shared\upnpservice\UPnPService.exe [2007-10-18 544768] =============== Created Last 30 ================ 2010-09-23 06:34:31 423656 ----a-w- c:\windows\system32\deployJava1.dll 2010-09-23 01:39:13 0 d-sh--w- c:\programdata\SecuROM 2010-09-23 01:14:06 107888 ----a-w- c:\windows\system32\CmdLineExt.dll 2010-09-23 00:37:05 0 d-----w- c:\program files\games 2010-09-23 00:21:52 37205 ----a-w- c:\programdata\nvModes.dat 2010-09-22 21:38:40 0 d-----w- c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP 2010-09-22 21:38:36 0 d-----w- c:\programdata\NVIDIA Corporation 2010-09-22 06:21:57 8511488 ----a-w- c:\users\standard\ntuser.dat_TU_84029 2010-09-21 22:52:55 0 d-----w- c:\program files\RegCleaner 2010-09-21 19:19:58 0 d-----w- c:\program files\VS Revo Group 2010-09-20 20:20:21 0 d-----w- c:\program files\Rockstar Games 2010-09-20 05:01:03 0 d-----w- c:\programdata\Yahoo! Companion 2010-09-20 05:01:02 0 d-----w- c:\program files\Yahoo! 2010-09-19 13:04:58 0 d-----w- c:\windows\DD1865F0AD7340FBB23E1822E02396FF.TMP 2010-09-16 23:57:06 1462 ----a-w- c:\users\standard\.recently-used.xbel 2010-09-16 12:54:25 0 d-----w- c:\windows\system32\wbem\en-US 2010-09-15 21:56:25 280064 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2010-09-15 21:56:25 161280 ----a-w- c:\windows\system32\d3d10_1.dll 2010-09-15 21:56:25 135680 ----a-w- c:\windows\system32\XpsRasterService.dll 2010-09-15 21:56:24 979456 ----a-w- c:\windows\system32\MFH264Dec.dll 2010-09-15 21:56:24 797184 ----a-w- c:\windows\system32\FntCache.dll 2010-09-15 21:56:24 680960 ----a-w- c:\windows\system32\d2d1.dll 2010-09-15 21:56:24 357376 ----a-w- c:\windows\system32\MFHEAACdec.dll 2010-09-15 21:56:24 302592 ----a-w- c:\windows\system32\mfmp4src.dll 2010-09-15 21:56:24 261632 ----a-w- c:\windows\system32\mfreadwrite.dll 2010-09-15 21:56:24 219648 ----a-w- c:\windows\system32\d3d10_1core.dll 2010-09-15 21:56:24 1174528 ----a-w- c:\windows\system32\d3d10warp.dll 2010-09-15 21:56:24 1068032 ----a-w- c:\windows\system32\DWrite.dll 2010-09-15 21:55:51 0 d-----w- c:\program files\Feedback Tool 2010-09-14 18:46:45 502272 ----a-w- c:\windows\system32\usp10.dll 2010-09-14 18:46:38 128000 ----a-w- c:\windows\system32\spoolsv.exe 2010-09-14 18:46:31 317952 ----a-w- c:\windows\system32\MP4SDECD.DLL 2010-09-14 18:46:17 739328 ----a-w- c:\windows\system32\inetcomm.dll 2010-09-10 20:49:13 0 d-----w- c:\programdata\NOS 2010-09-04 18:49:22 0 d-sh--w- c:\windows\system32\%APPDATA% 2010-09-03 03:08:12 0 d-----w- C:\Fraps 2010-08-26 08:32:15 93056 ----a-w- C:\pwldrkog.sys ==================== Find3M ==================== 2010-09-22 21:38:02 51200 ----a-w- c:\windows\inf\infpub.dat 2010-09-22 21:38:02 143360 ----a-w- c:\windows\inf\infstrng.dat 2010-09-22 21:37:56 143360 ----a-w- c:\windows\inf\infstor.dat 2010-09-20 21:57:06 690490 ----a-w- c:\windows\system32\perfh007.dat 2010-09-20 21:57:06 152458 ----a-w- c:\windows\system32\perfc007.dat 2010-08-31 22:46:36 1355264 ----a-w- c:\windows\system32\jscript9.dll 2010-08-31 22:44:24 1122304 ----a-w- c:\windows\system32\wininet.dll 2010-08-31 22:44:06 424960 ----a-w- c:\windows\system32\vbscript.dll 2010-08-31 22:43:22 23552 ----a-w- c:\windows\system32\licmgr10.dll 2010-08-31 22:43:12 72704 ----a-w- c:\windows\system32\SetDepNx.exe 2010-08-31 22:43:12 142848 ----a-w- c:\windows\system32\ieUnatt.exe 2010-08-31 22:43:12 114176 ----a-w- c:\windows\system32\iesysprep.dll 2010-08-31 22:43:10 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2010-08-31 22:43:10 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2010-08-31 22:42:58 51200 ----a-w- c:\windows\system32\admparse.dll 2010-08-31 22:42:54 75264 ----a-w- c:\windows\system32\iesetup.dll 2010-08-31 22:42:48 110592 ----a-w- c:\windows\system32\IEAdvpack.dll 2010-08-31 22:42:42 150016 ----a-w- c:\windows\system32\iexpress.exe 2010-08-31 22:42:42 149504 ----a-w- c:\windows\system32\wextract.exe 2010-08-31 22:42:20 33280 ----a-w- c:\windows\system32\imgutil.dll 2010-08-31 22:42:16 48640 ----a-w- c:\windows\system32\mshtmler.dll 2010-08-31 22:42:12 11264 ----a-w- c:\windows\system32\mshta.exe 2010-08-31 22:41:46 160768 ----a-w- c:\windows\system32\msls31.dll 2010-08-14 19:19:28 421442 ---ha-w- c:\windows\system32\drivers\vsconfig.xml 2010-07-09 22:37:00 9818728 ----a-w- c:\windows\system32\nvd3dum.dll 2010-07-09 22:37:00 56936 ----a-w- c:\windows\system32\OpenCL.dll 2010-07-09 22:37:00 5107816 ----a-w- c:\windows\system32\nvwgf2um.dll 2010-07-09 22:37:00 4553832 ----a-w- c:\windows\system32\nvcuda.dll 2010-07-09 22:37:00 2892904 ----a-w- c:\windows\system32\nvcuvid.dll 2010-07-09 22:37:00 2506344 ----a-w- c:\windows\system32\nvcuvenc.dll 2010-07-09 22:37:00 236136 ----a-w- c:\windows\system32\nvcod1922.dll 2010-07-09 22:37:00 236136 ----a-w- c:\windows\system32\nvcod.dll 2010-07-09 22:37:00 1625192 ----a-w- c:\windows\system32\nvapi.dll 2010-07-09 22:37:00 14092904 ----a-w- c:\windows\system32\nvoglv32.dll 2010-07-09 22:37:00 10267240 ----a-w- c:\windows\system32\nvcompiler.dll 2010-07-09 14:20:08 110696 ----a-w- c:\windows\system32\nvmctray.dll 2010-07-09 14:20:06 66664 ----a-w- c:\windows\system32\nvshext.dll 2010-07-09 14:20:06 1881704 ----a-w- c:\windows\system32\nvsvcr.dll 2010-07-09 14:20:06 1469544 ----a-w- c:\windows\system32\nvsvc.dll 2010-07-09 14:20:06 13939816 ----a-w- c:\windows\system32\nvcpl.dll 2010-07-09 14:20:06 129640 ----a-w- c:\windows\system32\nvvsvc.exe 2010-06-28 11:00:12 46592 ----a-w- c:\windows\system32\vsutil_loc0407.dll 2010-06-28 10:59:42 1238528 ----a-w- c:\windows\system32\zpeng25.dll 2009-11-06 04:10:49 665600 ----a-w- c:\windows\inf\drvindex.dat 2009-04-13 21:35:58 174 --sha-w- c:\program files\desktop.ini 2006-11-02 15:30:08 36916 ----a-w- c:\windows\inf\perflib\0407\perfd.dat 2006-11-02 15:30:08 36916 ----a-w- c:\windows\inf\perflib\0407\perfc.dat 2006-11-02 15:30:08 290748 ----a-w- c:\windows\inf\perflib\0407\perfi.dat 2006-11-02 15:30:08 290748 ----a-w- c:\windows\inf\perflib\0407\perfh.dat 2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfi.dat 2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfh.dat 2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfd.dat 2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfc.dat 2010-03-26 00:58:15 16384 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat 2010-03-26 01:02:45 32768 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat 2010-03-26 01:02:45 16384 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\local\temp\cookies\index.dat 2010-03-26 01:02:45 16384 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\local\temp\history\history.ie5\index.dat 2010-03-26 01:02:45 32768 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\local\temp\temporary internet files\content.ie5\index.dat 2010-03-26 00:58:15 16384 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat 2009-04-01 14:53:00 848 --sha-w- c:\windows\system32\KGyGaAvL.sys 2010-06-06 02:55:11 32768 --sha-w- c:\windows\system32\config\systemprofile\appdata\local\microsoft\windows\history\history.ie5\mshist012010060620100607\index.dat ============= FINISH: 2:19:46,98 =============== Chef ich will mir wahrscheinlich Windows 7 Professional 64bit version kaufen denkst du es lohnt sich bei meinen Rechner oder sollte ich lieber noch ein paar Ram Sticks dazu kaufen? Immoment hab ich 3gb Ram zur verfügung und zwar auf ein steckplatz 1 gb und auf dem 2. Steckplatz - 2gb. |
24.09.2010, 16:15 | #18 |
/// Selecta Jahrusso | Ich will eine Daemontools datei loswerden aber wie? Nur weil ich Online bedeuted das nicht, dass ich auch immer sofort antworte. Das sende von PMs ist hier nicht wirklich angebracht
__________________Also ich hab Win7 32 bit und es ist wahnsinnig schnell. Wie es im vergleich zu Vista ist kann ich aus eigener Erfahrung nicht sagen. Ich hab Vista gleich mal gar nicht versucht Also lohnen tut es sich auf jeden.
__________________ |
24.09.2010, 18:05 | #19 |
| Ich will eine Daemontools datei loswerden aber wie? chef tut mir leid wegen der PM dachte du wärst da. Achso ich wollte fragen ob professional windows 7 schneller ist als Home edition windows 7 ? |
24.09.2010, 18:42 | #20 |
/// Selecta Jahrusso | Ich will eine Daemontools datei loswerden aber wie? Kann ich dir nicht sagen. Nochmal, das ist der Security Bereich. Es gibt ein WIndows Sub Forum Froh das wir helfen konnten. Dieses Thema scheint erledigt und wird aus den Abos gelöscht. Jeder andere möge bitte einen eigenen Thread starten.
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
Themen zu Ich will eine Daemontools datei loswerden aber wie? |
daemon, daemontools, datei, eintrag, entfern, entfernt, erworben, funktionier, funktioniert, funktioniert nicht, klicke, kriege, legal, leute, loswerden, manager, securom, spiele, spielen, spinn, spinnt, task manager, tools |