Home » Viren, Trojaner & Malware Forum » Drive Cleaner Pop-Up, Logfiles erstellt und DriveCleaner benutzt - und weiter? » Themenansicht

Drive Cleaner Pop-Up, Logfiles erstellt und DriveCleaner benutzt - und weiter?
#0
13.07.2007, 11:43
suulchen
...neu hier

Beiträge: 1
#1 Hallöchen, ich bin Susann und hab Euch über Google gefunden. Ich habe mich schon durch diverse Threads gewühlt, wo immer steht, man soll bestimmt Schritte durchführen (Clean Up ect.) und dann die entsprechenden Logs posten. Hier sind meine Logs, ich hoffe ihr könnt mir weiterhelfen:
Datentr„ger in Laufwerk C: ist System
Volumeseriennummer: 444B-CFC2

Verzeichnis von C:\WINDOWS\system32

2007-07-13 08:04 13,646 wpa.dbl
2007-07-11 16:59 139,776 swreg.exe
2007-07-11 08:05 415,320 perfh009.dat
2007-07-11 08:05 68,408 perfc009.dat
2007-07-11 08:05 429,726 perfh007.dat
2007-07-11 08:05 81,060 perfc007.dat
2007-07-11 08:05 969,018 PerfStringBackup.INI
2007-06-28 09:57 16,256,984 MRT.exe
2007-05-30 14:27 43,520 CmdLineExt03.dll
2007-05-16 17:11 683,520 inetcomm.dll
2007-05-08 10:59 3,583,488 mshtml.dll
2007-04-25 16:22 144,896 schannel.dll
2007-04-25 09:42 822,784 wininet.dll
2007-04-25 09:42 232,960 webcheck.dll
2007-04-25 09:42 1,152,000 urlmon.dll
2007-04-25 09:42 670,720 mstime.dll
2007-04-25 09:42 102,400 occache.dll
2007-04-25 09:42 105,984 url.dll
2007-04-25 09:42 193,024 msrating.dll
2007-04-25 09:42 477,696 mshtmled.dll
2007-04-25 09:41 459,264 msfeeds.dll
2007-04-25 09:41 52,224 msfeedsbs.dll
2007-04-25 09:41 27,648 jsproxy.dll
2007-04-25 09:41 1,824,768 inetcpl.cpl
2007-04-25 09:41 267,776 iertutil.dll
2007-04-25 09:41 6,058,496 ieframe.dll
2007-04-25 09:41 44,544 iernonce.dll
2007-04-25 09:41 384,512 iedkcs32.dll
2007-04-25 09:41 383,488 ieapfltr.dll
2007-04-25 09:41 153,088 ieakeng.dll
2007-04-25 09:41 132,608 extmgr.dll
2007-04-25 09:41 124,928 advpack.dll
2007-04-25 09:41 230,400 ieaksie.dll
2007-04-24 16:26 13,824 ieudinit.exe
2007-04-24 11:58 56,832 ie4uinit.exe
2007-04-24 09:34 161,792 ieakui.dll
2007-04-18 18:13 2,854,400 msi.dll
2007-04-17 11:32 2,455,488 ieapfltr.dat
2007-04-16 22:47 33,624 wups.dll
2007-04-16 22:47 30,040 wuapi.dll.mui
2007-04-16 22:47 30,040 wuaucpl.cpl.mui
2007-04-16 22:45 1,710,936 wuaueng.dll
2007-04-16 22:45 549,720 wuapi.dll
2007-04-16 22:45 325,976 wucltui.dll
2007-04-16 22:45 216,408 wuaucpl.cpl
2007-04-16 22:45 203,096 wuweb.dll
2007-04-16 22:45 92,504 cdm.dll
2007-04-16 22:45 20,824 wuaueng.dll.mui
2007-04-16 22:45 43,352 wups2.dll
2007-04-16 22:45 53,080 wuauclt.exe
2007-04-16 22:44 34,136 wucltui.dll.mui
2007-04-16 22:44 271,224 mucltui.dll
2007-04-16 22:44 208,248 muweb.dll
2007-04-16 22:44 30,072 mucltui.dll.mui
2007-04-16 17:53 1,058,304 kernel32.dll
2007-04-13 03:21 271,360 mscoree.dll
2007-04-04 07:41 558,344 FNTCACHE.DAT

Datentr„ger in Laufwerk C: ist System
Volumeseriennummer: 444B-CFC2

Verzeichnis von C:\DOKUME~1\Erisule\LOKALE~1\Temp

2007-07-13 11:39 917,504 MFPL7014.DLL
2007-07-13 11:35 289 datFind-1.zip
2007-07-13 11:29 289 datFind.zip
2007-07-13 11:22 6,062 embird_history.txt
2007-07-13 11:20 127,378 avenger-1.zip
2007-07-13 11:16 127,378 avenger.zip
2007-07-13 08:40 16,384 ~DF3654.tmp
2007-07-12 12:48 2,912 java_install_reg.log
2007-07-11 14:07 16,384 ~DF294C.tmp
2007-07-11 13:26 32,768 ~DFA58E.tmp
2007-07-11 13:25 0 gd776.tmp
2007-07-11 13:25 0 gd776.tmp.gg
2007-07-11 12:24 1,298 TWAIN.LOG
2007-07-11 12:24 3 Twain001.Mtx
2007-07-11 12:24 156 Twunk001.MTX
2007-07-11 08:07 14,921 netfxsl.log
2007-07-11 08:07 1,547 NetFxUpdate_v1.1.4322.log
2007-07-11 08:05 5,012 ASPNETSetup_00000.log
2007-07-10 10:57 2,096 embird_filter.txt
2007-07-10 08:00 16,384 ~DF55E4.tmp
2007-07-06 07:35 0 WFT25.tmp
2007-07-05 20:59 0 WFTED4.tmp
2007-07-05 20:54 0 DIREB6.tmp
2007-07-05 20:14 506 MSI4bc34.LOG
2007-07-05 10:00 16,384 ~DF70F2.tmp
2007-07-04 19:57 0 Twunk002.MTX
2007-07-03 14:20 16,384 ~DF9167.tmp
2007-07-01 18:59 16,384 ~DF6B9E.tmp
2007-06-29 10:41 432 sdxDE.tmp
2007-06-29 10:14 744 sdx6F.tmp
2007-06-29 10:12 16,384 ~DF41B9.tmp
2007-06-28 10:07 16,384 ~DF1391.tmp
2007-06-27 19:23 74,860 DragonV3.pes
2007-06-27 19:23 1,020 DragonV3.edr
2007-06-27 11:02 16,384 ~DFD20C.tmp
2007-06-26 10:10 16,384 ~DF128F.tmp
2007-06-26 09:52 16,384 ~DF95BA.tmp
2007-06-19 17:25 2,096 embird_filter.txt.bak
38 Datei(en) 1,499,495 Bytes
0 Verzeichnis(se), 9,570,926,592 Bytes frei

Datentr„ger in Laufwerk C: ist System
Volumeseriennummer: 444B-CFC2

Verzeichnis von C:\WINDOWS

2007-07-13 11:22 197 password.klc
2007-07-13 08:41 1,889,239 WindowsUpdate.log
2007-07-13 08:04 159 wiadebug.log
2007-07-13 08:04 50 wiaservc.log
2007-07-13 08:04 0 0.log
2007-07-13 08:04 2,048 bootstat.dat
2007-07-13 00:29 32,580 SchedLgU.Txt
2007-07-13 00:11 13,411 wincmd.ini
2007-07-12 19:23 0 mfont.dat
2007-07-12 18:06 35 A5W.INI
2007-07-11 16:49 116 NeroDigital.ini
2007-07-10 22:44 54,156 QTFont.qfn
2007-07-10 15:03 55 popcinfo.dat
2007-07-05 21:01 1,107 win.ini
2007-07-04 19:51 30 Iedit_.INI
2007-07-04 19:21 104,960 catchme.exe
2007-06-29 10:18 21,081 setupapi.log
2007-06-25 14:28 9,659 mozver.dat
2007-06-17 00:11 51,200 nircmd.exe
2007-06-15 10:45 2,394 ocmsn.log
2007-06-15 10:45 46,885 iis6.log
2007-06-15 10:45 19,747 tsoc.log
2007-06-15 10:45 8,747 ntdtcsetup.log
2007-06-15 10:45 14,385 comsetup.log
2007-06-15 10:45 2,177 tabletoc.log
2007-06-15 10:45 1,374 imsins.log
2007-06-15 10:45 18,711 KB929123.log
2007-06-15 10:45 7,581 netfxocm.log
2007-06-15 10:45 20,412 ocgen.log
2007-06-15 10:45 2,975 MedCtrOC.log
2007-06-15 10:45 2,121 msgsocm.log
2007-06-15 10:45 43,277 FaxSetup.log
2007-06-15 10:45 13,230 msmqinst.log
2007-06-15 10:45 1,374 imsins.BAK
2007-06-15 10:45 18,015 KB935840.log
2007-06-15 10:43 17,656 KB935839.log
2007-06-15 10:43 63 vbaddin.ini
2007-06-15 10:42 23,161 KB933566-IE7.log
2007-06-15 10:42 8,912 updspapi.log
2007-06-02 14:02 89,203 Run32A50.mch
2007-05-30 15:20 1,802 ih8.config.xml.log
2007-05-30 15:20 16,370 ih8.hotfix.xml.log
2007-05-30 15:20 42,713 fshfcntl.log
2007-05-30 15:14 8,737 fsiuupd.log
2007-05-30 15:13 104 NullProdClean.log
2007-05-30 15:13 2,638 FSISU.log
2007-05-23 14:03 7,668 KB927891.log
2007-05-10 13:04 18,009 KB931768-IE7.log
2007-05-10 13:03 10,661 KB930916.log
2007-05-02 00:48 1,409 QTFont.for
2007-04-24 08:08 103,280 ntbtlog.txt

Datentr„ger in Laufwerk C: ist System
Volumeseriennummer: 444B-CFC2

Verzeichnis von C:\WINDOWS\Temp

2007-07-13 08:04 409 WGANotify.settings
2007-07-13 08:04 255 WGAErrLog.txt
2007-07-11 08:09 9,986 NetFxUpdate_v1.1.4322.log
2007-07-05 19:47 502 MSIa3363.LOG
2007-07-05 19:46 502 MSIa3362.LOG
2007-07-05 19:46 502 MSIa3361.LOG
2007-07-05 19:46 502 MSIa3360.LOG
2007-07-05 19:46 502 MSIa335f.LOG
2007-07-05 19:46 502 MSIa335e.LOG
2007-07-05 19:46 502 MSIa335d.LOG
2007-07-05 19:45 502 MSIa335c.LOG
2007-07-05 19:45 502 MSIa335b.LOG
2007-06-29 10:14 14,933 PQ_DEBUG.TXT
2007-05-30 15:14 1,972 iufsav.log
2007-05-27 14:27 0 AVP55.tmp
2007-05-27 14:27 0 AVP56.tmp
2007-05-10 13:04 1,656 VisioCA.log
2007-05-04 10:28 0 AVPBB0E.tmp
2007-05-04 10:28 0 AVPBB0F.tmp
2007-04-19 02:06 0 AVP236B.tmp
2007-04-19 02:06 0 AVP236C.tmp
2007-04-19 02:06 0 AVP2369.tmp
2007-04-19 02:06 0 AVP236A.tmp
2007-04-19 02:06 0 AVP2368.tmp
2007-04-19 02:06 0 AVP2367.tmp
2007-04-15 01:09 0 AVP1315.tmp
2007-04-15 01:09 0 AVP1316.tmp

Datentr„ger in Laufwerk C: ist System
Volumeseriennummer: 444B-CFC2

Verzeichnis von C:\WINDOWS\Downloaded Program Files

2006-11-09 15:36 5,019 swflash.inf
2006-03-02 15:40 1,271 erma.inf
2006-01-25 13:43 367 LegitCheckControl.inf
2005-11-28 12:57 135,168 Oberongamesloader.dll
2005-11-07 16:47 257 Oberongamesloader.inf
2005-05-26 05:19 293 muweb.inf
2005-01-08 20:56 65 desktop.ini
2004-08-18 15:47 241 popcaploader.inf
2004-08-13 18:10 894,544 EPUWALcontrol.dll
2004-08-13 18:02 539 EPUWALcontrol.inf
2004-06-15 09:52 221,184 zylomloader.dll
2004-06-01 21:32 2,072 vscanmsx.dat
2004-06-01 01:00 1,340,638 virscan9.dat
2004-06-01 01:00 375,767 virscan6.dat
2004-06-01 01:00 224 zdone.dat
2004-06-01 01:00 119,976 naveng32.dll
2004-06-01 01:00 656,552 navex32a.dll
2004-06-01 01:00 32 virscant.dat
2004-06-01 01:00 1,085,131 virscan8.dat
2004-06-01 01:00 2,390 catalog.dat
2004-06-01 01:00 70,692 virscan5.dat
2004-06-01 01:00 43,407 tcscan7.dat
2004-06-01 01:00 316,438 virscan4.dat
2004-06-01 01:00 143,912 virscan3.dat
2004-06-01 01:00 83,120 scrauth.dat
2004-06-01 01:00 527,076 virscan2.dat
2004-06-01 01:00 1,148,967 virscan7.dat
2004-06-01 01:00 8,137 symaveng.cat
2004-06-01 01:00 900 symaveng.inf
2004-06-01 01:00 3,051 tcdefs.dat
2004-06-01 01:00 2,225 v.sig
2004-06-01 01:00 48,797 tcscan8.dat
2004-06-01 01:00 143,956 tcscan9.dat
2004-06-01 01:00 453 tinf.dat
2004-06-01 01:00 148 tinfidx.dat
2004-06-01 01:00 1,957 tinfl.dat
2004-06-01 01:00 34,682 tscan1.dat
2004-06-01 01:00 1,179 tscan1hd.dat
2004-06-01 01:00 871,795 virscan1.dat
2004-06-01 01:00 5,382 v.grd
2004-06-01 01:00 106,244 virscan.inf
2004-05-18 12:40 229 zylomloader.inf
2004-04-07 11:14 289 Setup.inf
2004-02-24 18:32 9,883,524 QuickTimeInstallCache.qdat
2004-01-25 18:26 262 aolcinst.inf
2004-01-12 09:49 885,248 EPScontrol.dll
2004-01-12 09:44 529 EPScontrol.inf
2004-01-07 16:35 1,134 Cult.inf
2003-10-09 11:32 144 QTPlugin.inf
2003-09-09 18:39 124,352 yinsthelper.dll
2003-09-09 18:39 323 yinst.inf
2003-08-25 19:12 1,096 iuctl.inf
2003-08-22 22:10 226 opuc.inf
2003-05-29 15:00 160,864 messengerstatsclient.dll
2002-12-04 17:52 451,744 YPhotoDE.dll
2002-12-04 16:47 317 yphotoDE.inf
2001-10-31 12:37 118 uninst.bat
2000-07-12 04:02 36,864 fxfileop.dll
2000-01-20 16:25 1,162 Microsoft XML Parser for Java.osd
1997-10-14 19:52 697 DirectAnimation Java Classes.osd
60 Datei(en) 19,953,370 Bytes
0 Verzeichnis(se), 9,570,918,400 Bytes frei


Datentr„ger in Laufwerk C: ist System
Volumeseriennummer: 444B-CFC2

Verzeichnis von C:\

2007-07-13 11:44 0 sys.txt
2007-07-13 11:43 3,298 down.txt
2007-07-13 11:43 21,379 tmp.txt
2007-07-13 11:43 9,265 system.txt
2007-07-13 11:42 2,156 systemtemp.txt
2007-07-13 11:42 122,012 system32.txt
2007-07-13 11:32 21,379 temp.txt
2007-07-13 11:32 9,265 windows.txt
2007-07-13 08:04 1,073,270,784 hiberfil.sys
2007-07-13 08:04 1,073,741,824 pagefile.sys
2007-07-11 14:07 488 hpfr5550.xml
2007-07-06 07:37 1,462 InstallHelper.log
2007-03-23 22:21 0 DataCopy.log
2007-03-13 13:31 4,096 Thumbs.db

Und hier das Log von Hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 11:44, on 2007-07-13
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\F-Secure Internet Security\Anti-Virus\fsgk32st.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\FSGK32.EXE
C:\Programme\F-Secure Internet Security\Common\FSMA32.EXE
C:\WINDOWS\System32\svchost.exe
C:\Programme\F-Secure Internet Security\Common\FSMB32.EXE
C:\WINDOWS\system32\Tablet.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\htpatch.exe
C:\Programme\F-Secure Internet Security\Common\FCH32.EXE
C:\Programme\Microsoft IntelliType Pro\type32.exe
C:\Programme\F-Secure Internet Security\Common\FSM32.EXE
C:\WINDOWS\system32\Tablet.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\fsqh.exe
C:\Programme\F-Secure Internet Security\Common\FAMEH32.EXE
C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Programme\F-Secure Internet Security\FSAUA\program\fsaua.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\fssm32.exe
C:\Programme\F-Secure Internet Security\FWES\Program\fsdfwd.exe
C:\Programme\F-Secure Internet Security\FSPC\fspc.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\fsav32.exe
C:\Programme\F-Secure Internet Security\FSGUI\fsguidll.exe
C:\Programme\ArcorOnline\AOButler.exe
d:\mozilla\firefox.exe
C:\DOKUME~1\Erisule\LOKALE~1\Temp\Temporäres Verzeichnis 1 für avenger-1.zip\avenger.exe
C:\Programme\IncrediMail\bin\IncMail.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\WINDOWS\system32\NOTEPAD.EXE
D:\hijackthis199\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.arcor.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.arcor.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.arcor.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.arcor.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.arcor.de
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [type32] "C:\Programme\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Programme\F-Secure Internet Security\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Programme\F-Secure Internet Security\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Download with Go!Zilla - file://D:\Go!Zilla\download-with-gozilla.html
O8 - Extra context menu item: In Adobe PDF konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: In vorhandene PDF-Datei konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://D:\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Erwachsene... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Programme\F-Secure Internet Security\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Programme\F-Secure Internet Security\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Erwachsene... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Programme\F-Secure Internet Security\FSPC\fspcmsie.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - E:\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - E:\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O10 - Unknown file in Winsock LSP: c:\programme\f-secure internet security\fsps\program\fslsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/DE/install.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EPUWALControl_v1-0-3-12.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://game13.zylomgames.com/activex/zylomloader.cab
O16 - DPF: {D2296475-B79C-44A9-9B2C-32B5DC6B8B45} (PhotosCtrlDE Class) - http://de.photos.groups.yahoo.com/ocx/de/yexplorer1_9de.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://www.popcap.com/games/popcaploader_v6.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://msnde.oberon-media.com/online2/MSN_INTL_GERMANY/bejeweled2/Oberongamesloader.cab
O16 - DPF: {E855A2D4-987E-4F3B-A51C-64D10A7E2479} (EPSImageControl Class) - http://tools.ebayimg.com/eps/activex/EPSControl_v1-0-3-0.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6395BA24-3B5D-4200-8C48-FECB9782F649}: NameServer = 195.50.140.252 195.50.140.114
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Active File Monitor (AdobeActiveFileMonitor) - Unknown owner - C:\Programme\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Programme\F-Secure Internet Security\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Programme\F-Secure Internet Security\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Programme\F-Secure Internet Security\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Programme\F-Secure Internet Security\Common\FSMA32.EXE
O23 - Service: GoogleDesktopManager - Google - C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Photoshop Elements Device Connect (PhotoshopElementsDeviceConnect) - Unknown owner - C:\Programme\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe


Ich sag schon mal vielen lieben Dank vorab!!!

Liebe Grüßle
Susann
Seitenanfang Seitenende
24.07.2007, 11:18
raman
Moderator

Beiträge: 7805
#2 Tauchen diese Popups immer auf, oder nur beim besuch bestimmter Seite?

Poste bitte noch ein Combofix Report: http://board.protecus.de/t23188.htm
__________
MfG Ralf
SEO-Spam Hunter
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
Seite(n): 1