Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Downloadgeschwindigkeit im keller (https://www.trojaner-board.de/85612-downloadgeschwindigkeit-keller.html)

andre1848 03.05.2010 12:35
Downloadgeschwindigkeit im keller
 
moin moin

seit ein paar tagen dauert es sehr lange bis sich eine internetseite aufbaut
laut speedtest ist wie gesagt die downloadgeschwindigkeit sehr gering die uploadgeschwindigkeit hingegen ist normal!

der zweite pc im haus funktioniert einwandfrei also kann es nicht am internetanschluss liegen

ich hoffe ihr findet irgendwas

danke im vorraus

lg andre

************************
Logfile of random's system information tool 1.06 (written by random/random)
Run by xxxxx at 2010-05-03 12:46:03
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 30 GB (77%) free of 39 GB
Total RAM: 1536 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:46:10, on 03.05.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir Desktop\sched.exe
C:\Programme\Avira\AntiVir Desktop\avguard.exe
C:\Programme\Application Updater\ApplicationUpdater.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Programme\Java\jre6\bin\jqs.exe
C:\Programme\Avira\AntiVir Desktop\avshadow.exe
C:\Programme\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Programme\Analog Devices\SoundMAX\SMTray.exe
C:\WINDOWS\System32\keyhook.exe
C:\Programme\Avira\AntiVir Desktop\avgnt.exe
C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programme\DivX\DivX Update\DivXUpdate.exe
C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
C:\Programme\Visagesoft\eXPert PDF\vspdfprsrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBGE.EXE
C:\WINDOWS\system32\sistray.exe
C:\Programme\Dienstprogramm ZyAIR USB\ZyAIR.exe
C:\WINDOWS\System32\dllhost.exe
C:\Dokumente und Einstellungen\andre\Eigene Dateien\Downloads\Neuer Ordner\RSIT.exe
C:\Programme\trend micro\andre.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Programme\pdfforge Toolbar\SearchSettings.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\1.1.2\pdfforgeToolbarIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Programme\pdfforge Toolbar\SearchSettings.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Programme\pdfforge Toolbar\IE\1.1.2\pdfforgeToolbarIE.dll
O4 - HKLM\..\Run: [Smapp] C:\Programme\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\System32\keyhook.exe
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [DivXUpdate] "C:\Programme\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SearchSettings] C:\Programme\pdfforge Toolbar\SearchSettings.exe
O4 - HKLM\..\Run: [vspdfprsrv.exe] C:\Programme\Visagesoft\eXPert PDF\vspdfprsrv.exe --background
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Programme\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Programme\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [ICQ] "C:\Programme\ICQ7.1\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [EPSON Stylus D78 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBGE.EXE /FU "C:\WINDOWS\TEMP\E_S11D.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O4 - Global Startup: ZyAIR USB.lnk = C:\Programme\Dienstprogramm ZyAIR USB\ZyAIR.exe
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Programme\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Programme\ICQ7.1\ICQ.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1237312354656
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1237312343937
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Programme\Application Updater\ApplicationUpdater.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Programme\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 7889 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Google Software Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Programme\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-04-26 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
pdfforge Toolbar - C:\Programme\pdfforge Toolbar\IE\1.1.2\pdfforgeToolbarIE.dll [2010-01-08 700416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Programme\Java\jre6\bin\jp2ssv.dll [2010-04-14 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
C:\Programme\pdfforge Toolbar\SearchSettings.dll [2010-01-08 1109504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-14 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{B922D405-6D13-4A2B-AE89-08A030DA4402} - pdfforge Toolbar - C:\Programme\pdfforge Toolbar\IE\1.1.2\pdfforgeToolbarIE.dll [2010-01-08 700416]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Smapp"=C:\Programme\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360]
"SiS Windows KeyHook"=C:\WINDOWS\System32\keyhook.exe [2004-05-12 249856]
"avgnt"=C:\Programme\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]
"ZoneAlarm Client"=C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe [2009-11-22 1037192]
"nwiz"=nwiz.exe /installquiet []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-03-16 110696]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-03-16 13670504]
"NPSStartup"= []
"DivXUpdate"=C:\Programme\DivX\DivX Update\DivXUpdate.exe [2010-03-05 1135912]
"SunJavaUpdateSched"=C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [2010-02-18 248040]
"SearchSettings"=C:\Programme\pdfforge Toolbar\SearchSettings.exe [2010-01-08 974848]
"vspdfprsrv.exe"=C:\Programme\Visagesoft\eXPert PDF\vspdfprsrv.exe [2006-05-04 998912]
"Malwarebytes Anti-Malware (reboot)"=C:\Programme\Malwarebytes' Anti-Malware\mbam.exe [2010-04-29 1090952]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe [2010-04-29 437584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Programme\Skype\Phone\Skype.exe [2010-03-09 26100520]
"AutoStartNPSAgent"=C:\Programme\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-12-17 116056]
"ICQ"=C:\Programme\ICQ7.1\ICQ.exe [2010-03-29 133368]
"swg"=C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-04-26 39408]
"EPSON Stylus D78 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBGE.EXE [2006-09-22 139264]

C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
Microsoft Office.lnk - C:\Programme\Microsoft Office\Office10\OSA.EXE
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe
ZyAIR USB.lnk - C:\Programme\Dienstprogramm ZyAIR USB\ZyAIR.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\Skype\Plugin Manager\skypePM.exe"="C:\Programme\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Programme\ICQ7.1\ICQ.exe"="C:\Programme\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"C:\Programme\ICQ7.1\aolload.exe"="C:\Programme\ICQ7.1\aolload.exe:*:Enabled:aolload.exe"
"C:\Programme\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Programme\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Programme\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Programme\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Programme\Skype\Phone\Skype.exe"="C:\Programme\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\ICQ7.1\ICQ.exe"="C:\Programme\ICQ7.1\ICQ.exe:*:Enabled:ICQ7.1"
"C:\Programme\ICQ7.1\aolload.exe"="C:\Programme\ICQ7.1\aolload.exe:*:Enabled:aolload.exe"

======List of files/folders created in the last 1 months======

2010-05-03 10:16:39 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\Malwarebytes
2010-05-03 10:16:23 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2010-05-03 10:16:22 ----D---- C:\Programme\Malwarebytes' Anti-Malware
2010-05-02 16:06:35 ----D---- C:\WINDOWS\system32\NtmsData
2010-05-01 13:51:01 ----D---- C:\rsit
2010-05-01 13:43:05 ----D---- C:\Programme\CCleaner
2010-05-01 13:28:02 ----D---- C:\Programme\Trend Micro
2010-04-29 15:13:12 ----A---- C:\WINDOWS\system32\E_DCINST.DLL
2010-04-29 15:13:07 ----A---- C:\WINDOWS\system32\E_FLBBGE.DLL
2010-04-29 15:13:07 ----A---- C:\WINDOWS\system32\E_FD4BBGE.DLL
2010-04-29 15:12:18 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\EPSON
2010-04-29 14:39:54 ----D---- C:\Dokumente und Einstellungen\xxxx\Anwendungsdaten\Google
2010-04-29 14:00:40 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\Foxit Software
2010-04-28 15:22:45 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eXPert PDF 4
2010-04-28 15:13:18 ----D---- C:\Programme\CIB software GmbH
2010-04-28 14:39:46 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\eXPert PDF Editor
2010-04-28 14:38:57 ----A---- C:\WINDOWS\system32\vsmon1.dll
2010-04-28 14:38:45 ----D---- C:\WINDOWS\My Documents
2010-04-28 14:38:45 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eXPert PDF Jobs
2010-04-28 14:38:45 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\eXPert PDF
2010-04-28 14:38:44 ----D---- C:\Programme\Visagesoft
2010-04-28 11:11:01 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\EPSON
2010-04-28 10:48:03 ----D---- C:\Programme\epson
2010-04-28 10:48:01 ----A---- C:\WINDOWS\system32\eswiaml.dll
2010-04-28 10:48:01 ----A---- C:\WINDOWS\system32\eswia30.dll
2010-04-28 10:48:00 ----A---- C:\WINDOWS\system32\esint30.dll
2010-04-28 08:53:30 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\Search Settings
2010-04-28 08:53:19 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\pdfforge
2010-04-27 13:23:19 ----D---- C:\Programme\Application Updater
2010-04-27 13:23:17 ----D---- C:\Programme\pdfforge Toolbar
2010-04-27 13:19:43 ----A---- C:\WINDOWS\system32\pdfcmnnt.dll
2010-04-27 13:19:40 ----A---- C:\WINDOWS\system32\VB6DE.DLL
2010-04-27 13:19:40 ----A---- C:\WINDOWS\system32\MSCMCDE.DLL
2010-04-27 13:19:39 ----D---- C:\Programme\PDFCreator
2010-04-27 13:19:39 ----A---- C:\WINDOWS\system32\MSMPIDE.DLL
2010-04-27 13:19:39 ----A---- C:\WINDOWS\system32\MSCC2DE.DLL
2010-04-26 11:58:11 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Google Updater
2010-04-26 11:58:09 ----D---- C:\Programme\Google
2010-04-26 10:56:54 ----D---- C:\WINDOWS\ie8updates
2010-04-26 10:55:44 ----D---- C:\WINDOWS\WBEM
2010-04-26 10:55:03 ----HDC---- C:\WINDOWS\ie8
2010-04-14 15:51:39 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-04-14 15:51:20 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-04-14 15:51:08 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-04-14 15:51:03 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-04-14 15:49:28 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-04-14 15:49:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-04-14 15:48:59 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-04-14 15:48:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-04-14 15:48:26 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-04-14 12:22:58 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sun
2010-04-14 12:22:55 ----D---- C:\Programme\Gemeinsame Dateien\Java
2010-04-14 12:22:23 ----A---- C:\WINDOWS\system32\javaws.exe
2010-04-14 12:22:23 ----A---- C:\WINDOWS\system32\javaw.exe
2010-04-14 12:22:23 ----A---- C:\WINDOWS\system32\java.exe
2010-04-14 12:21:51 ----D---- C:\Programme\Java
2010-04-14 12:19:06 ----A---- C:\WINDOWS\system32\kbdmon32.dll
2010-04-13 11:03:23 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\Foxit
2010-04-13 11:02:54 ----D---- C:\Programme\Foxit Software
2010-04-12 17:32:07 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-04-06 13:24:55 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\DivX
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\vxblock.dll
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxwave.dll
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxsfs.dll
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxmas.dll
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxdrv.dll
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2010-04-06 13:24:18 ----N---- C:\WINDOWS\system32\pxafs.dll
2010-04-06 13:24:17 ----N---- C:\WINDOWS\system32\px.dll
2010-04-06 13:22:59 ----D---- C:\Programme\Gemeinsame Dateien\DivX Shared
2010-04-06 13:21:10 ----D---- C:\Programme\DivX
2010-04-06 13:20:02 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\DivX

======List of files/folders modified in the last 1 months======

2010-05-03 12:46:09 ----D---- C:\WINDOWS\Prefetch
2010-05-03 12:41:35 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-05-03 12:41:35 ----D---- C:\WINDOWS\system32\drivers
2010-05-03 12:09:57 ----SHD---- C:\System Volume Information
2010-05-03 10:29:30 ----D---- C:\WINDOWS\Registration
2010-05-03 10:25:51 ----D---- C:\WINDOWS\Internet Logs
2010-05-03 10:16:22 ----RD---- C:\Programme
2010-05-03 09:56:07 ----D---- C:\WINDOWS
2010-05-03 09:53:45 ----D---- C:\Dokumente und Einstellungen\andre\Anwendungsdaten\Skype
2010-05-03 09:53:45 ----D---- C:\Dokumente und Einstellungen\andre\Anwendungsdaten\ICQ
2010-05-03 08:57:36 ----D---- C:\Dokumente und Einstellungen\andre\Anwendungsdaten\skypePM
2010-05-02 16:55:58 ----D---- C:\WINDOWS\Temp
2010-05-02 16:55:09 ----SD---- C:\WINDOWS\Tasks
2010-05-02 16:54:50 ----D---- C:\WINDOWS\system32\CatRoot2
2010-05-02 16:52:10 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-05-02 16:06:35 ----D---- C:\WINDOWS\system32
2010-05-02 16:06:35 ----D---- C:\WINDOWS\repair
2010-05-01 13:47:49 ----D---- C:\WINDOWS\Debug
2010-05-01 13:47:48 ----D---- C:\WINDOWS\Minidump
2010-05-01 13:28:03 ----SHD---- C:\WINDOWS\Installer
2010-04-29 15:13:29 ----HD---- C:\WINDOWS\inf
2010-04-29 15:12:32 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-04-29 15:02:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-28 15:13:18 ----HD---- C:\Programme\InstallShield Installation Information
2010-04-28 13:55:57 ----D---- C:\Dokumente und Einstellungen\xxxxx\Anwendungsdaten\gtk-2.0
2010-04-28 11:54:48 ----SD---- C:\Dokumente und Einstellungen\xxxx\Anwendungsdaten\Microsoft
2010-04-28 10:48:00 ----D---- C:\WINDOWS\twain_32
2010-04-27 15:53:38 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-27 15:51:55 ----D---- C:\Programme\Gemeinsame Dateien\Microsoft Shared
2010-04-27 13:23:18 ----D---- C:\WINDOWS\WinSxS
2010-04-26 12:19:21 ----D---- C:\WINDOWS\system32\de-de
2010-04-26 12:19:21 ----D---- C:\WINDOWS\Help
2010-04-26 12:19:21 ----D---- C:\Programme\Internet Explorer
2010-04-26 10:55:58 ----D---- C:\WINDOWS\system32\config
2010-04-26 10:55:35 ----D---- C:\WINDOWS\Media
2010-04-17 14:33:17 ----RASH---- C:\boot.ini
2010-04-17 14:33:17 ----A---- C:\WINDOWS\win.ini
2010-04-17 14:33:17 ----A---- C:\WINDOWS\system.ini
2010-04-14 12:22:55 ----D---- C:\Programme\Gemeinsame Dateien
2010-04-14 12:21:56 ----A---- C:\WINDOWS\system32\deploytk.dll
2010-04-14 12:15:43 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help
2010-04-14 12:15:21 ----D---- C:\Programme\Microsoft Office
2010-04-14 12:14:54 ----D---- C:\WINDOWS\ShellNew
2010-04-14 12:14:53 ----RSD---- C:\WINDOWS\Fonts
2010-04-06 19:52:54 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 intelppm;Intel-Prozessortreiber; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 SiSkp;SiSkp; C:\WINDOWS\System32\DRIVERS\srvkp.sys [2004-05-12 12416]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-11-22 486280]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-03-16 10232352]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-27 578304]
R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2-aktivierter Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Miniporttreiber für Microsoft USB Open Host-Controller; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 ZD1201U;ZyAIR B-220 IEEE 802.11b Wireless LAN Driver (USB); C:\WINDOWS\System32\DRIVERS\zd1201u.sys [2003-05-15 38656]
R3 ZDNDIS5;ZDNDIS5 Protocol Driver; \??\C:\WINDOWS\System32\ZDNDIS5.SYS []
S3 SiS315;SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [2004-05-14 217600]
S3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; C:\WINDOWS\System32\DRIVERS\sisnic.sys [2003-04-10 32256]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-09-21 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-09-21 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-09-21 121856]
S3 tap0901;TAP-Win32 Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2009-10-14 32000]
S3 usbprint;Microsoft USB-Druckerklasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB-Scannertreiber; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Filtertreiber für Systemwiederherstellung; C:\WINDOWS\System32\DRIVERS\sr.sys [2008-04-14 73472]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2010-04-30 267432]
R2 Application Updater;Application Updater; C:\Programme\Application Updater\ApplicationUpdater.exe [2010-01-08 380928]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-12-17 238952]
R2 JavaQuickStarterService;Java Quick Starter; C:\Programme\Java\jre6\bin\jqs.exe [2010-04-14 153376]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-03-16 154216]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Programme\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2009-11-22 2384240]
S2 gusvc;Google Software Updater; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-26 194032]

-----------------EOF-----------------

andre1848 04.05.2010 19:15
nabend

hat sich erledigt ;)

thread kann also verschwinden

lg andre


Alle Zeitangaben in WEZ +1. Es ist jetzt 08:59 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131