Bitte HiJack Log anschauen! Danke! :-)

Kandi1982 · 29.07.2009, 14:32

Hallo,

ich wäre euch sehr verbunden, wenn ihr mein Log-File mal genauer anschauen könntet.
Ich hatte in letzter Zeit mehrfach Warnungen von AntiVir (CC/Agent.SA am 25. und 26.07., TR/Drop.Agent.vze am 17.07., TR/Agent.1205536.A am 10.07.), dann sehr dubiose Programme, die Popup-Fenster im IE öffneten und unbekannte Soundateien abspielten. Diese Programme hießen p.exe, t.exe und waren im task manager zu sehen. Ich habe alles beendet und gelöscht und AntiVir bzw. A-squared free mehrfach ergebnislos laufen lassen. Da ich gestern aber mehrfach einen Fehler (explorer.exe muss beendet werden) hatte und auch der PC sich mehrfach nicht runterfahren lies, habe ich Angst, dass ich doch noch Mist auf dem PC habe.

Hier das Log File:

Code:

ATTFilter

 Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:09:20, on 29.07.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir Desktop\sched.exe
c:\programme\a-squared free\a2service.exe
C:\Programme\Gemeinsame Dateien\AccSys\AccVSSvc.exe
C:\WINDOWS\system32\bmwebcfg.exe
C:\Programme\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Programme\Hotspot Shield\bin\openvpnas.exe
C:\Programme\Hotspot Shield\HssWPR\hsssrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Uniblue\DiskRescue\UBDiskRescueSrv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Apoint\Apoint.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\ICO.EXE
C:\Programme\Sony\VAIO Camera Utility\VCUServe.exe
C:\Programme\Utimaco\SafeGuard PrivateDisk\pdservice.exe
C:\Programme\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\WINDOWS\system32\Oplmsb01.exe
C:\Programme\Avira\AntiVir Desktop\avgnt.exe
C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe
C:\Programme\Sony\VAIO Update 4\VAIOUpdt.exe
C:\Programme\Java\jre6\bin\jusched.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Programme\Windows Media Player\WMPNSCFG.exe
C:\Programme\Apoint\Apntex.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programme\Avira\AntiVir Desktop\avguard.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\windows\explorer.exe
C:\Programme\Trojancheck 6\tc6.exe
C:\Programme\Trojancheck 6\tcguard.exe
C:\Programme\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = file://C:/Dokumente und Einstellungen/****/Eigene Dateien/Eigene Musik/Temp/Tunebite/.downloading/profile/rrproxy_ie_4a292bea.pac
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Programme\Hotspot Shield\hssie\HssIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Apoint] C:\Programme\Apoint\Apoint.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [VAIOCameraUtility] "C:\Programme\Sony\VAIO Camera Utility\VCUServe.exe"
O4 - HKLM\..\Run: [ISBMgr.exe] C:\Programme\Sony\ISB Utility\ISBMgr.exe
O4 - HKLM\..\Run: [Switcher.exe] C:\Programme\Sony\Wireless Switch Setting Utility\Switcher.exe
O4 - HKLM\..\Run: [PDService.exe] C:\Programme\Utimaco\SafeGuard PrivateDisk\pdservice.exe
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Programme\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [SystemTray] %windir%\system32\systray.exe
O4 - HKLM\..\Run: [LanguageMonitor] C:\WINDOWS\system32\Oplmsb01.exe OKI B4100
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ISUSPM] "C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKLM\..\Run: [VAIO Update 4] "C:\Programme\Sony\VAIO Update 4\VAIOUpdt.exe"  /Stationary
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: VPN Client.lnk = ?
O8 - Extra context menu item: &Suche im Duden - res://C:\Programme\Duden-Suche Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Run Context - C:\Programme\Informatic\Word Explorer 2.0\cnie5.htm
O8 - Extra context menu item: Run Word Explorer - C:\Programme\Informatic\Word Explorer 2.0\cnie5.htm
O9 - Extra button: (no name) - {1AE2F26C-8E23-4930-A68D-9E681A764001} - (no file)
O9 - Extra button: Run Word Explorer - {26231800-6CE9-43d8-9357-5B4DC8CF4561} - C:\Programme\Informatic\Word Explorer 2.0\cnie5.htm
O9 - Extra 'Tools' menuitem: Run Word Explorer - {26231800-6CE9-43d8-9357-5B4DC8CF4561} - C:\Programme\Informatic\Word Explorer 2.0\cnie5.htm
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: bmnet.dll
O10 - Unknown file in Winsock LSP: bmnet.dll
O10 - Unknown file in Winsock LSP: bmnet.dll
O14 - IERESET.INF: START_PAGE_URL=http://w*w.club-vaio.com/de/
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://a1540.g.akamai.net/7/1540/52/20070711/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1246606740140
O16 - DPF: {96512D57-F751-4088-A689-5778FCC77F7A} (Photo Uploader Control) - http://w*w.studivz.net/lib/photouploader/PhotoUploader.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\Skype4COM.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - c:\programme\a-squared free\a2service.exe
O23 - Service: AccSys WLAN Control Service (accvssvc) - AccSys GmbH - C:\Programme\Gemeinsame Dateien\AccSys\AccVSSvc.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bytemobile Web Configurator (bmwebcfg) - Bytemobile, Inc. - C:\WINDOWS\system32\bmwebcfg.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Programme\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Programme\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Helper Service (HssSrv) - AnchorFree Inc. - C:\Programme\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Programme\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programme\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Uniblue DiskRescue - Uniblue - C:\Programme\Uniblue\DiskRescue\UBDiskRescueSrv.exe
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Programme\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe
O24 - Desktop Component 0: (no name) - C:\Dokumente und Einstellungen\****\Desktop\****\Verschiedenes\Bilder\USA-flag.gif
O24 - Desktop Component 1: (no name) - C:\Dokumente und Einstellungen\****\Desktop\****\Verschiedenes\Bilder\FI-flag.gif
O24 - Desktop Component 10: (no name) - file:///C:/Dokumente%20und%20Einstellungen/****/Desktop/****/Homepage/Gifs/inspiedstar.gif
O24 - Desktop Component 2: (no name) - file:///C:/Dokumente%20und%20Einstellungen/****/Desktop/****/Homepage/Gifs/prettyani1.gif
O24 - Desktop Component 3: (no name) - C:\Dokumente und Einstellungen\****\Desktop\Fotos ohne Ende\2007\P7090050a.jpg
O24 - Desktop Component 4: (no name) - C:\Dokumente und Einstellungen\****\Desktop\****\Homepage\fantasy9_files\fantasy9star.gif
O24 - Desktop Component 5: (no name) - file:///C:/Dokumente%20und%20Einstellungen/****/Desktop/****/Homepage/Gifs/dreamsstarfloat.gif
O24 - Desktop Component 6: (no name) - file:///C:/Dokumente%20und%20Einstellungen/****/Desktop/****/Homepage/DancingInTheStars-Dateien/starrotatemed.gif
O24 - Desktop Component 7: (no name) - C:\Dokumente und Einstellungen\****\Desktop\****\Homepage\fantasy7_files\fantasy7star.gif
O24 - Desktop Component 8: (no name) - file:///C:/Dokumente%20und%20Einstellungen/****/Desktop/****/Homepage/Gifs/catchingstardustfloat.gif
O24 - Desktop Component 9: (no name) - C:\Dokumente und Einstellungen\****\Desktop\****\Homepage\Gifs\divider.gif

--
End of file - 10999 bytes

Vielen Dank schonmal im Voraus!
Sandra

Kandi1982 · 29.07.2009, 18:01

Hallo,

ich habe nun endlich die Ergebnisse vom Malware-Scan, leider hat der Scan zwei Infizierungen in der Registry gefunden, die ich jetzt in Quarantäne geschickt habe. Es wäre aber trotzdem sehr nett, wenn ein Experte mir nochmal sagen könnte, ob das ausreicht.

Hier die Ergebnisse:

Code:

ATTFilter

Malwarebytes' Anti-Malware 1.39
Datenbank Version: 2526
Windows 5.1.2600 Service Pack 3

29.07.2009 18:46:06
mbam-log-2009-07-29 (18-46-06).txt

Scan-Methode: Vollständiger Scan (C:\|D:\|)
Durchsuchte Objekte: 196092
Laufzeit: 1 hour(s), 7 minute(s), 16 second(s)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 2
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

Ich werde gleich noch RSIT durchführen und die Ergebnisse auch hier posten.
Für jegliche Rückmeldung (auch, wenn ich doch etwas falsch gemacht habe...) wäre ich wirklich sehr dankbar.

Viele Grüße
Sandra

Kandi1982 · 29.07.2009, 18:23

Fortsetzung:

Code:

ATTFilter

Skype™ 4.0-->MsiExec.exe /X{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}
SonicStage 4.3-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{A0EB195B-5876-48E6-879D-33D4B2102610}\setup.exe" -l0x7 UNINSTALL -removeonly
Sony USB Mouse-->Pmuninst.exe MouseSuite98
Sony Video Shared Library-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{BE56FEF0-1A0F-4719-B3AD-34B5087AFA6D}\setup.exe" -l0x7  -removeonly
System Requirements Lab-->C:\Programme\SystemRequirementsLab\Uninstall.exe
Trojancheck 6-->"C:\Programme\Trojancheck 6\unins000.exe"
TrueCrypt-->"C:\Programme\TrueCrypt\TrueCrypt Setup.exe" /u
Tunebite-->MsiExec.exe /I{FDC0EF71-939A-4D28-ACBC-C6364B5FCB1D}
Tweak UI-->"C:\WINDOWS\system32\mshta.exe" "res://C:\WINDOWS\system32\TweakUI.exe/uninstall.hta"
Uniblue DiskRescue 2009-->"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{8A09CD83-59E1-4DB1-AAFC-E25174FC6706}\Uniblue DiskRescue.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue DiskRescue 2009-->C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{8A09CD83-59E1-4DB1-AAFC-E25174FC6706}\Uniblue DiskRescue.exe
Uniblue DriverScanner 2009-->"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{148D8B8A-8F96-4822-81EC-D510B626B7D5}\DriverScanner_Setup.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue DriverScanner 2009-->C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{148D8B8A-8F96-4822-81EC-D510B626B7D5}\DriverScanner_Setup.exe
Uniblue PixelPerfect-->"C:\Programme\Uniblue\PixelPerfect\unins000.exe"
Uniblue PowerSuite 2009-->"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{B3ABAF49-C1FD-4E23-A5C8-1D0530D54991}\PowerSuite2009.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue PowerSuite 2009-->C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{B3ABAF49-C1FD-4E23-A5C8-1D0530D54991}\PowerSuite2009.exe
Uniblue RegistryBooster 2009-->"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{E18C8A94-0667-4A02-B59B-9CB3A8F22628}\Uniblue RegistryBooster.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue RegistryBooster 2009-->C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{E18C8A94-0667-4A02-B59B-9CB3A8F22628}\Uniblue RegistryBooster.exe
Uniblue SpeedUpMyPC 2009-->"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{942E4254-C25C-44BA-94FC-8777923F9E7B}\speedupmypc2009.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue SpeedUpMyPC 2009-->C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{942E4254-C25C-44BA-94FC-8777923F9E7B}\speedupmypc2009.exe
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
Update für Windows Internet Explorer 8 (KB971930)-->"C:\WINDOWS\ie8updates\KB971930-IE8\spuninst\spuninst.exe"
Update für Windows Media Player 10 (KB910393)-->"C:\WINDOWS\$NtUninstallKB910393$\spuninst\spuninst.exe"
Update für Windows Media Player 10 (KB913800)-->"C:\WINDOWS\$NtUninstallKB913800$\spuninst\spuninst.exe"
Update für Windows Media Player 10 (KB926251)-->"C:\WINDOWS\$NtUninstallKB926251$\spuninst\spuninst.exe"
Update für Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Update für Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update für Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Update für Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Update Rollup 2 für Windows XP Media Center Edition 2005-->C:\WINDOWS\$NtUninstallKB900325$\spuninst\spuninst.exe
VAIO Camera Utility-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{1417F599-1DBD-4499-9375-B2813E9F890C}\setup.exe" -l0x7 
VAIO Control Center-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{FC37C108-821D-4EDE-8F40-D5B497586805}\Setup.exe" -l0x7 
VAIO Hardware Diagnostics-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{A947C2B3-7445-42C4-9063-EE704CACCB22}\setup.exe" -l0x7 
VAIO Update 4-->"C:\Programme\InstallShield Installation Information\{83CDA18E-0BF3-4ACA-872C-B4CDABF2360E}\setup.exe" -runfromtemp -l0x0007 -removeonly
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VLC media player 1.0.0-->C:\Programme\VideoLAN\VLC\uninstall.exe
Wichtiges Update für Windows Media Player 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Winamp-->"C:\Programme\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer Clean Up-->MsiExec.exe /X{121634B0-2F4B-11D3-ADA3-00C04F52DD52}
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Media Connect-->"C:\WINDOWS\$NtUninstallWMCSetup$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Programme\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Programme\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows XP Media Center Edition 2005 KB925766-->"C:\WINDOWS\$NtUninstallKB925766$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Windows-Treiberpaket - Nokia Modem  (03/05/2008 3.7)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_635B28EFCFA9395123BB1C251595CB16129E2560\nokia_bluetooth.inf
Windows-Treiberpaket - Nokia pccsmcfd  (10/12/2007 6.85.4.0)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_4A1E30386F4D0DEC8F5DF262CFBD8845EEBAB175\pccsmcfd.inf
WinRAR archiver-->C:\Programme\WinRAR\uninstall.exe
Wireless LAN Starter-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{61D6E4FB-1A62-4EB1-BE56-929B00C155CF}\setup.exe" -l0x7 
Wireless Switch Setting Utility-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}\Setup.exe" -l0x7 
Word Explorer 2.0-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{2E60CEFA-92EE-4C4A-8EE6-0B8866C3F86A} 
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XP Codec Pack-->C:\Programme\XP Codec Pack\Uninstall.exe
Xvid 1.1.3 final uninstall-->"C:\Programme\XviD\unins001.exe"

======Security center information======

AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic (disabled)
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic (disabled)
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic (disabled)
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic (disabled)
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: AntiVir Desktop
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic (disabled)
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic
AV: Avira AntiVir PersonalEdition Classic

======System event log======

Computer Name: ****
Event Code: 20159
Message: Die Verbindung mit "o2 Connection Manager", hergestellt durch den Benutzer "" unter Verwendung des Geräts "COM13", wurde getrennt.

Record Number: 126191
Source Name: RemoteAccess
Time Written: 20090719142635.000000+120
Event Type: Informationen
User: 

Computer Name: ****
Event Code: 10005
Message: Bei DCOM ist der Fehler "%1058" aufgetreten, als der Dienst "ehSched" mit den Argumenten "-Service"
gestartet wurde, um den folgenden Server zu verwenden:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Record Number: 126190
Source Name: DCOM
Time Written: 20090719141255.000000+120
Event Type: Fehler
User: ****\****

Computer Name: ****
Event Code: 10005
Message: Bei DCOM ist der Fehler "%1058" aufgetreten, als der Dienst "ehSched" mit den Argumenten "-Service"
gestartet wurde, um den folgenden Server zu verwenden:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Record Number: 126189
Source Name: DCOM
Time Written: 20090719134255.000000+120
Event Type: Fehler
User: ****\****

Computer Name: ****
Event Code: 10005
Message: Bei DCOM ist der Fehler "%1058" aufgetreten, als der Dienst "ehSched" mit den Argumenten "-Service"
gestartet wurde, um den folgenden Server zu verwenden:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Record Number: 126188
Source Name: DCOM
Time Written: 20090719131255.000000+120
Event Type: Fehler
User: ****\****

Computer Name: ****
Event Code: 10005
Message: Bei DCOM ist der Fehler "%1058" aufgetreten, als der Dienst "ehSched" mit den Argumenten "-Service"
gestartet wurde, um den folgenden Server zu verwenden:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Record Number: 126187
Source Name: DCOM
Time Written: 20090719124255.000000+120
Event Type: Fehler
User: ****\****

=====Application event log=====

Computer Name: ****
Event Code: 0
Message: 
Record Number: 20112
Source Name: accvssvc
Time Written: 20090308101040.000000+060
Event Type: Informationen
User: 

Computer Name: ****
Event Code: 0
Message: 
Record Number: 20111
Source Name: EvtEng
Time Written: 20090308101039.000000+060
Event Type: Informationen
User: 

Computer Name: ****
Event Code: 4096
Message: Der AntiVir Dienst wurde erfolgreich gestartet!

Record Number: 20110
Source Name: Avira AntiVir
Time Written: 20090307202353.000000+060
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM

Computer Name: ****
Event Code: 1800
Message: Der Windows-Sicherheitscenterdienst wurde gestartet.

Record Number: 20109
Source Name: SecurityCenter
Time Written: 20090307202351.000000+060
Event Type: Informationen
User: 

Computer Name: ****
Event Code: 0
Message: 
Record Number: 20108
Source Name: RegSrvc
Time Written: 20090307202346.000000+060
Event Type: Informationen
User: 

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Programme\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Programme\Intel\Wireless\Bin\;C:\Programme\Gemeinsame Dateien\Adobe\AGL;C:\Programme\Microsoft SQL Server\80\Tools\Binn\;C:\Programme\Gemeinsame Dateien\Teleca Shared;C:\Programme\Intel\Wireless\Bin\;C:\Programme\Gemeinsame Dateien\Roxio Shared\9.0\DLLShared\;C:\Programme\Gemeinsame Dateien\DivX Shared\;C:\Programme\Intel\DMIX
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 14 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=0e08
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"SonicCentral"=C:\Programme\Gemeinsame Dateien\Sonic Shared\Sonic Central\
"UNILEXDIR"=C:\Programme\Pons\LexifacePRO\

-----------------EOF-----------------

Kandi1982 · 29.07.2009, 18:25

Hier sind die RSIT-Ergebnisse:

Code:

ATTFilter

info.txt logfile of random's system information tool 1.06 2009-07-29 19:02:54

======Uninstall list======

-->"C:\Programme\InstallShield Installation Information\{F37167DD-4436-4641-90B6-329D60632DDA}\Setup.exe" REMOVEALL --u:{F37167DD-4436-4641-90B6-329D60632DDA}
-->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
-->Dummy
-->MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{00F8608F-BA6A-4B32-843A-1A568ACD1198}\setup.exe" -l0x7 
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{5624C000-B109-11D4-9DB4-00E0290FCAC5}\Setup.exe" -l0x9  VpnUninstall
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{88E5FCB8-5F25-11D5-B16F-0800460222F0}\setup.exe" -l0x7 UNINSTALL
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{ABBD2A2E-2424-4078-966F-F319A88D5F21}\setup.exe" -l0x7 
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{D76298C2-E532-4A11-BCFF-76F3F19DA84D}\setup.exe" UNINSTALL
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{BA18F065-46FF-447E-B371-80313D63085F}\setup.exe" -l0x9  -removeonly
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{C94CA45E-210F-40B5-B558-A0AD8EE6D0A7}\setup.exe" -l0x9  -removeonly
-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{FD836E74-7923-4174-A055-F97CD0F3BB46}\setup.exe" -l0x7  -removeonly
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5102}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Help Center 2.1-->MsiExec.exe /I{25569723-DC5A-4467-A639-79535BF01B71}
Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D}
Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe"
Adobe Stock Photos 1.0-->MsiExec.exe /I{EE0D5DCD-2B97-4473-98DF-E93C0BD92F7A}
a-squared Free 2.0-->"C:\Programme\a-squared Free\unins000.exe"
Auction Sentry Deluxe-->MsiExec.exe /X{01979CA0-B550-47D0-AD16-553B2C3FCF97}
Auction Sentry-->MsiExec.exe /X{DF29A0E2-DF76-4932-98A9-34B441F40486}
Audacity 1.2.6-->"C:\Programme\Audacity\unins000.exe"
Avira AntiVir Personal - Free Antivirus-->C:\Programme\Avira\AntiVir Desktop\setup.exe /REMOVE
Avira UnErase Personal-->C:\Programme\Avira\UnErase\uninstall.exe
Bildschirmschoner 1280  Screen Saver-->C:\WINDOWS\Bildschirmschoner 1280.scr /u
CCleaner (remove only)-->"C:\Programme\CCleaner\uninst.exe"
Cisco Systems VPN Client 5.0.04.0300-->MsiExec.exe /X{51FB15F4-AD27-43BC-AD4B-DD0354FB6BBD}
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
Defraggler (remove only)-->"C:\Programme\Defraggler\uninst.exe"
DFX for Windows Media Player-->MsiExec.exe /I{fe7ccec2-0f76-4921-bc75-caaf255cbbf2}
DivX Codec-->C:\Programme\DivX\DivXCodecUninstall.exe /CODEC
DivX Content Uploader-->C:\Programme\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Converter-->C:\Programme\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Programme\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->C:\Programme\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Total Pack-->C:\Programme\DivX Total Pack\uninstall.exe
DivX Web Player-->C:\Programme\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DSD Direct-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{C27BF761-C499-488D-A964-A3718BC6EC3E}\setup.exe" -l0x7  -removeonly
DSD Playback Plug-In 1.0-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{C89EB8CD-675F-44F4-9729-4C9A8FAC2D4F}\setup.exe" -l0x7 
DVgate Plus-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{685BCC47-B8EC-45EC-BBCE-77DF2451502C}\setup.exe" -l0x7 
HDAUDIO SoftV92 Data Fax Modem with SmartCP-->C:\Programme\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003\HXFSETUP.EXE -U -ISnyHDANk.inf
High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
HijackThis 2.0.2-->"C:\Programme\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall  /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows Media Player 10 (KB903157)-->"C:\WINDOWS\$NtUninstallKB903157$\spuninst\spuninst.exe"
Hotfix für Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Intel(R) Network Connections 14.0.40.0-->MsiExec.exe /i{888019C0-54D4-40C2-9274-27B9DAB17017} ARPREMOVE=1
InterVideo WinDVD 8-->C:\Programme\InstallShield Installation Information\{20471B27-D702-4FE8-8DEC-0702CC8C0A85}\setup.exe -runfromtemp -l0x0407
InterVideo WinDVD for VAIO-->"C:\Programme\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
JAP-->"C:\Programme\Jap\Uninstall.exe" "C:\Programme\Jap\install.log"
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013F0}
LAN Setting Utility-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{5958CAC6-373E-402F-84FE-0A699AA920B9}\Setup.exe" -l0x7 
LexifacePro SP6-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{1795FBC5-572D-4B7C-ACE0-F6EDE9BF911E}\setup.exe" -l0x7  -removeonly
LexifacePRO-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{6BF13258-4092-4F84-9919-2CCACAE55302}\setup.exe" 
Malwarebytes' Anti-Malware-->"C:\Programme\Malwarebytes' Anti-Malware\unins000.exe"
Memory Stick Formatter-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{27337663-2619-11D4-99DC-0000F49094C7}\Setup.exe" -l0x7 /UNINSTALL
Microsoft .NET Framework 1.1 German Language Pack-->MsiExec.exe /X{E78BFA60-5393-4C38-82AB-E8019E464EB4}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - DEU-->MsiExec.exe /I{C314CE45-3392-3B73-B4E1-139CD41CA933}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - DEU-->MsiExec.exe /I{C2C284D2-6BD7-3B34-B0C5-B2CAED168DF7}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - deu\setup.exe
Microsoft .NET Framework 3.5 Language Pack SP1 - deu-->MsiExec.exe /I{052FDD78-A6EA-3187-8386-C82F4CA3A929}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Standard Edition 2003-->MsiExec.exe /I{91120407-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Windows XP Video Decoder Checkup Utility-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\DECCHECK.inf,Uninstall
MIT MathML Fonts 1.0-->MsiExec.exe /I{C6E52B1B-9905-469A-B8CD-399FDFA98873}
Mobile Broadband Drivers-->MsiExec.exe /X{190D0C6E-C8A7-4019-8FB5-FD041EC1F2D2}
Mobile Partner-->C:\Programme\Mobile Partner\uninst.exe
Motorola Driver Installation-->MsiExec.exe /I{75A0EB9D-2D1E-4FB7-BF61-498E33C73EB4}
Mozilla Firefox (3.5.1)-->C:\Programme\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.22)-->C:\Programme\Mozilla Thunderbird\uninstall\helper.exe
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
MyPhoneExplorer-->C:\Programme\MyPhoneExplorer\uninstall.exe
Napster Burn Engine-->MsiExec.exe /I{8DCE550C-CA43-4E82-92DF-FFC4A48F5BE1}
Napster-->C:\Programme\InstallShield Installation Information\{BBBCAE4B-B416-4182-A6F2-438180894A81}\setup.exe -runfromtemp -l0x0007 -removeonly
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
o2 Connection Manager-->C:\Programme\InstallShield Installation Information\{63C5533F-7DFD-4143-9B5E-3BB205591CFC}\setup.exe -runfromtemp -l0x0409
OKI B4100_4250 Status Monitor-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{879EA19D-A327-43C4-AA59-9CE454A5A0DE}\Setup.exe" -l0x9 /Erase
OpenMG Limited Patch 4.7-07-14-05-01-->C:\Programme\Gemeinsame Dateien\Sony Shared\OpenMG\HotFixes\HotFix4.7-07-14-05-01\HotFixSetup\setup.exe /u
OpenMG Secure Module 4.7.00-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{CCD663AE-610D-4BDF-AAB0-E914B044527D} UNINSTALL
PC Connectivity Solution-->MsiExec.exe /I{AC599724-5755-48C1-ABE7-ABB857652930}
Picasa 2-->"C:\Programme\Picasa2\Uninstall.exe"
PixiePack Codec Pack-->MsiExec.exe /I{B2C3BB6B-E005-4246-B8E5-DF0A4D073CDC}
Roxio DigitalMedia Audio-->MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Roxio DigitalMedia Copy-->MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Roxio DigitalMedia Data-->MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
Secunia PSI-->"C:\Programme\Secunia\PSI\uninstall.exe"
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Setting Utility Series-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{59452470-A902-477F-9338-9B88101681BD}\setup.exe" -l0x7 UNINSTALL
Sicherheitsupdate für Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950759)-->"C:\WINDOWS\$NtUninstallKB950759$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
SigmaTel Audio-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x7 -remove -removeonly

Kandi1982 · 29.07.2009, 18:34

Fortsetzung...

Code:

ATTFilter

======List of files/folders modified in the last 1 months======

2009-07-29 19:10:25 ----D---- C:\WINDOWS\Temp
2009-07-29 19:08:55 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem.txt
2009-07-29 19:06:16 ----D---- C:\Programme\Mozilla Firefox
2009-07-29 19:02:50 ----D---- C:\WINDOWS\Prefetch
2009-07-29 18:49:51 ----RD---- C:\Programme
2009-07-29 18:49:05 ----D---- C:\WINDOWS\system32\CatRoot2
2009-07-29 18:49:00 ----D---- C:\WINDOWS
2009-07-29 18:47:35 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-07-29 18:33:02 ----D---- C:\WINDOWS\system32
2009-07-29 18:15:01 ----RASH---- C:\boot.ini
2009-07-29 18:15:01 ----A---- C:\WINDOWS\win.ini
2009-07-29 18:15:01 ----A---- C:\WINDOWS\system.ini
2009-07-29 18:14:42 ----D---- C:\WINDOWS\pss
2009-07-29 17:34:35 ----D---- C:\WINDOWS\system32\drivers
2009-07-29 17:23:58 ----D---- C:\WINDOWS\Minidump
2009-07-29 17:23:58 ----D---- C:\WINDOWS\Debug
2009-07-29 15:35:34 ----SHD---- C:\WINDOWS\Installer
2009-07-29 15:35:34 ----RSD---- C:\WINDOWS\assembly
2009-07-29 15:35:34 ----D---- C:\Config.Msi
2009-07-29 08:35:18 ----D---- C:\WINDOWS\system32\config
2009-07-29 08:34:46 ----D---- C:\WINDOWS\system32\wbem
2009-07-29 08:34:44 ----D---- C:\WINDOWS\Registration
2009-07-28 23:24:56 ----HD---- C:\WINDOWS\inf
2009-07-28 23:24:55 ----D---- C:\WINDOWS\system32\CatRoot
2009-07-28 22:55:07 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\uTorrent
2009-07-28 12:11:19 ----AD---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP
2009-07-26 22:43:56 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\Skype
2009-07-26 21:50:18 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\skypePM
2009-07-26 16:47:15 ----RSD---- C:\WINDOWS\Fonts
2009-07-26 09:55:34 ----A---- C:\WINDOWS\AviSplitter.INI
2009-07-25 22:38:52 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-07-25 22:19:54 ----D---- C:\Programme\Windows Media Player
2009-07-25 22:19:33 ----D---- C:\WINDOWS\Help
2009-07-25 22:17:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-07-25 20:26:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-07-25 18:53:41 ----A---- C:\Programme\FoxitReader_Preferences.ini
2009-07-25 17:19:17 ----SD---- C:\WINDOWS\Tasks
2009-07-25 16:46:27 ----HD---- C:\Programme\InstallShield Installation Information
2009-07-25 16:45:32 ----D---- C:\Programme\Gemeinsame Dateien
2009-07-25 16:09:46 ----SHD---- C:\RECYCLER
2009-07-25 14:54:35 ----D---- C:\Dokumente und Einstellungen
2009-07-21 13:09:33 ----D---- C:\Programme\Java
2009-07-17 14:23:04 ----D---- C:\Programme\a-squared Free
2009-07-16 12:38:54 ----D---- C:\Programme\Gemeinsame Dateien\Sony Shared
2009-07-16 12:37:46 ----D---- C:\Update
2009-07-16 11:54:24 ----D---- C:\WINDOWS\Bildschirmschoner 1280 dir
2009-07-16 11:54:07 ----A---- C:\WINDOWS\impborl.dll
2009-07-16 11:54:07 ----A---- C:\WINDOWS\flashax.exe
2009-07-16 09:13:32 ----A---- C:\Programme\Foxit Reader.exe
2009-07-14 21:42:52 ----HD---- C:\WINDOWS\$hf_mig$
2009-07-14 21:22:27 ----D---- C:\Programme\Intel
2009-07-14 21:22:11 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-07-14 21:21:39 ----A---- C:\WINDOWS\system32\results.txt
2009-07-14 21:21:17 ----D---- C:\WINDOWS\WinSxS
2009-07-14 21:18:40 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-07-14 14:12:04 ----D---- C:\Programme\XP Codec Pack
2009-07-14 14:08:00 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\Real
2009-07-14 14:06:20 ----D---- C:\Programme\Gemeinsame Dateien\Real
2009-07-14 14:04:43 ----D---- C:\Program Files
2009-07-12 22:47:25 ----D---- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2009-07-12 00:34:02 ----D---- C:\Programme\Sony
2009-07-11 23:41:22 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\Teleca
2009-07-11 23:41:21 ----D---- C:\WINDOWS\Downloaded Installations
2009-07-11 23:40:09 ----D---- C:\Programme\Gemeinsame Dateien\Teleca Shared
2009-07-11 23:19:43 ----D---- C:\Temp
2009-07-11 23:19:31 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sony Corporation
2009-07-07 17:10:56 ----A---- C:\WINDOWS\system32\MRT.exe
2009-07-06 00:34:21 ----D---- C:\WINDOWS\system32\Macromed
2009-07-03 11:55:13 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\Winamp
2009-07-03 11:35:17 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\Macromedia
2009-07-03 11:29:08 ----D---- C:\Programme\Macromedia
2009-07-03 11:29:08 ----D---- C:\Programme\Gemeinsame Dateien\Macromedia
2009-07-03 10:56:07 ----D---- C:\Programme\Winamp
2009-07-03 10:42:12 ----D---- C:\WINDOWS\system32\de-de
2009-07-03 10:42:11 ----D---- C:\WINDOWS\Media
2009-07-03 10:42:11 ----D---- C:\Programme\Internet Explorer
2009-07-03 10:42:10 ----D---- C:\Programme\Microsoft Silverlight
2009-07-03 10:18:44 ----D---- C:\Programme\Gemeinsame Dateien\Microsoft Shared
2009-07-03 09:29:34 ----D---- C:\Programme\InterVideo
2009-07-03 09:29:34 ----D---- C:\Programme\Gemeinsame Dateien\InstallShield
2009-07-03 09:28:27 ----D---- C:\WINDOWS\system32\DirectX
2009-07-03 09:27:12 ----D---- C:\WINDOWS\Microsoft.NET

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952]
R1 intelppm;Intel-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 PrivateDisk;PrivateDisk; C:\WINDOWS\System32\Drivers\PrivateDiskM.sys [2004-07-06 45627]
R1 Tcpip6;Microsoft IPv6-Protokolltreiber; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225856]
R1 tcpipBM;Bytemobile Kernel Network Provider; C:\WINDOWS\system32\drivers\tcpipBM.sys [2007-01-30 18816]
R1 truecrypt;truecrypt; C:\WINDOWS\System32\drivers\truecrypt.sys [2009-06-20 217664]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS-Dienstanbieter-Unterstützungsumgebung; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-10 12032]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-07-25 42000]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-11-22 108767]
R3 Arp1394;1394-ARP-Clientprotokoll; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 CmBatt;Treiber für Microsoft-ACPI-Kontrollmethodenkompatible Batterie; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 DNE;Deterministic Network Enhancer Miniport; C:\WINDOWS\system32\DRIVERS\dne2000.sys [2008-03-29 125328]
R3 HDAudBus;Microsoft UAA-Bustreiber für High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-10-18 998656]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-10-18 202112]
R3 HssDrv;Hotspot Shield Helper Miniport; C:\WINDOWS\system32\DRIVERS\HssDrv.sys [2009-06-01 33840]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2008-02-25 101120]
R3 mouhid;Maus-HID-Treiber; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-18 12288]
R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2009-03-04 4202496]
R3 NIC1394;1394-Netzwerktreiber; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nm;Netzwerkmonitortreiber; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-03-06 3644160]
R3 NWADI;NWADI Bus Enumerator; C:\WINDOWS\system32\DRIVERS\NWADIenum.sys [2007-04-19 194048]
R3 SNC;Sony Notebook Control Device; C:\WINDOWS\System32\Drivers\SonyNC.sys [2000-11-09 48896]
R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2005-12-27 29184]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-05-26 1177032]
R3 tapvpn;TAP VPN Adapter; C:\WINDOWS\system32\DRIVERS\tapvpn.sys [2008-01-23 27136]
R3 tbhsd;Tunebite High-Speed Dubbing; C:\WINDOWS\system32\drivers\tbhsd.sys [2008-11-04 43552]
R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2007-01-24 808448]
R3 tunmp;Microsoft Tun-Miniportadaptertreiber; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2-aktivierter Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Miniporttreiber für Microsoft USB Open Host-Controller; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 usbvm321;Sony Visual Communication Camera VGP-VCC1; C:\WINDOWS\System32\Drivers\usbvm321.sys [2005-12-29 234496]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-10-18 721280]
S1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
S3 802.11g Wireless LAN WiFi Finder(ZyDAS);802.11g Wireless LAN WiFi Finder Driver(ZyDAS); C:\WINDOWS\system32\DRIVERS\zd1211u.sys [2005-08-24 278016]
S3 BRGSp50;BRGSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\BRGSp50.sys [2005-06-08 20608]
S3 Bridge;MAC-Brücke; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;MAC-Brückenminiport; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
S3 dot4;MS IEEE-1284.4-Treiber; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Druckerklassentreiber für IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;Dot4USB-Filter Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-08-18 23936]
S3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2007-11-16 165496]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2005-07-06 176128]
S3 MHNDRV;MHN-Treiber; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\drivers\PCASp50.sys [2007-03-01 18560]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2009-06-17 12648]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-10 5888]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS); C:\WINDOWS\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
S3 s116bus;Sony Ericsson Device 116 driver (WDM); C:\WINDOWS\system32\DRIVERS\s116bus.sys [2007-04-03 83336]
S3 s116mdfl;Sony Ericsson Device 116 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s116mdfl.sys [2007-04-03 15112]
S3 s116mdm;Sony Ericsson Device 116 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s116mdm.sys [2007-04-03 108680]
S3 s116mgmt;Sony Ericsson Device 116  USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s116mgmt.sys [2007-04-03 100488]
S3 s116nd5;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (NDIS); C:\WINDOWS\system32\DRIVERS\s116nd5.sys [2007-04-03 23176]
S3 s116obex;Sony Ericsson Device 116 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s116obex.sys [2007-04-03 98696]
S3 s116unic;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (WDM); C:\WINDOWS\system32\DRIVERS\s116unic.sys [2007-04-03 99080]
S3 s616bus;Sony Ericsson Device 616 driver (WDM); C:\WINDOWS\system32\DRIVERS\s616bus.sys [2007-04-03 83208]
S3 s616mdfl;Sony Ericsson Device 616 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s616mdfl.sys [2007-04-03 15112]
S3 s616mdm;Sony Ericsson Device 616 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s616mdm.sys [2007-04-03 108680]
S3 s616mgmt;Sony Ericsson Device 616 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s616mgmt.sys [2007-04-03 100360]
S3 s616nd5;Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (NDIS); C:\WINDOWS\system32\DRIVERS\s616nd5.sys [2007-04-03 23176]
S3 s616obex;Sony Ericsson Device 616 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s616obex.sys [2007-04-03 98568]
S3 s616unic;Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (WDM); C:\WINDOWS\system32\DRIVERS\s616unic.sys [2007-04-03 99080]
S3 SE30bus;Sony Ericsson Device 048 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE30bus.sys [2006-05-15 61600]
S3 SE30mdfl;Sony Ericsson Device 048 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE30mdfl.sys [2006-05-15 9360]
S3 SE30mdm;Sony Ericsson Device 048 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE30mdm.sys [2006-05-15 97184]
S3 SE30obex;Sony Ericsson Device 048 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE30obex.sys [2006-05-15 86560]
S3 se30unic;Sony Ericsson Device 048 USB Ethernet Emulation SEMC48 (WDM); C:\WINDOWS\system32\DRIVERS\se30unic.sys [2006-05-15 90800]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:\WINDOWS\system32\DRIVERS\se59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:\WINDOWS\system32\DRIVERS\se59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:\WINDOWS\system32\DRIVERS\se59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712]
S3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-11-24 47104]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2005-11-22 108800]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2005-09-15 36480]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2005-12-01 62848]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2005-11-11 52864]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2005-11-15 36736]
S3 upperdev;upperdev; C:\WINDOWS\system32\drivers\upperdev.sys []
S3 usbprint;Microsoft USB-Druckerklasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB-Scannertreiber; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
S3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZD1211BU(ZyDAS);ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS); C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2006-08-24 477696]
S3 ZDPSp50;ZDPSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [2004-10-25 17664]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 s24trans;WLAN-Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;IPv6-Hilfsdienst; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 a2free;a-squared Free Service; c:\programme\a-squared free\a2service.exe [2009-07-14 719392]
R2 accvssvc;AccSys WLAN Control Service; C:\Programme\Gemeinsame Dateien\AccSys\AccVSSvc.exe [2007-10-30 131072]
R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2009-05-11 185089]
R2 bmwebcfg;Bytemobile Web Configurator; C:\WINDOWS\system32\bmwebcfg.exe [2007-01-30 118784]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Programme\Cisco Systems\VPN Client\cvpnd.exe [2008-08-29 1528608]
R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
R2 HotspotShieldService;Hotspot Shield Service; C:\Programme\Hotspot Shield\bin\openvpnas.exe [2009-06-01 94256]
R2 HssSrv;Hotspot Shield Helper Service; C:\Programme\Hotspot Shield\HssWPR\hsssrv.exe [2009-06-01 331312]
R2 Iprip;RIP-Überwachung; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Programme\Java\jre6\bin\jqs.exe [2009-05-21 152984]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-03-06 143428]
R2 SimpTcp;Einfache TCP/IP-Dienste; C:\WINDOWS\system32\tcpsvcs.exe [2004-08-10 19456]
R2 Uniblue DiskRescue;Uniblue DiskRescue; C:\Programme\Uniblue\DiskRescue\UBDiskRescueSrv.exe [2008-09-10 229648]
S2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
S2 WMPNetworkSvc;Windows Media Player-Netzwerkfreigabedienst; C:\Programme\Windows Media Player\WMPNetwk.exe [2006-11-03 920576]
S3 Adobe LM Service;Adobe LM Service; C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe [2006-06-11 72704]
S3 aspnet_state;ASP.NET-Zustandsdienst; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 HssTrayService;Hotspot Shield Tray Service; C:\Programme\Hotspot Shield\bin\HssTrayService.EXE [2009-06-01 34352]
S3 IDriverT;InstallDriver Table Manager; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 MSCSPTISRV;MSCSPTISRV; C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 ose;Office Source Engine; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 p2pgasvc;Peernetzwerk-Gruppenauthentifizierung; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2pimsvc;Peernetzwerkidentitäts-Manager; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 p2psvc;Peernetzwerk; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 PACSPTISVR;PACSPTISVR; C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 PNRPSvc;Peer Name Resolution-Protokoll; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 ServiceLayer;ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184]
S3 SPTISRV;Sony SPTI Service; C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320]
S3 VCI;VAIO Cooporated Initialisation; C:\Programme\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe [2005-01-04 398336]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 ehSched;Media Center-Planerdienst; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912]
S4 NetTcpPortSharing;Net.Tcp-Portfreigabedienst; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Kandi1982 · 29.07.2009, 18:37

Fortsetzung...

Code:

ATTFilter

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^VPN Client.lnk]
C:\WINDOWS\Installer\{51FB15F4-AD27-43BC-AD4B-DD0354FB6BBD}\Icon3E5562ED7.ico [2009-07-18 6144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-02 402736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"NoLogoff"=0
"NoClose"=0
"NoWinKeys"=1
"NoWinKey"=0
"NoDrives"=03FFFF03

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Assistent zum Übertragen von Dateien und Einstellungen"
"C:\Programme\Messenger\msmsgs.exe"="C:\Programme\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Programme\Jap\jap.exe"="C:\Programme\Jap\jap.exe:*:Enabled:JAP"
"C:\Programme\a-squared\a2start.exe"="C:\Programme\a-squared\a2start.exe:*:Enabled:a-squared StartCenter"
"C:\Programme\Sony\Click to DVD 2\CtoDvd.exe"="C:\Programme\Sony\Click to DVD 2\CtoDvd.exe:*:Enabled:Click to DVD"
"C:\Programme\Sony\VAIO Media 5.0\Vc.exe"="C:\Programme\Sony\VAIO Media 5.0\Vc.exe:*:Enabled:[VAIO Media] VAIO Media"
"C:\Programme\MSN Messenger\msnmsgr.exe"="C:\Programme\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\Programme\MSN Messenger\msncall.exe"="C:\Programme\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Programme\Winamp Remote\bin\Orb.exe"="C:\Programme\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"C:\Programme\Winamp Remote\bin\OrbTray.exe"="C:\Programme\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"C:\Programme\Winamp Remote\bin\OrbStreamerClient.exe"="C:\Programme\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"C:\Programme\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Programme\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Programme\Gemeinsame Dateien\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Programme\Gemeinsame Dateien\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Programme\o2 Connection Manager\o2 Connection Manager.exe"="C:\Programme\o2 Connection Manager\o2 Connection Manager.exe:*:Enabled:o2 Connection Manager"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\Real\RealPlayer\realplay.exe"="C:\Programme\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
"C:\Programme\uTorrent\uTorrent.exe"="C:\Programme\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Programme\Skype\Phone\Skype.exe"="C:\Programme\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Programme\MSN Messenger\msnmsgr.exe"="C:\Programme\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\Programme\MSN Messenger\msncall.exe"="C:\Programme\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{59a3e94a-4b5e-11dd-87cb-00130240704d}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{59a3e94d-4b5e-11dd-87cb-00130240704d}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{59d8796c-4b63-11dd-87cc-00130240704d}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{63bf2e20-b234-11dd-88ad-0013a907a551}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{63bf2e23-b234-11dd-88ad-0013a907a551}]
shell\AutoRun\command - H:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{850295a0-4e89-11de-8a24-00130240704d}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{877fbaa8-54d9-11de-8a32-00130240704d}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9aadf6d4-33c0-11dd-8790-00130240704d}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9cce3f4b-54d8-11de-8a31-00130240704d}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a715a6d2-4ce8-11de-8a1f-9332f392ee4e}]
shell\AutoRun\command - G:\AutoRun.exe

======File associations======

.js - open - 

======List of files/folders created in the last 1 months======

2009-07-29 19:02:41 ----D---- C:\rsit
2009-07-29 18:49:51 ----D---- C:\Programme\Defraggler
2009-07-29 17:34:40 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\Malwarebytes
2009-07-29 17:34:33 ----D---- C:\Programme\Malwarebytes' Anti-Malware
2009-07-29 17:34:33 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2009-07-29 17:19:19 ----D---- C:\Programme\CCleaner
2009-07-29 15:09:00 ----D---- C:\Programme\HijackThis
2009-07-29 14:58:03 ----D---- C:\Programme\Trojancheck 6
2009-07-26 16:43:30 ----A---- C:\WINDOWS\system32\javaws.exe
2009-07-26 16:43:29 ----A---- C:\WINDOWS\system32\javaw.exe
2009-07-26 16:43:29 ----A---- C:\WINDOWS\system32\java.exe
2009-07-25 22:39:44 ----D---- C:\DECCHECK
2009-07-25 22:20:10 ----A---- C:\WINDOWS\system32\spmsg.dll
2009-07-25 22:19:24 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-07-25 22:18:50 ----D---- C:\e435b1a94fbcb23923f4e50be1
2009-07-25 16:45:39 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Novatel Wireless
2009-07-25 16:45:39 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Novatel Flipper
2009-07-25 16:45:32 ----D---- C:\Programme\o2 Connection Manager
2009-07-25 16:45:32 ----D---- C:\Programme\Gemeinsame Dateien\AccSys
2009-07-25 16:45:32 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AccSys
2009-07-25 16:34:14 ----A---- C:\WINDOWS\system32\hidserv.dll
2009-07-25 15:50:30 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Novatel Wireless(3)
2009-07-25 15:50:22 ----D---- C:\Programme\Gemeinsame Dateien\AccSys(3)
2009-07-25 15:50:22 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AccSys(3)
2009-07-21 13:14:45 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\OpenOffice.org
2009-07-21 13:10:49 ----D---- C:\Programme\OpenOffice.org 3
2009-07-21 13:07:48 ----D---- C:\Programme\OpenOffice
2009-07-18 20:10:03 ----D---- C:\Programme\Cisco Systems
2009-07-16 12:41:27 ----D---- C:\Programme\Pons
2009-07-14 21:42:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
2009-07-14 21:39:40 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
2009-07-14 21:39:23 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-07-14 20:04:11 ----A---- C:\WINDOWS\system32\WmiConf.txt
2009-07-14 19:36:31 ----D---- C:\Programme\SystemRequirementsLab
2009-07-12 19:31:15 ----D---- C:\Programme\IKEA HomePlanner
2009-07-12 01:43:18 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-07-12 01:04:25 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\dvdcss
2009-07-12 01:00:34 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\vlc
2009-07-12 00:58:20 ----D---- C:\Programme\VideoLAN
2009-07-10 15:01:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-07-08 20:40:38 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\MyPhoneExplorer
2009-07-08 20:40:17 ----D---- C:\Programme\MyPhoneExplorer
2009-07-03 11:46:29 ----D---- C:\Dokumente und Einstellungen\****\Anwendungsdaten\InstallShield
2009-07-03 10:37:48 ----D---- C:\WINDOWS\ie8updates
2009-07-03 10:33:38 ----HDC---- C:\WINDOWS\ie8
2009-07-03 10:14:29 ----D---- C:\Programme\Microsoft CAPICOM 2.1.0.2
2009-07-03 09:33:02 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Apple Computer
2009-07-03 09:32:20 ----D---- C:\Programme\InterVideo Information Service
2009-07-03 09:32:20 ----D---- C:\Programme\Gemeinsame Dateien\Ulead
2009-07-03 09:31:20 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\InstallShield
2009-07-03 09:28:23 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-07-03 09:28:23 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-07-03 09:28:23 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-07-03 09:28:22 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-07-03 09:28:22 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-07-03 09:28:21 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-07-03 09:28:21 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-07-03 09:28:19 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2009-07-03 09:28:19 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2009-07-03 09:28:18 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2009-07-03 09:28:18 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2009-07-03 09:28:18 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2009-07-03 09:28:17 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2009-07-03 09:28:17 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2009-07-03 09:28:16 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2009-07-03 09:28:16 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2009-07-03 09:28:15 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2009-07-03 09:28:15 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2009-07-03 09:28:15 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2009-07-03 09:28:15 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2009-07-03 09:28:14 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2009-07-03 09:28:14 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2009-07-03 09:28:14 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2009-07-03 09:28:13 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2009-07-03 09:28:13 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2009-07-03 09:28:13 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2009-07-03 09:28:12 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2009-07-03 09:28:12 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2009-07-03 09:28:11 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-07-03 09:28:11 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-07-03 09:28:10 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2009-07-03 09:28:10 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2009-07-03 09:28:10 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2009-07-03 09:28:10 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-07-03 09:28:09 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2009-07-03 09:28:09 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2009-07-03 09:28:08 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2009-07-03 09:28:07 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2009-07-03 09:28:07 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2009-07-03 09:28:07 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2009-07-03 09:28:06 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2009-07-03 09:28:05 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2009-07-03 09:28:05 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2009-07-03 09:28:05 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2009-07-03 09:28:05 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2009-07-03 09:28:02 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2009-07-03 09:28:00 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-07-03 09:27:57 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-07-03 09:27:54 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2009-07-03 09:27:54 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2009-07-03 09:27:43 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-07-03 09:27:43 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2009-07-03 09:27:42 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-07-03 09:27:42 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-07-03 09:27:41 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-07-03 09:27:41 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-07-03 09:27:41 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-07-03 09:27:39 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-07-03 09:27:38 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-07-03 09:27:37 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-07-03 09:27:36 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-07-03 09:27:36 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-07-03 09:27:30 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-07-03 09:27:29 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-07-03 09:27:29 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-07-03 09:27:28 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-07-03 09:27:28 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-07-03 09:27:27 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-07-03 09:27:26 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-07-03 09:27:26 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-07-03 09:27:25 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-07-03 09:27:20 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-07-03 09:23:13 ----D---- C:\WINDOWS\Logs
2009-07-03 09:23:07 ----HD---- C:\WINDOWS\msdownld.tmp

PC-Depp · 30.07.2009, 20:51

Hallo
Könnte bitte jemand mein HijackThis Report auswerten ?
Habe immer mal wieder Probleme z.B. mit Malware.
In diesem Forum:
http://www.trojaner-board.de/25462-adware-savenow.html
findet ihr auch 2 weitere Reports von Luke Filewalker und dem Avira Removal Tool.
Vielen Dank !!!
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:22:43, on 28.07.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\spoolsv.exe
F:\Programme\Avira\AntiVir Desktop\sched.exe
F:\Programme\Avira\AntiVir Desktop\avguard.exe
F:\Programme\AntiVirenKit 2005\AVKService.exe
F:\Programme\AntiVirenKit 2005\AVKWCtl.exe
F:\Programme\avmwlanstick\WlanNetService.exe
F:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE
F:\WINDOWS\system32\nvsvc32.exe
F:\WINDOWS\system32\HPZipm12.exe
F:\WINDOWS\system32\PnkBstrA.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\WgaTray.exe
F:\WINDOWS\Explorer.EXE
F:\Programme\CyberLink\PowerDVD\PDVDServ.exe
F:\WINDOWS\RTHDCPL.EXE
F:\Programme\Java\jre1.5.0_06\bin\jusched.exe
F:\WINDOWS\system32\rundll32.exe
F:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
F:\Programme\Avira\AntiVir Desktop\avgnt.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Programme\Microsoft ActiveSync\WCESCOMM.EXE
F:\Programme\AOpen\AOpen Silent Fan\openfan.exe
F:\WINDOWS\system32\rundll32.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\taskmgr.exe
F:\Programme\avmwlanstick\WLanGUI.exe
F:\WINDOWS\system32\PnkBstrB.exe
F:\Programme\Mozilla Firefox\firefox.exe
F:\Programme\OpenOffice.org 3\program\swriter.exe
F:\Programme\OpenOffice.org 3\program\soffice.exe
F:\Programme\OpenOffice.org 3\program\soffice.bin
F:\WINDOWS\system32\wuauclt.exe
F:\Programme\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = fritz.box;192.168.178.1
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f:\programme\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - F:\Programme\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\programme\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RemoteControl] F:\Programme\CyberLink\PowerDVD\PDVDServ.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] F:\Programme\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "F:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVMWlanClient] F:\Programme\avmwlanstick\wlangui.exe
O4 - HKLM\..\Run: [avgnt] "F:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WhenUSave] "F:\Programme\Save\Save.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "F:\Programme\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = F:\Programme\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: AOpen Silent-Fan AP.lnk = F:\Programme\AOpen\AOpen Silent Fan\openfan.exe
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://F:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - F:\Programme\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\Programme\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\Programme\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - F:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - F:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - F:\Programme\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - F:\Programme\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programme\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: f:\windows\system32\nwprovau.dll
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - F:\Programme\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - F:\Programme\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AVK Service (AVKService) - Unknown owner - F:\Programme\AntiVirenKit 2005\AVKService.exe
O23 - Service: AVK Wächter (AVKWCtl) - Unknown owner - F:\Programme\AntiVirenKit 2005\AVKWCtl.exe
O23 - Service: AVM WLAN Connection Service - AVM Berlin - F:\Programme\avmwlanstick\WlanNetService.exe
O23 - Service: Google Updater Service (gusvc) - Google - F:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - F:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - F:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - F:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - F:\WINDOWS\system32\ZoneLabs\vsmon.exe
O24 - Desktop Component 0: (no name) - http://www.storyofboris.com/images/files/kalashnikov%20(ak-47)-thumb.gif
O24 - Desktop Component 1: (no name) - http://www.archives.gov/research/ww2/photos/images/ww2-09.jpg

--
End of file - 8060 bytes

Larusso · 30.07.2009, 20:55

@ PC Depp, ein thread reicht.

Ich habe Dir bereits Hausaufgaben gegeben. Klick

john.doe · 30.07.2009, 20:56

@PC-Depp

Bitte erstelle dein eigenes Thema, dieses hier gehört Kandi1982.

Klicke da drauf => http://www.trojaner-board.de/plagege...n-bekaempfung/

Dann links oben auf "Neues Thema".

Dann klickst du auf "Für alle Neuen" in meiner Signatur, liest alles und arbeitest die komplette Liste unter Punkt 2 ab.

ciao, andreas

Kandi1982 · 31.07.2009, 10:05

Fortsetzung...

Code:

ATTFilter

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-03-06 7557120]
"Apoint"="c:\programme\Apoint\Apoint.exe" [2004-11-17 118784]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"VAIOCameraUtility"="c:\programme\Sony\VAIO Camera Utility\VCUServe.exe" [2005-12-27 69632]
"ISBMgr.exe"="c:\programme\Sony\ISB Utility\ISBMgr.exe" [2004-02-20 32768]
"Switcher.exe"="c:\programme\Sony\Wireless Switch Setting Utility\Switcher.exe" [2006-02-14 176128]
"LanguageMonitor"="c:\windows\system32\Oplmsb01.exe" [2004-01-09 94208]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"ISUSPM"="c:\programme\Gemeinsame Dateien\InstallShield\UpdateService\ISUSPM.exe" [2006-03-20 213936]
"SunJavaUpdateSched"="c:\programme\Java\jre6\bin\jusched.exe" [2009-05-21 148888]
"Mouse Suite 98 Daemon"="ICO.EXE" - c:\windows\system32\ico.exe [2002-03-14 45056]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoWinKeys"= 1 (0x1)
"NoWinKey"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
Source= c:\dokumente und einstellungen\******\Desktop\******\Verschiedenes\Bilder\USA-flag.gif
FriendlyName= 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1]
Source= c:\dokumente und einstellungen\******\Desktop\******\Verschiedenes\Bilder\FI-flag.gif
FriendlyName= 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\3]
Source= c:\dokumente und einstellungen\******\Desktop\Fotos ohne Ende\2007\P7090050a.jpg
FriendlyName= 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\4]
Source= c:\dokumente und einstellungen\******\Desktop\******\Homepage\fantasy9_files\fantasy9star.gif
FriendlyName= 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\7]
Source= c:\dokumente und einstellungen\******\Desktop\******\Homepage\fantasy7_files\fantasy7star.gif
FriendlyName= 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\9]
Source= c:\dokumente und einstellungen\******\Desktop\******\Homepage\Gifs\divider.gif
FriendlyName= 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	\0

[HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^VPN Client.lnk]
path=c:\dokumente und einstellungen\All Users\Startmenü\Programme\Autostart\VPN Client.lnk
backup=c:\windows\pss\VPN Client.lnkCommon Startup

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Programme\\Messenger\\msmsgs.exe"=
"c:\\Programme\\Jap\\jap.exe"=
"c:\\Programme\\o2 Connection Manager\\o2 Connection Manager.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programme\\uTorrent\\uTorrent.exe"=
"c:\\Programme\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R1 PrivateDisk;PrivateDisk;c:\windows\system32\drivers\privatediskm.sys [06.07.2004 15:07 45627]
R2 accvssvc;AccSys WLAN Control Service;c:\programme\Gemeinsame Dateien\AccSys\accvssvc.exe [30.10.2007 18:46 131072]
R2 AntiVirSchedulerService;Avira AntiVir Planer;c:\programme\Avira\AntiVir Desktop\sched.exe [26.06.2009 15:34 108289]
R2 HssSrv;Hotspot Shield Helper Service;c:\programme\Hotspot Shield\HssWPR\hsssrv.exe [01.06.2009 20:13 331312]
R2 Uniblue DiskRescue;Uniblue DiskRescue;c:\programme\Uniblue\DiskRescue\UBDiskRescueSrv.exe [10.09.2008 17:22 229648]
R3 HssDrv;Hotspot Shield Helper Miniport;c:\windows\system32\drivers\hssdrv.sys [25.02.2009 19:51 33840]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [16.03.2006 07:48 29184]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [16.03.2006 07:48 808448]
S3 802.11g Wireless LAN WiFi Finder(ZyDAS);802.11g Wireless LAN WiFi Finder Driver(ZyDAS);c:\windows\system32\drivers\ZD1211U.sys [24.08.2005 10:39 278016]
S3 BRGSp50;BRGSp50 NDIS Protocol Driver;c:\windows\system32\drivers\BRGSp50.sys [26.05.2008 10:02 20608]
S3 HssTrayService;Hotspot Shield Tray Service;c:\programme\Hotspot Shield\bin\HssTrayService.exe [01.06.2009 20:58 34352]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [17.06.2009 14:20 12648]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [24.11.2008 12:33 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [24.11.2008 12:33 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [24.11.2008 12:33 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [24.11.2008 12:33 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [24.11.2008 12:33 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [24.11.2008 12:33 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [24.11.2008 12:33 115752]
S3 SE30bus;Sony Ericsson Device 048 Driver driver (WDM);c:\windows\system32\drivers\SE30bus.sys [10.05.2007 20:22 61600]
S3 SE30mdfl;Sony Ericsson Device 048 USB WMC Modem Filter;c:\windows\system32\drivers\SE30mdfl.sys [10.05.2007 20:22 9360]
S3 SE30mdm;Sony Ericsson Device 048 USB WMC Modem Driver;c:\windows\system32\drivers\SE30mdm.sys [10.05.2007 20:22 97184]
S3 SE30obex;Sony Ericsson Device 048 USB WMC OBEX Interface;c:\windows\system32\drivers\SE30obex.sys [10.05.2007 20:25 86560]
S3 se30unic;Sony Ericsson Device 048 USB Ethernet Emulation SEMC48 (WDM);c:\windows\system32\drivers\se30unic.sys [10.05.2007 20:25 90800]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc	REG_MULTI_SZ   	p2psvc p2pimsvc p2pgasvc PNRPSvc

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B2C3BB6B-E005-4246-B8E5-DF0A4D073CDC}]
c:\programme\PixiePack Codec Pack\InstallerHelper.exe
.
Inhalt des "geplante Tasks" Ordners

2009-03-05 c:\windows\Tasks\Uniblue DiskRescue 2009.job
- c:\programme\Uniblue\DiskRescue\UBDiskRescue.exe [2008-09-10 15:22]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
IE: &Suche im Duden - c:\programme\Duden-Suche Toolbar\toolbar.dll/SEARCH.HTML
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
IE: Run Context - c:\programme\Informatic\Word Explorer 2.0\cnie5.htm
IE: Run Word Explorer - c:\programme\Informatic\Word Explorer 2.0\cnie5.htm
IE: {{26231800-6CE9-43d8-9357-5B4DC8CF4561} - c:\programme\Informatic\Word Explorer 2.0\cnie5.htm
LSP: bmnet.dll
DPF: {96512D57-F751-4088-A689-5778FCC77F7A} - hxxp://w*w.studivz.net/lib/photouploader/PhotoUploader.cab
FF - ProfilePath - c:\dokumente und einstellungen\******\Anwendungsdaten\Mozilla\Firefox\Profiles\9z6laczw.default\
FF - prefs.js: browser.search.defaulturl - hxxp://w*w.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.startup.homepage - hxxp://w*w.hotmail.com
FF - plugin: c:\programme\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\programme\Mozilla Firefox\plugins\npstrlnk.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX Richtlinien ----
c:\programme\Mozilla Firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("media.cache_size", 51200);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("media.ogg.enabled", true);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("media.wave.enabled", true);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("media.autoplay.enabled", true);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:\programme\Mozilla Firefox\greprefs\all.js - pref("dom.storage.default_quota",      5120);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("network.ht*p.prompt-temp-redirect", true);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("layout.css.dpi", -1);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);
c:\programme\Mozilla Firefox\greprefs\all.js - pref("geo.enabled", true);
c:\programme\Mozilla Firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\programme\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");
c:\programme\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history",     true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata",    true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords",   false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads",   true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies",     true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache",       true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions",    true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.history",                 true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata",                true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords",               false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads",               true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies",                 true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache",                   true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions",                true);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps",             false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings",            false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs",    false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "ht*ps://w*w.google.com/loc/json");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, ht*p://w*w.gmer.net
Rootkit scan 2009-07-30 19:57
Windows 5.1.2600 Service Pack 3 NTFS

Scanne versteckte Prozesse... 

Scanne versteckte Autostarteinträge... 

Scanne versteckte Dateien... 

Scan erfolgreich abgeschlossen
versteckte Dateien: 0

**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•6~*]
"7040211900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------

- - - - - - - > 'explorer.exe'(1800)
c:\windows\system32\webcheck.dll
c:\progra~1\GEMEIN~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
c:\programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\1031\OWCI11.DLL
c:\progra~1\WINDOW~3\wmpband.dll
c:\windows\system32\msls31.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\programme\a-squared Free\a2service.exe
c:\programme\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\bmwebcfg.exe
c:\programme\Cisco Systems\VPN Client\cvpnd.exe
c:\windows\ehome\ehrecvr.exe
c:\programme\Hotspot Shield\bin\openvpnas.exe
c:\programme\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\tcpsvcs.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\ehome\ehmsas.exe
c:\programme\Apoint\ApntEx.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2009-07-30 20:01 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2009-07-30 18:01

Vor Suchlauf: 18 Verzeichnis(se), 41.894.850.560 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 41.824.043.008 Bytes frei

WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect

612	--- E O F ---	2009-07-29 21:56

Ich hoffe, dass du damit etwas anfangen kannst.

Viele Grüße von einer mehr oder weniger verzweifelten
Sandra

Kandi1982 · 31.07.2009, 10:08

Fortsetzung...

Code:

ATTFilter

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\dokumente und einstellungen\******\Anwendungsdaten\.#
c:\programme\Mozilla Firefox\patch.exe
c:\programme\WinPCap
c:\recycler\S-1-5-21-1337144975-2251089612-3440725376-500
c:\recycler\S-1-5-21-2667202411-1573642584-764439295-1007
c:\recycler\S-1-5-21-2667202411-1573642584-764439295-1011
c:\windows\Installer\11f09cf.msp
c:\windows\Installer\11f0a1b.msp
c:\windows\Installer\11f0a67.msp
c:\windows\Installer\176bd3.msi
c:\windows\Installer\1da44a.msp
c:\windows\Installer\3c32d3.msp
c:\windows\Installer\3e17a1.msp
c:\windows\Installer\791139.msp
c:\windows\Installer\e29a60.msi
c:\windows\kb913800.exe
c:\windows\system32\drivers\npf.sys
c:\windows\system32\Packet.dll
c:\windows\system32\uuddc32.dll
c:\windows\system32\WanPacket.dll
c:\windows\system32\wpcap.dll

.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_IPRIP
-------\Legacy_NPF
-------\Service_Iprip
-------\Service_NPF


(((((((((((((((((((((((   Dateien erstellt von 2009-06-28 bis 2009-07-30  ))))))))))))))))))))))))))))))
.

2009-07-30 11:45 . 2009-07-30 11:45	1	----a-w-	c:\dokumente und einstellungen\******\Anwendungsdaten\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-07-30 11:38 . 2009-07-30 11:38	--------	d-----w-	c:\programme\JRE
2009-07-30 06:28 . 2009-07-30 06:32	--------	d-----w-	c:\programme\Trojancheck 6
2009-07-29 17:02 . 2009-07-29 17:02	--------	d-----w-	C:\rsit
2009-07-29 16:49 . 2009-07-29 16:49	--------	d-----w-	c:\programme\Defraggler
2009-07-29 15:34 . 2009-07-29 15:34	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Malwarebytes
2009-07-29 15:34 . 2009-07-13 11:36	38160	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-29 15:34 . 2009-07-29 16:52	--------	d-----w-	c:\programme\Malwarebytes' Anti-Malware
2009-07-29 15:34 . 2009-07-29 15:34	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2009-07-29 15:34 . 2009-07-13 11:36	19096	----a-w-	c:\windows\system32\drivers\mbam.sys
2009-07-29 15:19 . 2009-07-29 15:19	--------	d-----w-	c:\programme\CCleaner
2009-07-29 06:34 . 2009-07-29 06:34	--------	d-----w-	c:\windows\system32\wbem\Repository
2009-07-25 20:39 . 2009-07-25 20:39	--------	d-----w-	C:\DECCHECK
2009-07-25 20:18 . 2009-07-25 20:19	--------	d-----w-	C:\e435b1a94fbcb23923f4e50be1
2009-07-25 14:45 . 2009-07-25 14:45	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Novatel Wireless
2009-07-25 14:45 . 2009-07-25 14:45	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Novatel Flipper
2009-07-25 14:45 . 2009-07-25 14:46	--------	d-----w-	c:\programme\o2 Connection Manager
2009-07-25 14:45 . 2009-07-25 14:45	--------	d-----w-	c:\programme\Gemeinsame Dateien\AccSys
2009-07-25 14:45 . 2009-07-25 14:45	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\AccSys
2009-07-25 14:34 . 2008-04-14 02:22	21504	-c--a-w-	c:\windows\system32\dllcache\hidserv.dll
2009-07-25 14:34 . 2008-04-14 02:22	21504	----a-w-	c:\windows\system32\hidserv.dll
2009-07-25 14:09 . 2009-07-25 14:09	--------	d-----w-	c:\dokumente und einstellungen\Kuschel\Lokale Einstellungen\Anwendungsdaten\Mozilla
2009-07-25 14:09 . 2009-07-25 14:09	--------	d-----w-	c:\dokumente und einstellungen\Kuschel\Lokale Einstellungen\Anwendungsdaten\Toshiba
2009-07-25 12:54 . 2009-07-25 14:09	--------	d-----w-	c:\dokumente und einstellungen\Admin.******\Lokale Einstellungen\Anwendungsdaten\Microsoft
2009-07-25 12:54 . 2009-07-25 14:09	--------	d-----w-	c:\dokumente und einstellungen\Admin.******\Vorlagen
2009-07-25 12:54 . 2009-07-25 14:09	--------	d-----w-	c:\dokumente und einstellungen\Admin.******\Lokale Einstellungen
2009-07-25 12:54 . 2005-01-01 11:01	--------	d-----w-	c:\dokumente und einstellungen\Admin.******\Lokale Einstellungen\Anwendungsdaten\Adobe
2009-07-25 12:54 . 2009-07-25 14:09	--------	d-s---w-	c:\dokumente und einstellungen\Admin.******
2009-07-21 11:14 . 2009-07-21 11:14	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\OpenOffice.org
2009-07-21 11:10 . 2009-07-30 11:37	--------	d-----w-	c:\programme\OpenOffice.org 3
2009-07-21 11:07 . 2009-07-21 11:08	--------	d-----w-	c:\programme\OpenOffice
2009-07-18 18:10 . 2009-07-18 18:10	--------	d-----w-	c:\programme\Cisco Systems
2009-07-17 13:01 . 2009-07-17 13:01	--------	d-----r-	c:\dokumente und einstellungen\NetworkService\Favoriten
2009-07-17 13:01 . 2009-07-17 13:01	--------	d-sh--w-	c:\dokumente und einstellungen\NetworkService\IETldCache
2009-07-16 10:41 . 2009-07-16 10:41	--------	d-----w-	c:\programme\Pons
2009-07-14 18:49 . 2009-07-14 18:49	--------	d-----w-	c:\dokumente und einstellungen\******\.SunDownloadManager
2009-07-14 18:08 . 2009-07-14 18:08	152576	----a-w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Sun\Java\jre1.6.0_14\lzma.dll
2009-07-14 17:36 . 2009-07-14 17:36	--------	d-----w-	c:\programme\SystemRequirementsLab
2009-07-13 06:44 . 2009-07-30 06:39	2318392	----a-w-	c:\dokumente und einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat
2009-07-12 17:31 . 2009-07-12 20:47	--------	d-----w-	c:\programme\IKEA HomePlanner
2009-07-11 23:43 . 2008-10-16 12:06	268648	----a-w-	c:\windows\system32\mucltui.dll
2009-07-11 23:04 . 2009-07-25 20:08	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\dvdcss
2009-07-11 23:00 . 2009-07-26 07:58	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\vlc
2009-07-11 22:58 . 2009-07-11 22:58	--------	d-----w-	c:\programme\VideoLAN
2009-07-08 18:40 . 2009-07-08 19:03	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\MyPhoneExplorer
2009-07-08 18:40 . 2009-07-08 18:40	--------	d-----w-	c:\programme\MyPhoneExplorer
2009-07-05 22:31 . 2009-07-05 22:31	--------	d-----w-	c:\dokumente und einstellungen\******\Lokale Einstellungen\Anwendungsdaten\{7148F0A6-6813-11D6-A77B-00B0D0142050}
2009-07-03 09:46 . 2009-07-03 09:46	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\InstallShield
2009-07-03 09:12 . 2009-07-03 09:12	--------	d-sh--w-	c:\dokumente und einstellungen\LocalService\IETldCache
2009-07-03 08:55 . 2009-07-03 08:55	--------	d-sh--w-	c:\dokumente und einstellungen\******\IECompatCache
2009-07-03 08:53 . 2009-07-03 08:53	--------	d-sh--w-	c:\dokumente und einstellungen\******\PrivacIE
2009-07-03 08:42 . 2009-07-03 08:42	--------	d-sh--w-	c:\dokumente und einstellungen\******\IETldCache
2009-07-03 08:38 . 2009-06-02 10:12	102912	-c----w-	c:\windows\system32\dllcache\iecompat.dll
2009-07-03 08:37 . 2009-07-03 08:37	--------	d-----w-	c:\windows\ie8updates
2009-07-03 08:36 . 2009-07-03 16:55	12800	-c----w-	c:\windows\system32\dllcache\xpshims.dll
2009-07-03 08:36 . 2009-07-03 16:55	246272	-c----w-	c:\windows\system32\dllcache\ieproxy.dll
2009-07-03 08:33 . 2009-07-03 08:36	--------	dc-h--w-	c:\windows\ie8
2009-07-03 08:14 . 2009-07-03 08:14	--------	d-----w-	c:\programme\Microsoft CAPICOM 2.1.0.2
2009-07-03 07:33 . 2009-07-03 07:33	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Apple Computer
2009-07-03 07:32 . 2009-07-03 07:32	--------	d-----w-	c:\programme\InterVideo Information Service
2009-07-03 07:32 . 2009-07-03 07:32	--------	d-----w-	c:\programme\Gemeinsame Dateien\Ulead
2009-07-03 07:31 . 2009-07-03 07:31	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\InstallShield
2009-07-03 07:27 . 2007-04-04 16:55	261480	----a-w-	c:\windows\system32\xactengine2_7.dll
2009-07-03 07:23 . 2009-07-03 07:23	--------	d-----w-	c:\windows\Logs
2009-07-03 07:23 . 2009-07-03 07:26	--------	d--h--w-	c:\windows\msdownld.tmp

.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-30 17:43 . 2006-06-10 14:09	108288	----a-w-	c:\dokumente und einstellungen\******\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
2009-07-30 11:56 . 2009-05-27 06:47	15980	----a-w-	c:\programme\FoxitReader_Preferences.ini
2009-07-29 20:24 . 2008-06-13 08:20	194560	----a-w-	c:\windows\Bildschirmschoner 1280.scr
2009-07-29 20:24 . 2008-06-13 08:19	606848	----a-w-	c:\windows\flashax.exe
2009-07-29 20:24 . 2006-10-11 17:31	12288	----a-w-	c:\windows\impborl.dll
2009-07-29 19:12 . 2006-06-09 13:55	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Skype
2009-07-29 19:09 . 2009-03-26 08:14	--------	d-----w-	c:\programme\MSECACHE
2009-07-29 17:53 . 2008-01-20 17:13	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\skypePM
2009-07-28 20:55 . 2009-04-11 08:49	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\uTorrent
2009-07-28 10:11 . 2008-01-02 20:26	--------	d---a-w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP
2009-07-25 18:26 . 2006-03-16 05:47	95834	----a-w-	c:\windows\system32\perfc007.dat
2009-07-25 18:26 . 2006-03-16 05:47	485476	----a-w-	c:\windows\system32\perfh007.dat
2009-07-25 14:46 . 2006-03-16 15:47	--------	d--h--w-	c:\programme\InstallShield Installation Information
2009-07-25 14:10 . 2009-07-25 14:10	--------	d-----w-	c:\dokumente und einstellungen\Kuschel\Anwendungsdaten\Teleca
2009-07-25 14:10 . 2009-07-25 14:10	--------	d-----w-	c:\dokumente und einstellungen\Kuschel\Anwendungsdaten\Sony Corporation
2009-07-25 14:10 . 2009-07-25 14:10	--------	d-----w-	c:\dokumente und einstellungen\Kuschel\Anwendungsdaten\PC Suite
2009-07-25 14:10 . 2009-07-25 14:10	--------	d-----w-	c:\dokumente und einstellungen\Kuschel\Anwendungsdaten\Nokia
2009-07-25 14:07 . 2009-07-25 13:50	--------	d-----w-	c:\programme\Gemeinsame Dateien\AccSys(3)
2009-07-25 14:07 . 2009-07-25 13:50	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\AccSys(3)
2009-07-25 14:07 . 2009-07-25 13:50	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Novatel Wireless(3)
2009-07-21 11:09 . 2006-03-17 09:39	--------	d-----w-	c:\programme\Java
2009-07-17 12:23 . 2006-09-09 12:27	--------	d-----w-	c:\programme\a-squared Free
2009-07-16 10:38 . 2006-03-17 09:37	--------	d-----w-	c:\programme\Gemeinsame Dateien\Sony Shared
2009-07-16 07:13 . 2008-02-03 20:24	6827264	----a-w-	c:\programme\Foxit Reader.exe
2009-07-14 19:22 . 2006-03-16 16:20	--------	d-----w-	c:\programme\Intel
2009-07-14 12:12 . 2006-10-09 17:57	--------	d-----w-	c:\programme\XP Codec Pack
2009-07-14 12:06 . 2006-06-11 17:20	--------	d-----w-	c:\programme\Gemeinsame Dateien\Real
2009-07-12 20:47 . 2006-08-22 16:29	--------	d-----w-	c:\programme\Gemeinsame Dateien\Wise Installation Wizard
2009-07-11 22:34 . 2006-03-17 09:39	--------	d-----w-	c:\programme\Sony
2009-07-11 21:41 . 2007-05-10 18:25	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Teleca
2009-07-11 21:40 . 2008-02-03 13:14	--------	d-----w-	c:\programme\Gemeinsame Dateien\Teleca Shared
2009-07-11 21:19 . 2006-03-17 10:02	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Sony Corporation
2009-07-03 16:55 . 2006-03-16 05:47	915456	----a-w-	c:\windows\system32\wininet.dll
2009-07-03 09:55 . 2009-04-18 17:18	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Winamp
2009-07-03 09:29 . 2006-06-14 16:52	--------	d-----w-	c:\programme\Gemeinsame Dateien\Macromedia
2009-07-03 09:29 . 2006-06-14 16:51	--------	d-----w-	c:\programme\Macromedia
2009-07-03 08:56 . 2006-06-10 13:44	--------	d-----w-	c:\programme\Winamp
2009-07-03 08:42 . 2008-08-28 07:32	--------	d-----w-	c:\programme\Microsoft Silverlight
2009-07-03 07:29 . 2006-03-17 09:49	--------	d-----w-	c:\programme\InterVideo
2009-07-03 07:29 . 2006-03-16 15:47	--------	d-----w-	c:\programme\Gemeinsame Dateien\InstallShield
2009-06-28 18:52 . 2009-02-25 17:51	--------	d-----w-	c:\programme\Hotspot Shield
2009-06-26 13:41 . 2007-01-29 21:07	--------	d-----w-	c:\programme\Mozilla Thunderbird
2009-06-26 13:34 . 2009-06-26 13:34	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Avira
2009-06-26 13:34 . 2009-06-13 17:05	--------	d-----w-	c:\programme\Avira
2009-06-26 13:16 . 2009-06-26 13:16	56	---ha-w-	c:\windows\system32\ezsidmv.dat
2009-06-26 13:15 . 2009-06-26 13:15	--------	d-----r-	c:\programme\Skype
2009-06-26 13:15 . 2009-06-26 13:15	--------	d-----w-	c:\programme\Gemeinsame Dateien\Skype
2009-06-26 13:15 . 2006-06-09 13:55	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Skype
2009-06-26 13:01 . 2009-06-26 13:01	--------	d-----w-	c:\programme\Secunia
2009-06-20 07:09 . 2009-06-20 07:08	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\TrueCrypt
2009-06-20 07:07 . 2009-06-20 07:07	217664	----a-w-	c:\windows\system32\drivers\truecrypt.sys
2009-06-20 07:07 . 2009-06-20 07:07	--------	d-----w-	c:\programme\TrueCrypt
2009-06-17 12:20 . 2009-06-17 12:20	12648	----a-w-	c:\windows\system32\drivers\psi_mf.sys
2009-06-16 14:36 . 2006-03-16 05:47	119808	----a-w-	c:\windows\system32\t2embed.dll
2009-06-16 14:36 . 2006-03-16 05:47	81920	----a-w-	c:\windows\system32\fontsub.dll
2009-06-15 15:35 . 2009-06-15 15:35	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\BVRP Software
2009-06-13 18:40 . 2006-07-30 19:03	--------	d-----w-	c:\programme\DivX
2009-06-13 18:36 . 2009-06-13 18:36	--------	d-----w-	c:\programme\Gemeinsame Dateien\DivX Shared
2009-06-13 18:07 . 2006-06-09 12:59	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Sony Corporation
2009-06-13 18:07 . 2006-03-17 09:40	--------	d-----w-	c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Sony Corporation
2009-06-13 14:46 . 2009-06-13 14:46	--------	d-----w-	c:\programme\lex
2009-06-09 21:01 . 2009-06-09 20:55	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\GetRightToGo
2009-06-09 09:33 . 2009-06-01 08:51	--------	d-----w-	c:\programme\Mobile Partner
2009-06-04 15:03 . 2009-06-04 15:03	--------	d-----w-	c:\programme\Gemeinsame Dateien\Deterministic Networks
2009-06-04 14:59 . 2009-06-04 14:51	--------	d-----w-	c:\programme\Gemeinsame Dateien\AccSys(2)
2009-06-04 14:59 . 2009-06-04 14:51	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\AccSys(2)
2009-06-04 14:59 . 2009-06-04 14:51	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Novatel Wireless(2)
2009-06-03 19:09 . 2006-03-16 05:47	1296896	----a-w-	c:\windows\system32\quartz.dll
2009-06-01 23:32 . 2009-02-21 23:57	--------	d-----w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Uniblue
2009-06-01 23:32 . 2009-02-21 23:57	--------	d-----w-	c:\programme\Uniblue
2009-06-01 18:13 . 2009-02-25 17:51	33840	----a-w-	c:\windows\system32\drivers\hssdrv.sys
2009-06-01 12:21 . 2009-06-01 12:21	12053432	----a-w-	c:\dokumente und einstellungen\******\Anwendungsdaten\Uniblue\DriverScanner\Download\pci_ven_8086_dev_10928_0_47_0.exe
2009-06-01 09:29 . 2009-02-21 23:57	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\DriverScanner
2009-06-01 09:24 . 2009-06-01 09:24	--------	dc-h--w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\{B3ABAF49-C1FD-4E23-A5C8-1D0530D54991}
2009-05-07 15:32 . 2006-03-16 05:47	348160	----a-w-	c:\windows\system32\localspl.dll
2009-05-04 14:27 . 2009-06-01 09:24	2835559	-c--a-w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\{942E4254-C25C-44BA-94FC-8777923F9E7B}\speedupmypc2009.exe
2009-05-01 21:02 . 2009-05-01 21:02	90112	----a-w-	c:\windows\system32\dpl100.dll
2009-05-01 21:02 . 2009-05-01 21:02	823296	----a-w-	c:\windows\system32\divx_xx0c.dll
2009-05-01 21:02 . 2009-05-01 21:02	823296	----a-w-	c:\windows\system32\divx_xx07.dll
2009-05-01 21:02 . 2009-05-01 21:02	815104	----a-w-	c:\windows\system32\divx_xx0a.dll
2009-05-01 21:02 . 2009-05-01 21:02	811008	----a-w-	c:\windows\system32\divx_xx16.dll
2009-05-01 21:02 . 2009-05-01 21:02	802816	----a-w-	c:\windows\system32\divx_xx11.dll
2009-05-01 21:02 . 2009-05-01 21:02	685056	----a-w-	c:\windows\system32\DivX.dll
2008-06-17 15:36 . 2008-06-17 15:36	470272	----a-w-	c:\programme\fxdecod1.dll
2009-07-19 18:36 . 2008-08-29 13:39	137208	----a-w-	c:\programme\mozilla firefox\components\brwsrcmp.dll
2009-05-01 21:02 . 2009-05-01 21:02	1044480	----a-w-	c:\programme\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02	200704	----a-w-	c:\programme\mozilla firefox\plugins\ssldivx.dll
2007-03-03 12:33 . 2007-03-03 12:33	5	--sha-w-	c:\windows\system32\cbaa7_s.dll
.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
2009-02-25 17:51	204248	----a-w-	c:\programme\Hotspot Shield\HssIE\HssIE.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

Kandi1982 · 31.07.2009, 10:10

Fortsetzung...

Code:

ATTFilter

(Updated) {8627B974-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8627C534-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8627DDDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8627F3EC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8627F51C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8628AC44-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8628BBD4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86295B64-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8629776C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8629A9EC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862A4DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862AFC04-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862B341C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86318974-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {863D838C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {863F24D4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8640B4AC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86414CBC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864167DC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86431AAC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86434DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8643DA1C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864527AC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8646E1D4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86476394-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86478314-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864857DC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86496644-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864989BC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8649ABFC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864A7054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864B4BA4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864B83E4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864BADDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864C0DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864C2CD4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864D173C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864D269C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864D2DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864D3054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864D48F4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864D9054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864D9DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864DA774-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864DB294-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864DC61C-FFA4-0100-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864DC684-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864DC724-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864DD54C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864E181C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864E2BFC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864E7DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864EBB94-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {864F6BF4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865056F4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8650F25C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86515DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8651D87C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8652791C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86543054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8654CA1C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86553054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8655A614-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8655CCDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8659196C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8659D054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865A2324-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865A867C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865AE054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865B2494-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865C4AA4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865C5344-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865CD55C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865D5DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865E2054-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {865E53B4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8662EAD4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8664991C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8664D244-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8665885C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8665A4D4-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8665EDDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {866625FC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86663604-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86664DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86667C0C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8666EDDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86683C04-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86692DDC-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {866CA36C-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8673CC04-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86770C14-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {BADB0D00-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {F78A2540-FFA4-00EF-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {FFDFF540-FFA4-00EF-0D24-347CA8A3377C}
.

30.07.2009, 20:55	#8
Larusso /// Selecta Jahrusso	Bitte HiJack Log anschauen! Danke! :-) @ PC Depp, ein thread reicht. Ich habe Dir bereits Hausaufgaben gegeben. Klick __________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie

Bitte HiJack Log anschauen! Danke! :-)

Log-Analyse und Auswertung: Bitte HiJack Log anschauen! Danke! :-)