komisches Symbol in taskleiste....Virus??? |
||
|---|---|---|
| #0
| ||
|
28.06.2006, 19:37
...neu hier
Beiträge: 7 |
||
 
|
|
|
|
29.06.2006, 00:06
Ehrenmitglied
 Beiträge: 29434 |
#2
das sieht sehr nach Logitech aus, aber ich schaue mal genauer nach:
Kopiere diese 4 Textdateien ab . (rechtsklick mit der Maus -> den Text markieren -> kopieren -> einfügen) Sie sind nach Datum geordnet. (kopiere nur die letzten 3 Monate ab) http://virus-protect.org/datfindbat.html __________ MfG Sabina rund um die PC-Sicherheit |
|
|
|
|
|
|
29.06.2006, 11:19
...neu hier
Themenstarter Beiträge: 7 |
#3
hallo,
vielen dank schon mal für deine antwort! hier die 4 textdateien! 1. Verzeichnis von C:\WINDOWS\system32 29.06.2006 10:58 41.103 vsconfig.xml 27.06.2006 21:50 13.646 wpa.dbl 27.06.2006 11:04 2.321.408 TUKernel.exe 18.06.2006 16:04 57.384 avsda.dll 15.06.2006 17:12 4.355 qtplugin.log 10.06.2006 16:40 21.840 SIntfNT.dll 10.06.2006 16:40 17.212 SIntf32.dll 10.06.2006 16:40 12.067 SIntf16.dll 09.06.2006 03:19 5.967.776 MRT.exe 05.06.2006 14:25 98.304 CmdLineExt.dll 05.06.2006 13:38 34.308 BASSMOD.dll 05.06.2006 13:19 60 xconfig.srv 02.06.2006 13:39 579.888 LegitCheckControl.dll 02.06.2006 13:39 286.000 WgaTray.exe 02.06.2006 13:39 402.736 WgaLogon.dll 01.06.2006 22:18 14.048 spmsg.dll 01.06.2006 20:47 27.648 jgpl400.dll 01.06.2006 20:47 163.840 jgdw400.dll 30.05.2006 16:52 162.728 FNTCACHE.DAT 30.05.2006 10:25 45 initdebug.nfo 29.05.2006 17:30 1.494.016 shdocvw.dll 19.05.2006 17:09 3.073.536 mshtml.dll 19.05.2006 13:22 20.883 SpoonUninstall-dBpowerAMP Music Converter.dat 19.05.2006 13:22 164.352 SpoonUninstall.exe 19.05.2006 13:21 27.958 SpoonUninstall-dBpowerAMP Music Converter.bmp 18.05.2006 07:36 450.560 jscript.dll 14.05.2006 10:48 181.248 rasmans.dll 11.05.2006 11:06 1.007.616 logonuiX.exe 11.05.2006 10:57 27.136 xpsp3res.dll 11.05.2006 08:21 16.832 amcompat.tlb 11.05.2006 08:21 23.392 nscompat.tlb 10.05.2006 07:23 664.064 wininet.dll 10.05.2006 07:22 474.624 shlwapi.dll 10.05.2006 07:22 615.936 urlmon.dll 10.05.2006 07:22 146.432 msrating.dll 10.05.2006 07:22 532.480 mstime.dll 10.05.2006 07:22 448.512 mshtmled.dll 10.05.2006 07:22 39.424 pngfilt.dll 10.05.2006 07:22 16.384 jsproxy.dll 10.05.2006 07:22 96.768 inseng.dll 10.05.2006 07:22 251.392 iepeers.dll 10.05.2006 07:22 357.888 dxtmsft.dll 10.05.2006 07:22 55.808 extmgr.dll 10.05.2006 07:22 205.312 dxtrans.dll 10.05.2006 07:22 1.056.256 danim.dll 10.05.2006 07:22 152.064 cdfview.dll 10.05.2006 07:22 1.022.976 browseui.dll 10.05.2006 00:58 286.720 tobit32.dll 05.05.2006 11:26 4.212 zllictbl.dat 29.04.2006 06:07 5.533.696 wmp.dll 25.04.2006 20:02 2.371 sdbackup.reg 23.04.2006 15:11 176.167 rmoc3260.dll 23.04.2006 15:10 5.632 pndx5032.dll 23.04.2006 15:10 6.656 pndx5016.dll 23.04.2006 15:10 278.528 pncrt.dll 23.04.2006 14:24 7.006 jupdate-1.5.0_06-b05.log 23.04.2006 08:29 262.144 wrap_oal.dll 23.04.2006 08:29 86.016 OpenAL32.dll 18.04.2006 12:23 0 h323log.txt 18.04.2006 12:03 48.156 perfc007.dat 18.04.2006 12:03 311.604 perfh009.dat 18.04.2006 12:03 39.992 perfc009.dat 18.04.2006 12:03 316.594 perfh007.dat 18.04.2006 12:03 723.744 PerfStringBackup.INI 18.04.2006 11:31 13.588 wpa.bak 18.04.2006 11:29 261 $winnt$.inf 18.04.2006 11:28 2.951 CONFIG.NT 18.04.2006 11:26 488 logonui.exe.manifest 18.04.2006 11:26 488 WindowsLogon.manifest 18.04.2006 11:26 749 nwc.cpl.manifest 18.04.2006 11:26 749 cdplayer.exe.manifest 18.04.2006 11:26 749 sapi.cpl.manifest 18.04.2006 11:26 749 ncpa.cpl.manifest 18.04.2006 11:26 749 wuaucpl.cpl.manifest 18.04.2006 11:25 21.740 emptyregdb.dat 03.04.2006 22:57 131.822 server.exe 17.03.2006 11:11 679.424 inetcomm.dll 17.03.2006 06:03 8.493.056 shell32.dll 17.03.2006 02:38 28.672 verclsid.exe 16.03.2006 11:34 71.448 zlcommdb.dll 16.03.2006 11:34 79.640 zlcomm.dll 16.03.2006 11:33 100.120 vsxml.dll 16.03.2006 11:33 382.744 vsutil.dll 16.03.2006 11:33 71.448 vsregexp.dll 16.03.2006 11:33 227.096 vspubapi.dll 16.03.2006 11:33 104.216 vsmonapi.dll 16.03.2006 11:33 141.080 vsinit.dll 16.03.2006 11:33 372.824 vsdatant.sys 16.03.2006 11:32 83.736 vsdata.dll 16.03.2006 11:16 54.960 vsutil_loc0407.dll 01.03.2006 21:43 91.136 mtxoci.dll 01.03.2006 21:43 161.280 msdtcuiu.dll 01.03.2006 21:43 956.416 msdtctm.dll 01.03.2006 21:43 426.496 msdtcprx.dll 01.03.2006 21:43 11.776 xolehlp.dll 01.03.2006 21:43 66.560 mtxclu.dll 2. Verzeichnis von C:\DOKUME~1\Claudi\LOKALE~1\Temp 29.06.2006 11:03 983 TmpICQMagic_{EC202595-1DFD-4301-A1EA-13C1E331B505}27771.html 29.06.2006 11:02 16.384 ~DFA52E.tmp 29.06.2006 11:02 16.384 ~DF9AD3.tmp 29.06.2006 11:02 512 ~DF9AE4.tmp 29.06.2006 10:59 16.384 ~DFB77.tmp 28.06.2006 21:30 416 java_install_reg.log 28.06.2006 21:00 7.899.768 ZGIAA.tmp 28.06.2006 20:15 693 TWAIN.LOG 28.06.2006 20:15 156 Twunk001.MTX 28.06.2006 20:15 2 Twain001.Mtx 28.06.2006 20:04 978 TmpICQMagic_{05736BBE-C20F-4F10-A6DE-4DB1E3564B0E}1512.html 28.06.2006 18:29 7.291 18057.mht 28.06.2006 17:22 16.384 ~DFDB33.tmp 28.06.2006 17:22 16.384 ~DF452B.tmp 28.06.2006 17:21 16.384 ~DFFA0C.tmp 28.06.2006 07:55 0 Twunk002.MTX 28.06.2006 06:57 16.384 ~DF1796.tmp 28.06.2006 06:57 16.384 ~DFE102.tmp 28.06.2006 06:57 16.384 ~DFBB06.tmp 27.06.2006 21:59 32.768 ~DF2F00.tmp 27.06.2006 21:50 373 WGANotify.settings 27.06.2006 21:10 5.229 ICQ36.tmp 27.06.2006 21:10 14.966 ICQ37.tmp 27.06.2006 20:01 7.899.768 ZGI2D.tmp 27.06.2006 16:45 16.384 ~DFAB37.tmp 27.06.2006 16:45 16.384 ~DF99FC.tmp 27.06.2006 14:08 32.768 ~DF5760.tmp 27.06.2006 14:07 16.384 ~DFD561.tmp 27.06.2006 14:07 16.384 ~DFE269.tmp 27.06.2006 10:38 16.384 ~DFA1E3.tmp 27.06.2006 10:38 16.384 ~DF9EBE.tmp 27.06.2006 10:38 16.384 ~DF429F.tmp 25.06.2006 00:00 231 1F1205F7.TMP 23.06.2006 04:04 62 B623B5B8.TMP 24.05.2006 14:23 24.613 IadHide5.dll 09.05.2006 10:47 31 searchurl_de_de.txt 18.04.2006 15:59 1.173.616 18046.tmp 01.09.2004 15:43 106.568 saveinstwm.exe 3. Verzeichnis von C:\WINDOWS 29.06.2006 11:04 1.947.106 WindowsUpdate.log 29.06.2006 10:57 0 0.log 29.06.2006 10:57 2.048 bootstat.dat 28.06.2006 21:31 32.584 SchedLgU.Txt 28.06.2006 21:31 50 wiaservc.log 28.06.2006 21:31 506 wiadebug.log 28.06.2006 18:31 1.015.463 setupapi.log 27.06.2006 21:50 8.153 WgaNotify.log 26.06.2006 19:49 116 NeroDigital.ini 24.06.2006 16:06 39.254 DirectX.log 21.06.2006 12:31 177.091 setupact.log 20.06.2006 12:34 59.200 wmsetup.log 18.06.2006 19:35 482 Poolemup.ini 15.06.2006 15:13 2.737 spupdsvc.log 15.06.2006 14:40 51.464 iis6.log 15.06.2006 14:40 18.327 ocmsn.log 15.06.2006 14:40 1.374 imsins.log 15.06.2006 14:40 71.841 ntdtcsetup.log 15.06.2006 14:40 128.635 tsoc.log 15.06.2006 14:40 121.583 comsetup.log 15.06.2006 14:40 11.718 KB917734.log 15.06.2006 14:40 163.401 ocgen.log 15.06.2006 14:40 326.853 FaxSetup.log 15.06.2006 14:40 16.630 msgsocm.log 15.06.2006 14:39 1.374 imsins.BAK 15.06.2006 14:39 14.209 KB918439.log 15.06.2006 14:39 14.574 KB917344.log 15.06.2006 14:39 14.348 KB917953.log 15.06.2006 14:39 14.323 KB911280.log 15.06.2006 14:39 18.542 updspapi.log 15.06.2006 14:39 17.579 KB916281.log 15.06.2006 14:39 11.598 KB914389.log 10.06.2006 20:38 316.640 WMSysPr9.prx 10.06.2006 17:54 228 Rollemup.ini 10.06.2006 17:42 440 Dartemup.ini 10.06.2006 16:48 40 wininit.ini 04.06.2006 08:52 573 win.ini 04.06.2006 08:52 227 system.ini 04.06.2006 08:19 1.486 ATIWDM.LOG 30.05.2006 13:01 0 Videodeluxe.INI 26.05.2006 20:40 346 SIERRA.INI 24.05.2006 14:23 179 LDM.log 24.05.2006 14:23 118.784 bwUnin-7.2.0.137-8876480SL.exe 24.05.2006 14:22 86 KE.log 23.05.2006 06:11 25 upcommv8.mtx 20.05.2006 18:43 0 setuperr.log 16.05.2006 10:32 1.437.696 CICUnins.exe 16.05.2006 10:32 1.437.696 CISUnins.exe 14.05.2006 16:45 14 popcinfo.dat 12.05.2006 07:02 267 TrayServerData.ini 12.05.2006 07:01 24 LogonStudio.ini 11.05.2006 11:43 26.693 KB911565.log 11.05.2006 08:21 316 wmsetup10.log 11.05.2006 07:17 12.025 KB913580.log 26.04.2006 18:32 27.639 KB900485.log 23.04.2006 15:18 1.627 Project URL Snooper Setup Log.txt 23.04.2006 15:18 720.896 iun6002.exe 23.04.2006 15:11 7.768 mozver.dat 20.04.2006 17:05 5.665 Ascd_tmp.ini 19.04.2006 21:20 3.336 KB885884.log 18.04.2006 16:45 400 ODBC.INI 18.04.2006 16:30 0 nsreg.dat 18.04.2006 16:11 107.132 UninstallThunderbird.exe 18.04.2006 16:01 107.134 UninstallFirefox.exe 18.04.2006 12:21 0 Sti_Trace.log 18.04.2006 12:19 1.348 regopt.log 18.04.2006 12:00 32.811 KB911562.log 18.04.2006 12:00 35.769 KB912812.log 18.04.2006 12:00 28.274 KB908531.log 18.04.2006 12:00 27.759 KB911567.log 18.04.2006 12:00 20.732 KB913446.log 18.04.2006 12:00 19.012 KB911564.log 18.04.2006 12:00 27.442 KB911927.log 18.04.2006 12:00 27.512 KB912919.log 18.04.2006 12:00 26.819 KB908519.log 18.04.2006 12:00 26.622 KB904706.log 18.04.2006 12:00 20.584 KB910437.log 18.04.2006 11:59 27.043 KB896424.log 18.04.2006 11:59 27.309 KB900725.log 18.04.2006 11:59 25.174 KB905749.log 18.04.2006 11:59 24.644 KB905414.log 18.04.2006 11:59 23.830 KB901017.log 18.04.2006 11:59 29.205 KB902400.log 18.04.2006 11:59 20.369 KB894391.log 18.04.2006 11:59 18.500 KB896423.log 18.04.2006 11:59 17.989 KB899587.log 18.04.2006 11:59 17.485 KB899591.log 18.04.2006 11:59 17.356 KB893756.log 18.04.2006 11:59 17.540 KB896358.log 18.04.2006 11:59 19.133 KB890859.log 18.04.2006 11:59 15.081 KB901214.log 18.04.2006 11:59 14.887 KB896428.log 18.04.2006 11:59 15.217 KB896422.log 18.04.2006 11:59 15.604 KB890046.log 18.04.2006 11:59 14.079 KB885250.log 18.04.2006 11:59 14.273 KB885835.log 18.04.2006 11:59 13.507 KB887742.log 18.04.2006 11:58 12.961 KB888113.log 18.04.2006 11:58 13.009 KB891781.log 18.04.2006 11:58 12.904 KB887472.log 18.04.2006 11:58 12.936 KB888302.log 18.04.2006 11:58 12.381 KB885836.log 18.04.2006 11:58 8.709 KB886185.log 18.04.2006 11:58 12.376 KB873339.log 18.04.2006 11:53 5.119 WGA.log 18.04.2006 11:53 7.349 KB898461.log 18.04.2006 11:53 6.837 KB893803v2.log 18.04.2006 11:41 74.406 Omega Drivers v3.8.231.log 18.04.2006 11:39 451.072 Radeon Omega Drivers v3.8.231 Uninstall.exe 18.04.2006 11:32 829 OEWABLog.txt 18.04.2006 11:30 8.192 REGLOCS.OLD 18.04.2006 11:28 0 control.ini 18.04.2006 11:27 4.161 ODBCINST.INI 18.04.2006 11:26 749 WindowsShell.Manifest 18.04.2006 11:25 36 vb.ini 18.04.2006 11:25 37 vbaddin.ini 18.04.2006 11:25 133 DtcInstall.log 18.04.2006 11:25 1.023 sessmgr.setup.log 18.04.2006 11:23 200 cmsetacl.log 24.03.2006 11:12 59.278 NuNinst.cfg 07.03.2006 16:27 3.067.904 NuNinst.exe 4. Verzeichnis von C:\ 29.06.2006 11:13 0 sys.txt 29.06.2006 11:12 8.541 system.txt 29.06.2006 11:12 2.221 systemtemp.txt 29.06.2006 11:12 101.688 system32.txt 29.06.2006 10:57 1.610.612.736 pagefile.sys 27.06.2006 11:04 389 boot.ini 18.04.2006 11:28 0 IO.SYS 18.04.2006 11:28 0 MSDOS.SYS 18.04.2006 11:28 0 AUTOEXEC.BAT 18.04.2006 11:28 0 CONFIG.SYS 03.08.2004 22:59 251.184 ntldr |
|
|
|
|
|
|
29.06.2006, 11:21
Ehrenmitglied
Beiträge: 29434 |
#4
es gehoert zu einem Logitech-Eintrag im Autostart.
Also- kein Virus  das solltest du mit HijackThis fixen (es hat nichts im Autostart verloren) öffne das HijackThis -- Button "scan" -- vor die Einträge Häkchen setzen -- Button "Fix checked" -- PC neustarten Zitat O4 - HKCU\..\Run: [LDM] D:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe __________ MfG Sabina rund um die PC-Sicherheit |
|
|
|
|
|
|
29.06.2006, 12:32
...neu hier
Themenstarter Beiträge: 7 |
#5
also hab das jetzt gefixt und pc neu gestartet! das symbol ist aber trotzdem noch da! :-(
mich würde ja gern mal interessieren, wozu das gehört! aber trotzdem danke schon mal für deine hilfe! über weitere lösungsvorschläge wäre ich erfreut! :-) leibe grüße, claudia |
|
|
|
|
|
|
30.06.2006, 10:02
Ehrenmitglied
Beiträge: 29434 |
#6
poste bitte das log vom silentrunner
http://virus-protect.org/silentrunner.html __________ MfG Sabina rund um die PC-Sicherheit |
|
|
|
|
|
|
30.06.2006, 11:04
...neu hier
Themenstarter Beiträge: 7 |
#7
hier das log vom silentrunner
"Silent Runners.vbs", revision 46, http://www.silentrunners.org/ Operating System: Windows XP SP2 Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [MS] "CursorXP" = "D:\Programme\CursorXP\CursorXP.exe" [" "] "LDM" = "D:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" ["Logitech"] "SpybotSD TeaTimer" = "D:\Programme\Spybot - Search & Destroy\TeaTimer.exe" ["Safer Networking Limited"] HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\ {++} "ICQ Lite" = "D:\Programme\ICQLite\ICQLite.exe -trayboot" ["ICQ Ltd."] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "NVMixerTray" = ""C:\Programme\NVIDIA Corporation\NvMixer\NVMixerTray.exe"" ["NVIDIA Corporation"] "Zone Labs Client" = ""D:\Programme\ZoneAlarm\zlclient.exe"" ["Zone Labs, LLC"] "avgnt" = ""D:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min" ["Avira GmbH"] "NeroFilterCheck" = "C:\WINDOWS\system32\NeroCheck.exe" ["Ahead Software Gmbh"] "KernelFaultCheck" = "%systemroot%\system32\dumprep 0 -k" [MS] "InCD" = "D:\Programme\Ahead\InCD\InCD.exe" ["Nero AG"] "ICQ Lite" = "D:\Programme\ICQLite\ICQLite.exe -minimize" ["ICQ Ltd."] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {00000000-6C30-11D8-9363-000AE6309654}\(Default) = "SuperAdBlockerBHO Class" -> {HKLM...CLSID} = "SuperAdBlockerBHO Class" \InProcServer32\(Default) = "D:\Programme\Super Ad Blocker\SABBHO.DLL" ["SuperAdBlocker.com"] {53707962-6F74-2D53-2644-206D7942484F}\(Default) = (no title provided) -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "D:\Programme\Spybot - Search & Destroy\SDHelper.dll" ["Safer Networking Limited"] HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "CPL-Erweiterung für Anzeigeverschiebung" -> {HKLM...CLSID} = "CPL-Erweiterung für Anzeigeverschiebung" \InProcServer32\(Default) = "deskpan.dll" [file not found] "{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Erweiterung für HyperTerminal-Icons" -> {HKLM...CLSID} = "HyperTerminal Icon Ext" \InProcServer32\(Default) = "C:\WINDOWS\system32\hticons.dll" ["Hilgraeve, Inc."] "{21569614-B795-46b1-85F4-E737A8DC09AD}" = "Shell Search Band" -> {HKLM...CLSID} = "Shell Search Band" \InProcServer32\(Default) = "C:\WINDOWS\system32\browseui.dll" [MS] "{45AC2688-0253-4ED8-97DE-B5370FA7D48A}" = "Shell Extension for Malware scanning" -> {HKLM...CLSID} = "Shell Extension for Malware scanning" \InProcServer32\(Default) = "D:\Programme\AntiVir PersonalEdition Classic\shlext.dll" ["H+BEDV Datentechnik GmbH"] "{73B24247-042E-4EF5-ADC2-42F62E6FD654}" = "ICQ Lite Shell Extension" -> {HKLM...CLSID} = "MCLiteShellExt Class" \InProcServer32\(Default) = "D:\Programme\ICQLite\ICQLiteShell.dll" [empty string] "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "D:\Programme\WinRAR\rarext.dll" [null data] "{0006F045-0000-0000-C000-000000000046}" = "Microsoft Outlook Custom Icon Handler" -> {HKLM...CLSID} = "Outlook-Dateisymbolerweiterung" \InProcServer32\(Default) = "C:\Programme\Microsoft Office\Office10\OLKFSTUB.DLL" [MS] "{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\Programme\Microsoft Office\Office10\msohev.dll" [MS] "{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}" = "Shell Extensions for RealOne Player" -> {HKLM...CLSID} = "RealOne Player Context Menu Class" \InProcServer32\(Default) = "D:\Programme\RealPlayer\rpshell.dll" ["RealNetworks, Inc."] "{950FF917-7A57-46BC-8017-59D9BF474000}" = "Shell Extension for CDRW" -> {HKLM...CLSID} = "Shell Extension for CDRW" \InProcServer32\(Default) = "D:\Programme\Ahead\InCD\incdshx.dll" ["Nero AG"] "{640167b4-59b0-47a6-b335-a6b3c0695aea}" = "Portable Media Devices" -> {HKLM...CLSID} = "Portable Media Devices" \InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS] "{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu" -> {HKLM...CLSID} = "Portable Media Devices Menu" \InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS] "{FED7043D-346A-414D-ACD7-550D052499A7}" = "dBpowerAMP Music Converter 1" -> {HKLM...CLSID} = "dBpShell Class" \InProcServer32\(Default) = "D:\Programme\dBpowerAMP\dBShell.dll" [empty string] "{2C49B5D0-ACE7-4D17-9DF0-A254A6C5A0C5}" = "dBpowerAMP Music Converter" -> {HKLM...CLSID} = "dMCIShell Class" \InProcServer32\(Default) = "D:\Programme\dBpowerAMP\dMCShell.dll" [empty string] "{ABC70703-32AF-11d4-90C4-D483A70F4825}" = "CMenuExtender" -> {HKLM...CLSID} = "CMenuExtender" \InProcServer32\(Default) = "D:\Programme\iColorFolder\CMExt.dll" ["Revenger inc."] "{B4B3001E-0F56-4E51-8250-BDE11547EC55}" = "Super Ad Blocker Toolbar" -> {HKLM...CLSID} = "Super Ad Blocker Toolbar" \InProcServer32\(Default) = "D:\Programme\Super Ad Blocker\sabtb.dll" [null data] "{330417E8-EF62-4047-82BE-D8305CEFF572}" = "AMEncShlExt extension" -> {HKLM...CLSID} = "ShellExtension Class" \InProcServer32\(Default) = "D:\PROGRA~1\OGGTOM~1\amshellext.dll" ["4Musics, Inc."] "{00DF1F20-0849-A4D1-0239-00D0AF3E9CB0}" = "TuneUp Shredder Shell Context Menu Extension" -> {HKLM...CLSID} = "TuneUp Shredder Shell Context Menu Extension" \InProcServer32\(Default) = ""D:\Programme\TuneUp Utilities 2006\sdshelex.dll"" ["TuneUp Software GmbH"] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\ INFECTION WARNING! "{5AE067D3-9AFB-48E0-853A-EBB7F4A000D7}" = (no title provided) -> {HKLM...CLSID} = "SABShellExecuteHook Class" \InProcServer32\(Default) = "D:\Programme\Super Ad Blocker\SABSEHB.DLL" ["SuperAdBlocker.com"] HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ INFECTION WARNING! AtiExtEvent\DLLName = "Ati2evxx.dll" ["ATI Technologies Inc."] INFECTION WARNING! SABWinLogon\DLLName = "D:\Programme\Super Ad Blocker\SABWINLO.DLL" ["SuperAdBlocker.com"] HKLM\Software\Classes\Folder\shellex\ColumnHandlers\ {F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info" -> {HKLM...CLSID} = "PDF Shell Extension" \InProcServer32\(Default) = "D:\Programme\Adobe\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."] HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}" -> {HKLM...CLSID} = "MCLiteShellExt Class" \InProcServer32\(Default) = "D:\Programme\ICQLite\ICQLiteShell.dll" [empty string] Shell Extension for Malware scanning\(Default) = "{45AC2688-0253-4ED8-97DE-B5370FA7D48A}" -> {HKLM...CLSID} = "Shell Extension for Malware scanning" \InProcServer32\(Default) = "D:\Programme\AntiVir PersonalEdition Classic\shlext.dll" ["H+BEDV Datentechnik GmbH"] TuneUp Shredder\(Default) = "{00DF1F20-0849-A4D1-0239-00D0AF3E9CB0}" -> {HKLM...CLSID} = "TuneUp Shredder Shell Context Menu Extension" \InProcServer32\(Default) = ""D:\Programme\TuneUp Utilities 2006\sdshelex.dll"" ["TuneUp Software GmbH"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "D:\Programme\WinRAR\rarext.dll" [null data] HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\ CMenuExtender\(Default) = "{ABC70703-32AF-11d4-90C4-D483A70F4825}" -> {HKLM...CLSID} = "CMenuExtender" \InProcServer32\(Default) = "D:\Programme\iColorFolder\CMExt.dll" ["Revenger inc."] ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}" -> {HKLM...CLSID} = "MCLiteShellExt Class" \InProcServer32\(Default) = "D:\Programme\ICQLite\ICQLiteShell.dll" [empty string] TuneUp Shredder\(Default) = "{00DF1F20-0849-A4D1-0239-00D0AF3E9CB0}" -> {HKLM...CLSID} = "TuneUp Shredder Shell Context Menu Extension" \InProcServer32\(Default) = ""D:\Programme\TuneUp Utilities 2006\sdshelex.dll"" ["TuneUp Software GmbH"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "D:\Programme\WinRAR\rarext.dll" [null data] HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ Shell Extension for Malware scanning\(Default) = "{45AC2688-0253-4ED8-97DE-B5370FA7D48A}" -> {HKLM...CLSID} = "Shell Extension for Malware scanning" \InProcServer32\(Default) = "D:\Programme\AntiVir PersonalEdition Classic\shlext.dll" ["H+BEDV Datentechnik GmbH"] WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" -> {HKLM...CLSID} = "WinRAR" \InProcServer32\(Default) = "D:\Programme\WinRAR\rarext.dll" [null data] Default executables: -------------------- HKCU\Software\Classes\batfile\ HKCU\Software\Classes\cmdfile\ Active Desktop and Wallpaper: ----------------------------- Active Desktop is disabled at this entry: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState HKCU\Control Panel\Desktop\ "Wallpaper" = "C:\Dokumente und Einstellungen\Claudi\Lokale Einstellungen\Anwendungsdaten\Microsoft\Wallpaper1.bmp" Startup items in "Claudi" & "All Users" startup folders: -------------------------------------------------------- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart "Adobe Gamma Loader" -> shortcut to: "C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe" ["Adobe Systems, Inc."] "Logitech Desktop Messenger" -> shortcut to: "D:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe /start" ["Logitech"] "Logitech SetPoint" -> shortcut to: "D:\Programme\Logitech\SetPoint\SetPoint.exe" ["Logitech Inc."] Enabled Scheduled Tasks: ------------------------ "1-Klick-Wartung" -> launches: "D:\Programme\TuneUp Utilities 2006\SystemOptimizer.exe /schedulestart" ["TuneUp Software GmbH"] "A433C20291A0752A" -> launches: "c:\dokume~1\claudi\anwend~1\plan2p~1\BodySectHope.exe" [file not found] Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS] 000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] Transport Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: %SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 14 %SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05 Toolbars, Explorer Bars, Extensions: ------------------------------------ Toolbars HKLM\Software\Microsoft\Internet Explorer\Toolbar\ "{B4B3001E-0F56-4E51-8250-BDE11547EC55}" = (no title provided) -> {HKLM...CLSID} = "Super Ad Blocker Toolbar" \InProcServer32\(Default) = "D:\Programme\Super Ad Blocker\sabtb.dll" [null data] Extensions (Tools menu items, main toolbar menu buttons) HKLM\Software\Microsoft\Internet Explorer\Extensions\ {08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ "MenuText" = "Sun Java Konsole" "CLSIDExtension" = "{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}" -> {HKCU...CLSID} = "Java Plug-in" \InProcServer32\(Default) = "C:\Programme\Java\jre1.5.0_06\bin\ssv.dll" ["Sun Microsystems, Inc."] -> {HKLM...CLSID} = "Java Plug-in 1.5.0_06" \InProcServer32\(Default) = "C:\Programme\Java\jre1.5.0_06\bin\npjpi150_06.dll" ["Sun Microsystems, Inc."] {B863453A-26C3-4E1F-A54D-A2CD196348E9}\ "ButtonText" = "ICQ Lite" "MenuText" = "ICQ Lite" "Exec" = "D:\Programme\ICQLite\ICQLite.exe" ["ICQ Ltd."] {FB5F1910-F110-11D2-BB9E-00C04F795683}\ "ButtonText" = "Messenger" "MenuText" = "Windows Messenger" "Exec" = "C:\Programme\Messenger\msmsgs.exe" [MS] Miscellaneous IE Hijack Points ------------------------------ HKLM\Software\Microsoft\Internet Explorer\AboutURLs\ Missing lines (compared with English-language version): HIJACK WARNING! "TuneUp" = "file://C|/Dokumente und Einstellungen/All Users/Anwendungsdaten/TuneUp Software/Common/base.css" [file not found] Running Services (Display Name, Service Name, Path {Service DLL}): ------------------------------------------------------------------ AntiVir PersonalEdition Classic Service, AntiVirService, "D:\Programme\AntiVir PersonalEdition Classic\avguard.exe" ["AVIRA GmbH"] AntiVir Scheduler, AntiVirScheduler, "D:\Programme\AntiVir PersonalEdition Classic\sched.exe" ["Avira GmbH"] Ati HotKey Poller, Ati HotKey Poller, "C:\WINDOWS\system32\Ati2evxx.exe" ["ATI Technologies Inc."] ClipInc 001, ClipInc001, "D:\PROGRA~1\ClipInc\Server\ClipInc-Server.exe 001" [null data] InCD Helper, InCDsrv, "D:\Programme\Ahead\InCD\InCDsrv.exe" ["Nero AG"] Super Ad Blocker Service, SABSVC, ""D:\Programme\Super Ad Blocker\SABSVC.EXE"" ["SuperAdBlocker.com"] TrueVector Internet Monitor, vsmon, "C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service" ["Zone Labs, LLC"] TuneUp WinStyler Theme Service, TUWinStylerThemeSvc, ""D:\Programme\TuneUp Utilities 2006\WinStylerThemeSvc.exe"" ["TuneUp Software GmbH"] Windows User Mode Driver Framework, UMWdf, "C:\WINDOWS\system32\wdfmgr.exe" [MS] WMDM PMSP Service, WMDM PMSP Service, "C:\WINDOWS\system32\MsPMSPSv.exe" [MS] ---------- + This report excludes default entries except where indicated. + To see *everywhere* the script checks and *everything* it finds, launch it from a command prompt or a shortcut with the -all parameter. + To search all directories of local fixed drives for DESKTOP.INI DLL launch points and all Registry CLSIDs for dormant Explorer Bars, use the -supp parameter or answer "No" at the first message box. ---------- (total run time: 26 seconds, including 13 seconds for message boxes) |
|
|
|
|
|
|
30.06.2006, 11:21
Ehrenmitglied
Beiträge: 29434 |
#8
es kann ein Symbol sein, was gehoert : zu allem, was du unter "Run" findest (siehe oben im log vom Silentrunner)
z.b. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ "LDM" = "D:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" ["Logitech"] oder: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart "Logitech Desktop Messenger" -> shortcut to: "D:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe /start" __________ MfG Sabina rund um die PC-Sicherheit |
|
|
|
|
|
|
30.06.2006, 12:40
...neu hier
Themenstarter Beiträge: 7 |
#9
ich danke dir für deine mühe und hilfe! wirklich lieb vin dir! :-)
es hat sich jetzt aufgeklärt, was es ist! ich hab jetzt mal per "ausführen" -> "msconfig" alles was von logitech beim systemstart geladen wird, deaktiviert! und siehe da, das symbol kommt beim systemstart nicht mehr in der taskleiste vor! also war´s doch nur was von logitech! wollte aber auf nummer sicher gehen, nicht das es doch ein virus oder so ist! also nochmal vielen lieben dank für deine hilfe! :-) liebe grüße, claudia |
|
|
|
|
|
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!
bitte erst » hier kostenlos registrieren!!
Folgende Themen könnten Dich auch interessieren:
Seite(n): 1
Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten
bin durch google auf euer forum gekommen und hab auch gleich mal ein anliegen!
ich hab seit einiger zeit so ein komisches rundes symbol in der taskleiste! es sieht aus wie ein auge (das symbol, links neben dem schirm):
[url]http://img515.imageshack.us/img515/2451/komischessymbolkopie5xq.jpg[url]
dieses symbol ist immer nur nach dem systemstart vorhanden und wenn ich dann mit der maus das symbol anklicken will (z.b. doppelklick oder rechte-maus-klick), um zu sehen, was es für ein symbol/programm ist, verschwindet das symbol sofort wieder! ab und zu ist es auch 2x vorhanden!
heute habe zufällig mitbekommen, dass dieses symbol auch im windows-ordner ist, sogar mit datei-bezeichnung:
http://img66.imageshack.us/img66/3070/symbol5sq.jpg
habt ihr eventuell eine idee, was das sein könnte (virus, trojaner...)? antivir, ad-aware und spybot haben nix gefunden!
hier auch mal der hijackthis-logfile:
Logfile of HijackThis v1.99.1
Scan saved at 19:34:34, on 28.06.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
D:\Programme\TuneUp Utilities 2006\WinStylerThemeSvc.exe
C:\WINDOWS\System32\svchost.exe
D:\Programme\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
D:\Programme\Super Ad Blocker\SABSVC.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\NVIDIA Corporation\NvMixer\NVMixerTray.exe
D:\Programme\ZoneAlarm\zlclient.exe
D:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
D:\Programme\Ahead\InCD\InCD.exe
D:\Programme\ICQLite\ICQLite.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Programme\CursorXP\CursorXP.exe
D:\Programme\Spybot - Search & Destroy\TeaTimer.exe
D:\Programme\Logitech\SetPoint\SetPoint.exe
D:\Programme\AntiVir PersonalEdition Classic\sched.exe
D:\Programme\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\MsPMSPSv.exe
D:\PROGRA~1\ClipInc\Server\ClipInc-Server.exe
C:\Programme\Gemeinsame Dateien\Logitech\KHAL\KHALMNPR.EXE
C:\Programme\VVSN\VVSN.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
D:\Eigene Dateien\Sonstiges\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O2 - BHO: SuperAdBlockerBHO Class - {00000000-6C30-11D8-9363-000AE6309654} - D:\Programme\Super Ad Blocker\SABBHO.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Programme\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O3 - Toolbar: Super Ad Blocker Toolbar - {B4B3001E-0F56-4E51-8250-BDE11547EC55} - D:\Programme\Super Ad Blocker\sabtb.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Programme\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [Zone Labs Client] D:\Programme\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [avgnt] "D:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [InCD] D:\Programme\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [ICQ Lite] D:\Programme\ICQLite\ICQLite.exe -minimize
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [CursorXP] D:\Programme\CursorXP\CursorXP.exe
O4 - HKCU\..\Run: [LDM] D:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [ICQ Lite] D:\Programme\ICQLite\ICQLite.exe -trayboot
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = D:\Programme\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://D:\Programme\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Alles mit Net Transport herunterladen - D:\Programme\NetTransport 2\NTAddList.html
O8 - Extra context menu item: Herunterladen mit Net Transport - D:\Programme\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O18 - Protocol: bw+0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {D3B912E5-E41E-41B2-8CFB-4DD9B810DF60} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: SABWinLogon - D:\Programme\Super Ad Blocker\SABWINLO.DLL
O23 - Service: Adobe LM Service - Unknown owner - C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - D:\Programme\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - D:\Programme\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ClipInc 001 (ClipInc001) - Unknown owner - D:\PROGRA~1\ClipInc\Server\ClipInc-Server.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - D:\Programme\Ahead\InCD\InCDsrv.exe
O23 - Service: Super Ad Blocker Service (SABSVC) - SuperAdBlocker.com - D:\Programme\Super Ad Blocker\SABSVC.EXE
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - D:\Programme\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
ich hoffe die info´s reichen erstmal! wenn nciht, einfach bescheid geben! :-)
danke schon mal für eure hilfe!
liebe grüße, claudia