Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   ConF*cker? Keine Updates mögl. (https://www.trojaner-board.de/69009-conf-cker-keine-updates-moegl.html)

Oliver1854 26.01.2009 08:56
Report 2 Teil 2:

Code:

======Scheduled tasks folder======

F:\WINDOWS\tasks\1-Klick-Wartung.job
F:\WINDOWS\tasks\HP Usg Daily.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - g:\system-programme\Software\Acrobat\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1427A821-7B93-4F08-9A34-9FA03A3D93DB}]
Steganos Password Manager AutoFill - G:\Steganos Security Suite 2007\PasswordManagerBHO.dll [2007-05-21 20480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - F:\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - G:\Java\jre6\bin\ssv.dll [2008-11-10 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - G:\Java\jre6\bin\jp2ssv.dll [2008-11-10 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - G:\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-11-10 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - G:\BitDefender\BitDefender 2009\IEToolbar.dll [2008-11-06 90112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=F:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"PasswordManager"=G:\Steganos Security Suite 2007\PasswordManager.exe [2007-05-15 1773568]
"SSS2007 PasswordManagerFFAutoFill"=G:\Steganos Security Suite 2007\PasswordManagerFFAutoFill.exe [2007-05-21 21504]
"SSS2007 HotKeys"=G:\Steganos Security Suite 2007\SteganosHotKeyService.exe [2007-05-21 25088]
"SSS2007 File Redirection Starter"=G:\Steganos Security Suite 2007\fredirstarter.exe [2007-05-15 53248]
"SunJavaUpdateSched"=G:\Java\jre6\bin\jusched.exe [2008-11-10 136600]
"GrooveMonitor"=F:\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]
"avgnt"=G:\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"BDAgent"=G:\BitDefender\BitDefender 2009\bdagent.exe [2008-12-17 741376]
"BitDefender Antiphishing Helper"=G:\BitDefender\BitDefender 2009\IEShow.exe [2008-10-17 69632]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=F:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=F:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
F:\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KMCONFIG]
G:\System-Programme\Hardware\Tastatur\StartAutorun.exe [2007-03-06 212992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
G:\QuickTime\qttask.exe [2008-05-27 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Data.lnk]
G:\Teledat\TelDat32.exe [2002-08-06 815104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Fax.lnk]
G:\Teledat\TelFax32.exe [2002-08-06 708608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Fon.lnk]
G:\Teledat\TelFon32.exe [2002-08-06 868352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^ISDNWatch.lnk]
G:\Teledat\IWatch.exe [2002-08-06 339968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Web.lnk]
G:\Teledat\TelWeb32.exe [2002-08-06 495616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WZCSVC"=2
"odserv"=3
"helpsvc"=2
"de_serv"=3

F:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
Treiber Konfiguration.lnk - G:\System-Programme\Hardware\Tastatur\KMCONFIG.exe

F:\Dokumente und Einstellungen\Maverick\Startmenü\Programme\Autostart
Gigabank.lnk - G:\FAST Gigabank\Gigabank.exe
OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk - F:\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=F:\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=176
"NoDesktopCleanupWizard"=1
"NoTrayContextMenu"=0
"NoDrives"=0380FF03
"NoSharedDocuments"=01000000
"MaxRecentDocs"=6
"NoDriveAutoRun"=33562648

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"G:\Internet-Programme\Net Objects\Fusion.exe"="G:\Internet-Programme\Net Objects\Fusion.exe:*:Enabled:NetObjects Fusion"
"F:\Microsoft Office\Office12\OUTLOOK.EXE"="F:\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"F:\Microsoft Office\Office12\GROOVE.EXE"="F:\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"F:\Microsoft Office\Office12\ONENOTE.EXE"="F:\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2009-01-26 08:32:47 ----D---- F:\rsit
2009-01-26 08:20:54 ----HDC---- F:\WINDOWS\$NtUninstallKB873339$
2009-01-26 08:20:40 ----HDC---- F:\WINDOWS\$NtUninstallKB936357$
2009-01-26 08:20:24 ----HDC---- F:\WINDOWS\$NtUninstallKB950974$
2009-01-26 08:20:07 ----HDC---- F:\WINDOWS\$NtUninstallKB951698$
2009-01-26 08:19:50 ----HDC---- F:\WINDOWS\$NtUninstallKB946026$
2009-01-26 08:19:32 ----HDC---- F:\WINDOWS\$NtUninstallKB896358$
2009-01-26 08:19:13 ----HDC---- F:\WINDOWS\$NtUninstallKB920670$
2009-01-26 08:18:59 ----HDC---- F:\WINDOWS\$NtUninstallKB918439$
2009-01-26 08:18:37 ----HDC---- F:\WINDOWS\$NtUninstallKB902400$
2009-01-26 08:18:18 ----HDC---- F:\WINDOWS\$NtUninstallKB926436$
2009-01-26 08:18:04 ----HDC---- F:\WINDOWS\$NtUninstallKB920872$
2009-01-26 08:17:46 ----HDC---- F:\WINDOWS\$NtUninstallKB930178$
2009-01-26 08:17:32 ----HDC---- F:\WINDOWS\$NtUninstallKB914388$
2009-01-26 08:17:18 ----HDC---- F:\WINDOWS\$NtUninstallKB905414$
2009-01-26 08:16:59 ----HDC---- F:\WINDOWS\$NtUninstallKB932168$
2009-01-26 08:16:44 ----D---- F:\WINDOWS\LastGood
2009-01-25 22:27:01 ----HDC---- F:\WINDOWS\$NtUninstallKB901214$
2009-01-25 22:26:37 ----HDC---- F:\WINDOWS\$NtUninstallKB923191$
2009-01-25 22:25:59 ----HDC---- F:\WINDOWS\$NtUninstallKB918118$
2009-01-25 22:25:35 ----HDC---- F:\WINDOWS\$NtUninstallKB926255$
2009-01-25 22:25:08 ----HDC---- F:\WINDOWS\$NtUninstallKB888302$
2009-01-25 22:24:45 ----HDC---- F:\WINDOWS\$NtUninstallKB900725$
2009-01-25 22:24:15 ----HDC---- F:\WINDOWS\$NtUninstallKB920213$
2009-01-25 22:23:46 ----HDC---- F:\WINDOWS\$NtUninstallKB935840$
2009-01-25 22:21:47 ----HDC---- F:\WINDOWS\$NtUninstallKB943485$
2009-01-25 22:17:48 ----HDC---- F:\WINDOWS\$NtUninstallKB945553$
2009-01-25 22:17:34 ----HDC---- F:\WINDOWS\$NtUninstallKB916595$
2009-01-25 22:17:20 ----HDC---- F:\WINDOWS\$NtUninstallKB930916$
2009-01-25 22:16:52 ----HDC---- F:\WINDOWS\$NtUninstallKB950749$
2009-01-25 22:16:34 ----HDC---- F:\WINDOWS\$NtUninstallKB908531$
2009-01-25 22:16:16 ----HDC---- F:\WINDOWS\$NtUninstallKB913580$
2009-01-25 22:15:55 ----HDC---- F:\WINDOWS\$NtUninstallKB896428$
2009-01-25 22:15:12 ----HDC---- F:\WINDOWS\$NtUninstallKB935839$
2009-01-25 22:14:48 ----HDC---- F:\WINDOWS\$NtUninstallKB943055$
2009-01-25 22:14:25 ----HDC---- F:\WINDOWS\$NtUninstallKB894391$
2009-01-25 22:14:07 ----HDC---- F:\WINDOWS\$NtUninstallKB908519$
2009-01-25 22:13:45 ----HDC---- F:\WINDOWS\$NtUninstallKB920683$
2009-01-25 22:13:21 ----HDC---- F:\WINDOWS\$NtUninstallKB914389$
2009-01-25 22:09:32 ----HDC---- F:\WINDOWS\$NtUninstallKB944653$
2009-01-25 22:09:04 ----HDC---- F:\WINDOWS\$NtUninstallKB890859$
2009-01-25 01:20:50 ----HDC---- F:\WINDOWS\$NtUninstallKB899587$
2009-01-25 01:20:02 ----HDC---- F:\WINDOWS\$NtUninstallKB927779$
2009-01-25 01:19:51 ----HDC---- F:\WINDOWS\$NtUninstallKB951376-v2$
2009-01-25 01:19:40 ----HDC---- F:\WINDOWS\$NtUninstallKB927802$
2009-01-25 01:19:28 ----HDC---- F:\WINDOWS\$NtUninstallKB952954$
2009-01-25 01:18:48 ----HDC---- F:\WINDOWS\$NtUninstallKB943460$
2009-01-25 01:18:37 ----HDC---- F:\WINDOWS\$NtUninstallKB956803$
2009-01-25 01:18:25 ----HDC---- F:\WINDOWS\$NtUninstallKB885835$
2009-01-25 01:18:14 ----HDC---- F:\WINDOWS\$NtUninstallKB885836$
2009-01-25 01:18:01 ----HDC---- F:\WINDOWS\$NtUninstallKB937894$
2009-01-25 01:17:44 ----HDC---- F:\WINDOWS\$NtUninstallKB928255$
2009-01-25 01:17:03 ----HDC---- F:\WINDOWS\$NtUninstallKB911927$
2009-01-25 01:16:47 ----HDC---- F:\WINDOWS\$NtUninstallKB901017$
2009-01-25 01:16:36 ----HDC---- F:\WINDOWS\$NtUninstallKB899591$
2009-01-25 01:16:24 ----HDC---- F:\WINDOWS\$NtUninstallKB955839$
2009-01-25 01:16:08 ----HDC---- F:\WINDOWS\$NtUninstallKB933729$
2009-01-25 01:15:55 ----HDC---- F:\WINDOWS\$NtUninstallKB920685$
2009-01-25 01:15:43 ----HDC---- F:\WINDOWS\$NtUninstallKB893756$
2009-01-25 01:15:30 ----HDC---- F:\WINDOWS\$NtUninstallKB923980$
2009-01-25 01:15:18 ----HDC---- F:\WINDOWS\$NtUninstallKB911280$
2009-01-25 01:15:07 ----HDC---- F:\WINDOWS\$NtUninstallKB938828$
2009-01-25 01:14:55 ----HDC---- F:\WINDOWS\$NtUninstallKB924667$
2009-01-25 01:14:44 ----HDC---- F:\WINDOWS\$NtUninstallKB896423$
2009-01-25 01:14:32 ----HDC---- F:\WINDOWS\$NtUninstallKB900485$
2009-01-25 01:14:18 ----HDC---- F:\WINDOWS\$NtUninstallKB924270$
2009-01-25 01:14:07 ----HDC---- F:\WINDOWS\$NtUninstallKB931261$
2009-01-25 01:13:55 ----HDC---- F:\WINDOWS\$NtUninstallKB936782_WMP9$
2009-01-25 01:12:52 ----HDC---- F:\WINDOWS\$NtUninstallKB927891$
2009-01-25 01:12:32 ----HDC---- F:\WINDOWS\$NtUninstallKB954211$
2009-01-25 01:11:30 ----HDC---- F:\WINDOWS\$NtUninstallKB956841$
2009-01-25 01:11:16 ----HDC---- F:\WINDOWS\$NtUninstallKB925398_WMP64$
2009-01-25 01:09:43 ----HDC---- F:\WINDOWS\$NtUninstallKB910437$
2009-01-25 01:09:32 ----HDC---- F:\WINDOWS\$NtUninstallKB925720$
2009-01-25 01:09:18 ----HDC---- F:\WINDOWS\$NtUninstallKB925902$
2009-01-25 01:09:06 ----HDC---- F:\WINDOWS\$NtUninstallKB941569$
2009-01-25 01:08:27 ----HDC---- F:\WINDOWS\$NtUninstallKB950762$
2009-01-25 01:08:14 ----HDC---- F:\WINDOWS\$NtUninstallKB922582$
2009-01-25 01:07:54 ----HDC---- F:\WINDOWS\$NtUninstallKB886185$
2009-01-25 00:58:37 ----HDC---- F:\WINDOWS\$NtUninstallKB951748$
2009-01-25 00:58:26 ----HDC---- F:\WINDOWS\$NtUninstallKB885884$
2009-01-25 00:58:11 ----HDC---- F:\WINDOWS\$NtUninstallKB938464$
2009-01-25 00:57:59 ----HDC---- F:\WINDOWS\$NtUninstallKB905749$
2009-01-25 00:57:49 ----HDC---- F:\WINDOWS\$NtUninstallKB954600$
2009-01-25 00:57:38 ----HDC---- F:\WINDOWS\$NtUninstallKB958644$
2009-01-25 00:57:27 ----HDC---- F:\WINDOWS\$NtUninstallKB956802$
2009-01-25 00:56:21 ----HDC---- F:\WINDOWS\$NtUninstallKB928843$
2009-01-24 23:37:10 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Symantec
2009-01-24 00:02:17 ----HDC---- F:\WINDOWS\$NtUninstallKB956391$
2009-01-24 00:01:21 ----HDC---- F:\WINDOWS\$NtUninstallKB952069_WM9$
2009-01-24 00:00:28 ----HDC---- F:\WINDOWS\$NtUninstallKB957097$
2009-01-24 00:00:19 ----HDC---- F:\WINDOWS\$NtUninstallKB958687$
2009-01-23 23:59:26 ----D---- F:\WINDOWS\ie8updates
2009-01-23 23:59:11 ----HDC---- F:\WINDOWS\$NtUninstallKB955069$
2009-01-23 12:22:50 ----A---- F:\WINDOWS\system32\muweb.dll
2009-01-23 12:22:50 ----A---- F:\WINDOWS\system32\mucltui.dll.mui
2009-01-23 12:22:50 ----A---- F:\WINDOWS\system32\mucltui.dll
2009-01-23 09:06:38 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\Malwarebytes
2009-01-23 09:06:32 ----DC---- G:\\Malwarebytes' Anti-Malware
2009-01-23 09:06:32 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2009-01-23 06:49:56 ----A---- F:\WINDOWS\gmer.bat
2009-01-23 06:39:50 ----A---- F:\WINDOWS\gmer.ini
2009-01-23 06:39:43 ----A---- F:\WINDOWS\gmer_uninstall.cmd
2009-01-23 06:39:42 ----A---- F:\WINDOWS\gmer.dll
2009-01-23 06:39:41 ----A---- F:\WINDOWS\gmer.exe
2009-01-23 00:29:40 ----D---- F:\WINDOWS\system32\PreInstall
2009-01-23 00:29:38 ----HDC---- F:\WINDOWS\$NtUninstallKB898461$
2009-01-22 22:04:14 ----A---- F:\WINDOWS\system32\TuneUpDefragService.exe
2009-01-20 09:18:14 ----DC---- G:\\Microsoft Silverlight
2009-01-20 00:26:30 ----A---- F:\WINDOWS\bdagent.INI
2009-01-19 20:43:49 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\BitDefender
2009-01-19 20:42:53 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BitDefender
2009-01-19 20:42:52 ----DC---- G:\\BitDefender
2009-01-19 20:40:14 ----D---- M:\\BitDefender
2009-01-19 20:34:57 ----D---- F:\WINDOWS\BDOSCAN8
2009-01-16 21:14:55 ----DC---- G:\\Panda Security
2009-01-15 21:23:34 ----DC---- G:\\GRETECH
2009-01-14 20:36:57 ----DC---- G:\\Avira
2009-01-14 20:36:57 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2009-01-13 11:43:53 ----A---- F:\WINDOWS\BricoPackUninst.cmd
2009-01-13 11:39:46 ----A---- F:\WINDOWS\BricoPackUninst.txt
2009-01-13 11:39:45 ----A---- F:\WINDOWS\BricoPackFoldersDelete.cmd
2009-01-13 11:38:50 ----D---- F:\WINDOWS\BricoPacks
2009-01-10 22:06:50 ----D---- F:\WINDOWS\system32\syncdb
2009-01-10 21:04:12 ----A---- F:\WINDOWS\system32\TUProgSt.exe
2009-01-10 21:02:49 ----DC---- G:\\TuneUp Utilities 2009
2009-01-10 21:02:05 ----SHD---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{55A29068-F2CE-456C-9148-C869879E2357}
2009-01-10 17:46:38 ----DC---- G:\\Symantec
2009-01-10 17:46:38 ----D---- M:\\Symantec Shared

======List of files/folders modified in the last 1 months======

2009-01-26 08:33:04 ----D---- F:\WINDOWS\Prefetch
2009-01-26 08:29:48 ----D---- G:\\Mozilla Firefox
2009-01-26 08:22:44 ----D---- F:\WINDOWS\system32\CatRoot
2009-01-26 08:21:14 ----HD---- F:\WINDOWS\inf
2009-01-26 08:21:12 ----D---- F:\WINDOWS
2009-01-26 08:20:57 ----D---- F:\WINDOWS\system32
2009-01-26 08:20:50 ----A---- F:\WINDOWS\imsins.BAK
2009-01-26 08:20:43 ----RSHDC---- F:\WINDOWS\system32\dllcache
2009-01-26 08:20:42 ----D---- F:\WINDOWS\system32\drivers
2009-01-26 08:19:36 ----D---- F:\WINDOWS\system32\CatRoot2
2009-01-26 08:18:44 ----D---- F:\WINDOWS\system32\Com
2009-01-26 08:17:02 ----D---- F:\WINDOWS\msagent
2009-01-26 08:02:11 ----D---- F:\WINDOWS\Temp
2009-01-26 00:33:52 ----A---- F:\WINDOWS\SchedLgU.Txt
2009-01-26 00:22:55 ----D---- F:\WINDOWS\Media
2009-01-26 00:22:55 ----D---- F:\WINDOWS\Help
2009-01-26 00:22:54 ----D---- G:\\internet explorer
2009-01-25 22:26:41 ----D---- F:\WINDOWS\WinSxS
2009-01-25 22:21:04 ----SHD---- F:\WINDOWS\Installer
2009-01-25 22:09:50 ----D---- F:\WINDOWS\Debug
2009-01-25 21:00:41 ----SHD---- M:\\System Volume Information
2009-01-25 21:00:40 ----SHD---- G:\\System Volume Information
2009-01-25 20:57:23 ----SHD---- F:\System Volume Information
2009-01-25 20:57:23 ----D---- F:\WINDOWS\system32\Restore
2009-01-25 19:24:38 ----A---- F:\WINDOWS\system32\PerfStringBackup.INI
2009-01-25 01:20:40 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help
2009-01-25 01:19:50 ----HD---- F:\WINDOWS\$hf_mig$
2009-01-25 01:06:54 ----A---- F:\WINDOWS\win.ini
2009-01-25 01:03:02 ----D---- M:\\Microsoft Shared
2009-01-23 23:58:02 ----RD---- F:\Programme
2009-01-23 23:33:54 ----D---- G:\\DivX
2009-01-23 23:33:27 ----D---- G:\\xp-Iso-Builder
2009-01-23 22:51:46 ----DC---- G:\\IKEA HomePlanner
2009-01-23 22:50:11 ----D---- G:\\System-Programme
2009-01-23 07:53:18 ----SD---- F:\WINDOWS\Downloaded Program Files
2009-01-23 07:03:21 ----D---- F:\WINDOWS\nview
2009-01-22 22:36:45 ----D---- F:\WINDOWS\system32\ReinstallBackups
2009-01-22 22:34:40 ----DC---- G:\\WordToPDF
2009-01-22 22:32:29 ----A---- F:\WINDOWS\NeroDigital.ini
2009-01-22 21:47:17 ----A---- F:\WINDOWS\system32\oeminfo.ini
2009-01-16 09:34:18 ----D---- F:\WINDOWS\system32\usmt
2009-01-13 22:34:05 ----RSD---- F:\WINDOWS\Fonts
2009-01-13 12:43:05 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\Azureus
2009-01-13 11:43:53 ----A---- F:\WINDOWS\system32\uxtheme.dll
2009-01-13 11:42:10 ----D---- F:\WINDOWS\Cursors
2009-01-11 19:59:42 ----SD---- F:\WINDOWS\Tasks
2009-01-11 19:29:51 ----D---- F:\Abax
2009-01-11 19:06:18 ----D---- M:\\Sortiert
2009-01-10 22:27:49 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\Adobe
2009-01-10 22:14:48 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2009-01-10 22:13:15 ----D---- M:\\Adobe
2009-01-10 21:04:14 ----D---- F:\WINDOWS\system32\config
2009-01-10 11:23:09 ----D---- F:\WINDOWS\SxsCaPendDel
2009-01-09 17:35:30 ----A---- F:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\G:\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; F:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
R1 bdftdif;bdftdif; \??\M:\BitDefender\BitDefender Firewall\bdftdif.sys []
R1 InCDPass;InCDPass; F:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-06-10 29696]
R1 incdrm;InCD Reader; F:\WINDOWS\system32\drivers\incdrm.sys [2005-06-10 28160]
R1 intelppm;Intel-Prozessortreiber; F:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-03 40192]
R1 kbdhid;Tastatur-HID-Treiber; F:\WINDOWS\System32\DRIVERS\kbdhid.sys [2004-08-03 14848]
R1 SLEE_15_DRIVER;SLEE_15_DRIVER; \??\F:\WINDOWS\system32\drivers\sleen15.sys []
R1 ssmdrv;ssmdrv; F:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
R2 BDVEDISK;BDVEDISK; \??\G:\BitDefender\BitDefender 2009\BDVEDISK.sys []
R2 ElbyCDIO;ElbyCDIO Driver; F:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2005-04-21 10624]
R2 tmcomm;tmcomm; \??\F:\WINDOWS\system32\drivers\tmcomm.sys []
R3 avgntflt;avgntflt; \??\G:\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 bdfm;BDFM; F:\WINDOWS\system32\drivers\bdfm.sys [2008-09-18 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; F:\WINDOWS\system32\DRIVERS\bdfndisf.sys [2008-10-17 104328]
R3 bdfsfltr;bdfsfltr; F:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-12-10 242184]
R3 BDSelfPr;BDSelfPr; \??\G:\BitDefender\BitDefender 2009\bdselfpr.sys []
R3 cmuda;C-Media WDM Audio Interface; F:\WINDOWS\system32\drivers\cmuda.sys [2003-08-30 740608]
R3 ElbyCDFL;ElbyCDFL; F:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2005-05-03 27392]
R3 ElbyDelay;ElbyDelay; F:\WINDOWS\System32\Drivers\ElbyDelay.sys [2005-04-12 4608]
R3 FETNDIS;VIA Rhine Family Fast Ethernet Adapter Driver; F:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2002-07-05 40448]
R3 fxusbase;Teledat USB 2 a/b; F:\WINDOWS\system32\DRIVERS\fxusbase.sys [2004-06-09 547840]
R3 hidusb;Microsoft HID Class-Treiber; F:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-18 9600]
R3 HPZid412;IEEE-1284.4 Driver HPZid412; F:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-07-06 51088]
R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; F:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-07-06 16496]
R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; F:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-07-06 21744]
R3 KMWDFilter;KMWDFilter; \??\F:\WINDOWS\System32\Drivers\KMWDFilter.SYS []
R3 mouhid;Maus-HID-Treiber; F:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-18 12288]
R3 NETPPPOI;PPP over ISDN; F:\WINDOWS\system32\DRIVERS\NETPPPOI.SYS [2002-02-21 259072]
R3 nv;nv; F:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
R3 pfc;Padus ASPI Shell; F:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 usbccgp;Microsoft Standard-USB-Haupttreiber; F:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; F:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Microsoft USB-Standardhubtreiber; F:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbprint;Microsoft USB-Druckerklasse; F:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbstor;USB-Massenspeichertreiber; F:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; F:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R4 InCDfs;InCD File System; F:\WINDOWS\system32\drivers\InCDfs.sys [2005-06-10 99584]
S2 adfs;adfs; F:\WINDOWS\system32\drivers\adfs.sys []
S3 gmer;gmer; F:\WINDOWS\System32\DRIVERS\gmer.sys [2009-01-23 85969]
S3 NTSIM;NTSIM; \??\F:\WINDOWS\System32\ntsim.sys []
S3 Profos;Profos; \??\M:\BitDefender\BitDefender Threat Scanner\profos.sys []
S3 QV2KUX;Casio-Digitalkamera; F:\WINDOWS\System32\DRIVERS\qv2kux.sys [2001-08-17 3328]
S3 StMp3Rec;Treiber für Player-Wiederherstellungsgerät; F:\WINDOWS\System32\Drivers\StMp3Rec.sys [2007-03-30 19840]
S3 Trufos;Trufos; \??\M:\BitDefender\BitDefender Threat Scanner\trufos.sys []
S3 usbscan;USB-Scannertreiber; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []

Oliver1854 26.01.2009 08:57
Report 2 Teil 3:

Code:
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Planer; G:\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; G:\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 InCDsrv;InCD Helper; F:\Programme\Ahead\InCD\InCDsrv.exe [2005-06-10 869888]
R2 JavaQuickStarterService;Java Quick Starter; G:\Java\jre6\bin\jqs.exe [2008-11-10 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; G:\System-Programme\Hardware\Tastatur\KMWDSrv.exe [2007-06-16 208896]
R2 LIVESRV;BitDefender Desktop Update Service; M:\BitDefender\BitDefender Update Service\livesrv.exe [2008-12-15 425984]
R2 MDM;Machine Debug Manager; M:\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NVSvc;NVIDIA Display Driver Service; F:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; F:\WINDOWS\System32\TUProgSt.exe [2009-01-10 603904]
R2 VSSERV;BitDefender Virus Shield; G:\BitDefender\BitDefender 2009\vsserv.exe [2008-12-17 1581056]
S3 Arrakis3;BitDefender Arrakis Server; M:\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2008-07-17 118784]
S3 aspnet_state;ASP.NET State Service; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; F:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 LiveUpdate;LiveUpdate; G:\Symantec\LiveUpdate\LuComServer_3_4.EXE [2008-08-01 3220856]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; F:\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 odserv;Microsoft Office Diagnostics Service; M:\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; M:\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; F:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
S3 scan;BitDefender Threat Scanner; F:\WINDOWS\System32\svchost.exe [2004-08-03 14336]
S3 TuneUp.Defrag;TuneUp Drive Defrag-Dienst; F:\WINDOWS\System32\TuneUpDefragService.exe [2009-01-22 360192]
S4 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; G:\Symantec\LiveUpdate\AluSchedulerSvc.exe [2008-08-01 238968]
S4 de_serv;AVM FRITZ!web Routing Service; M:\AVM\de_serv.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

-----------------EOF-----------------

Oliver1854 26.01.2009 08:59
Logfile 3:
Code:
Avira AntiRootkit Tool - Beta (1.0.1.17)

========================================================================================================
 - Scan started Montag, 26. Januar 2009 - 08:42:21
========================================================================================================

--------------------------------------------------------------------------------------------------------
  Configuration:
--------------------------------------------------------------------------------------------------------
 - [X] Scan files
 - [X] Scan registry
 - [X] Scan processes
 - [ ] Fast scan
 - Working disk total size : 19.53 GB
 - Working disk free size : 2.81 GB (14 %)
--------------------------------------------------------------------------------------------------------

Scan task finished. No hidden objects detected!

--------------------------------------------------------------------------------------------------------
Files: 0/0
Registry items: 0/0
Processes: 0/0
Scan time: 00:00:00
--------------------------------------------------------------------------------------------------------
Active processes:
========================================================================================================
 - Scan finished  Montag, 26. Januar 2009 - 08:42:21
========================================================================================================
So, ich hoffe, das jetzt endlich der PC wieder frei von Schrott ist.
Und was meint Ihr?

Gruß Oliver

Chris4You 26.01.2009 09:39
Hi,

ja sieht so aus...

chris

Oliver1854 26.01.2009 09:46
Vielen Dank. Jetzt kann ich auch wieder beruhigt schlafen.

Gruß Oliver


Alle Zeitangaben in WEZ +1. Es ist jetzt 11:07 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55