Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   ConF*cker? Keine Updates mögl. (https://www.trojaner-board.de/69009-conf-cker-keine-updates-moegl.html)

Oliver1854 26.01.2009 08:56
Report 2 Teil 2:

Code:

======Scheduled tasks folder======

F:\WINDOWS\tasks\1-Klick-Wartung.job
F:\WINDOWS\tasks\HP Usg Daily.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - g:\system-programme\Software\Acrobat\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1427A821-7B93-4F08-9A34-9FA03A3D93DB}]
Steganos Password Manager AutoFill - G:\Steganos Security Suite 2007\PasswordManagerBHO.dll [2007-05-21 20480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - F:\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - G:\Java\jre6\bin\ssv.dll [2008-11-10 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - G:\Java\jre6\bin\jp2ssv.dll [2008-11-10 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - G:\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-11-10 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - G:\BitDefender\BitDefender 2009\IEToolbar.dll [2008-11-06 90112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=F:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"PasswordManager"=G:\Steganos Security Suite 2007\PasswordManager.exe [2007-05-15 1773568]
"SSS2007 PasswordManagerFFAutoFill"=G:\Steganos Security Suite 2007\PasswordManagerFFAutoFill.exe [2007-05-21 21504]
"SSS2007 HotKeys"=G:\Steganos Security Suite 2007\SteganosHotKeyService.exe [2007-05-21 25088]
"SSS2007 File Redirection Starter"=G:\Steganos Security Suite 2007\fredirstarter.exe [2007-05-15 53248]
"SunJavaUpdateSched"=G:\Java\jre6\bin\jusched.exe [2008-11-10 136600]
"GrooveMonitor"=F:\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]
"avgnt"=G:\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"BDAgent"=G:\BitDefender\BitDefender 2009\bdagent.exe [2008-12-17 741376]
"BitDefender Antiphishing Helper"=G:\BitDefender\BitDefender 2009\IEShow.exe [2008-10-17 69632]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=F:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=F:\WINDOWS\system32\ctfmon.exe [2004-08-03 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
F:\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KMCONFIG]
G:\System-Programme\Hardware\Tastatur\StartAutorun.exe [2007-03-06 212992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
G:\QuickTime\qttask.exe [2008-05-27 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Data.lnk]
G:\Teledat\TelDat32.exe [2002-08-06 815104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Fax.lnk]
G:\Teledat\TelFax32.exe [2002-08-06 708608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Fon.lnk]
G:\Teledat\TelFon32.exe [2002-08-06 868352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^ISDNWatch.lnk]
G:\Teledat\IWatch.exe [2002-08-06 339968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Web.lnk]
G:\Teledat\TelWeb32.exe [2002-08-06 495616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WZCSVC"=2
"odserv"=3
"helpsvc"=2
"de_serv"=3

F:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
Treiber Konfiguration.lnk - G:\System-Programme\Hardware\Tastatur\KMCONFIG.exe

F:\Dokumente und Einstellungen\Maverick\Startmenü\Programme\Autostart
Gigabank.lnk - G:\FAST Gigabank\Gigabank.exe
OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk - F:\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=F:\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=176
"NoDesktopCleanupWizard"=1
"NoTrayContextMenu"=0
"NoDrives"=0380FF03
"NoSharedDocuments"=01000000
"MaxRecentDocs"=6
"NoDriveAutoRun"=33562648

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"G:\Internet-Programme\Net Objects\Fusion.exe"="G:\Internet-Programme\Net Objects\Fusion.exe:*:Enabled:NetObjects Fusion"
"F:\Microsoft Office\Office12\OUTLOOK.EXE"="F:\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"F:\Microsoft Office\Office12\GROOVE.EXE"="F:\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"F:\Microsoft Office\Office12\ONENOTE.EXE"="F:\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2009-01-26 08:32:47 ----D---- F:\rsit
2009-01-26 08:20:54 ----HDC---- F:\WINDOWS\$NtUninstallKB873339$
2009-01-26 08:20:40 ----HDC---- F:\WINDOWS\$NtUninstallKB936357$
2009-01-26 08:20:24 ----HDC---- F:\WINDOWS\$NtUninstallKB950974$
2009-01-26 08:20:07 ----HDC---- F:\WINDOWS\$NtUninstallKB951698$
2009-01-26 08:19:50 ----HDC---- F:\WINDOWS\$NtUninstallKB946026$
2009-01-26 08:19:32 ----HDC---- F:\WINDOWS\$NtUninstallKB896358$
2009-01-26 08:19:13 ----HDC---- F:\WINDOWS\$NtUninstallKB920670$
2009-01-26 08:18:59 ----HDC---- F:\WINDOWS\$NtUninstallKB918439$
2009-01-26 08:18:37 ----HDC---- F:\WINDOWS\$NtUninstallKB902400$
2009-01-26 08:18:18 ----HDC---- F:\WINDOWS\$NtUninstallKB926436$
2009-01-26 08:18:04 ----HDC---- F:\WINDOWS\$NtUninstallKB920872$
2009-01-26 08:17:46 ----HDC---- F:\WINDOWS\$NtUninstallKB930178$
2009-01-26 08:17:32 ----HDC---- F:\WINDOWS\$NtUninstallKB914388$
2009-01-26 08:17:18 ----HDC---- F:\WINDOWS\$NtUninstallKB905414$
2009-01-26 08:16:59 ----HDC---- F:\WINDOWS\$NtUninstallKB932168$
2009-01-26 08:16:44 ----D---- F:\WINDOWS\LastGood
2009-01-25 22:27:01 ----HDC---- F:\WINDOWS\$NtUninstallKB901214$
2009-01-25 22:26:37 ----HDC---- F:\WINDOWS\$NtUninstallKB923191$
2009-01-25 22:25:59 ----HDC---- F:\WINDOWS\$NtUninstallKB918118$
2009-01-25 22:25:35 ----HDC---- F:\WINDOWS\$NtUninstallKB926255$
2009-01-25 22:25:08 ----HDC---- F:\WINDOWS\$NtUninstallKB888302$
2009-01-25 22:24:45 ----HDC---- F:\WINDOWS\$NtUninstallKB900725$
2009-01-25 22:24:15 ----HDC---- F:\WINDOWS\$NtUninstallKB920213$
2009-01-25 22:23:46 ----HDC---- F:\WINDOWS\$NtUninstallKB935840$
2009-01-25 22:21:47 ----HDC---- F:\WINDOWS\$NtUninstallKB943485$
2009-01-25 22:17:48 ----HDC---- F:\WINDOWS\$NtUninstallKB945553$
2009-01-25 22:17:34 ----HDC---- F:\WINDOWS\$NtUninstallKB916595$
2009-01-25 22:17:20 ----HDC---- F:\WINDOWS\$NtUninstallKB930916$
2009-01-25 22:16:52 ----HDC---- F:\WINDOWS\$NtUninstallKB950749$
2009-01-25 22:16:34 ----HDC---- F:\WINDOWS\$NtUninstallKB908531$
2009-01-25 22:16:16 ----HDC---- F:\WINDOWS\$NtUninstallKB913580$
2009-01-25 22:15:55 ----HDC---- F:\WINDOWS\$NtUninstallKB896428$
2009-01-25 22:15:12 ----HDC---- F:\WINDOWS\$NtUninstallKB935839$
2009-01-25 22:14:48 ----HDC---- F:\WINDOWS\$NtUninstallKB943055$
2009-01-25 22:14:25 ----HDC---- F:\WINDOWS\$NtUninstallKB894391$
2009-01-25 22:14:07 ----HDC---- F:\WINDOWS\$NtUninstallKB908519$
2009-01-25 22:13:45 ----HDC---- F:\WINDOWS\$NtUninstallKB920683$
2009-01-25 22:13:21 ----HDC---- F:\WINDOWS\$NtUninstallKB914389$
2009-01-25 22:09:32 ----HDC---- F:\WINDOWS\$NtUninstallKB944653$
2009-01-25 22:09:04 ----HDC---- F:\WINDOWS\$NtUninstallKB890859$
2009-01-25 01:20:50 ----HDC---- F:\WINDOWS\$NtUninstallKB899587$
2009-01-25 01:20:02 ----HDC---- F:\WINDOWS\$NtUninstallKB927779$
2009-01-25 01:19:51 ----HDC---- F:\WINDOWS\$NtUninstallKB951376-v2$
2009-01-25 01:19:40 ----HDC---- F:\WINDOWS\$NtUninstallKB927802$
2009-01-25 01:19:28 ----HDC---- F:\WINDOWS\$NtUninstallKB952954$
2009-01-25 01:18:48 ----HDC---- F:\WINDOWS\$NtUninstallKB943460$
2009-01-25 01:18:37 ----HDC---- F:\WINDOWS\$NtUninstallKB956803$
2009-01-25 01:18:25 ----HDC---- F:\WINDOWS\$NtUninstallKB885835$
2009-01-25 01:18:14 ----HDC---- F:\WINDOWS\$NtUninstallKB885836$
2009-01-25 01:18:01 ----HDC---- F:\WINDOWS\$NtUninstallKB937894$
2009-01-25 01:17:44 ----HDC---- F:\WINDOWS\$NtUninstallKB928255$
2009-01-25 01:17:03 ----HDC---- F:\WINDOWS\$NtUninstallKB911927$
2009-01-25 01:16:47 ----HDC---- F:\WINDOWS\$NtUninstallKB901017$
2009-01-25 01:16:36 ----HDC---- F:\WINDOWS\$NtUninstallKB899591$
2009-01-25 01:16:24 ----HDC---- F:\WINDOWS\$NtUninstallKB955839$
2009-01-25 01:16:08 ----HDC---- F:\WINDOWS\$NtUninstallKB933729$
2009-01-25 01:15:55 ----HDC---- F:\WINDOWS\$NtUninstallKB920685$
2009-01-25 01:15:43 ----HDC---- F:\WINDOWS\$NtUninstallKB893756$
2009-01-25 01:15:30 ----HDC---- F:\WINDOWS\$NtUninstallKB923980$
2009-01-25 01:15:18 ----HDC---- F:\WINDOWS\$NtUninstallKB911280$
2009-01-25 01:15:07 ----HDC---- F:\WINDOWS\$NtUninstallKB938828$
2009-01-25 01:14:55 ----HDC---- F:\WINDOWS\$NtUninstallKB924667$
2009-01-25 01:14:44 ----HDC---- F:\WINDOWS\$NtUninstallKB896423$
2009-01-25 01:14:32 ----HDC---- F:\WINDOWS\$NtUninstallKB900485$
2009-01-25 01:14:18 ----HDC---- F:\WINDOWS\$NtUninstallKB924270$
2009-01-25 01:14:07 ----HDC---- F:\WINDOWS\$NtUninstallKB931261$
2009-01-25 01:13:55 ----HDC---- F:\WINDOWS\$NtUninstallKB936782_WMP9$
2009-01-25 01:12:52 ----HDC---- F:\WINDOWS\$NtUninstallKB927891$
2009-01-25 01:12:32 ----HDC---- F:\WINDOWS\$NtUninstallKB954211$
2009-01-25 01:11:30 ----HDC---- F:\WINDOWS\$NtUninstallKB956841$
2009-01-25 01:11:16 ----HDC---- F:\WINDOWS\$NtUninstallKB925398_WMP64$
2009-01-25 01:09:43 ----HDC---- F:\WINDOWS\$NtUninstallKB910437$
2009-01-25 01:09:32 ----HDC---- F:\WINDOWS\$NtUninstallKB925720$
2009-01-25 01:09:18 ----HDC---- F:\WINDOWS\$NtUninstallKB925902$
2009-01-25 01:09:06 ----HDC---- F:\WINDOWS\$NtUninstallKB941569$
2009-01-25 01:08:27 ----HDC---- F:\WINDOWS\$NtUninstallKB950762$
2009-01-25 01:08:14 ----HDC---- F:\WINDOWS\$NtUninstallKB922582$
2009-01-25 01:07:54 ----HDC---- F:\WINDOWS\$NtUninstallKB886185$
2009-01-25 00:58:37 ----HDC---- F:\WINDOWS\$NtUninstallKB951748$
2009-01-25 00:58:26 ----HDC---- F:\WINDOWS\$NtUninstallKB885884$
2009-01-25 00:58:11 ----HDC---- F:\WINDOWS\$NtUninstallKB938464$
2009-01-25 00:57:59 ----HDC---- F:\WINDOWS\$NtUninstallKB905749$
2009-01-25 00:57:49 ----HDC---- F:\WINDOWS\$NtUninstallKB954600$
2009-01-25 00:57:38 ----HDC---- F:\WINDOWS\$NtUninstallKB958644$
2009-01-25 00:57:27 ----HDC---- F:\WINDOWS\$NtUninstallKB956802$
2009-01-25 00:56:21 ----HDC---- F:\WINDOWS\$NtUninstallKB928843$
2009-01-24 23:37:10 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Symantec
2009-01-24 00:02:17 ----HDC---- F:\WINDOWS\$NtUninstallKB956391$
2009-01-24 00:01:21 ----HDC---- F:\WINDOWS\$NtUninstallKB952069_WM9$
2009-01-24 00:00:28 ----HDC---- F:\WINDOWS\$NtUninstallKB957097$
2009-01-24 00:00:19 ----HDC---- F:\WINDOWS\$NtUninstallKB958687$
2009-01-23 23:59:26 ----D---- F:\WINDOWS\ie8updates
2009-01-23 23:59:11 ----HDC---- F:\WINDOWS\$NtUninstallKB955069$
2009-01-23 12:22:50 ----A---- F:\WINDOWS\system32\muweb.dll
2009-01-23 12:22:50 ----A---- F:\WINDOWS\system32\mucltui.dll.mui
2009-01-23 12:22:50 ----A---- F:\WINDOWS\system32\mucltui.dll
2009-01-23 09:06:38 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\Malwarebytes
2009-01-23 09:06:32 ----DC---- G:\\Malwarebytes' Anti-Malware
2009-01-23 09:06:32 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2009-01-23 06:49:56 ----A---- F:\WINDOWS\gmer.bat
2009-01-23 06:39:50 ----A---- F:\WINDOWS\gmer.ini
2009-01-23 06:39:43 ----A---- F:\WINDOWS\gmer_uninstall.cmd
2009-01-23 06:39:42 ----A---- F:\WINDOWS\gmer.dll
2009-01-23 06:39:41 ----A---- F:\WINDOWS\gmer.exe
2009-01-23 00:29:40 ----D---- F:\WINDOWS\system32\PreInstall
2009-01-23 00:29:38 ----HDC---- F:\WINDOWS\$NtUninstallKB898461$
2009-01-22 22:04:14 ----A---- F:\WINDOWS\system32\TuneUpDefragService.exe
2009-01-20 09:18:14 ----DC---- G:\\Microsoft Silverlight
2009-01-20 00:26:30 ----A---- F:\WINDOWS\bdagent.INI
2009-01-19 20:43:49 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\BitDefender
2009-01-19 20:42:53 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\BitDefender
2009-01-19 20:42:52 ----DC---- G:\\BitDefender
2009-01-19 20:40:14 ----D---- M:\\BitDefender
2009-01-19 20:34:57 ----D---- F:\WINDOWS\BDOSCAN8
2009-01-16 21:14:55 ----DC---- G:\\Panda Security
2009-01-15 21:23:34 ----DC---- G:\\GRETECH
2009-01-14 20:36:57 ----DC---- G:\\Avira
2009-01-14 20:36:57 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2009-01-13 11:43:53 ----A---- F:\WINDOWS\BricoPackUninst.cmd
2009-01-13 11:39:46 ----A---- F:\WINDOWS\BricoPackUninst.txt
2009-01-13 11:39:45 ----A---- F:\WINDOWS\BricoPackFoldersDelete.cmd
2009-01-13 11:38:50 ----D---- F:\WINDOWS\BricoPacks
2009-01-10 22:06:50 ----D---- F:\WINDOWS\system32\syncdb
2009-01-10 21:04:12 ----A---- F:\WINDOWS\system32\TUProgSt.exe
2009-01-10 21:02:49 ----DC---- G:\\TuneUp Utilities 2009
2009-01-10 21:02:05 ----SHD---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{55A29068-F2CE-456C-9148-C869879E2357}
2009-01-10 17:46:38 ----DC---- G:\\Symantec
2009-01-10 17:46:38 ----D---- M:\\Symantec Shared

======List of files/folders modified in the last 1 months======

2009-01-26 08:33:04 ----D---- F:\WINDOWS\Prefetch
2009-01-26 08:29:48 ----D---- G:\\Mozilla Firefox
2009-01-26 08:22:44 ----D---- F:\WINDOWS\system32\CatRoot
2009-01-26 08:21:14 ----HD---- F:\WINDOWS\inf
2009-01-26 08:21:12 ----D---- F:\WINDOWS
2009-01-26 08:20:57 ----D---- F:\WINDOWS\system32
2009-01-26 08:20:50 ----A---- F:\WINDOWS\imsins.BAK
2009-01-26 08:20:43 ----RSHDC---- F:\WINDOWS\system32\dllcache
2009-01-26 08:20:42 ----D---- F:\WINDOWS\system32\drivers
2009-01-26 08:19:36 ----D---- F:\WINDOWS\system32\CatRoot2
2009-01-26 08:18:44 ----D---- F:\WINDOWS\system32\Com
2009-01-26 08:17:02 ----D---- F:\WINDOWS\msagent
2009-01-26 08:02:11 ----D---- F:\WINDOWS\Temp
2009-01-26 00:33:52 ----A---- F:\WINDOWS\SchedLgU.Txt
2009-01-26 00:22:55 ----D---- F:\WINDOWS\Media
2009-01-26 00:22:55 ----D---- F:\WINDOWS\Help
2009-01-26 00:22:54 ----D---- G:\\internet explorer
2009-01-25 22:26:41 ----D---- F:\WINDOWS\WinSxS
2009-01-25 22:21:04 ----SHD---- F:\WINDOWS\Installer
2009-01-25 22:09:50 ----D---- F:\WINDOWS\Debug
2009-01-25 21:00:41 ----SHD---- M:\\System Volume Information
2009-01-25 21:00:40 ----SHD---- G:\\System Volume Information
2009-01-25 20:57:23 ----SHD---- F:\System Volume Information
2009-01-25 20:57:23 ----D---- F:\WINDOWS\system32\Restore
2009-01-25 19:24:38 ----A---- F:\WINDOWS\system32\PerfStringBackup.INI
2009-01-25 01:20:40 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help
2009-01-25 01:19:50 ----HD---- F:\WINDOWS\$hf_mig$
2009-01-25 01:06:54 ----A---- F:\WINDOWS\win.ini
2009-01-25 01:03:02 ----D---- M:\\Microsoft Shared
2009-01-23 23:58:02 ----RD---- F:\Programme
2009-01-23 23:33:54 ----D---- G:\\DivX
2009-01-23 23:33:27 ----D---- G:\\xp-Iso-Builder
2009-01-23 22:51:46 ----DC---- G:\\IKEA HomePlanner
2009-01-23 22:50:11 ----D---- G:\\System-Programme
2009-01-23 07:53:18 ----SD---- F:\WINDOWS\Downloaded Program Files
2009-01-23 07:03:21 ----D---- F:\WINDOWS\nview
2009-01-22 22:36:45 ----D---- F:\WINDOWS\system32\ReinstallBackups
2009-01-22 22:34:40 ----DC---- G:\\WordToPDF
2009-01-22 22:32:29 ----A---- F:\WINDOWS\NeroDigital.ini
2009-01-22 21:47:17 ----A---- F:\WINDOWS\system32\oeminfo.ini
2009-01-16 09:34:18 ----D---- F:\WINDOWS\system32\usmt
2009-01-13 22:34:05 ----RSD---- F:\WINDOWS\Fonts
2009-01-13 12:43:05 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\Azureus
2009-01-13 11:43:53 ----A---- F:\WINDOWS\system32\uxtheme.dll
2009-01-13 11:42:10 ----D---- F:\WINDOWS\Cursors
2009-01-11 19:59:42 ----SD---- F:\WINDOWS\Tasks
2009-01-11 19:29:51 ----D---- F:\Abax
2009-01-11 19:06:18 ----D---- M:\\Sortiert
2009-01-10 22:27:49 ----D---- F:\Dokumente und Einstellungen\Maverick\Anwendungsdaten\Adobe
2009-01-10 22:14:48 ----D---- F:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Adobe
2009-01-10 22:13:15 ----D---- M:\\Adobe
2009-01-10 21:04:14 ----D---- F:\WINDOWS\system32\config
2009-01-10 11:23:09 ----D---- F:\WINDOWS\SxsCaPendDel
2009-01-09 17:35:30 ----A---- F:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\G:\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; F:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
R1 bdftdif;bdftdif; \??\M:\BitDefender\BitDefender Firewall\bdftdif.sys []
R1 InCDPass;InCDPass; F:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-06-10 29696]
R1 incdrm;InCD Reader; F:\WINDOWS\system32\drivers\incdrm.sys [2005-06-10 28160]
R1 intelppm;Intel-Prozessortreiber; F:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-03 40192]
R1 kbdhid;Tastatur-HID-Treiber; F:\WINDOWS\System32\DRIVERS\kbdhid.sys [2004-08-03 14848]
R1 SLEE_15_DRIVER;SLEE_15_DRIVER; \??\F:\WINDOWS\system32\drivers\sleen15.sys []
R1 ssmdrv;ssmdrv; F:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
R2 BDVEDISK;BDVEDISK; \??\G:\BitDefender\BitDefender 2009\BDVEDISK.sys []
R2 ElbyCDIO;ElbyCDIO Driver; F:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2005-04-21 10624]
R2 tmcomm;tmcomm; \??\F:\WINDOWS\system32\drivers\tmcomm.sys []
R3 avgntflt;avgntflt; \??\G:\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 bdfm;BDFM; F:\WINDOWS\system32\drivers\bdfm.sys [2008-09-18 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; F:\WINDOWS\system32\DRIVERS\bdfndisf.sys [2008-10-17 104328]
R3 bdfsfltr;bdfsfltr; F:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-12-10 242184]
R3 BDSelfPr;BDSelfPr; \??\G:\BitDefender\BitDefender 2009\bdselfpr.sys []
R3 cmuda;C-Media WDM Audio Interface; F:\WINDOWS\system32\drivers\cmuda.sys [2003-08-30 740608]
R3 ElbyCDFL;ElbyCDFL; F:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2005-05-03 27392]
R3 ElbyDelay;ElbyDelay; F:\WINDOWS\System32\Drivers\ElbyDelay.sys [2005-04-12 4608]
R3 FETNDIS;VIA Rhine Family Fast Ethernet Adapter Driver; F:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2002-07-05 40448]
R3 fxusbase;Teledat USB 2 a/b; F:\WINDOWS\system32\DRIVERS\fxusbase.sys [2004-06-09 547840]
R3 hidusb;Microsoft HID Class-Treiber; F:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-18 9600]
R3 HPZid412;IEEE-1284.4 Driver HPZid412; F:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-07-06 51088]
R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; F:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-07-06 16496]
R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; F:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-07-06 21744]
R3 KMWDFilter;KMWDFilter; \??\F:\WINDOWS\System32\Drivers\KMWDFilter.SYS []
R3 mouhid;Maus-HID-Treiber; F:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-18 12288]
R3 NETPPPOI;PPP over ISDN; F:\WINDOWS\system32\DRIVERS\NETPPPOI.SYS [2002-02-21 259072]
R3 nv;nv; F:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
R3 pfc;Padus ASPI Shell; F:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 usbccgp;Microsoft Standard-USB-Haupttreiber; F:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; F:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Microsoft USB-Standardhubtreiber; F:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbprint;Microsoft USB-Druckerklasse; F:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbstor;USB-Massenspeichertreiber; F:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; F:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R4 InCDfs;InCD File System; F:\WINDOWS\system32\drivers\InCDfs.sys [2005-06-10 99584]
S2 adfs;adfs; F:\WINDOWS\system32\drivers\adfs.sys []
S3 gmer;gmer; F:\WINDOWS\System32\DRIVERS\gmer.sys [2009-01-23 85969]
S3 NTSIM;NTSIM; \??\F:\WINDOWS\System32\ntsim.sys []
S3 Profos;Profos; \??\M:\BitDefender\BitDefender Threat Scanner\profos.sys []
S3 QV2KUX;Casio-Digitalkamera; F:\WINDOWS\System32\DRIVERS\qv2kux.sys [2001-08-17 3328]
S3 StMp3Rec;Treiber für Player-Wiederherstellungsgerät; F:\WINDOWS\System32\Drivers\StMp3Rec.sys [2007-03-30 19840]
S3 Trufos;Trufos; \??\M:\BitDefender\BitDefender Threat Scanner\trufos.sys []
S3 usbscan;USB-Scannertreiber; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []

Oliver1854 26.01.2009 08:57
Report 2 Teil 3:

Code:
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Planer; G:\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; G:\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 InCDsrv;InCD Helper; F:\Programme\Ahead\InCD\InCDsrv.exe [2005-06-10 869888]
R2 JavaQuickStarterService;Java Quick Starter; G:\Java\jre6\bin\jqs.exe [2008-11-10 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; G:\System-Programme\Hardware\Tastatur\KMWDSrv.exe [2007-06-16 208896]
R2 LIVESRV;BitDefender Desktop Update Service; M:\BitDefender\BitDefender Update Service\livesrv.exe [2008-12-15 425984]
R2 MDM;Machine Debug Manager; M:\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 NVSvc;NVIDIA Display Driver Service; F:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; F:\WINDOWS\System32\TUProgSt.exe [2009-01-10 603904]
R2 VSSERV;BitDefender Virus Shield; G:\BitDefender\BitDefender 2009\vsserv.exe [2008-12-17 1581056]
S3 Arrakis3;BitDefender Arrakis Server; M:\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2008-07-17 118784]
S3 aspnet_state;ASP.NET State Service; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; F:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 LiveUpdate;LiveUpdate; G:\Symantec\LiveUpdate\LuComServer_3_4.EXE [2008-08-01 3220856]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; F:\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 odserv;Microsoft Office Diagnostics Service; M:\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; M:\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; F:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
S3 scan;BitDefender Threat Scanner; F:\WINDOWS\System32\svchost.exe [2004-08-03 14336]
S3 TuneUp.Defrag;TuneUp Drive Defrag-Dienst; F:\WINDOWS\System32\TuneUpDefragService.exe [2009-01-22 360192]
S4 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; G:\Symantec\LiveUpdate\AluSchedulerSvc.exe [2008-08-01 238968]
S4 de_serv;AVM FRITZ!web Routing Service; M:\AVM\de_serv.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

-----------------EOF-----------------

Oliver1854 26.01.2009 08:59
Logfile 3:
Code:
Avira AntiRootkit Tool - Beta (1.0.1.17)

========================================================================================================
 - Scan started Montag, 26. Januar 2009 - 08:42:21
========================================================================================================

--------------------------------------------------------------------------------------------------------
  Configuration:
--------------------------------------------------------------------------------------------------------
 - [X] Scan files
 - [X] Scan registry
 - [X] Scan processes
 - [ ] Fast scan
 - Working disk total size : 19.53 GB
 - Working disk free size : 2.81 GB (14 %)
--------------------------------------------------------------------------------------------------------

Scan task finished. No hidden objects detected!

--------------------------------------------------------------------------------------------------------
Files: 0/0
Registry items: 0/0
Processes: 0/0
Scan time: 00:00:00
--------------------------------------------------------------------------------------------------------
Active processes:
========================================================================================================
 - Scan finished  Montag, 26. Januar 2009 - 08:42:21
========================================================================================================
So, ich hoffe, das jetzt endlich der PC wieder frei von Schrott ist.
Und was meint Ihr?

Gruß Oliver

Chris4You 26.01.2009 09:39
Hi,

ja sieht so aus...

chris

Oliver1854 26.01.2009 09:46
Vielen Dank. Jetzt kann ich auch wieder beruhigt schlafen.

Gruß Oliver


Alle Zeitangaben in WEZ +1. Es ist jetzt 20:18 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131