TR/Agent.ruo.6

Sphare · 03.04.2010, 17:32

Hallo zusammen,

irgendwie scheint ja der Agent im Augenblick recht aktiv zu sein.

Mich hats auch erwischt. In der A0101468.sys

Anbei der OSAM - Log:

Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 18:31:29 on 03.04.2010
OS: Windows XP Professional Service Pack 3 (Build 2600)
Default Browser: Mozilla Corporation Firefox 3.6.2

Scanner Settings
Rootkits detection (hidden registry)
Rootkits detection (hidden files)
Retrieve files information
Check Microsoft signatures

Filters
Trusted entries
Empty entries
Hidden registry entries (rootkit activity)
Exclusively opened files
Not found files
Files without detailed information
Existing files
Non-startable services
Non-startable drivers
Active entries
Disabled entries

Risk Name Publisher Full Path Status
Common
%SystemRoot%\Tasks
|||| "GoogleUpdateTaskMachineCore.job" "Google Inc." C:\Programme\Google\Update\GoogleUpdate.exe File exists
|||| "GoogleUpdateTaskMachineUA.job" "Google Inc." C:\Programme\Google\Update\GoogleUpdate.exe File exists
Control Panel Objects
%SystemRoot%\system32
|||||| "BDEADMIN.CPL" C:\WINDOWS\system32\BDEADMIN.CPL File exists
|||||| "Firebird2Control.cpl" "IBPhoenix" C:\WINDOWS\system32\Firebird2Control.cpl File exists
|||||| "infocardcpl.cpl" "Microsoft Corporation" C:\WINDOWS\system32\infocardcpl.cpl File exists
|||||| "javacpl.cpl" "Sun Microsystems, Inc." C:\WINDOWS\system32\javacpl.cpl File exists
HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls
"Avira AntiVir Personal" "Avira GmbH" C:\PROGRA~1\Avira\ANTIVI~1\avconfig.cpl File exists
|||||| "mlcfg32.cpl" "Microsoft Corporation" E:\MICROS~1\Office12\MLCFG32.CPL File exists
|||||| "NokiaConnectionManager" "Nokia" D:\PROGRA~1\Nokia\NOKIAP~1\CONNEC~1.CPL File exists
Drivers
HKLM\SYSTEM\CurrentControlSet\Services
|||||| "%USB\vid_054c&pid_0154.DeviceDesc%" (ovt519) "OmniVision Technologies, Inc." C:\WINDOWS\System32\Drivers\ov519vid.sys File exists
|||||| "ACEDRV07" (ACEDRV07) "Protect Software GmbH" C:\WINDOWS\system32\drivers\ACEDRV07.sys File exists
|||||| "AEGIS Protocol (IEEE 802.1x) v3.7.5.0" (AegisP) "Cisco Systems, Inc." C:\WINDOWS\System32\DRIVERS\AegisP.sys File exists
|||||| "anhgg0mu" (anhgg0mu) "Microsoft Corporation" C:\WINDOWS\system32\drivers\anhgg0mu.sys Hidden registry entry, rootkit activity | File signed by Microsoft
|||||| "Aspi32" (Aspi32) "Adaptec" C:\WINDOWS\system32\drivers\Aspi32.sys File exists
|||||| "avgio" (avgio) "Avira GmbH" C:\Programme\Avira\AntiVir Desktop\avgio.sys File exists
"avgntflt" (avgntflt) "Avira GmbH" C:\WINDOWS\System32\DRIVERS\avgntflt.sys File exists
"avipbb" (avipbb) "Avira GmbH" C:\WINDOWS\System32\DRIVERS\avipbb.sys File exists
|||||| "Bluetooth Audio Service" (BlueletAudio) "IVT Corporation" C:\WINDOWS\System32\DRIVERS\blueletaudio.sys File exists
|||||| "Bluetooth HID Enumerator" (BTHidEnum) C:\WINDOWS\System32\DRIVERS\vbtenum.sys File found, but it contains no detailed information
|||||| "Bluetooth HID Manager Service" (BTHidMgr) "IVT Corporation" C:\WINDOWS\System32\Drivers\BTHidMgr.sys File exists
|||||| "Bluetooth Network Filter" (BTNetFilter) C:\WINDOWS\system32\drivers\BTNetFilter.sys File found, but it contains no detailed information
|||||| "Bluetooth PAN Network Adapter" (BT) "IVT Corporation" C:\WINDOWS\System32\DRIVERS\btnetdrv.sys File exists
|||||| "Bluetooth USB For Bluetooth Service" (Btcsrusb) "IVT Corporation" C:\WINDOWS\System32\Drivers\btcusb.sys File exists
|||||| "Bluetooth VComm Manager Service" (VcommMgr) "IVT Corporation" C:\WINDOWS\System32\Drivers\VcommMgr.sys File exists
"Bluetooth-Bus-Enumerator" (btkrnl) C:\WINDOWS\System32\DRIVERS\btkrnl.sys File not found
|||||| "Card Reader Filter" (CardReaderFilter) "ICSI Technology Ltd." C:\WINDOWS\system32\Drivers\USBCRFT.SYS File exists
"Changer" (Changer) C:\WINDOWS\system32\drivers\Changer.sys File not found
"i2omgmt" (i2omgmt) C:\WINDOWS\system32\drivers\i2omgmt.sys File not found
"lbrtfdc" (lbrtfdc) C:\WINDOWS\system32\drivers\lbrtfdc.sys File not found
"Nokia USB Flashing Generic" (nmwcdnsuc) C:\WINDOWS\System32\drivers\nmwcdnsuc.sys File not found
"Nokia USB Flashing Phone Parent" (nmwcdnsu) C:\WINDOWS\System32\drivers\nmwcdnsu.sys File not found
|||||| "NTSIM" (NTSIM) "VIA Networking Technologies, Inc. " C:\WINDOWS\system32\ntsim.sys File exists
|||||| "PCANDIS5 NDIS Protocol Driver" (PCANDIS5) "Printing Communications Assoc., Inc. (PCAUSA)" C:\WINDOWS\system32\PCANDIS5.SYS File exists
"PCIDump" (PCIDump) C:\WINDOWS\system32\drivers\PCIDump.sys File not found
"pcif43hm" (pcif43hm) "Microsoft Corporation" C:\WINDOWS\system32\drivers\pcif43hm.sys File exists
"PDCOMP" (PDCOMP) C:\WINDOWS\system32\drivers\PDCOMP.sys File not found
"PDFRAME" (PDFRAME) C:\WINDOWS\system32\drivers\PDFRAME.sys File not found
"PDRELI" (PDRELI) C:\WINDOWS\system32\drivers\PDRELI.sys File not found
"PDRFRAME" (PDRFRAME) C:\WINDOWS\system32\drivers\PDRFRAME.sys File not found
"PLCMPR5 NDIS Protocol Driver" (PLCMPR5) C:\WINDOWS\system32\PLCMPR5.SYS File not found
|||||| "PLCNDIS5 NDIS Protocol Driver" (PLCNDIS5) "Intellon, Inc." C:\WINDOWS\system32\plcndis5.sys File exists
|||||| "PxHelp20" (PxHelp20) "Sonic Solutions" C:\WINDOWS\System32\DRIVERS\PxHelp20.sys File exists
|||||| "Sinus 1054 data" (PRISM_A02) "Conexant Systems, Inc." C:\WINDOWS\System32\DRIVERS\PRISMA02.sys File exists
|||||| "sptd" (sptd) "Duplex Secure Ltd." C:\WINDOWS\System32\Drivers\sptd.sys File is exclusively opened, access blocked
"ssmdrv" (ssmdrv) "Avira GmbH" C:\WINDOWS\System32\DRIVERS\ssmdrv.sys File exists
"upperdev" (upperdev) C:\WINDOWS\System32\DRIVERS\usbser_lowerflt.sys File not found
|||||| "Virtual Serial port driver" (VComm) "IVT Corporation" C:\WINDOWS\System32\DRIVERS\VComm.sys File exists
"w32n5223 Protocol Driver" (w32n5223) C:\PROGRA~1\T-COM\T-COMW~1\INSTAL~1\WINXP\w32n5223.SYS File not found
"WDICA" (WDICA) C:\WINDOWS\system32\drivers\WDICA.sys File not found
Explorer
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
|||||| {89B4C1CD-B018-4511-B0A1-5476DBF70820} "StubPath" "Microsoft Corporation" C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install File exists
HKLM\Software\Classes\Folder\shellex\ColumnHandlers
|||||| {F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" "Adobe Systems, Inc." C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\PDFShell.dll File exists
HKLM\Software\Classes\Protocols\Filter
|||||| {1E66F26B-79EE-11D2-8710-00C04F79ED0D} "Cor MIME Filter, CorFltr, CorFltr 1" "Microsoft Corporation" C:\WINDOWS\system32\mscoree.dll File exists
|||||| {1E66F26B-79EE-11D2-8710-00C04F79ED0D} "Cor MIME Filter, CorFltr, CorFltr 1" "Microsoft Corporation" C:\WINDOWS\system32\mscoree.dll File exists
|||||| {1E66F26B-79EE-11D2-8710-00C04F79ED0D} "Cor MIME Filter, CorFltr, CorFltr 1" "Microsoft Corporation" C:\WINDOWS\system32\mscoree.dll File exists
|||||| {807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" "Microsoft Corporation" C:\PROGRA~1\GEMEIN~1\MICROS~1\OFFICE12\MSOXMLMF.DLL File exists
HKLM\Software\Classes\Protocols\Handler
|||||| {3D9F03FA-7A94-11D3-BE81-0050048385D1} "Data Page Pluggable Protocol mso-offdap Handler" "Microsoft Corporation" C:\PROGRA~1\GEMEIN~1\MICROS~1\WEBCOM~1\10\OWC10.DLL File exists
|||||| {314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" "Microsoft Corporation" C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll File exists
|||||| {0A9007C0-4076-11D3-8789-0000F8105754} "Microsoft Infotech Storage Protocol for IE 4.0" "Microsoft Corporation" C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\MSITSS.DLL File exists
|||||| {CD00020A-8B95-11D1-82DB-00C04FB1625D} "Microsoft PKM KnowledgePluggable Class" "Microsoft Corporation" C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Folders\PKMCDO.DLL File exists
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
{EDB0E980-90BD-11D4-8599-0008C7D3B6F8} "Eudora's Shell Extension" File not found | COM-object registry key not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
|||||| {D66DC78C-4F61-447F-942B-3FB6980118CF} "CInfoTipShellExt Class" "Microsoft Corporation" E:\Microsoft Office\Office12\VISSHE.DLL File exists
{42071714-76d4-11d1-8b24-00a0c9068ff3} "CPL-Erweiterung für Anzeigeverschiebung" File not found | COM-object registry key not found
{EDB0E980-90BD-11D4-8599-0008C7D3B6F8} "Eudora's Shell Extension" File not found | COM-object registry key not found
{FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} "IE User Assist" File not found | COM-object registry key not found
|||||| {506F4668-F13E-4AA1-BB04-B43203AB3CC0} "ImageExtractorShellExt Class" "Microsoft Corporation" E:\Microsoft Office\Office12\VISSHE.DLL File exists
{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} "Kontextmenü für die Verschlüsselung" File not found | COM-object registry key not found
|||||| {42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" "Microsoft Corporation" E:\Microsoft Office\Office12\msohevi.dll File exists
|||||| {993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" "Microsoft Corporation" C:\PROGRA~1\GEMEIN~1\MICROS~1\OFFICE12\msoshext.dll File exists
|||||| {00020D75-0000-0000-C000-000000000046} "Microsoft Office Outlook" "Microsoft Corporation" E:\MICROS~1\Office12\MLSHEXT.DLL File exists
|||||| {C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" "Microsoft Corporation" C:\PROGRA~1\GEMEIN~1\MICROS~1\OFFICE12\msoshext.dll File exists
|||||| {49BF5420-FA7F-11cf-8011-00A0C90A8F78} "Mobiles Gerät" "Microsoft Corporation" D:\PROGRA~1\ACTIVE~1\Wcesview.dll File exists
|||||| {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} "Nokia Phone Browser" "Nokia" D:\Programme\Nokia\Nokia PC Suite 7\PhoneBrowser.dll File exists
|||||| {0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension" "Microsoft Corporation" E:\MICROS~1\Office12\OLKFSTUB.DLL File exists
{45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" "Avira GmbH" C:\Programme\Avira\AntiVir Desktop\shlext.dll File exists
|||||| {E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} "Shell Icon Handler for Application References" "Microsoft Corporation" C:\WINDOWS\system32\dfshim.dll File exists
{764BF0E1-F219-11ce-972D-00AA00A14F56} "Shellerweiterungen für die Dateikomprimierung" File not found | COM-object registry key not found
|||||| {e82a2d71-5b2f-43a0-97b8-81be15854de8} "ShellLink for Application References" "Microsoft Corporation" C:\WINDOWS\system32\dfshim.dll File exists
|||||| {BDEADF00-C265-11D0-BCED-00A0C90AB50F} "Web Folders" "Microsoft Corporation" C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Folders\MSONSEXT.DLL File exists
|||||| {B41DB860-8EE4-11D2-9906-E49FADC173CA} "WinRAR" e:\Programme\WinRAR\rarext.dll File found, but it contains no detailed information
Internet Explorer
HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
|||| {21347690-EC41-4F9A-8887-1F4AEE672439} "Canon Easy-WebPrint EX" "CANON INC." C:\Programme\Canon\Easy-WebPrint EX\ewpexhlp.dll File exists
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
|||| "Canon Easy-WebPrint EX" "CANON INC." C:\Programme\Canon\Easy-WebPrint EX\ewpexhlp.dll File exists
|||| "Google Toolbar" "Google Inc." C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll File exists
ITBar7Height "ITBar7Height" File not found | COM-object registry key not found
"ITBar7Layout" File not found | COM-object registry key not found
"ITBarLayout" File not found | COM-object registry key not found
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks
|||| {855F3B16-6D32-4fe6-8A56-BBB695989046} "ICQToolBar" "ICQ" C:\Programme\ICQ6Toolbar\ICQToolBar.dll File exists
"{855F3B16-6D32-4fe6-8A56-BBB695989046}" File not found | COM-object registry key not found
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units
|||||| {8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_03"
hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab "Sun Microsystems, Inc." C:\Programme\Java\jre1.6.0_03\bin\npjpi160_03.dll File exists
|||||| {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} "Java Plug-in 1.6.0_03"
hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab "Sun Microsystems, Inc." C:\Programme\Java\jre1.6.0_03\bin\npjpi160_03.dll File exists
|||||| {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_03"
hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab "Sun Microsystems, Inc." C:\Programme\Java\jre1.6.0_03\bin\npjpi160_03.dll File exists
|||| {D0C0F75C-683A-4390-A791-1ACFD5599AB8} "Oberon Flash Game Host"
hxxp://icq.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab "Oberon Media, Inc." C:\WINDOWS\Downloaded Program Files\OberonGameHost.dll File exists
HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars
|||| {855F3B16-6D32-4fe6-8A56-BBB695989046} "ICQToolBar" "ICQ" C:\Programme\ICQ6Toolbar\ICQToolBar.dll File exists
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions
|||||| {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} "ClsidExtension" "Sun Microsystems, Inc." C:\Programme\Java\jre1.6.0_03\bin\npjpi160_03.dll File exists
|||| {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} "ClsidExtension" "Microsoft Corporation" D:\PROGRA~1\ACTIVE~1\INetRepl.dll File exists
|||| {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} "Create Mobile Favorite" "Microsoft Corporation" D:\PROGRA~1\ACTIVE~1\INetRepl.dll File exists
|||| "ICQ6" "ICQ, LLC." e:\Programme\ICQ6.5\ICQ.exe File exists
|||| {FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" "Microsoft Corporation" E:\MICROS~1\Office12\REFIEBAR.DLL File exists
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
|||| {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} "Canon Easy-WebPrint EX" "CANON INC." C:\Programme\Canon\Easy-WebPrint EX\ewpexhlp.dll File exists
|||| "Google Toolbar" "Google Inc." C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll File exists
|||| {855F3B16-6D32-4fe6-8A56-BBB695989046} "ICQToolBar" "ICQ" C:\Programme\ICQ6Toolbar\ICQToolBar.dll File exists
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
|||||| {18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" "Adobe Systems Incorporated" C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll File exists
|||| {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} "Canon Easy-WebPrint EX BHO" "CANON INC." C:\Programme\Canon\Easy-WebPrint EX\ewpexbho.dll File exists
|||| {AA58ED58-01DD-4d91-8333-CF10577473F7} "Google Toolbar Helper" "Google Inc." C:\Programme\Google\Google Toolbar\GoogleToolbar_32.dll File exists
|||| {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} "Google Toolbar Notifier BHO" "Google Inc." C:\Programme\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll File exists
|||| {C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F} "PDF-XChange Viewer IE-Plugin" "Tracker Software Products Ltd." C:\Programme\Tracker Software\PDF-XChange Viewer\pdf-viewer\PDFXCviewIEPlugin.dll File exists
|||| {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} "SSVHelper Class" "Sun Microsystems, Inc." C:\Programme\Java\jre1.6.0_03\bin\ssv.dll File exists
Logon
%AllUsersProfile%\Startmenü\Programme\Autostart
|||||| "desktop.ini" C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\desktop.ini File exists
"Sinus 1054 data WLAN Manager.lnk" "TECOM" C:\Programme\DT\Sinus 1054 data\Wifiusb.exe Shortcut exists | File exists
"T-Com WLAN Manager.lnk" C:\Programme\T-COM\Sinus 154 data II\TS154USB.exe Shortcut exists | File exists
%UserProfile%\Startmenü\Programme\Autostart
|||||| "desktop.ini" C:\Dokumente und Einstellungen\JH\Startmenü\Programme\Autostart\desktop.ini File exists
|||| "ICQ6.5.lnk" "ICQ, LLC." E:\Programme\ICQ6.5\ICQ.exe Shortcut exists | File exists
|||| "Microsoft Office Outlook 2007.lnk" "Microsoft Corporation" E:\Microsoft Office\Office12\OUTLOOK.EXE Shortcut exists | File exists
"Mozilla Firefox.lnk" "Mozilla Corporation" E:\Programme\Firefox\firefox.exe Shortcut exists | File exists
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
"avgnt" "Avira GmbH" "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min File exists
|||| "CanonMyPrinter" "CANON INC." C:\Programme\Canon\MyPrinter\BJMyPrt.exe /logon File exists
|||| "CanonSolutionMenu" "CANON INC." C:\Programme\Canon\SolutionMenu\CNSLMAIN.exe /logon File exists
Print Monitors
HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
|||||| "EPSON V6 2KMonitor" "SEIKO EPSON CORPORATION" C:\WINDOWS\system32\EBPMON24.DLL File exists
|||||| "PDFCreator" C:\WINDOWS\system32\pdfcmnnt.dll File found, but it contains no detailed information
Services
HKLM\SYSTEM\CurrentControlSet\Services
|||||| ".NET Runtime Optimization Service v2.0.50727_X86" (clr_optimization_v2.0.50727_32) "Microsoft Corporation" C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe File exists
|||||| "ASP.NET-Zustandsdienst" (aspnet_state) "Microsoft Corporation" C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe File exists
"Avira AntiVir Guard" (AntiVirService) "Avira GmbH" C:\Programme\Avira\AntiVir Desktop\avguard.exe File exists
"Avira AntiVir Planer" (AntiVirSchedulerService) "Avira GmbH" C:\Programme\Avira\AntiVir Desktop\sched.exe File exists
|||||| "BlueSoleil Hid Service" (BlueSoleil Hid Service) C:\Programme\IVT Corporation\BlueSoleil\BTNtService.exe File found, but it contains no detailed information
|||||| "Canon Inkjet Printer/Scanner/Fax Extended Survey Program" (IJPLMSVC) C:\Programme\Canon\IJPLM\IJPLMSVC.EXE File exists
"CyberLink Background Capture Service (CBCS)" (CLCapSvc) e:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe File exists
"CyberLink Task Scheduler (CTS)" (CLSched) e:\Programme\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe File exists
|||||| "Firebird Guardian - DefaultInstance" (FirebirdGuardianDefaultInstance) "Firebird Project" C:\Programme\Firebird\Firebird_2_1\bin\fbguard.exe File exists
|||||| "Firebird Server - DefaultInstance" (FirebirdServerDefaultInstance) "Firebird Project" C:\Programme\Firebird\Firebird_2_1\bin\fbserver.exe File exists
|| "getPlus(R) Helper" (getPlusHelper) "NOS Microsystems Ltd." C:\Programme\NOS\bin\getPlus_Helper.dll File exists
|||| "Google Software Updater" (gusvc) "Google" C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe File exists
|||| "Google Update Service (gupdate)" (gupdate) "Google Inc." C:\Programme\Google\Update\GoogleUpdate.exe File exists
|||| "ICQ Service" (ICQ Service) C:\Programme\ICQ6Toolbar\ICQ Service.exe File exists
|||| "InstallDriver Table Manager" (IDriverT) "Macrovision Corporation" C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe File exists
"Machine Debug Manager" (MDM) "Microsoft Corporation" C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe File exists
|||||| "Microsoft Office Diagnostics Service" (odserv) "Microsoft Corporation" C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE File exists
|||||| "Office Source Engine" (ose) "Microsoft Corporation" C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE File exists
|||||| "Ralink Registry Writer" (RalinkRegistryWriter) "Ralink Technology, Corp." C:\Programme\RALINK\Common\RalinkRegistryWriter.exe File exists
"ServiceLayer" (ServiceLayer) "Nokia" C:\Programme\PC Connectivity Solution\ServiceLayer.exe File exists
|||||| "Windows CardSpace" (idsvc) "Microsoft Corporation" C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe File exists
|||||| "Windows Presentation Foundation Font Cache 3.0.0.0" (FontCache3.0.0.0) "Microsoft Corporation" C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe File exists
|||||| "X10 Device Network Service" (x10nets) "X10" C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe File exists
Winlogon
HKCU\Control Panel\IOProcs
"MVB" mvfs32.dll File not found

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru

Schon mal vielen Dank für die Hilfe

TR/Agent.ruo.6

Plagegeister aller Art und deren Bekämpfung: TR/Agent.ruo.6

TR/Agent.ruo.6

Ähnliche Themen: TR/Agent.ruo.6