|
Log von meinen viren versauten Pc Log created by WinPatrol version 14.0.2007.1:14.0.2007.1 Scan saved at 3:48:08 PM, on 8/15/2008 Platform: Windows XP SP2 Home Edition Service Pack 2 (Build 2600) MSIE: Internet Explorer (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\system32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRAMME\Belkin\BLUETOOTH SOFTWARE\bin\btwdins.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\UASERVICE7.EXE C:\WINDOWS\explorer.exe C:\PROGRAMME\VIA\RAID\RAID_TOOL.EXE C:\PROGRAMME\GEMEINSAME DATEIEN\INSTALLSHIELD\UPDATESERVICE\issch.exe C:\PROGRAMME\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.exe C:\WINDOWS\system32\TMCONTROLLER.EXE C:\WINDOWS\mixer.exe C:\PROGRAMME\ANI\ANIWZCS2 SERVICE\WZCSLDR2.exe C:\PROGRAMME\D-Link\D-LINK WIRELESS N DWA-140\AirNCFG.exe C:\WINDOWS\system32\ctfmon.exe C:\DOKUMENTE UND EINSTELLUNGEN\Enrico F\ANWENDUNGSDATEN\m\flec006.exe C:\PROGRAMME\TOMTOM HOME 2\HOMERUNNER.EXE C:\PROGRAMME\Belkin\BLUETOOTH SOFTWARE\BTTray.exe C:\PROGRAMME\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.exe C:\PROGRAMME\BILLP STUDIOS\WINPATROL\WINPATROL.EXE C:\Programme\Mozilla Firefox\firefox.exe C:\PROGRAMME\BILLP STUDIOS\WINPATROL\WINPATROLEX.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 O1 - Hosts: 127.0 O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: EWPBrowseObject Class - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Programme\Canon\Easy-WebPrint\EWPBrowseLoader.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: - {7E853D72-626A-48EC-A868-BA8D5E23E045} - O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\Google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Programme\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\Google\googletoolbar1.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [ATIPTA]C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [RaidTool]C:\Programme\VIA\RAID\raid_tool.exe O4 - HKLM\..\Run: [NeroFilterCheck]C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [SkyTel]SkyTel.EXE O4 - HKLM\..\Run: [RTHDCPL]RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr]ALCMTR.EXE O4 - HKLM\..\Run: [QuickTime Task]C:\Programme\QuickTime\qttask.exe -atboottime O4 - HKLM\..\Run: [ISUSPM Startup]C:\PROGRA~1\GEMEIN~1\INSTAL~1\UPDATE~1\isuspm.exe -startup O4 - HKLM\..\Run: [ISUSScheduler]C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe -start O4 - HKLM\..\Run: [Easy-PrintToolBox]C:\Programme\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [StartCCC]C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Run: [TMController]C:\WINDOWS\system32\TMController.exe O4 - HKLM\..\Run: [C-Media Mixer]Mixer.exe /startup O4 - HKLM\..\Run: [SunJavaUpdateSched]C:\Programme\Java\jre1.6.0_05\bin\jusched.exe O4 - HKLM\..\Run: [routcnf]C:\Programme\Telekom\Eumex 200\routcnf.exe /capiactive O4 - HKLM\..\Run: [ANIWZCS2Service]C:\Programme\ANI\ANIWZCS2 Service\WZCSLDR2.exe O4 - HKLM\..\Run: [D-Link D-Link Wireless N DWA-140]C:\Programme\D-Link\D-Link Wireless N DWA-140\AirNCFG.exe O4 - HKLM\..\Run: [ccApp]C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe O4 - HKLM\..\Run: [WinPatrol]C:\Programme\BillP Studios\WinPatrol\winpatrol.exe -expressboot O4 - HKCU\..\Run: [CTFMON.EXE]C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg]C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Yahoo! Pager]C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE -quiet O4 - HKCU\..\Run: [TomTomHOME.exe]C:\Programme\TomTom HOME 2\HOMERunner.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk=C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: BTTray.lnk=C:\Programme\Belkin\Bluetooth Software\BTTray.exe O4 - Global Startup: Microsoft Office.lnk=C:\Programme\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: TMMonitor.lnk=C:\Programme\ArcSoft\TotalMedia 3\TMMonitor.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Programme\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Senden an &Bluetooth - C:\Programme\Belkin\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Belkin\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Belkin\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O11 - Options group: [Java (Sun)] Java (Sun) - C:\Programme\Java\jre1.6.0_05\bin O11 - Options group: [] - O12 - Plugin for .spop: C:\Programme\Internet Explorer\PLUGINS\NPDocBox.dll O14 - IERESET.INF: START_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome O14 - IERESET.INF: SEARCH_PAGE_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch O14 - IERESET.INF:HKCU, Start Page = %START_PAGE_URL% O14 - IERESET.INF:HKLM, Default_Page_URL = %START_PAGE_URL% O14 - IERESET.INF:HKLM, Default_Search_URL = %SEARCH_PAGE_URL% O14 - IERESET.INF:HKLM, Search Page = %SEARCH_PAGE_URL% O14 - IERESET.INF:HKCU, Search Page = %SEARCH_PAGE_URL% O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_05) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Plug-in 1.6.0_03) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} (Java Plug-in 1.6.0_05) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Plug-in 1.6.0_05) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O21 - WPDShServiceObj - WPDShServiceObj Class - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: ANIWZCSd Service - Wireless Service - C:\Programme\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: Anwendungsverwaltung - - C:\WINDOWS\System32\appmgmts.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\ati2evxx.exe O23 - Service: ATI Smart - - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Bluetooth Service - Broadcom Corporation. - C:\Programme\Belkin\Bluetooth Software\bin\btwdins.exe O23 - Service: Google Updater Service - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Eingabegerätezugang - - C:\WINDOWS\System32\hidserv.dll O23 - Service: InstallDriver Table Manager - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: PnkBstrA - - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: SecuROM User Access Service (V7) - - C:\WINDOWS\system32\UAService7.exe O24 - Desktop Component 0: Die derzeitige Homepage - About:Home --- Additional WinPatrol Info --- Default Browser: Firefox - Firefox version 2.0.0.16 MSIE: Internet Explorer (7.00.6000.16640) |
Die versteckten # • Versteckte Dateien • # boot boot.ini Path: C:\boot.ini First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # bootfont bootfont.bin Path: C:\bootfont.bin First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # IO IO.SYS Path: C:\IO.SYS First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # MSDOS MSDOS.SYS Path: C:\MSDOS.SYS First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # n ntldr Path: C:\ntldr First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # pagefile pagefile.sys Path: C:\pagefile.sys Click for Plus Info # WindowsShell.Mani WindowsShell.Manifest Path: C:\WINDOWS\WindowsShell.Manifest First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # winnt winnt.bmp Path: C:\WINDOWS\winnt.bmp First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # winnt256 winnt256.bmp Path: C:\WINDOWS\winnt256.bmp First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # cdplayer.exe.mani cdplayer.exe.manifest Path: C:\WINDOWS\system32\cdplayer.exe.manifest Click for Plus Info # default default.LOG Path: C:\WINDOWS\system32\config\default.LOG First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # SAM SAM.LOG Path: C:\WINDOWS\system32\config\SAM.LOG First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # SECURITY SECURITY.LOG Path: C:\WINDOWS\system32\config\SECURITY.LOG First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # software software.LOG Path: C:\WINDOWS\system32\config\software.LOG First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # system system.LOG Path: C:\WINDOWS\system32\config\system.LOG First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # TempKey TempKey.LOG Path: C:\WINDOWS\system32\config\TempKey.LOG First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # userdiff userdiff.LOG Path: C:\WINDOWS\system32\config\userdiff.LOG First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # logonui.exe.mani logonui.exe.manifest Windows-Anmeldebenutzeroberfläche Version: 6.00.2900.2180 © Microsoft Corporation. Alle Rechte vorbehalten. Path: C:\WINDOWS\system32\logonui.exe.manifest First Detected by WinPatrol: 08/15/2008 15:27 Click for Plus Info # ncpa.cpl.mani ncpa.cpl.manifest Path: C:\WINDOWS\system32\ncpa.cpl.manifest First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # nwc.cpl.mani nwc.cpl.manifest Path: C:\WINDOWS\system32\nwc.cpl.manifest First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # filelist filelist.xml Path: C:\WINDOWS\system32\Restore\filelist.xml First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # sapi.cpl.mani sapi.cpl.manifest Path: C:\WINDOWS\system32\sapi.cpl.manifest First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # WindowsLogon.mani WindowsLogon.manifest Path: C:\WINDOWS\system32\WindowsLogon.manifest First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info # wuaucpl.cpl.mani wuaucpl.cpl.manifest Path: C:\WINDOWS\system32\wuaucpl.cpl.manifest First Detected by WinPatrol: 08/15/2008 15:26 Click for Plus Info |
Zitat:
und noch NTDETECT von dem ich sehr grosse vermutung habe das es zum Autorun Wurm bzw.Torjaner.Bzw.Virus gehört :hallo: |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 17:54 Uhr. |
Copyright ©2000-2025, Trojaner-Board