Home » Spyware & Browser Hijacker Support Forum » CasOnline?Internet Explorer hängt sich bei Active X/Flash auf! » Themenansicht
CasOnline?Internet Explorer hängt sich bei Active X/Flash auf! |
||
|---|---|---|
| #0
| ||
|
25.11.2007, 19:26
...neu hier
Beiträge: 2 |
||
 
|
|
|
|
25.11.2007, 20:43
Member
 Beiträge: 279 |
#2
Versuche mal diese: http://forum.hijackthis.de/attachment.php?attachmentid=2073&stc=1&d=1182064756
__________ Yourhighness Yourhighness' Seite / Mein Blog (Englisch) |
|
|
|
|
|
|
27.11.2007, 10:14
...neu hier
Themenstarter Beiträge: 2 |
#3
Zitat Yourhighness posteteHabe ich kommt das er die datei nicht gefunden hat! Komischer Weise nachdem wir diese Scans gemacht haben geht das wieder, ABER nun bekommen wir ne Fehlmeldung beim Startem des Internet Explorers ":  2559A1F4-21D7-BDAF-00C04F60B9F0)" wurde nicht gefunden. Stellen sie sicher das der Pfad bzw. die Internetadresse richtig ist! man kann dann zwar ins Netz aber wenn man dann in dem Fenster eine Adresse eingibt öffnet sich diese in einem neuen fenster und ich musste flash neu laden, was mir sehr wunderte, es gab es wäre eine ältere Version oder nicht vorhanden!
|
|
|
|
|
|
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!
bitte erst » hier kostenlos registrieren!!
Folgende Themen könnten Dich auch interessieren:
Seite(n): 1
Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten
sobald ich den Internet Explorer öffne und auf bestimmte Seiten will zum Beispiel www.neckermann.de dann hängt der sich auf, also wo jegliche Flash Animation ist, halt active x geht gar nicht mehr! McAfee findet halt
CasOnline soll ein Programm sein was halt bösartig ist, aber kann es nicht löschen! Bitte im Hilfe!!!!!!
ComboFix 07-11-19.3 - Carolin 2007-11-25 18:23:52.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1031.18.334 [GMT 1:00]
ausgeführt von:: C:\Users\Carolin\Desktop\ComboFix.exe
* Neuer Wiederherstellungspunkt wurde erstellt
.
((((((((((((((((((((((( Dateien erstellt von 2007-10-25 bis 2007-11-25 ))))))))))))))))))))))))))))))
.
2007-11-18 22:15 <DIR> d-------- C:\Users\Carolin\AppData\Roaming\skypePM
2007-11-18 22:15 32 --a------ C:\Users\All Users\ezsid.dat
2007-11-18 22:15 32 --a------ C:\ProgramData\ezsid.dat
2007-11-18 22:14 <DIR> d-------- C:\Users\Carolin\AppData\Roaming\Skype
2007-11-18 22:11 <DIR> d-------- C:\Users\All Users\Skype
2007-11-18 22:11 <DIR> d-------- C:\ProgramData\Skype
2007-11-18 22:11 <DIR> d-------- C:\Program Files\Skype
2007-11-18 22:11 <DIR> d-------- C:\Program Files\Common Files\Skype
2007-11-15 03:04 2,923,520 --a------ C:\Windows\explorer.exe
2007-11-12 18:44 385,536 --a------ C:\wtm9403.exe
2007-11-12 13:31 <DIR> dr------- C:\Windows\System32\config\systemprofile\Music
2007-10-26 16:37 <DIR> d-------- C:\Program Files\Rockstar Games
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-25 17:19 --------- d-----w C:\Program Files\Windows Live Safety Center
2007-11-25 17:12 --------- d-----w C:\Program Files\McAfee
2007-11-23 20:17 --------- d-----w C:\ProgramData\Roxio
2007-11-23 14:00 --------- d-----w C:\Program Files\Norton Security Scan
2007-11-18 02:01 1,244,672 ----a-w C:\Windows\System32\mcmde.dll
2007-11-15 02:04 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr
2007-11-15 02:04 67,584 ----a-w C:\Windows\System32\wlanhlp.dll
2007-11-15 02:04 542,720 ----a-w C:\Windows\System32\sysmain.dll
2007-11-15 02:04 502,784 ----a-w C:\Windows\System32\wlansvc.dll
2007-11-15 02:04 47,104 ----a-w C:\Windows\System32\wlanapi.dll
2007-11-15 02:04 3,504,824 ----a-w C:\Windows\System32\ntkrnlpa.exe
2007-11-15 02:04 3,471,032 ----a-w C:\Windows\System32\ntoskrnl.exe
2007-11-15 02:04 297,984 ----a-w C:\Windows\System32\wlansec.dll
2007-11-15 02:04 290,816 ----a-w C:\Windows\System32\wlanmsm.dll
2007-11-15 02:04 258,232 ----a-w C:\Windows\system32\drivers\acpi.sys
2007-11-15 02:04 24,064 ----a-w C:\Windows\System32\wtsapi32.dll
2007-11-15 02:04 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2007-11-15 02:02 8,704 ----a-w C:\Windows\System32\hcrstco.dll
2007-11-15 02:02 8,704 ----a-w C:\Windows\System32\hccoin.dll
2007-11-15 02:02 73,216 ----a-w C:\Windows\system32\drivers\usbccgp.sys
2007-11-15 02:02 5,888 ----a-w C:\Windows\system32\drivers\usbd.sys
2007-11-15 02:02 38,400 ----a-w C:\Windows\system32\drivers\usbehci.sys
2007-11-15 02:02 23,040 ----a-w C:\Windows\system32\drivers\usbuhci.sys
2007-11-15 02:02 224,768 ----a-w C:\Windows\system32\drivers\usbport.sys
2007-11-15 02:02 192,000 ----a-w C:\Windows\system32\drivers\usbhub.sys
2007-11-15 02:01 --------- d-----w C:\Program Files\Windows Mail
2007-11-12 14:46 --------- d-----w C:\Users\Carolin\AppData\Roaming\Azureus
2007-11-06 12:27 --------- d-----w C:\Program Files\ICQ6
2007-10-26 15:15 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-21 15:03 --------- d-----w C:\Program Files\Samsung
2007-10-18 21:21 --------- d-----w C:\Program Files\Microsoft Games
2007-10-18 20:34 --------- d---a-w C:\ProgramData\TEMP
2007-10-18 20:34 --------- d-----w C:\Program Files\TweakPower
2007-10-18 20:34 --------- d-----w C:\Program Files\Spyware Doctor
2007-10-18 20:34 --------- d-----w C:\Program Files\OpenAL
2007-10-17 17:31 --------- d-----w C:\ProgramData\McAfee
2007-10-17 17:31 --------- d-----w C:\Program Files\Common Files\McAfee
2007-10-17 17:29 --------- d-----w C:\Program Files\McAfee.com
2007-10-15 18:36 --------- d-----w C:\Program Files\Astonsoft
2007-10-14 12:38 --------- d-----w C:\Users\Carolin\AppData\Roaming\dvdcss
2007-10-14 11:39 --------- d-----w C:\Users\Carolin\AppData\Roaming\Media Player Classic
2007-10-14 11:38 --------- d-----w C:\Program Files\Satsuki Decoder Pack
2007-10-14 11:04 --------- d-----w C:\Program Files\ratDVD
2007-10-11 17:43 --------- d-----w C:\Program Files\Java
2007-10-11 10:13 8,147,968 ----a-w C:\Windows\System32\wmploc.DLL
2007-10-11 10:13 7,680 ----a-w C:\Windows\System32\spwmp.dll
2007-10-11 10:13 4,096 ----a-w C:\Windows\System32\dxmasf.dll
2007-10-11 10:13 356,864 ----a-w C:\Windows\System32\MediaMetadataHandler.dll
2007-10-11 10:11 56,320 ----a-w C:\Windows\System32\iesetup.dll
2007-10-11 10:11 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2007-10-11 10:11 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2007-10-11 10:09 84,480 ----a-w C:\Windows\System32\INETRES.dll
2007-10-11 10:09 788,992 ----a-w C:\Windows\System32\rpcrt4.dll
2007-10-11 10:09 737,792 ----a-w C:\Windows\System32\inetcomm.dll
2007-10-10 10:51 --------- d-----w C:\Program Files\Azureus
2007-10-08 00:55 --------- d-----w C:\Program Files\DedicatedServer
2007-10-07 16:33 --------- d-----w C:\Users\Carolin\AppData\Roaming\ICQ
2007-10-06 19:47 --------- d-----w C:\Program Files\Real
2007-10-06 19:47 --------- d-----w C:\Program Files\Common Files\xing shared
2007-10-06 19:47 --------- d-----w C:\Program Files\Common Files\Real
2007-10-06 13:49 --------- d-----w C:\Program Files\concept design
2007-10-06 08:17 --------- d-----w C:\ProgramData\eMule
2007-10-03 14:31 --------- d-----w C:\Program Files\RedlightCenter
2007-10-03 14:31 --------- d-----w C:\Program Files\Common Files\PocketSoft
2007-10-03 11:53 --------- d-----w C:\Users\Carolin\AppData\Roaming\Ahead
2007-10-02 11:09 --------- d-----w C:\Program Files\THQ
2007-10-02 11:04 --------- d-----w C:\Program Files\Google
2007-10-02 10:41 --------- d-----w C:\Program Files\The Weather Channel FW
2007-09-30 19:44 --------- d-----w C:\Users\Carolin\AppData\Roaming\PC Tools
2007-09-30 19:36 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2007-09-29 12:35 --------- d-----w C:\Program Files\Weight Watchers
2007-09-29 12:18 --------- d-----w C:\Program Files\Trillian
2007-09-29 07:33 --------- d-----w C:\Program Files\Midas
2007-09-25 16:01 --------- d-----w C:\ProgramData\Bluetooth
2007-09-25 15:58 --------- d-----w C:\Program Files\IVT Corporation
2007-09-01 06:14 22,016 ----a-w C:\Windows\System32\netiougc.exe
2007-09-01 06:14 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2007-08-29 18:43 174 --sha-w C:\Program Files\desktop.ini
2007-08-29 18:38 8,192 ----a-w C:\Windows\System32\riched32.dll
2007-08-29 18:38 77,824 ----a-w C:\Windows\System32\rascfg.dll
2007-08-29 18:38 694,784 ----a-w C:\Windows\System32\localspl.dll
2007-08-29 18:38 52,736 ----a-w C:\Windows\System32\rasdiag.dll
2007-08-29 18:38 384,000 ----a-w C:\Windows\System32\netcfgx.dll
2007-08-29 18:38 36,864 ----a-w C:\Windows\System32\cdd.dll
2007-08-29 18:38 33,280 ----a-w C:\Windows\System32\traffic.dll
2007-08-29 18:38 32,768 ----a-w C:\Windows\System32\rasmxs.dll
2007-08-29 18:38 286,208 ----a-w C:\Windows\System32\ipnathlp.dll
2007-08-29 18:38 22,016 ----a-w C:\Windows\System32\rasser.dll
2007-08-29 18:38 15,360 ----a-w C:\Windows\System32\pacerprf.dll
2007-08-29 18:38 134,656 ----a-w C:\Windows\System32\dps.dll
2007-08-29 18:38 13,824 ----a-w C:\Windows\System32\wshqos.dll
2007-08-29 18:38 13,824 ----a-w C:\Windows\System32\icsunattend.exe
2007-08-29 18:36 88,576 ----a-w C:\Windows\System32\avifil32.dll
2007-08-29 18:36 82,944 ----a-w C:\Windows\System32\mciavi32.dll
2007-08-29 18:36 8,138,240 ----a-w C:\Windows\System32\ssBranded.scr
2007-08-29 18:36 750,080 ----a-w C:\Windows\System32\qmgr.dll
2007-08-29 18:36 712,192 ----a-w C:\Windows\System32\WindowsCodecs.dll
2007-08-29 18:36 69,632 ----a-w C:\Windows\System32\sendmail.dll
2007-08-29 18:36 65,024 ----a-w C:\Windows\System32\avicap32.dll
2007-08-29 18:36 61,440 ----a-w C:\Windows\System32\ntprint.exe
2007-06-28 00:33 848 --sha-w C:\Windows\System32\KGyGaAvL.sys
.
(((((((((((((((((((((((((((( Autostart Punkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Eintrage & legitime Standardeintrage werden nicht angezeigt.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2006-11-02 13:35]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 13:36]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 15:46]
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2005-08-11 16:30]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Delete USB Error Key"="" []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-04-11 16:44]
"RtHDVCpl"="RtHDVCpl.exe" [2006-12-29 11:11 C:\Windows\RtHDVCpl.exe]
"ISUSScheduler"="c:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2005-08-11 16:30]
"IPHSend"="C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe" [2006-02-17 17:59]
"NvSvc"="RUNDLL32.exe" [2006-11-02 10:45 C:\Windows\System32\rundll32.exe]
"NvCplDaemon"="RUNDLL32.exe" [2006-11-02 10:45 C:\Windows\System32\rundll32.exe]
"NvMediaCenter"="RUNDLL32.exe" [2006-11-02 10:45 C:\Windows\System32\rundll32.exe]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-10-06 20:46]
"MskAgentexe"="C:\Program Files\McAfee\MSK\MskAgent.exe" [2007-01-17 14:30]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader - Schnellstart.lnk]
path=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader - Schnellstart.lnk
backup=C:\Windows\pss\Adobe Reader - Schnellstart.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
path=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
backup=C:\Windows\pss\Adobe Reader Synchronizer.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
2006-02-09 23:34 106496 --a------ C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]
2006-05-23 12:45 50760 --a------ C:\Program Files\Common Files\AOL\1176661974\ee\AOLSoftware.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 10:50 155648 --a------ C:\Windows\system32\NeroCheck.exe
R0 videX32;videX32;C:\Windows\system32\DRIVERS\videX32.sys
R0 xfilt;VIA SATA IDE Hot-plug Driver;C:\Windows\system32\DRIVERS\xfilt.sys
R1 DLARTL_M;DLARTL_M;C:\Windows\system32\Drivers\DLARTL_M.SYS
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service;C:\Windows\system32\DRIVERS\fetnd5bv.sys
R3 nvlddmkm;nvlddmkm;C:\Windows\system32\DRIVERS\nvlddmkm.sys
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\sscdbus.sys
S3 sscdmdfl;SAMSUNG Mobile Modem Filter;C:\Windows\system32\DRIVERS\sscdmdfl.sys
S3 sscdmdm;SAMSUNG Mobile Modem Drivers;C:\Windows\system32\DRIVERS\sscdmdm.sys
S4 viamraid;viamraid;C:\Windows\system32\drivers\viamraid.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5b6696dc-3088-11dc-b45e-0019db5466b2}]
\shell\AutoRun\command - L:\setup.exe
\shell\directx\command - L:\DirectX\dxsetup.exe
\shell\setup\command - L:\setup.exe
*Newly Created Service* - CATCHME
.
Inhalt des "geplante Tasks" Ordners
"2007-11-15 01:17:26 C:\Windows\Tasks\McDefragTask.job"
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe'
"2007-11-01 00:00:20 C:\Windows\Tasks\McQcTask.job"
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe
"2007-11-23 18:32:42 C:\Windows\Tasks\Norton Security Scan.job"
- C:\Program Files\Norton Security Scan\Nss.exe
"2007-11-25 01:30:34 C:\Windows\Tasks\User_Feed_Synchronization-{F536A5F1-7C53-4C20-BFD3-F402905BB8C1}.job"
- C:\Windows\system32\msfeedssync.exe
.
**************************************************************************
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-25 18:26:47
Windows 6.0.6000 NTFS
Scanne versteckte Prozesse...
Scanne versteckte Autostart Einträge...
Scanne versteckte Dateien...
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
**************************************************************************
.
Zeit der Fertigstellung: 2007-11-25 18:28:01
.
--- E O F ---
ComboFix 07-11-19.3 - Carolin 2007-11-25 18:23:52.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1031.18.334 [GMT 1:00]
ausgeführt von:: C:\Users\Carolin\Desktop\ComboFix.exe
* Neuer Wiederherstellungspunkt wurde erstellt
.
((((((((((((((((((((((( Dateien erstellt von 2007-10-25 bis 2007-11-25 ))))))))))))))))))))))))))))))
.
2007-11-18 22:15 <DIR> d-------- C:\Users\Carolin\AppData\Roaming\skypePM
2007-11-18 22:15 32 --a------ C:\Users\All Users\ezsid.dat
2007-11-18 22:15 32 --a------ C:\ProgramData\ezsid.dat
2007-11-18 22:14 <DIR> d-------- C:\Users\Carolin\AppData\Roaming\Skype
2007-11-18 22:11 <DIR> d-------- C:\Users\All Users\Skype
2007-11-18 22:11 <DIR> d-------- C:\ProgramData\Skype
2007-11-18 22:11 <DIR> d-------- C:\Program Files\Skype
2007-11-18 22:11 <DIR> d-------- C:\Program Files\Common Files\Skype
2007-11-15 03:04 2,923,520 --a------ C:\Windows\explorer.exe
2007-11-12 18:44 385,536 --a------ C:\wtm9403.exe
2007-11-12 13:31 <DIR> dr------- C:\Windows\System32\config\systemprofile\Music
2007-10-26 16:37 <DIR> d-------- C:\Program Files\Rockstar Games
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-25 17:19 --------- d-----w C:\Program Files\Windows Live Safety Center
2007-11-25 17:12 --------- d-----w C:\Program Files\McAfee
2007-11-23 20:17 --------- d-----w C:\ProgramData\Roxio
2007-11-23 14:00 --------- d-----w C:\Program Files\Norton Security Scan
2007-11-18 02:01 1,244,672 ----a-w C:\Windows\System32\mcmde.dll
2007-11-15 02:04 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr
2007-11-15 02:04 67,584 ----a-w C:\Windows\System32\wlanhlp.dll
2007-11-15 02:04 542,720 ----a-w C:\Windows\System32\sysmain.dll
2007-11-15 02:04 502,784 ----a-w C:\Windows\System32\wlansvc.dll
2007-11-15 02:04 47,104 ----a-w C:\Windows\System32\wlanapi.dll
2007-11-15 02:04 3,504,824 ----a-w C:\Windows\System32\ntkrnlpa.exe
2007-11-15 02:04 3,471,032 ----a-w C:\Windows\System32\ntoskrnl.exe
2007-11-15 02:04 297,984 ----a-w C:\Windows\System32\wlansec.dll
2007-11-15 02:04 290,816 ----a-w C:\Windows\System32\wlanmsm.dll
2007-11-15 02:04 258,232 ----a-w C:\Windows\system32\drivers\acpi.sys
2007-11-15 02:04 24,064 ----a-w C:\Windows\System32\wtsapi32.dll
2007-11-15 02:04 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2007-11-15 02:02 8,704 ----a-w C:\Windows\System32\hcrstco.dll
2007-11-15 02:02 8,704 ----a-w C:\Windows\System32\hccoin.dll
2007-11-15 02:02 73,216 ----a-w C:\Windows\system32\drivers\usbccgp.sys
2007-11-15 02:02 5,888 ----a-w C:\Windows\system32\drivers\usbd.sys
2007-11-15 02:02 38,400 ----a-w C:\Windows\system32\drivers\usbehci.sys
2007-11-15 02:02 23,040 ----a-w C:\Windows\system32\drivers\usbuhci.sys
2007-11-15 02:02 224,768 ----a-w C:\Windows\system32\drivers\usbport.sys
2007-11-15 02:02 192,000 ----a-w C:\Windows\system32\drivers\usbhub.sys
2007-11-15 02:01 --------- d-----w C:\Program Files\Windows Mail
2007-11-12 14:46 --------- d-----w C:\Users\Carolin\AppData\Roaming\Azureus
2007-11-06 12:27 --------- d-----w C:\Program Files\ICQ6
2007-10-26 15:15 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-21 15:03 --------- d-----w C:\Program Files\Samsung
2007-10-18 21:21 --------- d-----w C:\Program Files\Microsoft Games
2007-10-18 20:34 --------- d---a-w C:\ProgramData\TEMP
2007-10-18 20:34 --------- d-----w C:\Program Files\TweakPower
2007-10-18 20:34 --------- d-----w C:\Program Files\Spyware Doctor
2007-10-18 20:34 --------- d-----w C:\Program Files\OpenAL
2007-10-17 17:31 --------- d-----w C:\ProgramData\McAfee
2007-10-17 17:31 --------- d-----w C:\Program Files\Common Files\McAfee
2007-10-17 17:29 --------- d-----w C:\Program Files\McAfee.com
2007-10-15 18:36 --------- d-----w C:\Program Files\Astonsoft
2007-10-14 12:38 --------- d-----w C:\Users\Carolin\AppData\Roaming\dvdcss
2007-10-14 11:39 --------- d-----w C:\Users\Carolin\AppData\Roaming\Media Player Classic
2007-10-14 11:38 --------- d-----w C:\Program Files\Satsuki Decoder Pack
2007-10-14 11:04 --------- d-----w C:\Program Files\ratDVD
2007-10-11 17:43 --------- d-----w C:\Program Files\Java
2007-10-11 10:13 8,147,968 ----a-w C:\Windows\System32\wmploc.DLL
2007-10-11 10:13 7,680 ----a-w C:\Windows\System32\spwmp.dll
2007-10-11 10:13 4,096 ----a-w C:\Windows\System32\dxmasf.dll
2007-10-11 10:13 356,864 ----a-w C:\Windows\System32\MediaMetadataHandler.dll
2007-10-11 10:11 56,320 ----a-w C:\Windows\System32\iesetup.dll
2007-10-11 10:11 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2007-10-11 10:11 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2007-10-11 10:09 84,480 ----a-w C:\Windows\System32\INETRES.dll
2007-10-11 10:09 788,992 ----a-w C:\Windows\System32\rpcrt4.dll
2007-10-11 10:09 737,792 ----a-w C:\Windows\System32\inetcomm.dll
2007-10-10 10:51 --------- d-----w C:\Program Files\Azureus
2007-10-08 00:55 --------- d-----w C:\Program Files\DedicatedServer
2007-10-07 16:33 --------- d-----w C:\Users\Carolin\AppData\Roaming\ICQ
2007-10-06 19:47 --------- d-----w C:\Program Files\Real
2007-10-06 19:47 --------- d-----w C:\Program Files\Common Files\xing shared
2007-10-06 19:47 --------- d-----w C:\Program Files\Common Files\Real
2007-10-06 13:49 --------- d-----w C:\Program Files\concept design
2007-10-06 08:17 --------- d-----w C:\ProgramData\eMule
2007-10-03 14:31 --------- d-----w C:\Program Files\RedlightCenter
2007-10-03 14:31 --------- d-----w C:\Program Files\Common Files\PocketSoft
2007-10-03 11:53 --------- d-----w C:\Users\Carolin\AppData\Roaming\Ahead
2007-10-02 11:09 --------- d-----w C:\Program Files\THQ
2007-10-02 11:04 --------- d-----w C:\Program Files\Google
2007-10-02 10:41 --------- d-----w C:\Program Files\The Weather Channel FW
2007-09-30 19:44 --------- d-----w C:\Users\Carolin\AppData\Roaming\PC Tools
2007-09-30 19:36 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2007-09-29 12:35 --------- d-----w C:\Program Files\Weight Watchers
2007-09-29 12:18 --------- d-----w C:\Program Files\Trillian
2007-09-29 07:33 --------- d-----w C:\Program Files\Midas
2007-09-25 16:01 --------- d-----w C:\ProgramData\Bluetooth
2007-09-25 15:58 --------- d-----w C:\Program Files\IVT Corporation
2007-09-01 06:14 22,016 ----a-w C:\Windows\System32\netiougc.exe
2007-09-01 06:14 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2007-08-29 18:43 174 --sha-w C:\Program Files\desktop.ini
2007-08-29 18:38 8,192 ----a-w C:\Windows\System32\riched32.dll
2007-08-29 18:38 77,824 ----a-w C:\Windows\System32\rascfg.dll
2007-08-29 18:38 694,784 ----a-w C:\Windows\System32\localspl.dll
2007-08-29 18:38 52,736 ----a-w C:\Windows\System32\rasdiag.dll
2007-08-29 18:38 384,000 ----a-w C:\Windows\System32\netcfgx.dll
2007-08-29 18:38 36,864 ----a-w C:\Windows\System32\cdd.dll
2007-08-29 18:38 33,280 ----a-w C:\Windows\System32\traffic.dll
2007-08-29 18:38 32,768 ----a-w C:\Windows\System32\rasmxs.dll
2007-08-29 18:38 286,208 ----a-w C:\Windows\System32\ipnathlp.dll
2007-08-29 18:38 22,016 ----a-w C:\Windows\System32\rasser.dll
2007-08-29 18:38 15,360 ----a-w C:\Windows\System32\pacerprf.dll
2007-08-29 18:38 134,656 ----a-w C:\Windows\System32\dps.dll
2007-08-29 18:38 13,824 ----a-w C:\Windows\System32\wshqos.dll
2007-08-29 18:38 13,824 ----a-w C:\Windows\System32\icsunattend.exe
2007-08-29 18:36 88,576 ----a-w C:\Windows\System32\avifil32.dll
2007-08-29 18:36 82,944 ----a-w C:\Windows\System32\mciavi32.dll
2007-08-29 18:36 8,138,240 ----a-w C:\Windows\System32\ssBranded.scr
2007-08-29 18:36 750,080 ----a-w C:\Windows\System32\qmgr.dll
2007-08-29 18:36 712,192 ----a-w C:\Windows\System32\WindowsCodecs.dll
2007-08-29 18:36 69,632 ----a-w C:\Windows\System32\sendmail.dll
2007-08-29 18:36 65,024 ----a-w C:\Windows\System32\avicap32.dll
2007-08-29 18:36 61,440 ----a-w C:\Windows\System32\ntprint.exe
2007-06-28 00:33 848 --sha-w C:\Windows\System32\KGyGaAvL.sys
.
(((((((((((((((((((((((((((( Autostart Punkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Eintrage & legitime Standardeintrage werden nicht angezeigt.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2006-11-02 13:35]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 13:36]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 15:46]
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2005-08-11 16:30]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Delete USB Error Key"="" []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-04-11 16:44]
"RtHDVCpl"="RtHDVCpl.exe" [2006-12-29 11:11 C:\Windows\RtHDVCpl.exe]
"ISUSScheduler"="c:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2005-08-11 16:30]
"IPHSend"="C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe" [2006-02-17 17:59]
"NvSvc"="RUNDLL32.exe" [2006-11-02 10:45 C:\Windows\System32\rundll32.exe]
"NvCplDaemon"="RUNDLL32.exe" [2006-11-02 10:45 C:\Windows\System32\rundll32.exe]
"NvMediaCenter"="RUNDLL32.exe" [2006-11-02 10:45 C:\Windows\System32\rundll32.exe]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-10-06 20:46]
"MskAgentexe"="C:\Program Files\McAfee\MSK\MskAgent.exe" [2007-01-17 14:30]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader - Schnellstart.lnk]
path=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader - Schnellstart.lnk
backup=C:\Windows\pss\Adobe Reader - Schnellstart.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
path=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
backup=C:\Windows\pss\Adobe Reader Synchronizer.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
2006-02-09 23:34 106496 --a------ C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]
2006-05-23 12:45 50760 --a------ C:\Program Files\Common Files\AOL\1176661974\ee\AOLSoftware.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 10:50 155648 --a------ C:\Windows\system32\NeroCheck.exe
R0 videX32;videX32;C:\Windows\system32\DRIVERS\videX32.sys
R0 xfilt;VIA SATA IDE Hot-plug Driver;C:\Windows\system32\DRIVERS\xfilt.sys
R1 DLARTL_M;DLARTL_M;C:\Windows\system32\Drivers\DLARTL_M.SYS
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service;C:\Windows\system32\DRIVERS\fetnd5bv.sys
R3 nvlddmkm;nvlddmkm;C:\Windows\system32\DRIVERS\nvlddmkm.sys
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\sscdbus.sys
S3 sscdmdfl;SAMSUNG Mobile Modem Filter;C:\Windows\system32\DRIVERS\sscdmdfl.sys
S3 sscdmdm;SAMSUNG Mobile Modem Drivers;C:\Windows\system32\DRIVERS\sscdmdm.sys
S4 viamraid;viamraid;C:\Windows\system32\drivers\viamraid.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5b6696dc-3088-11dc-b45e-0019db5466b2}]
\shell\AutoRun\command - L:\setup.exe
\shell\directx\command - L:\DirectX\dxsetup.exe
\shell\setup\command - L:\setup.exe
*Newly Created Service* - CATCHME
.
Inhalt des "geplante Tasks" Ordners
"2007-11-15 01:17:26 C:\Windows\Tasks\McDefragTask.job"
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe'
"2007-11-01 00:00:20 C:\Windows\Tasks\McQcTask.job"
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe
"2007-11-23 18:32:42 C:\Windows\Tasks\Norton Security Scan.job"
- C:\Program Files\Norton Security Scan\Nss.exe
"2007-11-25 01:30:34 C:\Windows\Tasks\User_Feed_Synchronization-{F536A5F1-7C53-4C20-BFD3-F402905BB8C1}.job"
- C:\Windows\system32\msfeedssync.exe
.
**************************************************************************
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-25 18:26:47
Windows 6.0.6000 NTFS
Scanne versteckte Prozesse...
Scanne versteckte Autostart Einträge...
Scanne versteckte Dateien...
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
**************************************************************************
.
Zeit der Fertigstellung: 2007-11-25 18:28:01
.
--- E O F ---
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:41:27, on 25.11.2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\McAfee\MSK\mskagent.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Windows\system32\notepad.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ISUSScheduler] "c:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [IPHSend] C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MskAgentexe] C:\Program Files\McAfee\MSK\MskAgent.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')
O8 - Extra context menu item: Öffnen mit WordPerfect - C:\Program Files\WordPerfect Office X3\Programs\WPLauncher.hta
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\Windows\system32\UAService7.exe
--
End of file - 8131 bytes
Das mit der Datfind.bat geht bei mir nicht, habe auch die alternative anleitung probiert aber da bekomme ich eine fehlermeldung das die datei nicht existiert!