|
Log-Analyse und Auswertung: Trojaner TR/Kazy.mekml.1Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
02.05.2011, 19:27 | #31 |
/// Malwareteam | Trojaner TR/Kazy.mekml.1 Fixen mit OTL
Code:
ATTFilter :OTL O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 :Commands [purity] [emptytemp]
Rückmeldung? |
02.05.2011, 19:34 | #32 |
| Trojaner TR/Kazy.mekml.1Code:
ATTFilter All processes killed ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDrives deleted successfully. Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully. Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDrives deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Nadine ->Temp folder emptied: 0 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: NeroMediaHomeUser.4 ->Temp folder emptied: 64512 bytes ->Flash cache emptied: 0 bytes User: Public ->Temp folder emptied: 0 bytes User: Toni ->Temp folder emptied: 22268205 bytes ->Java cache emptied: 618700 bytes ->Apple Safari cache emptied: 0 bytes ->Flash cache emptied: 2046 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 829235158 bytes RecycleBin emptied: 83876559 bytes Total Files Cleaned = 893,00 mb OTL by OldTimer - Version 3.2.22.3 log created on 05022011_203051 Files\Folders moved on Reboot... C:\Users\NeroMediaHomeUser.4\AppData\Local\Temp\etilqs_FeurFzRYQFHC6gYnf6mX moved successfully. C:\Users\NeroMediaHomeUser.4\AppData\Local\Temp\etilqs_FeurFzRYQFHC6gYnf6mX-journal moved successfully. File\Folder C:\Windows\temp\TMP00000059CF60B552637F6D8C not found! Registry entries deleted on Reboot... |
02.05.2011, 20:58 | #33 |
/// Malwareteam | Trojaner TR/Kazy.mekml.1 Und noch die gleichen Probleme?
__________________ |
02.05.2011, 21:06 | #34 |
| Trojaner TR/Kazy.mekml.1 Also den desktop und was da so drauf war hab ich selber wieder hergestellt aber ich weiß nicht mehr was in der taskleiste war und wie man das da wieder hin bekommt. |
02.05.2011, 23:46 | #35 |
/// Malwareteam | Trojaner TR/Kazy.mekml.1 Was ist dann dort genau noch falsch? |
05.05.2011, 17:54 | #36 |
| Trojaner TR/Kazy.mekml.1 hallo, ich habe das jetzt mal auf bildern dargestellt. wenn man den start button auf bild 1 drückt, öffnet sich die taskleiste. auf bild 2 sieht man, das die leer ist. ich würde jetzt gerne wissen, wie ich dort wieder das alles hin bekomme. |
05.05.2011, 21:21 | #37 |
/// Malwareteam | Trojaner TR/Kazy.mekml.1 Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter @echo off echo All Users Folder > "%temp%\look.txt" dir /s /a /b "%programdata%\Microsoft\Windows\Start Menu" >> "%temp%\look.txt" echo. >> "%temp%\look.txt" echo Individual Users Folder >> "%temp%\look.txt" dir /s /a /b "%appdata%\Microsoft\Windows\Start Menu" >> "%temp%\look.txt" notepad "%temp%\look.txt" del %0
Poste bitte den Inhalt des offenen Text- Dokumentes ( look.txt ) Geändert von Larusso (05.05.2011 um 22:37 Uhr) |
07.05.2011, 19:46 | #38 |
| Trojaner TR/Kazy.mekml.1 hallo, hier ist das ergebnis. Code:
ATTFilter All Users Folder C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\PokerStars.net.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programme C:\ProgramData\Microsoft\Windows\Start Menu\Programs C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk C:\ProgramData\Microsoft\Windows\Start Menu\XSManager.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye Webcam C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Air Mouse C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series Benutzerregistrierung C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series Manual C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DSL-Manager C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Infineon USB driver C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\maxdome C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\metaio C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2003.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works-Start.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now 5 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixie C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.NET C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ravensburger Interactive C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SBS Schuster Bausoftware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simfy C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Videoload Manager C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 Upgrade Advisor.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Calendar.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Collaboration.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Contacts.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Defender.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Photo Gallery.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSManager C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Bluetooth File Transfer Wizard.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\NetworkProjection.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sidebar.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Backup.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\migwiz.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Sticky Notes.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Bio Protection C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Empowering Technology C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\VCM C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Bio Protection\Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Bio Protection\Info.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Bio Protection\Online Help.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Bio Protection\System Settings.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Empowering Technology\Acer eAudio Management.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Empowering Technology\Acer eDataSecurity Management.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Empowering Technology\Acer Empowering Technology.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Empowering Technology\Acer ePower Management.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Empowering Technology\Acer eRecovery Management.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Empowering Technology\Acer eSettings Management.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\VCM\Acer VCM.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\VCM\Readme.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye Webcam\Acer Crystal Eye Webcam.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye Webcam\uninstall.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista\Acer GridVista.LNK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem\AcerSystem User's Guide.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem\AcerSystem User's Quick Guide.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem\Modem User's Guide.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Reliability and Performance Monitor.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Air Mouse\Air Mouse C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Air Mouse\Air Mouse\Air Mouse.exe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira\AntiVir Desktop C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira\AntiVir Desktop\AntiVir Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira\AntiVir Desktop\AntiVir im Internet.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira\AntiVir Desktop\AntiVir starten.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira\AntiVir Desktop\Readme anzeigen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series\Liesmich.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series\MP Drivers-Deinstallationsprogramm.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series Benutzerregistrierung\Benutzerregistrierung - Deinstallation.LNK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series Benutzerregistrierung\Benutzerregistrierung.LNK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series Manual\Canon MP640 series Online-Handbuch.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP640 series Manual\Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint EX C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator EX 3.0 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Printer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Solution Menu C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint EX\Easy-PhotoPrint EX - Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint EX\Easy-PhotoPrint EX - Liesmich.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Easy-PhotoPrint EX\Easy-PhotoPrint EX.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator EX 3.0\MP Navigator EX - Deinstallation.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator EX 3.0\MP Navigator EX 3.0.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\MP Navigator EX 3.0\MP Navigator EX Liesmich.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Printer\My Printer Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Printer\My Printer Liesmich.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\My Printer\My Printer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Solution Menu\Solution Menu - Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Solution Menu\Solution Menu - Liesmich.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities\Solution Menu\Solution Menu.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint\Bitte Lesen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint\CD-LabelPrint.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint\Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint\Handbuch.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD-LabelPrint\Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite\DAEMON Tools Lite.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite\Uninstall.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Bringe DivX©-Videos auf Deine Website.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Warum DivX Pro kaufen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter\Converter.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter\Links C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter\Lizenz.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter\ReadMe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter\Links\Mehr ber DivX Converter.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter\Links\Neuigkeiten ber DivX Converter.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter\Links\Warum DivX Pro kaufen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile\Converter.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile\DivX Converter Mobile entfernen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile\Links C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile\Lizenz.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile\Produkte registrieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile\ReadMe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\DivX Converter Mobile\Links\Warum DivX Pro kaufen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\Besuchen Sie DivX.com.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\DivX Benutzerforen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\DivX Hardware.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\DivX Labs.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\DivX Technische Untersttzung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\Mehr erfahren ber DivX Author.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\Mehr erfahren ber DivX Software.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\Mehr erfahren ber erweiterte DivX-Funktionen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX\Ntzlich Links\Warum DivX Pro kaufen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\Bringe DivX©-Videos auf Deine Website.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\Codec-Einstellungen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\DivX Plus Converter.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\DivX Plus Player.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\DivX Technische Untersttzung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\Nach Updates suchen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\Registrieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\Warum DivX Pro kaufen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DSL-Manager\DSL-Manager Deinstallation.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DSL-Manager\DSL-Manager Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DSL-Manager\DSL-Manager.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2\Die Sims 2 Body Shop.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2\Die Sims 2 deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2\Die Sims 2.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2\Elektronische Registrierung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2\Lies mich.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2\Online nach Update suchen.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre\Die Sims 2 Body Shop.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre\Die Sims 2 Wilde Campus-Jahre deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre\Die Sims 2 Wilde Campus-Jahre.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre\Elektronische Registrierung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre\Online nach Update suchen.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre\Readme.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die Sims 2 Wilde Campus-Jahre\www.thesims2.com.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires\Die SimsT 2 Body Shop.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires\Die SimsT 2 IKEA© Home-Accessoires deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires\Die SimsT 2 IKEA© Home-Accessoires.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires\Elektronische Registrierung.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires\Kundendienst.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires\Readme.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 IKEA© Home-Accessoires\www.diesims2.de.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires\Die SimsT 2 Body Shop.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires\Elektronische Registrierung.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires\Kundendienst.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires\Readme.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES\Die SimsT 2 Kchen- und Bad-Einrichtungs-Accessoires\www.diesims2.de.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular\ElsterFormular - Screenreadermodus.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular\ElsterFormular - Update.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular\ElsterFormular Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular\ElsterFormular.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular\Hotline.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular\Integritaetsprfer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular\Uninstall ElsterFormular.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT\Deutsche Dokumentation.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT\Documentation.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT\ERUNT Homepage.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT\ERUNT.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT\NTREGOPT.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT\Uninstall ERUNT.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades\Windows Anytime Upgrade.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades\Windows Marketplace.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades\Windows Web.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\FreeCell.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\GameExplorer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Hearts.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\InkBall.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Minesweeper.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\PurblePlace.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Solitaire.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Spider Solitaire.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Infineon USB driver\Infineon USB driver entfernen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Infineon USB driver\Infineon USB driver im Internet.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\WiFi Erweiterte Statistik.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless\WiFi Manuelle Diagnose.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\šber iTunes.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Help C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Media Player Classic.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Uninstall C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\All options.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Generate log with system information.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Manage ACM and VFW codecs.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Manage DirectShow filters.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Manage preferred DirectShow source filters.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\DirectVobSub.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow audio decoder.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow DXVA video decoder.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow VFW interface.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow video decoder.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Haali Media Splitter.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Haali video renderer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\madFLAC.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Reset to recommended settings.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\VP7 decoder.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Xvid encoder.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Help\Frequently Asked Questions.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\Codec Tweak Tool.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\GraphStudio.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\Haali Muxer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\MediaInfo.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\VobSubStrip.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\Xvid StatsReader.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Uninstall\Uninstall K-Lite Codec Pack.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager\Launch Manager.LNK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager\Uninstall.LNK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool\LGMobile update.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool\Uninstall.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech\Maus und Tastatur C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech\Unifying C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech\Maus und Tastatur\Hilfecenter.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech\Maus und Tastatur\Maus- und Tastatureinstellungen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech\Unifying\Logitech Unifying-Software.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Problem Reports and Solutions.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware entfernen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware Help.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\maxdome\Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\maxdome\Hilfe.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\maxdome\maxdome Download Manager.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\metaio\AFC Online C:\ProgramData\Microsoft\Windows\Start Menu\Programs\metaio\AFC Online\Uninstall.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace\Games for Windows Marketplace.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Access 2007.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Excel 2007.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Groove 2007.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Outlook 2007.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office PowerPoint 2007.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Word 2007.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office-Aktivierungs-Assistent.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Digitales Zertifikat fr VBA-Projekte.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Clip Organizer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office 2007 Spracheinstellungen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Picture Manager.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office-Diagnose.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in\Office Live Workspace.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in\Office Live-Add-In-Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Erste Schritte .lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Microsoft Works-Datenbank.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Microsoft Works-Kalender.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Microsoft Works-Portfolio.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Microsoft Works-Start.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Microsoft Works-Tabellenkalkulation.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Microsoft Works-Textverarbeitung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works\Windows-Adressbuch.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories\Microsoft Xbox 360 Accessories Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories\Microsoft Xbox 360 Accessories Status.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories\Nach Updates suchen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Handbcher C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero ControlCenter 4.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero MediaHome 4 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Handbcher\Nero Burning ROM [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Handbcher\Nero Live [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Handbcher\Nero SoundTrax [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Handbcher\Nero WaveEditor [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Handbcher\StartSmart [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero ControlCenter 4 [German Help].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero CoverDesigner [German Manual].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero DiscCopy [German Manual].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero DiscSpeed [German Manual].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero Express [German Manual].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero MediaHome 4 [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero PhotoSnap Viewer [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero Recode [Deutsches Handbuch].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero ShowTime [German Manual].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero Vision [German Manual].lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Burning ROM.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero CoverDesigner.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Express.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Live.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero PhotoSnap Viewer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Recode.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero ShowTime.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero SoundTrax.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Toolkit C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Vision.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero WaveEditor.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\StartSmart.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Toolkit\Nero DiscSpeed.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero MediaHome 4\Nero MediaHome 4.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now 5\NTI Backup Now 5.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8\Audio Editor.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8\Digital Jack.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8\DVD Fit.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8\JewelCase Maker.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8\NTI Media Maker 8.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8\Photo Maker.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8\Ripper.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixie\Pixie Reference Manual.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixie\Pixie Website.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixie\Uninstall Pixie.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.NET\Network Status.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.NET\PokerStars.net.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.NET\Uninstall PokerStars.net.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\PictureViewer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime - Bitte lesen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ravensburger Interactive\Baby Born - Das Fest.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ravensburger Interactive\Baby Born - Deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Rockstar Games Social Club.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simfy\simfy.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Hilfe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Mediendateien importieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\PMB.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Support C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Werkzeuge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Hilfe\PMB-Anleitungen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Support\Software-Support.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Werkzeuge\Einstellungsinitialisierung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Werkzeuge\Informationswerkzeug.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Werkzeuge\Medien-Prfung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility\Werkzeuge\Ortseinstellung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Air Mouse.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC\Desktop.ini C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Bestellformular.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Hilfe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Informationen zur Bestellung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Lizenzvereinbarungen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Online-Shop.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Tippmaster deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Tippmaster.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Wichtige Hinweise.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Hilfe\H„ufig gestellte Fragen (FAQ) im Internet.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Hilfe\H„ufig gestellte Fragen (FAQ).lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Hilfe\Tippmaster im Internet.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tippmaster\Hilfe\Tippmaster-Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\TuneUp Software Webseite.URL C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\TuneUp Utilities 2009 Hilfe.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\TuneUp Utilities 2009.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp 1-Klick-Wartung.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Disk Doctor.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Disk Space Explorer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Drive Defrag.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Process Manager.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Registry Cleaner.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Registry Defrag.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Registry Editor.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Repair Wizard.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Rescue Center.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Shortcut Cleaner.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Shredder.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Speed Optimizer.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp StartUp Manager.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Styler.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp System Control.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp System Information.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Undelete.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Uninstall Manager.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2009\Utilities\TuneUp Update Wizard.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Reset VLC media player preferences and cache files.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Videoload Manager\Einstellungen.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Videoload Manager\Uninstall.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch fr die Konsolenversion von RAR.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSManager\XSManager deinstallieren.lnk C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSManager\XSManager.lnk Individual Users Folder C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programme C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SBS Schuster Bausoftware C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Videoload Manager C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector\PowerDirector deinstallieren.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector\PowerDirector Hilfe.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector\PowerDirector.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector\Readme.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SBS Schuster Bausoftware\Deinstalliere SBS Wohnraumplaner CAD 15 76.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DSL-Manager.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Videoload Manager\Video Downloads.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch fr die Konsolenversion von RAR.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk C:\Users\Toni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk |
08.05.2011, 21:29 | #39 |
/// Malwareteam | Trojaner TR/Kazy.mekml.1 Antwort folgt. |
09.05.2011, 19:26 | #40 |
/// Malwareteam | Trojaner TR/Kazy.mekml.1 Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter @echo off cd \ >"%temp%\start.txt" ( reg query "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" reg query "HKEY_Local_Machine\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer" reg query "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\StartMenu" ) notepad "%temp%\start.txt" del %0
Poste bitte den Inhalt des offenen Text- Dokumentes ( start.txt ) Larusso wird für mich Übernehmen und sich um das StartmenüProblem zu kümmern. |
09.05.2011, 19:30 | #41 |
| Trojaner TR/Kazy.mekml.1Code:
ATTFilter HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer BindDirectlyToPropertySetStorage REG_DWORD 0x0 HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\run HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders AppData REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming Cache REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\Windows\Temporary Internet Files Cookies REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Cookies Desktop REG_EXPAND_SZ %USERPROFILE%\Desktop Favorites REG_EXPAND_SZ %USERPROFILE%\Favorites History REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\Windows\History Local AppData REG_EXPAND_SZ %USERPROFILE%\AppData\Local My Music REG_EXPAND_SZ %USERPROFILE%\Music My Pictures REG_EXPAND_SZ %USERPROFILE%\Pictures My Video REG_EXPAND_SZ %USERPROFILE%\Videos NetHood REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Network Shortcuts Personal REG_EXPAND_SZ %USERPROFILE%\Documents PrintHood REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Printer Shortcuts Programs REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs Recent REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Recent SendTo REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\SendTo Startup REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Start Menu REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu Templates REG_EXPAND_SZ %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Templates {374DE290-123F-4565-9164-39C4925E467B} REG_EXPAND_SZ %USERPROFILE%\Downloads HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\StartMenu Type REG_SZ group Text REG_SZ @shell32.dll,-30464 Bitmap REG_EXPAND_SZ %SystemRoot%\system32\shell32.dll,40 HelpID REG_SZ windows.hlp#51132 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\StartMenu\Policy HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\StartMenu\StartMenu HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\StartMenu\StartPanel |
09.05.2011, 20:59 | #42 |
/// Selecta Jahrusso | Trojaner TR/Kazy.mekml.1 Hy, Die Programme sind definitiv vorhanden. Auch die Registry sieht in Ordnung aus. Was mir jetzt noch einfällt ist, dass der Ordner ansich versteckt ist. Dies versteckt auch die StartUP Liste Versuchen wir einmal folgendes. Downloade dir bitte unhide.exe (by Grinler) und speichere die Datei auf deinem Desktop. Schließe alle laufenden Programme. Starte die unhide.exe mit Rechtsklick "als Administrator ausführen". Das Tool kann eine Weile brauchen. Wenn das Tool seine Arbeit getan hat, wird eine Nachricht aufpoppen "Your files should now be visible" Starte den Rechner neu auf. Berichte bitte
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
10.05.2011, 17:30 | #43 |
/// Selecta Jahrusso | Trojaner TR/Kazy.mekml.1 Hy, gerade gesehen das Swiss dieses Tool schon laufen hat lassen. Ich habe gerade bisschen rumgetestet und einen Weg gefunden. Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter @echo off attrib -h "%programdata%\Microsoft\Windows\Start Menu\*.*" /s /d attrib -h "%appdata%\Microsoft\Windows\Start Menu\*.*" /s /d del %0
Berichte bitte ob dein Start Menü nun wieder OK ist
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie Geändert von Larusso (10.05.2011 um 19:04 Uhr) |
12.05.2011, 18:01 | #44 |
| Trojaner TR/Kazy.mekml.1 Hallo, das Start Menü ist leider immernoch leer. |
12.05.2011, 19:48 | #45 |
/// Selecta Jahrusso | Trojaner TR/Kazy.mekml.1 Der Ordner Alle Programme im Start Menu auch ?
__________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie |
Themen zu Trojaner TR/Kazy.mekml.1 |
desktop, erstell, erstellt, hoffe, load.exe, log-datei, mbam, probiert, sache, sachen, schwarz, tr/kazy.mekml.1, troja, trojaner |