Bestimmte Internetseiten lassen sich nicht ffnenThema ist geschlossen! |
||
---|---|---|
Thema ist geschlossen! |
||
#0
| ||
08.12.2006, 21:19
...neu hier
Beiträge: 4 |
||
|
||
08.12.2006, 21:52
Ehrenmitglied
Beiträge: 29434 |
#2
poste dieses log
http://virus-protect.org/artikel/tools/combofix.html __________ MfG Sabina rund um die PC-Sicherheit |
|
|
||
08.12.2006, 22:05
...neu hier
Themenstarter Beiträge: 4 |
#3
emule - 06-12-08 21:58:25,64 Service Pack 2
ComboFix 06.11.27W - Running from: "C:\" ((((((((((((((((((((((((((((((( Files Created from 2006-11-08 to 2006-12-08 )))))))))))))))))))))))))))))))))) 2006-12-08 21:57 381,398 --a------ C:\combofix.exe 2006-12-08 21:44 <DIR> d-------- C:\Programme\inKline Global 2006-12-08 21:21 <DIR> d-------- C:\Dokumente und Einstellungen\emule\Anwendungsdaten\Lavasoft 2006-12-08 19:39 <DIR> d-------- C:\Dokumente und Einstellungen\emule\Anwendungsdaten\Google 2006-12-08 19:37 <DIR> dr-h----- C:\Dokumente und Einstellungen\emule\SendTo 2006-12-08 19:37 <DIR> dr-h----- C:\Dokumente und Einstellungen\emule\Recent 2006-12-08 19:37 <DIR> dr-h----- C:\Dokumente und Einstellungen\emule\Anwendungsdaten\. 2006-12-08 19:37 <DIR> dr-h----- C:\Dokumente und Einstellungen\emule\Anwendungsdaten 2006-12-08 19:37 <DIR> dr------- C:\Dokumente und Einstellungen\emule\Startmen 2006-12-08 19:37 <DIR> dr------- C:\Dokumente und Einstellungen\emule\Favoriten 2006-12-08 19:37 <DIR> dr------- C:\Dokumente und Einstellungen\emule\Eigene Dateien 2006-12-08 19:37 <DIR> d--hs---- C:\Dokumente und Einstellungen\emule\Cookies 2006-12-08 19:37 <DIR> d--h----- C:\Dokumente und Einstellungen\emule\Vorlagen 2006-12-08 19:37 <DIR> d--h----- C:\Dokumente und Einstellungen\emule\Netzwerkumgebung 2006-12-08 19:37 <DIR> d--h----- C:\Dokumente und Einstellungen\emule\Lokale Einstellungen 2006-12-08 19:37 <DIR> d--h----- C:\Dokumente und Einstellungen\emule\Druckumgebung 2006-12-08 19:37 <DIR> d---s---- C:\Dokumente und Einstellungen\emule\Anwendungsdaten\Microsoft 2006-12-08 19:37 <DIR> d-------- C:\Dokumente und Einstellungen\emule\Desktop 2006-12-08 19:37 <DIR> d-------- C:\Dokumente und Einstellungen\emule\Anwendungsdaten\Identities 2006-12-08 19:37 <DIR> d-------- C:\Dokumente und Einstellungen\emule\Anwendungsdaten\.. 2006-12-08 19:37 <DIR> d-------- C:\Dokumente und Einstellungen\emule\.. 2006-12-08 19:37 <DIR> d-------- C:\Dokumente und Einstellungen\emule\. 2006-12-05 18:36 <DIR> d-------- C:\IPReadl.exe 2006-12-05 17:09 12,288 --a------ C:\WINDOWS\system32\drivers\mouhid.sys 2006-12-04 22:34 24,072 --a------ C:\WINDOWS\system32\uxtuneup.dll 2006-12-04 22:34 <DIR> d-------- C:\Programme\TuneUp Utilities 2007 2006-12-04 22:33 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TuneUp Software 2006-12-03 17:53 <DIR> d-------- C:\Programme\RealVNC 2006-12-02 11:55 <DIR> d-------- C:\WINDOWS\WBEM 2006-12-02 11:55 <DIR> d-------- C:\WINDOWS\system32\de-de 2006-12-02 11:53 <DIR> d--h-c--- C:\WINDOWS\ie7 2006-12-02 11:51 121,856 --------- C:\WINDOWS\system32\xmllite.dll 2006-12-02 11:51 <DIR> d-------- C:\WINDOWS\network diagnostic 2006-11-27 20:51 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll 2006-11-26 12:18 5,248 --a------ C:\WINDOWS\system32\drivers\Vax347s.sys 2006-11-26 12:18 159,616 --a------ C:\WINDOWS\system32\drivers\Vax347b.sys 2006-11-24 20:42 247,866 --a------ C:\WINDOWS\Alcohol_Toolbar_Uninstaller_7187.exe 2006-11-24 20:42 223,128 --a------ C:\WINDOWS\system32\drivers\vaxscsi.sys 2006-11-24 20:42 <DIR> d-------- C:\Programme\Alcohol Toolbar 2006-11-24 20:42 <DIR> d-------- C:\Programme\Alcohol Soft 2006-11-24 20:36 96,256 --a------ C:\WINDOWS\system32\drivers\sptd4957.sys 2006-11-24 20:36 643,072 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2006-11-24 20:35 33,952 --a------ C:\WINDOWS\system32\drivers\oreans32.sys (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2006-12-08 21:44 -------- d--h----- C:\Programme\InstallShield Installation Information 2006-12-07 20:15 -------- d-------- C:\Programme\Gemeinsame Dateien\Buhl Data Service 2006-12-07 20:11 -------- d-------- C:\Programme\Wiso 2006-12-06 22:54 -------- d-------- C:\Programme\Gemeinsame Dateien\Ahead 2006-12-06 22:54 -------- d-------- C:\Programme\Ahead 2006-12-04 22:33 -------- d-------- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard 2006-12-02 11:58 -------- d-------- C:\Programme\Internet Explorer 2006-12-02 11:40 -------- d-------- C:\Programme\AntiVir PersonalEdition Classic 2006-11-27 20:52 163644 --a------ C:\WINDOWS\system32\drivers\secdrv.sys 2006-11-07 21:03 6049280 --------- C:\WINDOWS\system32\ieframe.dll 2006-11-07 21:03 50688 --------- C:\WINDOWS\system32\msfeedsbs.dll 2006-11-07 21:03 458752 --------- C:\WINDOWS\system32\msfeeds.dll 2006-11-07 21:03 413696 --a------ C:\WINDOWS\system32\vbscript.dll 2006-11-07 21:03 231424 --a------ C:\WINDOWS\system32\webcheck.dll 2006-11-07 21:03 180736 --------- C:\WINDOWS\system32\ieui.dll 2006-11-07 21:03 156160 --a------ C:\WINDOWS\system32\msls31.dll 2006-11-07 03:27 382976 --a------ C:\WINDOWS\system32\iedkcs32.dll 2006-11-07 03:27 229376 --a------ C:\WINDOWS\system32\ieaksie.dll 2006-11-07 03:26 71680 --a------ C:\WINDOWS\system32\admparse.dll 2006-11-07 03:26 55296 --a------ C:\WINDOWS\system32\iesetup.dll 2006-11-07 03:26 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe 2006-11-07 03:26 43008 --a------ C:\WINDOWS\system32\iernonce.dll 2006-11-07 03:26 152064 --a------ C:\WINDOWS\system32\ieakeng.dll 2006-11-07 03:26 13312 --a------ C:\WINDOWS\system32\ieudinit.exe 2006-11-07 03:26 123904 --a------ C:\WINDOWS\system32\advpack.dll 2006-11-07 03:25 161792 --a------ C:\WINDOWS\system32\ieakui.dll 2006-11-05 14:50 -------- d-------- C:\Programme\Borland 2006-10-22 15:06 208896 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2006-10-22 15:06 208896 --a------ C:\WINDOWS\system32\nvudisp.exe 2006-10-22 12:22 888832 --a------ C:\WINDOWS\system32\nvmobls.dll 2006-10-22 12:22 86016 --a------ C:\WINDOWS\system32\nvmctray.dll 2006-10-22 12:22 81920 --a------ C:\WINDOWS\system32\nvwddi.dll 2006-10-22 12:22 794624 --a------ C:\WINDOWS\system32\nvcplui.exe 2006-10-22 12:22 7700480 --a------ C:\WINDOWS\system32\nvcpl.dll 2006-10-22 12:22 581632 --a------ C:\WINDOWS\system32\nvhwvid.dll 2006-10-22 12:22 5644288 --a------ C:\WINDOWS\system32\nvoglnt.dll 2006-10-22 12:22 5619712 --a------ C:\WINDOWS\system32\nvdisps.dll 2006-10-22 12:22 5255168 --a------ C:\WINDOWS\system32\nvdispsr.dll 2006-10-22 12:22 466944 --a------ C:\WINDOWS\system32\nvshell.dll 2006-10-22 12:22 458752 --a------ C:\WINDOWS\system32\nvmccssr.dll 2006-10-22 12:22 4527488 --a------ C:\WINDOWS\system32\nv4_disp.dll 2006-10-22 12:22 45056 --a------ C:\WINDOWS\system32\nvmccsrs.dll 2006-10-22 12:22 442368 --a------ C:\WINDOWS\system32\nvappbar.exe 2006-10-22 12:22 425984 --a------ C:\WINDOWS\system32\keystone.exe 2006-10-22 12:22 3994624 --a------ C:\WINDOWS\system32\drivers\nv4_mini.sys 2006-10-22 12:22 35840 --a------ C:\WINDOWS\system32\nvcodins.dll 2006-10-22 12:22 35840 --a------ C:\WINDOWS\system32\nvcod.dll 2006-10-22 12:22 335872 --a------ C:\WINDOWS\system32\nvwrses.dll 2006-10-22 12:22 335872 --a------ C:\WINDOWS\system32\nvwrsel.dll 2006-10-22 12:22 327680 --a------ C:\WINDOWS\system32\nvwrsfr.dll 2006-10-22 12:22 327680 --a------ C:\WINDOWS\system32\nvwrsesm.dll 2006-10-22 12:22 323584 --a------ C:\WINDOWS\system32\nvwrspt.dll 2006-10-22 12:22 323584 --a------ C:\WINDOWS\system32\nvwrsit.dll 2006-10-22 12:22 323584 --a------ C:\WINDOWS\system32\nvrshe.dll 2006-10-22 12:22 323584 --a------ C:\WINDOWS\system32\nvrsar.dll 2006-10-22 12:22 3203072 --a------ C:\WINDOWS\system32\nvgamesr.dll 2006-10-22 12:22 319488 --a------ C:\WINDOWS\system32\nvwrsptb.dll 2006-10-22 12:22 319488 --a------ C:\WINDOWS\system32\nvwrsnl.dll 2006-10-22 12:22 315392 --a------ C:\WINDOWS\system32\nvwrsru.dll 2006-10-22 12:22 315392 --a------ C:\WINDOWS\system32\nvwrshu.dll 2006-10-22 12:22 311296 --a------ C:\WINDOWS\system32\nvwrsde.dll 2006-10-22 12:22 311296 --a------ C:\WINDOWS\system32\nvexpbar.dll 2006-10-22 12:22 3047424 --a------ C:\WINDOWS\system32\nvgames.dll 2006-10-22 12:22 303104 --a------ C:\WINDOWS\system32\nvwrstr.dll 2006-10-22 12:22 303104 --a------ C:\WINDOWS\system32\nvwrssl.dll 2006-10-22 12:22 303104 --a------ C:\WINDOWS\system32\nvwrsfi.dll 2006-10-22 12:22 299008 --a------ C:\WINDOWS\system32\nvwrssk.dll 2006-10-22 12:22 299008 --a------ C:\WINDOWS\system32\nvwrsno.dll 2006-10-22 12:22 2973696 --a------ C:\WINDOWS\system32\nvvitvsr.dll 2006-10-22 12:22 294912 --a------ C:\WINDOWS\system32\nvwrssv.dll 2006-10-22 12:22 294912 --a------ C:\WINDOWS\system32\nvwrspl.dll 2006-10-22 12:22 294912 --a------ C:\WINDOWS\system32\nvwrsda.dll 2006-10-22 12:22 2924544 --a------ C:\WINDOWS\system32\nvvitvs.dll 2006-10-22 12:22 286720 --a------ C:\WINDOWS\system32\nvwrseng.dll 2006-10-22 12:22 286720 --a------ C:\WINDOWS\system32\nvwrscs.dll 2006-10-22 12:22 286720 --a------ C:\WINDOWS\system32\nvnt4cpl.dll 2006-10-22 12:22 2859008 --a------ C:\WINDOWS\system32\nvmoblsr.dll 2006-10-22 12:22 282624 --a------ C:\WINDOWS\system32\nvwrsar.dll 2006-10-22 12:22 278528 --a------ C:\WINDOWS\system32\nvwrshe.dll 2006-10-22 12:22 278528 --a------ C:\WINDOWS\system32\nvrsfr.dll 2006-10-22 12:22 274432 --a------ C:\WINDOWS\system32\nvrsit.dll 2006-10-22 12:22 274432 --a------ C:\WINDOWS\system32\nvrses.dll 2006-10-22 12:22 274432 --a------ C:\WINDOWS\system32\nvrsel.dll 2006-10-22 12:22 270336 --a------ C:\WINDOWS\system32\nvrsde.dll 2006-10-22 12:22 266240 --a------ C:\WINDOWS\system32\nvrspt.dll 2006-10-22 12:22 266240 --a------ C:\WINDOWS\system32\nvrsnl.dll 2006-10-22 12:22 266240 --a------ C:\WINDOWS\system32\nvrsesm.dll 2006-10-22 12:22 262144 --a------ C:\WINDOWS\system32\nvrsru.dll 2006-10-22 12:22 262144 --a------ C:\WINDOWS\system32\nvrsptb.dll 2006-10-22 12:22 262144 --a------ C:\WINDOWS\system32\nvrsja.dll 2006-10-22 12:22 258048 --a------ C:\WINDOWS\system32\nvrsko.dll 2006-10-22 12:22 253952 --a------ C:\WINDOWS\system32\nvrshu.dll 2006-10-22 12:22 249856 --a------ C:\WINDOWS\system32\nvrstr.dll 2006-10-22 12:22 249856 --a------ C:\WINDOWS\system32\nvrssl.dll 2006-10-22 12:22 249856 --a------ C:\WINDOWS\system32\nvrssk.dll 2006-10-22 12:22 249856 --a------ C:\WINDOWS\system32\nvrspl.dll 2006-10-22 12:22 249856 --a------ C:\WINDOWS\system32\nvrsno.dll 2006-10-22 12:22 245760 --a------ C:\WINDOWS\system32\nvrssv.dll 2006-10-22 12:22 245760 --a------ C:\WINDOWS\system32\nvrsda.dll 2006-10-22 12:22 241664 --a------ C:\WINDOWS\system32\nvrsfi.dll 2006-10-22 12:22 241664 --a------ C:\WINDOWS\system32\nvrseng.dll 2006-10-22 12:22 241664 --a------ C:\WINDOWS\system32\nvrscs.dll 2006-10-22 12:22 229376 --a------ C:\WINDOWS\system32\nvmccs.dll 2006-10-22 12:22 221184 --a------ C:\WINDOWS\system32\nvrszhc.dll 2006-10-22 12:22 212992 --a------ C:\WINDOWS\system32\nvwrsja.dll 2006-10-22 12:22 212992 --a------ C:\WINDOWS\system32\nvapi.dll 2006-10-22 12:22 196608 --a------ C:\WINDOWS\system32\nvwrsko.dll 2006-10-22 12:22 188416 --a------ C:\WINDOWS\system32\nvmccss.dll 2006-10-22 12:22 1732608 --a------ C:\WINDOWS\system32\nvwssr.dll 2006-10-22 12:22 167936 --a------ C:\WINDOWS\system32\nvwrszht.dll 2006-10-22 12:22 1662976 --a------ C:\WINDOWS\system32\nvwdmcpl.dll 2006-10-22 12:22 163840 --a------ C:\WINDOWS\system32\nvwrszhc.dll 2006-10-22 12:22 1622016 --a------ C:\WINDOWS\system32\nwiz.exe 2006-10-22 12:22 159810 --a------ C:\WINDOWS\system32\nvsvc32.exe 2006-10-22 12:22 147456 --a------ C:\WINDOWS\system32\nvcolor.exe 2006-10-22 12:22 1470464 --a------ C:\WINDOWS\system32\nview.dll 2006-10-22 12:22 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe 2006-10-22 12:22 1236992 --a------ C:\WINDOWS\system32\nvwss.dll 2006-10-22 12:22 118784 --a------ C:\WINDOWS\system32\nvrszht.dll 2006-10-22 12:22 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll 2006-10-22 12:22 1011712 --a------ C:\WINDOWS\system32\nvcpluir.dll 2006-10-17 12:06 78336 --a------ C:\WINDOWS\system32\ieencode.dll 2006-10-17 12:05 40960 --a------ C:\WINDOWS\system32\licmgr10.dll 2006-10-17 12:05 206336 --------- C:\WINDOWS\system32\WinFXDocObj.exe 2006-10-17 12:05 105984 --a------ C:\WINDOWS\system32\url.dll 2006-10-17 12:04 101376 --a------ C:\WINDOWS\system32\occache.dll 2006-10-17 12:03 17408 --a------ C:\WINDOWS\system32\corpol.dll 2006-10-17 11:58 61952 --------- C:\WINDOWS\system32\icardie.dll 2006-10-17 11:58 12288 --------- C:\WINDOWS\system32\msfeedssync.exe 2006-10-17 11:57 36352 --a------ C:\WINDOWS\system32\imgutil.dll 2006-10-17 11:57 266752 --------- C:\WINDOWS\system32\iertutil.dll 2006-10-17 11:56 45568 --a------ C:\WINDOWS\system32\mshta.exe 2006-10-17 11:28 48128 --a------ C:\WINDOWS\system32\mshtmler.dll 2006-10-17 11:27 380928 --------- C:\WINDOWS\system32\ieapfltr.dll 2006-10-13 19:18 -------- d-------- C:\Programme\Google 2006-10-13 13:35 146432 --a------ C:\WINDOWS\system32\nwprovau.dll 2006-10-12 13:51 -------- d-------- C:\Programme\WinRAR 2006-10-11 19:27 -------- d-------- C:\Programme\Windows Media Player 2006-10-11 18:13 -------- d-------- C:\Programme\Gemeinsame Dateien 2006-10-11 18:06 -------- d-------- C:\Programme\Mozilla Firefox 2006-10-10 19:57 -------- d-------- C:\Programme\CyberLink 2006-10-10 19:34 -------- d-------- C:\Programme\XviD 2006-10-10 19:34 -------- d-------- C:\Programme\ffdshow 2006-10-10 19:34 -------- d-------- C:\Programme\AC3Filter 2006-10-10 19:15 -------- d-------- C:\Programme\DivX 2006-10-02 20:04 806912 --a------ C:\WINDOWS\system32\divx_xx0c.dll 2006-10-02 20:04 806912 --a------ C:\WINDOWS\system32\divx_xx07.dll 2006-10-02 20:04 790528 --a------ C:\WINDOWS\system32\divx_xx11.dll 2006-10-02 20:04 635486 --a------ C:\WINDOWS\system32\DivX.dll 2006-09-15 15:55 271312 --a------ C:\vncviewer.exe 2006-09-13 06:02 1084416 --------- C:\WINDOWS\system32\msxml3.dll (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries are not shown [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe" "swg"="C:\\Programme\\Google\\GoogleToolbarNotifier\\1.2.908.5008\\GoogleToolbarNotifier.exe" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "SoundMan"="SOUNDMAN.EXE" "Ulead AutoDetector"="C:\\Programme\\Ulead Systems\\Ulead Photo Explorer 8.0 SE Basic\\Monitor.exe" "Ulead Photo Express 5 SE Calendar Checker"="C:\\Programme\\Ulead Systems\\Ulead Photo Express 5 SE\\calcheck.exe" "AVMBlueClient"="C:\\Programme\\avmclient\\bluefritz.exe" "AVMBLUEOBEX"="C:\\Programme\\avmclient\\AvmObex.exe -pushclient -ftpclient" "avgnt"="\"C:\\Programme\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min" "Easy-PrintToolBox"="C:\\Programme\\Canon\\Easy-PrintToolBox\\BJPSMAIN.EXE /logon" "LanguageShortcut"="C:\\Programme\\CyberLink\\PowerDVD\\Language\\Language.exe" "NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup" "nwiz"="nwiz.exe /install" "NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL] "Installed"="1" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI] "Installed"="1" "NoChange"="1" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS] "Installed"="1" [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components] "DeskHtmlVersion"=dword:00000110 "DeskHtmlMinorVersion"=dword:00000005 "Settings"=dword:00000001 "GeneralFlags"=dword:00000005 [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Die derzeitige Homepage" "Flags"=dword:00000002 "Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,00,00,00,\ 00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00 "CurrentState"=hex:04,00,00,40 "OriginalStateInfo"=hex:18,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,\ 00,00,04,00,00,40 "RestoredStateInfo"=hex:18,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,\ 00,00,01,00,00,00 [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE" "NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NVMCTRAY.DLL,NvTaskbarInit" [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE" "NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NVMCTRAY.DLL,NvTaskbarInit" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" "WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "QuickTime Task"="\"C:\\Programme\\QuickTime\\qttask.exe\" -atboottime" "Microsoft Works Update Detection"="C:\\Programme\\Gemeinsame Dateien\\Microsoft Shared\\Works Shared\\WkUFind.exe" "NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup" "nwiz"="nwiz.exe /install" "Agent"="C:\\Programme\\Medion\\PowerCinema\\My_TV\\Agent.exe" "RemoteControl"="C:\\Programme\\CyberLink\\PowerDVD\\PDVDServ.exe" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus COLOR 480SXU] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="E_S74" "hkey"="HKCU" "command"="C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_SICN03.EXE /A \"C:\\WINDOWS\\system32\\E_S74.tmp\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ Lite] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ICQLite" "hkey"="HKLM" "command"="\"C:\\Programme\\ICQLite\\ICQLite.exe\" -minimize" "inimapping"="0" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" Contents of the 'Scheduled Tasks' folder C:\WINDOWS\tasks\1-Klick-Wartung.job Completion time: 06-12-08 22:00:17.68 C:\ComboFix.txt ... 06-12-08 22:00 |
|
|
||
08.12.2006, 22:15
Ehrenmitglied
Beiträge: 29434 |
#4
virustotal
Oben auf der Seite --> auf Durchsuchen klicken --> Datei aussuchen (oder gleich die Datei mit korrektem Pfad einkopieren) --> Doppelklick auf die zu prfende Datei --> klick auf "Send"... jetzt abwarten - dann mit der rechten Maustaste den Text markieren -> kopieren - einfgen http://www.virustotal.com/flash/index_en.html C:\WINDOWS\system32\drivers\sptd4957.sys C:\WINDOWS\system32\drivers\sptd.sys C:\WINDOWS\system32\drivers\oreans32.sys poste die reporte __________ MfG Sabina rund um die PC-Sicherheit |
|
|
||
09.12.2006, 14:02
...neu hier
Themenstarter Beiträge: 4 |
#5
AntiVir 7.2.0.49 12.08.2006 no virus found
Authentium 4.93.8 12.08.2006 no virus found Avast 4.7.892.0 12.08.2006 no virus found AVG 386 12.08.2006 no virus found BitDefender 7.2 12.09.2006 no virus found CAT-QuickHeal 8.00 12.09.2006 no virus found ClamAV devel-20060426 12.09.2006 no virus found DrWeb 4.33 12.09.2006 no virus found eSafe 7.0.14.0 12.07.2006 no virus found eTrust-InoculateIT 23.73.81 12.09.2006 no virus found eTrust-Vet 30.3.3238 12.08.2006 no virus found Ewido 4.0 12.09.2006 no virus found Fortinet 2.82.0.0 12.09.2006 no virus found F-Prot 3.16f 12.08.2006 no virus found F-Prot4 4.2.1.29 12.08.2006 no virus found Ikarus T3.1.0.26 12.07.2006 no virus found Kaspersky 4.0.2.24 12.09.2006 no virus found McAfee 4914 12.08.2006 no virus found Microsoft 1.1804 12.09.2006 no virus found NOD32v2 1912 12.09.2006 no virus found Norman 5.80.02 12.08.2006 no virus found Panda 9.0.0.4 12.09.2006 no virus found Prevx1 V2 12.09.2006 no virus found Sophos 4.12.0 12.08.2006 no virus found Sunbelt 2.2.907.0 11.30.2006 no virus found TheHacker 6.0.3.130 12.06.2006 no virus found UNA 1.83 12.08.2006 no virus found VBA32 3.11.1 12.08.2006 no virus found VirusBuster 4.3.15:9 12.08.2006 no virus found Aditional Information File size: 0 bytes MD5: d41d8cd98f00b204e9800998ecf8427e SHA1: da39a3ee5e6b4b0d3255bfef95601890afd80709 VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware. > Go to: Home Contactar En Espaol -------------------------------------------------------------------------------- www.virustotal.com :: Hispasec Sistemas 2004-06:: e-mail info VirusTotalVirusTotal is a free file analisys service that works using several antivirus engines. Select file : DistributeSSL Enter your email, choose the file to be scanned with multiple antivirus engines and click Send.Menu: News Hot news in the virus/antivirus sector. Estadisticas Statistics of VirusTotal procesing. Virustotal More info about Virustotal. STATUS: FINISHEDComplete scanning result of "sptd.sys", received in VirusTotal at 12.09.2006, 13:52:16 (CET). Antivirus Version Update Result AntiVir 7.2.0.49 12.08.2006 no virus found Authentium 4.93.8 12.08.2006 no virus found Avast 4.7.892.0 12.08.2006 no virus found AVG 386 12.08.2006 no virus found BitDefender 7.2 12.09.2006 no virus found CAT-QuickHeal 8.00 12.09.2006 no virus found ClamAV devel-20060426 12.09.2006 no virus found DrWeb 4.33 12.09.2006 no virus found eSafe 7.0.14.0 12.07.2006 no virus found eTrust-InoculateIT 23.73.81 12.09.2006 no virus found eTrust-Vet 30.3.3238 12.08.2006 no virus found Ewido 4.0 12.09.2006 no virus found Fortinet 2.82.0.0 12.09.2006 no virus found F-Prot 3.16f 12.08.2006 no virus found F-Prot4 4.2.1.29 12.08.2006 no virus found Ikarus T3.1.0.26 12.07.2006 no virus found Kaspersky 4.0.2.24 12.09.2006 no virus found McAfee 4914 12.08.2006 no virus found Microsoft 1.1804 12.09.2006 no virus found NOD32v2 1912 12.09.2006 no virus found Norman 5.80.02 12.08.2006 no virus found Panda 9.0.0.4 12.09.2006 no virus found Prevx1 V2 12.09.2006 no virus found Sophos 4.12.0 12.08.2006 no virus found Sunbelt 2.2.907.0 11.30.2006 no virus found TheHacker 6.0.3.130 12.06.2006 no virus found UNA 1.83 12.08.2006 no virus found VBA32 3.11.1 12.08.2006 no virus found VirusBuster 4.3.15:9 12.08.2006 no virus found Aditional Information File size: 0 bytes MD5: d41d8cd98f00b204e9800998ecf8427e SHA1: da39a3ee5e6b4b0d3255bfef95601890afd80709 VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware. > Go to: Home Contactar En Espaol -------------------------------------------------------------------------------- www.virustotal.com :: Hispasec Sistemas 2004-06:: e-mail info@virustotal.com VirusTotalVirusTotal is a free file analisys service that works using several antivirus engines. Select file : DistributeSSL Enter your email, choose the file to be scanned with multiple antivirus engines and click Send.Menu: News Hot news in the virus/antivirus sector. Estadisticas Statistics of VirusTotal procesing. Virustotal More info about Virustotal. STATUS: FINISHEDComplete scanning result of "oreans32.sys", received in VirusTotal at 12.09.2006, 13:57:16 (CET). Antivirus Version Update Result AntiVir 7.2.0.49 12.08.2006 no virus found Authentium 4.93.8 12.08.2006 no virus found Avast 4.7.892.0 12.08.2006 no virus found AVG 386 12.08.2006 no virus found BitDefender 7.2 12.09.2006 no virus found CAT-QuickHeal 8.00 12.09.2006 Rootkit.Agent.ad ClamAV devel-20060426 12.09.2006 no virus found DrWeb 4.33 12.09.2006 no virus found eSafe 7.0.14.0 12.07.2006 no virus found eTrust-InoculateIT 23.73.81 12.09.2006 no virus found eTrust-Vet 30.3.3238 12.08.2006 no virus found Ewido 4.0 12.09.2006 no virus found Fortinet 2.82.0.0 12.09.2006 no virus found F-Prot 3.16f 12.08.2006 no virus found F-Prot4 4.2.1.29 12.08.2006 no virus found Ikarus T3.1.0.26 12.07.2006 no virus found Kaspersky 4.0.2.24 12.09.2006 no virus found McAfee 4914 12.08.2006 no virus found Microsoft 1.1804 12.09.2006 no virus found NOD32v2 1912 12.09.2006 no virus found Norman 5.80.02 12.08.2006 no virus found Panda 9.0.0.4 12.09.2006 no virus found Prevx1 V2 12.09.2006 no virus found Sophos 4.12.0 12.08.2006 no virus found Sunbelt 2.2.907.0 11.30.2006 no virus found TheHacker 6.0.3.130 12.06.2006 no virus found UNA 1.83 12.08.2006 no virus found VBA32 3.11.1 12.08.2006 no virus found VirusBuster 4.3.15:9 12.08.2006 no virus found Aditional Information File size: 33952 bytes MD5: aad837bf3b475092fd515cd0842334e9 SHA1: 2f845acac30e40d5aea3ccf8d02f5226089366a5 VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware. > Go to: Home Contactar En Espaol -------------------------------------------------------------------------------- www.virustotal.com :: Hispasec Sistemas 2004-06:: e-mail info@virustotal.com |
|
|
||
09.12.2006, 15:03
Ehrenmitglied
Beiträge: 29434 |
#6
ja, ich weiss, die oreans32.sys ist ein rootkits, das problem ist nur, einige sind regulaere anwendungen - andere nicht....
warum hast du folgende Anwenungen aktiv??? C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\ftp.exe welche seiten lassen sich nicht oeffnen ? __________ MfG Sabina rund um die PC-Sicherheit |
|
|
||
11.12.2006, 18:56
...neu hier
Themenstarter Beiträge: 4 |
#7
cmd und fpt sind aktiv, weil ich auf einem FTP-Server angemeldet war.
Ich installiere den Rechner jetzt neu. Das Risiko ist mir zu gro. Aber trotzdem Danke. |
|
|
||
habe das Problem, dass sich einige Internetseiten nicht ffnen lassen bzw. das ganze Netzwerk steht still. Es hilft dann nur eine Ewigkeit zu warten bzw. ein Reset.
Logfile of HijackThis v1.99.1
Scan saved at 21:10:20, on 08.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\AntiVir PersonalEdition Classic\sched.exe
C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\avmclient\avmbtservice.exe
C:\Programme\FRITZ!DSL\IGDCTRL.EXE
C:\Programme\avmclient\AvmObexService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programme\CyberLink\Shared Files\RichVideo.exe
C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\UAService7.exe
C:\Programme\RealVNC\VNC4\WinVNC4.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Programme\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
C:\Programme\Ulead Systems\Ulead Photo Express 5 SE\calcheck.exe
C:\Programme\avmclient\bluefritz.exe
C:\Programme\avmclient\AvmObex.exe
C:\Programme\avmclient\AvmObex.exe
C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\ftp.exe
C:\Programme\WinRAR\WinRAR.exe
C:\DOKUME~1\emule\LOKALE~1\Temp\Rar$EX00.375\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Alcohol Toolbar Helper - {0ACF00E0-C1E4-4F6B-B290-10AC7505C47A} - C:\Programme\Alcohol Toolbar\v3.0.0.0\AudioGizmo_Toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar2.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Programme\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar2.dll
O3 - Toolbar: Alcohol Toolbar - {DC59A0D4-0ED6-4A73-B356-1B977F2A7725} - C:\Programme\Alcohol Toolbar\v3.0.0.0\AudioGizmo_Toolbar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Ulead AutoDetector] C:\Programme\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
O4 - HKLM\..\Run: [Ulead Photo Express 5 SE Calendar Checker] C:\Programme\Ulead Systems\Ulead Photo Express 5 SE\calcheck.exe
O4 - HKLM\..\Run: [AVMBlueClient] C:\Programme\avmclient\bluefritz.exe
O4 - HKLM\..\Run: [AVMBLUEOBEX] C:\Programme\avmclient\AvmObex.exe -pushclient -ftpclient
O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Programme\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [LanguageShortcut] C:\Programme\CyberLink\PowerDVD\Language\Language.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader - Schnellstart.lnk = C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WISO Urteilsmonitor.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.1_05\bin\npjpi141_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.1_05\bin\npjpi141_05.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\programme\fritz!dsl\sarah.dll
O10 - Unknown file in Winsock LSP: c:\programme\fritz!dsl\sarah.dll
O10 - Unknown file in Winsock LSP: c:\programme\fritz!dsl\sarah.dll
O10 - Unknown file in Winsock LSP: c:\programme\fritz!dsl\sarah.dll
O10 - Unknown file in Winsock LSP: c:\programme\fritz!dsl\sarah.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1120240717671
O17 - HKLM\System\CCS\Services\Tcpip\..\{1F2F7D53-7AA7-42F8-AB95-554DE1CAB27C}: NameServer = 192.168.200.100
O17 - HKLM\System\CCS\Services\Tcpip\..\{2438FCE7-B5E1-4547-A2BE-6110FE6D222C}: NameServer = 192.168.121.252,192.168.121.253
O17 - HKLM\System\CCS\Services\Tcpip\..\{71D16927-9734-447A-BE8A-2BFBEBDE7252}: NameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{A8FB9D8F-71FE-4E52-9458-B6B6B35AF910}: NameServer = 192.168.120.252,192.168.120.253
O17 - HKLM\System\CCS\Services\Tcpip\..\{B29622A0-1985-4987-99D7-2D991D9A7CB3}: NameServer = 192.168.122.252,192.168.122.253
O17 - HKLM\System\CS1\Services\Tcpip\..\{1F2F7D53-7AA7-42F8-AB95-554DE1CAB27C}: NameServer = 192.168.200.100
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AntiVir PersonalEdition Classic Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVM BT Connection Service - AVM Berlin - C:\Programme\avmclient\avmbtservice.exe
O23 - Service: AVM BT PAN Service - AVM Berlin - C:\Programme\avmclient\panapp.exe
O23 - Service: AVM IGD CTRL Service - AVM Berlin - C:\Programme\FRITZ!DSL\IGDCTRL.EXE
O23 - Service: AVM BT OBEX Service (AvmObexService) - AVM Berlin - C:\Programme\avmclient\AvmObexService.exe
O23 - Service: AVM FRITZ!web Routing Service (de_serv) - Unknown owner - C:\PROGRAMME\TELEDAT\de_serv.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Programme\CyberLink\Shared Files\RichVideo.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
Kann mir jemand helfen?
Danke