| |
| |||||||
Log-Analyse und Auswertung: Computer versendet automatisch mit Hotmail an alle Kontakte Spam-MailsWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
08.02.2011, 07:14
| #1 |
| |  Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails Guten Morgen allerseits Ich habe ein grosses Problem mein Rechner sendet automatisch Spammails an all meine KOntakte und das wöchentlich! Kann mir bitte jemand helfen??? Gruss Sven HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 08:03:05, on 08.02.2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v7.00 (7.00.6002.18005) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\Kernel\CLML\CLMLSvc.exe C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\PCMAgent.exe C:\Program Files\ASUS\AI TouchMedia\PlayMovie\PMVService.exe C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe C:\Windows\RtHDVCpl.exe C:\Program Files\ASUS\ATK Media\DMedia.exe C:\Windows\AsScrPro.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Fingerprint Sensor\ATSwpNav.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Saitek\SD6\Software\ProfilerU.exe C:\Program Files\Saitek\SD6\Software\SaiMfd.exe C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Program Files\BySoft FreeRAM\FreeRAM.exe C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Windows\ehome\ehmsas.exe C:\hp\kbd\kbd.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe D:\Programme\Mozilla Firefox\firefox.exe C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe D:\Programme\Mozilla Firefox\plugin-container.exe C:\Program Files\Windows Live\Mail\wlmail.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Users\Sven Kunz\Downloads\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://de.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*hxxp://de.search.yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://de.rd.yahoo.com/customize/ie/defaults/su/msgr9/*hxxp://de.search.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://de.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*hxxp://de.search.yahoo.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.yahoo.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = hxxp://de.rd.yahoo.com/customize/ie/defaults/su/msgr9/*hxxp://de.search.yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: (no name) - {3E558823-0ED3-41E4-8DC6-15F055ABF468} - (no file) O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\Kernel\CLML\CLMLSvc.exe" O4 - HKLM\..\Run: [P2Go_Menu] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" O4 - HKLM\..\Run: [PCMAgent] "C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\PCMAgent.exe" O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\ASUS\AI TouchMedia\PlayMovie\PMVService.exe" O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\Avira Premium Security Suite\avgnt.exe" /min O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [BlechNET] C:\Program Files\Blechabwicklung_15_9_10\NetAuthServer.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [ATSwpNav] "C:\Program Files\Fingerprint Sensor\ATSwpNav.exe" -run O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE O4 - HKLM\..\Run: [UDM] "C:\Program Files\Swisscom\Unlimited Data Manager\LscaGui.exe" O4 - HKLM\..\Run: [BEWINTERNET-CHSessionManager] "C:\Program Files\Internet Everywhere\IEWCH_8.0\SessionManager\SessionManager.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [ProfilerU] C:\Program Files\Saitek\SD6\Software\ProfilerU.exe O4 - HKLM\..\Run: [SaiMfd] C:\Program Files\Saitek\SD6\Software\SaiMfd.exe O4 - HKLM\..\Run: [BlackBerryAutoUpdate] C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [Skytel] Skytel.exe O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [MobileBroadband] C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe /silent O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [scheduler_monitor] C:\Program Files\ReaConverter 5.5 Pro\init_scheduler.exe O4 - HKCU\..\Run: [BySoft FreeRAM] C:\Program Files\BySoft FreeRAM\FreeRAM.exe O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent O4 - HKCU\..\Run: [EPSON T1100 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFEP.EXE /FU "C:\Windows\TEMP\E_S63CF.tmp" /EF "HKCU" O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Startup: Game Alarm.lnk = C:\Games\Game Alarm\gamealarm.exe O4 - Startup: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Bluetooth.lnk = ? O4 - Global Startup: Desktop Manager.lnk = C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Password.lnk = C:\Users\Sven Kunz\AppData\Local\Temp\Password.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: ASUS Security Protect Manager e-Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll O9 - Extra 'Tools' menuitem: ASUS Security Protect Manager e-&Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: HP Smart Web Printing ein- oder ausblenden - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O13 - Gopher Prefix: O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} (Flash Casino Helper Control) - https://plugins.valueactive.eu/flashax/iefax.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: APSHook.dll O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe O23 - Service: Avira Premium Security Suite Firewall (AntiVirFirewallService) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\avfwsvc.exe O23 - Service: Avira Premium Security Suite MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\avmailc.exe O23 - Service: Avira Premium Security Suite Planer (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\sched.exe O23 - Service: Avira Premium Security Suite Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\avguard.exe O23 - Service: Avira Premium Security Suite WebGuard (antivirwebservice) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\AVWEBGRD.EXE O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: Avira Premium Security Suite MailGuard Hilfsdienst (AVEService) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\avesvc.exe O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: efe050c1a6cec8c1423ece26d88ab361 (daeacccdafeca) - Unknown owner - C:\Windows\daeacccdafeca.exe (file missing) O23 - Service: Flexlm Service 1 - Autodesk, Inc - C:\Program Files\Autodesk Network License Manager\adskflex.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Google Update Service (gupdate1c9d16b35f75c8a) (gupdate1c9d16b35f75c8a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: nHancer Support (nHancer) - KSE - Korndörfer Software Engineering - C:\Program Files\nHancer\nHancerService.exe O23 - Service: NLS Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\NLSSRV32.EXE O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Norton Internet Security - Unknown owner - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ReaConverter scheduler service (rcp_service) - ReaSoft - C:\Program Files\ReaConverter 5.5 Pro\rcp_scheduler.exe O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: Saitek DirectOutput (SaiDOutput) - Saitek - C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe O23 - Service: Samsung Network Fax Server - Samsung Electronics Co., Ltd. - C:\Windows\system32\spool\drivers\w32x86\3\NetFaxServer.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: Sesam Control Service (SesamService) - Swisscom - C:\Program Files\Swisscom\Sesam\BIN\SecMIPService.exe O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: UDM Service - Swisscom - C:\Program Files\Swisscom\Unlimited Data Manager\DashBoardS.exe O23 - Service: Vodafone-Mobile-Broadband-Dienst (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe -- End of file - 19513 bytes |
|
08.02.2011, 11:34
| #2 |
| /// Malware-holic   | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails hast du den selbst angelegt?
__________________O4 - Global Startup: Password.lnk = C:\Users\Sven Kunz\AppData\Local\Temp\Password.exe bitte deinstaliere spybot es stört die reinigung, starte neu. Systemscan mit OTL download otl: http://filepony.de/download-otl/ Doppelklick auf die OTL.exe (user von Windows 7 und Vista: Rechtsklick als Administrator ausführen) 1. Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output 2. Hake an "scan all users" 3. Unter "Extra Registry wähle: "Use Safelist" "LOP Check" "Purity Check" 4. Kopiere in die Textbox: netsvcs msconfig safebootminimal safebootnetwork activex drivers32 %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %SYSTEMDRIVE%\*.exe /md5start userinit.exe eventlog.dll scecli.dll netlogon.dll cngaudit.dll ws2ifsl.sys sceclt.dll ntelogon.dll winlogon.exe logevent.dll user32.DLL explorer.exe iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys /md5stop %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles CREATERESTOREPOINT 5. Klicke "Scan" 6. 2 reporte werden erstellt: OTL.Txt Extras.Txt beide posten.
__________________ |
|
08.02.2011, 12:04
| #3 |
| | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails Hallo
__________________Nein den habe ich nicht selber angelegt! Hier mal die OTLOTL Logfile: Code:
ATTFilter OTL logfile created on: 08.02.2011 12:46:46 - Run 2 OTL by OldTimer - Version 3.2.20.6 Folder = C:\Users\Sven Kunz\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 7.0.6002.18005) Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy 3.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 30.00% Memory free 6.00 Gb Paging File | 4.00 Gb Available in Paging File | 60.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 232.88 Gb Total Space | 29.27 Gb Free Space | 12.57% Space Free | Partition Type: NTFS Drive D: | 221.16 Gb Total Space | 7.27 Gb Free Space | 3.29% Space Free | Partition Type: NTFS Drive G: | 44.09 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: SVENKUNZ-PC | User Name: Sven Kunz | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Sven Kunz\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Users\SVENKU~1\AppData\Local\Temp\AdskCleanup.0001 (Macrovision Europe Ltd.) PRC - D:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Windows\System32\NLSSRV32.EXE (Nalpeiron Ltd.) PRC - C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) PRC - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) PRC - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe (Vodafone) PRC - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe (Vodafone) PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe () PRC - C:\Program Files\Swisscom\Unlimited Data Manager\DashBoardS.exe (Swisscom) PRC - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe (Research In Motion Limited) PRC - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe (Autodesk) PRC - C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.) PRC - C:\Program Files\Common Files\Autodesk Shared\WSCommCntr1.exe (Autodesk, Inc.) PRC - C:\Program Files\Avira\Avira Premium Security Suite\avmailc.exe (Avira GmbH) PRC - C:\Program Files\Avira\Avira Premium Security Suite\avguard.exe (Avira GmbH) PRC - C:\Program Files\Avira\Avira Premium Security Suite\sched.exe (Avira GmbH) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (France Telecom SA) PRC - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) PRC - C:\Windows\AsScrPro.exe (ASUS) PRC - C:\Program Files\Windows Live\Mail\wlmail.exe (Microsoft Corporation) PRC - C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation) PRC - C:\Program Files\Windows Live\Family Safety\fsui.exe (Microsoft Corporation) PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation) PRC - C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS) PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (Broadcom Corporation.) PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) PRC - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS) PRC - C:\Program Files\ASUS\ATK Hotkey\HControl.exe (ASUS) PRC - C:\Program Files\P4G\BatteryLife.exe (ATK) PRC - C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe (ASUS) PRC - C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe (ASUS) PRC - C:\Program Files\ASUS\SmartLogon\sensorsrv.exe (ASUS) PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) PRC - C:\Program Files\Avira\Avira Premium Security Suite\AVWEBGRD.EXE (Avira GmbH) PRC - C:\Program Files\Avira\Avira Premium Security Suite\avgnt.exe (Avira GmbH) PRC - C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\Kernel\CLML\CLMLSvc.exe (CyberLink) PRC - C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\PCMAgent.exe (CyberLink Corp.) PRC - C:\Program Files\ASUS\Splendid\ACMON.exe (ATK) PRC - C:\Program Files\Fingerprint Sensor\ATSwpNav.exe (AuthenTec, Inc.) PRC - C:\Program Files\ASUS\AI TouchMedia\PlayMovie\PMVService.exe (CyberLink Corp.) PRC - C:\Program Files\Avira\Avira Premium Security Suite\avfwsvc.exe (Avira GmbH) PRC - C:\Program Files\Avira\Avira Premium Security Suite\avesvc.exe (Avira GmbH) PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems) PRC - C:\Program Files\ASUS\ATK Hotkey\WDC.exe () PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) PRC - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe () PRC - C:\Program Files\ASUS\ASUS Live Update\ALU.exe () PRC - C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe () PRC - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe () PRC - C:\Program Files\ATKGFNEX\GFNEXSrv.exe () PRC - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe () PRC - C:\Program Files\Wireless Console 2\wcourier.exe () PRC - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe (Cognizance Corporation) PRC - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) PRC - C:\Windows\System32\ACEngSvr.exe (ASUSTeK) PRC - C:\Program Files\BySoft FreeRAM\FreeRAM.exe (BySoft) ========== Modules (SafeList) ========== MOD - C:\Users\Sven Kunz\Downloads\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll (Microsoft Corporation) MOD - C:\Windows\System32\APSHook.dll (Cognizance Corporation) ========== Win32 Services (SafeList) ========== SRV - (Norton Internet Security) -- File not found SRV - (daeacccdafeca) -- File not found SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (nlsX86cc) -- C:\Windows\System32\NLSSRV32.EXE (Nalpeiron Ltd.) SRV - (Stereo Service) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) SRV - (VmbService) -- C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe (Vodafone) SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (UDM Service) -- C:\Program Files\Swisscom\Unlimited Data Manager\DashBoardS.exe (Swisscom) SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation) SRV - (Boonty Games) -- C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe (BOONTY) SRV - (Autodesk Licensing Service) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe (Autodesk) SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.) SRV - (AntiVirMailService) -- C:\Program Files\Avira\Avira Premium Security Suite\avmailc.exe (Avira GmbH) SRV - (AntiVirService) -- C:\Program Files\Avira\Avira Premium Security Suite\avguard.exe (Avira GmbH) SRV - (AntiVirScheduler) -- C:\Program Files\Avira\Avira Premium Security Suite\sched.exe (Avira GmbH) SRV - (Flexlm Service 1) -- C:\Program Files\Autodesk Network License Manager\adskflex.exe (Autodesk, Inc) SRV - (FTRTSVC) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (France Telecom SA) SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation) SRV - (antivirwebservice) -- C:\Program Files\Avira\Avira Premium Security Suite\AVWEBGRD.EXE (Avira GmbH) SRV - (AntiVirFirewallService) -- C:\Program Files\Avira\Avira Premium Security Suite\avfwsvc.exe (Avira GmbH) SRV - (AVEService) -- C:\Program Files\Avira\Avira Premium Security Suite\avesvc.exe (Avira GmbH) SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems) SRV - (LPDSVC) -- C:\Windows\System32\lpdsvc.dll (Microsoft Corporation) SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SRV - (rcp_service) -- C:\Program Files\ReaConverter 5.5 Pro\rcp_scheduler.exe (ReaSoft) SRV - (ASLDRService) -- C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe () SRV - (ATKGFNEXSrv) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe () SRV - (spmgr) -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe () SRV - (ASBroker) -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll (Cognizance Corporation) SRV - (IviRegMgr) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo) SRV - (ASChannel) -- C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll (Cognizance Corporation) ========== Driver Services (SafeList) ========== DRV - (WtSmpFlt) -- File not found DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation) DRV - (NinjaUSB) -- C:\Windows\System32\drivers\NinjaUSB.sys () DRV - (ZTEusbnet) -- C:\Windows\System32\drivers\ZTEusbnet.sys (ZTE Corporation) DRV - (ZTEusbvoice) -- C:\Windows\System32\drivers\zteusbvoice.sys (ZTE Incorporated) DRV - (ZTEusbser6k) -- C:\Windows\System32\drivers\ZTEusbser6k.sys (ZTE Incorporated) DRV - (ZTEusbnmea) -- C:\Windows\System32\drivers\ZTEusbnmea.sys (ZTE Incorporated) DRV - (ZTEusbmdm6k) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated) DRV - (massfilter) -- C:\Windows\System32\drivers\massfilter.sys (MBB Incorporated) DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation) DRV - (vodafone_K3805-z_dc_enum) -- C:\Windows\System32\drivers\vodafone_K3805-z_dc_enum.sys (Vodafone) DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek ) DRV - (SSPORT) -- C:\Windows\System32\drivers\SSPORT.SYS (Samsung Electronics) DRV - (atksgt) -- C:\Windows\System32\drivers\atksgt.sys () DRV - (lirsgt) -- C:\Windows\System32\drivers\lirsgt.sys () DRV - (DgiVecp) -- C:\Windows\System32\drivers\DgivEcp.sys (Samsung Electronics Co., Ltd.) DRV - (rimmptsk) -- C:\Windows\System32\drivers\rimmptsk.sys (REDC) DRV - (rismxdp) -- C:\Windows\System32\drivers\rixdptsk.sys (REDC) DRV - (rimsptsk) -- C:\Windows\System32\drivers\rimsptsk.sys (REDC) DRV - (SaiNtBus) -- C:\Windows\System32\drivers\SaiBus.sys (Saitek) DRV - (SaiMini) -- C:\Windows\System32\drivers\SaiMini.sys (Saitek) DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH) DRV - (avgntflt) -- C:\Program Files\Avira\Avira Premium Security Suite\avgntflt.sys (Avira GmbH) DRV - (avgio) -- C:\Program Files\Avira\Avira Premium Security Suite\avgio.sys (Avira GmbH) DRV - (NETw5v32) Intel(R) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation) DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys () DRV - (nmwcdnsu) -- C:\Windows\System32\drivers\nmwcdnsu.sys (Nokia) DRV - (nmwcdnsuc) -- C:\Windows\System32\drivers\nmwcdnsuc.sys (Nokia) DRV - (ewusbnet) -- C:\Windows\System32\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.) DRV - (UsbserFilt) -- C:\Windows\System32\drivers\usbser_lowerfltj.sys (Nokia) DRV - (upperdev) -- C:\Windows\System32\drivers\usbser_lowerflt.sys (Nokia) DRV - (nmwcdc) -- C:\Windows\System32\drivers\ccdcmbo.sys (Nokia) DRV - (nmwcd) -- C:\Windows\System32\drivers\ccdcmb.sys (Nokia) DRV - (fssfltr) -- C:\Windows\System32\drivers\fssfltr.sys (Microsoft Corporation) DRV - (GTUHSOMS) -- C:\Windows\System32\drivers\gtuhsoms.sys (Option N.V.) DRV - (GTUHSSER) -- C:\Windows\System32\drivers\gtuhsser.sys (Option N.V.) DRV - (GTUHSBUS) -- C:\Windows\System32\drivers\gtuhsbus.sys (Option N.V.) DRV - (GTUHSNDISIPXP) -- C:\Windows\System32\drivers\gtuhs51.sys (Option N.V.) DRV - (hwusbfake) -- C:\Windows\System32\drivers\ewusbfake.sys (Huawei Technologies Co., Ltd.) DRV - (MTsensor) -- C:\Windows\System32\drivers\ATKACPI.sys (ATK0100) DRV - (hwdatacard) -- C:\Windows\System32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.) DRV - (iaStor) -- C:\Windows\system32\DRIVERS\iaStor.sys (Intel Corporation) DRV - (btwaudio) -- C:\Windows\System32\drivers\btwaudio.sys (Broadcom Corporation.) DRV - (swmsflt) -- C:\Windows\System32\drivers\swmsflt.sys () DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.) DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( ) DRV - (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor) -- C:\Windows\System32\drivers\atswpdrv.sys (AuthenTec, Inc.) DRV - (lullaby) -- C:\Windows\system32\DRIVERS\lullaby.sys (Windows (R) Codename Longhorn DDK provider) DRV - ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) -- C:\Program Files\ASUS\AI TouchMedia\PlayMovie\000.fcl (Cyberlink Corp.) DRV - (btwrchid) -- C:\Windows\System32\drivers\btwrchid.sys (Broadcom Corporation.) DRV - (btwavdt) -- C:\Windows\System32\drivers\btwavdt.sys (Broadcom Corporation.) DRV - (avfwot) -- C:\Windows\System32\drivers\avfwot.sys (Avira GmbH) DRV - (avfwim) -- C:\Windows\System32\drivers\avfwim.sys (Avira GmbH) DRV - (SaiH0762) -- C:\Windows\System32\drivers\SaiH0762.sys (Saitek) DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems) DRV - (btwl2cap) -- C:\Windows\System32\drivers\btwl2cap.sys (Broadcom Corporation.) DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (WSDPrintDevice) -- C:\Windows\System32\drivers\WSDPrint.sys (Microsoft Corporation) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (itecir) -- C:\Windows\System32\drivers\itecir.sys (ITE Tech. Inc. ) DRV - (X4HSX32Ex) -- C:\Program Files\Metaboli Player\X4HSX32Ex.Sys (Exent Technologies Ltd.) DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (AVIRA GmbH) DRV - (FiltUSBET) -- C:\Windows\System32\drivers\etFilter.sys (eMPIA Technology Inc.) DRV - (ScanUSBET) -- C:\Windows\System32\drivers\etScan.sys (eMPIA Technology, Inc.) DRV - (DCamUSBET) -- C:\Windows\System32\drivers\etDevice.sys (eMPIA Technology, Inc.) DRV - (ghaio) -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys () DRV - (ASMMAP) -- C:\Program Files\ATKGFNEX\ASMMAP.sys () DRV - (SaiUF51A) -- C:\Windows\System32\drivers\SaiUF51A.sys (Saitek) DRV - (SaiHF51A) -- C:\Windows\System32\drivers\SaiHF51A.sys (Saitek) DRV - (SaiH0763) -- C:\Windows\System32\drivers\SaiH0763.sys (Saitek) DRV - (regi) -- C:\Windows\System32\drivers\regi.sys (InterVideo) DRV - (Hardlock) -- C:\Windows\system32\drivers\hardlock.sys (Aladdin Knowledge Systems Ltd.) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (Brserid) Brother MFC-Seriellschnittstellentreiber (WDM) -- C:\Windows\System32\drivers\BrSerId.sys (Brother Industries Ltd.) DRV - (BrUsbSer) Brother MFC-WDM-Treiber (USB,seriell) -- C:\Windows\System32\drivers\BrUsbSer.sys (Brother Industries Ltd.) DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.) DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (smserial) -- C:\Windows\System32\drivers\smserial.sys (Motorola Inc.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (yukonwlh) -- C:\Windows\System32\drivers\yk60x86.sys (Marvell) DRV - (Ps2) -- C:\Windows\System32\drivers\PS2.sys (Hewlett-Packard Company) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://de.rd.yahoo.com/customize/ie/defaults/su/msgr9/*hxxp://de.search.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://de.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*hxxp://de.search.yahoo.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.yahoo.com IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS IE - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://de.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*hxxp://de.search.yahoo.com IE - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.yahoo.com IE - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Fast Browser Search" FF - prefs.js..browser.search.defaultthis.engineName: "Brothersoft Customized Web Search" FF - prefs.js..browser.search.defaulturl: "hxxp://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=19&q=" FF - prefs.js..browser.search.order.1: "Fast Browser Search" FF - prefs.js..browser.search.selectedEngine: "Fast Browser Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "hxxp://search.conduit.com/?ctid=CT2463487&SearchSource=13" FF - prefs.js..extensions.enabledItems: {C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}:2.2.9 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}:2.9.2 FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.2.5.2 FF - prefs.js..extensions.enabledItems: {e8de9422-3b2c-4243-bf6f-235da84d8ef8}:3.2.5.2 FF - prefs.js..keyword.URL: "hxxp://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=19&tid={6D5DE751-7954-61CC-BC46-9B9C1C553574}&q=" FF - HKLM\software\mozilla\Firefox\Extensions\\{E4D8AFFF-DA7C-412F-A976-05ED142C7806}: C:\Program Files\Swisscom\Unlimited Data Manager\FireFox_Remote\ [2010.02.22 15:03:09 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: D:\Programme\Mozilla Firefox\components [2011.02.03 12:20:33 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: D:\Programme\Mozilla Firefox\plugins [2011.01.06 19:15:35 | 000,000,000 | ---D | M] [2009.05.07 14:17:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Extensions [2011.02.08 08:46:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Firefox\Profiles\4mr3rw4t.default\extensions [2010.09.18 12:25:50 | 000,000,000 | ---D | M] ("Garmin Communicator") -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Firefox\Profiles\4mr3rw4t.default\extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2010.07.02 08:28:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Firefox\Profiles\4mr3rw4t.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010.07.02 08:28:42 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Firefox\Profiles\4mr3rw4t.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2009.08.16 10:35:53 | 000,000,000 | ---D | M] (My Web Tattoo (Fast Browser Search)) -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Firefox\Profiles\4mr3rw4t.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB} [2010.11.24 20:26:16 | 000,000,000 | ---D | M] (Brothersoft Community Toolbar) -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Firefox\Profiles\4mr3rw4t.default\extensions\{e8de9422-3b2c-4243-bf6f-235da84d8ef8} [2010.11.24 20:26:16 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Sven Kunz\AppData\Roaming\mozilla\Firefox\Profiles\4mr3rw4t.default\extensions\engine@conduit.com [2010.11.23 13:02:24 | 000,000,925 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Mozilla\Firefox\Profiles\4mr3rw4t.default\searchplugins\conduit.xml [2009.05.07 17:10:08 | 000,002,399 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Mozilla\Firefox\Profiles\4mr3rw4t.default\searchplugins\daemon-search.xml [2009.05.07 17:03:23 | 000,001,632 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Mozilla\Firefox\Profiles\4mr3rw4t.default\searchplugins\live-search.xml [2009.07.03 18:49:52 | 000,000,000 | ---D | M] (Java Console) -- D:\PROGRAMME\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} [2010.02.06 16:05:13 | 000,000,000 | ---D | M] (Java Console) -- D:\PROGRAMME\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [2010.07.26 16:25:07 | 000,000,000 | ---D | M] (Java Console) -- D:\PROGRAMME\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} O1 HOSTS File: ([2011.02.04 08:45:09 | 000,429,753 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 www.1-2005-search.com O1 - Hosts: 14796 more lines... O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found. O2 - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O2 - BHO: (ASUS Security Protect Manager) - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (no name) - {3E558823-0ED3-41E4-8DC6-15F055ABF468} - No CLSID value found. O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe (ASUS) O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS) O4 - HKLM..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS) O4 - HKLM..\Run: [ATSwpNav] C:\Program Files\Fingerprint Sensor\ATSwpNav.exe (AuthenTec, Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\Avira Premium Security Suite\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [BEWINTERNET-CHSessionManager] C:\Program Files\Internet Everywhere\IEWCH_8.0\SessionManager\SessionManager.exe (France Telecom SA) O4 - HKLM..\Run: [BlackBerryAutoUpdate] C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe (Research In Motion Limited) O4 - HKLM..\Run: [BlechNET] C:\Program Files\Blechabwicklung_15_9_10\NetAuthServer.exe () O4 - HKLM..\Run: [CLMLServer] C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\Kernel\CLML\CLMLSvc.exe (CyberLink) O4 - HKLM..\Run: [CognizanceTS] File not found O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [fssui] C:\Program Files\Windows Live\Family Safety\fsui.exe (Microsoft Corporation) O4 - HKLM..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe () O4 - HKLM..\Run: [KBD] C:\HP\KBD\KbdStub.exe () O4 - HKLM..\Run: [MobileBroadband] C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe (Vodafone) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [P2Go_Menu] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [PCMAgent] C:\Program Files\ASUS\AI TouchMedia\AI TouchMedia\PCMAgent.exe (CyberLink Corp.) O4 - HKLM..\Run: [PlayMovie] C:\Program Files\ASUS\AI TouchMedia\PlayMovie\PMVService.exe (CyberLink Corp.) O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions) O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [UDM] C:\Program Files\Swisscom\Unlimited Data Manager\LscaGui.exe (Swisscom) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [BySoft FreeRAM] C:\Program Files\BySoft FreeRAM\FreeRAM.exe (BySoft) O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [EPSON T1100 Series] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATIFEP.EXE (SEIKO EPSON CORPORATION) O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [ISUSPM] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation) O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [scheduler_monitor] C:\Program Files\ReaConverter 5.5 Pro\init_scheduler.exe () O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [SmartRAM] File not found O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation) O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\S-1-5-21-1229143885-3290895497-49815576-1000..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - File not found O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - File not found O13 - gopher Prefix: missing O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} https://plugins.valueactive.eu/flashax/iefax.cab (Flash Casino Helper Control) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 196.207.32.83 196.207.32.69 O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (APSHook.dll) - C:\Windows\System32\APSHook.dll (Cognizance Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\Sven Kunz\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\Sven Kunz\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2010.09.13 20:09:13 | 000,000,122 | R--- | M] () - G:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{15776587-7649-11df-9825-a6272b8a66d4}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL copy.exe O33 - MountPoints2\{33b1a7c7-e4c3-11df-9776-b6ff70ecfe62}\Shell - "" = AutoRun O33 - MountPoints2\{33b1a7c7-e4c3-11df-9776-b6ff70ecfe62}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{57318b56-98b9-11df-b7d6-f9f16172bb9c}\Shell - "" = AutoRun O33 - MountPoints2\{57318b56-98b9-11df-b7d6-f9f16172bb9c}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{5f525abf-1d9a-11e0-a882-de36957e0197}\Shell - "" = AutoRun O33 - MountPoints2\{5f525abf-1d9a-11e0-a882-de36957e0197}\Shell\AutoRun\command - "" = G:\setup_vmb_lite.exe -- [2010.09.08 16:54:25 | 000,274,432 | R--- | M] (Vodafone) O33 - MountPoints2\{674012da-0897-11df-b62b-99e8288bacb7}\Shell - "" = AutoRun O33 - MountPoints2\{6b1253ac-81b3-11df-b056-a52211e72130}\Shell\AutoRun\command - "" = F:\SamsungSoftware\APPInst.exe O33 - MountPoints2\{6b96169b-02a1-11df-876b-002243c1d0ee}\Shell - "" = AutoRun O33 - MountPoints2\{6bf98333-8e47-11df-9719-f7f27c671a27}\Shell - "" = AutoRun O33 - MountPoints2\{6bf98333-8e47-11df-9719-f7f27c671a27}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{6bf9833b-8e47-11df-9719-f7f27c671a27}\Shell - "" = AutoRun O33 - MountPoints2\{6bf9833b-8e47-11df-9719-f7f27c671a27}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{8f16c285-c370-11de-9a0e-002243c1d0ee}\Shell - "" = AutoRun O33 - MountPoints2\{8f16c29a-c370-11de-9a0e-002243c1d0ee}\Shell - "" = AutoRun O33 - MountPoints2\{8f16c2a0-c370-11de-9a0e-002243c1d0ee}\Shell - "" = AutoRun O33 - MountPoints2\{99f6748f-050c-11df-824a-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{99f674f7-050c-11df-824a-a2298c9f378a}\Shell - "" = AutoRun O33 - MountPoints2\{99f674fa-050c-11df-824a-bbdf766ec3db}\Shell - "" = AutoRun O33 - MountPoints2\{b1a8769e-7c4f-11df-9162-bae4c729c29c}\Shell - "" = AutoRun O33 - MountPoints2\{b1a8769e-7c4f-11df-9162-bae4c729c29c}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{b1a876a3-7c4f-11df-9162-bae4c729c29c}\Shell - "" = AutoRun O33 - MountPoints2\{b1a876a3-7c4f-11df-9162-bae4c729c29c}\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\{b2534373-3b18-11de-9bdb-0023545f3655}\Shell - "" = AutoRun O33 - MountPoints2\{b2534373-3b18-11de-9bdb-0023545f3655}\Shell\AutoRun\command - "" = H:\SETUP.EXE O33 - MountPoints2\{b2534373-3b18-11de-9bdb-0023545f3655}\Shell\configure\command - "" = H:\SETUP.EXE O33 - MountPoints2\{b2534373-3b18-11de-9bdb-0023545f3655}\Shell\install\command - "" = H:\SETUP.EXE O33 - MountPoints2\{b657ff53-4bc0-11df-8623-8f2903d10f64}\Shell - "" = AutoRun O33 - MountPoints2\{bef60013-009e-11e0-bfec-0023545f3655}\Shell\AutoRun\command - "" = J:\PMBP_Win.exe O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\G\Shell - "" = AutoRun O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup_vmc_lite.exe /checkApplicationPresence O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\SamsungSoftware\APPInst.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - File not found NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found MsConfig - StartUpReg: DAEMON Tools Lite - hkey= - key= - D:\Programme\Deamon Tools\DAEMON Tools Lite\daemon.exe (DT Soft Ltd) MsConfig - StartUpReg: Messenger (Yahoo!) - hkey= - key= - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.) MsConfig - StartUpReg: msnmsgr - hkey= - key= - C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation) MsConfig - StartUpReg: PhonostarTimer - hkey= - key= - C:\Program Files\phonostar\ps_timer.exe (phonostar) MsConfig - StartUpReg: Skype - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.) MsConfig - State: "startup" - 2 SafeBootMin: AppMgmt - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: NTDS - File not found SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: AppMgmt - File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NTDS - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootNet: WudfPf - Driver SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe" ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0 ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {2E116764-96AF-4515-218D-DAC1CEEAE988} - LightScribe Control Panel ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {46C5DE89-D847-F4DE-ECD9-4766EE0FFA62} - .NET Framework ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7 ActiveX: {5DCCD4DD-04AA-E641-7C6B-59A04C9E170C} - ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {74B7BBC1-D72E-130A-D0F4-B740182B47A3} - Browser Customizations ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7B9DDEEE-1B50-BFFA-EB83-08CF93309287} - Internet Explorer ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {9C1B8839-8CF3-F930-2ACC-8CD30429964A} - Browser Customizations ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player ActiveX: {D9A0D51E-9E03-B160-6D81-16B2279BF238} - ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E5B3B7DF-3EBB-826D-92EA-554950DCABF1} - Internet Explorer ActiveX: {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - Reg Error: Value error. ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {F9AE4EEC-F9CD-FB21-F198-5BAF8163698B} - ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.l3codecp - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.) Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.) Drivers32: wave2 - C:\Windows\System32\serwvdrv.dll (Microsoft Corporation) CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2011.02.08 07:55:30 | 000,000,000 | ---D | C] -- C:\Users\Sven Kunz\Desktop\MFTools [2011.02.04 09:20:21 | 000,000,000 | -HSD | C] -- C:\found.000 [2011.02.04 08:08:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy [2011.02.04 08:08:15 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy [2011.01.13 08:33:42 | 000,000,000 | ---D | C] -- C:\Users\Sven Kunz\Desktop\Premier Food Kroonstad [2011.01.12 07:46:17 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll [2011.01.12 07:46:09 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe [2011.01.12 07:33:55 | 000,000,000 | ---D | C] -- C:\Users\Sven Kunz\AppData\Roaming\FLEXnet [2011.01.11 18:03:25 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\Windows\System32\drivers\zteusbvoice.sys [2011.01.11 18:03:22 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\Windows\System32\drivers\ZTEusbnmea.sys [2011.01.11 18:03:21 | 000,114,688 | ---- | C] (ZTE Corporation) -- C:\Windows\System32\drivers\ZTEusbnet.sys [2011.01.11 18:03:20 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys [2011.01.11 18:03:19 | 000,105,856 | ---- | C] (ZTE Incorporated) -- C:\Windows\System32\drivers\ZTEusbser6k.sys [2011.01.11 18:03:18 | 000,009,216 | ---- | C] (MBB Incorporated) -- C:\Windows\System32\drivers\massfilter.sys [2011.01.11 18:01:39 | 000,038,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys [2011.01.11 18:00:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vodafone [2011.01.11 18:00:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Vodafone [2011.01.11 18:00:08 | 000,000,000 | ---D | C] -- C:\Program Files\Vodafone [2011.01.11 17:59:39 | 000,000,000 | ---D | C] -- C:\Users\Sven Kunz\AppData\Local\{F8A824C8-E39F-4BA4-9090-9FE734BA853D} [2008.06.03 23:41:51 | 000,015,928 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys [2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011.02.08 11:46:04 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011.02.08 11:10:30 | 000,629,066 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011.02.08 11:10:30 | 000,596,302 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011.02.08 11:10:30 | 000,126,794 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011.02.08 11:10:30 | 000,104,376 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011.02.08 11:02:19 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011.02.08 11:02:07 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011.02.08 11:01:32 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe [2011.02.08 11:01:25 | 000,001,092 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011.02.08 11:01:18 | 000,000,384 | ---- | M] () -- C:\Windows\tasks\AWC AutoSweep.job [2011.02.08 11:01:09 | 000,497,320 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011.02.08 11:00:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.02.08 11:00:42 | 3220,295,680 | -HS- | M] () -- C:\hiberfil.sys [2011.02.08 10:59:22 | 000,001,076 | ---- | M] () -- C:\Windows\bthservsdp.dat [2011.02.08 10:25:13 | 000,000,426 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{4266F62A-67F9-4529-84E0-4DC541EB74A7}.job [2011.02.08 08:14:12 | 000,000,631 | ---- | M] () -- C:\Users\Sven Kunz\Desktop\hijackthis.jpg [2011.02.07 17:09:39 | 000,000,456 | ---- | M] () -- C:\Windows\tasks\Driver Robot.job [2011.02.07 17:09:39 | 000,000,396 | ---- | M] () -- C:\Windows\tasks\AWC Update.job [2011.02.07 13:33:15 | 000,000,248 | ---- | M] () -- C:\Windows\tasks\Epson Printer Software Downloader.job [2011.02.04 17:48:10 | 000,000,680 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Local\d3d9caps.dat [2011.02.04 08:45:09 | 000,429,753 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts [2011.02.03 16:40:09 | 000,205,824 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.02.02 10:41:43 | 002,247,844 | ---- | M] () -- C:\Users\Sven Kunz\Desktop\Umbauanleitung Pressband.docx [2011.02.02 08:47:44 | 000,404,749 | ---- | M] () -- C:\Users\Sven Kunz\Desktop\IMG_3864.jpg [2011.02.02 08:47:35 | 000,322,137 | ---- | M] () -- C:\Users\Sven Kunz\Desktop\IMG_3863.jpg [2011.02.02 08:47:30 | 000,308,822 | ---- | M] () -- C:\Users\Sven Kunz\Desktop\IMG_3862.jpg [2011.02.02 08:47:25 | 000,293,522 | ---- | M] () -- C:\Users\Sven Kunz\Desktop\IMG_3856.jpg [2011.01.11 18:02:04 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_vodafone_K3805-z_dc_enum_01009.Wdf [2011.01.11 18:02:03 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2011.01.11 18:00:41 | 000,002,076 | ---- | M] () -- C:\Users\Public\Desktop\Vodafone Mobile Broadband.lnk [2011.01.11 18:00:41 | 000,001,982 | ---- | M] () -- C:\Users\Public\Desktop\SMS.lnk [2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2011.02.08 08:14:12 | 000,000,631 | ---- | C] () -- C:\Users\Sven Kunz\Desktop\hijackthis.jpg [2011.02.04 17:48:10 | 000,000,680 | ---- | C] () -- C:\Users\Sven Kunz\AppData\Local\d3d9caps.dat [2011.02.02 10:41:39 | 002,247,844 | ---- | C] () -- C:\Users\Sven Kunz\Desktop\Umbauanleitung Pressband.docx [2011.02.02 08:47:43 | 000,404,749 | ---- | C] () -- C:\Users\Sven Kunz\Desktop\IMG_3864.jpg [2011.02.02 08:47:35 | 000,322,137 | ---- | C] () -- C:\Users\Sven Kunz\Desktop\IMG_3863.jpg [2011.02.02 08:47:29 | 000,308,822 | ---- | C] () -- C:\Users\Sven Kunz\Desktop\IMG_3862.jpg [2011.02.02 08:47:24 | 000,293,522 | ---- | C] () -- C:\Users\Sven Kunz\Desktop\IMG_3856.jpg [2011.01.11 18:02:04 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_vodafone_K3805-z_dc_enum_01009.Wdf [2011.01.11 18:02:03 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2011.01.11 18:01:42 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf [2011.01.11 18:00:41 | 000,002,076 | ---- | C] () -- C:\Users\Public\Desktop\Vodafone Mobile Broadband.lnk [2011.01.11 18:00:41 | 000,001,982 | ---- | C] () -- C:\Users\Public\Desktop\SMS.lnk [2010.11.23 16:56:29 | 000,011,849 | ---- | C] () -- C:\Users\Sven Kunz\AppData\Roaming\SmarThruOptions.xml [2010.11.23 16:55:25 | 000,000,124 | ---- | C] () -- C:\Windows\Readiris.ini [2010.11.23 16:55:21 | 000,023,040 | ---- | C] () -- C:\Windows\System32\irisco32.dll [2010.10.19 08:10:59 | 000,026,624 | ---- | C] () -- C:\Windows\System32\sst3cl3.dll [2010.09.16 18:14:45 | 000,024,704 | ---- | C] () -- C:\Windows\System32\drivers\NinjaUSB.sys [2010.09.08 12:07:40 | 000,159,464 | R--- | C] () -- C:\ProgramData\DeviceManager.xml.rc4 [2010.07.13 13:31:34 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini [2010.06.27 00:40:23 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2010.04.26 10:41:22 | 000,032,251 | ---- | C] () -- C:\ProgramData\nvModes.001 [2010.04.26 10:37:27 | 000,032,251 | ---- | C] () -- C:\ProgramData\nvModes.dat [2010.04.09 20:06:14 | 000,001,746 | ---- | C] () -- C:\Windows\Language_trs.ini [2010.03.20 23:00:29 | 000,017,408 | ---- | C] () -- C:\Users\Sven Kunz\AppData\Local\WebpageIcons.db [2010.03.20 21:35:53 | 000,020,480 | ---- | C] () -- C:\Windows\System32\H@tKeysH@@k.DLL [2010.03.18 11:56:00 | 000,274,432 | ---- | C] () -- C:\Windows\System32\SaMinDrv.dll [2010.03.18 11:56:00 | 000,090,112 | ---- | C] () -- C:\Windows\System32\SaSegFlt.dll [2010.03.18 11:55:58 | 000,106,496 | ---- | C] () -- C:\Windows\System32\SaImgFlt.dll [2010.03.18 11:55:56 | 000,061,440 | ---- | C] () -- C:\Windows\System32\SaErHdlr.dll [2009.12.13 13:44:26 | 000,017,080 | ---- | C] () -- C:\ProgramData\hpzinstall.log [2009.12.06 18:53:47 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2009.12.03 09:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll [2009.11.15 16:10:13 | 002,514,944 | ---- | C] () -- C:\Windows\System32\SaiCF51A.Dll [2009.11.15 16:10:13 | 000,008,704 | ---- | C] () -- C:\Windows\System32\SaiCF51A_0C.dll [2009.11.15 16:10:13 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiCF51A_10.dll [2009.11.15 16:10:13 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiCF51A_0A.dll [2009.11.15 16:10:13 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiCF51A_07.dll [2009.11.15 16:10:13 | 000,007,680 | ---- | C] () -- C:\Windows\System32\SaiCF51A_09.dll [2009.11.15 16:10:13 | 000,007,168 | ---- | C] () -- C:\Windows\System32\SaiCF51A_0402.dll [2009.11.15 16:10:13 | 000,005,632 | ---- | C] () -- C:\Windows\System32\SaiCF51A_11.dll [2009.10.18 11:06:34 | 000,000,009 | ---- | C] () -- C:\Windows\Brfaxrx.ini [2009.09.22 13:29:50 | 000,352,648 | ---- | C] () -- C:\Windows\System32\SysCheck2.dll [2009.09.16 19:27:58 | 000,508,224 | ---- | C] () -- C:\Windows\System32\ICCProfiles.dll [2009.09.15 15:21:13 | 000,000,416 | ---- | C] () -- C:\Windows\BRWMARK.INI [2009.09.15 15:20:45 | 000,000,212 | ---- | C] () -- C:\Windows\Brpfx04a.ini [2009.09.15 15:20:45 | 000,000,093 | ---- | C] () -- C:\Windows\brpcfx.ini [2009.09.15 15:17:05 | 000,106,496 | ---- | C] () -- C:\Windows\System32\BrMuSNMP.dll [2009.09.09 21:08:16 | 000,237,568 | ---- | C] () -- C:\Windows\System32\lame_enc.dll [2009.09.09 21:08:16 | 000,110,080 | ---- | C] () -- C:\Windows\System32\advd.dll [2009.09.09 21:08:16 | 000,023,040 | ---- | C] () -- C:\Windows\System32\auth.dll [2009.08.03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll [2009.07.13 19:16:31 | 000,006,836 | ---- | C] () -- C:\Windows\System32\UNWISE.INI [2009.05.19 18:02:47 | 000,000,219 | ---- | C] () -- C:\Windows\OPHH.INI [2009.05.08 19:14:53 | 000,281,760 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys [2009.05.08 19:14:53 | 000,025,888 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys [2009.05.07 20:01:12 | 000,022,328 | ---- | C] () -- C:\Users\Sven Kunz\AppData\Roaming\PnkBstrK.sys [2009.05.07 17:05:52 | 000,721,904 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys [2009.05.07 14:28:21 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2009.05.07 14:13:00 | 000,205,824 | ---- | C] () -- C:\Users\Sven Kunz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008.10.07 09:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll [2008.10.07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll [2008.07.30 03:33:22 | 000,057,344 | ---- | C] () -- C:\Windows\System32\BtwNamespaceExt2.dll [2008.07.02 05:28:38 | 000,061,440 | ---- | C] () -- C:\Program Files\Common Files\CPInstallAction.dll [2008.06.18 19:04:34 | 000,026,760 | R--- | C] () -- C:\Windows\System32\drivers\swmsflt.sys [2008.06.04 07:53:14 | 000,026,624 | ---- | C] () -- C:\Windows\System32\sst2cl3.dll [2008.05.22 19:35:54 | 000,051,962 | ---- | C] () -- C:\Program Files\Common Files\banner.jpg [2008.04.16 12:43:39 | 000,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini [2008.04.04 19:12:04 | 000,851,968 | ---- | C] () -- C:\Windows\System32\SaiC0762.Dll [2008.04.04 19:12:04 | 000,008,704 | ---- | C] () -- C:\Windows\System32\SaiC0762_0C.dll [2008.04.04 19:12:04 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC0762_10.dll [2008.04.04 19:12:04 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC0762_0A.dll [2008.04.04 19:12:04 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC0762_07.dll [2008.04.04 19:12:04 | 000,007,680 | ---- | C] () -- C:\Windows\System32\SaiC0762_09.dll [2008.04.04 19:12:04 | 000,007,168 | ---- | C] () -- C:\Windows\System32\SaiC0762_0402.dll [2008.04.04 19:12:04 | 000,005,632 | ---- | C] () -- C:\Windows\System32\SaiC0762_11.dll [2007.10.01 05:09:55 | 000,098,304 | ---- | C] () -- C:\Windows\System32\fs2cchk4.dll [2007.06.12 20:34:50 | 000,035,822 | ---- | C] () -- C:\Program Files\Common Files\ASPG_icon.ico [2007.05.01 15:57:52 | 000,827,392 | ---- | C] () -- C:\Windows\System32\SaiC0763.Dll [2007.05.01 15:57:52 | 000,008,704 | ---- | C] () -- C:\Windows\System32\SaiC0763_0C.dll [2007.05.01 15:57:52 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC0763_10.dll [2007.05.01 15:57:52 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC0763_0A.dll [2007.05.01 15:57:52 | 000,008,192 | ---- | C] () -- C:\Windows\System32\SaiC0763_07.dll [2007.05.01 15:57:52 | 000,007,680 | ---- | C] () -- C:\Windows\System32\SaiC0763_09.dll [2007.05.01 15:57:52 | 000,007,168 | ---- | C] () -- C:\Windows\System32\SaiC0763_0402.dll [2007.05.01 15:57:52 | 000,005,632 | ---- | C] () -- C:\Windows\System32\SaiC0763_11.dll [2007.03.06 08:39:19 | 000,049,152 | ---- | C] () -- C:\Windows\revdevdll.dll [2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006.11.02 12:25:26 | 000,557,568 | ---- | C] () -- C:\Windows\System32\hpotscl1.dll [2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006.03.09 03:57:59 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2005.04.03 16:29:59 | 000,110,592 | R--- | C] () -- C:\Windows\System32\scardsyn.dll [2001.11.14 23:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll [1998.05.06 21:09:59 | 000,069,632 | R--- | C] () -- C:\Windows\System32\ODMA32.dll [1997.12.07 18:50:14 | 000,000,137 | ---- | C] () -- C:\Windows\3DR.INI [1997.11.17 19:13:16 | 000,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll [1996.01.05 16:16:30 | 000,396,288 | ---- | C] () -- C:\Windows\3DG32.DLL ========== LOP Check ========== [2009.08.08 21:29:57 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Autodesk [2010.06.12 19:51:54 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Blackberry Desktop [2009.11.16 11:26:39 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Blitware [2009.05.10 17:34:23 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\cmw [2009.09.09 21:08:41 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\concept design [2009.05.07 17:12:11 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\DAEMON Tools Lite [2009.06.21 15:40:17 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\DAEMON Tools Pro [2010.11.24 20:30:35 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Downloaded Installations [2010.09.18 13:31:12 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\GARMIN [2009.09.09 20:55:08 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\HTML Executable [2009.05.10 14:13:19 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\InterVideo [2010.04.16 19:37:03 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\IObit [2009.11.15 16:07:59 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Leadertech [2009.11.26 18:26:42 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Multi File Downloader [2011.02.08 11:14:36 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\nHancer [2010.12.08 19:02:43 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Nitro PDF [2009.05.19 18:03:24 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\OPHH [2010.03.02 09:45:59 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\phonostar-Player [2011.02.08 08:14:17 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\RCP 5 [2010.06.12 19:53:24 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Research In Motion [2010.02.22 15:26:18 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Sierra Wireless [2010.04.04 12:42:09 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Swiss Map [2009.11.08 18:53:41 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Tropico 3 [2010.05.31 12:36:01 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\ubi.com [2009.07.26 19:45:54 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Ubisoft [2011.01.11 18:03:38 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Vodafone [2010.09.19 10:48:54 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\WinBatch [2011.02.08 11:01:18 | 000,000,384 | ---- | M] () -- C:\Windows\Tasks\AWC AutoSweep.job [2011.02.07 17:09:39 | 000,000,396 | ---- | M] () -- C:\Windows\Tasks\AWC Update.job [2011.02.07 17:09:39 | 000,000,456 | ---- | M] () -- C:\Windows\Tasks\Driver Robot.job [2011.02.07 13:33:15 | 000,000,248 | ---- | M] () -- C:\Windows\Tasks\Epson Printer Software Downloader.job [2011.02.08 10:59:18 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2011.02.08 10:25:13 | 000,000,426 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{4266F62A-67F9-4529-84E0-4DC541EB74A7}.job ========== Purity Check ========== ========== Custom Scans ========== < %ALLUSERSPROFILE%\Application Data\*. > < %ALLUSERSPROFILE%\Application Data\*.exe /s > < %APPDATA%\*. > [2009.05.07 17:38:16 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Adobe [2009.11.08 16:04:51 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Apple Computer [2009.08.08 21:29:57 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Autodesk [2009.07.02 14:35:09 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Avira [2010.06.12 19:51:54 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Blackberry Desktop [2009.11.16 11:26:39 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Blitware [2009.05.10 17:34:23 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\cmw [2009.09.09 21:08:41 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\concept design [2009.05.11 18:11:01 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\CyberLink [2009.05.07 17:12:11 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\DAEMON Tools Lite [2009.06.21 15:40:17 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\DAEMON Tools Pro [2010.05.27 01:52:53 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\DivX [2010.04.09 20:19:37 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Download Manager [2010.11.24 20:30:35 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Downloaded Installations [2010.10.05 15:14:43 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\dvdcss [2011.01.12 07:33:55 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\FLEXnet [2010.09.18 13:31:12 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\GARMIN [2009.05.07 14:14:50 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Google [2010.06.20 11:24:46 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\HP [2009.09.09 20:55:08 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\HTML Executable [2009.05.07 14:04:26 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Identities [2010.06.12 18:13:38 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\InstallShield [2009.05.10 14:13:19 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\InterVideo [2010.04.16 19:37:03 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\IObit [2009.11.15 16:07:59 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Leadertech [2009.05.07 14:50:14 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Macromedia [2006.11.02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Media Center Programs [2011.02.08 10:40:40 | 000,000,000 | --SD | M] -- C:\Users\Sven Kunz\AppData\Roaming\Microsoft [2009.10.01 10:07:19 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Microsoft Games [2010.04.11 15:29:15 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Move Networks [2009.05.07 14:17:28 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Mozilla [2009.11.26 18:26:42 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Multi File Downloader [2009.05.14 13:26:03 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Nero [2011.02.08 11:14:36 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\nHancer [2010.12.08 19:02:43 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Nitro PDF [2010.04.09 21:56:11 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\NVIDIA [2009.05.19 18:03:24 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\OPHH [2010.03.02 09:45:59 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\phonostar-Player [2011.02.08 08:14:17 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\RCP 5 [2010.03.09 08:59:41 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Real [2010.06.12 19:53:24 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Research In Motion [2009.05.11 17:06:40 | 000,000,000 | RH-D | M] -- C:\Users\Sven Kunz\AppData\Roaming\SecuROM [2010.02.22 15:26:18 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Sierra Wireless [2011.01.25 20:45:21 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Skype [2011.01.25 16:07:04 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\skypePM [2010.04.04 12:42:09 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Swiss Map [2009.11.08 18:53:41 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Tropico 3 [2010.05.31 12:36:01 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\ubi.com [2009.07.26 19:45:54 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Ubisoft [2011.01.11 20:40:35 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\vlc [2011.01.11 18:03:38 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Vodafone [2009.09.05 16:57:58 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Winamp [2010.09.19 10:48:54 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\WinBatch [2009.05.10 18:25:48 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\WinRAR [2010.04.26 09:28:31 | 000,000,000 | ---D | M] -- C:\Users\Sven Kunz\AppData\Roaming\Yahoo! < %APPDATA%\*.exe /s > [2010.09.19 10:48:23 | 009,307,114 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\030229b834d0f831c1394f437d3e92e3\1400INST-0100-EN.EXE [2010.04.04 09:37:59 | 005,950,176 | ---- | M] (NVIDIA Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\34d061e6c88fc2bb9dcd48ff66863f13\hdaudio_1.00.00.59_xp_vista_win7.exe [2010.04.04 09:43:16 | 035,395,980 | ---- | M] (Igor Pavlov) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\motherboard_driver_audio_realtek_azalia.exe [2008.07.15 09:20:12 | 000,069,632 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\ChCfg.exe [2005.11.14 10:24:00 | 000,121,064 | ---- | M] (Macrovision Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Setup.exe [2005.01.07 12:18:00 | 000,742,104 | ---- | M] (Microsoft Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\MSHDQFE\Win2K_XP\us\kb888111w2ksp4.exe [2005.01.07 12:15:00 | 000,774,360 | ---- | M] (Microsoft Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\MSHDQFE\Win2K_XP\us\kb888111xpsp1.exe [2005.01.10 05:15:00 | 000,720,088 | ---- | M] (Microsoft Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\MSHDQFE\Win2K_XP\us\kb888111xpsp2.exe [2005.01.07 12:23:00 | 000,771,288 | ---- | M] (Microsoft Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\MSHDQFE\Win2K3\us\kb888111srvrtm.exe [2009.03.31 08:01:42 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\AERTSrv.exe [2009.07.03 03:57:00 | 001,921,441 | ---- | M] (Creative Technology Ltd) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\APOPCH.exe [2009.11.03 13:44:30 | 000,674,336 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\RtHDVBg.exe [2009.11.03 13:44:36 | 007,866,912 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\RtHDVCpl.exe [2009.11.03 13:44:36 | 000,133,664 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\RtkAudioService.exe [2009.11.03 13:44:42 | 001,489,440 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\RtlUpd.exe [2009.11.03 13:44:42 | 001,833,504 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\SkyTel.exe [2009.11.03 13:44:48 | 000,358,944 | ---- | M] (Realtek Semiconductor Crop.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista\vncutil.exe [2009.03.31 08:01:34 | 000,092,160 | ---- | M] (Andrea Electronics Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\AERTSr64.exe [2009.07.03 03:57:00 | 001,921,441 | ---- | M] (Creative Technology Ltd) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\APOPCH.exe [2009.11.03 13:45:18 | 000,863,264 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\RAVBg64.exe [2009.11.03 13:45:18 | 008,317,472 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\RAVCpl64.exe [2009.11.03 13:45:30 | 000,190,496 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\RtkAudioService64.exe [2009.11.03 13:45:36 | 001,678,368 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\RtlUpd64.exe [2009.11.03 13:45:36 | 001,833,504 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\SkyTel.exe [2009.11.03 13:45:36 | 000,475,680 | ---- | M] (Realtek Semiconductor Crop.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\Vista64\vncutil64.exe [2009.03.02 05:14:04 | 000,057,344 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\Alcmtr.exe [2008.06.19 10:42:44 | 002,808,832 | ---- | M] (RealTek Semicoductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\AlcWzrd.exe [2006.03.30 12:58:22 | 000,037,376 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\CPLUtl64.exe [2009.08.04 08:31:04 | 002,170,880 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\MicCal.exe [2009.11.02 12:53:30 | 018,782,720 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\RTHDCPL.exe [2009.03.17 08:07:56 | 000,122,880 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\RtkAudioService.exe [2009.03.17 08:07:40 | 000,171,008 | ---- | M] (Realtek Semiconductor) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\RtkAudioService64.exe [2008.06.19 10:27:46 | 009,715,200 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\RTLCPL.exe [2009.06.22 11:39:24 | 001,482,752 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\RtlUpd.exe [2009.06.22 11:39:12 | 001,671,680 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\RtlUpd64.exe [2007.11.20 12:15:58 | 001,826,816 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\SkyTel.exe [2008.08.19 07:26:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\SoundMan.exe [2009.10.08 08:24:42 | 000,352,256 | ---- | M] (Realtek Semiconductor Crop.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\vncutil.exe [2009.10.08 08:24:34 | 000,468,992 | ---- | M] (Realtek Semiconductor Crop.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\41f45064b8c9e8b266f5d7d828b26c7c\Realtek\WDM\vncutil64.exe [2010.04.04 09:37:17 | 001,099,168 | ---- | M] (Hewlett-Packard ) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\5084e092b3cf8a73009e97bcd1e61e3e\sp44994.exe [2010.04.04 09:39:30 | 014,935,096 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\6c0bee383c221d43f72ec080dec7c12a\upd-5_0_1-pcl5_winxp-vista.exe [2010.01.03 21:06:46 | 006,142,952 | ---- | M] (Hewlett-Packard Development Company, L.P. ) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\730ac47ed9a5297a9599d06228655023\sp35034.exe [2008.06.27 15:31:04 | 000,305,720 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\7481f14d925c188fa609315a7fb1a6a8\ATKDrv_VT32_090420\2KSETUP.EXE [2010.04.04 09:38:50 | 010,123,120 | ---- | M] (Lenovo Group Limited ) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\7c5f05e8c9c7bb181ca048ee65c0f4ca\54fm01ww.exe [2010.04.04 09:37:15 | 003,517,746 | ---- | M] (Igor Pavlov) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\808dc500e7dfffe0d7a5f1ddaffd450e\motherboard_driver_lan_realtek_8111_vista.exe [2008.05.27 14:50:02 | 000,519,680 | ---- | M] (ASUS) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\AsusSetup.exe [2008.08.20 15:23:24 | 000,956,952 | ---- | M] (Intel Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Setup.exe [2008.05.27 17:37:54 | 000,106,496 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\USBCopy2.exe [2008.08.20 15:23:30 | 000,195,096 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\ia64\Difx64.exe [2006.09.27 09:44:40 | 000,495,616 | ---- | M] (ASUS) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\AsusSetup.exe [2006.09.27 09:44:40 | 000,495,616 | ---- | M] (ASUS) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\32\AsusSetup.exe [2006.06.23 14:48:54 | 000,032,768 | ---- | M] (AsusTek Inc.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\32\UpdateUsb.exe [2008.05.27 17:37:54 | 000,106,496 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\32\USBCopy2.exe [2006.06.23 11:41:14 | 000,106,496 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\32\USBReg.exe [2006.09.27 09:44:40 | 000,495,616 | ---- | M] (ASUS) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\64\AsusSetup.exe [2006.06.23 14:47:48 | 000,030,720 | ---- | M] (AsusTek Inc.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\64\UpdateUSB.exe [2008.05.27 17:37:54 | 000,106,496 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\64\USBCopy2.exe [2006.06.23 14:46:22 | 000,030,208 | ---- | M] (AsusTek Inc.) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\Usb\64\USBReg.exe [2008.08.20 15:23:36 | 000,106,008 | ---- | M] (Intel Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\85b93064140e32a1255f9c8d3f1db873\Intel_ChipsetInf_V9101007\Intel_ChipsetInf_V9101007\x64\Difx64.exe [2010.04.04 09:37:17 | 002,824,728 | ---- | M] (Intel Corporation) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\a8eb6d8660ff14ee87b66b195a17b361\INF_allOS_9[1].1.0.1012_PV.exe [2010.01.03 21:10:17 | 043,627,880 | ---- | M] (NVIDIA Corporation ) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\ae581eea721715cc062b860f85eda679\15.35_nforce_win7_64bit_international_whql.exe [2010.04.04 09:39:18 | 007,215,256 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\df745d23bbfc5010f87970a94a45408a\driver_cardreader_ricoh_TC00213300C.exe [2010.04.04 09:57:45 | 151,501,296 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\downloads\e45bb648079e7096558973994c06db43\hp_LJP2014_Full_Solution_ASIA.exe [2009.11.29 04:06:11 | 005,393,552 | ---- | M] (Blitware Technology Inc. ) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\updates\1.2.0.3\DriverRobot_Setup.exe [2009.12.06 04:08:36 | 005,395,904 | ---- | M] (Blitware Technology Inc. ) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\updates\1.2.0.5\DriverRobot_Setup.exe [2010.09.19 02:05:35 | 007,788,736 | ---- | M] (Blitware Technology Inc. ) -- C:\Users\Sven Kunz\AppData\Roaming\Blitware\DriverRobot\updates\2.5.1.1\driverrobot_setup.exe [2010.04.11 15:29:15 | 000,144,053 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Move Networks\uninstall.exe [2010.02.11 21:31:38 | 000,097,216 | ---- | M] () -- C:\Users\Sven Kunz\AppData\Roaming\Move Networks\ie_bin\MovePlayerUpgrade.exe [2010.05.30 00:55:30 | 000,443,912 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Sven Kunz\AppData\Roaming\Real\Update\setup3.10\setup.exe [2011.01.31 08:27:55 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Sven Kunz\AppData\Roaming\Real\Update\setup3.13\setup.exe < %SYSTEMDRIVE%\*.exe > < MD5 for: AGP440.SYS > [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys [2008.01.21 04:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys [2006.11.02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys < MD5 for: ATAPI.SYS > [2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys [2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys [2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys [2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys [2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys [2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys [2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys [2008.02.22 06:59:12 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=76D70915EB81608DC6ACA87887FAB38F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22120_none_ddac250d3ab7a648\atapi.sys [2008.02.22 07:03:50 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=92210921EEFC081693F649C3631DEEC2 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_3d9c5057\atapi.sys [2008.02.22 07:03:50 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=92210921EEFC081693F649C3631DEEC2 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18023_none_dd25892021975283\atapi.sys < MD5 for: CNGAUDIT.DLL > [2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll [2006.11.02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll < MD5 for: EXPLORER.EXE > [2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe [2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe [2008.10.30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe [2008.10.28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe [2008.01.21 04:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe < MD5 for: IASTOR.SYS > [2008.07.20 11:44:43 | 000,324,120 | ---- | M] (Intel Corporation) MD5=707C1692214B1C290271067197F075F6 -- C:\Windows\System32\drivers\iaStor.sys [2008.07.20 11:44:43 | 000,324,120 | ---- | M] (Intel Corporation) MD5=707C1692214B1C290271067197F075F6 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_7b6e77f6\iaStor.sys < MD5 for: IASTORV.SYS > [2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys [2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys [2008.01.21 04:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys [2006.11.02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys < MD5 for: NETLOGON.DLL > [2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll [2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll [2009.04.11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll [2008.01.21 04:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll < MD5 for: NVSTOR.SYS > [2006.11.02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys [2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys [2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys [2008.01.21 04:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys < MD5 for: SCECLI.DLL > [2008.01.21 04:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll [2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll [2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll [2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll < MD5 for: USER32.DLL > [2009.04.11 08:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll [2008.01.21 04:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) MD5=B974D9F06DC7D1908E825DC201681269 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll [2009.04.11 08:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\user32.dll [2009.04.11 08:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll < MD5 for: USERINIT.EXE > [2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe [2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe < MD5 for: WINLOGON.EXE > [2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe [2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe [2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe [2008.01.21 04:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe < MD5 for: WS2IFSL.SYS > [2008.01.21 04:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\System32\drivers\ws2ifsl.sys [2008.01.21 04:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\winsxs\x86_microsoft-windows-w..rastructure-ws2ifsl_31bf3856ad364e35_6.0.6001.18000_none_4f86a0d4c7cda641\ws2ifsl.sys < %systemroot%\system32\drivers\*.sys /lockedfiles > [2009.05.07 17:05:52 | 000,721,904 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\sptd.sys < %systemroot%\System32\config\*.sav > [2008.01.21 05:14:18 | 016,846,848 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV [2008.01.21 05:14:08 | 000,106,496 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV [2008.01.21 05:14:18 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV [2006.11.02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV [2006.11.02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2008.01.21 04:24:26 | 000,347,136 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtmsft.dll [2008.01.21 04:24:26 | 000,214,528 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtrans.dll [2009.04.11 08:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rsaenh.dll [2009.04.11 08:28:23 | 000,228,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\SLC.dll [2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ] < End of report > |
|
08.02.2011, 12:06
| #4 |
| /// Malware-holic | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails download malwarebytes: Malwarebytes instalieren, öffnen, registerkarte aktualisierung, programm updaten. schalte alle laufenden programme ab, trenne die internetverbindung. registerkarte scanner, komplett scan, funde entfernen, log posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
08.02.2011, 12:07
| #5 |
| | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails Hier noch die Extras Liste Danke für deine Hilfe und hoffe die zwei Files helfen dir weiter OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 08.02.2011 12:46:46 - Run 2
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Users\Sven Kunz\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
3.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 30.00% Memory free
6.00 Gb Paging File | 4.00 Gb Available in Paging File | 60.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 29.27 Gb Free Space | 12.57% Space Free | Partition Type: NTFS
Drive D: | 221.16 Gb Total Space | 7.27 Gb Free Space | 3.29% Space Free | Partition Type: NTFS
Drive G: | 44.09 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: SVENKUNZ-PC | User Name: Sven Kunz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_USERS\S-1-5-21-1229143885-3290895497-49815576-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L"
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1229143885-3290895497-49815576-1000]
"EnableNotifications" = 1
"EnableNotificationsRef" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Internet Everywhere\IEWCH_8.0\Connectivity\ConnectivityManager.exe" = C:\Program Files\Internet Everywhere\IEWCH_8.0\Connectivity\ConnectivityManager.exe:*:enabled:CSS -- (France Telecom SA)
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{076A54CC-5C6A-4B43-A68C-7BF52B434709}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{11FA97F2-8098-471F-9FAD-2270291EAE6C}" = rport=139 | protocol=6 | dir=out | app=system |
"{3BA7912D-DFAF-49FB-8B4E-10B12187BF25}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe |
"{40BA132A-E788-40BF-BA2D-81CEFFAD473B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4643E19B-EA40-4E97-8650-63643468F0FD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{540E35A5-0BBD-43BD-AD82-4FFBC5867A89}" = rport=445 | protocol=6 | dir=out | app=system |
"{564BD2BD-F5F7-43C5-8289-A7D58BD93D6A}" = rport=137 | protocol=17 | dir=out | app=system |
"{6134A006-5FA8-4C99-9B49-D5B501A4954E}" = lport=139 | protocol=6 | dir=in | app=system |
"{6A6CA03F-7B41-44CF-A6DF-ED2278DCF1EE}" = lport=445 | protocol=6 | dir=in | app=system |
"{6CB29C45-5A56-4F74-A387-46AD20080AB5}" = rport=138 | protocol=17 | dir=out | app=system |
"{86F1508D-3675-41EA-908C-593C352244C4}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{8F1EF1BF-8407-466E-ACB2-933CF0695097}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BAAE1921-CC1B-4CFB-B98C-B210793B0291}" = lport=137 | protocol=17 | dir=in | app=system |
"{C842F2DB-7B37-4E4B-81ED-AD4A647C9D46}" = lport=138 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{036278F3-D2E1-40C9-AE19-BF6EE3A16952}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{0A523500-BA40-41B8-918F-54CEDAB63FEB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{0DE75577-72F7-4CBD-A5C5-2C60DFCECCD4}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposid01.exe |
"{1271768F-911A-45C8-A9B1-3EBC5C01A366}" = protocol=6 | dir=in | app=c:\program files\360share pro\jre\bin\javaw.exe |
"{1386C974-7C1D-49F4-BCE6-395E8F5A7F0E}" = protocol=6 | dir=in | app=c:\program files\paradox interactive\east india company\piratebay.exe |
"{13DCBE54-1866-4C09-A7F6-B8915711FFC2}" = protocol=17 | dir=in | app=c:\program files\paradox interactive\east india company\piratebay.exe |
"{19FCC5EB-A4BF-4DB2-9CEF-A90DFEFD5BC6}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgpc01.exe |
"{1AA8835C-B1B5-47AA-8239-3FDD078B2882}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\just cause 2\justcause2.exe |
"{1CD6A0E7-356D-4A57-9D8A-5A673A4A1126}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{2061E559-C6BD-4274-8F4E-D11AA26AA02B}" = dir=in | app=c:\program files\hp\hp software update\hpwucli.exe |
"{21300211-D1C0-4442-A495-FC7F5B6DE1F9}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{232B82A2-CD33-490F-B9C4-74A801A9056D}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{23643F90-C0E5-4E54-B764-650C49BE7195}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{300D07E1-736A-445E-9585-9172F4AF0271}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii\pc\mafia2.exe |
"{31922AC9-283D-4F91-8B5D-2D6CF330A3D3}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqsudi.exe |
"{31BAEF21-2348-45F4-A8F0-6069B85FAAC9}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{3967F5DF-EC1F-4C7A-A0F1-17C9067249C1}" = dir=in | app=c:\program files\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{399ACC58-AAD0-424C-89CC-80BA69EE8173}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{3A1AE214-4581-45DD-B5F8-AB6D962C065E}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqpse.exe |
"{3CED6B43-1C14-4D3F-913A-BA42974D261B}" = protocol=6 | dir=in | app=c:\program files\paradox interactive\east india company\eastindia.exe |
"{3D8F0614-9B41-4EB1-A942-8DAA019F04A0}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{49297573-ABFC-49A7-8D72-C4962D643BFC}" = dir=in | app=c:\program files\asus\ai touchmedia\playmovie\pmvservice.exe |
"{4BD2F7BA-1825-42CA-A471-0EAE1F05CDBF}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgm.exe |
"{4F1856C5-28F6-48BB-AAEB-CA438EF4490E}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{4FBCC914-1378-4AC9-9C5D-102EBAC1D9C8}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqkygrp.exe |
"{544EAE98-5002-4811-8BBE-3F1EC9984D6F}" = dir=in | app=c:\program files\asus\ai touchmedia\ai touchmedia\kernel\dms\clmsservice.exe |
"{54E03503-5FED-4832-8669-9352B8FD497C}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpiscnapp.exe |
"{619932D4-C9D8-4005-A2E4-1B776ADFFDD6}" = dir=in | app=c:\program files\asus\ai touchmedia\ai touchmedia\powercinema.exe |
"{6AF0BD54-8248-4B6E-A279-65E198ECA2DB}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{6DD3C690-8838-41F0-AFD3-5B9EA4F457E5}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgplgtupl.exe |
"{6E685460-8001-48A5-87C3-1716C6265340}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{715B8EE8-AB4F-450E-AABF-61CDC349D56E}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{71C30616-C8FE-4CA5-A04D-587A74997983}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{71F3AE43-25B8-47A7-8575-797BEBF1EA91}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\just cause 2\justcause2.exe |
"{7A374E3B-D4A2-465B-AB09-87DDF7577A00}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{7BC825C5-4071-4F3B-85A1-2637B966C514}" = dir=in | app=e:\setup\hpznui01.exe |
"{7C1C2C5B-43AF-428B-8C97-B248D8D08831}" = protocol=6 | dir=in | app=c:\program files\ubisoft\die siedler 7\data\base\_dbg\bin\release\settlers7r.exe |
"{7F4C509B-8A37-4CE5-8169-33642BC68B18}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\sniper ghost warrior\sniper_x86.exe |
"{801A5C7E-81E6-44FF-8B3C-9151EBA5C764}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii\pc\mafia2.exe |
"{8D6995C0-FA95-4D45-9FE0-D816F297E33F}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii\pc\mafia2.exe |
"{8DDEE10C-39C4-4BCD-84EA-E688540E527F}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\mafia ii\pc\mafia2.exe |
"{8E34BAE9-A83F-432D-B3BB-1FAFAA2920B5}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{91C655AD-0E0C-4847-994B-AA9996BA7179}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpfccopy.exe |
"{92C1B052-002F-4B6F-BC6D-B8032E4636C6}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9390C1C4-6A07-48CB-A507-ED1C0DC7CB36}" = protocol=17 | dir=in | app=c:\program files\paradox interactive\east india company\eastindia.exe |
"{93AF2CFE-2917-485B-A1D4-0E1259ECB37C}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{9B155564-A86C-4EA1-B134-31BD8B52D329}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgh.exe |
"{9B80A12D-271B-4084-8AA8-003B5D69DF6A}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{A2C7D6AB-8C31-4B70-8CB7-27959ED02E03}" = dir=in | app=c:\program files\asus\ai touchmedia\playmovie\playmovie.exe |
"{A568B498-55B0-47AD-B6C3-4F814D77D027}" = protocol=6 | dir=in | app=c:\program files\paradox interactive\east india company\lan\eicserver.exe |
"{B1FBD62F-5228-4DEC-9A55-0C82787DAACC}" = protocol=17 | dir=in | app=c:\program files\ubisoft\die siedler 7\data\base\_dbg\bin\release\settlers7r.exe |
"{B8247DBA-7C2D-4045-B575-E45110827BF9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{BB6B8BD9-B3FF-4FFF-915E-8E8E15F66279}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{BC5B75EB-7A10-4157-A71A-37377D020E6C}" = dir=in | app=c:\program files\asus\ai touchmedia\ai touchmedia\pcmservice.exe |
"{BDB31C71-4ADA-4536-8122-49F0C47BA7CE}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqtra08.exe |
"{C1D9DFAA-C632-427B-B862-F2DD0BD01084}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\sniper ghost warrior\sniper_x86.exe |
"{C27D7A8D-4614-4796-A0C3-9A70E44A5495}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{C2EC2323-12CF-428D-B10B-DA8CA46300D7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C30F23AA-A206-4B2A-B707-DB1A0250B11C}" = dir=in | app=c:\program files\asus\ai touchmedia\ai touchmedia\kernel\dmp\clbrowserengine.exe |
"{C3B64D2A-1A25-428E-92FD-624E45A809F8}" = protocol=17 | dir=in | app=c:\program files\paradox interactive\east india company\lan\eicserver.exe |
"{CA5A9715-7888-4AC4-B817-3D1F005921A2}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqpsapp.exe |
"{CCA8B5DB-DB5E-45EF-B74F-0679FBB10F01}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqcopy2.exe |
"{CEBD0148-6746-428B-B0F4-7FC2C8B6FF85}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpoews01.exe |
"{D022EC8B-E39D-4332-BC90-D777A1EA7590}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{D36FE800-2699-4201-A2D8-FF70DADB9B34}" = protocol=17 | dir=in | app=c:\program files\360share pro\jre\bin\javaw.exe |
"{D3D2D5A8-64D8-48BE-A78E-EAFED99D8DCF}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe |
"{D5D593F4-7949-477D-964E-44202357ECB5}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe |
"{DF3ADDE9-7D5D-464F-9F10-7FACA6D7F035}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{E6091D8D-EA3D-4D5D-A608-F3AF8A6DAB84}" = dir=in | app=c:\program files\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{E6E95886-A191-4E64-A987-3E9A240D0BB8}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{E9D7D96E-48D0-4A67-BF64-97F64751F027}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqste08.exe |
"{EF493BB3-4CFE-40E3-A4B1-8A84A66E3FAF}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{F042613C-158C-4241-BAC6-3DC10EE1AE7A}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{F7DD5270-DF85-4768-9A0B-3CF4D654A10F}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"TCP Query User{EA2CA00B-4BAE-4125-B119-F8E6F61EEE3A}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"UDP Query User{08267D17-BFF8-407D-BC26-8FE36F34AC8F}C:\program files\yahoo!\messenger\yahoomessenger.exe" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID-Anmelde-Assistent
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}" = LightScribe System Software 1.14.17.1
"{119B7481-0216-40D2-A5CC-C3E1F461ECC1}" = Windows Live Fotogalerie
"{13333239-0A15-4855-BEEB-0232DAA5B7EA}" = BlackBerry Desktop Software 5.0.1
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}" = Readiris Pro 10
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = AI TouchMedia
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 20
"{2862A3C1-0CD9-4D8B-A28C-8C337D4DD5EB}" = Express Gate
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2B7BDADB-EC8C-4C54-B5DD-CE45A016D3A7}" = Metaboli Player
"{2CC667CD-2234-4774-A536-2757606A1031}" = Nero 8 Essentials
"{2EA870FA-585F-4187-903D-CB9FFD21E2E0}" = DHTML Editing Component
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{31A5ED9F-E07B-4F6E-8179-27325BAAC502}" = AuthenTec Fingerprint Sensor Minimum Install
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}" = ATKOSD2
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITECIR
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{54B1E5A3-1B29-4582-A226-172A1FC7BA6C}" = Windows Live Family Safety
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{5545EEE4-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2701.01)
"{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}" = HP Picasso Media Center Add-In
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5783F2D7-7001-0407-0002-0060B0CE6BBA}" = AutoCAD 2009 - Deutsch
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.03
"{5A166C0B-9557-4364-A057-F946D674E6AC}" = Windows Live Mail
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}" = NB Probe
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS SmartLogon
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{689E0AB3-50B2-4E5A-9DCE-6DA9F5BE1314}" = BlackBerry® Media Sync
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}" = ASUS CopyProtect
"{6C29152D-3FF9-43B2-84E4-9B35FC0BF5C2}" = Vodafone Mobile Broadband Lite
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}" = Norton Internet Security
"{7B63B2922B174135AFC0E1377DD81EC2}" =
"{7C05592D-424B-46CB-B505-E0013E8E75C9}" = ATK Hotkey
"{81821BF8-DA20-4F8C-AA87-F70A274828D4}" = Windows Live Writer
"{82427977-8776-4087-90CA-9F65174D3C4D}" = Nokia Connectivity Cable Driver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{837B6259-6FF5-4E66-87C1-A5A15ED36FF4}" = Windows Live Messenger
"{83F73CB1-7705-49D1-9852-84D839CA2A45}" = Wireless Console 2
"{84CC9583-C2D6-42E6-A373-6FDDDA6A8BA6}" = Garmin Communicator Plugin
"{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2
"{881F5DE8-9367-4B81-A325-E91BBC6472F9}" = iTunes
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-0410-0000-0000000FF1CE}" = Microsoft Office Access MUI (Italian) 2007
"{90120000-0015-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0015-0413-0000-0000000FF1CE}" = Microsoft Office Access MUI (Dutch) 2007
"{90120000-0015-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0410-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Italian) 2007
"{90120000-0016-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2007
"{90120000-0016-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0410-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Italian) 2007
"{90120000-0018-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2007
"{90120000-0018-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0410-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Italian) 2007
"{90120000-0019-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0413-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Dutch) 2007
"{90120000-0019-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0410-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Italian) 2007
"{90120000-001A-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0413-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Dutch) 2007
"{90120000-001A-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISER_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0410-0000-0000000FF1CE}" = Microsoft Office Word MUI (Italian) 2007
"{90120000-001B-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2007
"{90120000-001B-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_PROHYBRIDR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}_PROHYBRIDR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}_PROHYBRIDR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISER_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}_PROHYBRIDR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_ENTERPRISER_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0410-0000-0000000FF1CE}_PROHYBRIDR_{322296D4-1EAE-4030-9FBC-D2787EB25FA2}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_PROHYBRIDR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROHYBRIDR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-002C-0410-0000-0000000FF1CE}" = Microsoft Office Proofing (Italian) 2007
"{90120000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_ENTERPRISER_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0407-0000-0000000FF1CE}_PROHYBRIDR_{26454C26-D259-4543-AA60-3189E09C5F76}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROHYBRIDR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_PROHYBRIDR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0410-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Italian) 2007
"{90120000-006E-0410-0000-0000000FF1CE}_PROHYBRIDR_{0A75DA12-55CB-4DE5-8B6A-74D97847204E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2007
"{90120000-006E-0413-0000-0000000FF1CE}_PROHYBRIDR_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_ENTERPRISE_{9BD40163-B95D-4B07-8991-0AB775B6D88B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROHYBRIDR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90F1943D-EA4A-4460-B59F-30023F3BA69A}" = SmarThru 4
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{91E04CA7-0B13-4F8C-AA4D-2A573AC96D19}" = Windows Live Essentials
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{922E8525-AC7E-4294-ACAA-43712D4423C0}" = Adobe Flash Player 10 ActiveX
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear eXtreme
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A90000000001}" = Adobe Reader 9
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{B1102A25-3AA3-446B-AA0F-A699B07A02FD}" = Garmin USB Drivers
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 260.99
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.1.9.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B6A98E5F-D6A7-46FB-9E9D-1F7BF4434001}" = Epson Printer Software Downloader
"{B98BE95C-E76F-4246-B8E6-BEB8EE791D06}" = Roxio Media Manager
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BE14008A-88F9-4C81-B7F2-1D5917C71E77}" = Wunschhaus Architekt Plus 1.1.0.2
"{BEWINTERNET-CH}.UninstallSuite" = Internet Everywhere Pro deinstallieren
"{C07B86C3-1816-4C59-927E-0287925DFB96}" = Garmin City Navigator Europe NT 2010 Update
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{CC016F21-3970-11DE-B878-005056806466}" = Google Earth
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B8}" = WinZip 12.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}" = ATK Media
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{D8D4AF9A-6ADE-4B14-A7F5-BA858792729E}" = ASUS Security Protect Manager
"{DE66EFAD-B9CC-4FD4-9157-6C18E5100161}" = Dolby Control Center
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{E8A602BF-C276-4DB2-A9FF-B4C30EA1CB7C}_is1" = iDump (Freeware) Build:29
"{E90DCEE9-DC27-401B-A7AC-B0AFF5B34E4D}" = Lock On: Modern Air Combat
"{E9E34215-82EF-4909-BE2F-F581F0DC9062}" = DirectX for Managed Code Update (Summer 2004)
"{EB4DF30B-102B-4F0C-927A-D50E037A325D}" = AuthenTec Fingerprint Sensor Minimum Install
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{ED636101-1959-4360-8BF7-209436E7DEE4}" = Windows Live Sync
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FE2F2589-96A6-4F38-98F5-DDAC34BD41B9}" = Autodesk Network License Manager
"{FE6E1AF6-6B88-44FE-8101-84AE6A52B393}" = Windows Live Movie Maker-Betaversion
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"45A7283175C62FAC673F913C1F532C5361F97841" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AutoCAD 2009 - Deutsch" = AutoCAD 2009 - Deutsch
"BlackBerry_{13333239-0A15-4855-BEEB-0232DAA5B7EA}" = BlackBerry Desktop Software 5.0.1
"Blechabwicklung" = Blechabwicklung 15.9.10
"Cheatbook 07.2009" = Cheatbook 07.2009
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"ComandoMPDDeinstKey" = Commandos, Beyond the Call of Duty
"ContentaDNGConverter" = Contenta DNG Converter
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = DivX-Setup
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Epson Printer Software Downloader" = Epson Printer Software Downloader
"EPSON T1100 Series" = EPSON T1100 Series Printer Uninstall
"EPSON T1100 Series Manual" = EPSON T1100 Series Manual
"FS Global 2010" = FS Global 2010
"Hardlock Gerätetreiber" = Hardlock Gerätetreiber
"Huawei Modems" = Huawei modem
"Img2CAD_is1" = Img2CAD 7.0
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = AI TouchMedia
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"Lock On 1.1" = Lock On 1.1
"LockOn Flaming Cliffs 2_is1" = Lockon Flaming Cliffs 1.2.1 patch
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox (3.0.10)" = Mozilla Firefox (3.0.10)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"phonostarRadioPlayer_is1" = phonostar-Player Version 2.01.5
"Picasa 3" = Picasa 3
"PirateBay_is1" = Pirate Bay
"Premium Security Suite" = Avira Premium Security Suite
"PROHYBRIDR" = 2007 Microsoft Office system
"ReaConverter 5.5 Pro_is1" = ReaConverter 5.5 Pro
"RealPlayer 12.0" = RealPlayer
"Red Light Center 3D Client" = Red Light Center 3D Client
"Steam App 34830" = Sniper: Ghost Warrior
"Steam App 50130" = Mafia II
"Steam App 8190" = Just Cause 2
"Tropico3" = Tropico 3 1.00
"USB2.0 1.3M UVC WebCam" = USB2.0 1.3M UVC WebCam
"VLC media player" = VLC media player 1.1.5
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR
"Yahoo! Messenger" = Yahoo! Messenger
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1229143885-3290895497-49815576-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Move Media Player" = Move Media Player
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 28.10.2010 08:47:46 | Computer Name = SvenKunz-PC | Source = MsiInstaller | ID = 11606
Description =
Error - 28.10.2010 14:46:06 | Computer Name = SvenKunz-PC | Source = MsiInstaller | ID = 11606
Description =
Error - 28.10.2010 14:46:06 | Computer Name = SvenKunz-PC | Source = MsiInstaller | ID = 11606
Description =
Error - 29.10.2010 13:50:58 | Computer Name = SvenKunz-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung javaw.exe, Version 6.0.200.2, Zeitstempel 0x4bc398b3,
fehlerhaftes Modul java.dll, Version 6.0.200.2, Zeitstempel 0x4bc3c8dc, Ausnahmecode
0xc0000005, Fehleroffset 0x00005875, Prozess-ID 0x2088, Anwendungsstartzeit 01cb7791c89592c0.
Error - 29.10.2010 13:51:34 | Computer Name = SvenKunz-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung wmplayer.exe, Version 11.0.6002.18311, Zeitstempel
0x4c8e2d72, fehlerhaftes Modul DirectOutput.dll_unloaded, Version 0.0.0.0, Zeitstempel
0x47f603f0, Ausnahmecode 0xc0000005, Fehleroffset 0x031061ca, Prozess-ID 0x2434,
Anwendungsstartzeit 01cb7791e90e60e0.
Error - 29.10.2010 13:53:03 | Computer Name = SvenKunz-PC | Source = Application Error | ID = 1000
Description = Fehlerhafte Anwendung wmplayer.exe, Version 11.0.6002.18311, Zeitstempel
0x4c8e2d72, fehlerhaftes Modul DirectOutput.dll_unloaded, Version 0.0.0.0, Zeitstempel
0x47f603f0, Ausnahmecode 0xc0000005, Fehleroffset 0x01fd61ca, Prozess-ID 0x261c,
Anwendungsstartzeit 01cb779218859000.
Error - 29.10.2010 14:47:33 | Computer Name = SvenKunz-PC | Source = MsiInstaller | ID = 11606
Description =
Error - 29.10.2010 14:47:33 | Computer Name = SvenKunz-PC | Source = MsiInstaller | ID = 11606
Description =
Error - 30.10.2010 16:47:49 | Computer Name = SvenKunz-PC | Source = MsiInstaller | ID = 11606
Description =
Error - 30.10.2010 16:47:49 | Computer Name = SvenKunz-PC | Source = MsiInstaller | ID = 11606
Description =
[ ASUS Security Protect Manager Events ]
Error - 12.08.2009 05:37:55 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 11.12.2009 17:51:46 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 12.02.2010 15:50:25 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 03.03.2010 16:06:49 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 06.04.2010 03:41:19 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 17.04.2010 04:21:22 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 09.08.2010 14:38:11 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 14.08.2010 05:49:42 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 25.08.2010 02:16:08 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
Error - 31.08.2010 12:11:04 | Computer Name = SvenKunz-PC | Source = AuthWiz | ID = 100796068
Description = The submitted credentials were rejected. User: Sven Kunz@SVENKUNZ-PC
Credentials:
Password Error: (0xC516020B) The system could not log you on. Verify your user
name and domain are correct and then type your password again. Letters in passwords
must be typed using the correct case. Verify that Caps Lock is off.
[ OSession Events ]
Error - 24.11.2010 14:37:25 | Computer Name = SvenKunz-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5
seconds with 0 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 08.02.2011 05:02:36 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 08.02.2011 05:02:36 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7009
Description =
Error - 08.02.2011 05:02:36 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 08.02.2011 05:02:36 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7000
Description =
Error - 08.02.2011 05:02:36 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7009
Description =
Error - 08.02.2011 05:02:36 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7009
Description =
Error - 08.02.2011 05:05:13 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 08.02.2011 05:06:07 | Computer Name = SvenKunz-PC | Source = Dhcp | ID = 1002
Description = Die IP-Adresslease 41.26.205.132 für die Netzwerkkarte mit der Netzwerkadresse
00A0C6000000 wurde durch den DHCP-Server 41.27.66.249 abgelehnt (der DHCP-Server
hat eine DHCPNACK-Meldung gesendet).
Error - 08.02.2011 05:10:02 | Computer Name = SvenKunz-PC | Source = Service Control Manager | ID = 7022
Description =
Error - 08.02.2011 05:12:09 | Computer Name = SvenKunz-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
< End of report >
|
|
08.02.2011, 13:00
| #6 |
| /// Malware-holic | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails hi, sorry ich war zu schnell, befor du extras.txt gepostet hast, hab ich noch Malwarebytes als programm aufgeschrieben, kannst du es bitte nutzen?
__________________ --> Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails |
|
08.02.2011, 15:37
| #7 | |
| | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails Ich bin zurück nach stundenlanger warterei bis alles gechecked wurde hier die LOG- Datei Zitat:
|
|
08.02.2011, 15:46
| #8 |
| /// Malware-holic | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails na und es hat sich doch gelohnt.. bei keygens geben wir nur suport beim neu aufsetzem, illegale software wird nicht unterstützt und wer solche nutzt muss sich über probleme nicht wundern.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
08.02.2011, 15:59
| #9 |
| | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails OK das heisst jetzt das das Problem behoben ist oder nicht? Gruss Sven |
|
08.02.2011, 16:25
| #10 |
| /// Malware-holic | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails dazu gebe ich keine auskunft. ich sagte du bekommst nur unterstützung beim neu aufsetzen.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
08.02.2011, 17:16
| #11 |
| | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails Hallo Wo genau liegt den das Problem? Ich würde meinen Computer gerne neu aufsetztn aber das Problem ist das ich in Südafrika am arbeiten habe und meine Programme die ich hier brauche können sie mir nur in der Schweiz installieren! Gibts da eine Möglichkeit meinen Computer trotzdem neu aufzusetztn und die Programme immernoch zu nutzen ohne Neuinstallation? Gruss Sven |
|
08.02.2011, 17:18
| #12 |
| /// Malware-holic | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails ich hab dir doch gesagt wo das problem liegt. du nutzt keygens und das wird hier nicht unterstützt, wir halten uns hier an die geltenen gesetze. und nein, programme müssen dann alle neu instaliert werden
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
08.02.2011, 17:30
| #13 |
| | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails OK danke trotzdem für deine Hilfe aber mir sind leider die Hände gebunden ich kann meinen Computer nicht neu aufsetzten weil ich dann meine Programme verliere die ich brauche um meinen Job zu erfüllen! Gruss und danke nochmals für die Hilfe Sven |
|
08.02.2011, 17:33
| #14 |
| /// Malware-holic | Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails dann musst du dich halt an eure it abteilung wenden. die werden sicher nicht erfreud sein über einen aktieven trojaner und müssen informiert werden
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails |
| alle kontakte, automatisch, avgnt, compu, computer, grosses, guten, hotmail, iobit, kontakte, mail, morgen, plug-in, problem, rechner, safer networking, saver, sende, sendet, spam-mail, spam-mails, spammails, systemcare, versendet, vodafone |
Linear-Darstellung
