Trojaner-Board - VB.Ahir und weitere Probleme

Code:
ComboFix 10-09-27.05 - Tom 28.09.2010  21:48:08.1.2 - x86

Microsoft Windows XP Professional  5.1.2600.3.1252.49.1031.18.3583.2841 [GMT 2:00]

ausgeführt von:: c:\dokumente und einstellungen\Tom\Desktop\cofi.exe

AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

.
 

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.
 

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4\{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}\include_files\128a87c121072b7b1ee2a5e1d7dc4221

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4\{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}\include_files\17a9db567640d117f5b74758a5b36542

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4\{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}\include_files\43383bd5e1ab42c608bd05d4ca8c4bb0

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4\{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}\include_files\73eadebe86be1c96947b98bd370f3e4d

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4\{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}\include_files\9084736fdb7052b29d3866a6d90ede19

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4\{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}\include_files\b78584724a20e3bbdab0d052dfa4f6b5

c:\dokumente und einstellungen\All Users\Anwendungsdaten\Toolbar4\{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}\include_files\f95adb3cbb991ba22a17c1cc1ea67bec

c:\dokumente und einstellungen\All Users\Dokumente\Server\server.dat

c:\dokumente und einstellungen\Tom\Eigene Dateien\cc_20100928_214243.reg

c:\programme\HTV

c:\programme\HTV\akv.cfg

c:\winxp\system32\d3d10core.dll

c:\winxp\system32\i_e.ico

c:\winxp\system32\kernel32new.dll

c:\winxp\system32\msvcrtnew.dll

c:\winxp\system32\txb.ico

c:\winxp\system32\xxyx.ico

c:\winxp\wpe pro.INI

C:\x
 

c:\winxp\system32\winlogon.exe . . . ist infiziert!!
 

c:\winxp\explorer.exe . . . ist infiziert!!
 

c:\winxp\system32\ctfmon.exe . . . ist infiziert!!
 

.

(((((((((((((((((((((((   Dateien erstellt von 2010-08-28 bis 2010-09-28  ))))))))))))))))))))))))))))))

.
 

2010-09-28 19:41 . 2010-09-28 19:41        --------        d-----w-        c:\programme\CCleaner

2010-09-28 17:46 . 2010-09-28 17:46        955        ----a-w-        C:\Qoobox.zip

2010-09-27 17:43 . 2010-09-28 19:56        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\wd

2010-09-27 17:43 . 2010-09-27 17:43        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\kingsoft

2010-09-27 16:38 . 2010-09-27 16:38        --------        d-----w-        c:\winxp\system32\Adobe

2010-09-27 16:35 . 2010-09-27 16:35        --------        d-----w-        c:\programme\Secunia

2010-09-26 18:48 . 2010-09-26 18:48        1060        ----a-w-        c:\winxp\system32\unins001.dat

2010-09-26 18:48 . 2010-09-26 18:48        695578        ----a-w-        c:\winxp\system32\unins001.exe

2010-09-26 18:48 . 2008-09-30 17:35        65536        ----a-w-        c:\winxp\system32\camcodec.dll

2010-09-26 18:47 . 2010-09-26 18:49        --------        d-----w-        c:\programme\CamStudio

2010-09-26 14:49 . 2010-09-26 14:49        --------        d-----w-        C:\_OTL

2010-09-26 12:53 . 2010-09-26 12:53        --------        d-----w-        c:\programme\ERUNT

2010-09-26 12:51 . 2010-09-26 12:51        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Malwarebytes

2010-09-26 12:51 . 2010-04-29 13:39        38224        ----a-w-        c:\winxp\system32\drivers\mbamswissarmy.sys

2010-09-26 12:51 . 2010-09-26 12:51        --------        d-----w-        c:\programme\Malwarebytes' Anti-Malware

2010-09-26 12:51 . 2010-09-26 12:51        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes

2010-09-26 12:51 . 2010-04-29 13:39        20952        ----a-w-        c:\winxp\system32\drivers\mbam.sys

2010-09-24 08:04 . 2010-09-24 08:04        --------        d-----w-        c:\winxp\Performance

2010-09-24 08:03 . 2010-09-24 08:03        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\Microsoft Corporation

2010-09-24 08:02 . 2010-09-24 08:02        --------        d-----w-        c:\programme\Microsoft Windows 7 Upgrade Advisor

2010-09-24 00:00 . 2010-09-24 00:00        --------        d-----w-        c:\dokumente und einstellungen\LocalService\Anwendungsdaten\TuneUp Software

2010-09-23 23:42 . 2009-10-30 13:08        29512        ----a-w-        c:\winxp\system32\TURegOpt.exe

2010-09-23 23:42 . 2009-10-30 13:01        30024        ----a-w-        c:\winxp\system32\uxtuneup.dll

2010-09-23 23:42 . 2010-09-23 23:42        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\TuneUp Software

2010-09-23 23:42 . 2010-09-23 23:42        --------        d-----w-        c:\programme\TuneUp Utilities 2010

2010-09-23 23:41 . 2010-09-23 23:42        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\TuneUp Software

2010-09-23 22:41 . 2010-09-25 21:07        --------        d-----w-        c:\programme\Trillian

2010-09-23 22:22 . 2008-03-09 05:25        236        ----a-w-        c:\programme\Gemeinsame Dateien\dx.reg

2010-09-23 22:22 . 2008-03-05 14:03        329224        ----a-w-        c:\winxp\system32\DXErr.exe

2010-09-23 22:22 . 2008-03-05 14:03        209416        ----a-w-        c:\winxp\system32\dxcpl.exe

2010-09-23 22:22 . 2006-11-02 10:46        39936        ----a-w-        c:\winxp\system32\dwmapi.dll

2010-09-23 22:22 . 2006-11-02 10:46        167936        ----a-w-        c:\winxp\system32\dxgi.dll

2010-09-23 22:22 . 2010-09-23 22:22        2925        ----a-w-        c:\winxp\system32\unins000.dat

2010-09-23 22:22 . 2010-09-23 22:22        716153        ----a-w-        c:\winxp\system32\unins000.exe

2010-09-23 22:22 . 2008-04-12 16:13        1029126        ----a-w-        c:\winxp\system32\d3d10.dll

2010-09-23 22:22 . 2006-11-29 12:06        440080        ----a-w-        c:\winxp\system32\d3dx10.dll

2010-09-23 22:22 . 2006-11-02 10:47        1162656        ----a-w-        c:\winxp\system32\ntdllnew.dll

2010-09-22 11:14 . 2010-09-22 11:14        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\VS Revo Group

2010-09-21 12:31 . 2010-09-21 12:31        --------        d-----w-        C:\PCWELT

2010-09-21 11:15 . 2010-09-21 11:15        16        ----a-w-        c:\winxp\popcinfo.dat

2010-09-21 11:12 . 2010-09-24 07:26        --------        d-----w-        c:\programme\Pogo DE

2010-09-21 11:12 . 2010-09-21 11:12        --------        d-----w-        c:\programme\Oberon Media

2010-09-21 10:23 . 2007-04-09 12:23        28552        ----a-w-        c:\winxp\system32\Spool\prtprocs\w32x86\mdippr.dll

2010-09-21 10:23 . 2007-04-09 12:23        28040        ----a-w-        c:\winxp\system32\mdimon.dll

2010-09-21 10:21 . 2010-09-21 10:21        --------        d-----w-        c:\programme\Microsoft Works

2010-09-18 21:28 . 2010-09-24 07:43        --------        d-----w-        C:\Casino

2010-09-18 18:52 . 2010-09-18 18:52        --------        d-----w-        c:\programme\Z8Games

2010-09-18 14:27 . 2010-09-18 21:08        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS

2010-09-18 14:26 . 2010-09-18 14:26        --------        d-----w-        C:\Microgaming

2010-09-17 20:38 . 2010-09-17 20:38        --------        d-----w-        c:\programme\Mozilla Firefox 4.0 Beta 6

2010-09-17 20:36 . 2010-09-24 07:26        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\BOM

2010-09-17 20:35 . 2010-09-24 07:26        --------        d-----w-        c:\programme\Biet-O-Matic

2010-09-17 19:56 . 2010-09-17 19:56        --------        d-----w-        c:\programme\Team17

2010-09-16 17:05 . 2010-09-16 17:05        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\Adobe

2010-09-16 17:05 . 2010-09-27 16:46        --------        d-----w-        c:\programme\Gemeinsame Dateien\Adobe AIR

2010-09-16 17:04 . 2010-09-16 17:04        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\P5

2010-09-14 19:20 . 2010-09-14 19:20        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\cache

2010-09-14 19:19 . 2010-09-17 05:40        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\FullTiltPoker

2010-09-14 19:17 . 2010-09-24 07:33        --------        d-----w-        c:\programme\Full Tilt Poker

2010-09-09 19:16 . 2010-09-09 19:16        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\2K Games

2010-09-09 05:00 . 2010-09-09 05:04        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\TrueCrypt

2010-09-09 04:59 . 2010-09-09 04:59        231248        ----a-w-        c:\winxp\system32\drivers\truecrypt.sys

2010-09-09 04:59 . 2010-09-09 04:59        --------        d-----w-        c:\programme\TrueCrypt

2010-09-08 13:52 . 2010-09-08 13:52        --------        d-----w-        c:\programme\Sony Ericsson

2010-09-08 13:52 . 2005-06-13 08:08        85664        ----a-w-        c:\winxp\system32\drivers\w800obex.sys

2010-09-08 13:52 . 2005-06-13 08:08        6144        ----a-w-        c:\winxp\system32\drivers\w800cmnt.sys

2010-09-08 13:52 . 2005-06-13 08:08        6144        ----a-w-        c:\winxp\system32\drivers\w800cm.sys

2010-09-08 13:52 . 2005-06-13 08:06        87792        ----a-w-        c:\winxp\system32\drivers\w800mgmt.sys

2010-09-08 13:52 . 2005-06-13 08:05        96224        ----a-w-        c:\winxp\system32\drivers\w800mdm.sys

2010-09-08 13:52 . 2005-06-13 08:05        9264        ----a-w-        c:\winxp\system32\drivers\w800mdfl.sys

2010-09-08 13:52 . 2005-06-13 08:03        60768        ----a-w-        c:\winxp\system32\drivers\w800bus.sys

2010-09-08 13:52 . 2005-06-13 08:03        5744        ----a-w-        c:\winxp\system32\drivers\w800whnt.sys

2010-09-08 13:52 . 2005-06-13 08:03        5744        ----a-w-        c:\winxp\system32\drivers\w800wh.sys

2010-09-05 14:20 . 2010-09-05 14:20        --------        d-----w-        c:\programme\Infogrames

2010-09-05 12:15 . 2010-09-18 07:18        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\Thunderbird

2010-09-05 12:15 . 2010-09-05 12:15        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Thunderbird

2010-09-05 12:15 . 2010-09-23 19:38        --------        d-----w-        c:\programme\Mozilla Thunderbird

2010-09-04 14:15 . 2003-07-06 11:07        372736        ----a-w-        c:\winxp\system32\_IJL11.DLL

2010-09-03 12:05 . 2010-09-03 12:05        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\DrekSoftware

2010-09-03 11:57 . 2010-09-06 20:37        --------        d-----w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\Conduit

2010-09-03 11:57 . 2010-09-03 11:57        --------        d-----w-        c:\programme\Conduit

2010-09-03 11:57 . 2010-09-03 11:59        --------        d-----w-        c:\programme\Pandre

2010-09-03 10:32 . 2010-09-03 10:32        --------        d-----w-        C:\$AVG

2010-09-03 05:09 . 2010-09-03 05:09        12536        ----a-w-        c:\winxp\system32\avgrsstx.dll

2010-09-03 05:09 . 2010-09-03 05:09        243024        ----a-w-        c:\winxp\system32\drivers\avgtdix.sys

2010-09-03 05:09 . 2010-09-03 05:09        216400        ----a-w-        c:\winxp\system32\drivers\avgldx86.sys

2010-09-03 05:09 . 2010-09-03 05:09        29584        ----a-w-        c:\winxp\system32\drivers\avgmfx86.sys

2010-09-03 05:08 . 2010-09-28 16:23        --------        d-----w-        c:\winxp\system32\drivers\Avg

2010-09-03 05:08 . 2010-09-03 05:08        --------        d-----w-        c:\programme\AVG

2010-09-03 05:08 . 2010-09-03 05:08        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9

2010-08-31 04:49 . 2010-08-31 04:50        --------        d-----w-        c:\programme\ElcomSoft

1601-01-01 00:00 . 1601-01-01 00:00        0        ----a-w-        C:\clearerror.bat
 

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-09-28 19:56 . 2010-07-10 16:27        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\uTorrent

2010-09-28 14:03 . 2010-05-21 19:55        233960        ----a-w-        c:\winxp\system32\PnkBstrB.exe

2010-09-28 12:57 . 2010-05-21 19:55        138520        ----a-w-        c:\winxp\system32\drivers\PnkBstrK.sys

2010-09-28 12:51 . 2010-07-03 21:54        --------        d-----w-        c:\programme\Steam

2010-09-27 16:42 . 2010-07-10 16:28        --------        d-----w-        c:\programme\uTorrent

2010-09-24 20:19 . 2008-04-14 11:00        589824        ----a-w-        c:\winxp\system32\perfh007.dat

2010-09-24 20:19 . 2008-04-14 11:00        128264        ----a-w-        c:\winxp\system32\perfc007.dat

2010-09-24 07:55 . 2010-05-22 01:39        --------        d-----w-        c:\programme\Gemeinsame Dateien\InstallShield

2010-09-24 07:55 . 2010-05-22 01:39        --------        d--h--w-        c:\programme\InstallShield Installation Information

2010-09-24 07:51 . 2010-06-13 18:44        --------        d-----w-        c:\programme\WebCracker

2010-09-24 07:48 . 2010-07-19 19:18        --------        d-----w-        c:\programme\GamersFirst

2010-09-24 07:48 . 2010-05-24 19:11        --------        d-----w-        c:\programme\Styler

2010-09-24 07:47 . 2010-08-21 15:54        --------        d-----w-        c:\programme\Simple Webcam Capture

2010-09-24 07:41 . 2010-06-13 19:06        --------        d-----w-        c:\programme\Tenable

2010-09-24 07:40 . 2010-07-10 18:22        --------        d-----w-        c:\programme\NCsoft

2010-09-24 07:39 . 2010-08-15 22:13        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Napster

2010-09-24 07:38 . 2010-06-04 22:53        --------        d-----w-        c:\programme\MTA San Andreas

2010-09-24 07:34 . 2010-07-17 05:09        --------        d-----w-        c:\programme\Hex-Editor MX

2010-09-24 07:33 . 2010-07-02 19:10        --------        d-----w-        c:\programme\Fx Scanner

2010-09-24 07:32 . 2010-07-25 10:20        --------        d-----w-        c:\programme\FreeCommander

2010-09-24 07:26 . 2010-08-29 14:29        --------        d-----w-        c:\programme\Cain

2010-09-23 22:53 . 2010-08-02 17:45        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Trillian

2010-09-23 10:34 . 2010-09-23 10:34        4093792        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgui.exe

2010-09-23 10:34 . 2010-09-23 10:34        3586912        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\setup.exe

2010-09-23 10:34 . 2010-09-23 10:34        620896        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgnsx.exe

2010-09-23 10:34 . 2010-09-23 10:34        1619296        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgssie.dll

2010-09-23 10:34 . 2010-09-23 10:34        1377632        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgssff.dll

2010-09-23 10:34 . 2010-09-23 10:34        942432        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgcfgx.dll

2010-09-23 10:34 . 2010-09-23 10:34        598368        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgsrmx.dll

2010-09-23 10:34 . 2010-09-23 10:34        4371296        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgcorex.dll

2010-09-23 10:34 . 2010-09-23 10:34        300896        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgchclx.dll

2010-09-23 10:33 . 2010-09-23 10:33        1690952        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\avg9\update\backup\avgupd.dll

2010-09-21 14:16 . 2010-07-26 20:32        218960        ----a-w-        c:\dokumente und einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\FontCache3.0.0.0.dat

2010-09-21 13:50 . 2010-06-01 04:42        664        ----a-w-        c:\winxp\system32\d3d9caps.dat

2010-09-21 12:09 . 2010-05-24 10:32        68000        ----a-w-        c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT

2010-09-21 11:15 . 2010-08-28 19:48        --------        d---a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP

2010-09-20 08:14 . 2010-09-20 08:14        7680        ----a-w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Trillian\languages\de\talk.dll

2010-09-20 08:14 . 2010-09-20 08:14        7168        ----a-w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Trillian\languages\de\events.dll

2010-09-20 08:14 . 2010-09-20 08:14        5120        ----a-w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Trillian\languages\de\trillian.dll

2010-09-20 08:14 . 2010-09-20 08:14        2048        ----a-w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Trillian\languages\de\toolkit.dll

2010-09-20 08:14 . 2010-09-20 08:14        10240        ----a-w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Trillian\languages\de\buddy.dll

2010-09-19 10:46 . 2010-06-04 21:51        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Skype

2010-09-18 21:09 . 2010-09-18 21:09        372736        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\m\mpv_threereelslottour.56771e0804a357b382c833fa1cc8338b.dll

2010-09-18 21:09 . 2010-09-18 21:09        212992        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\m\mpv_type_3reelnormal1_2.a6fd3910e9b23c299d2e5b44aaea7530.dll

2010-09-18 21:08 . 2010-09-18 21:08        290922        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\m\mpvcommunityslotsplugin.3d81e7021617be93688755b2da22dceb.dll

2010-09-18 21:08 . 2010-09-18 21:08        262252        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\w\wheelofwealthbonusplugin.92047ad5bdc826b2122a71a16afa227d.dll

2010-09-18 21:08 . 2010-09-18 21:08        282699        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\s\slotxxx.d425f74ccb6f6455be09ebe426c90c75.dll

2010-09-18 21:08 . 2010-09-18 21:08        110674        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\s\slotdialogs.af11d23675e8fe4926883303d283fbd7.dll

2010-09-18 21:08 . 2010-09-18 21:08        98390        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\s\singleobjects.8ee24693860e1ddd1e27939e8eb192aa.dll

2010-09-18 21:07 . 2010-09-18 21:07        233744        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\s\simplepickuntilbonus_temp.b6b7e588aedb05fa062fb8447406bca9.dll

2010-09-18 21:07 . 2010-09-18 21:07        495888        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\s\simplepickuntilbonus.aa7eb4e3b4774e5cad0d4f8562ca860d.dll

2010-09-18 21:07 . 2010-09-18 21:07        561424        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\s\simplepickuntilbonus_tggg.ca9a61a09a35dc0843cc68f532694746.dll

2010-09-18 21:07 . 2010-09-18 21:07        1056768        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\s\simplepickuntilbonus_flightzone.1f65e9ffaab494fa7dea6b149ec7a671.dll

2010-09-18 21:06 . 2010-09-18 21:06        110864        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\type_3reelnormal1_2.6d58a1bcaf1d9165fa0b77fa9598b623.dll

2010-09-18 21:06 . 2010-09-18 21:06        94208        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\l\lua51host.1b8962f1114286ac91f3ce67ee9654e7.dll

2010-09-18 21:06 . 2010-09-18 21:06        225280        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\m\myslot.14d73c530d6c095843c7fbfb86364c4e.dll

2010-09-18 21:05 . 2010-09-18 21:05        262416        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\transition_temp.c6aaf42b66fa6688c8ea18a671984287.dll

2010-09-18 21:05 . 2010-09-18 21:05        655360        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\transition_flightzone.2d8aa10da872f1ac4a34a2122bf3c4b2.dll

2010-09-18 21:05 . 2010-09-18 21:05        266512        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\transition_tggg.399218aff849d2e187d4554dd62a73b6.dll

2010-09-18 21:05 . 2010-09-18 21:05        679936        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\transition_septgao_09.04686bb06cfe59ecb3f271eb95218422.dll

2010-09-18 21:05 . 2010-09-18 21:05        254224        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\transition.26c3e2ce55c7cca8b63e5e8d7b4627e4.dll

2010-09-18 21:05 . 2010-09-18 21:05        679936        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\transition_wealthspa.5a3f4e96415d8b3050681cdd275f3d88.dll

2010-09-18 21:05 . 2010-09-18 21:05        679936        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\MGS\cache\t\transition_octgao_09.7768fe95f9efff3962c913196fe05f6a.dll

2010-09-18 20:09 . 2010-05-21 19:55        75064        ----a-w-        c:\winxp\system32\PnkBstrA.exe

2010-09-18 12:01 . 2010-07-06 13:51        --------        d-----w-        c:\programme\MSECache

2010-09-18 11:38 . 2010-06-04 21:51        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\skypePM

2010-09-17 18:42 . 2010-07-04 23:51        453944        ----a-w-        c:\dokumente und einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-S-1-5-21-1177238915-1364589140-682003330-1003-0.dat

2010-09-17 18:42 . 2010-07-04 23:51        89902        ----a-w-        c:\dokumente und einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\WPFFontCache_v0400-System.dat

2010-09-13 18:55 . 2010-07-17 17:00        --------        d-----w-        c:\programme\Google

2010-09-03 11:35 . 2010-08-15 22:18        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Roxio

2010-09-01 20:19 . 2010-09-01 20:19        46852        ----a-w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Blizzard Entertainment\Battle.net\Cache\Download\Scan.dll

2010-08-29 17:13 . 2010-08-29 16:49        --------        d-----w-        c:\programme\PokerStars.NET

2010-08-29 14:25 . 2010-08-25 20:47        --------        d-----w-        c:\programme\EttercapNG

2010-08-29 14:22 . 2010-05-22 04:45        --------        d-----w-        c:\programme\WinPcap

2010-08-28 20:54 . 2010-08-28 20:48        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\ICQ

2010-08-28 13:32 . 2010-08-28 13:32        --------        d-----w-        c:\programme\StarCraft II

2010-08-28 00:05 . 2010-07-16 22:27        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\FileZilla

2010-08-27 21:40 . 2010-08-27 21:40        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Miranda

2010-08-27 21:14 . 2010-08-27 21:14        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\TightVNC

2010-08-27 21:14 . 2010-08-27 21:14        --------        d-----w-        c:\programme\TightVNC

2010-08-27 16:55 . 2010-08-27 16:54        --------        d-----r-        c:\programme\Skype

2010-08-27 16:54 . 2010-08-27 16:54        --------        d-----w-        c:\programme\Gemeinsame Dateien\Skype

2010-08-27 16:54 . 2010-06-04 21:51        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Skype

2010-08-23 19:15 . 2010-06-18 19:39        --------        d-----w-        c:\programme\TeamSpeak 3 Client

2010-08-22 09:19 . 2010-07-04 14:45        --------        d-----w-        c:\programme\Gemeinsame Dateien\Blizzard Entertainment

2010-08-21 21:38 . 2010-08-21 21:38        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\IObit

2010-08-21 15:46 . 2010-08-15 22:29        921632        ----a-w-        C:\SPC500NC.DAT

2010-08-21 07:40 . 2010-07-04 18:04        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Blizzard Entertainment

2010-08-20 21:10 . 2010-08-20 21:09        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Beerowser

2010-08-20 19:55 . 2010-08-20 19:55        0        ----a-w-        c:\winxp\nsreg.dat

2010-08-17 13:17 . 2008-04-14 11:00        58880        ----a-w-        c:\winxp\system32\spoolsv.exe

2010-08-17 10:55 . 2010-06-02 18:02        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\PC Suite

2010-08-15 14:28 . 2010-08-15 07:34        --------        d-----w-        c:\programme\Camfrog

2010-08-15 07:36 . 2010-08-15 07:35        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Camfrog

2010-08-14 10:43 . 2010-08-14 10:43        --------        d-----w-        c:\programme\CDBurnerXP

2010-08-12 09:31 . 2010-06-13 06:50        --------        d-----w-        c:\programme\7-Zip

2010-08-08 21:19 . 2010-08-08 21:19        --------        d-----w-        c:\dokumente und einstellungen\All Users\Anwendungsdaten\Nokia

2010-08-08 20:37 . 2010-08-08 20:37        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Nokia Ovi Suite

2010-08-08 20:37 . 2010-06-02 18:00        --------        d-----w-        c:\dokumente und einstellungen\Tom\Anwendungsdaten\Nokia

2010-08-06 20:16 . 2010-08-06 20:16        0        ---ha-w-        c:\winxp\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf

.
 

------- Sigcheck -------
 

[7] 2009-08-03 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\winxp\system32\dllcache\tcpip.sys

[-] 2009-08-03 . A5BC817BB84DCB9E71719FF868144124 . 361600 . . [5.1.2600.5625] . . c:\winxp\system32\drivers\tcpip.sys
 

[-] 2008-04-14 . 02DB7C8A8EF9506627045C05164CAEF1 . 513024 . . [5.1.2600.5512] . . c:\winxp\system32\winlogon.exe
 

[-] 2008-04-14 . 0D1121522974016C3B88B231FBDDC4E7 . 1036800 . . [6.00.2900.5512] . . c:\winxp\explorer.exe
 

[-] 2010-05-22 04:24 . 18747FCB2508EEEC79415B32F63F3654 . 36864 . . [------] . . c:\winxp\system32\ctfmon.exe

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4
 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"DAEMON Tools Lite"="c:\programme\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]

"uTorrent"="c:\programme\uTorrent\uTorrent.exe" [2010-09-27 328056]
 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"="c:\winxp\system32\NvCpl.dll" [2010-04-03 13670504]

"Google Desktop Search"="c:\programme\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-24 30192]

"AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-09-03 2065760]

"RTHDCPL"="RTHDCPL.EXE" [2009-06-12 17887232]
 

c:\dokumente und einstellungen\Tom\Startmen\Programme\Autostart\

Mousometer.lnk - c:\dokumente und einstellungen\Tom\Eigene Dateien\Downloads\mousometer.exe [2010-8-3 140288]

Secunia PSI.lnk - c:\programme\Secunia\PSI\psi.exe [2010-5-28 911920]
 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]

"113.105.146.25,255.255.255.255,78.34.231.158,1"=""

"121.14.158.153,255.255.255.255,78.34.231.158,1"=""

"121.14.158.155,255.255.255.255,78.34.231.158,1"=""

"122.225.37.116,255.255.255.255,78.34.231.158,1"=""

"122.225.37.117,255.255.255.255,78.34.231.158,1"=""

"122.225.37.118,255.255.255.255,78.34.231.158,1"=""

"122.226.213.145,255.255.255.255,78.34.231.158,1"=""

"122.227.15.59,255.255.255.255,78.34.231.158,1"=""

"122.227.15.60,255.255.255.255,78.34.231.158,1"=""

"122.227.15.61,255.255.255.255,78.34.231.158,1"=""

"122.228.199.130,255.255.255.255,78.34.231.158,1"=""

"122.228.199.131,255.255.255.255,78.34.231.158,1"=""

"122.228.199.132,255.255.255.255,78.34.231.158,1"=""

"122.228.199.133,255.255.255.255,78.34.231.158,1"=""

"122.228.199.134,255.255.255.255,78.34.231.158,1"=""

"122.228.199.135,255.255.255.255,78.34.231.158,1"=""

"122.228.199.136,255.255.255.255,78.34.231.158,1"=""

"122.228.199.68,255.255.255.255,78.34.231.158,1"=""

"202.102.110.205,255.255.255.255,78.34.231.158,1"=""

"218.16.227.66,255.255.255.255,78.34.231.158,1"=""

"218.21.68.70,255.255.255.255,78.34.231.158,1"=""

"218.77.10.66,255.255.255.255,78.34.231.158,1"=""

"218.77.10.67,255.255.255.255,78.34.231.158,1"=""

"218.77.10.68,255.255.255.255,78.34.231.158,1"=""

"218.77.10.69,255.255.255.255,78.34.231.158,1"=""

"218.77.10.70,255.255.255.255,78.34.231.158,1"=""

"218.77.10.71,255.255.255.255,78.34.231.158,1"=""

"218.77.10.73,255.255.255.255,78.34.231.158,1"=""

"220.170.193.68,255.255.255.255,78.34.231.158,1"=""

"220.170.193.69,255.255.255.255,78.34.231.158,1"=""

"220.170.193.70,255.255.255.255,78.34.231.158,1"=""

"220.170.193.71,255.255.255.255,78.34.231.158,1"=""

"220.170.193.72,255.255.255.255,78.34.231.158,1"=""

"220.170.193.73,255.255.255.255,78.34.231.158,1"=""

"220.170.193.74,255.255.255.255,78.34.231.158,1"=""

"222.186.16.181,255.255.255.255,78.34.231.158,1"=""

"222.208.168.4,255.255.255.255,78.34.231.158,1"=""

"222.208.168.5,255.255.255.255,78.34.231.158,1"=""

"58.221.42.83,255.255.255.255,78.34.231.158,1"=""

"58.221.42.84,255.255.255.255,78.34.231.158,1"=""

"58.221.42.85,255.255.255.255,78.34.231.158,1"=""

"59.51.114.16,255.255.255.255,78.34.231.158,1"=""

"59.53.87.101,255.255.255.255,78.34.231.158,1"=""

"59.53.87.102,255.255.255.255,78.34.231.158,1"=""

"59.53.87.106,255.255.255.255,78.34.231.158,1"=""

"59.53.87.107,255.255.255.255,78.34.231.158,1"=""

"59.53.87.76,255.255.255.255,78.34.231.158,1"=""

"59.53.87.77,255.255.255.255,78.34.231.158,1"=""

"59.53.87.78,255.255.255.255,78.34.231.158,1"=""

"59.53.87.79,255.255.255.255,78.34.231.158,1"=""

"59.53.87.80,255.255.255.255,78.34.231.158,1"=""

"60.191.124.236,255.255.255.255,78.34.231.158,1"=""

"60.191.223.94,255.255.255.255,78.34.231.158,1"=""

"60.191.223.96,255.255.255.255,78.34.231.158,1"=""

"60.191.223.97,255.255.255.255,78.34.231.158,1"=""

"61.147.109.147,255.255.255.255,78.34.231.158,1"=""

"61.147.110.235,255.255.255.255,78.34.231.158,1"=""

"61.147.110.237,255.255.255.255,78.34.231.158,1"=""

"61.147.110.238,255.255.255.255,78.34.231.158,1"=""

"61.160.210.164,255.255.255.255,78.34.231.158,1"=""

"61.160.210.165,255.255.255.255,78.34.231.158,1"=""

"61.160.210.166,255.255.255.255,78.34.231.158,1"=""

"61.160.210.167,255.255.255.255,78.34.231.158,1"=""

"61.160.210.168,255.255.255.255,78.34.231.158,1"=""

"61.160.210.169,255.255.255.255,78.34.231.158,1"=""

"61.160.210.170,255.255.255.255,78.34.231.158,1"=""

"61.164.110.113,255.255.255.255,78.34.231.158,1"=""

"61.183.44.240,255.255.255.255,78.34.231.158,1"=""

"61.183.62.178,255.255.255.255,78.34.231.158,1"=""

"61.183.62.179,255.255.255.255,78.34.231.158,1"=""

"61.183.62.186,255.255.255.255,78.34.231.158,1"=""

"61.183.62.187,255.255.255.255,78.34.231.158,1"=""

"67.215.65.132,255.255.255.255,78.34.231.158,1"=""

"113.105.146.25,255.255.255.255,78.34.229.9,1"=""

"121.14.158.153,255.255.255.255,78.34.229.9,1"=""

"121.14.158.155,255.255.255.255,78.34.229.9,1"=""

"122.225.37.116,255.255.255.255,78.34.229.9,1"=""

"122.225.37.117,255.255.255.255,78.34.229.9,1"=""

"122.225.37.118,255.255.255.255,78.34.229.9,1"=""

"122.226.213.145,255.255.255.255,78.34.229.9,1"=""

"122.227.15.59,255.255.255.255,78.34.229.9,1"=""

"122.227.15.60,255.255.255.255,78.34.229.9,1"=""

"122.227.15.61,255.255.255.255,78.34.229.9,1"=""

"122.228.199.130,255.255.255.255,78.34.229.9,1"=""

"122.228.199.131,255.255.255.255,78.34.229.9,1"=""

"122.228.199.132,255.255.255.255,78.34.229.9,1"=""

"122.228.199.133,255.255.255.255,78.34.229.9,1"=""

"122.228.199.134,255.255.255.255,78.34.229.9,1"=""

"122.228.199.135,255.255.255.255,78.34.229.9,1"=""

"122.228.199.136,255.255.255.255,78.34.229.9,1"=""

"122.228.199.68,255.255.255.255,78.34.229.9,1"=""

"202.102.110.205,255.255.255.255,78.34.229.9,1"=""

"218.16.227.66,255.255.255.255,78.34.229.9,1"=""

"218.21.68.70,255.255.255.255,78.34.229.9,1"=""

"218.77.10.66,255.255.255.255,78.34.229.9,1"=""

"218.77.10.67,255.255.255.255,78.34.229.9,1"=""

"218.77.10.68,255.255.255.255,78.34.229.9,1"=""

"218.77.10.69,255.255.255.255,78.34.229.9,1"=""

"218.77.10.70,255.255.255.255,78.34.229.9,1"=""

"218.77.10.71,255.255.255.255,78.34.229.9,1"=""

"218.77.10.73,255.255.255.255,78.34.229.9,1"=""

"220.170.193.68,255.255.255.255,78.34.229.9,1"=""

"220.170.193.69,255.255.255.255,78.34.229.9,1"=""

"220.170.193.70,255.255.255.255,78.34.229.9,1"=""

"220.170.193.71,255.255.255.255,78.34.229.9,1"=""

"220.170.193.72,255.255.255.255,78.34.229.9,1"=""

"220.170.193.73,255.255.255.255,78.34.229.9,1"=""

"220.170.193.74,255.255.255.255,78.34.229.9,1"=""

"222.186.16.181,255.255.255.255,78.34.229.9,1"=""

"222.208.168.4,255.255.255.255,78.34.229.9,1"=""

"222.208.168.5,255.255.255.255,78.34.229.9,1"=""

"58.221.42.83,255.255.255.255,78.34.229.9,1"=""

"58.221.42.84,255.255.255.255,78.34.229.9,1"=""

"58.221.42.85,255.255.255.255,78.34.229.9,1"=""

"59.51.114.16,255.255.255.255,78.34.229.9,1"=""

"59.53.87.101,255.255.255.255,78.34.229.9,1"=""

"59.53.87.102,255.255.255.255,78.34.229.9,1"=""

"59.53.87.106,255.255.255.255,78.34.229.9,1"=""

"59.53.87.107,255.255.255.255,78.34.229.9,1"=""

"59.53.87.76,255.255.255.255,78.34.229.9,1"=""

"59.53.87.77,255.255.255.255,78.34.229.9,1"=""

"59.53.87.78,255.255.255.255,78.34.229.9,1"=""

"59.53.87.79,255.255.255.255,78.34.229.9,1"=""

"59.53.87.80,255.255.255.255,78.34.229.9,1"=""

"60.191.124.236,255.255.255.255,78.34.229.9,1"=""

"60.191.223.94,255.255.255.255,78.34.229.9,1"=""

"60.191.223.96,255.255.255.255,78.34.229.9,1"=""

"60.191.223.97,255.255.255.255,78.34.229.9,1"=""

"61.147.109.147,255.255.255.255,78.34.229.9,1"=""

"61.147.110.235,255.255.255.255,78.34.229.9,1"=""

"61.147.110.237,255.255.255.255,78.34.229.9,1"=""

"61.147.110.238,255.255.255.255,78.34.229.9,1"=""

"61.160.210.164,255.255.255.255,78.34.229.9,1"=""

"61.160.210.165,255.255.255.255,78.34.229.9,1"=""

"61.160.210.166,255.255.255.255,78.34.229.9,1"=""

"61.160.210.167,255.255.255.255,78.34.229.9,1"=""

"61.160.210.168,255.255.255.255,78.34.229.9,1"=""

"61.160.210.169,255.255.255.255,78.34.229.9,1"=""

"61.160.210.170,255.255.255.255,78.34.229.9,1"=""

"61.164.110.113,255.255.255.255,78.34.229.9,1"=""

"61.183.44.240,255.255.255.255,78.34.229.9,1"=""

"61.183.62.178,255.255.255.255,78.34.229.9,1"=""

"61.183.62.179,255.255.255.255,78.34.229.9,1"=""

"61.183.62.186,255.255.255.255,78.34.229.9,1"=""

"61.183.62.187,255.255.255.255,78.34.229.9,1"=""

"67.215.65.132,255.255.255.255,78.34.229.9,1"=""

"113.105.146.25,255.255.255.255,78.34.230.67,1"=""

"121.14.158.153,255.255.255.255,78.34.230.67,1"=""

"121.14.158.155,255.255.255.255,78.34.230.67,1"=""

"122.225.37.116,255.255.255.255,78.34.230.67,1"=""

"122.225.37.117,255.255.255.255,78.34.230.67,1"=""

"122.225.37.118,255.255.255.255,78.34.230.67,1"=""

"122.226.213.145,255.255.255.255,78.34.230.67,1"=""

"122.227.15.59,255.255.255.255,78.34.230.67,1"=""

"122.227.15.60,255.255.255.255,78.34.230.67,1"=""

"122.227.15.61,255.255.255.255,78.34.230.67,1"=""

"122.228.199.130,255.255.255.255,78.34.230.67,1"=""

"122.228.199.131,255.255.255.255,78.34.230.67,1"=""

"122.228.199.132,255.255.255.255,78.34.230.67,1"=""

"122.228.199.133,255.255.255.255,78.34.230.67,1"=""

"122.228.199.134,255.255.255.255,78.34.230.67,1"=""

"122.228.199.135,255.255.255.255,78.34.230.67,1"=""

"122.228.199.136,255.255.255.255,78.34.230.67,1"=""

"122.228.199.68,255.255.255.255,78.34.230.67,1"=""

"202.102.110.205,255.255.255.255,78.34.230.67,1"=""

"218.16.227.66,255.255.255.255,78.34.230.67,1"=""

"218.21.68.70,255.255.255.255,78.34.230.67,1"=""

"218.77.10.66,255.255.255.255,78.34.230.67,1"=""

"218.77.10.67,255.255.255.255,78.34.230.67,1"=""

"218.77.10.68,255.255.255.255,78.34.230.67,1"=""

"218.77.10.69,255.255.255.255,78.34.230.67,1"=""

"218.77.10.70,255.255.255.255,78.34.230.67,1"=""

"218.77.10.71,255.255.255.255,78.34.230.67,1"=""

"218.77.10.73,255.255.255.255,78.34.230.67,1"=""

"220.170.193.68,255.255.255.255,78.34.230.67,1"=""

"220.170.193.69,255.255.255.255,78.34.230.67,1"=""

"220.170.193.70,255.255.255.255,78.34.230.67,1"=""

"220.170.193.71,255.255.255.255,78.34.230.67,1"=""

"220.170.193.72,255.255.255.255,78.34.230.67,1"=""

"220.170.193.73,255.255.255.255,78.34.230.67,1"=""

"220.170.193.74,255.255.255.255,78.34.230.67,1"=""

"222.186.16.181,255.255.255.255,78.34.230.67,1"=""

"222.208.168.4,255.255.255.255,78.34.230.67,1"=""

"222.208.168.5,255.255.255.255,78.34.230.67,1"=""

"58.221.42.83,255.255.255.255,78.34.230.67,1"=""

"58.221.42.84,255.255.255.255,78.34.230.67,1"=""

"58.221.42.85,255.255.255.255,78.34.230.67,1"=""

"59.51.114.16,255.255.255.255,78.34.230.67,1"=""

"59.53.87.101,255.255.255.255,78.34.230.67,1"=""

"59.53.87.102,255.255.255.255,78.34.230.67,1"=""

"59.53.87.106,255.255.255.255,78.34.230.67,1"=""

"59.53.87.107,255.255.255.255,78.34.230.67,1"=""

"59.53.87.76,255.255.255.255,78.34.230.67,1"=""

"59.53.87.77,255.255.255.255,78.34.230.67,1"=""

"59.53.87.78,255.255.255.255,78.34.230.67,1"=""

"59.53.87.79,255.255.255.255,78.34.230.67,1"=""

"59.53.87.80,255.255.255.255,78.34.230.67,1"=""

"60.191.124.236,255.255.255.255,78.34.230.67,1"=""

"60.191.223.94,255.255.255.255,78.34.230.67,1"=""

"60.191.223.96,255.255.255.255,78.34.230.67,1"=""

"60.191.223.97,255.255.255.255,78.34.230.67,1"=""

"61.147.109.147,255.255.255.255,78.34.230.67,1"=""

"61.147.110.235,255.255.255.255,78.34.230.67,1"=""

"61.147.110.237,255.255.255.255,78.34.230.67,1"=""

"61.147.110.238,255.255.255.255,78.34.230.67,1"=""

"61.160.210.164,255.255.255.255,78.34.230.67,1"=""

"61.160.210.165,255.255.255.255,78.34.230.67,1"=""

"61.160.210.166,255.255.255.255,78.34.230.67,1"=""

"61.160.210.167,255.255.255.255,78.34.230.67,1"=""

"61.160.210.168,255.255.255.255,78.34.230.67,1"=""

"61.160.210.169,255.255.255.255,78.34.230.67,1"=""

"61.160.210.170,255.255.255.255,78.34.230.67,1"=""

"61.164.110.113,255.255.255.255,78.34.230.67,1"=""

"61.183.44.240,255.255.255.255,78.34.230.67,1"=""

"61.183.62.178,255.255.255.255,78.34.230.67,1"=""

"61.183.62.179,255.255.255.255,78.34.230.67,1"=""

"61.183.62.186,255.255.255.255,78.34.230.67,1"=""

"61.183.62.187,255.255.255.255,78.34.230.67,1"=""

"67.215.65.132,255.255.255.255,78.34.230.67,1"=""

"113.105.146.25,255.255.255.255,78.34.230.88,1"=""

"121.14.158.153,255.255.255.255,78.34.230.88,1"=""

"121.14.158.155,255.255.255.255,78.34.230.88,1"=""

"122.225.37.116,255.255.255.255,78.34.230.88,1"=""

"122.225.37.117,255.255.255.255,78.34.230.88,1"=""

"122.225.37.118,255.255.255.255,78.34.230.88,1"=""

"122.226.213.145,255.255.255.255,78.34.230.88,1"=""

"122.227.15.59,255.255.255.255,78.34.230.88,1"=""

"122.227.15.60,255.255.255.255,78.34.230.88,1"=""

"122.227.15.61,255.255.255.255,78.34.230.88,1"=""

"122.228.199.130,255.255.255.255,78.34.230.88,1"=""

"122.228.199.131,255.255.255.255,78.34.230.88,1"=""

"122.228.199.132,255.255.255.255,78.34.230.88,1"=""

"122.228.199.133,255.255.255.255,78.34.230.88,1"=""

"122.228.199.134,255.255.255.255,78.34.230.88,1"=""

"122.228.199.135,255.255.255.255,78.34.230.88,1"=""

"122.228.199.136,255.255.255.255,78.34.230.88,1"=""

"122.228.199.68,255.255.255.255,78.34.230.88,1"=""

"202.102.110.205,255.255.255.255,78.34.230.88,1"=""

"218.16.227.66,255.255.255.255,78.34.230.88,1"=""

"218.21.68.70,255.255.255.255,78.34.230.88,1"=""

"218.77.10.66,255.255.255.255,78.34.230.88,1"=""

"218.77.10.67,255.255.255.255,78.34.230.88,1"=""

"218.77.10.68,255.255.255.255,78.34.230.88,1"=""

"218.77.10.69,255.255.255.255,78.34.230.88,1"=""

"218.77.10.70,255.255.255.255,78.34.230.88,1"=""

"218.77.10.71,255.255.255.255,78.34.230.88,1"=""

"218.77.10.73,255.255.255.255,78.34.230.88,1"=""

"220.170.193.68,255.255.255.255,78.34.230.88,1"=""

"220.170.193.69,255.255.255.255,78.34.230.88,1"=""

"220.170.193.70,255.255.255.255,78.34.230.88,1"=""

"220.170.193.71,255.255.255.255,78.34.230.88,1"=""

"220.170.193.72,255.255.255.255,78.34.230.88,1"=""

"220.170.193.73,255.255.255.255,78.34.230.88,1"=""

"220.170.193.74,255.255.255.255,78.34.230.88,1"=""

"222.186.16.181,255.255.255.255,78.34.230.88,1"=""

"222.208.168.4,255.255.255.255,78.34.230.88,1"=""

"222.208.168.5,255.255.255.255,78.34.230.88,1"=""

"58.221.42.83,255.255.255.255,78.34.230.88,1"=""

"58.221.42.84,255.255.255.255,78.34.230.88,1"=""

"58.221.42.85,255.255.255.255,78.34.230.88,1"=""

"59.51.114.16,255.255.255.255,78.34.230.88,1"=""

"59.53.87.101,255.255.255.255,78.34.230.88,1"=""

"59.53.87.102,255.255.255.255,78.34.230.88,1"=""

"59.53.87.106,255.255.255.255,78.34.230.88,1"=""

"59.53.87.107,255.255.255.255,78.34.230.88,1"=""

"59.53.87.76,255.255.255.255,78.34.230.88,1"=""

"59.53.87.77,255.255.255.255,78.34.230.88,1"=""

"59.53.87.78,255.255.255.255,78.34.230.88,1"=""

"59.53.87.79,255.255.255.255,78.34.230.88,1"=""

"59.53.87.80,255.255.255.255,78.34.230.88,1"=""

"60.191.124.236,255.255.255.255,78.34.230.88,1"=""

"60.191.223.94,255.255.255.255,78.34.230.88,1"=""

"60.191.223.96,255.255.255.255,78.34.230.88,1"=""

"60.191.223.97,255.255.255.255,78.34.230.88,1"=""

"61.147.109.147,255.255.255.255,78.34.230.88,1"=""

"61.147.110.235,255.255.255.255,78.34.230.88,1"=""

"61.147.110.237,255.255.255.255,78.34.230.88,1"=""

"61.147.110.238,255.255.255.255,78.34.230.88,1"=""

"61.160.210.164,255.255.255.255,78.34.230.88,1"=""

"61.160.210.165,255.255.255.255,78.34.230.88,1"=""

"61.160.210.166,255.255.255.255,78.34.230.88,1"=""

"61.160.210.167,255.255.255.255,78.34.230.88,1"=""

"61.160.210.168,255.255.255.255,78.34.230.88,1"=""

"61.160.210.169,255.255.255.255,78.34.230.88,1"=""

"61.160.210.170,255.255.255.255,78.34.230.88,1"=""

"61.164.110.113,255.255.255.255,78.34.230.88,1"=""

"61.183.44.240,255.255.255.255,78.34.230.88,1"=""

"61.183.62.178,255.255.255.255,78.34.230.88,1"=""

"61.183.62.179,255.255.255.255,78.34.230.88,1"=""

"61.183.62.186,255.255.255.255,78.34.230.88,1"=""

"61.183.62.187,255.255.255.255,78.34.230.88,1"=""

"67.215.65.132,255.255.255.255,78.34.230.88,1"=""

"113.105.146.25,255.255.255.255,192.168.100.21,1"=""

"121.14.158.153,255.255.255.255,192.168.100.21,1"=""

"121.14.158.155,255.255.255.255,192.168.100.21,1"=""

"122.225.37.116,255.255.255.255,192.168.100.21,1"=""

"122.225.37.117,255.255.255.255,192.168.100.21,1"=""

"122.225.37.118,255.255.255.255,192.168.100.21,1"=""

"122.226.213.145,255.255.255.255,192.168.100.21,1"=""

"122.227.15.59,255.255.255.255,192.168.100.21,1"=""

"122.227.15.60,255.255.255.255,192.168.100.21,1"=""

"122.227.15.61,255.255.255.255,192.168.100.21,1"=""

"122.228.199.130,255.255.255.255,192.168.100.21,1"=""

"122.228.199.131,255.255.255.255,192.168.100.21,1"=""

"122.228.199.132,255.255.255.255,192.168.100.21,1"=""

"122.228.199.133,255.255.255.255,192.168.100.21,1"=""

"122.228.199.134,255.255.255.255,192.168.100.21,1"=""

"122.228.199.135,255.255.255.255,192.168.100.21,1"=""

"122.228.199.136,255.255.255.255,192.168.100.21,1"=""

"122.228.199.68,255.255.255.255,192.168.100.21,1"=""

"202.102.110.205,255.255.255.255,192.168.100.21,1"=""

"218.16.227.66,255.255.255.255,192.168.100.21,1"=""

"218.21.68.70,255.255.255.255,192.168.100.21,1"=""

"218.77.10.66,255.255.255.255,192.168.100.21,1"=""

"218.77.10.67,255.255.255.255,192.168.100.21,1"=""

"218.77.10.68,255.255.255.255,192.168.100.21,1"=""

"218.77.10.69,255.255.255.255,192.168.100.21,1"=""

"218.77.10.70,255.255.255.255,192.168.100.21,1"=""

"218.77.10.71,255.255.255.255,192.168.100.21,1"=""

"218.77.10.73,255.255.255.255,192.168.100.21,1"=""

"220.170.193.68,255.255.255.255,192.168.100.21,1"=""

"220.170.193.69,255.255.255.255,192.168.100.21,1"=""

"220.170.193.70,255.255.255.255,192.168.100.21,1"=""

"220.170.193.71,255.255.255.255,192.168.100.21,1"=""

"220.170.193.72,255.255.255.255,192.168.100.21,1"=""

"220.170.193.73,255.255.255.255,192.168.100.21,1"=""

"220.170.193.74,255.255.255.255,192.168.100.21,1"=""

"222.186.16.181,255.255.255.255,192.168.100.21,1"=""

"222.208.168.4,255.255.255.255,192.168.100.21,1"=""

"222.208.168.5,255.255.255.255,192.168.100.21,1"=""

"58.221.42.83,255.255.255.255,192.168.100.21,1"=""

"58.221.42.84,255.255.255.255,192.168.100.21,1"=""

"58.221.42.85,255.255.255.255,192.168.100.21,1"=""

"59.51.114.16,255.255.255.255,192.168.100.21,1"=""

"59.53.87.101,255.255.255.255,192.168.100.21,1"=""

"59.53.87.102,255.255.255.255,192.168.100.21,1"=""

"59.53.87.106,255.255.255.255,192.168.100.21,1"=""

"59.53.87.107,255.255.255.255,192.168.100.21,1"=""

"59.53.87.76,255.255.255.255,192.168.100.21,1"=""

"59.53.87.77,255.255.255.255,192.168.100.21,1"=""

"59.53.87.78,255.255.255.255,192.168.100.21,1"=""

"59.53.87.79,255.255.255.255,192.168.100.21,1"=""

"59.53.87.80,255.255.255.255,192.168.100.21,1"=""

"60.191.124.236,255.255.255.255,192.168.100.21,1"=""

"60.191.223.94,255.255.255.255,192.168.100.21,1"=""

"60.191.223.96,255.255.255.255,192.168.100.21,1"=""

"60.191.223.97,255.255.255.255,192.168.100.21,1"=""

"61.147.109.147,255.255.255.255,192.168.100.21,1"=""

"61.147.110.235,255.255.255.255,192.168.100.21,1"=""

"61.147.110.237,255.255.255.255,192.168.100.21,1"=""

"61.147.110.238,255.255.255.255,192.168.100.21,1"=""

"61.160.210.164,255.255.255.255,192.168.100.21,1"=""

"61.160.210.165,255.255.255.255,192.168.100.21,1"=""

"61.160.210.166,255.255.255.255,192.168.100.21,1"=""

"61.160.210.167,255.255.255.255,192.168.100.21,1"=""

"61.160.210.168,255.255.255.255,192.168.100.21,1"=""

"61.160.210.169,255.255.255.255,192.168.100.21,1"=""

"61.160.210.170,255.255.255.255,192.168.100.21,1"=""

"61.164.110.113,255.255.255.255,192.168.100.21,1"=""

"61.183.44.240,255.255.255.255,192.168.100.21,1"=""

"61.183.62.178,255.255.255.255,192.168.100.21,1"=""

"61.183.62.179,255.255.255.255,192.168.100.21,1"=""

"61.183.62.186,255.255.255.255,192.168.100.21,1"=""

"61.183.62.187,255.255.255.255,192.168.100.21,1"=""

"67.215.65.132,255.255.255.255,192.168.100.21,1"=""

"113.105.146.25,255.255.255.255,78.34.229.41,1"=""

"121.14.158.153,255.255.255.255,78.34.229.41,1"=""

"121.14.158.155,255.255.255.255,78.34.229.41,1"=""

"122.225.37.116,255.255.255.255,78.34.229.41,1"=""

"122.225.37.117,255.255.255.255,78.34.229.41,1"=""

"122.225.37.118,255.255.255.255,78.34.229.41,1"=""

"122.226.213.145,255.255.255.255,78.34.229.41,1"=""

"122.227.15.59,255.255.255.255,78.34.229.41,1"=""

"122.227.15.60,255.255.255.255,78.34.229.41,1"=""

"122.227.15.61,255.255.255.255,78.34.229.41,1"=""

"122.228.199.130,255.255.255.255,78.34.229.41,1"=""

"122.228.199.131,255.255.255.255,78.34.229.41,1"=""

"122.228.199.132,255.255.255.255,78.34.229.41,1"=""

"122.228.199.133,255.255.255.255,78.34.229.41,1"=""

"122.228.199.134,255.255.255.255,78.34.229.41,1"=""

"122.228.199.135,255.255.255.255,78.34.229.41,1"=""

"122.228.199.136,255.255.255.255,78.34.229.41,1"=""

"122.228.199.68,255.255.255.255,78.34.229.41,1"=""

"202.102.110.205,255.255.255.255,78.34.229.41,1"=""

"218.16.227.66,255.255.255.255,78.34.229.41,1"=""

"218.21.68.70,255.255.255.255,78.34.229.41,1"=""

"218.77.10.66,255.255.255.255,78.34.229.41,1"=""

"218.77.10.67,255.255.255.255,78.34.229.41,1"=""

"218.77.10.68,255.255.255.255,78.34.229.41,1"=""

"218.77.10.69,255.255.255.255,78.34.229.41,1"=""

"218.77.10.70,255.255.255.255,78.34.229.41,1"=""

"218.77.10.71,255.255.255.255,78.34.229.41,1"=""

"218.77.10.73,255.255.255.255,78.34.229.41,1"=""

"220.170.193.68,255.255.255.255,78.34.229.41,1"=""

"220.170.193.69,255.255.255.255,78.34.229.41,1"=""

"220.170.193.70,255.255.255.255,78.34.229.41,1"=""

"220.170.193.71,255.255.255.255,78.34.229.41,1"=""

"220.170.193.72,255.255.255.255,78.34.229.41,1"=""

"220.170.193.73,255.255.255.255,78.34.229.41,1"=""

"220.170.193.74,255.255.255.255,78.34.229.41,1"=""

"222.186.16.181,255.255.255.255,78.34.229.41,1"=""

"222.208.168.4,255.255.255.255,78.34.229.41,1"=""

"222.208.168.5,255.255.255.255,78.34.229.41,1"=""

"58.221.42.83,255.255.255.255,78.34.229.41,1"=""

"58.221.42.84,255.255.255.255,78.34.229.41,1"=""

"58.221.42.85,255.255.255.255,78.34.229.41,1"=""

"59.51.114.16,255.255.255.255,78.34.229.41,1"=""

"59.53.87.101,255.255.255.255,78.34.229.41,1"=""

"59.53.87.102,255.255.255.255,78.34.229.41,1"=""

"59.53.87.106,255.255.255.255,78.34.229.41,1"=""

"59.53.87.107,255.255.255.255,78.34.229.41,1"=""

"59.53.87.76,255.255.255.255,78.34.229.41,1"=""

"59.53.87.77,255.255.255.255,78.34.229.41,1"=""

"59.53.87.78,255.255.255.255,78.34.229.41,1"=""

"59.53.87.79,255.255.255.255,78.34.229.41,1"=""

"59.53.87.80,255.255.255.255,78.34.229.41,1"=""

"60.191.124.236,255.255.255.255,78.34.229.41,1"=""

"60.191.223.94,255.255.255.255,78.34.229.41,1"=""

"60.191.223.96,255.255.255.255,78.34.229.41,1"=""

"60.191.223.97,255.255.255.255,78.34.229.41,1"=""

"61.147.109.147,255.255.255.255,78.34.229.41,1"=""

"61.147.110.235,255.255.255.255,78.34.229.41,1"=""

"61.147.110.237,255.255.255.255,78.34.229.41,1"=""

"61.147.110.238,255.255.255.255,78.34.229.41,1"=""

"61.160.210.164,255.255.255.255,78.34.229.41,1"=""

"61.160.210.165,255.255.255.255,78.34.229.41,1"=""

"61.160.210.166,255.255.255.255,78.34.229.41,1"=""

"61.160.210.167,255.255.255.255,78.34.229.41,1"=""

"61.160.210.168,255.255.255.255,78.34.229.41,1"=""

"61.160.210.169,255.255.255.255,78.34.229.41,1"=""

"61.160.210.170,255.255.255.255,78.34.229.41,1"=""

"61.164.110.113,255.255.255.255,78.34.229.41,1"=""

"61.183.44.240,255.255.255.255,78.34.229.41,1"=""

"61.183.62.178,255.255.255.255,78.34.229.41,1"=""

"61.183.62.179,255.255.255.255,78.34.229.41,1"=""

"61.183.62.186,255.255.255.255,78.34.229.41,1"=""

"61.183.62.187,255.255.255.255,78.34.229.41,1"=""

"67.215.65.132,255.255.255.255,78.34.229.41,1"=""

"113.105.146.25,255.255.255.255,78.34.230.232,1"=""

"121.14.158.153,255.255.255.255,78.34.230.232,1"=""

"121.14.158.155,255.255.255.255,78.34.230.232,1"=""

"122.225.37.116,255.255.255.255,78.34.230.232,1"=""

"122.225.37.117,255.255.255.255,78.34.230.232,1"=""

"122.225.37.118,255.255.255.255,78.34.230.232,1"=""

"122.226.213.145,255.255.255.255,78.34.230.232,1"=""

"122.227.15.59,255.255.255.255,78.34.230.232,1"=""

"122.227.15.60,255.255.255.255,78.34.230.232,1"=""

"122.227.15.61,255.255.255.255,78.34.230.232,1"=""

"122.228.199.130,255.255.255.255,78.34.230.232,1"=""

"122.228.199.131,255.255.255.255,78.34.230.232,1"=""

"122.228.199.132,255.255.255.255,78.34.230.232,1"=""

"122.228.199.133,255.255.255.255,78.34.230.232,1"=""

"122.228.199.134,255.255.255.255,78.34.230.232,1"=""

"122.228.199.135,255.255.255.255,78.34.230.232,1"=""

"122.228.199.136,255.255.255.255,78.34.230.232,1"=""

"122.228.199.68,255.255.255.255,78.34.230.232,1"=""

"202.102.110.205,255.255.255.255,78.34.230.232,1"=""

"218.16.227.66,255.255.255.255,78.34.230.232,1"=""

"218.21.68.70,255.255.255.255,78.34.230.232,1"=""

"218.77.10.66,255.255.255.255,78.34.230.232,1"=""

"218.77.10.67,255.255.255.255,78.34.230.232,1"=""

"218.77.10.68,255.255.255.255,78.34.230.232,1"=""

"218.77.10.69,255.255.255.255,78.34.230.232,1"=""

"218.77.10.70,255.255.255.255,78.34.230.232,1"=""

"218.77.10.71,255.255.255.255,78.34.230.232,1"=""

"218.77.10.73,255.255.255.255,78.34.230.232,1"=""

"220.170.193.68,255.255.255.255,78.34.230.232,1"=""

"220.170.193.69,255.255.255.255,78.34.230.232,1"=""

"220.170.193.70,255.255.255.255,78.34.230.232,1"=""

"220.170.193.71,255.255.255.255,78.34.230.232,1"=""

"220.170.193.72,255.255.255.255,78.34.230.232,1"=""

"220.170.193.73,255.255.255.255,78.34.230.232,1"=""

"220.170.193.74,255.255.255.255,78.34.230.232,1"=""

"222.186.16.181,255.255.255.255,78.34.230.232,1"=""

"222.208.168.4,255.255.255.255,78.34.230.232,1"=""

"222.208.168.5,255.255.255.255,78.34.230.232,1"=""

"58.221.42.83,255.255.255.255,78.34.230.232,1"=""

"58.221.42.84,255.255.255.255,78.34.230.232,1"=""

"58.221.42.85,255.255.255.255,78.34.230.232,1"=""

"59.51.114.16,255.255.255.255,78.34.230.232,1"=""

"59.53.87.101,255.255.255.255,78.34.230.232,1"=""

"59.53.87.102,255.255.255.255,78.34.230.232,1"=""

"59.53.87.106,255.255.255.255,78.34.230.232,1"=""

"59.53.87.107,255.255.255.255,78.34.230.232,1"=""

"59.53.87.76,255.255.255.255,78.34.230.232,1"=""

"59.53.87.77,255.255.255.255,78.34.230.232,1"=""

"59.53.87.78,255.255.255.255,78.34.230.232,1"=""

"59.53.87.79,255.255.255.255,78.34.230.232,1"=""

"59.53.87.80,255.255.255.255,78.34.230.232,1"=""

"60.191.124.236,255.255.255.255,78.34.230.232,1"=""

"60.191.223.94,255.255.255.255,78.34.230.232,1"=""

"60.191.223.96,255.255.255.255,78.34.230.232,1"=""

"60.191.223.97,255.255.255.255,78.34.230.232,1"=""

"61.147.109.147,255.255.255.255,78.34.230.232,1"=""

"61.147.110.235,255.255.255.255,78.34.230.232,1"=""

"61.147.110.237,255.255.255.255,78.34.230.232,1"=""

"61.147.110.238,255.255.255.255,78.34.230.232,1"=""

"61.160.210.164,255.255.255.255,78.34.230.232,1"=""

"61.160.210.165,255.255.255.255,78.34.230.232,1"=""

"61.160.210.166,255.255.255.255,78.34.230.232,1"=""

"61.160.210.167,255.255.255.255,78.34.230.232,1"=""

"61.160.210.168,255.255.255.255,78.34.230.232,1"=""

"61.160.210.169,255.255.255.255,78.34.230.232,1"=""

"61.160.210.170,255.255.255.255,78.34.230.232,1"=""

"61.164.110.113,255.255.255.255,78.34.230.232,1"=""

"61.183.44.240,255.255.255.255,78.34.230.232,1"=""

"61.183.62.178,255.255.255.255,78.34.230.232,1"=""

"61.183.62.179,255.255.255.255,78.34.230.232,1"=""

"61.183.62.186,255.255.255.255,78.34.230.232,1"=""

"61.183.62.187,255.255.255.255,78.34.230.232,1"=""

"67.215.65.132,255.255.255.255,78.34.230.232,1"=""

"110.81.239.0,255.255.255.0,78.34.230.232,1"=""

"124.238.243.0,255.255.255.0,78.34.230.232,1"=""

"124.238.244.0,255.255.255.0,78.34.230.232,1"=""

"124.238.254.0,255.255.255.0,78.34.230.232,1"=""

"220.181.126.0,255.255.255.0,78.34.230.232,1"=""

"222.186.189.0,255.255.255.0,78.34.230.232,1"=""

"222.241.151.0,255.255.255.0,78.34.230.232,1"=""
 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"
 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"StyleXPService"=2 (0x2)

"Hamachi2Svc"=2 (0x2)
 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)
 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Programme\\Gemeinsame Dateien\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=

"c:\\Programme\\Nokia\\Nokia Ovi Suite\\NokiaOviSuite.exe"=

"c:\\Programme\\Java\\jre6\\bin\\javaw.exe"=

"c:\\Programme\\Skype\\Plugin Manager\\skypePM.exe"=

"c:\\Programme\\TightVNC\\tvnserver.exe"=

"c:\\Programme\\TightVNC\\vncviewer.exe"=

"f:\\Tom\\Games\\StarCraft II\\Versions\\Base15405\\SC2.exe"=

"c:\\Programme\\uTorrent\\uTorrent.exe"=

"c:\\Programme\\AVG\\AVG9\\avgemc.exe"=

"c:\\Programme\\AVG\\AVG9\\avgupd.exe"=

"c:\\Programme\\AVG\\AVG9\\avgnsx.exe"=

"f:\\Tom\\Games\\GTA IV\\Rockstar Games Social Club\\RGSCLauncher.exe"=

"f:\\Tom\\Games\\GTA IV\\Grand Theft Auto IV\\LaunchGTAIV.exe"=

"f:\\Tom\\Games\\GTA IV\\Grand Theft Auto IV\\GTAIV.exe"=

"c:\\Programme\\Skype\\Phone\\Skype.exe"=

"f:\\Tom\\Games\\Call of Duty 4 Modern Warfare\\iw3mp.exe"=

"c:\\Programme\\TeamViewer\\Version5\\TeamViewer.exe"=

"c:\\Programme\\TeamViewer\\Version5\\TeamViewer_Service.exe"=
 

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\winxp\system32\drivers\avgldx86.sys [03.09.2010 07:09 216400]

R1 AvgTdiX;AVG Free Network Redirector;c:\winxp\system32\drivers\avgtdix.sys [03.09.2010 07:09 243024]

R1 nltdi;nltdi;c:\winxp\system32\drivers\nltdi.sys [23.04.2007 13:03 82200]

R2 avg9emc;AVG Free E-mail Scanner;c:\programme\AVG\AVG9\avgemc.exe [03.09.2010 07:08 921952]

R2 avg9wd;AVG Free WatchDog;c:\programme\AVG\AVG9\avgwdsvc.exe [03.09.2010 07:08 308136]

R2 Kingsoft Antivirus WebShield Service;Kingsoft Antivirus WebShield Service;c:\dokumente und einstellungen\All Users\Anwendungsdaten\wd\KSWebShield.exe [13.03.2010 13:11 214424]

R2 NPF;NetGroup Packet Filter Driver;c:\winxp\system32\drivers\npf.sys [25.06.2010 19:07 35088]

R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\programme\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [30.10.2009 15:05 1021256]

R3 PSI;PSI;c:\winxp\system32\drivers\psi_mf.sys [28.05.2010 13:04 14896]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 07:24 10064]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\winxp\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.03.2010 13:16 130384]

S2 gupdate;Google Update Service (gupdate);c:\programme\Google\Update\GoogleUpdate.exe [17.07.2010 19:00 136176]

S3 Ambfilt;Ambfilt;c:\winxp\system32\drivers\Ambfilt.sys [22.05.2010 03:39 1684736]

S3 CEDRIVER55;CEDRIVER55;c:\programme\Cheat Engine\dbk32.sys [03.06.2010 20:20 60416]

S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\programme\Google\Google Desktop Search\GoogleDesktop.exe [24.07.2010 21:57 30192]

S3 PSSDK42;PSSDK42;c:\winxp\system32\drivers\pssdk42.sys [13.06.2010 21:09 38976]

S3 SPC500NC;Philips SPC500NC Webcam;c:\winxp\system32\drivers\SPC500NC.SYS [21.06.2007 06:42 409600]

S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\winxp\system32\drivers\VBoxNetAdp.sys [08.06.2010 13:30 100496]

S3 VBoxNetFlt;VBoxNetFlt Service;c:\winxp\system32\DRIVERS\VBoxNetFlt.sys --> c:\winxp\system32\DRIVERS\VBoxNetFlt.sys [?]

S3 VBoxUSB;VirtualBox USB;c:\winxp\system32\drivers\VBoxUSB.sys [13.06.2010 08:47 31504]

S3 VSPerfDrv100;Performance Tools Driver 10.0;f:\vs2010\Team Tools\Performance Tools\VSPerfDrv100.sys [08.12.2009 21:24 48128]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\winxp\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.03.2010 13:16 753504]

S4 MSSQLServerADHelper100;SQL Server Hilfsdienst für Active Directory;c:\programme\Microsoft SQL Server\100\Shared\sqladhlp.exe [21.07.2009 04:04 47128]

S4 RsFx0103;RsFx0103 Driver;c:\winxp\system32\drivers\RsFx0103.sys [30.03.2009 03:09 239336]

S4 sptd;sptd;c:\winxp\system32\drivers\sptd.sys [23.05.2010 12:40 691696]

S4 SQLAgent$SQLEXPRESS;SQL Server-Agent (SQLEXPRESS);c:\programme\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [30.03.2009 03:23 366936]
 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12        REG_MULTI_SZ           Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt        REG_MULTI_SZ           hpqcxs08
 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs

UxTuneUp

.

Inhalt des "geplante Tasks" Ordners
 

2010-09-28 c:\winxp\Tasks\Automatic troubleshooting.job

- c:\programme\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-10-30 13:12]
 

2010-09-28 c:\winxp\Tasks\GoogleUpdateTaskMachineCore.job

- c:\programme\Google\Update\GoogleUpdate.exe [2010-07-17 02:44]
 

2010-09-28 c:\winxp\Tasks\GoogleUpdateTaskMachineUA.job

- c:\programme\Google\Update\GoogleUpdate.exe [2010-07-17 02:44]
 

2010-09-24 c:\winxp\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-1364589140-682003330-1003Core.job

- c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2010-05-21 19:39]
 

2010-09-28 c:\winxp\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-1364589140-682003330-1003UA.job

- c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2010-05-21 19:39]

.

.

------- Zusätzlicher Suchlauf -------

.

uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2431245

uInternet Settings,ProxyServer = localhost:8118

IE: Nach Microsoft &Excel exportieren - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000

FF - ProfilePath - c:\dokumente und einstellungen\Tom\Anwendungsdaten\Mozilla\Firefox\Profiles\1u9kel6f.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2431245&SearchSource=3&q={searchTerms}

FF - prefs.js: browser.search.selectedEngine - softonic-de3 Customized Web Search

FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2431245&SearchSource=13

FF - component: c:\programme\AVG\AVG9\Firefox\components\avgssff.dll

FF - component: c:\programme\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll

FF - component: c:\programme\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\components\FirefoxExtension.dll

FF - plugin: c:\dokumente und einstellungen\Tom\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.2.183.29\npGoogleOneClick8.dll

FF - plugin: c:\programme\DivX\DivX Plus Web Player\npdivx32.dll

FF - plugin: c:\programme\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: c:\programme\Google\Update\1.2.183.29\npGoogleOneClick8.dll

FF - plugin: c:\programme\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\programme\Pando Networks\Media Booster\npPandoWebPlugin.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\winxp\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
 

---- FIREFOX Richtlinien ----

FF - user.js: network.http.max-persistent-connections-per-server - 4

FF - user.js: nglayout.initialpaint.delay - 600

FF - user.js: content.notify.interval - 600000

FF - user.js: content.max.tokenizing.time - 1800000

FF - user.js: content.switch.threshold - 600000

c:\programme\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); 

c:\programme\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); 

c:\programme\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -
 

WebBrowser-{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} - (no file)
 
 
 

**************************************************************************
 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net

Rootkit scan 2010-09-28 21:55

Windows 5.1.2600 Service Pack 3 NTFS
 

Scanne versteckte Prozesse... 
 

Scanne versteckte Autostarteinträge... 
 

Scanne versteckte Dateien... 
 
 

c:\winxp\system32\xxyx.ico 11502 bytes
 

Scan erfolgreich abgeschlossen

versteckte Dateien: 1
 

**************************************************************************

.

--------------------- Gesperrte Registrierungsschluessel ---------------------
 

[HKEY_USERS\S-1-5-21-1177238915-1364589140-682003330-1003\Software\SecuROM\License information*]

"datasecu"=hex:b0,94,3b,7f,c6,08,97,68,01,10,a8,5e,91,13,86,66,ff,2d,58,50,c0,

   f8,35,0a,b2,dd,70,43,ed,8c,89,71,56,9d,5f,2f,5b,f8,e9,cf,9b,24,b9,a6,81,28,\

"rkeysecu"=hex:d7,96,e5,c5,6e,84,42,76,40,a3,6b,af,bd,ee,7a,ed
 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\WINXP\\system32\\Macromed\\Flash\\FlashUtil9n.exe,-101"
 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001
 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\WINXP\\system32\\Macromed\\Flash\\FlashUtil9n.exe"
 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"
 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"
 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"
 

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•6~*]

"7040110900063D11C8EF10054038389C"="C?\\WINXP\\system32\\FM20ENU.DLL"

.

--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
 

- - - - - - - > 'explorer.exe'(164)

c:\dokumente und einstellungen\All Users\Anwendungsdaten\wd\kwsui.dll

c:\dokumente und einstellungen\All Users\Anwendungsdaten\wd\kswebshield.dll

c:\winxp\system32\msi.dll

c:\winxp\system32\webcheck.dll

c:\winxp\system32\WPDShServiceObj.dll

c:\winxp\system32\PortableDeviceTypes.dll

c:\winxp\system32\PortableDeviceApi.dll

c:\programme\WinRAR\rarext.dll

c:\programme\Malwarebytes' Anti-Malware\mbamext.dll

c:\programme\Copy Handler\chext.dll

c:\programme\Microsoft Office\OFFICE11\msohev.dll

c:\programme\FolderSize\FolderSizeColumn.dll

.

------------------------ Weitere laufende Prozesse ------------------------

.

c:\winxp\system32\nvsvc32.exe

c:\programme\FolderSize\FolderSizeSvc.exe

c:\programme\Java\jre6\bin\jqs.exe

c:\programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\MDM.EXE

c:\programme\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe

c:\programme\AVG\AVG9\avgnsx.exe

c:\programme\NetLimiter 2 Pro\nlsvc.exe

c:\programme\CDBurnerXP\NMSAccessU.exe

c:\programme\AVG\AVG9\avgrsx.exe

c:\programme\AVG\AVG9\avgchsvx.exe

c:\winxp\system32\PnkBstrA.exe

c:\programme\Microsoft SQL Server\90\Shared\sqlwriter.exe

c:\programme\AVG\AVG9\avgcsrvx.exe

c:\programme\AVG\AVG9\avgcsrvx.exe

c:\programme\NetLimiter 2 Pro\NLClient.exe

c:\winxp\system32\wscntfy.exe

c:\programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe

c:\winxp\RTHDCPL.EXE

.

**************************************************************************

.

Zeit der Fertigstellung: 2010-09-28  22:03:31 - PC wurde neu gestartet

ComboFix-quarantined-files.txt  2010-09-28 20:03
 

Vor Suchlauf: 14 Verzeichnis(se), 45.103.165.440 Bytes frei

Nach Suchlauf: 17 Verzeichnis(se), 45.000.949.760 Bytes frei
 

WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe

[boot loader]

default=multi(0)disk(0)rdisk(0)partition(1)\WINXP

timeout=2

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

UnsupportedDebug="do not select this" /debug

multi(0)disk(0)rdisk(0)partition(1)\WINXP="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
 

- - End Of File - - E5A655B31A5F81199100E3B98ADB2708