Home » Viren, Trojaner & Malware Forum » Windows Firewall lässt sich nicht öffnen » Themenansicht

Windows Firewall lässt sich nicht öffnen

Thema ist geschlossen!
Thema ist geschlossen!
#0
22.12.2006, 11:35
Micha.79
Member

Beiträge: 16
#1 Hallo,

ich habe probleme mit active sync (beta), es lässt sich keine usb verbindung aufbauen. in diesem zusammenhang wollte ich mir die einstellungen der windows firewall ansehen und bekam folgende meldung: "Die Windows-Firewalleinstellungen können nicht angezeigt werden, da der dazugehörige Dienst nicht ausgeführt wird."

Kann sich jemand mal meine logfiles ansehen?

Logfile of HijackThis v1.99.1
Scan saved at 11:16:37, on 22.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\AntiVir PersonalEdition Classic\sched.exe
C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\Xampp\xampp\apache\bin\apache.exe
C:\WINDOWS\system32\cisvc.exe
C:\Programme\Xampp\xampp\FileZillaFTP\FileZillaServer.exe
C:\PROGRA~1\VCOM\Fix-It\mxtask.exe
C:\WINDOWS\SYSTEM32\GEARSEC.EXE
C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\TightVNC\WinVNC.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Programme\D-Tools\daemon.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Programme\Java\jre1.5.0_09\bin\jusched.exe
c:\programme\pinnacle\shared files\programs\mediaserver\pmshost.exe
C:\Programme\Xampp\xampp\apache\bin\apache.exe
C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe
C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\PuXpMan.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Programme\GMX\GMX SMS-Manager\SMSMngr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\EmailNotifier\EN.exe
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\WinSweep\winjam.exe
C:\Programme\WinSweep\WSPopup.exe
C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programme\Google\Google Desktop Search\GoogleDesktopCrawl.exe
C:\Programme\ShutDownPro\ShutDownPro.EXE
C:\Programme\Pinnacle\Shared Files\Programs\StrmServer\StrmServer.exe
C:\Programme\WinSweep\WSProxy.Exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\VCOM\Fix-It\mxtask.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\dllhost.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\mmc.exe
C:\Programme\SpeedProject\SpeedCommander 10\SpeedCommander.exe
H:\Eigene_Dateien\Downloads\hijackthis_199\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.tiscali.de/web/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Tiscali
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = file://C:\Programme\WinSweep\ws.js
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoriten
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programme\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [Fix-It AV] C:\PROGRA~1\VCOM\Fix-It\MemCheck.exe
O4 - HKLM\..\Run: [mspwr] C:\WINDOWS\system32\PuXpMan.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [PwrUpTweakMe] C:\WINDOWS\system32\PUXPTWKS.EXE /TWEAK
O4 - HKCU\..\Run: [GMX SMS-Manager] C:\Programme\GMX\GMX SMS-Manager\SMSMngr.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EmailNotifier] C:\Programme\EmailNotifier\EN.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [WINSWEEP Reklameblockierung] C:\Programme\WinSweep\winjam.exe
O4 - HKCU\..\Run: [WINJAM - Konfiguration] C:\Programme\WinSweep\WSPopup.exe /STEP1 /SOUND
O4 - HKCU\..\Run: [UIWatcher] C:\Programme\Ashampoo\Ashampoo UnInstaller Platinum 2\UIWatcher.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programme\Microsoft ActiveSync\Wcescomm.exe"
O4 - Startup: ShutDownPro.lnk = C:\Programme\ShutDownPro\ShutDownPro.EXE
O4 - Startup: StreamServer Pinnacle.lnk = C:\Programme\Pinnacle\Shared Files\Programs\StrmServer\StrmServer.exe
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: In Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: In vorhandene PDF-Datei konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Markierte Adresse als Outlook-Kontakt speichern - C:\Programme\SmartTools\OlAdrAss\STPAdrAssIE.hat
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Subscribe in RSS Popper - C:\Programme\RSS Popper\ie_subscribe.htm
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - res://C:\Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Knowledge Base Suche - {8b2d996f-b7d1-4961-a929-414d9cf5ba7b} - http://support.microsoft.com/default.aspx?scid=FH;EN-US;KBHOWTO (file missing)
O9 - Extra 'Tools' menuitem: Knowledge Base Suche - {8b2d996f-b7d1-4961-a929-414d9cf5ba7b} - http://support.microsoft.com/default.aspx?scid=FH;EN-US;KBHOWTO (file missing)
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.tiscali.de
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/german/kavwebscan_unicode.cab
O16 - DPF: {162247AF-26A7-44FC-A93A-69506EA244F3} (HWTest.HWTestControl) - http://service.maxdome.de/de/systemcheck/HWTest.CAB
O16 - DPF: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} (Java Plug-in 1.5.0_04) -
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) -
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Programme\Skype\toolbars\Shared\Skype4ComAPI.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programme\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adpurpcnbid - Adobe Systems - (no file)
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apache2 - Unknown owner - C:\Programme\Xampp\xampp\apache\bin\apache.exe" -k runservice (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - Unknown owner - C:\Programme\Xampp\xampp\FileZillaFTP\FileZillaServer.exe
O23 - Service: Fix-It Task Manager - Avanquest Publishing USA, Inc. - C:\PROGRA~1\VCOM\Fix-It\mxtask.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\SYSTEM32\GEARSEC.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Programme\Gemeinsame Dateien\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: MSSQL$PINNACLESYS - Unknown owner - C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe" -sPINNACLESYS (file missing)
O23 - Service: mysql - Unknown owner - C:\Programme\Xampp\xampp\mysql\bin\mysqld-nt.exe
O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) - Pinnacle Systems - c:\programme\pinnacle\shared files\programs\mediaserver\pmshost.exe
O23 - Service: SQLAgent$PINNACLESYS - Unknown owner - C:\Programme\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE" -i PINNACLESYS (file missing)
O23 - Service: VNC Server (winvnc) - Unknown owner - C:\Programme\TightVNC\WinVNC.exe" -service (file missing)



Michael - 06-12-22 11:25:49,14 Service Pack 2
ComboFix 06.09.28 - Running from: "H:\Eigene_Dateien\Downloads"

((((((((((((((((((((((((((((((( Files Created from 2006-11-22 to 2006-12-22 ))))))))))))))))))))))))))))))))))


2006-12-15 16:28 133,632 --a------ C:\WINDOWS\system32\SpoonUninstall.exe
2006-12-09 12:50 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
2006-12-04 18:36 322,560 --a------ C:\WINDOWS\SMUn.EXE
2006-11-27 15:46 14,048 --------- C:\WINDOWS\system32\spmsg2.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-12-22 10:58 -------- d-------- C:\Programme\Mozilla Firefox
2006-12-22 10:36 2528 --a--c--- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\$_hpcst$.hpc
2006-12-22 10:33 -------- d-------- C:\Programme\Microsoft ActiveSync
2006-12-21 16:29 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\MailWasherPro
2006-12-21 13:02 -------- d-------- C:\Programme\SUPERAntiSpyware
2006-12-21 11:46 -------- d-------- C:\Programme\StarMoney 5.0 S-Edition
2006-12-20 06:50 -------- d-------- C:\Programme\AntiVir PersonalEdition Classic
2006-12-19 15:20 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\Adobe
2006-12-17 21:32 -------- d-------- C:\Programme\dialogue1intro
2006-12-16 15:39 -------- d-------- C:\Programme\BPFTP Server
2006-12-16 15:36 -------- d-------- C:\Programme\Easy CD-DA Extractor 10
2006-12-16 15:12 -------- d-------- C:\Programme\Java
2006-12-15 16:57 -------- d-------- C:\Programme\BonkEnc
2006-12-15 16:27 -------- d-------- C:\Programme\Illustrate
2006-12-15 15:23 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\OpenOffice.org2
2006-12-14 15:55 -------- d-------- C:\Programme\Outlook Express
2006-12-14 15:55 -------- d-------- C:\Programme\Gemeinsame Dateien\System
2006-12-13 16:54 -------- d---s---- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\Microsoft
2006-12-13 14:10 34304 --a--c--- C:\WINDOWS\system32\drivers\avgntdd.sys
2006-12-13 14:10 14848 --a--c--- C:\WINDOWS\system32\drivers\avgntmgr.sys
2006-12-12 15:20 -------- d-------- C:\Programme\PFTP
2006-12-12 14:42 -------- d-------- C:\Programme\FileZilla
2006-12-12 10:57 -------- d-------- C:\Programme\xpert
2006-12-12 10:57 -------- d-------- C:\Programme\Lohnsteuer2006
2006-12-09 12:48 -------- d-------- C:\Programme\ANYCOM
2006-12-09 12:31 -------- d-------- C:\Programme\Internet Explorer
2006-12-08 13:39 -------- d-------- C:\Programme\allTunes
2006-12-08 13:39 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\allTunes
2006-12-07 22:09 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\Skype
2006-12-07 18:21 -------- d-------- C:\Programme\NewsletterDesigner
2006-12-05 09:39 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\Corel
2006-12-05 09:38 7520 --ahsc--- C:\WINDOWS\system32\KGyGaAvL.sys
2006-12-05 09:02 -------- d-------- C:\Programme\Audacity
2006-12-04 18:37 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\SuperMailer
2006-12-04 18:36 -------- d-------- C:\Programme\SuperMailer
2006-12-04 18:00 -------- d-------- C:\Programme\mresreg
2006-12-04 17:50 -------- d-------- C:\Programme\MailOut
2006-12-04 17:17 186 --a------ C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\41D29A40BD654B308FCA741A69265393
2006-12-04 17:17 -------- d-------- C:\Programme\delight software gmbh
2006-12-04 17:15 -------- d-------- C:\Programme\ESUsoft
2006-12-04 17:07 -------- d-------- C:\Programme\Newslettermailer
2006-12-04 08:39 -------- d-------- C:\Programme\EditNumbers
2006-11-27 21:33 -------- d-------- C:\Programme\DriverMax
2006-11-27 18:59 -------- d-------- C:\Programme\iTunes
2006-11-27 18:59 -------- d-------- C:\Programme\iPod
2006-11-27 18:57 -------- d-------- C:\Programme\QuickTime
2006-11-27 18:56 -------- d-------- C:\Programme\Apple Software Update
2006-11-21 20:17 88 -r-hs---- C:\WINDOWS\system32\45E4DAC93C.sys
2006-11-21 20:16 -------- d-------- C:\Programme\Gemeinsame Dateien\Corel
2006-11-21 20:15 -------- d-------- C:\Programme\Gemeinsame Dateien
2006-11-21 20:15 -------- d-------- C:\Programme\Corel
2006-11-20 14:56 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\Mozilla
2006-11-18 20:30 -------- d-------- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2006-11-18 20:30 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\SUPERAntiSpyware.com
2006-11-18 15:57 -------- d-------- C:\Programme\Windows Media Player
2006-11-18 15:55 -------- d-------- C:\Programme\Windows Media Connect 2
2006-11-18 12:40 -------- d-------- C:\Programme\eBay
2006-11-18 12:38 -------- d-------- C:\Programme\a-squared Free
2006-11-18 11:52 -------- d-------- C:\Programme\Microsoft.NET
2006-11-18 11:27 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\RssPopper
2006-11-17 10:09 -------- d-------- C:\Programme\Temp
2006-11-17 09:35 -------- d-------- C:\Programme\Xpage Internet Studio 6 Special Edition
2006-11-17 09:35 -------- d-------- C:\Programme\Windows Unattended CD Creator
2006-11-17 09:35 -------- d-------- C:\Programme\StarMoney 4.0 S-Edition
2006-11-17 09:35 -------- d-------- C:\Programme\Plagiarism-Finder 1.2.2 TRIAL
2006-11-17 09:35 -------- d-------- C:\Programme\FotoShow
2006-11-17 09:35 -------- d-------- C:\Programme\ABBYY FineReader 4.0 Sprint
2006-11-16 17:35 -------- d-------- C:\Programme\Gemeinsame Dateien\Kaspersky Lab
2006-11-15 16:57 -------- d-------- C:\Programme\Kaspersky Lab
2006-11-15 16:48 -------- d-------- C:\Programme\MSXML 4.0
2006-11-14 17:45 -------- d-------- C:\Programme\WinSweep
2006-11-14 16:23 -------- d-------- C:\Programme\Sunbelt Software
2006-11-13 10:25 -------- d--h----- C:\Programme\Zero G Registry
2006-11-10 14:57 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\AdobeUM
2006-11-08 06:06 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-11-07 21:25 66048 --a------ C:\WINDOWS\ieResetIcons.exe
2006-11-07 21:03 6049280 --------- C:\WINDOWS\system32\ieframe.dll
2006-11-07 21:03 50688 --------- C:\WINDOWS\system32\msfeedsbs.dll
2006-11-07 21:03 458752 --------- C:\WINDOWS\system32\msfeeds.dll
2006-11-07 21:03 413696 --a------ C:\WINDOWS\system32\vbscript.dll
2006-11-07 21:03 231424 --a------ C:\WINDOWS\system32\webcheck.dll
2006-11-07 21:03 180736 --------- C:\WINDOWS\system32\ieui.dll
2006-11-07 21:03 156160 --a------ C:\WINDOWS\system32\msls31.dll
2006-11-07 03:27 382976 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-11-07 03:27 229376 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-11-07 03:26 71680 --a------ C:\WINDOWS\system32\admparse.dll
2006-11-07 03:26 55296 --a------ C:\WINDOWS\system32\iesetup.dll
2006-11-07 03:26 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-11-07 03:26 43008 --a------ C:\WINDOWS\system32\iernonce.dll
2006-11-07 03:26 152064 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-11-07 03:26 13312 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-11-07 03:26 123904 --a------ C:\WINDOWS\system32\advpack.dll
2006-11-07 03:25 161792 --a------ C:\WINDOWS\system32\ieakui.dll
2006-11-04 14:17 1245696 --a------ C:\WINDOWS\system32\msxml4.dll
2006-11-03 10:02 8282112 --a------ C:\WINDOWS\system32\wmploc.dll
2006-11-03 09:56 99840 --a------ C:\WINDOWS\system32\wmpshell.dll
2006-11-03 09:55 275968 --a------ C:\WINDOWS\system32\wmerror.dll
2006-11-03 09:54 8192 --a------ C:\WINDOWS\system32\asferror.dll
2006-11-03 00:17 -------- d-------- C:\Programme\MOBackup
2006-11-02 11:51 43008 --------- C:\WINDOWS\system32\wpdshextres.dll
2006-10-31 09:13 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\Macromedia
2006-10-28 18:36 -------- d-------- C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\CyberLink
2006-10-28 18:35 -------- d--h----- C:\Programme\InstallShield Installation Information
2006-10-28 18:35 -------- d-------- C:\Programme\PowerDVD
2006-10-28 18:35 -------- d-------- C:\Programme\CyberLink
2006-10-27 16:17 -------- d-------- C:\Programme\KeePass Password Safe
2006-10-27 16:11 -------- d-------- C:\Programme\Microsoft FrontPage Express
2006-10-27 16:11 -------- d-------- C:\Programme\DSPlayer_v0.74_beta_lite
2006-10-27 16:11 -------- d-------- C:\Programme\DivX
2006-10-27 16:11 -------- d-------- C:\Programme\Diashow pro
2006-10-27 16:11 -------- d-------- C:\Programme\ANTIVIR
2006-10-27 16:11 -------- d-------- C:\Programme\Adobe
2006-10-27 16:10 -------- d-------- C:\Programme\Turbo Torrent
2006-10-27 16:10 -------- d-------- C:\Programme\SmartTools
2006-10-27 15:48 -------- d-------- C:\Programme\Ashampoo
2006-10-25 22:15 -------- d-------- C:\Programme\Winamp
2006-10-25 21:31 -------- d-------- C:\Programme\Advanced AVI Splitter
2006-10-20 02:39 715776 --a------ C:\WINDOWS\system32\sxs.dll
2006-10-18 21:58 8704 --a------ C:\WINDOWS\system32\wdfmgr.exe
2006-10-18 21:58 8704 --a------ C:\WINDOWS\system32\uwdf.exe
2006-10-18 21:47 991744 --a------ C:\WINDOWS\system32\drmv2clt.dll
2006-10-18 21:47 937984 --a------ C:\WINDOWS\system32\WMNetMgr.dll
2006-10-18 21:47 767488 --------- C:\WINDOWS\system32\WMVSENCD.dll
2006-10-18 21:47 757248 --a------ C:\WINDOWS\system32\WMADMOD.dll
2006-10-18 21:47 656896 --------- C:\WINDOWS\system32\WMVXENCD.dll
2006-10-18 21:47 63488 --a------ C:\WINDOWS\system32\wpdmtpus.dll
2006-10-18 21:47 629760 --a------ C:\WINDOWS\system32\wpd_ci.dll
2006-10-18 21:47 613376 --------- C:\WINDOWS\system32\wmpmde.dll
2006-10-18 21:47 603648 --a------ C:\WINDOWS\system32\WMSPDMOD.dll
2006-10-18 21:47 542720 --a------ C:\WINDOWS\system32\blackbox.dll
2006-10-18 21:47 535040 --------- C:\WINDOWS\system32\wmdrmsdk.dll
2006-10-18 21:47 429056 --a------ C:\WINDOWS\system32\wmdrmdev.dll
2006-10-18 21:47 414208 --a------ C:\WINDOWS\system32\msscp.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvdmod.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\WMVADVE.DLL
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\WMVADVD.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmsdmod.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wdfapi.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\MPG4DMOD.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\MP4SDMOD.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\MP43DMOD.dll
2006-10-18 21:47 37376 --a------ C:\WINDOWS\system32\wmdmps.dll
2006-10-18 21:47 35840 --a------ C:\WINDOWS\system32\wpdconns.dll
2006-10-18 21:47 356352 --a------ C:\WINDOWS\system32\wpdsp.dll
2006-10-18 21:47 348672 --a------ C:\WINDOWS\system32\wmdrmnet.dll
2006-10-18 21:47 33792 --a------ C:\WINDOWS\system32\wmdmlog.dll
2006-10-18 21:47 321536 --a------ C:\WINDOWS\system32\mswmdm.dll
2006-10-18 21:47 317440 --------- C:\WINDOWS\system32\MP4SDECD.dll
2006-10-18 21:47 314880 --a------ C:\WINDOWS\system32\wmpdxm.dll
2006-10-18 21:47 295936 --------- C:\WINDOWS\system32\wmpeffects.dll
2006-10-18 21:47 284160 --------- C:\WINDOWS\system32\PortableDeviceApi.dll
2006-10-18 21:47 276992 --a------ C:\WINDOWS\system32\audiodev.dll
2006-10-18 21:47 27136 --a------ C:\WINDOWS\system32\mspmsnsv.dll
2006-10-18 21:47 2603008 --------- C:\WINDOWS\system32\WpdShext.dll
2006-10-18 21:47 259072 --------- C:\WINDOWS\system32\MPG4DECD.dll
2006-10-18 21:47 259072 --------- C:\WINDOWS\system32\MP43DECD.dll
2006-10-18 21:47 2450944 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-10-18 21:47 242688 --a------ C:\WINDOWS\system32\wmpasf.dll
2006-10-18 21:47 229376 --a------ C:\WINDOWS\system32\cewmdm.dll
2006-10-18 21:47 222208 --a------ C:\WINDOWS\system32\wmasf.dll
2006-10-18 21:47 212992 --------- C:\WINDOWS\system32\MFPLAT.dll
2006-10-18 21:47 211456 --a------ C:\WINDOWS\system32\qasf.dll
2006-10-18 21:47 204288 --a------ C:\WINDOWS\system32\wmpsrcwp.dll
2006-10-18 21:47 199168 --------- C:\WINDOWS\system32\PortableDeviceWMDRM.dll
2006-10-18 21:47 179712 --a------ C:\WINDOWS\system32\msnetobj.dll
2006-10-18 21:47 175616 --a------ C:\WINDOWS\system32\mspmsp.dll
2006-10-18 21:47 166912 --------- C:\WINDOWS\system32\PortableDeviceTypes.dll
2006-10-18 21:47 1661440 --a------ C:\WINDOWS\system32\wmpencen.dll
2006-10-18 21:47 1574912 --------- C:\WINDOWS\system32\WMVENCOD.dll
2006-10-18 21:47 157184 --a------ C:\WINDOWS\system32\wmidx.dll
2006-10-18 21:47 154624 --a------ C:\WINDOWS\system32\wpdmtp.dll
2006-10-18 21:47 1543680 --------- C:\WINDOWS\system32\WMVDECOD.dll
2006-10-18 21:47 1382912 --------- C:\WINDOWS\system32\WMVSDECD.dll
2006-10-18 21:47 133632 --------- C:\WINDOWS\system32\WPDShServiceObj.dll
2006-10-18 21:47 1329152 --a------ C:\WINDOWS\system32\WMSPDMOE.dll
2006-10-18 21:47 132096 --------- C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
2006-10-18 21:47 130048 --------- C:\WINDOWS\system32\wmpps.dll
2006-10-18 21:47 11264 --a------ C:\WINDOWS\system32\LAPRXY.dll
2006-10-18 21:47 1117696 --a------ C:\WINDOWS\system32\WMADMOE.dll
2006-10-18 21:47 101888 --------- C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2006-10-18 20:03 100864 --a------ C:\WINDOWS\system32\logagent.exe
2006-10-18 20:00 249856 --------- C:\WINDOWS\system32\drmupgds.exe
2006-10-18 20:00 17408 --------- C:\WINDOWS\system32\wpdshextautoplay.exe
2006-10-17 12:06 78336 --a------ C:\WINDOWS\system32\ieencode.dll
2006-10-17 12:05 40960 --a------ C:\WINDOWS\system32\licmgr10.dll
2006-10-17 12:05 206336 --------- C:\WINDOWS\system32\WinFXDocObj.exe
2006-10-17 12:05 105984 --a------ C:\WINDOWS\system32\url.dll
2006-10-17 12:04 101376 --a------ C:\WINDOWS\system32\occache.dll
2006-10-17 12:03 17408 --a------ C:\WINDOWS\system32\corpol.dll
2006-10-17 11:58 61952 --------- C:\WINDOWS\system32\icardie.dll
2006-10-17 11:58 12288 --------- C:\WINDOWS\system32\msfeedssync.exe
2006-10-17 11:57 36352 --a------ C:\WINDOWS\system32\imgutil.dll
2006-10-17 11:57 266752 --------- C:\WINDOWS\system32\iertutil.dll
2006-10-17 11:56 45568 --a------ C:\WINDOWS\system32\mshta.exe
2006-10-17 11:28 48128 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-10-17 11:27 380928 --------- C:\WINDOWS\system32\ieapfltr.dll
2006-10-13 13:35 65536 --a------ C:\WINDOWS\system32\nwwks.dll
2006-10-13 13:35 64000 --a------ C:\WINDOWS\system32\nwapi32.dll
2006-10-13 13:35 146432 --a------ C:\WINDOWS\system32\nwprovau.dll
2006-10-06 17:29 25351 --a------ C:\Dokumente und Einstellungen\Michael\Anwendungsdaten\Microsoft Excel.ADR
2006-10-04 14:10 17605 -----c--- C:\Programme\WinSweephosts.bak
2006-10-02 15:28 312128 --------- C:\WINDOWS\system32\msdelta.dll
2006-09-28 20:13 95344 -----c--- C:\WINDOWS\system32\WUDFCoinstaller.dll
2006-09-28 18:56 55808 -----c--- C:\WINDOWS\system32\WudfSvc.dll
2006-09-28 18:56 316416 -----c--- C:\WINDOWS\system32\WUDFx.dll
2006-09-28 18:56 165376 -----c--- C:\WINDOWS\system32\WudfPlatform.dll
2006-09-28 18:56 146432 -----c--- C:\WINDOWS\system32\WudfHost.exe
2006-09-25 17:58 23856 --a------ C:\WINDOWS\system32\spupdsvc.exe


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GMX SMS-Manager"="C:\\Programme\\GMX\\GMX SMS-Manager\\SMSMngr.exe"
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"EmailNotifier"="C:\\Programme\\EmailNotifier\\EN.exe"
"SpybotSD TeaTimer"="C:\\Programme\\Spybot - Search & Destroy\\TeaTimer.exe"
"WINSWEEP Reklameblockierung"="C:\\Programme\\WinSweep\\winjam.exe"
"WINJAM - Konfiguration"="C:\\Programme\\WinSweep\\WSPopup.exe /STEP1 /SOUND"
"UIWatcher"="C:\\Programme\\Ashampoo\\Ashampoo UnInstaller Platinum 2\\UIWatcher.exe"
"SUPERAntiSpyware"="C:\\Programme\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"
"H/PC Connection Agent"="\"C:\\Programme\\Microsoft ActiveSync\\Wcescomm.exe\""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Runonce]
"CleanUp!"="C:\\Programme\\CleanUp!\\Cleanup.exe /WindowsRestart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE"
"DAEMON Tools-1033"="\"C:\\Programme\\D-Tools\\daemon.exe\" -lang 1033"
"SunJavaUpdateSched"="\"C:\\Programme\\Java\\jre1.5.0_09\\bin\\jusched.exe\""
"Google Desktop Search"="\"C:\\Programme\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup"
"UserFaultCheck"=hex(2):25,73,79,73,74,65,6d,72,6f,6f,74,25,5c,73,79,73,74,65,\
6d,33,32,5c,64,75,6d,70,72,65,70,20,30,20,2d,75,00
"avgnt"="\"C:\\Programme\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min"
"Fix-It AV"="C:\\PROGRA~1\\VCOM\\Fix-It\\MemCheck.exe"
"mspwr"="C:\\WINDOWS\\system32\\PuXpMan.exe"
"iTunesHelper"="\"C:\\Programme\\iTunes\\iTunesHelper.exe\""
"PwrUpTweakMe"="C:\\WINDOWS\\system32\\PUXPTWKS.EXE /TWEAK"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000004

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
"ForceClassicControlPanel"=dword:00000001
"NoLowDiskSpaceChecks"=dword:00000001
"NoChangeStartMenu"=dword:00000000
"ClearRecentDocsOnExit"=dword:00000001
"NoRecentDocsHistory"=dword:00000000
"MaxRecentDocs"=dword:0000000b
"NoStartMenuMFUprogramsList"=dword:00000000
"NoDesktop"=dword:00000000
"NoRecentDocsMenu"=dword:00000000

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\DisallowRun]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"disablecad"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:000000b9

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run]

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
"ForceClassicControlPanel"=dword:00000001
"NoLowDiskSpaceChecks"=dword:00000001

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
"ForceClassicControlPanel"=dword:00000001
"NoLowDiskSpaceChecks"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"UPnPMonitor"="{e57ce738-33e8-4c51-8354-bb4de9d215d1}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders
securityproviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll


Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\AntiVir PersonalEdition Classic starten.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Start Outlook.job
C:\WINDOWS\tasks\XoftSpy.job

Completion time: 22.12.2006 11:26:33.59
ComboFix.txt



Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: B8E8-F28C

Verzeichnis von C:\WINDOWS\system32

22.12.2006 10:30 2.206 wpa.dbl
16.12.2006 15:12 8.891 jupdate-1.5.0_09-b03.log
15.12.2006 16:56 260 eUpdate.xml
15.12.2006 16:33 2.718 SpoonUninstall-dBpowerAMP Mp4 Codec.dat
15.12.2006 16:33 133.632 SpoonUninstall.exe
15.12.2006 16:33 33.846 SpoonUninstall-dBpowerAMP Mp4 Codec.bmp
15.12.2006 16:28 36.100 SpoonUninstall-dBpowerAMP Music Converter.dat
15.12.2006 16:27 33.846 SpoonUninstall-dBpowerAMP Music Converter.bmp
12.12.2006 14:42 423.140 perfh009.dat
12.12.2006 14:42 71.476 perfc009.dat
08.12.2006 10:04 438.312 perfh007.dat
08.12.2006 10:04 84.502 perfc007.dat
08.12.2006 10:04 1.031.750 PerfStringBackup.INI
07.12.2006 15:13 10.716.584 MRT.exe
05.12.2006 09:38 7.520 KGyGaAvL.sys
21.11.2006 20:17 88 45E4DAC93C.sys
18.11.2006 16:10 16.832 amcompat.tlb
18.11.2006 16:10 23.392 nscompat.tlb
17.11.2006 18:54 1.040.384 ieframe.dll.mui
17.11.2006 18:53 12.288 advpack.dll.mui
08.11.2006 06:06 679.424 inetcomm.dll
07.11.2006 21:03 27.136 jsproxy.dll
07.11.2006 21:03 413.696 vbscript.dll
07.11.2006 21:03 670.720 mstime.dll
07.11.2006 21:03 231.424 webcheck.dll
07.11.2006 21:03 156.160 msls31.dll
07.11.2006 21:03 50.688 msfeedsbs.dll
07.11.2006 21:03 475.648 mshtmled.dll
07.11.2006 21:03 1.162.240 urlmon.dll
07.11.2006 21:03 3.577.856 mshtml.dll
07.11.2006 21:03 191.488 iepeers.dll
07.11.2006 21:03 180.736 ieui.dll
07.11.2006 21:03 6.049.280 ieframe.dll
07.11.2006 21:03 131.584 extmgr.dll
07.11.2006 21:03 818.688 wininet.dll
07.11.2006 21:03 458.752 msfeeds.dll
07.11.2006 03:27 382.976 iedkcs32.dll
07.11.2006 03:27 229.376 ieaksie.dll
07.11.2006 03:26 152.064 ieakeng.dll
07.11.2006 03:26 71.680 admparse.dll
07.11.2006 03:26 55.296 iesetup.dll
07.11.2006 03:26 13.312 ieudinit.exe
07.11.2006 03:26 43.008 iernonce.dll
07.11.2006 03:26 54.784 ie4uinit.exe
07.11.2006 03:26 123.904 advpack.dll
07.11.2006 03:26 92.672 inseng.dll
07.11.2006 03:25 161.792 ieakui.dll
07.11.2006 03:24 56.483 ieuinit.inf
04.11.2006 14:17 1.245.696 msxml4.dll
03.11.2006 10:02 8.282.112 wmploc.dll
03.11.2006 09:56 99.840 wmpshell.dll
03.11.2006 09:55 275.968 wmerror.dll
03.11.2006 09:54 8.192 asferror.dll
02.11.2006 11:51 43.008 wpdshextres.dll
27.10.2006 14:52 39.656 PUXPPLAT.UND
25.10.2006 19:15 65.536 QuickTimeVR.qtx
25.10.2006 19:15 49.152 QuickTime.qts
20.10.2006 02:39 715.776 sxs.dll
18.10.2006 21:58 8.704 uwdf.exe
18.10.2006 21:58 8.704 wdfmgr.exe
18.10.2006 21:47 4.096 wmsdmoe2.dll
18.10.2006 21:47 1.574.912 WMVENCOD.dll
18.10.2006 21:47 603.648 WMSPDMOD.dll
18.10.2006 21:47 1.329.152 WMSPDMOE.dll
18.10.2006 21:47 4.096 WMVADVD.dll
18.10.2006 21:47 1.382.912 WMVSDECD.dll
18.10.2006 21:47 4.096 WMVADVE.DLL
18.10.2006 21:47 767.488 WMVSENCD.dll
18.10.2006 21:47 133.632 WPDShServiceObj.dll
18.10.2006 21:47 63.488 wpdmtpus.dll
18.10.2006 21:47 656.896 WMVXENCD.dll
18.10.2006 21:47 2.450.944 wmvcore.dll
18.10.2006 21:47 356.352 wpdsp.dll
18.10.2006 21:47 4.096 wmvdmoe2.dll
18.10.2006 21:47 1.543.680 WMVDECOD.dll
18.10.2006 21:47 4.096 wmvdmod.dll
18.10.2006 21:47 35.840 wpdconns.dll
18.10.2006 21:47 4.096 wmsdmod.dll
18.10.2006 21:47 154.624 wpdmtp.dll
18.10.2006 21:47 2.450.944 SET5D.tmp
18.10.2006 21:47 629.760 wpd_ci.dll
18.10.2006 21:47 2.603.008 WpdShext.dll
18.10.2006 21:47 348.672 wmdrmnet.dll
18.10.2006 21:47 535.040 wmdrmsdk.dll
18.10.2006 21:47 613.376 wmpmde.dll
18.10.2006 21:47 130.048 wmpps.dll
18.10.2006 21:47 157.184 wmidx.dll
18.10.2006 21:47 242.688 wmpasf.dll
18.10.2006 21:47 204.288 wmpsrcwp.dll
18.10.2006 21:47 937.984 WMNetMgr.dll
18.10.2006 21:47 314.880 wmpdxm.dll
18.10.2006 21:47 295.936 wmpeffects.dll
18.10.2006 21:47 10.834.432 wmp.dll
18.10.2006 21:47 1.661.440 wmpencen.dll
18.10.2006 21:47 284.160 PortableDeviceApi.dll
18.10.2006 21:47 222.208 SET51.tmp
18.10.2006 21:47 101.888 PortableDeviceClassExtension.dll
18.10.2006 21:47 166.912 PortableDeviceTypes.dll
18.10.2006 21:47 132.096 PortableDeviceWiaCompat.dll
18.10.2006 21:47 199.168 PortableDeviceWMDRM.dll
18.10.2006 21:47 757.248 WMADMOD.dll
18.10.2006 21:47 429.056 wmdrmdev.dll
18.10.2006 21:47 37.376 wmdmps.dll
18.10.2006 21:47 211.456 qasf.dll
18.10.2006 21:47 1.117.696 WMADMOE.dll
18.10.2006 21:47 33.792 wmdmlog.dll
18.10.2006 21:47 222.208 wmasf.dll
18.10.2006 21:47 4.096 wdfapi.dll
18.10.2006 21:47 179.712 msnetobj.dll
18.10.2006 21:47 27.136 mspmsnsv.dll
18.10.2006 21:47 175.616 mspmsp.dll
18.10.2006 21:47 321.536 mswmdm.dll
18.10.2006 21:47 414.208 msscp.dll
18.10.2006 21:47 212.992 MFPLAT.dll
18.10.2006 21:47 259.072 MPG4DECD.dll
18.10.2006 21:47 4.096 MP4SDMOD.dll
18.10.2006 21:47 317.440 MP4SDECD.dll
18.10.2006 21:47 4.096 MP43DMOD.dll
18.10.2006 21:47 259.072 MP43DECD.dll
18.10.2006 21:47 4.096 MPG4DMOD.dll
18.10.2006 21:47 11.264 LAPRXY.dll
18.10.2006 21:47 542.720 blackbox.dll
18.10.2006 21:47 229.376 cewmdm.dll
18.10.2006 21:47 991.744 drmv2clt.dll
18.10.2006 21:47 276.992 audiodev.dll
18.10.2006 20:05 232.448 l3codecp.acm
18.10.2006 20:03 100.864 logagent.exe
18.10.2006 20:00 249.856 drmupgds.exe
18.10.2006 20:00 17.408 wpdshextautoplay.exe
17.10.2006 12:06 443.904 html.iec
17.10.2006 12:06 78.336 ieencode.dll
17.10.2006 12:05 206.336 WinFXDocObj.exe
17.10.2006 12:05 1.817.088 inetcpl.cpl
17.10.2006 12:05 105.984 url.dll
17.10.2006 12:05 40.960 licmgr10.dll
17.10.2006 12:05 192.000 msrating.dll
17.10.2006 12:04 101.376 occache.dll
17.10.2006 12:03 17.408 corpol.dll
17.10.2006 12:00 491.520 jscript.dll
17.10.2006 11:58 12.288 msfeedssync.exe
17.10.2006 11:58 61.952 icardie.dll
17.10.2006 11:58 44.544 pngfilt.dll
17.10.2006 11:58 346.624 dxtmsft.dll
17.10.2006 11:57 36.352 imgutil.dll
17.10.2006 11:57 214.528 dxtrans.dll
17.10.2006 11:57 266.752 iertutil.dll
17.10.2006 11:56 45.568 mshta.exe
17.10.2006 11:55 66.560 tdc.ocx
17.10.2006 11:28 48.128 mshtmler.dll
17.10.2006 11:27 380.928 ieapfltr.dll
17.10.2006 11:19 1.383.424 mshtml.tlb
16.10.2006 12:19 270.336 xpsp3res.dll
13.10.2006 13:35 65.536 nwwks.dll
13.10.2006 13:35 146.432 nwprovau.dll
13.10.2006 13:35 64.000 nwapi32.dll
12.10.2006 03:10 127.078 javaws.exe
12.10.2006 03:10 49.265 jpicpl32.cpl
12.10.2006 01:35 53.346 javaw.exe
12.10.2006 01:35 49.248 java.exe
10.10.2006 13:18 371.280 FNTCACHE.DAT
04.10.2006 12:47 663.565 ikhcore.log
02.10.2006 15:28 312.128 msdelta.dll



Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: B8E8-F28C

Verzeichnis von C:\DOKUME~1\Michael\LOKALE~1\Temp

22.12.2006 11:13 1.710 WCESLog.log
22.12.2006 11:02 0 mmc020E1EC0.xml
22.12.2006 10:30 16.384 ~DF9540.tmp
22.12.2006 10:30 16.384 ~DF885E.tmp
22.12.2006 10:29 16.384 ~DFBB6A.tmp
22.12.2006 10:29 16.384 ~DFB46C.tmp
6 Datei(en) 67.246 Bytes
0 Verzeichnis(se), 35.581.456.384 Bytes frei


Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: B8E8-F28C

Verzeichnis von C:\WINDOWS

22.12.2006 11:10 97.778 setupapi.log
22.12.2006 10:34 10.258 KB909394.log
22.12.2006 10:30 0 0.log
22.12.2006 10:30 1.747.231 WindowsUpdate.log
22.12.2006 10:30 32.228 SchedLgU.Txt
22.12.2006 10:29 159 wiadebug.log
22.12.2006 10:29 50 wiaservc.log
22.12.2006 10:29 2.048 bootstat.dat
21.12.2006 23:49 1.968 ModemLog_Sportster Voice 33.6 PnP.txt
21.12.2006 11:52 3.953.320 Pfirewall.log
18.12.2006 16:15 0 setuperr.log
18.12.2006 16:15 0 setupact.log
18.12.2006 09:46 1.240 CDPLAYER.UNI
18.12.2006 09:22 49 NeroDigital.ini
17.12.2006 21:03 27.893 dialogue1 intro Setup Log.txt
15.12.2006 17:08 4.075.970 Pfirewall.log.old
12.12.2006 15:20 1.076 pftp.ini
10.12.2006 09:23 5.386 ModemLog_Bluetooth-Modem.txt
05.12.2006 08:25 361 goldwave.ini
04.12.2006 18:36 2.495 SuperMailer_Uninstall.in
20.11.2006 15:15 16.878 mozver.dat
20.11.2006 14:55 834 wininit.ini
18.11.2006 15:57 942 win.ini
18.11.2006 15:53 316.640 WMSysPr9.prx
13.11.2006 13:41 454 BRWMARK.INI
07.11.2006 21:25 66.048 ieResetIcons.exe
27.10.2006 11:18 492 MAXLINK.INI
06.10.2006 17:29 748 ODBC.INI
30.09.2006 15:42 1.071 AWMODEM.INF
23.09.2006 17:19 227 system.ini
18.09.2006 19:44 335 nsreg.dat
18.09.2006 19:43 87.184 NSUninst.exe
18.09.2006 19:42 87.184 GREUninstall.exe
05.09.2006 13:00 322.560 SMUn.EXE
14.08.2006 23:47 621 avpr.ini
05.08.2006 13:58 239 BUHL.INI
01.08.2006 15:30 1.373 MOBackup-DatensicherungfrOutlook_Uninstall.in
01.08.2006 10:10 113.664 mobackup.EXE
15.07.2006 12:29 157.809 Plagiarism-Finder Uninstaller.exe
20.05.2006 11:12 1.341 MOBackup-DatensicherungfrOutlook_Uninstall.ins
07.05.2006 12:22 87 fpxpress.ini
09.03.2006 14:53 398 tm.ini
09.03.2006 01:33 41 tdf.dii
21.02.2006 13:20 99.970 UninstallFirefox.exe
18.02.2006 15:55 73.216 cadkasdeinst01.exe
16.02.2006 22:03 161.319 EmailNotifier Uninstaller.exe
04.02.2006 14:37 208 Keys.386
28.01.2006 17:01 917 APDFPRP.INI
22.11.2005 01:43 115.712 mobackup0.exe
09.11.2005 21:34 69.632 uinst001.exe
15.10.2005 14:49 25 cdplayer.ini
11.10.2005 09:33 466.432 WRUninstall.dll
10.10.2005 09:29 155.648 ssleay32.dll
10.10.2005 09:29 684.032 libeay32.dll
26.08.2005 06:44 11.264 ModemLog_Standard 56000 bps Modem.txt
16.08.2005 20:29 335.872 Setup1.exe
16.08.2005 20:29 74.752 ST6UNST.EXE
05.08.2005 20:29 40 BO5150D.INI
05.08.2005 20:28 26 BRPP2KA.INI
03.08.2005 20:10 63 vbaddin.ini
03.08.2005 19:10 0 Sti_Trace.log
03.08.2005 18:16 4.161 ODBCINST.INI
03.08.2005 18:14 749 WindowsShell.Manifest
03.08.2005 18:13 36 vb.ini
20.07.2005 20:45 2.374.893 SUPERB~1.CAB
27.05.2005 00:22 10.752 hh.exe
07.04.2005 19:46 1.035.264 explorer.exe
22.11.2004 11:48 70.656 RSetupCE.exe
07.11.2004 09:53 544.768 OASrun.exe
03.08.2004 23:58 288.768 winhlp32.exe
03.08.2004 23:58 153.600 regedit.exe
03.08.2004 23:58 70.144 NOTEPAD.EXE
03.08.2004 23:57 50.688 twain_32.dll
15.03.2004 18:28 69.120 daemon.dll
19.12.2003 09:53 65.024 SOUNDMAN.EXE
03.09.2002 12:02 72.192 unlite3.exe
15.07.2002 01:50 59.392 UnDeploy.exe
18.01.2002 17:12 112 ActiveSkin.INI
23.08.2001 13:00 25.600 twunk_32.exe
23.08.2001 13:00 49.680 twunk_16.exe
23.08.2001 13:00 94.800 twain.dll
23.08.2001 13:00 82.944 clock.avi
23.08.2001 13:00 1.405 msdfmap.ini
23.08.2001 13:00 48.680 winnt256.bmp
23.08.2001 13:00 18.944 vmmreg32.dll
23.08.2001 13:00 48.680 winnt.bmp
23.08.2001 13:00 2 desktop.ini
23.08.2001 13:00 15.872 TASKMAN.EXE
23.08.2001 13:00 80 explorer.scf
23.08.2001 13:00 34.818 wmprfDEU.prx
23.08.2001 13:00 257.568 winhelp.exe
23.08.2001 13:00 707 _default.pif
23.06.2000 19:46 31.712 WMPrfDAN.prx
07.09.1999 10:01 67.072 bitdeins.exe
03.03.1999 11:49 6.367 Gwpreset.ini
03.03.1999 11:35 3.282 Express.eqx
29.10.1998 16:45 306.688 IsUninst.exe
21.10.1998 17:43 328.704 IsUn0407.exe
06.02.1998 22:35 304.128 unin0407.exe
05.11.1996 15:13 299.008 uninst.exe
100 Datei(en) 20.282.868 Bytes
0 Verzeichnis(se), 35.581.444.096 Bytes frei

Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: B8E8-F28C

Verzeichnis von C:\WINDOWS\Temp

22.12.2006 10:29 16.384 Perflib_Perfdata_7b4.dat
17.12.2006 10:21 0 T30DebugLogFile.txt
2 Datei(en) 16.384 Bytes
0 Verzeichnis(se), 35.581.444.096 Bytes frei


Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: B8E8-F28C

Verzeichnis von C:\WINDOWS\Downloaded Program Files

08.08.2006 11:45 576 kavwebscan.inf
13.07.2006 11:44 1.180 HWTest.INF
13.07.2006 11:43 15.800 HWTEST.OCX
31.05.2006 03:15 10 oscan81.ocx_x
03.08.2005 18:14 65 desktop.ini
5 Datei(en) 17.631 Bytes
0 Verzeichnis(se), 35.581.444.096 Bytes frei



Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: B8E8-F28C

Verzeichnis von C:\

22.12.2006 11:30 0 sys.txt
22.12.2006 11:30 495 down.txt
22.12.2006 11:30 346 tmp.txt
22.12.2006 11:29 5.376 system.txt
22.12.2006 11:29 543 systemtemp.txt
22.12.2006 11:29 117.173 system32.txt
22.12.2006 11:26 20.453 ComboFix.txt
22.12.2006 10:39 20.650 ASLog.txt
22.12.2006 10:29 1.073.270.784 hiberfil.sys
22.12.2006 10:29 803.209.216 pagefile.sys
16.12.2006 15:57 194 boot.ini
04.12.2006 17:50 13.030 PDOXUSRS.NET
28.10.2006 18:35 184 Setup.log
04.09.2006 23:57 190 drwtsn32.log
08.04.2006 10:50 1.120 INSTALL.LOG
10.03.2006 11:43 213.102 MSDELog.log
03.08.2005 18:21 460 rarreg.key
03.08.2005 18:16 0 IO.SYS
03.08.2005 18:16 0 MSDOS.SYS
03.08.2004 21:59 251.184 ntldr
03.08.2004 21:38 47.564 NTDETECT.COM
23.08.2001 13:00 4.952 bootfont.bin
24.05.2001 11:59 162.304 UNWISE.EXE
23 Datei(en) 1.877.339.320 Bytes
0 Verzeichnis(se), 35.581.440.000 Bytes frei


Danke
Micha.79
__________
Gruß
Micha.79
Seitenanfang Seitenende
22.12.2006, 12:02
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#2 ««
ServiceFilter.zip
http://virus-protect.org/artikel/tools/ServiceFilter.zip

- entzippen
- doppelklick auf die datei ServiceFilter.vbs
- versions-nummer bestätigen
- scannen
- öffnen von wordpad oder editor erlauben
- POST_THIS.TXT abkopieren

««
Die XP-Firewall wieder aktivieren [Windows-Firewall/Gemeinsame Nutzung der Internetverbindung]
http://www.wintotal.de/Tipps/Eintrag.php?TID=1157
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
22.12.2006, 12:15
Micha.79
Member

Themenstarter

Beiträge: 16
#3 hi, hier das ergebnis. werde mal den hinweis auf wintotal auch mal ausprobieren.

The script did not recognize the services listed below.
This does not mean that they are a problem.

To copy the entire contents of this document for posting:
At the top of this window click "Edit" then "Select All"
Next click "Edit" again then "Copy"
Now right click in the forum post box then click "Paste"

########################################

ServiceFilter 1.1
by rand1038

Microsoft Windows XP Professional
Version: 5.1.2600 Service Pack 2
Dez 22, 2006 12:12:18


---> Begin Service Listing <---

Unknown Service # 1
Service Name: Adobe LM Service
Display Name: Adobe LM Service
Start Mode: Manual
Start Name: LocalSystem
Description: AdobeLM ...
Service Type: Own Process
Path: "c:\programme\gemeinsame dateien\adobe systems shared\service\adobelmsvc.exe"
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 2
Service Name: Adpurpcnbid
Display Name: Adpurpcnbid
Start Mode: Manual
Start Name:
Description: ...
Service Type: Own Process
Path:
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 3
Service Name: AntiVirScheduler
Display Name: AntiVir Scheduler
Start Mode: Auto
Start Name: LocalSystem
Description: Dienst zur Planung und Steuerung von Prüf- und Updateaufgaben der AntiVir PersonalEdition ...
Service Type: Own Process
Path: c:\programme\antivir personaledition classic\sched.exe
State: Running
Process ID: 1772
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service # 4
Service Name: AntiVirService
Display Name: AntiVir PersonalEdition Classic Service
Start Mode: Auto
Start Name: LocalSystem
Description: Echtzeit Virenschutz durch H+BEDV AntiVir ...
Service Type: Own Process
Path: c:\programme\antivir personaledition classic\avguard.exe
State: Running
Process ID: 1784
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service #5
Service Name: Apache2
Display Name: Apache2
Start Mode: Auto
Start Name: LocalSystem
Description: Apache/2.2.0 (Win32) DAV/2 mod_ssl/2.2.0 OpenSSL/0.9.8a mod_autoindex_color ...
Service Type: Own Process
Path: "c:\programme\xampp\xampp\apache\bin\apache.exe" -k runservice
State: Running
Process ID: 1796
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service #6
Service Name: aspnet_state
Display Name: ASP.NET State Service
Start Mode: Manual
Start Name: NT AUTHORITY\NetworkService
Description: Provides support for out-of-process session states for ASP.NET. If this service is stopped, ...
Service Type: Own Process
Path: c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 7
Service Name: Brother XP spl Service
Display Name: BrSplService
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\windows\system32\brsvc01a.exe
State: Running
Process ID: 1272
Started: Wahr
Exit Code: 0
Accept Pause: Wahr
Accept Stop: Wahr

Unknown Service # 8
Service Name: clr_optimization_v2.0.50727_32
Display Name: .NET Runtime Optimization Service v2.0.50727_X86
Start Mode: Manual
Start Name: LocalSystem
Description: Microsoft .NET Framework ...
Service Type: Own Process
Path: c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 9
Service Name: FileZilla Server
Display Name: FileZilla Server FTP server
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\programme\xampp\xampp\filezillaftp\filezillaserver.exe
State: Running
Process ID: 1872
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service #10
Service Name: Fix-It Task Manager
Display Name: Fix-It Task Manager
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\progra~1\vcom\fix-it\mxtask.exe -service
State: Running
Process ID: 1900
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service # 11
Service Name: IDriverT
Display Name: InstallDriver Table Manager
Start Mode: Manual
Start Name: LocalSystem
Description: Provides support for the Running Object Table for InstallShield ...
Service Type: Own Process
Path: "c:\programme\gemeinsame dateien\installshield\driver\11\intel 32\idrivert.exe"
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 12
Service Name: iPod Service
Display Name: iPod Service
Start Mode: Manual
Start Name: LocalSystem
Description: iPod hardware management ...
Service Type: Own Process
Path: "c:\programme\ipod\bin\ipodservice.exe"
State: Running
Process ID: 4088
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service #13
Service Name: Macromedia Licensing Service
Display Name: Macromedia Licensing Service
Start Mode: Manual
Start Name: LocalSystem
Description: Provides authentication services for Macromedia ...
Service Type: Own Process
Path: "c:\programme\gemeinsame dateien\macromedia shared\service\macromedia licensing.exe"
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 14
Service Name: MSSQL$PINNACLESYS
Display Name: MSSQL$PINNACLESYS
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: "c:\programme\pinnacle\mediaserver\microsoft sql server\mssql$pinnaclesys\binn\sqlservr.exe" -spinnaclesys
State: Running
Process ID: 1972
Started: Wahr
Exit Code: 0
Accept Pause: Wahr
Accept Stop: Wahr

Unknown Service # 15
Service Name: MSSQLServerADHelper
Display Name: MSSQLServerADHelper
Start Mode: Manual
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: "c:\programme\microsoft sql server\80\tools\binn\sqladhlp.exe"
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service #16
Service Name: mysql
Display Name: mysql
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\programme\xampp\xampp\mysql\bin\mysqld-nt.exe --defaults-file=c:\programme\xampp\xampp\mysql\bin\my.cnf mysql
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1067
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service #17
Service Name: ose
Display Name: Office Source Engine
Start Mode: Manual
Start Name: LocalSystem
Description: Saves installation files used for updates and repairs and is required for the downloading of Setup ...
Service Type: Own Process
Path: "c:\programme\gemeinsame dateien\microsoft shared\source engine\ose.exe"
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 18
Service Name: PinnacleSys.MediaServer
Display Name: Pinnacle Systems Media Service
Start Mode: Auto
Start Name: LocalSystem
Description: Provides Media Database and Media related services like Transcoding, Watchfolder, ... to Pinnacle ...
Service Type: Own Process
Path: c:\programme\pinnacle\shared files\programs\mediaserver\pmshost.exe
State: Running
Process ID: 1480
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service # 19
Service Name: SQLAgent$PINNACLESYS
Display Name: SQLAgent$PINNACLESYS
Start Mode: Manual
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: "c:\programme\pinnacle\mediaserver\microsoft sql server\mssql$pinnaclesys\binn\sqlagent.exe" -i pinnaclesys
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service #20
Service Name: SwPrv
Display Name: MS Software Shadow Copy Provider
Start Mode: Manual
Start Name: LocalSystem
Description: Verwaltet Software-basierte Schattenkopien des Volumeschattenkopie-Dienstes. Software-basierte ...
Service Type: Own Process
Path: c:\windows\system32\dllhost.exe /processid:{01ddee34-aae9-496f-bdfe-ede51a0f52be}
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service #21
Service Name: winvnc
Display Name: VNC Server
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: "c:\programme\tightvnc\winvnc.exe" -service
State: Running
Process ID: 1000
Started: Wahr
Exit Code: 0
Accept Pause: Falsch
Accept Stop: Wahr

Unknown Service # 22
Service Name: WMPNetworkSvc
Display Name: Windows Media Player-Netzwerkfreigabedienst
Start Mode: Manual
Start Name: NT AUTHORITY\NetworkService
Description: Gibt Windows Media Player-Bibliotheken mithilfe des universellen Plug & Play für andere Players ...
Service Type: Own Process
Path: "c:\programme\windows media player\wmpnetwk.exe"
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

Unknown Service # 23
Service Name: WudfSvc
Display Name: Windows Driver Foundation - User-mode Driver Framework
Start Mode: Manual
Start Name: LocalSystem
Description: Manages user-mode driver host ...
Service Type: Share Process
Path: c:\windows\system32\svchost.exe -k wudfservicegroup
State: Stopped
Process ID: 0
Started: Falsch
Exit Code: 1077
Accept Pause: Falsch
Accept Stop: Falsch

---> End Service Listing <---

There are 103 Win32 services on this machine.
23 were unrecognized.

Script Execution Time: 2,4375 seconds.
__________
Gruß
Micha.79
Seitenanfang Seitenende
23.12.2006, 12:44
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#4 poste dieses log
http://virus-protect.org/registry_stuff.html
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
26.12.2006, 23:52
Micha.79
Member

Themenstarter

Beiträge: 16
#5 hallo, mittlerweile kann ich die windows firewall einstellung wirder öffen.
habe den tipp auf wintotal befolgt.

hier die log datei:


edit

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=dword:00000001
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]


__________
Gruß
Micha.79
Seitenanfang Seitenende
27.12.2006, 12:27
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#6 Micha.79

««
gehe in die registry
Start - Ausführen - regedit

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=dword:00000001 - in 0 aendern

««
Rechner neustarten

dann sollte wieder alles i.o. sein ;)
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
03.01.2007, 17:40
Micha.79
Member

Themenstarter

Beiträge: 16
#7 danke, funktioniert wieder. super!!!!

gruß
micha.79
__________
Gruß
Micha.79
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
  • »
  • »
  • »
  • »
  • »
Seite(n): 1