Hallo Ralf,
Anbei zunächst das Combofixlog.
ComboFix 08-01-30.6 - Klaus 2008-01-30 15:35:39.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1031.18.596 [GMT 1:00]
ausgeführt von:: C:\Dokumente und Einstellungen\Klaus\Desktop\ComboFix.exe
* Neuer Wiederherstellungspunkt wurde erstellt
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
(((((((((((((((((((((((((((((((((((( Weitere L”schungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\regedit.com
C:\WINDOWS\system32\MabryObj.dll
C:\WINDOWS\system32\taskmgr.com
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\nm
((((((((((((((((((((((( Dateien erstellt von 2007-12-28 bis 2008-01-30 ))))))))))))))))))))))))))))))
.
2008-01-30 14:37 . 2008-01-30 14:43 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy
2008-01-28 19:54 . 2008-01-28 14:21 113,664 --a------ C:\WINDOWS\1PWUn0.exe
2008-01-28 19:54 . 2008-01-28 19:54 1,193 -r------- C:\WINDOWS\1PasswordPro0_Uninstall.in
2008-01-26 16:15 . 2008-01-26 16:15 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-26 16:15 . 2008-01-26 16:15 1,409 --a------ C:\WINDOWS\QTFont.for
2008-01-22 08:40 . 2008-01-22 08:40 <DIR> d-------- C:\Programme\USQLC
2008-01-21 16:40 . 2007-10-12 15:14 3,734,536 --a------ C:\WINDOWS\system32\d3dx9_36.dll
2008-01-21 16:39 . 2005-05-26 15:34 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2008-01-21 16:20 . 2008-01-21 16:20 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\nView_Profiles
2008-01-20 16:08 . 2001-08-21 12:36 81,920 -ra------ C:\WINDOWS\system32\equcof.dll
2008-01-20 16:06 . 2001-11-11 14:42 45,056 -ra------ C:\WINDOWS\system32\uacb.dll
2008-01-20 16:04 . 2002-05-03 17:03 21,276 -ra------ C:\WINDOWS\system32\drivers\uacflt.sys
2008-01-20 11:25 . 2008-01-30 15:41 88,566 --a------ C:\WINDOWS\system32\nvapps.xml
2008-01-20 11:24 . 2008-01-20 11:26 <DIR> d-------- C:\WINDOWS\nview
2008-01-20 11:24 . 2006-10-22 15:06 208,896 --a------ C:\WINDOWS\system32\NVUNINST.EXE
2008-01-20 11:24 . 2006-10-22 12:22 208,896 --a------ C:\WINDOWS\system32\nvudisp.exe
2008-01-20 11:24 . 2006-10-22 12:22 17,056 --a------ C:\WINDOWS\system32\nvdisp.nvu
2008-01-20 11:23 . 2008-01-20 11:23 <DIR> d-------- C:\NVIDIA
2008-01-19 16:17 . 2008-01-19 16:52 <DIR> d-------- C:\Dokumente und Einstellungen\Klaus\Anwendungsdaten\Ahead
2008-01-19 16:17 . 2008-01-19 16:17 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\LightScribe
2008-01-19 16:08 . 2008-01-19 16:08 <DIR> d-------- C:\Programme\Gemeinsame Dateien\LightScribe
2008-01-19 16:02 . 2008-01-19 16:02 <DIR> d-------- C:\Programme\Nero
2008-01-19 16:02 . 2008-01-19 16:02 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Nero
2008-01-19 15:53 . 2008-01-19 15:53 <DIR> d-------- C:\Programme\SAMSUNG
2008-01-18 20:21 . 2008-01-18 20:21 <DIR> d-------- C:\Programme\xp-AntiSpy
2008-01-16 14:27 . 2008-01-16 14:27 <DIR> d-------- C:\Programme\QuickTime
2008-01-16 14:26 . 2008-01-16 14:26 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Apple Computer
2008-01-12 16:51 . 2007-12-14 01:59 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-01-10 15:27 . 2008-01-10 15:27 90,112 --a------ C:\WINDOWS\system32\QuickTimeVR.qtx
2008-01-10 15:27 . 2008-01-10 15:27 57,344 --a------ C:\WINDOWS\system32\QuickTime.qts
2007-12-31 18:10 . 2007-12-31 18:10 <DIR> d-------- C:\Programme\HD Tune
2007-12-28 09:15 . 2007-12-28 12:22 <DIR> d-------- C:\Dokumente und Einstellungen\Klaus\Anwendungsdaten\Premium Security Suite
2007-12-28 09:08 . 2007-12-28 09:08 <DIR> d-------- C:\Programme\Avira
2007-12-28 09:08 . 2007-12-28 09:14 63,488 --a------ C:\WINDOWS\system32\drivers\avfwot.sys
2007-12-28 09:08 . 2007-08-30 13:12 61,096 --a------ C:\WINDOWS\system32\drivers\avfwim.sys
2007-12-05 18:05 . 2007-12-05 18:06 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Logishrd
2007-12-05 18:05 . 2007-11-15 10:06 301,656 --a------ C:\WINDOWS\system32\BtCoreIf.dll
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-30 14:41 --------- d-----w C:\Programme\cFosSpeed
2008-01-30 14:41 --------- d-----w C:\Programme\1pw
2008-01-30 10:49 --------- d-----w C:\Programme\Mozilla Thunderbird
2008-01-24 17:53 --------- d-----w C:\Programme\a-squared Free
2008-01-23 07:13 --------- d-----w C:\Programme\Adress Little 2.0
2008-01-22 17:26 --------- d-----w C:\Programme\UpdateScanner
2008-01-20 17:18 --------- d-----w C:\Programme\Registry System Wizard
2008-01-19 16:11 --------- d--h--w C:\Programme\InstallShield Installation Information
2008-01-19 15:42 --------- d-----w C:\Programme\Gemeinsame Dateien\Ahead
2008-01-19 15:14 --------- d-----w C:\Programme\TuneUp Utilities 2007
2008-01-15 12:54 --------- d-----w C:\Programme\VR-NetWorld
2008-01-12 15:52 --------- d-----w C:\Programme\Java
2007-12-28 08:08 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2007-12-28 07:58 --------- d-----w C:\Programme\AusLogics Disk Defrag
2007-12-26 02:47 --------- d-----w C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2007-12-05 17:12 --------- d-----w C:\Programme\Simplex Software
2007-12-05 17:11 74,752 ----a-w C:\WINDOWS\ST6UNST.EXE
2007-12-05 17:11 294,912 ------w C:\WINDOWS\Setupx.exe
2007-12-05 17:05 --------- d-----w C:\Programme\Gemeinsame Dateien\Logitech
2007-11-30 09:03 --------- d-----w C:\Dokumente und Einstellungen\Klaus\Anwendungsdaten\TeamViewer
2007-11-30 08:58 --------- d-----w C:\Programme\TeamViewer3
2007-11-15 09:07 76,304 ----a-w C:\WINDOWS\system32\KemXML.dll
2007-11-15 09:07 170,512 ----a-w C:\WINDOWS\system32\kemutb.dll
2007-11-15 09:07 141,840 ----a-w C:\WINDOWS\system32\KemUtil.dll
2007-11-15 09:07 117,264 ----a-w C:\WINDOWS\system32\KemWnd.dll
2007-11-07 09:27 729,600 ----a-w C:\WINDOWS\system32\lsasrv.dll
2007-11-07 09:27 729,600 ------w C:\WINDOWS\system32\dllcache\lsasrv.dll
2007-10-30 23:19 3,590,656 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll
2007-10-30 17:20 360,064 ------w C:\WINDOWS\system32\dllcache\tcpip.sys
2007-10-29 22:42 1,293,312 ----a-w C:\WINDOWS\system32\quartz.dll
2007-10-29 22:42 1,293,312 ------w C:\WINDOWS\system32\dllcache\quartz.dll
2007-10-29 17:02 281,552 ----a-w C:\WINDOWS\system32\cfosspeed.dll
2007-10-25 16:42 8,501,248 ----a-w C:\WINDOWS\system32\dllcache\shell32.dll
2007-10-25 08:28 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll
2007-10-25 08:28 222,720 ----a-w C:\WINDOWS\system32\dllcache\wmasf.dll
2007-10-24 00:47 96,760 ----a-w C:\WINDOWS\system32\dfshim.dll
2007-10-24 00:47 84,480 ----a-w C:\WINDOWS\system32\mscories.dll
2007-10-24 00:47 282,112 ----a-w C:\WINDOWS\system32\mscoree.dll
2007-10-24 00:47 158,720 ----a-w C:\WINDOWS\system32\mscorier.dll
2007-10-22 02:39 267,272 ----a-w C:\WINDOWS\system32\xactengine2_10.dll
2007-10-22 02:37 17,928 ----a-w C:\WINDOWS\system32\X3DAudio1_2.dll
2007-10-12 14:14 1,374,232 ----a-w C:\WINDOWS\system32\D3DCompiler_36.dll
2007-10-11 08:55 88,576 ----a-w C:\WINDOWS\system32\infocardapi.dll
2007-10-11 08:55 579,584 ----a-w C:\WINDOWS\system32\icardagt.exe
2007-10-11 08:55 11,776 ----a-w C:\WINDOWS\system32\icardres.dll
2007-10-10 23:46 824,832 ----a-w C:\WINDOWS\system32\wininet.dll
2007-10-10 23:46 824,832 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll
2007-10-10 23:46 671,232 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll
2007-10-10 23:46 63,488 ------w C:\WINDOWS\system32\dllcache\icardie.dll
2007-10-10 23:46 6,065,664 ------w C:\WINDOWS\system32\dllcache\ieframe.dll
2007-10-10 23:46 52,224 ------w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2007-10-10 23:46 478,208 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-10-10 23:46 459,264 ------w C:\WINDOWS\system32\dllcache\msfeeds.dll
2007-10-10 23:46 44,544 ----a-w C:\WINDOWS\system32\dllcache\iernonce.dll
2007-10-10 23:46 384,512 ----a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll
2007-10-10 23:46 383,488 ------w C:\WINDOWS\system32\dllcache\ieapfltr.dll
2007-10-10 23:46 27,648 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-10-10 23:46 267,776 ------w C:\WINDOWS\system32\dllcache\iertutil.dll
2007-10-10 23:46 232,960 ----a-w C:\WINDOWS\system32\dllcache\webcheck.dll
2007-10-10 23:46 230,400 ----a-w C:\WINDOWS\system32\dllcache\ieaksie.dll
2007-10-10 23:46 214,528 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
2007-10-10 23:46 193,024 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll
2007-10-10 23:46 153,088 ----a-w C:\WINDOWS\system32\dllcache\ieakeng.dll
2007-10-10 23:46 132,608 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll
2007-10-10 23:46 124,928 ----a-w C:\WINDOWS\system32\dllcache\advpack.dll
2007-10-10 23:46 105,984 ------w C:\WINDOWS\system32\dllcache\url.dll
2007-10-10 23:46 102,400 ------w C:\WINDOWS\system32\dllcache\occache.dll
2007-10-10 23:46 1,159,680 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll
2007-10-10 10:59 70,656 ----a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe
2007-10-10 10:59 625,152 ------w C:\WINDOWS\system32\dllcache\iexplore.exe
2007-10-10 10:59 13,824 ------w C:\WINDOWS\system32\dllcache\ieudinit.exe
2007-10-10 05:46 161,792 ----a-w C:\WINDOWS\system32\dllcache\ieakui.dll
2007-10-09 12:03 779,800 ----a-w C:\WINDOWS\system32\PresentationNative_v0300.dll
2007-10-09 12:03 73,752 ----a-w C:\WINDOWS\system32\dxva2.dll
2007-10-09 12:03 493,080 ----a-w C:\WINDOWS\system32\evr.dll
2007-10-09 12:03 350,744 ----a-w C:\WINDOWS\system32\PresentationHost.exe
2007-10-09 12:03 33,304 ----a-w C:\WINDOWS\system32\PresentationHostProxy.dll
2007-10-09 12:03 161,304 ----a-w C:\WINDOWS\system32\UIAutomationCore.dll
2007-10-09 12:03 106,520 ----a-w C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2007-10-09 12:03 1,986,072 ----a-w C:\WINDOWS\system32\milcore.dll
2007-10-09 11:58 16,896 ----a-w C:\WINDOWS\system32\tswpfwrp.exe
2007-10-02 08:56 444,776 ----a-w C:\WINDOWS\system32\d3dx10_36.dll
2007-08-17 10:33 120,286 ----a-w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\firstlsp.reg.dat
2004-07-29 13:16 28,904 ----a-w C:\Dokumente und Einstellungen\Klaus\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2004-03-11 12:27 40,960 ----a-w C:\Programme\Uninstall_CDS.exe
2003-09-12 17:26 27 ----a-w C:\Dokumente und Einstellungen\Klaus\free.vbs
1998-10-05 19:02 10,000 ----a-w C:\WINDOWS\inf\unregpn.exe
.
(((((((((((((((((((((((((((( Autostart Punkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Hinweis* leere Eintrage & legitime Standardeintrage werden nicht angezeigt.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="C:\PROGRA~1\Microsoft ActiveSync\wcescomm.exe" [2005-11-15 19:14 1204224]
"FRITZ!fon"="C:\Programme\FRITZ!\FriFon32.exe" [2005-05-01 03:06 1114112]
"FRITZ!fax"="C:\Programme\FRITZ!\FriFax32.exe" [2005-05-01 03:06 1425408]
"ccleaner"="C:\Programme\CCleaner\ccleaner.exe" [2008-01-17 10:40 816368]
"OneTouchHotKey MFC Application"="C:\WINDOWS\Twain_32\SlimU2\HotKey.Exe" [2002-08-07 17:38 610304]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:57 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-09-21 03:10 55824 C:\WINDOWS\KHALMNPR.Exe]
"1PW"="C:\PROGRA~1\1PW\ONEPW.EXE" [2008-01-28 10:05 767217]
"NeroFilterCheck"="C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe" [2007-03-01 15:57 153136]
"cFosSpeed"="C:\Programme\cFosSpeed\cFosSpeed.exe" [2007-10-29 18:02 850896]
"avgnt"="C:\Programme\Avira\Avira Premium Security Suite\avgnt.exe" [2007-12-28 09:14 249896]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-10-22 12:22 7700480]
"NvMediaCenter"="NvMCTray.dll" [2006-10-22 12:22 86016 C:\WINDOWS\system32\nvmctray.dll]
"UnlockerAssistant"="C:\Programme\Unlocker\UnlockerAssistant.exe" [ ]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-03 23:57 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"disablecad"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoFavoritesMenu"= 0 (0x0)
"NoLogOff"= 0 (0x0)
"NoTrayContextMenu"= 0 (0x0)
"NoWinKeys"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)
"NoInstrumentation"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
c:\programme\gemeinsame dateien\logitech\bluetooth\LBTWlgn.dll 2007-11-15 10:10 72208 c:\Programme\Gemeinsame Dateien\Logitech\Bluetooth\LBTWLgn.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\PCANotify]
PCANotify.dll 2002-02-15 10:51 24638 C:\WINDOWS\system32\PCANotify.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"LightScribe Control Panel"=C:\Programme\Gemeinsame Dateien\LightScribe\LightScribeControlPanel.exe -hidden
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Acronis True Image Monitor"="C:\Programme\Acronis\TrueImage\TrueImageMonitor.exe"
"Acronis Scheduler2 Service"="C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe"
"nwiz"=nwiz.exe /install
"HTpatch"=C:\WINDOWS\htpatch.exe
"SunJavaUpdateSched"="C:\Programme\Java\jre1.6.0_04\bin\jusched.exe"
"NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
"Adobe Reader Speed Launcher"="C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
"QuickTime Task"="C:\Programme\QuickTime\QTTask.exe" -atboottime
"Name of App"=C:\Programme\SAMSUNG\FW LiveUpdate\FWManager.exe r
R0 BsStor;InCD Storage Helper Driver;C:\WINDOWS\system32\DRIVERS\bsstor.sys [2002-05-01 10:05]
R1 avfwot;avfwot;C:\WINDOWS\system32\DRIVERS\avfwot.sys [2007-12-28 09:14]
R2 AntiVirFirewallService;Avira Premium Security Suite Firewall;"C:\Programme\Avira\Avira Premium Security Suite\avfwsvc.exe" [2007-12-28 09:14]
R2 AntiVirMailService;Avira Premium Security Suite MailGuard;"C:\Programme\Avira\Avira Premium Security Suite\avmailc.exe" [2007-12-28 09:14]
R2 antivirwebservice;Avira Premium Security Suite WebGuard;"C:\Programme\Avira\Avira Premium Security Suite\AVWEBGRD.EXE" [2007-12-28 09:14]
R2 AVEService;Avira Premium Security Suite MailGuard Hilfsdienst;"C:\Programme\Avira\Avira Premium Security Suite\avesvc.exe" [2007-12-28 09:14]
R2 AVMPORT;AVMPORT;C:\WINDOWS\system32\drivers\avmport.sys [2001-10-23 00:00]
R2 BsUDF;InCD UDF Driver;C:\WINDOWS\system32\drivers\BsUDF.sys [2002-05-16 00:38]
R2 U3sHlpDr;U3sHlpDr;C:\WINDOWS\System32\Drivers\U3sHlpDr.sys [2003-04-14 13:55]
R2 uacFlt;Plantronics USB Audio Adapter EQ Filter Driver;C:\WINDOWS\system32\DRIVERS\uacflt.sys [2002-05-03 17:03]
R2 UxTuneUp;TuneUp Designerweiterung;C:\WINDOWS\System32\svchost.exe [2004-08-03 23:58]
R3 avfwim;AvFw Packet Filter Miniport;C:\WINDOWS\system32\DRIVERS\avfwim.sys [2007-08-30 13:12]
R3 AVMCOWAN;AVM ISDN CoNDIS WAN CAPI Treiber;C:\WINDOWS\system32\DRIVERS\avmcowan.sys [2005-06-08 02:00]
R3 AVMDSLPPPOE;AVM DSL PPPoE CAPI Treiber;C:\WINDOWS\system32\DRIVERS\avmdsloe.sys [2005-06-08 02:00]
R3 AVMNDSL;AVM DSL NDIS WAN CAPI Treiber;C:\WINDOWS\system32\DRIVERS\avmndsl.sys [2005-06-08 02:00]
R3 FDSLBASE;AVM FRITZ!Card DSL (WinXP/2000);C:\WINDOWS\system32\DRIVERS\fdslbase.sys [2005-06-08 02:00]
R3 NETFRITZ;AVM FRITZ!web PPP over ISDN;C:\WINDOWS\system32\DRIVERS\NETFRITZ.SYS [2005-03-04 11:35]
R3 SiS7012;Service for AC'97 Sample Driver (WDM);C:\WINDOWS\system32\drivers\sis7012.sys [2004-11-03 14:14]
S3 AVMWAN;AVM NDIS WAN CAPI-Treiber;C:\WINDOWS\system32\DRIVERS\avmwan.sys [2001-08-17 11:13]
S3 MTK;Media Technology Kernel Driver;C:\WINDOWS\system32\Drivers\mtk.sys [2003-03-26 16:13]
S3 NETFWDSL;AVM FRITZ!web DSL PPP;C:\WINDOWS\system32\DRIVERS\NETFWDSL.SYS []
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
tapisrv REG_MULTI_SZ Tapisrv
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Programme\Gemeinsame Dateien\LightScribe\LSRunOnce.exe"
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-01-30 15:42:33
Windows 5.1.2600 Service Pack 2 NTFS
Scanne versteckte Prozesse...
Scanne versteckte Autostart Eintr„ge...
Scanne versteckte Dateien...
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Programme\Avira\Avira Premium Security Suite\avguard.exe
C:\Programme\a-squared Free\a2service.exe
C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
C:\Programme\Avira\Avira Premium Security Suite\avfwsvc.exe
C:\Programme\Avira\Avira Premium Security Suite\sched.exe
C:\Programme\Avira\Avira Premium Security Suite\avesvc.exe
C:\Programme\cFosSpeed\spd.exe
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\EPSON\EPW!3 SSRP\E_S30RP1.EXE
C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
C:\Programme\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programme\Avira\Avira Premium Security Suite\avmailc.exe
C:\Programme\Avira\Avira Premium Security Suite\AVWEBGRD.EXE
C:\PROGRA~1\1PW\ONEPW.EXE
C:\Programme\cFosSpeed\cFosSpeed.exe
C:\Programme\Avira\Avira Premium Security Suite\avgnt.exe
C:\PROGRA~1\Microsoft ActiveSync\wcescomm.exe
C:\Programme\FRITZ!\FriFon32.exe
C:\Programme\FRITZ!\FriFax32.exe
C:\WINDOWS\Twain_32\SlimU2\HotKey.Exe
C:\PROGRA~1\Microsoft ActiveSync\rapimgr.exe
C:\Programme\Logitech\SetPoint\SetPoint.exe
C:\Programme\Gemeinsame Dateien\Logishrd\KHAL2\KHALMNPR.EXE
.
**************************************************************************
.
Zeit der Fertigstellung: 2008-01-30 15:45:19 - machine was rebooted
ComboFix-quarantined-files.txt 2008-01-30 14:44:33
MFG
sierrakilo
olice: