antispycheck!?! |
||
|---|---|---|
| #0
| ||
|
16.06.2008, 22:36
...neu hier
Beiträge: 3 |
||
 
|
|
|
|
16.06.2008, 22:49
Moderator
Beiträge: 5694 |
#2
Hallo,
«« CCleaner anwenden http://www.virus-protect.org/ccleaner.html «« http://virus-protect.org/artikel/tools/otmoveIt.html öffne: OTMoveIt.exe OTMoveIt Kopiere rein: im linken Fenster ,wo steht: Paste List of Files/Folders to Move Zitat C:\Programme\NetProjectKlicke auf den Roten MoveIt! --------------------------------------------- «« mit dem HijackThis löschen ("fixen") Klicke: "Do a system scan only" Setze ein Häckchen in das Kästchen vor den genannten Eintrag und wähle fix checked. + starte den Rechner neu. Zitat R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://internetsearchservice.comPC neustarten »» wende smitfraudfix an (Option 2 ) - poste hier den report http://virus-protect.org/artikel/tools/smitfrautfix.html »» scanne mit malwarebytes, lasse alles entfernen, was gefunden wird http://virus-protect.org/artikel/tools/malwarebytes.html + poste hier den report Gruss Swiss Dieser Beitrag wurde am 16.06.2008 um 22:54 Uhr von Tonstudio editiert.
|
|
|
|
|
|
|
16.06.2008, 23:19
...neu hier
Themenstarter Beiträge: 3 |
#3
Selbe probem Besthet weiher hin wenn ich auch nur Versuche smitfraudfix Und malwarebytes zu starten bekomme ich Bluescreen die bekomme ich selbst bei einer systemwiederherstellung . Alles drei passiert auch in Abgesichrten Modus .
WEiß noch jemand rat ?? Mit Hijakthis hatt gefuntz Und dem anderm auch (Ot....) |
|
|
|
|
|
|
17.06.2008, 00:07
Ehrenmitglied
 Beiträge: 29434 |
#4
SnO.oPy
«« CCleaner anwenden http://www.virus-protect.org/ccleaner.html «« Den folgenden Text in den Editor (Start - Zubehör - Editor) kopieren und als listen.bat mit "Speichern unter" auf dem Desktop. Gebe bei Dateityp "Alle Dateien" an. Du solltest jetzt auf dem Desktop diese Datei finden. --> die listen.bat doppelt klicken--> kopiere den Text, der erscheint Zitat cd\ __________ MfG Sabina rund um die PC-Sicherheit |
|
|
|
|
|
|
17.06.2008, 00:24
Ehrenmitglied
 Beiträge: 6028 |
#5
Fixe auch noch mit Hijack This
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - h**p://www.ietoolpro.com/redirect.php (file missing) O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - h**p://www.ietoolpro.com/redirect.php (file missing) Und Bild dazu Anhang: WinSpywareProtect.JPG __________ MfG Argus |
|
|
|
|
|
|
17.06.2008, 00:41
...neu hier
Themenstarter Beiträge: 3 |
#6
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\All Users\Desktop 2008-06-16 20:05 <DIR> . 2008-06-16 20:05 <DIR> .. 2008-06-08 19:50 1,433 ICQ6.lnk 2008-06-16 15:40 2,121 iTunes.lnk 2008-06-08 08:08 1,566 Mozilla Firefox.lnk 2008-06-13 06:25 1,584 QuickTime Player.lnk 2008-06-16 20:05 1,587 Spyware Doctor.lnk 2008-06-08 16:10 783 TeamViewer 3.lnk 2008-06-08 14:22 791 World of Warcraft.lnk 7 Datei(en) 9,865 Bytes 2 Verzeichnis(se), 71,121,940,480 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\Administrator\Desktop 2008-06-17 00:37 <DIR> . 2008-06-17 00:37 <DIR> .. 2008-06-13 01:07 896,862 blabla.bmp 2008-06-16 23:31 18,432 data.itr 2008-06-17 00:34 <DIR> IceTower 2003-11-04 19:41 449,696 Icy Tower trainer.exe 2008-06-16 23:35 629 Icy Tower.lnk 2003-01-01 18:00 41,472 IcyTower-Trainer.exe 2008-06-12 20:59 <DIR> icytower1.3 2008-06-17 00:37 1,133 listen.bat 2008-06-15 16:03 <DIR> Meine Bilder Sommer 2008 2008-06-16 23:34 <DIR> Meine Downloads 2008-06-15 22:15 666 NetTools.lnk 2008-06-08 23:45 0 Neu Textdokument.txt 2008-06-08 08:14 <DIR> Programme 2008-06-08 15:10 1,420 QIP 2005.lnk 2008-06-16 19:52 9,723,880 spybotsd152.exe 2008-06-08 16:53 645 Teamspeak 2 RC2.lnk 2008-06-08 08:10 620 TrueCrypt.lnk 2008-06-17 00:24 <DIR> Vics 2008-06-12 20:33 <DIR> WOW!_GIGA_Interface_v3.3_mit_Widescreen 2008-06-16 06:33 <DIR> ZiPhone 13 Datei(en) 11,136,133 Bytes 10 Verzeichnis(se), 71,121,936,384 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Windows\System32\Com 2008-06-08 07:28 <DIR> . 2008-06-08 07:28 <DIR> .. 2005-12-24 21:05 7,680 COM3A1.tmp 2005-12-24 21:05 195,072 comadmin.dll 2005-12-24 21:05 61,440 comempty.dat 2005-12-24 21:05 77,348 comexp.msc 2005-12-24 21:05 9,728 comrepl.exe 2005-12-24 21:05 5,120 comrereg.exe 2005-12-24 21:05 19,456 mtsadmin.tlb 7 Datei(en) 375,844 Bytes 2 Verzeichnis(se), 71,121,936,384 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Windows\system32\config 2008-06-08 07:38 <DIR> . 2008-06-08 07:38 <DIR> .. 2008-06-16 23:40 327,680 AppEvent.Evt 2008-06-16 23:03 1,835,008 default 2008-06-08 09:19 94,208 default.sav 2008-06-16 23:03 262,144 SAM 2008-06-08 08:20 65,536 SecEvent.Evt 2008-06-16 23:03 262,144 SECURITY 2008-06-16 23:03 21,495,808 software 2008-06-08 09:19 671,744 software.sav 2008-06-16 23:08 524,288 SysEvent.Evt 2008-06-17 00:23 3,407,872 system 2008-06-08 09:19 434,176 system.sav 2008-06-08 07:41 <DIR> systemprofile 2008-06-08 09:19 262,144 userdiff 12 Datei(en) 29,642,752 Bytes 3 Verzeichnis(se), 71,121,936,384 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\WINDOWS\system32 Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\WINDOWS\Downloaded Program Files 2007-07-30 19:24 293 wuweb.inf 1 Datei(en) 293 Bytes 0 Verzeichnis(se), 71,121,932,288 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Programme Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\Administrator 2008-06-16 23:08 <DIR> . 2008-06-16 23:08 <DIR> .. 2008-06-08 07:45 <DIR> AVM_Driver 2008-06-17 00:37 <DIR> Desktop 2008-06-16 22:44 <DIR> Eigene Dateien 2008-06-16 20:51 <DIR> Favoriten 2008-06-08 08:03 <DIR> SecurityScans 2008-06-16 19:14 <DIR> Startmen 2008-06-08 16:10 <DIR> temp 0 Datei(en) 0 Bytes 9 Verzeichnis(se), 71,121,932,288 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\ Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temporary Internet Files\Content.IE5 2008-06-17 00:24 32,768 index.dat 1 Datei(en) 32,768 Bytes 0 Verzeichnis(se), 71,121,932,288 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp 2008-06-17 00:35 <DIR> . 2008-06-17 00:35 <DIR> .. 2008-06-08 08:17 <DIR> 06080881614 2008-06-16 23:38 29,760 117338.zip 2008-06-16 23:31 113,632 117339.zip 2008-06-03 06:43 81 2588A051.TMP 2008-06-07 04:43 75 52538ECB.TMP 2008-06-16 23:29 38,696 6451.zip 2008-06-09 00:30 135 7056.bat 2005-12-24 21:05 874,496 788843.msi 2005-12-24 21:05 874,496 79dd24.msi 2008-06-09 00:29 27,136 appack.exe 2008-06-08 15:27 4,562 ASPNETSetup_00000.log 2008-06-16 22:09 72 Av-test.txt 2008-06-08 11:13 <DIR> Blizzard Installer Temp - 00090fa7 2008-06-16 22:43 <DIR> Blizzard Installer Temporary Data - 0e1c84b0 2008-06-16 22:43 <DIR> Blizzard Installer Temporary Data - 23271988 2008-06-16 22:43 <DIR> Blizzard Installer Temporary Data - 2b81b5e8 2008-06-16 15:09 1,481,629 br18F.exe 2008-06-09 14:04 336,025 caevents.log 2008-06-13 06:11 530,169 Clikker.zip 2008-06-16 22:17 134,149 datfind.txt 2008-06-08 15:28 5,007,250 dd_netfx20MSI67E6.txt 2008-06-08 15:32 63,488 dd_netfx20UI67E6.txt 2008-06-08 22:44 17,921 DLLeof.dll 2008-06-09 00:24 156 dw.log 2008-06-10 18:06 22,969 fhiyxhetmp 2008-06-16 15:18 770,104 fla199.tmp 2008-06-16 15:18 536,012 fla19A.tmp 2008-06-15 23:51 8,742,220 fla78.tmp 2008-06-13 06:26 586 GEARInstall.log 2008-06-11 09:09 151 gewinnspiel.rar 2008-06-15 17:31 <DIR> hsperfdata_Administrator 2008-06-16 22:04 237 INDEX.INI 2008-06-16 20:05 <DIR> is-NUAN1.tmp 2008-06-08 08:32 15,575 jar_cache10263.tmp 2008-06-15 17:31 1,956 java_install_reg.log 2008-06-08 08:30 1,036 java_install_sp.log 2008-06-15 16:00 0 JET25C.tmp 2008-06-16 15:29 0 JET6A3E.tmp 2008-06-16 19:27 0 JET971F.tmp 2008-06-16 21:39 0 JET9923.tmp 2008-06-16 15:36 0 JETB243.tmp 2008-06-08 08:29 8,262 jinstall.cfg 2008-06-09 18:58 22,838 jqoregetmp 2008-06-08 08:31 235 jusched.log 2008-06-08 11:27 119,468 kl-install-2008-06-08-11-26-52.log 2008-06-08 11:34 4,173,892 kl-install-2008-06-08-11-29-41.log 2008-06-08 11:27 7,020 kl-setup-2008-06-08-11-26-52.log 2008-06-08 11:34 7,021 kl-setup-2008-06-08-11-29-41.log 2008-06-08 11:27 8,154 kleaner (pid 1620) 2008-06-08 11-27-12.log 2008-06-08 11:29 7,990 kleaner (pid 220) 2008-06-08 11-29-50.log 2008-06-08 11:29 16,287 kleaner (pid 220) 2008-06-08 11-29-53.log 2008-06-08 11:30 4,100 kleaner (pid 3384) 2008-06-08 11-30-02.log 2008-06-16 13:34 124 Liebesgeschichten.url 2008-06-09 00:29 53,248 lzma.exe 2008-06-13 02:00 8,596,581 mastermind.zip 2008-06-08 07:54 3,335 Microsoft Office 2003 Setup(0001).txt 2008-06-08 07:54 206,506 Microsoft Office 2003 Setup(0001)_Task(0001).txt 2008-06-09 14:04 270 MSI1c0bb.LOG 2008-06-08 08:26 848 MSI47628.LOG 2008-06-08 08:50 401,408 MSI5D.tmp 2008-06-08 11:12 724 MSI88420.LOG 2008-06-08 08:31 1,304 MSI9232e.LOG 2008-06-08 08:32 620 MSI9b694.LOG 2008-06-08 11:12 754 MSI9dd28.LOG 2008-06-09 12:30 270 MSIa0195.LOG 2008-06-09 00:07 270 MSIb31cf.LOG 2008-06-08 08:35 392 MSId376e.LOG 2008-06-15 22:13 26,660,121 NetTools5.0.70.zip 2008-06-08 22:43 3,263 new.ico 2008-06-16 13:32 133 Nickelodeon.url 2008-06-08 07:50 49,194 offcln11.log 2008-06-11 19:26 <DIR> outlook logging 2008-06-08 08:25 16,384 Perflib_Perfdata_b0.dat 2008-06-08 14:40 <DIR> plugtmp-1 2008-06-16 15:22 <DIR> plugtmp-11 2008-06-16 22:40 <DIR> plugtmp-12 2008-06-10 23:30 <DIR> plugtmp-2 2008-06-11 08:24 <DIR> plugtmp-3 2008-06-12 10:44 <DIR> plugtmp-5 2008-06-13 16:49 <DIR> plugtmp-6 2008-06-14 03:11 <DIR> plugtmp-7 2008-06-15 00:15 <DIR> plugtmp-8 2008-06-16 00:06 <DIR> plugtmp-9 2008-06-11 22:55 64,933 Pogue 1.1.2.zip 2008-06-08 14:40 22,308 qoatulstmp 2008-06-13 06:25 2,025 QTInstallCode.log 2008-06-13 06:25 3,875 qtplugin.log 2008-06-09 20:20 149 r2h138.tmp 2008-06-09 20:43 244 r2h13B.tmp 2008-06-17 00:24 <DIR> Rar$DR00.469 2008-06-16 20:06 80,512 Setup Log 2008-06-16 #001.txt 2008-06-08 14:40 22,948 slsmqkytmp 2008-06-09 19:35 2,352,128 sysdx.exe 2008-06-13 05:33 22,772 system_F***.zip 2008-06-08 08:29 382,352 tmp.xpi 2008-06-08 11:29 2,812 tmp25.tmp 2008-06-08 11:26 2,812 tmp5.tmp 2008-06-11 22:03 24,576 tmp88.tmp 2008-06-11 22:04 24,576 tmp89.tmp 2008-06-16 14:34 118 TV Sendungen.url 2008-06-13 05:41 22,470 umjvpoptmp 2008-06-08 22:44 269,312 upx5443.exe 2008-06-08 09:13 409 WGANotify.settings 2008-06-11 05:49 9,104,449 wowszeneBarlowsBlog8.mp3 2008-06-08 14:40 22,955 xcdibpqtmp 2008-06-08 14:40 22,156 xvljcyktmp 2007-01-09 15:09 1,636,376 ycomp_setup.exe 2008-06-11 03:52 22,592 ynkqusatmp 2008-06-16 15:09 19,968 zfe1.exe 2008-06-16 15:08 19,968 zfe5.exe 2008-06-16 15:08 19,968 zfe7.exe 2008-06-16 15:09 19,968 zfe9.exe 2008-06-09 00:24 16,384 ~DF1787.tmp 2008-06-09 00:20 16,384 ~DF24F9.tmp 2008-06-09 00:23 16,384 ~DF28E6.tmp 2008-06-08 14:26 32,768 ~DF3386.tmp 2008-06-09 00:27 16,384 ~DF343C.tmp 2008-06-09 00:14 16,384 ~DF3510.tmp 2008-06-09 00:30 16,384 ~DF3FCC.tmp 2008-06-09 00:14 16,384 ~DF5195.tmp 2008-06-16 19:09 65,536 ~DF51BA.tmp 2008-06-09 12:33 16,384 ~DF60FD.tmp 2008-06-09 00:23 16,384 ~DF6D59.tmp 2008-06-09 00:27 16,384 ~DF710.tmp 2008-06-12 07:43 32,768 ~DF7262.tmp 2008-06-09 15:00 32,768 ~DF7FBB.tmp 2008-06-16 20:59 65,536 ~DF80BA.tmp 2008-06-09 00:33 32,768 ~DF8E41.tmp 2008-06-09 16:10 16,384 ~DF9209.tmp 2008-06-16 20:46 32,768 ~DFC06D.tmp 2008-06-09 00:29 16,384 ~DFC78A.tmp 2008-06-09 00:20 16,384 ~DFC876.tmp 2008-06-16 22:08 114,688 ~DFCEE9.tmp 2008-06-08 10:55 16,384 ~DFCF16.tmp 2008-06-09 20:20 16,384 ~DFD53E.tmp 2008-06-16 19:44 32,768 ~DFD5DE.tmp 2008-06-15 22:45 393,216 ~DFD7D5.tmp 2008-06-16 15:09 65,536 ~DFE01C.tmp 2008-06-16 15:31 32,768 ~DFE7EF.tmp 2008-06-09 12:35 32,768 ~DFEEDB.tmp 2008-06-09 00:20 16,384 ~DFEFD2.tmp 2008-06-09 00:20 16,384 ~DFF482.tmp 2008-06-16 15:37 32,768 ~DFF4D9.tmp 2008-06-09 00:20 16,384 ~DFF8DC.tmp 125 Datei(en) 75,479,857 Bytes 21 Verzeichnis(se), 71,121,915,904 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\WINDOWS\Temp 2008-06-16 22:43 <DIR> . 2008-06-16 22:43 <DIR> .. 2008-06-16 15:37 8,192 cch~25cec0c2.htp 2008-06-16 15:37 8,192 cch~25d048ee.htp 2008-06-16 15:37 8,192 cch~293ea090.htp 2008-06-16 15:37 8,192 cch~2940fba5.htp 2008-06-16 15:33 8,192 cch~451b2c21.htp 2008-06-16 15:33 8,192 cch~451b30ed.htp 2008-06-16 15:33 8,192 cch~45681472.htp 2008-06-16 15:33 8,192 cch~45681892.htp 2008-06-16 15:33 8,192 cch~459fa0f9.htp 2008-06-16 15:33 8,192 cch~459fa55e.htp 2008-06-10 06:06 158 DFC5A2B2.TMP 2008-06-17 00:23 255 WGAErrLog.txt 2008-06-17 00:24 409 WGANotify.settings 13 Datei(en) 82,742 Bytes 2 Verzeichnis(se), 71,121,924,096 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\ Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Programme 2008-06-16 23:09 <DIR> . 2008-06-16 23:09 <DIR> .. 2008-06-08 07:50 <DIR> Alcohol Soft 2008-06-16 23:09 <DIR> AntiSpyCheck 2008-06-13 06:24 <DIR> Apple Software Update 2008-06-08 08:04 <DIR> avmwlanstick 2008-06-13 06:25 <DIR> Bonjour 2008-06-08 07:28 <DIR> ComPlus Applications 2008-06-08 20:57 <DIR> FileZilla FTP Client 2008-06-13 06:23 <DIR> Gemeinsame Dateien 2008-06-08 08:07 <DIR> Google 2008-06-08 07:40 <DIR> HighMAT CD Writing Wizard 2008-06-08 19:51 <DIR> ICQ6 2008-06-16 15:08 <DIR> ICQToolbar 2008-06-13 14:11 <DIR> Internet Explorer 2008-06-13 06:25 <DIR> iPod 2008-06-13 06:25 <DIR> iTunes 2008-06-08 08:31 <DIR> Java 2008-06-08 11:30 <DIR> Kaspersky Lab 2008-06-08 07:50 <DIR> Microsoft Baseline Security Analyzer 2008-06-08 07:35 <DIR> microsoft frontpage 2008-06-08 07:52 <DIR> Microsoft Office 2008-06-08 07:53 <DIR> Microsoft.NET 2008-06-08 07:29 <DIR> Movie Maker 2008-06-17 00:34 <DIR> Mozilla Firefox 2008-06-08 07:35 <DIR> msn gaming zone 2008-06-15 22:17 <DIR> Net Tools 2008-06-08 07:29 <DIR> NetMeeting 2008-06-16 23:09 <DIR> NetProject 2008-06-08 08:16 <DIR> No-IP 2008-06-08 07:30 <DIR> Online-Dienste 2008-06-08 07:54 <DIR> OO Software 2008-06-08 15:10 <DIR> Outlook Express 2008-06-08 15:10 <DIR> QIP 2008-06-13 06:25 <DIR> QuickTime 2008-06-08 08:22 <DIR> Softwin 2008-06-16 23:09 <DIR> Spybot - Search & Destroy 2008-06-16 20:52 <DIR> Spyware Doctor 2008-06-16 22:04 <DIR> Steam 2008-06-08 16:53 <DIR> Teamspeak2_RC2 2008-06-08 16:10 <DIR> TeamViewer3 2008-06-16 22:08 <DIR> Trend Micro 2008-06-08 08:10 <DIR> TrueCrypt 2008-06-08 07:41 <DIR> TuneUpUtilities2006 2008-06-12 21:00 <DIR> TVgenial 2008-06-08 07:40 <DIR> Windows Media Player 2008-06-08 07:27 <DIR> Windows NT 2008-06-15 22:15 <DIR> WinPcap 2008-06-08 07:54 <DIR> WinRAR 2008-06-16 06:47 <DIR> Winreg 2008-06-12 20:33 <DIR> World of Warcraft 2008-06-08 07:35 <DIR> xerox 2008-06-16 23:03 <DIR> Yahoo! 0 Datei(en) 0 Bytes 53 Verzeichnis(se), 71,121,920,000 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Anwendungsdaten 2008-06-13 06:24 <DIR> Apple 2008-06-13 06:26 <DIR> Apple Computer 2008-06-13 06:11 <DIR> Clikker 2008-06-09 22:56 3,584 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2008-06-08 08:36 42,168 GDIPFONTCACHEV1.DAT 2008-06-08 08:08 <DIR> Google 2008-06-11 19:26 <DIR> Microsoft 2008-06-08 08:08 <DIR> Mozilla 2008-06-11 19:27 <DIR> Steam 2 Datei(en) 45,752 Bytes 7 Verzeichnis(se), 71,121,920,000 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\Administrator\Anwendungsdaten 2008-06-08 12:05 <DIR> Adobe 2008-06-16 06:58 <DIR> Apple Computer 2008-06-13 04:50 <DIR> FileZilla 2008-06-09 21:44 <DIR> ICQ 2008-06-12 07:44 <DIR> ICQ Toolbar 2008-06-08 07:42 <DIR> Identities 2008-06-08 12:05 <DIR> Macromedia 2008-06-08 08:08 <DIR> Mozilla 2008-06-16 20:05 <DIR> PC Tools 2008-06-08 08:32 <DIR> Sun 2008-06-08 08:08 <DIR> Talkback 2008-06-08 16:53 <DIR> teamspeak2 2008-06-08 16:50 <DIR> TeamViewer 2008-06-08 08:11 <DIR> TrueCrypt 2008-06-08 07:41 <DIR> TuneUp Software 0 Datei(en) 0 Bytes 15 Verzeichnis(se), 71,121,920,000 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Dokumente und Einstellungen\All Users\Anwendungsdaten 2008-06-13 06:23 <DIR> Apple 2008-06-13 06:25 <DIR> Apple Computer 2008-06-08 08:08 <DIR> Google 2008-06-17 00:01 <DIR> Google Updater 2008-06-17 00:24 <DIR> Kaspersky Lab 2008-06-08 11:26 <DIR> Kaspersky Lab Setup Files 2008-06-09 16:05 <DIR> nView_Profiles 2008-06-16 23:09 <DIR> Spybot - Search & Destroy 2008-06-16 21:34 <DIR> TEMP 2008-06-08 07:41 <DIR> TuneUp Software 2008-06-08 09:13 <DIR> Windows Genuine Advantage 0 Datei(en) 0 Bytes 11 Verzeichnis(se), 71,121,920,000 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Programme\Gemeinsame Dateien 2008-06-13 06:23 <DIR> . 2008-06-13 06:23 <DIR> .. 2008-06-13 06:23 <DIR> Apple 2008-06-08 13:58 <DIR> Blizzard Entertainment 2008-06-08 09:04 <DIR> Blizzard Entertainment.4d303025.temp 2008-06-08 08:57 <DIR> Blizzard Entertainment.temp 2008-06-08 07:52 <DIR> DESIGNER 2008-06-08 07:29 <DIR> Dienste 2008-06-08 08:39 <DIR> InstallShield 2008-06-08 08:30 <DIR> Java 2008-06-08 07:53 <DIR> Microsoft Shared 2008-06-08 07:29 <DIR> MSSoap 2008-06-08 08:23 <DIR> ODBC 2008-06-08 08:26 <DIR> Softwin 2008-06-08 08:23 <DIR> SpeechEngines 2008-06-08 15:10 <DIR> System 0 Datei(en) 0 Bytes 16 Verzeichnis(se), 71,121,915,904 Bytes frei Volume in Laufwerk C: hat keine Bezeichnung. Volumeseriennummer: 0CAD-0566 Verzeichnis von C:\Windows\tasks 2008-06-13 18:34 408 1-Klick-Wartung.job 2008-06-13 06:24 276 AppleSoftwareUpdate.job 2 Datei(en) 684 Bytes 0 Verzeichnis(se), 71,121,915,904 Bytes frei Da der log der bat datei |
|
|
|
|
|
|
17.06.2008, 10:06
Ehrenmitglied
Beiträge: 29434 |
#7
SnO.oPy
«« http://virus-protect.org/artikel/tools/otmoveIt.html öffne: OTMoveIt.exe OTMoveIt Kopiere rein: im linken Fenster ,wo steht: Paste List of Files/Folders to Move  Zitat C:\Programme\AntiSpyCheck\Klicke auf den Roten MoveIt!  Text im rechten Fenster / Results Mit rechtem Mausklick abkopieren und im Forenbeitrag mit rechtem Mausklick "einfügen" ---------------------------------------------------------------- «« http://virus-protect.org/artikel/tools/regsearch.html und doppelklicken, um zu starten. in: "Enter search strings" (reinschreiben oder reinkopieren) AntiSpyCheck in edit und klicke "Ok". Notepad wird sich öffnen -- kopiere den Text ab und poste ihn. in: "Enter search strings" (reinschreiben oder reinkopieren) NetProject in edit und klicke "Ok". Notepad wird sich öffnen -- kopiere den Text ab und poste ihn. __________ MfG Sabina rund um die PC-Sicherheit |
|
|
|
|
|
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!
bitte erst » hier kostenlos registrieren!!
Folgende Themen könnten Dich auch interessieren:
Seite(n): 1
Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:25, on 2008-06-16
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Programme\avmwlanstick\wlangui.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\cmd.exe
C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programme\avmwlanstick\WlanNetService.exe
C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Programme\Bonjour\mDNSResponder.exe
C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://internetsearchservice.com
R1 - HKLM\Software\Microsoft\Internet Explorer,SearchURL = http://internetsearchservice.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://internetsearchservice.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://internetsearchservice.com/ie6.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://internetsearchservice.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: (no name) - {99BA268B-4021-4739-9945-3C774217FE75} - C:\Programme\NetProject\sbmdl.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: Internet Service - {51D81DD5-55B7-497F-95DB-D356429BB54E} - C:\Programme\NetProject\wamdl.dll (file missing)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AVMWlanClient] C:\Programme\avmwlanstick\wlangui.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AVP] "C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKLM\..\Policies\Explorer\Run: [some] C:\Programme\NetProject\scit.exe
O4 - HKLM\..\Policies\Explorer\Run: [start] C:\Programme\NetProject\sbmntr.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Hinzufügen zu Anti-Banner - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Statistik für den Schutz des Web-Datenverkehrs - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - h**p://www.ietoolpro.com/redirect.php (file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - h**p://www.ietoolpro.com/redirect.php (file missing)
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1212907096515
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVM WLAN Connection Service - AVM Berlin - C:\Programme\avmwlanstick\WlanNetService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Programme\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Programme\WinPcap\rpcapd.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Programme\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Programme\Spyware Doctor\pctsSvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Programme\TuneUpUtilities2006\WinStylerThemeSvc.exe
--
End of file - 7442 bytes
Und Vom Datafind.bat :
.
.
Bitte nur die Eintraege der letzten 3 Monate pro Ordner posten
.
.
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 0CAD-0566
Verzeichnis von C:\WINDOWS\system32
2008-06-16 22:12 186,602 nvapps.xml
2008-06-16 22:12 11,931 OODBS.lor
2008-06-16 20:07 395,336 perfh009.dat
2008-06-16 20:07 59,576 perfc009.dat
2008-06-16 20:07 71,796 perfc007.dat
2008-06-16 20:07 408,948 perfh007.dat
2008-06-16 20:07 946,822 PerfStringBackup.INI
2008-06-16 19:35 2,206 wpa.dbl
2008-06-09 21:22 1,173 PassStealerV3_0.psf
2008-06-09 21:18 412,672 VBSKPRO2.OCX
2008-06-09 21:18 245,248 SEVXPCTL.OCX
2008-06-09 21:18 145,920 SEVCMD3.OCX
2008-06-09 00:30 204,800 actskin4.ocx
2008-06-08 23:03 188,200 FNTCACHE.DAT
2008-06-08 22:42 483,328 CoolXPCheck.ocx
2008-06-08 22:42 368,640 CoolXPFrame.ocx
2008-06-08 22:42 331,776 CoolXPText.ocx
2008-06-08 22:42 647,168 CoolXPButton.ocx
2008-06-08 16:53 34,064 lhacm.acm
2008-06-08 15:10 138,558 TZLog.log
2008-06-08 13:47 146,650 BuzzingBee.wav
2008-06-08 13:47 125,690 LoopyMusic.wav
2008-06-08 08:31 6,684 jupdate-1.6.0_06-b02.log
2008-06-08 08:29 4,212 zllictbl.dat
2008-06-08 08:26 0 h323log.txt
2008-06-08 08:11 124,688 mswinsck.ocx
2008-06-08 08:11 111,104 uha.exe
2008-06-08 07:50 34,308 BASSMOD.dll
2008-06-08 07:40 16,832 amcompat.tlb
2008-06-08 07:40 23,392 nscompat.tlb
2008-06-08 07:37 3,217 $winnt$.inf
2008-06-08 07:31 2,951 CONFIG.NT
2008-06-08 07:30 488 logonui.exe.manifest
2008-06-08 07:30 488 WindowsLogon.manifest
2008-06-08 07:30 749 cdplayer.exe.manifest
2008-06-08 07:30 749 sapi.cpl.manifest
2008-06-08 07:30 749 nwc.cpl.manifest
2008-06-08 07:30 749 wuaucpl.cpl.manifest
2008-06-08 07:30 749 ncpa.cpl.manifest
2008-06-08 07:28 21,740 emptyregdb.dat
2008-05-30 14:19 507,400 XAudio2_1.dll
2008-05-30 14:18 238,088 xactengine3_1.dll
2008-05-30 14:17 65,032 XAPOFX1_0.dll
2008-05-30 14:17 25,608 X3DAudio1_4.dll
2008-05-30 14:11 467,984 d3dx10_38.dll
2008-05-30 14:11 1,491,992 D3DCompiler_38.dll
2008-05-30 14:11 3,850,760 D3DX9_38.dll
2008-05-30 01:35 17,486,968 MRT.exe
2008-05-27 10:50 90,112 QuickTimeVR.qtx
2008-05-27 10:50 57,344 QuickTime.qts
2008-05-07 07:14 1,293,312 quartz.dll
2008-05-03 05:46 132,088 nv3dheb.chm
2008-05-03 05:46 128,544 nv3dara.chm
2008-05-03 05:46 131,070 nv3dhun.chm
2008-05-03 05:46 1,630,208 nwiz.exe
2008-05-03 05:46 124,278 nv3dfin.chm
2008-05-03 05:46 2,670,592 nvwssr.dll
2008-05-03 05:46 2,629,632 nvwss.dll
2008-05-03 05:46 167,936 nvwrszht.dll
2008-05-03 05:46 163,840 nvwrszhc.dll
2008-05-03 05:46 303,104 nvwrstr.dll
2008-05-03 05:46 290,816 nvwrsth.dll
.
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 0CAD-0566
Verzeichnis von C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp
2008-06-16 22:17 112,036 datfind.txt
2008-06-16 22:15 114,688 ~DF9B95.tmp
2008-06-16 22:09 72 Av-test.txt
2008-06-16 22:08 114,688 ~DFCEE9.tmp
2008-06-16 21:39 0 JET9923.tmp
2008-06-16 20:59 65,536 ~DF80BA.tmp
2008-06-16 20:46 32,768 ~DFC06D.tmp
2008-06-16 20:06 80,512 Setup Log 2008-06-16 #001.txt
2008-06-16 19:44 32,768 ~DFD5DE.tmp
2008-06-16 19:27 0 JET971F.tmp
2008-06-16 19:09 65,536 ~DF51BA.tmp
2008-06-16 15:37 32,768 ~DFF4D9.tmp
2008-06-16 15:36 0 JETB243.tmp
2008-06-16 15:31 32,768 ~DFE7EF.tmp
2008-06-16 15:29 0 JET6A3E.tmp
2008-06-16 15:18 536,012 fla19A.tmp
2008-06-16 15:18 770,104 fla199.tmp
2008-06-16 15:09 65,536 ~DFE01C.tmp
2008-06-16 15:09 19,968 zfe1.exe
2008-06-16 15:09 19,968 zfe9.exe
2008-06-16 15:09 1,481,629 br18F.exe
2008-06-16 15:08 19,968 zfe7.exe
2008-06-16 15:08 19,968 zfe5.exe
2008-06-16 14:34 118 TV Sendungen.url
2008-06-16 13:34 124 Liebesgeschichten.url
2008-06-16 13:32 133 Nickelodeon.url
2008-06-15 23:51 8,742,220 fla78.tmp
2008-06-15 22:45 393,216 ~DFD7D5.tmp
2008-06-15 22:13 26,660,121 NetTools5.0.70.zip
2008-06-15 17:31 1,956 java_install_reg.log
2008-06-15 16:00 0 JET25C.tmp
2008-06-13 18:38 0 JET8B8.tmp
2008-06-13 06:26 586 GEARInstall.log
2008-06-13 06:25 2,025 QTInstallCode.log
2008-06-13 06:25 3,875 qtplugin.log
2008-06-13 06:11 530,169 Clikker.zip
2008-06-13 05:41 22,470 umjvpoptmp
2008-06-13 05:33 22,772 system_F***.zip
2008-06-13 02:00 8,596,581 mastermind.zip
2008-06-13 01:23 0 JET5B14.tmp
2008-06-12 07:43 32,768 ~DF7262.tmp
2008-06-11 22:55 64,933 Pogue 1.1.2.zip
2008-06-11 22:04 24,576 tmp89.tmp
2008-06-11 22:03 24,576 tmp88.tmp
2008-06-11 09:09 151 gewinnspiel.rar
2008-06-11 09:00 0 JET317B.tmp
2008-06-11 07:03 0 JET1B22.tmp
2008-06-11 05:49 9,104,449 wowszeneBarlowsBlog8.mp3
2008-06-11 03:52 22,592 ynkqusatmp
2008-06-10 18:06 22,969 fhiyxhetmp
2008-06-10 17:43 0 JETCF6.tmp
2008-06-09 20:43 0 h2r13C.tmp
2008-06-09 20:43 244 r2h13B.tmp
2008-06-09 20:20 16,384 ~DFD53E.tmp
2008-06-09 20:20 0 h2r139.tmp
2008-06-09 20:20 149 r2h138.tmp
2008-06-09 19:35 2,352,128 sysdx.exe
2008-06-09 18:58 22,838 jqoregetmp
2008-06-09 16:10 16,384 ~DF9209.tmp
2008-06-09 15:23 0 JETB1DB.tmp
2008-06-09 15:00 32,768 ~DF7FBB.tmp
2008-06-09 14:04 270 MSI1c0bb.LOG
2008-06-09 14:04 336,025 caevents.log
2008-06-09 14:04 0 JET8EDD.tmp
2008-06-09 12:35 32,768 ~DFEEDB.tmp
2008-06-09 12:33 16,384 ~DF60FD.tmp
2008-06-09 12:30 270 MSIa0195.LOG
2008-06-09 12:20 0 JET3275.tmp
2008-06-09 12:17 0 JETBE6E.tmp
2008-06-09 00:33 32,768 ~DF8E41.tmp
2008-06-09 00:30 16,384 ~DF3FCC.tmp
2008-06-09 00:30 135 7056.bat
2008-06-09 00:29 16,384 ~DFC78A.tmp
2008-06-09 00:29 27,136 appack.exe
2008-06-09 00:29 53,248 lzma.exe
2008-06-09 00:27 16,384 ~DF343C.tmp
2008-06-09 00:27 16,384 ~DF710.tmp
2008-06-09 00:24 156 dw.log
2008-06-09 00:24 16,384 ~DF1787.tmp
2008-06-09 00:23 16,384 ~DF6D59.tmp
2008-06-09 00:23 16,384 ~DF28E6.tmp
2008-06-09 00:20 16,384 ~DF24F9.tmp
2008-06-09 00:20 16,384 ~DFF8DC.tmp
2008-06-09 00:20 16,384 ~DFF482.tmp
2008-06-09 00:20 16,384 ~DFEFD2.tmp
2008-06-09 00:20 16,384 ~DFC876.tmp
2008-06-09 00:14 16,384 ~DF5195.tmp
2008-06-09 00:14 16,384 ~DF3510.tmp
2008-06-09 00:07 270 MSIb31cf.LOG
2008-06-08 23:04 0 JET942C.tmp
2008-06-08 22:44 17,921 DLLeof.dll
2008-06-08 22:44 269,312 upx5443.exe
2008-06-08 22:43 3,263 new.ico
2008-06-08 15:32 63,488 dd_netfx20UI67E6.txt
2008-06-08 15:28 5,007,250 dd_netfx20MSI67E6.txt
2008-06-08 15:27 4,562 ASPNETSetup_00000.log
2008-06-08 14:40 22,308 qoatulstmp
2008-06-08 14:40 22,955 xcdibpqtmp
2008-06-08 14:40 22,156 xvljcyktmp
2008-06-08 14:40 22,948 slsmqkytmp
2008-06-08 14:26 32,768 ~DF3386.tmp
2008-06-08 11:34 7,021 kl-setup-2008-06-08-11-29-41.log
2008-06-08 11:34 4,173,892 kl-install-2008-06-08-11-29-41.log
2008-06-08 11:30 4,100 kleaner (pid 3384) 2008-06-08 11-30-02.log
2008-06-08 11:29 16,287 kleaner (pid 220) 2008-06-08 11-29-53.log
2008-06-08 11:29 7,990 kleaner (pid 220) 2008-06-08 11-29-50.log
2008-06-08 11:29 2,812 tmp25.tmp
2008-06-08 11:27 7,020 kl-setup-2008-06-08-11-26-52.log
2008-06-08 11:27 119,468 kl-install-2008-06-08-11-26-52.log
2008-06-08 11:27 8,154 kleaner (pid 1620) 2008-06-08 11-27-12.log
2008-06-08 11:26 2,812 tmp5.tmp
2008-06-08 11:12 754 MSI9dd28.LOG
2008-06-08 11:12 724 MSI88420.LOG
2008-06-08 10:55 16,384 ~DFCF16.tmp
2008-06-08 09:13 409 WGANotify.settings
2008-06-08 08:50 401,408 MSI5D.tmp
2008-06-08 08:35 392 MSId376e.LOG
2008-06-08 08:32 15,575 jar_cache10263.tmp
2008-06-08 08:32 620 MSI9b694.LOG
2008-06-08 08:31 235 jusched.log
2008-06-08 08:31 0 java_install.log
2008-06-08 08:31 1,304 MSI9232e.LOG
2008-06-08 08:30 1,036 java_install_sp.log
2008-06-08 08:29 8,262 jinstall.cfg
2008-06-08 08:29 382,352 tmp.xpi
2008-06-08 08:26 848 MSI47628.LOG
2008-06-08 08:25 16,384 Perflib_Perfdata_b0.dat
2008-06-08 07:54 3,335 Microsoft Office 2003 Setup(0001).txt
2008-06-08 07:54 206,506 Microsoft Office 2003 Setup(0001)_Task(0001).txt
2008-06-08 07:50 49,194 offcln11.log
2008-06-07 04:43 75 52538ECB.TMP
2008-06-03 06:43 81 2588A051.TMP
2005-12-24 21:05 874,496 788843.msi
2005-12-24 21:05 874,496 79dd24.msi
134 Datei(en) 73,753,731 Bytes
0 Verzeichnis(se), 71,212,240,896 Bytes frei
.
.
.
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 0CAD-0566
Verzeichnis von C:\WINDOWS
2008-06-16 22:15 1,657,520 WindowsUpdate.log
2008-06-16 22:14 0 0.log
2008-06-16 22:12 2,048 bootstat.dat
2008-06-16 19:52 2,555 unins000.dat
2008-06-16 19:50 691,545 unins000.exe
2008-06-16 19:39 312,336 ntbtlog.txt
2008-06-16 07:04 749 wiadebug.log
2008-06-16 07:04 50 wiaservc.log
2008-06-16 06:34 371,798 setupapi.log
2008-06-15 05:30 6,470 SchedLgU.Txt
2008-06-13 14:11 33,396 MedCtrOC.log
2008-06-13 14:11 26,729 ehOCGen.log
2008-06-13 14:11 168,910 comsetup.log
2008-06-13 14:11 537,145 iis6.log
2008-06-13 14:11 1,374 imsins.log
2008-06-13 14:11 26,149 ocmsn.log
2008-06-13 14:11 219,870 tsoc.log
2008-06-13 14:11 24,538 tabletoc.log
2008-06-13 14:11 100,467 ntdtcsetup.log
2008-06-13 14:11 19,185 KB951698.log
2008-06-13 14:11 231,409 ocgen.log
2008-06-13 14:11 57,013 plusoc.log
2008-06-13 14:11 82,619 netfxocm.log
2008-06-13 14:11 23,433 msgsocm.log
2008-06-13 14:11 472,119 FaxSetup.log
2008-06-13 14:11 149,616 msmqinst.log
2008-06-13 14:11 37,143 updspapi.log
2008-06-13 14:11 1,374 imsins.BAK
2008-06-08 07:26 200 cmsetacl.log
2007-06-13 15:21 1,036,288 SETFA.tmp
2007-06-13 15:21 1,036,288 explorer.exe
2006-12-28 01:02 7,031 instwcli.inf
2005-12-24 21:05 11,084 SET30.tmp
2005-12-24 21:05 11,084 SET31.tmp
2005-12-24 21:05 11,084 SET32.tmp
2005-12-24 21:05 33,676 SET33.tmp
2005-12-24 21:05 11,084 SET34.tmp
2005-12-24 21:05 17,402 SET35.tmp
2005-12-24 21:05 11,084 SET36.tmp
2005-12-24 21:05 11,084 SET37.tmp
2005-12-24 21:05 11,084 SET38.tmp
2005-12-24 21:05 21,737 SET39.tmp
2005-12-24 21:05 11,437 SET3A.tmp
2005-12-24 21:05 14,316 SET3B.tmp
2005-12-24 21:05 12,143 SET3C.tmp
2005-12-24 21:05 9,445 SET3D.tmp
2005-12-24 21:05 11,845 SET3E.tmp
2005-12-24 21:05 10,786 SET3F.tmp
2005-12-24 21:05 1,086,058 SET4.tmp
2005-12-24 21:05 10,786 SET40.tmp
2005-12-24 21:05 18,615 SET41.tmp
2005-12-24 21:05 11,845 SET42.tmp
2005-12-24 21:05 15,022 SET43.tmp
2005-12-24 21:05 9,735 SET44.tmp
2005-12-24 21:05 11,068 SET45.tmp
2005-12-24 21:05 11,068 SET46.tmp
2005-12-24 21:05 11,068 SET47.tmp
2005-12-24 21:05 10,425 SET48.tmp
2005-12-24 21:05 14,598 SET49.tmp
2005-12-24 21:05 12,849 SET2F.tmp
2005-12-24 21:05 12,543 SET4B.tmp
2005-12-24 21:05 10,425 SET4C.tmp
2005-12-24 21:05 11,421 SET4D.tmp
2005-12-24 21:05 15,304 SET4E.tmp
2005-12-24 21:05 9,782 SET4F.tmp
2005-12-24 21:05 14,137 SET50.tmp
2005-12-24 21:05 11,068 SET51.tmp
2005-12-24 21:05 18,199 SET52.tmp
2005-12-24 21:05 16,497 SET53.tmp
2005-12-24 21:05 10,786 SET54.tmp
2005-12-24 21:05 13,574 SET55.tmp
2005-12-24 21:05 10,425 SET56.tmp
2005-12-24 21:05 29,451 SET57.tmp
2005-12-24 21:05 14,043 SET8.tmp
2005-12-24 21:05 21,633 SET2E.tmp
2005-12-24 21:05 1,405 msdfmap.ini
2005-12-24 21:05 10,925 SET2D.tmp
2005-12-24 21:05 9,522 Zapotek.bmp
2005-12-24 21:05 10,752 hh.exe
2005-12-24 21:05 67,072 SOUNDMAN.EXE
2005-12-24 21:05 106,147 SET3.tmp
2005-12-24 21:05 34,818 wmprfDEU.prx
.
.
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 0CAD-0566
Verzeichnis von C:\WINDOWS\temp
2008-06-16 22:12 255 WGAErrLog.txt
2008-06-16 19:35 409 WGANotify.settings
2008-06-16 15:37 8,192 cch~2940fba5.htp
2008-06-16 15:37 8,192 cch~293ea090.htp
2008-06-16 15:37 8,192 cch~25d048ee.htp
2008-06-16 15:37 8,192 cch~25cec0c2.htp
2008-06-16 15:33 8,192 cch~459fa0f9.htp
2008-06-16 15:33 8,192 cch~459fa55e.htp
2008-06-16 15:33 8,192 cch~45681892.htp
2008-06-16 15:33 8,192 cch~45681472.htp
2008-06-16 15:33 8,192 cch~451b2c21.htp
2008-06-16 15:33 8,192 cch~451b30ed.htp
2008-06-10 06:06 158 DFC5A2B2.TMP
13 Datei(en) 82,742 Bytes
0 Verzeichnis(se), 71,212,236,800 Bytes frei
.
.
.
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 0CAD-0566
Verzeichnis von C:\WINDOWS\Downloaded Program Files
2008-06-08 07:30 65 desktop.ini
2007-07-30 19:24 293 wuweb.inf
2 Datei(en) 358 Bytes
0 Verzeichnis(se), 71,212,236,800 Bytes frei
.
.
.
wenn ich aber Combofix Benutzen will bekomme ich nach knapp 30 sekunden immer einen Bluescreen auch im abgesicherten modus.
HIer auch mal nen cmd/Netstat -a Log
Proto Lokale Adresse Remoteadresse Status
TCP home-pc:epmap home-pc:0 ABHÖREN
TCP home-pc:microsoft-ds home-pc:0 ABHÖREN
TCP home-pc:2869 home-pc:0 ABHÖREN
TCP home-pc:3260 home-pc:0 ABHÖREN
TCP home-pc:3261 home-pc:0 ABHÖREN
TCP home-pc:50300 home-pc:0 ABHÖREN
TCP home-pc:1049 localhost:1051 HERGESTELLT
TCP home-pc:1051 localhost:1049 HERGESTELLT
TCP home-pc:1059 localhost:1060 HERGESTELLT
TCP home-pc:1060 localhost:1059 HERGESTELLT
TCP home-pc:5354 home-pc:0 ABHÖREN
TCP home-pc:27015 home-pc:0 ABHÖREN
TCP home-pc:netbios-ssn home-pc:0 ABHÖREN
UDP home-pc:microsoft-ds *:*
UDP home-pc:isakmp *:*
UDP home-pc:1026 *:*
UDP home-pc:4500 *:*
UDP home-pc:1900 *:*
UDP home-pc:netbios-ns *:*
UDP home-pc:netbios-dgm *:*
UDP home-pc:1900 *:*
UDP home-pc:5353 *:*
So und Prozzese [URL=http://img3.imagebanana.com/]
Naja Wenn ihr mir helfen Könnte währe klasse.
Nochwas:
Betriebseytem : Windows Xp Sp 2
Antivir : Kaspersky IneterNet Securety 2009
AntiySpyware : Spyware Doktor Version k/a Vollversion [/img]