| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Besuch von BDS/ZeroAccess.Gen ...Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
12.12.2012, 21:46
| #1 |
 |  Besuch von BDS/ZeroAccess.Gen ... Hallo zusammen, schön dass es Euch gibt... Meinen Rechner hat es erwischt. Immer diese schlimmen Seiten auf denen ich mich bewege  . Avira erkennt BDS/ZeroAccess.Gen. Ich habe als erstes Mal Malewarebytes laufen gelassen (und dann gleich auf entfernen gedrückt.... Ob richtig oder falsch, es ist geschehen)...Wäre klasse wenn Ihr mir helfen könntet wie ich weiter zu verfahren habe. Keine Lust meinen alten Rechner komplett zu plätten.Vielen Dank! 00 Anbei der Bericht vom Scan, da gab es noch einige andere Funde: Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org Datenbank Version: v2012.12.12.12 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Onkel Markus :: MARKUS [Administrator] 12.12.2012 21:24:46 mbam-log-2012-12-12 (21-24-46).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 229281 Laufzeit: 8 Minute(n), 7 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 2 HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|Load (Trojan.Agent) -> Daten: C:\DOKUME~1\ONKELM~1\LOKALE~1\Temp\csrss.exe -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Hijack.Shell) -> Daten: explorer.exe,C:\Dokumente und Einstellungen\Onkel Markus\Anwendungsdaten\dwm.exe -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 3 HKCR\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32| (Trojan.0Access) -> Bösartig: (C:\RECYCLER\S-1-5-18\$ae51b2bda51dbe26c0b24cf4100c2336\n.) Gut: (fastprox.dll) -> Erfolgreich ersetzt und in Quarantäne gestellt. HKCR\CLSID\{FBEB8A05-BEEE-4442-804E-409D6C4515E9}\InProcServer32| (Trojan.0Access) -> Bösartig: (C:\RECYCLER\S-1-5-21-2415893385-2727058723-3825780553-1005\$ae51b2bda51dbe26c0b24cf4100c2336\n.) Gut: (shell32.dll) -> Erfolgreich ersetzt und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bösartig: (1) Gut: (0) -> Erfolgreich ersetzt und in Quarantäne gestellt. Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 3 C:\RECYCLER\S-1-5-18\$ae51b2bda51dbe26c0b24cf4100c2336\n (Trojan.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\RECYCLER\S-1-5-21-2415893385-2727058723-3825780553-1005\$ae51b2bda51dbe26c0b24cf4100c2336\n (Trojan.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\WINDOWS\assembly\GAC\Desktop.ini (Rootkit.0access) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) |
|
12.12.2012, 22:39
| #2 | |
| /// TB-Ausbilder  | Besuch von BDS/ZeroAccess.Gen ... Ich werde dir bei deinem Problem helfen. Eine Bereinigung ist mitunter mit viel Arbeit für Dich (und mich) verbunden. Bevor es los geht, habe ich etwas Lesestoff für dich. Gelesen und verstanden? Schritt 1: Laufwerksemulationen abschalten mit Defogger Downloade Dir bitte defogger von jpshortstuff auf Deinem Desktop und starte es:Schritt 2: Scan mit aswMBR Schritt 3: Scan mit dem TDSS-Killer Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen. Schritt 4: Scan mit DDS (+ attach) Downloade dir bitte DDS (von sUBs) von einem der folgenden Downloadspiegel und speichere die Datei auf deinem Desktop.
__________________ |
|
13.12.2012, 19:48
| #3 |
| | Besuch von BDS/ZeroAccess.Gen ... Hallo Ryder aus dem Frankenland,
__________________danke für Deine Unterstützung und die präzisen Anleitungen. Ich habe das Programm soweit abgearbeitet. Jetzt hoffe ich die Ergebnisse in richtiger Form zu übersenden. Würde mich freuen die nächsten Schritte von Dir zu erfahren. Vielen Dank und beste Grüße, 00 Defogger: defogger_disable by jpshortstuff (23.02.10.1) Log created at 18:40 on 13/12/2012 (Onkel Markus) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- aswMBR: aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software Run date: 2012-12-13 18:42:19 ----------------------------- 18:42:19.859 OS Version: Windows 5.1.2600 Service Pack 3 18:42:19.859 Number of processors: 2 586 0xF02 18:42:19.859 ComputerName: MARKUS UserName: 18:42:21.109 Initialize success 18:56:51.265 AVAST engine defs: 12121301 19:02:17.546 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 19:02:17.578 Disk 0 Vendor: HITACHI_ SBDI Size: 114473MB BusType: 3 19:02:17.593 Disk 0 MBR read successfully 19:02:17.593 Disk 0 MBR scan 19:02:17.828 Disk 0 unknown MBR code 19:02:17.828 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 60428 MB offset 63 19:02:17.890 Disk 0 Partition 2 00 12 Compaq diag MSWIN4.1 4429 MB offset 123757200 19:02:17.953 Disk 0 Partition - 00 0F Extended LBA 49612 MB offset 132829200 19:02:17.968 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 49612 MB offset 132829263 19:02:18.031 Disk 0 scanning sectors +234435600 19:02:18.203 Disk 0 scanning C:\WINDOWS\system32\drivers 19:02:58.250 Service scanning 19:03:38.328 Modules scanning 19:03:49.812 Disk 0 trace - called modules: 19:03:49.875 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys 19:03:49.890 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x871c9ab8] 19:03:49.890 3 CLASSPNP.SYS[f7511fd7] -> nt!IofCallDriver -> \Device\000000ac[0x87131970] 19:03:49.890 5 ACPI.sys[f73a7620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x871c7030] 19:03:51.062 AVAST engine scan C:\WINDOWS 19:04:02.390 AVAST engine scan C:\WINDOWS\system32 19:08:14.343 AVAST engine scan C:\WINDOWS\system32\drivers 19:08:35.656 AVAST engine scan C:\Dokumente und Einstellungen\Onkel Markus 19:25:53.968 AVAST engine scan C:\Dokumente und Einstellungen\All Users 19:27:17.281 Scan finished successfully 19:29:22.953 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\MBR.dat" 19:29:22.953 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\aswMBR.txt" Code:
ATTFilter 19:31:09.0937 2668 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
19:31:10.0562 2668 ============================================================
19:31:10.0562 2668 Current date / time: 2012/12/13 19:31:10.0562
19:31:10.0562 2668 SystemInfo:
19:31:10.0562 2668
19:31:10.0562 2668 OS Version: 5.1.2600 ServicePack: 3.0
19:31:10.0562 2668 Product type: Workstation
19:31:10.0562 2668 ComputerName: MARKUS
19:31:10.0562 2668 UserName: Onkel Markus
19:31:10.0562 2668 Windows directory: C:\WINDOWS
19:31:10.0562 2668 System windows directory: C:\WINDOWS
19:31:10.0562 2668 Processor architecture: Intel x86
19:31:10.0562 2668 Number of processors: 2
19:31:10.0562 2668 Page size: 0x1000
19:31:10.0562 2668 Boot type: Normal boot
19:31:10.0562 2668 ============================================================
19:31:12.0187 2668 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
19:31:12.0187 2668 ============================================================
19:31:12.0187 2668 \Device\Harddisk0\DR0:
19:31:12.0187 2668 MBR partitions:
19:31:12.0187 2668 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x7606251
19:31:12.0203 2668 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x7EAD04F, BlocksNum 0x60E63C1
19:31:12.0203 2668 ============================================================
19:31:12.0234 2668 C: <-> \Device\Harddisk0\DR0\Partition1
19:31:12.0265 2668 E: <-> \Device\Harddisk0\DR0\Partition2
19:31:12.0265 2668 ============================================================
19:31:12.0265 2668 Initialize success
19:31:12.0265 2668 ============================================================
19:31:45.0062 6128 ============================================================
19:31:45.0062 6128 Scan started
19:31:45.0062 6128 Mode: Manual; TDLFS;
19:31:45.0062 6128 ============================================================
19:31:46.0125 6128 ================ Scan system memory ========================
19:31:46.0156 6128 System memory - ok
19:31:46.0156 6128 ================ Scan services =============================
19:31:46.0312 6128 Abiosdsk - ok
19:31:46.0312 6128 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:31:46.0328 6128 abp480n5 - ok
19:31:46.0343 6128 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys
19:31:46.0359 6128 ac97intc - ok
19:31:46.0421 6128 [ AC407F1A62C3A300B4F2B5A9F1D55B2C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:31:46.0437 6128 ACPI - ok
19:31:46.0453 6128 [ 9E1CA3160DAFB159CA14F83B1E317F75 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:31:46.0468 6128 ACPIEC - ok
19:31:46.0609 6128 [ 9C71BCE0D13CF8EDDBD7A49B1BCF89EC ] AcPrfMgrSvc C:\Programme\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
19:31:46.0640 6128 AcPrfMgrSvc - ok
19:31:46.0656 6128 [ 799E93C5CD5091FB5C5C2FFB494E6620 ] AcSvc C:\Programme\ThinkPad\ConnectUtilities\AcSvc.exe
19:31:46.0687 6128 AcSvc - ok
19:31:46.0750 6128 [ 66614B9FDC7E74AB736A84D89F7B06B6 ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
19:31:46.0781 6128 ADIHdAudAddService - ok
19:31:46.0828 6128 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:31:46.0875 6128 adpu160m - ok
19:31:46.0921 6128 [ 03BE587E90C8B37C7FF1FE2E9C1D1C90 ] AEAudioService C:\WINDOWS\system32\drivers\AEAudio.sys
19:31:46.0953 6128 AEAudioService - ok
19:31:46.0968 6128 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:31:47.0000 6128 aec - ok
19:31:47.0062 6128 [ 15E655BAA989444F56787EF558823643 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
19:31:47.0078 6128 AegisP - ok
19:31:47.0109 6128 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:31:47.0140 6128 AFD - ok
19:31:47.0171 6128 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:31:47.0203 6128 agp440 - ok
19:31:47.0218 6128 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:31:47.0234 6128 agpCPQ - ok
19:31:47.0265 6128 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:31:47.0281 6128 Aha154x - ok
19:31:47.0296 6128 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:31:47.0328 6128 aic78u2 - ok
19:31:47.0343 6128 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:31:47.0359 6128 aic78xx - ok
19:31:47.0406 6128 [ 738D80CC01D7BC7584BE917B7F544394 ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:31:47.0437 6128 Alerter - ok
19:31:47.0453 6128 [ 190CD73D4984F94D823F9444980513E5 ] ALG C:\WINDOWS\System32\alg.exe
19:31:47.0484 6128 ALG - ok
19:31:47.0500 6128 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
19:31:47.0515 6128 AliIde - ok
19:31:47.0531 6128 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:31:47.0546 6128 alim1541 - ok
19:31:47.0578 6128 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:31:47.0593 6128 amdagp - ok
19:31:47.0640 6128 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
19:31:47.0640 6128 amsint - ok
19:31:47.0687 6128 [ 11AB185A7AF224800BBFB5B836974A17 ] ANC C:\WINDOWS\system32\drivers\ANC.SYS
19:31:47.0718 6128 ANC - ok
19:31:47.0796 6128 [ C27D46B06D340293670450FCE9DFB166 ] AntiVirSchedulerService C:\Programme\Avira\AntiVir Desktop\sched.exe
19:31:47.0828 6128 AntiVirSchedulerService - ok
19:31:47.0875 6128 [ 72D90E56563165984224493069C69ED4 ] AntiVirService C:\Programme\Avira\AntiVir Desktop\avguard.exe
19:31:47.0906 6128 AntiVirService - ok
19:31:47.0968 6128 [ D45960BE52C3C610D361977057F98C54 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:31:47.0984 6128 AppMgmt - ok
19:31:48.0031 6128 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:31:48.0046 6128 Arp1394 - ok
19:31:48.0078 6128 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
19:31:48.0093 6128 asc - ok
19:31:48.0140 6128 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:31:48.0156 6128 asc3350p - ok
19:31:48.0187 6128 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:31:48.0203 6128 asc3550 - ok
19:31:48.0328 6128 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:31:48.0390 6128 aspnet_state - ok
19:31:48.0406 6128 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:31:48.0421 6128 AsyncMac - ok
19:31:48.0437 6128 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:31:48.0468 6128 atapi - ok
19:31:48.0468 6128 Atdisk - ok
19:31:48.0546 6128 [ EEDAC720AC52A12EDBE1D1F9933B59E7 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
19:31:48.0562 6128 Ati HotKey Poller - ok
19:31:48.0656 6128 [ E150424208C8A91DEED8C45019A6CDD2 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:31:48.0718 6128 ati2mtag - ok
19:31:48.0781 6128 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:31:48.0796 6128 Atmarpc - ok
19:31:48.0828 6128 [ DBF0D7E2DF33B469EB55406FEA759350 ] atmeltpm C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
19:31:48.0843 6128 atmeltpm - ok
19:31:48.0890 6128 [ 58ED0D5452DF7BE732193E7999C6B9A4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:31:48.0906 6128 AudioSrv - ok
19:31:48.0953 6128 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:31:48.0953 6128 audstub - ok
19:31:49.0000 6128 [ 0B497C79824F8E1BF22FA6AACD3DE3A0 ] avgio C:\Programme\Avira\AntiVir Desktop\avgio.sys
19:31:49.0015 6128 avgio - ok
19:31:49.0046 6128 [ 1E4114685DE1FFA9675E09C6A1FB3F4B ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
19:31:49.0062 6128 avgntflt - ok
19:31:49.0109 6128 [ 0F78D3DAE6DEDD99AE54C9491C62ADF2 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:31:49.0125 6128 avipbb - ok
19:31:49.0171 6128 [ BB1A2A73F993B623F99E03ED2F9E014C ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
19:31:49.0203 6128 b57w2k - ok
19:31:49.0218 6128 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:31:49.0234 6128 Beep - ok
19:31:49.0281 6128 [ B71549F23736ADF83A571061C47777FD ] Browser C:\WINDOWS\System32\browser.dll
19:31:49.0296 6128 Browser - ok
19:31:49.0375 6128 [ 6B7D6CA0DB38B36C1D95447757741D1A ] btaudio C:\WINDOWS\system32\drivers\btaudio.sys
19:31:49.0390 6128 btaudio - ok
19:31:49.0437 6128 [ 48E37289BAE3D006D5583A661168CA00 ] BTDriver C:\WINDOWS\system32\DRIVERS\btport.sys
19:31:49.0453 6128 BTDriver - ok
19:31:49.0531 6128 [ DBD408226B00C20158864F30A5A84451 ] BTKRNL C:\WINDOWS\system32\DRIVERS\btkrnl.sys
19:31:49.0562 6128 BTKRNL - ok
19:31:49.0656 6128 [ CB2A3BAE9AAD6B42F7B6473363BBC168 ] btwdins C:\Programme\ThinkPad\Bluetooth Software\bin\btwdins.exe
19:31:49.0687 6128 btwdins - ok
19:31:49.0718 6128 [ 8103112C1016DDC68DC292A083B02487 ] BTWDNDIS C:\WINDOWS\system32\DRIVERS\btwdndis.sys
19:31:49.0750 6128 BTWDNDIS - ok
19:31:49.0765 6128 [ 7CD8E4303FDA5B11DA325340778D99D9 ] BTWUSB C:\WINDOWS\system32\Drivers\btwusb.sys
19:31:49.0781 6128 BTWUSB - ok
19:31:49.0796 6128 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:31:49.0828 6128 cbidf - ok
19:31:49.0828 6128 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:31:49.0828 6128 cbidf2k - ok
19:31:49.0875 6128 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:31:49.0906 6128 CCDECODE - ok
19:31:49.0937 6128 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:31:49.0953 6128 cd20xrnt - ok
19:31:49.0968 6128 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:31:49.0984 6128 Cdaudio - ok
19:31:50.0000 6128 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:31:50.0031 6128 Cdfs - ok
19:31:50.0046 6128 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:31:50.0062 6128 Cdrom - ok
19:31:50.0078 6128 Changer - ok
19:31:50.0125 6128 [ 28E3040D1F1CA2008CD6B29DFEBC9A5E ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:31:50.0140 6128 CiSvc - ok
19:31:50.0171 6128 [ 778A30ED3C134EB7E406AFC407E9997D ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:31:50.0187 6128 ClipSrv - ok
19:31:50.0218 6128 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:31:50.0343 6128 clr_optimization_v2.0.50727_32 - ok
19:31:50.0390 6128 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:31:50.0406 6128 CmBatt - ok
19:31:50.0453 6128 [ C687F81290303D90099B027A6474F99F ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:31:50.0468 6128 CmdIde - ok
19:31:50.0484 6128 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:31:50.0500 6128 Compbatt - ok
19:31:50.0515 6128 COMSysApp - ok
19:31:50.0546 6128 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:31:50.0562 6128 Cpqarray - ok
19:31:50.0609 6128 [ 611F824E5C703A5A899F84C5F1699E4D ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:31:50.0640 6128 CryptSvc - ok
19:31:50.0640 6128 CVirtA - ok
19:31:50.0796 6128 [ DAD192D12DD0B4C92F6843203852829F ] CVPND C:\Programme\RWTH Aachen\Cisco VPN Client\cvpnd.exe
19:31:50.0843 6128 CVPND - ok
19:31:50.0890 6128 [ 26DEEF07394624247D1F549BD94F0B15 ] CVPNDRVA C:\WINDOWS\system32\Drivers\CVPNDRVA.sys
19:31:50.0921 6128 CVPNDRVA - ok
19:31:50.0968 6128 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:31:51.0000 6128 dac2w2k - ok
19:31:51.0015 6128 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:31:51.0015 6128 dac960nt - ok
19:31:51.0078 6128 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:31:51.0078 6128 DcomLaunch - ok
19:31:51.0125 6128 [ C29A1C9B75BA38FA37F8C44405DEC360 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:31:51.0156 6128 Dhcp - ok
19:31:51.0171 6128 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:31:51.0187 6128 Disk - ok
19:31:51.0265 6128 [ 0711D2E0F17B31E537B2770A618DA41F ] Diskeeper C:\Programme\Diskeeper Corporation\Diskeeper\DkService.exe
19:31:51.0312 6128 Diskeeper - ok
19:31:51.0312 6128 dmadmin - ok
19:31:51.0390 6128 [ 0DCFC8395A99FECBB1EF771CEC7FE4EA ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:31:51.0437 6128 dmboot - ok
19:31:51.0453 6128 [ 53720AB12B48719D00E327DA470A619A ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:31:51.0468 6128 dmio - ok
19:31:51.0515 6128 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:31:51.0531 6128 dmload - ok
19:31:51.0562 6128 [ 25C83FFBBA13B554EB6D59A9B2E2EE78 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:31:51.0578 6128 dmserver - ok
19:31:51.0593 6128 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:31:51.0625 6128 DMusic - ok
19:31:51.0671 6128 [ 7B4FDFBE97C047175E613AA96F3DE987 ] DNE C:\WINDOWS\system32\DRIVERS\dne2000.sys
19:31:51.0687 6128 DNE - ok
19:31:51.0734 6128 [ 407F3227AC618FD1CA54B335B083DE07 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:31:51.0750 6128 Dnscache - ok
19:31:51.0796 6128 [ 676E36C4FF5BCEA1900F44182B9723E6 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:31:51.0812 6128 Dot3svc - ok
19:31:51.0843 6128 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:31:51.0859 6128 dpti2o - ok
19:31:51.0890 6128 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:31:51.0906 6128 drmkaud - ok
19:31:51.0953 6128 [ A6DE5342417FEC3C0AA8EFEBB899C431 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
19:31:51.0968 6128 E100B - ok
19:31:51.0984 6128 [ 4E4F2FDDAB0A0736D7671134DCCE91FB ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:31:52.0000 6128 EapHost - ok
19:31:52.0046 6128 [ 877C18558D70587AA7823A1A308AC96B ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:31:52.0062 6128 ERSvc - ok
19:31:52.0109 6128 [ A3EDBE9053889FB24AB22492472B39DC ] Eventlog C:\WINDOWS\system32\services.exe
19:31:52.0140 6128 Eventlog - ok
19:31:52.0187 6128 [ AF4F6B5739D18CA7972AB53E091CBC74 ] EventSystem C:\WINDOWS\system32\es.dll
19:31:52.0218 6128 EventSystem - ok
19:31:52.0312 6128 [ 6A197698A141FFE7651B962AE3172008 ] EvtEng C:\Programme\Intel\Wireless\Bin\EvtEng.exe
19:31:52.0343 6128 EvtEng - ok
19:31:52.0375 6128 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:31:52.0390 6128 Fastfat - ok
19:31:52.0437 6128 [ 2DB7D303C36DDD055215052F118E8E75 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:31:52.0468 6128 FastUserSwitchingCompatibility - ok
19:31:52.0531 6128 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
19:31:52.0546 6128 Fdc - ok
19:31:52.0578 6128 [ 5C329E2AB8DD62310213CBFAC0178539 ] FilterService C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
19:31:52.0593 6128 FilterService - ok
19:31:52.0609 6128 [ B0678A548587C5F1967B0D70BACAD6C1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:31:52.0625 6128 Fips - ok
19:31:52.0640 6128 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:31:52.0656 6128 Flpydisk - ok
19:31:52.0703 6128 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
19:31:52.0718 6128 FltMgr - ok
19:31:52.0765 6128 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:31:52.0812 6128 FontCache3.0.0.0 - ok
19:31:52.0843 6128 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:31:52.0859 6128 Fs_Rec - ok
19:31:52.0890 6128 [ 8F1955CE42E1484714B542F341647778 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:31:52.0906 6128 Ftdisk - ok
19:31:52.0937 6128 [ 33D00F8CB70AC5F7A8101F79D5273615 ] G400 C:\WINDOWS\system32\DRIVERS\G400m.sys
19:31:52.0968 6128 G400 - ok
19:31:53.0015 6128 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:31:53.0031 6128 Gpc - ok
19:31:53.0078 6128 [ 71787059BC597D9514414C07E622ADC4 ] gpibclsb C:\WINDOWS\System32\Drivers\gpibclsb.sys
19:31:53.0093 6128 gpibclsb - ok
19:31:53.0125 6128 [ 31B923554CBE9C451518F32ACB8DA049 ] gpibclsd C:\WINDOWS\System32\Drivers\gpibclsd.sys
19:31:53.0125 6128 gpibclsd - ok
19:31:53.0171 6128 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:31:53.0203 6128 HDAudBus - ok
19:31:53.0281 6128 [ CB66BF85BF599BEFD6C6A57C2E20357F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:31:53.0296 6128 helpsvc - ok
19:31:53.0312 6128 HidServ - ok
19:31:53.0375 6128 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:31:53.0390 6128 HidUsb - ok
19:31:53.0421 6128 [ ED29F14101523A6E0E808107405D452C ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
19:31:53.0453 6128 hkmsvc - ok
19:31:53.0500 6128 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
19:31:53.0500 6128 hpn - ok
19:31:53.0578 6128 [ B1FC0B027DF4374F9E5B796CFDF797B3 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\hsx_dpv.sys
19:31:53.0609 6128 HSF_DPV - ok
19:31:53.0640 6128 [ 3AF45F5B4157C88FFAE24D89BA408302 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\hsxhwazl.sys
19:31:53.0656 6128 HSXHWAZL - ok
19:31:53.0718 6128 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:31:53.0750 6128 HTTP - ok
19:31:53.0796 6128 [ 9E4ADB854CEBCFB81A4B36718FEECD16 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:31:53.0828 6128 HTTPFilter - ok
19:31:53.0843 6128 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
19:31:53.0859 6128 i2omgmt - ok
19:31:53.0875 6128 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:31:53.0890 6128 i2omp - ok
19:31:53.0921 6128 [ E283B97CFBEB86C1D86BAED5F7846A92 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:31:53.0953 6128 i8042prt - ok
19:31:54.0031 6128 [ 309C4D86D989FB1FCF64BD30DC81C51B ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
19:31:54.0046 6128 iaStor - ok
19:31:54.0078 6128 [ 067A88764593B1F46A6CFB00C69C11EB ] IBMPMDRV C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
19:31:54.0093 6128 IBMPMDRV - ok
19:31:54.0125 6128 [ 21ABD7E16659602723F984F512C65E02 ] IBMPMSVC C:\WINDOWS\system32\ibmpmsvc.exe
19:31:54.0140 6128 IBMPMSVC - ok
19:31:54.0187 6128 [ BFC9F3ADAAD74E13F9CE16C8BD336F95 ] IBMTPCHK C:\WINDOWS\system32\Drivers\IBMBLDID.sys
19:31:54.0218 6128 IBMTPCHK - ok
19:31:54.0328 6128 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe
19:31:54.0343 6128 IDriverT - ok
19:31:54.0421 6128 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:31:54.0500 6128 idsvc - ok
19:31:54.0515 6128 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:31:54.0546 6128 Imapi - ok
19:31:54.0593 6128 [ D4B413AA210C21E46AEDD2BA5B68D38E ] ImapiService C:\WINDOWS\system32\imapi.exe
19:31:54.0609 6128 ImapiService - ok
19:31:54.0656 6128 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:31:54.0687 6128 ini910u - ok
19:31:54.0703 6128 [ 69C4E3C9E67A1F103B94E14FDD5F3213 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:31:54.0718 6128 IntelIde - ok
19:31:54.0765 6128 [ 4C7D2750158ED6E7AD642D97BFFAE351 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:31:54.0781 6128 intelppm - ok
19:31:54.0812 6128 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:31:54.0812 6128 Ip6Fw - ok
19:31:54.0859 6128 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:31:54.0875 6128 IpFilterDriver - ok
19:31:54.0906 6128 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:31:54.0921 6128 IpInIp - ok
19:31:54.0968 6128 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:31:55.0000 6128 IpNat - ok
19:31:55.0015 6128 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:31:55.0031 6128 IPSec - ok
19:31:55.0078 6128 [ 4D1D3B3644737746FB98C4D272FB4A86 ] IPSSVC C:\WINDOWS\system32\IPSSVC.EXE
19:31:55.0093 6128 IPSSVC - ok
19:31:55.0109 6128 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:31:55.0109 6128 IRENUM - ok
19:31:55.0140 6128 [ 6DFB88F64135C525433E87648BDA30DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:31:55.0156 6128 isapnp - ok
19:31:55.0187 6128 [ F59C3569A2F2C464BB78CB1BDCDCA55E ] Iviaspi C:\WINDOWS\system32\drivers\iviaspi.sys
19:31:55.0203 6128 Iviaspi - ok
19:31:55.0234 6128 [ 1704D8C4C8807B889E43C649B478A452 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:31:55.0250 6128 Kbdclass - ok
19:31:55.0265 6128 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:31:55.0296 6128 kmixer - ok
19:31:55.0359 6128 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:31:55.0375 6128 KSecDD - ok
19:31:55.0406 6128 [ 2BBDCB79900990F0716DFCB714E72DE7 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:31:55.0437 6128 lanmanserver - ok
19:31:55.0484 6128 [ 1869B14B06B44B44AF70548E1EA3303F ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:31:55.0500 6128 lanmanworkstation - ok
19:31:55.0500 6128 lbrtfdc - ok
19:31:55.0546 6128 [ 636714B7D43C8D0C80449123FD266920 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:31:55.0562 6128 LmHosts - ok
19:31:55.0671 6128 [ 9A3D4FC6B86E7E36473079AB76AC703D ] LVcKap C:\WINDOWS\system32\DRIVERS\LVcKap.sys
19:31:55.0718 6128 LVcKap - ok
19:31:55.0843 6128 [ 0ACBC11F19320AF6C19F2E20013D9095 ] LVMVDrv C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
19:31:55.0906 6128 LVMVDrv - ok
19:31:56.0000 6128 [ E8ACF6DD83956FB63CEB058D5F51B18A ] lvpopflt C:\WINDOWS\system32\DRIVERS\lvpopflt.sys
19:31:56.0031 6128 lvpopflt - ok
19:31:56.0093 6128 [ 12866641284EBB41E627BB53C04DA959 ] LVPr2Mon C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
19:31:56.0109 6128 LVPr2Mon - ok
19:31:56.0171 6128 [ 995D0B52870C7A5CAF3EA165FD674A35 ] LVPrcSrv c:\programme\gemeinsame dateien\logishrd\lvmvfm\LVPrcSrv.exe
19:31:56.0187 6128 LVPrcSrv - ok
19:31:56.0218 6128 [ A005CEE9BE199C5E375FAA559CA9A7A9 ] LVSrvLauncher C:\Programme\Gemeinsame Dateien\LogiShrd\SrvLnch\SrvLnch.exe
19:31:56.0250 6128 LVSrvLauncher - ok
19:31:56.0281 6128 [ 64BC29C3A0388BFC580BB8B1346F7659 ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
19:31:56.0296 6128 LVUSBSta - ok
19:31:56.0406 6128 [ 922BE6770499220DC27B529CA236815A ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys
19:31:56.0453 6128 LVUVC - ok
19:31:56.0500 6128 [ 09721F2C56681A83C93ECDFAB8B102A9 ] massfilter C:\WINDOWS\system32\drivers\massfilter.sys
19:31:56.0515 6128 massfilter - ok
19:31:56.0531 6128 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
19:31:56.0546 6128 mdmxsdk - ok
19:31:56.0593 6128 [ B7550A7107281D170CE85524B1488C98 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:31:56.0609 6128 Messenger - ok
19:31:56.0656 6128 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:31:56.0671 6128 mnmdd - ok
19:31:56.0718 6128 [ C2F1D365FD96791B037EE504868065D3 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:31:56.0734 6128 mnmsrvc - ok
19:31:56.0796 6128 [ 6FB74EBD4EC57A6F1781DE3852CC3362 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:31:56.0812 6128 Modem - ok
19:31:56.0828 6128 [ B24CE8005DEAB254C0251E15CB71D802 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:31:56.0843 6128 Mouclass - ok
19:31:56.0890 6128 [ 66A6F73C74E1791464160A7065CE711A ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:31:56.0890 6128 mouhid - ok
19:31:56.0906 6128 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:31:56.0921 6128 MountMgr - ok
19:31:57.0000 6128 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe
19:31:57.0015 6128 MozillaMaintenance - ok
19:31:57.0031 6128 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:31:57.0062 6128 mraid35x - ok
19:31:57.0078 6128 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:31:57.0109 6128 MRxDAV - ok
19:31:57.0171 6128 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:31:57.0203 6128 MRxSmb - ok
19:31:57.0250 6128 [ 35A031AF38C55F92D28AA03EE9F12CC9 ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:31:57.0265 6128 MSDTC - ok
19:31:57.0281 6128 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:31:57.0312 6128 Msfs - ok
19:31:57.0312 6128 MSIServer - ok
19:31:57.0343 6128 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:31:57.0359 6128 MSKSSRV - ok
19:31:57.0375 6128 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:31:57.0375 6128 MSPCLOCK - ok
19:31:57.0406 6128 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:31:57.0421 6128 MSPQM - ok
19:31:57.0421 6128 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:31:57.0437 6128 mssmbios - ok
19:31:57.0453 6128 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
19:31:57.0468 6128 MSTEE - ok
19:31:57.0515 6128 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:31:57.0546 6128 Mup - ok
19:31:57.0562 6128 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:31:57.0593 6128 NABTSFEC - ok
19:31:57.0640 6128 [ 46BB15AE2AC7D025D6D2567B876817BD ] napagent C:\WINDOWS\System32\qagentrt.dll
19:31:57.0671 6128 napagent - ok
19:31:57.0703 6128 [ C9DEAC695B5107C31B451F254DF7E3A4 ] Nbdrv C:\WINDOWS\system32\DRIVERS\nbdrv.sys
19:31:57.0718 6128 Nbdrv - ok
19:31:57.0750 6128 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:31:57.0765 6128 NDIS - ok
19:31:57.0812 6128 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:31:57.0828 6128 NdisIP - ok
19:31:57.0875 6128 [ E94265636D893314463CB650E43C3EB5 ] Ndisprot C:\WINDOWS\system32\DRIVERS\ndisprot.sys
19:31:57.0906 6128 Ndisprot - ok
19:31:57.0937 6128 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:31:57.0953 6128 NdisTapi - ok
19:31:58.0000 6128 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:31:58.0015 6128 Ndisuio - ok
19:31:58.0015 6128 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:31:58.0031 6128 NdisWan - ok
19:31:58.0078 6128 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:31:58.0093 6128 NDProxy - ok
19:31:58.0187 6128 [ 09128185A197EB8BCA72AFEDE52996CC ] NetBalancerService C:\Programme\NetBalancer\SeriousBit.NetBalancer.Service.exe
19:31:58.0218 6128 NetBalancerService - ok
19:31:58.0234 6128 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:31:58.0250 6128 NetBIOS - ok
19:31:58.0281 6128 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:31:58.0296 6128 NetBT - ok
19:31:58.0343 6128 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDE C:\WINDOWS\system32\netdde.exe
19:31:58.0375 6128 NetDDE - ok
19:31:58.0375 6128 [ 8ACE4251BFFD09CE75679FE940E996CC ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:31:58.0375 6128 NetDDEdsdm - ok
19:31:58.0421 6128 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:31:58.0437 6128 Netlogon - ok
19:31:58.0468 6128 [ E6D88F1F6745BF00B57E7855A2AB696C ] Netman C:\WINDOWS\System32\netman.dll
19:31:58.0500 6128 Netman - ok
19:31:58.0562 6128 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:31:58.0593 6128 NetTcpPortSharing - ok
19:31:58.0718 6128 [ E2F396F71A793A04839DBB6AF304A026 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
19:31:58.0765 6128 NETw3x32 - ok
19:31:58.0796 6128 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:31:58.0812 6128 NIC1394 - ok
19:31:58.0859 6128 [ F1B67B6B0751AE0E6E964B02821206A3 ] Nla C:\WINDOWS\System32\mswsock.dll
19:31:58.0859 6128 Nla - ok
19:31:58.0890 6128 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:31:58.0921 6128 Npfs - ok
19:31:58.0953 6128 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:31:58.0984 6128 Ntfs - ok
19:31:59.0000 6128 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
19:31:59.0000 6128 NtLmSsp - ok
19:31:59.0046 6128 [ 56AF4064996FA5BAC9C449B1514B4770 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:31:59.0078 6128 NtmsSvc - ok
19:31:59.0125 6128 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
19:31:59.0140 6128 Null - ok
19:31:59.0234 6128 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:31:59.0296 6128 nv - ok
19:31:59.0328 6128 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:31:59.0343 6128 NwlnkFlt - ok
19:31:59.0359 6128 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:31:59.0375 6128 NwlnkFwd - ok
19:31:59.0406 6128 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:31:59.0406 6128 ohci1394 - ok
19:31:59.0453 6128 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE
19:31:59.0484 6128 ose - ok
19:31:59.0515 6128 [ AFB2303FA7FD58438D3DB1ABAE4B9328 ] OsiGpib C:\WINDOWS\system32\drivers\OsiGpib.sys
19:31:59.0531 6128 OsiGpib - ok
19:31:59.0578 6128 [ F84785660305B9B903FB3BCA8BA29837 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:31:59.0593 6128 Parport - ok
19:31:59.0609 6128 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:31:59.0625 6128 PartMgr - ok
19:31:59.0656 6128 [ C2BF987829099A3EAA2CA6A0A90ECB4F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:31:59.0687 6128 ParVdm - ok
19:31:59.0703 6128 [ 387E8DEDC343AA2D1EFBC30580273ACD ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:31:59.0718 6128 PCI - ok
19:31:59.0734 6128 PCIDump - ok
19:31:59.0765 6128 [ 59BA86D9A61CBCF4DF8E598C331F5B82 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:31:59.0781 6128 PCIIde - ok
19:31:59.0812 6128 [ A2A966B77D61847D61A3051DF87C8C97 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
19:31:59.0828 6128 Pcmcia - ok
19:31:59.0828 6128 PDCOMP - ok
19:31:59.0843 6128 PDFRAME - ok
19:31:59.0843 6128 PDRELI - ok
19:31:59.0859 6128 PDRFRAME - ok
19:31:59.0890 6128 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
19:31:59.0906 6128 perc2 - ok
19:31:59.0921 6128 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:31:59.0937 6128 perc2hib - ok
19:31:59.0984 6128 [ A3EDBE9053889FB24AB22492472B39DC ] PlugPlay C:\WINDOWS\system32\services.exe
19:31:59.0984 6128 PlugPlay - ok
19:32:00.0015 6128 [ DEDEF40E1D05842639491365CB2C069E ] pmem C:\WINDOWS\System32\drivers\pmemnt.sys
19:32:00.0046 6128 pmem - ok
19:32:00.0062 6128 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:32:00.0062 6128 PolicyAgent - ok
19:32:00.0109 6128 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:32:00.0140 6128 PptpMiniport - ok
19:32:00.0171 6128 [ 590F057B19488420F720BF6423388775 ] PQNTDrv C:\WINDOWS\system32\drivers\PQNTDrv.sys
19:32:00.0187 6128 PQNTDrv - ok
19:32:00.0312 6128 [ EBE579425CCB8377BFC7C0B50C05EB56 ] PrivateDisk C:\Programme\Lenovo\SafeGuard PrivateDisk\PrivateDiskM.sys
19:32:00.0328 6128 PrivateDisk - ok
19:32:00.0359 6128 [ 6F9E6E874FD74EE6DD0BBECDE9D3F795 ] PROCDD C:\WINDOWS\system32\DRIVERS\PROCDD.SYS
19:32:00.0375 6128 PROCDD - ok
19:32:00.0390 6128 [ 2CB55427C58679F49AD600FCCBA76360 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
19:32:00.0421 6128 Processor - ok
19:32:00.0421 6128 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:32:00.0421 6128 ProtectedStorage - ok
19:32:00.0468 6128 [ FB4C54F3A168B178DABF15EEBAED8276 ] psadd C:\WINDOWS\system32\Drivers\psadd.sys
19:32:00.0484 6128 psadd - ok
19:32:00.0500 6128 [ A39E2901C4A75781D1BE845BD47D1131 ] PsaSrv C:\WINDOWS\system32\PsaSrv.exe
19:32:00.0531 6128 PsaSrv - ok
19:32:00.0546 6128 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:32:00.0562 6128 PSched - ok
19:32:00.0609 6128 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:32:00.0625 6128 Ptilink - ok
19:32:00.0671 6128 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:32:00.0703 6128 PxHelp20 - ok
19:32:00.0718 6128 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:32:00.0734 6128 ql1080 - ok
19:32:00.0750 6128 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:32:00.0781 6128 Ql10wnt - ok
19:32:00.0796 6128 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:32:00.0812 6128 ql12160 - ok
19:32:00.0828 6128 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:32:00.0843 6128 ql1240 - ok
19:32:00.0875 6128 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:32:00.0890 6128 ql1280 - ok
19:32:00.0906 6128 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:32:00.0906 6128 RasAcd - ok
19:32:00.0953 6128 [ F5BA6CACCDB66C8F048E867563203246 ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:32:00.0984 6128 RasAuto - ok
19:32:01.0000 6128 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:32:01.0015 6128 Rasl2tp - ok
19:32:01.0062 6128 [ F9A7B66EA345726EDB5862A46B1ECCD5 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:32:01.0078 6128 RasMan - ok
19:32:01.0093 6128 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:32:01.0125 6128 RasPppoe - ok
19:32:01.0156 6128 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:32:01.0171 6128 Raspti - ok
19:32:01.0218 6128 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:32:01.0250 6128 Rdbss - ok
19:32:01.0265 6128 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:32:01.0281 6128 RDPCDD - ok
19:32:01.0312 6128 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:32:01.0343 6128 rdpdr - ok
19:32:01.0421 6128 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:32:01.0437 6128 RDPWD - ok
19:32:01.0484 6128 [ 263AF18AF0F3DB99F574C95F284CCEC9 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:32:01.0515 6128 RDSessMgr - ok
19:32:01.0531 6128 [ ED761D453856F795A7FE056E42C36365 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:32:01.0546 6128 redbook - ok
19:32:01.0578 6128 [ D8F61AAAE73A1FBDE6F538BECC891F2F ] RegSrvc C:\Programme\Intel\Wireless\Bin\RegSrvc.exe
19:32:01.0609 6128 RegSrvc - ok
19:32:01.0656 6128 [ 0E97EC96D6942CEEC2D188CC2EB69A01 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:32:01.0687 6128 RemoteAccess - ok
19:32:01.0734 6128 [ E4CD1F3D84E1C2CA0B8CF7501E201593 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:32:01.0750 6128 RemoteRegistry - ok
19:32:01.0812 6128 [ 2A02E21867497DF20B8FC95631395169 ] RpcLocator C:\WINDOWS\system32\locator.exe
19:32:01.0828 6128 RpcLocator - ok
19:32:01.0859 6128 [ 3127AFBF2C1ED0AB14A1BBB7AAECB85B ] RpcSs C:\WINDOWS\system32\rpcss.dll
19:32:01.0859 6128 RpcSs - ok
19:32:01.0921 6128 [ 4BDD71B4B521521499DFD14735C4F398 ] RSVP C:\WINDOWS\system32\rsvp.exe
19:32:01.0953 6128 RSVP - ok
19:32:02.0015 6128 [ 25F697E3AFA7B337BBCADDBCE38E6934 ] S24EventMonitor C:\Programme\Intel\Wireless\Bin\S24EvMon.exe
19:32:02.0078 6128 S24EventMonitor - ok
19:32:02.0109 6128 [ 2862ADB14481AC28F98105FF33A99EB0 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
19:32:02.0125 6128 s24trans - ok
19:32:02.0156 6128 [ AFB8261B56CBA0D86AEB6DF682AF9785 ] SamSs C:\WINDOWS\system32\lsass.exe
19:32:02.0156 6128 SamSs - ok
19:32:02.0203 6128 [ DCEC079FAD95D36C8DD5CB6D779DFE32 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:32:02.0234 6128 SCardSvr - ok
19:32:02.0265 6128 [ A050194A44D7FA8D7186ED2F4E8367AE ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:32:02.0296 6128 Schedule - ok
19:32:02.0343 6128 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:32:02.0359 6128 Secdrv - ok
19:32:02.0406 6128 [ BEE4CFD1D48C23B44CF4B974B0B79B2B ] seclogon C:\WINDOWS\System32\seclogon.dll
19:32:02.0437 6128 seclogon - ok
19:32:02.0453 6128 [ 2AAC9B6ED9EDDFFB721D6452E34D67E3 ] SENS C:\WINDOWS\system32\sens.dll
19:32:02.0484 6128 SENS - ok
19:32:02.0531 6128 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
19:32:02.0531 6128 serenum - ok
19:32:02.0562 6128 [ CF24EB4F0412C82BCD1F4F35A025E31D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
19:32:02.0578 6128 Serial - ok
19:32:02.0625 6128 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
19:32:02.0625 6128 Sfloppy - ok
19:32:02.0656 6128 [ 2DB7D303C36DDD055215052F118E8E75 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:32:02.0656 6128 ShellHWDetection - ok
19:32:02.0687 6128 [ 1A9B76C8E0D77BCACA24FDF36781B59D ] ShockMgr C:\WINDOWS\system32\drivers\ShockMgr.sys
19:32:02.0703 6128 ShockMgr - ok
19:32:02.0718 6128 [ CB0C065AF3AC9AC307408EA021CDD20E ] Shockprf C:\WINDOWS\system32\drivers\Shockprf.sys
19:32:02.0750 6128 Shockprf - ok
19:32:02.0750 6128 Simbad - ok
19:32:02.0812 6128 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:32:02.0875 6128 sisagp - ok
19:32:02.0968 6128 [ B1B3DAA853D37A0368ED399995938755 ] siusbmod C:\WINDOWS\system32\DRIVERS\siusbmod.sys
19:32:02.0968 6128 siusbmod - ok
19:32:03.0031 6128 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:32:03.0046 6128 SLIP - ok
19:32:03.0062 6128 [ 26341D0DD225D19FD50E0EE3C3C77502 ] Smapint C:\WINDOWS\system32\drivers\Smapint.sys
19:32:03.0078 6128 Smapint - ok
19:32:03.0140 6128 [ FFDA325B58B946A383E24A2CE07364F0 ] SmartSurferManager C:\Programme\WEB.DE\WEB.DE SmartSurfer\SmurfService.exe
19:32:03.0171 6128 SmartSurferManager - ok
19:32:03.0203 6128 [ 3BA9D0C8A0FBD9FB4029B6CD87C8CE0B ] smi2 C:\Programme\SMI2\smi2.sys
19:32:03.0218 6128 smi2 - ok
19:32:03.0265 6128 [ 01A4388E45BA272082BFC35B0C8DBF8A ] smihlp C:\Programme\ThinkVantage Fingerprint Software\smihlp.sys
19:32:03.0296 6128 smihlp - ok
19:32:03.0343 6128 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:32:03.0359 6128 Sparrow - ok
19:32:03.0421 6128 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:32:03.0437 6128 splitter - ok
19:32:03.0468 6128 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:32:03.0484 6128 Spooler - ok
19:32:03.0515 6128 [ 50FA898F8C032796D3B1B9951BB5A90F ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:32:03.0531 6128 sr - ok
19:32:03.0578 6128 [ FE77A85495065F3AD59C5C65B6C54182 ] srservice C:\WINDOWS\system32\srsvc.dll
19:32:03.0609 6128 srservice - ok
19:32:03.0656 6128 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:32:03.0687 6128 Srv - ok
19:32:03.0734 6128 [ 4DF5B05DFAEC29E13E1ED6F6EE12C500 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:32:03.0750 6128 SSDPSRV - ok
19:32:03.0796 6128 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:32:03.0812 6128 ssmdrv - ok
19:32:03.0828 6128 StarOpen - ok
19:32:03.0875 6128 [ BC2C5985611C5356B24AEB370953DED9 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:32:03.0906 6128 stisvc - ok
19:32:03.0953 6128 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:32:03.0968 6128 streamip - ok
19:32:04.0046 6128 [ D7E9CE1B498A316067A11F9000D5DEE3 ] SUService c:\programme\lenovo\system update\suservice.exe
19:32:04.0062 6128 SUService - ok
19:32:04.0062 6128 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:32:04.0078 6128 swenum - ok
19:32:04.0093 6128 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:32:04.0109 6128 swmidi - ok
19:32:04.0125 6128 SwPrv - ok
19:32:04.0171 6128 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
19:32:04.0187 6128 symc810 - ok
19:32:04.0203 6128 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:32:04.0218 6128 symc8xx - ok
19:32:04.0265 6128 SYMIDSCO - ok
19:32:04.0281 6128 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:32:04.0296 6128 sym_hi - ok
19:32:04.0328 6128 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:32:04.0343 6128 sym_u3 - ok
19:32:04.0375 6128 [ 7C02DB7416D52C02B131D0E3A8D2337C ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:32:04.0406 6128 SynTP - ok
19:32:04.0421 6128 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:32:04.0437 6128 sysaudio - ok
19:32:04.0484 6128 [ 2903FFFA2523926D6219428040DCE6B9 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:32:04.0500 6128 SysmonLog - ok
19:32:04.0546 6128 [ 0C82061920A2DE35D33C2C2BB83B1E98 ] tap0801 C:\WINDOWS\system32\DRIVERS\tap0801.sys
19:32:04.0562 6128 tap0801 - ok
19:32:04.0578 6128 [ 05903CAC4B98908D55EA5774775B382E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:32:04.0609 6128 TapiSrv - ok
19:32:04.0671 6128 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:32:04.0703 6128 Tcpip - ok
19:32:04.0750 6128 [ FC6FE02F400308606A911640E72326B5 ] TcUsb C:\WINDOWS\system32\Drivers\tcusb.sys
19:32:04.0765 6128 TcUsb - ok
19:32:04.0796 6128 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:32:04.0812 6128 TDPIPE - ok
19:32:04.0859 6128 [ 564B337034271B7BDDCABFDDC91C6B7A ] TDSMAPI C:\WINDOWS\system32\drivers\TDSMAPI.SYS
19:32:04.0890 6128 TDSMAPI - ok
19:32:04.0906 6128 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:32:04.0937 6128 TDTCP - ok
19:32:04.0953 6128 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:32:04.0968 6128 TermDD - ok
19:32:05.0031 6128 [ B7DE02C863D8F5A005A7BF375375A6A4 ] TermService C:\WINDOWS\System32\termsrv.dll
19:32:05.0062 6128 TermService - ok
19:32:05.0093 6128 [ 2DB7D303C36DDD055215052F118E8E75 ] Themes C:\WINDOWS\System32\shsvcs.dll
19:32:05.0109 6128 Themes - ok
19:32:05.0203 6128 [ BEC875CAF94E9FD6BC95B84BD07C1E99 ] ThinkVantage Registry Monitor Service C:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe
19:32:05.0234 6128 ThinkVantage Registry Monitor Service - ok
19:32:05.0281 6128 [ 03681A1CE77F51586903869A5AB1DEAB ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:32:05.0296 6128 TlntSvr - ok
19:32:05.0343 6128 [ D213A9247DC347F305A2D4CC9B951487 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
19:32:05.0359 6128 TosIde - ok
19:32:05.0406 6128 [ A3552782E8D402F3AA513765D93C852D ] TPHDEXLGSVC C:\WINDOWS\system32\TPHDEXLG.EXE
19:32:05.0437 6128 TPHDEXLGSVC - ok
19:32:05.0484 6128 [ 29F3601D4233A53F819010FEE8C04A60 ] TPHKDRV C:\WINDOWS\system32\drivers\TPHKDRV.sys
19:32:05.0484 6128 TPHKDRV - ok
19:32:05.0515 6128 [ DFB268FF0A6DCB9280015FF527F892FF ] TpKmpSVC C:\WINDOWS\system32\TpKmpSVC.exe
19:32:05.0562 6128 TpKmpSVC - ok
19:32:05.0609 6128 [ 44672DE6CEA9569C21C4B7A8D2560750 ] TPPWRIF C:\WINDOWS\system32\drivers\Tppwrif.sys
19:32:05.0625 6128 TPPWRIF - ok
19:32:05.0656 6128 [ 626504572B175867F30F3215C04B3E2F ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:32:05.0687 6128 TrkWks - ok
19:32:05.0703 6128 [ F2ABA3066D7921D7FCDBD66DEA88BE11 ] TSMAPIP C:\WINDOWS\system32\drivers\TSMAPIP.SYS
19:32:05.0734 6128 TSMAPIP - ok
19:32:05.0953 6128 [ CF3BC148A6979BCF5AF8591E687C1390 ] TSSCoreService C:\Programme\Lenovo\Client Security Solution\tvttcsd.exe
19:32:05.0984 6128 TSSCoreService - ok
19:32:06.0093 6128 [ EC38192F2F5361B48BC387C2DB337264 ] TVT Backup Service C:\Programme\Lenovo\Rescue and Recovery\rrservice.exe
19:32:06.0234 6128 TVT Backup Service - ok
19:32:06.0343 6128 [ FE1D3EF5CAA8EE28A8B66FA1F180681B ] TVT Scheduler C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe
19:32:06.0375 6128 TVT Scheduler - ok
19:32:06.0421 6128 [ DD957007DF98AECFFAAA2656D4B981E4 ] tvtfilter C:\WINDOWS\system32\drivers\tvtfilter.sys
19:32:06.0421 6128 tvtfilter - ok
19:32:06.0468 6128 [ 2E72C66682E9274C97AE3F5A57C2FA33 ] tvtnetwk C:\Programme\Lenovo\Rescue and Recovery\ADM\IUService.exe
19:32:06.0500 6128 tvtnetwk - ok
19:32:06.0531 6128 [ 0727CCE3FF1A4446F4A1D507361567AB ] TVTPktFilter C:\WINDOWS\system32\DRIVERS\tvtpktfilter.sys
19:32:06.0562 6128 TVTPktFilter - ok
19:32:06.0562 6128 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:32:06.0593 6128 Udfs - ok
19:32:06.0671 6128 [ 0CA9E659B7053D398052776AC936B167 ] UI Assistant Service C:\Programme\Mobile Partner Manager\AssistantServices.exe
19:32:06.0687 6128 UI Assistant Service - ok
19:32:06.0765 6128 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
19:32:06.0781 6128 ultra - ok
19:32:06.0828 6128 [ AB0A7CA90D9E3D6A193905DC1715DED0 ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
19:32:06.0859 6128 UMWdf - ok
19:32:06.0921 6128 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:32:06.0953 6128 Update - ok
19:32:07.0015 6128 [ 1DFD8975D8C89214B98D9387C1125B49 ] upnphost C:\WINDOWS\System32\upnphost.dll
19:32:07.0046 6128 upnphost - ok
19:32:07.0062 6128 [ 9B11E6118958E63E1FEF129466E2BDA7 ] UPS C:\WINDOWS\System32\ups.exe
19:32:07.0062 6128 UPS - ok
19:32:07.0125 6128 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
19:32:07.0140 6128 usbaudio - ok
19:32:07.0156 6128 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:32:07.0171 6128 usbccgp - ok
19:32:07.0203 6128 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:32:07.0218 6128 usbehci - ok
19:32:07.0234 6128 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:32:07.0265 6128 usbhub - ok
19:32:07.0296 6128 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:32:07.0312 6128 usbprint - ok
19:32:07.0328 6128 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:32:07.0328 6128 usbscan - ok
19:32:07.0343 6128 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:32:07.0359 6128 USBSTOR - ok
19:32:07.0375 6128 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:32:07.0406 6128 usbuhci - ok
19:32:07.0421 6128 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
19:32:07.0437 6128 usb_rndisx - ok
19:32:07.0468 6128 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:32:07.0484 6128 VgaSave - ok
19:32:07.0515 6128 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:32:07.0531 6128 viaagp - ok
19:32:07.0546 6128 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
19:32:07.0562 6128 ViaIde - ok
19:32:07.0562 6128 [ A5A712F4E880874A477AF790B5186E1D ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:32:07.0578 6128 VolSnap - ok
19:32:07.0640 6128 [ 68F106273BE29E7B7EF8266977268E78 ] VSS C:\WINDOWS\System32\vssvc.exe
19:32:07.0671 6128 VSS - ok
19:32:07.0703 6128 [ 7B353059E665F8B7AD2BBEAEF597CF45 ] W32Time C:\WINDOWS\system32\w32time.dll
19:32:07.0718 6128 W32Time - ok
19:32:07.0765 6128 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:32:07.0765 6128 Wanarp - ok
19:32:07.0781 6128 WDICA - ok
19:32:07.0828 6128 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:32:07.0843 6128 wdmaud - ok
19:32:07.0875 6128 [ 81727C9873E3905A2FFC1EBD07265002 ] WebClient C:\WINDOWS\System32\webclnt.dll
19:32:07.0890 6128 WebClient - ok
19:32:07.0953 6128 [ 11EC1AFCEB5C917CE73D3C301FF4291E ] winachsf C:\WINDOWS\system32\DRIVERS\hsx_cnxt.sys
19:32:08.0000 6128 winachsf - ok
19:32:08.0093 6128 [ 6F3F3973D97714CC5F906A19FE883729 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:32:08.0109 6128 winmgmt - ok
19:32:08.0203 6128 [ F2E9FCB970D02E1647E185DA1D2E3CA9 ] WMConnectCDS C:\Programme\Windows Media Connect 2\wmccds.exe
19:32:08.0250 6128 WMConnectCDS - ok
19:32:08.0296 6128 [ 140EF97B64F560FD78643CAE2CDAD838 ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:32:08.0312 6128 WmdmPmSN - ok
19:32:08.0375 6128 [ FFA4D901D46D07A5BAB2D8307FBB51A6 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:32:08.0421 6128 Wmi - ok
19:32:08.0484 6128 [ 93908111BA57A6E60EC2FA2DE202105C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:32:08.0500 6128 WmiApSrv - ok
19:32:08.0531 6128 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:32:08.0562 6128 WSTCODEC - ok
19:32:08.0625 6128 [ C4F109C005F6725162D2D12CA751E4A7 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:32:08.0656 6128 WZCSVC - ok
19:32:08.0703 6128 [ 0ADA34871A2E1CD2CAAFED1237A47750 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:32:08.0734 6128 xmlprov - ok
19:32:08.0765 6128 [ 616B411BFC0E9F535A436759F19B79D8 ] ZTEusbmdm6k C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys
19:32:08.0781 6128 ZTEusbmdm6k - ok
19:32:08.0812 6128 [ 616B411BFC0E9F535A436759F19B79D8 ] ZTEusbnmea C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
19:32:08.0828 6128 ZTEusbnmea - ok
19:32:08.0875 6128 [ 616B411BFC0E9F535A436759F19B79D8 ] ZTEusbser6k C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
19:32:08.0890 6128 ZTEusbser6k - ok
19:32:08.0906 6128 ================ Scan global ===============================
19:32:08.0953 6128 [ 2C60091CA5F67C3032EAB3B30390C27F ] C:\WINDOWS\system32\basesrv.dll
19:32:09.0000 6128 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
19:32:09.0031 6128 [ A28CE25B59C90E12743001A1F2AE3613 ] C:\WINDOWS\system32\winsrv.dll
19:32:09.0046 6128 [ A3EDBE9053889FB24AB22492472B39DC ] C:\WINDOWS\system32\services.exe
19:32:09.0062 6128 [Global] - ok
19:32:09.0062 6128 ================ Scan MBR ==================================
19:32:09.0078 6128 [ CE6E2141592D92925559A951CAF4972D ] \Device\Harddisk0\DR0
19:32:09.0375 6128 \Device\Harddisk0\DR0 - ok
19:32:09.0375 6128 ================ Scan VBR ==================================
19:32:09.0375 6128 [ 078E58CF0A9BFAAB526C1F1F72850B5C ] \Device\Harddisk0\DR0\Partition1
19:32:09.0375 6128 \Device\Harddisk0\DR0\Partition1 - ok
19:32:09.0390 6128 [ 2645F2421C6D1E1AACE3F5EAA1CD02AA ] \Device\Harddisk0\DR0\Partition2
19:32:09.0406 6128 \Device\Harddisk0\DR0\Partition2 - ok
19:32:09.0406 6128 ============================================================
19:32:09.0406 6128 Scan finished
19:32:09.0406 6128 ============================================================
19:32:09.0406 4500 Detected object count: 0
19:32:09.0406 4500 Actual detected object count: 0
19:32:36.0343 1844 Deinitialize success
DDS Logfile: Code:
ATTFilter DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Onkel Markus at 19:35:41 on 2012-12-13
Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.1022.652 [GMT 1:00]
.
AV: AntiVir Desktop *Enabled/Outdated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ================
.
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Programme\Intel\Wireless\Bin\EvtEng.exe
C:\Programme\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Programme\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Programme\Avira\AntiVir Desktop\avguard.exe
C:\Programme\ThinkPad\Bluetooth Software\bin\btwdins.exe
C:\Programme\RWTH Aachen\Cisco VPN Client\cvpnd.exe
C:\Programme\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Programme\Avira\AntiVir Desktop\avshadow.exe
C:\Programme\Intel\Wireless\Bin\RegSrvc.exe
C:\Programme\WEB.DE\WEB.DE SmartSurfer\SmurfService.exe
c:\programme\lenovo\system update\suservice.exe
C:\Programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe
C:\WINDOWS\System32\TPHDEXLG.EXE
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Programme\Lenovo\Client Security Solution\tvttcsd.exe
C:\Programme\Lenovo\Rescue and Recovery\rrservice.exe
C:\Programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe
C:\Programme\Lenovo\Rescue and Recovery\ADM\IUService.exe
C:\Programme\Mobile Partner Manager\AssistantServices.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Programme\Gemeinsame Dateien\Lenovo\Logger\logmon.exe
C:\Programme\ThinkPad\ConnectUtilities\AcSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Programme\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe
C:\Programme\Lenovo\SafeGuard PrivateDisk\pdservice.exe
C:\Programme\ATI Technologies\ATI.ACE\CLI.EXE
C:\Programme\Lenovo\PkgMgr\HOTKEY\TPONSCR.exe
C:\Programme\Lenovo\PkgMgr\HOTKEY_1\TpScrex.exe
C:\Programme\Canon\MyPrinter\BJMyPrt.exe
C:\Programme\Diskeeper Corporation\Diskeeper\DkIcon.exe
C:\Programme\Avira\AntiVir Desktop\avgnt.exe
C:\Programme\Ask.com\Updater\Updater.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Microsoft ActiveSync\wcescomm.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Programme\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.ask.com/web?l=dis&o=APN10234&gct=hp&apn_dtid=^YYYYYY^YY^US&apn_ptnrs=^A8B&apn_uid=6636018933564177&p2=^A8B^YYYYYY^YY^US
uSearch Bar = hxxp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
uSearch Page = hxxp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
uProxyServer = 127.0.0.1:61798
uSearchURL,(Default) = hxxp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
uURLSearchHooks: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\programme\yahoo!\companion\installs\cpn\yt.dll
uURLSearchHooks: AskToolbar: {3cb073f3-be3c-4e8f-942d-8a747b54486f} - c:\programme\asktoolbar4\asktoolbar4X.dll
mURLSearchHooks: Winamp Search Class: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - c:\programme\winamp toolbar\winamptb.dll
BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - c:\programme\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\programme\gemeinsame dateien\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Winamp Toolbar Loader: {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - c:\programme\winamp toolbar\winamptb.dll
BHO: AskToolbar: {3cb073f3-be3c-4e8f-942d-8a747b54486f} - c:\programme\asktoolbar4\asktoolbar4X.dll
BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\programme\java\jre1.5.0_06\bin\ssv.dll
BHO: Windows Live Toolbar Helper: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\programme\windows live toolbar\msntb.dll
BHO: Support.com Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\programme\ask.com\GenericAskToolbar.dll
BHO: CPwmIEBrowserHelper Object: {F040E541-A427-4CF7-85D8-75E3E0F476C5} - c:\programme\lenovo\client security solution\tvtpwm_ie_com.dll
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\programme\windows live toolbar\msntb.dll
TB: Winamp Toolbar: {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - c:\programme\winamp toolbar\winamptb.dll
TB: Support.com Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\programme\ask.com\GenericAskToolbar.dll
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\programme\windows live toolbar\msntb.dll
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\programme\yahoo!\companion\installs\cpn\yt.dll
TB: Winamp Toolbar: {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - c:\programme\winamp toolbar\winamptb.dll
TB: Support.com Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\programme\ask.com\GenericAskToolbar.dll
TB: AskToolbar: {3cb073f3-be3c-4e8f-942d-8a747b54486f} - c:\programme\asktoolbar4\asktoolbar4X.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\programme\skype\phone\Skype.exe" /nosplash /minimized
uRun: [H/PC Connection Agent] "c:\programme\microsoft activesync\wcescomm.exe"
mRun: [PWRMGRTR] rundll32 c:\progra~1\thinkpad\utilit~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
mRun: [TPHOTKEY] c:\progra~1\lenovo\pkgmgr\hotkey\TPHKMGR.exe
mRun: [ATICCC] "c:\programme\ati technologies\ati.ace\CLIStart.exe"
mRun: [PDService.exe] "c:\programme\lenovo\safeguard privatedisk\pdservice.exe"
mRun: [CanonMyPrinter] c:\programme\canon\myprinter\BJMyPrt.exe /logon
mRun: [UIExec] "c:\programme\mobile partner manager\UIExec.exe"
mRun: [avgnt] "c:\programme\avira\antivir desktop\avgnt.exe" /min
mRun: [ApnUpdater] "c:\programme\ask.com\updater\Updater.exe"
mRun: [KernelFaultCheck] c:\windows\system32\dumprep 0 -k
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:149
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: &Winamp Search - c:\dokumente und einstellungen\all users\anwendungsdaten\winamp toolbar\ietoolbar\resources\en-us\local\search.html
IE: &Windows Live Search - c:\programme\windows live toolbar\msntb.dll/search.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Senden an &Bluetooth-Gerät... - c:\programme\thinkpad\bluetooth software\btsendto_ie_ctx.htm
IE: {0045D4BC-5189-4b67-969C-83BB1906C421} - {0FE81B52-73FA-425F-8F06-3F32451AC73F} - c:\programme\lenovo\client security solution\tvtpwm_ie_com.dll
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} - c:\programme\java\jre1.5.0_06\bin\ssv.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\programme\microsoft activesync\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\programme\microsoft activesync\INetRepl.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {DA320635-F48C-4613-8325-D75A933C549E} - c:\programme\lenovo\system update\sulauncher.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programme\messenger\msmsgs.exe
LSP: mswsock.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{36B2CF32-E052-45F5-A522-1C67CE428A1C} : DHCPNameServer = 192.168.0.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\programme\gemeinsame dateien\skype\Skype4COM.dll
Notify: ACNotify - ACNotify.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: AwayNotify - c:\programme\lenovo\awaytask\AwayNotify.dll
Notify: NavLogon - <no file>
Notify: psfus - psqlpwd.dll
Notify: tpfnf2 - notifyf2.dll
Notify: tphotkey - tphklock.dll
LSA: Notification Packages = scecli psqlpwd ACGina
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\dokumente und einstellungen\onkel markus\anwendungsdaten\mozilla\firefox\profiles\wg48t7rj.default\
FF - prefs.js: browser.startup.homepage - www.google.de
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 5
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\real\realplayer\netscape6\nppl3260.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprjplug.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpjplug.dll
FF - plugin: c:\programme\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_268.dll
FF - ExtSQL: 2012-12-01 18:45; {3cb073f3-be3c-4e8f-942d-8a747b54486f}; c:\dokumente und einstellungen\onkel markus\anwendungsdaten\mozilla\firefox\profiles\wg48t7rj.default\extensions\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
FF - ExtSQL: !HIDDEN! 2009-09-03 15:29; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
.
============= SERVICES / DRIVERS ===============
.
R1 avgio;avgio;c:\programme\avira\antivir desktop\avgio.sys [2011-3-21 11608]
R1 Ndisprot;GreenPacket NDIS Protocol Driver;c:\windows\system32\drivers\Ndisprot.sys [2010-10-19 21504]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\programme\avira\antivir desktop\sched.exe [2011-3-21 136360]
R2 AntiVirService;Avira AntiVir Guard;c:\programme\avira\antivir desktop\avguard.exe [2011-3-21 269480]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-3-21 66616]
R2 OsiGpib;OsiGpib;c:\windows\system32\drivers\OsiGpib.sys [2008-1-26 11776]
R2 PrivateDisk;PrivateDisk;c:\programme\lenovo\safeguard privatedisk\privatediskm.sys [2006-3-13 58368]
R2 SmartSurferManager;SmartSurfer Manager;c:\programme\web.de\web.de smartsurfer\SmurfService.exe [2007-8-1 132560]
R2 smi2;smi2;c:\programme\smi2\smi2.sys [2006-7-14 3968]
R2 smihlp;SMI helper driver;c:\programme\thinkvantage fingerprint software\smihlp.sys [2006-4-25 3456]
R2 UI Assistant Service;UI Assistant Service;c:\programme\mobile partner manager\AssistantServices.exe [2010-10-19 247296]
R3 Nbdrv;NetBalancer Service;c:\windows\system32\drivers\nbdrv.sys [2012-12-10 31016]
S2 gpibclsd;GPIB Device Class Driver;c:\windows\system32\drivers\gpibclsd.sys [2008-1-26 34664]
S2 NetBalancerService;NetBalancerService;c:\programme\netbalancer\SeriousBit.NetBalancer.Service.exe [2012-12-10 8704]
S3 gpibclsb;GPIB Board Class Driver;c:\windows\system32\drivers\gpibclsb.sys [2008-1-26 57096]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2010-10-19 9216]
S3 siusbmod;siusbmod;c:\windows\system32\drivers\siusbmod.sys [2005-7-28 27008]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [2006-10-1 26624]
.
=============== Created Last 30 ================
.
2012-12-12 20:23:43 -------- d-----w- c:\dokumente und einstellungen\onkel markus\anwendungsdaten\Malwarebytes
2012-12-12 20:23:18 -------- d-----w- c:\dokumente und einstellungen\all users\anwendungsdaten\Malwarebytes
2012-12-12 20:23:16 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-12 20:23:16 -------- d-----w- c:\programme\Malwarebytes' Anti-Malware
2012-12-10 19:48:02 -------- d-----w- c:\dokumente und einstellungen\all users\anwendungsdaten\SeriousBit
2012-12-10 19:47:00 31016 ----a-w- c:\windows\system32\drivers\nbdrv.sys
2012-12-10 19:46:57 -------- d-----w- c:\programme\NetBalancer
2012-12-01 18:14:34 -------- d-----w- c:\dokumente und einstellungen\onkel markus\anwendungsdaten\searchresultstb
2012-12-01 17:45:24 -------- d-----w- c:\dokumente und einstellungen\onkel markus\anwendungsdaten\Ask.com
2012-12-01 17:45:18 -------- d-----w- c:\dokumente und einstellungen\onkel markus\anwendungsdaten\asktoolbar4
2012-12-01 17:45:16 -------- d-----w- c:\programme\asktoolbar4
2012-11-26 20:01:50 -------- d-----w- c:\windows\ie8updates
2012-11-26 17:34:10 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-11-26 17:34:09 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2012-11-26 17:34:07 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2012-11-26 17:34:06 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2012-11-25 14:24:24 -------- d-sh--w- c:\dokumente und einstellungen\onkel markus\PrivacIE
2012-11-25 14:21:59 -------- d-sh--w- c:\dokumente und einstellungen\onkel markus\IETldCache
2012-11-25 14:18:19 -------- dc-h--w- c:\windows\ie8
2012-11-16 09:09:28 -------- d-----w- c:\programme\CCleaner
.
==================== Find3M ====================
.
2012-10-22 19:56:29 1866496 ------w- c:\windows\system32\win32k.sys
2012-10-02 18:04:21 58368 ------w- c:\windows\system32\synceng.dll
.
============= FINISH: 19:36:37,53 ===============
Code:
ATTFilter .
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 08.08.2007 04:26:48
System Uptime: 13.12.2012 18:20:21 (1 hours ago)
.
Motherboard: LENOVO | | 9461DXG
Processor: Intel(R) Core(TM)2 CPU T5600 @ 1.83GHz | None | 1828/167mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 59 GiB total, 1,438 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 48 GiB total, 1,13 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: TVT Packet Filter Miniport
Device ID: ROOT\LGL_TVTPKTFILTERMP\0005
Manufacturer: Lenovo Group Limited
Name: TVT Packet Filter Miniport #6
PNP Device ID: ROOT\LGL_TVTPKTFILTERMP\0005
Service: TVTPktFilter
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: TVT Packet Filter Miniport
Device ID: ROOT\LGL_TVTPKTFILTERMP\0006
Manufacturer: Lenovo Group Limited
Name: TVT Packet Filter Miniport #7
PNP Device ID: ROOT\LGL_TVTPKTFILTERMP\0006
Service: TVTPktFilter
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Paketplaner-Miniport
Device ID: ROOT\MS_PSCHEDMP\0004
Manufacturer: Microsoft
Name: Paketplaner-Miniport #5
PNP Device ID: ROOT\MS_PSCHEDMP\0004
Service: PSched
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Paketplaner-Miniport
Device ID: ROOT\MS_PSCHEDMP\0006
Manufacturer: Microsoft
Name: Paketplaner-Miniport #7
PNP Device ID: ROOT\MS_PSCHEDMP\0006
Service: PSched
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Cisco Systems VPN Adapter
Device ID: ROOT\NET\0000
Manufacturer: Cisco Systems
Name: Cisco Systems VPN Adapter
PNP Device ID: ROOT\NET\0000
Service: CVirtA
.
==== System Restore Points ===================
.
RP630: 06.09.2012 21:02:13 - Systemprüfpunkt
RP631: 10.09.2012 14:18:43 - Systemprüfpunkt
RP632: 14.09.2012 11:02:29 - Software Distribution Service 3.0
RP633: 22.09.2012 23:08:59 - Software Distribution Service 3.0
RP634: 08.10.2012 19:39:23 - Systemprüfpunkt
RP635: 12.10.2012 18:04:37 - Software Distribution Service 3.0
RP636: 20.10.2012 19:31:24 - Systemprüfpunkt
RP637: 27.10.2012 18:10:59 - Systemprüfpunkt
RP638: 02.11.2012 19:14:47 - Systemprüfpunkt
RP639: 04.11.2012 14:36:02 - Systemprüfpunkt
RP640: 16.11.2012 10:04:20 - Removed Sonic Icons for Lenovo
RP641: 16.11.2012 10:04:48 - Removed SchedulePro4.5Demo.
RP642: 16.11.2012 10:05:49 - Removed SuperPro Designer v8.5 (Eval. Ed.).
RP643: 16.11.2012 10:15:01 - Removed Microsoft Silverlight
RP644: 16.11.2012 14:05:55 - Software Distribution Service 3.0
RP645: 24.11.2012 21:09:23 - Removed Microsoft Silverlight
RP646: 24.11.2012 21:14:09 - Removed Microsoft Silverlight
RP647: 25.11.2012 15:04:03 - Removed Microsoft Silverlight
RP648: 25.11.2012 15:18:58 - Installed Windows Internet Explorer 8.
RP649: 26.11.2012 21:00:57 - Software Distribution Service 3.0
RP650: 30.11.2012 16:59:09 - Systemprüfpunkt
RP651: 01.12.2012 18:17:48 - Systemprüfpunkt
RP652: 03.12.2012 18:57:46 - Systemprüfpunkt
RP653: 07.12.2012 22:48:44 - Systemprüfpunkt
RP654: 10.12.2012 20:47:20 - System Restore Point created by NetBalancer Setup
.
==== Installed Programs ======================
.
Access Help
Adobe Flash Player 11 Plugin
Adobe Reader 9 - Deutsch
Alice Software 4.10.0
Ask Toolbar
AskToolbar
ATI - Dienstprogramm zur Deinstallation der Software
ATI Catalyst Control Center
ATI Display Driver
ATI HYDRAVISION
AutoUpdate
Avira AntiVir Personal - Free Antivirus
Camera Window
Canon Camera Window for ZoomBrowser EX
Canon Internet Library for ZoomBrowser EX
Canon MP Navigator EX 1.2
Canon MP190 series Benutzerregistrierung
Canon MP190 series MP Drivers
Canon My Printer
Canon Utilities Easy-PhotoPrint EX
Canon Utilities File Viewer Utility 1.2
Canon Utilities Solution Menu
Canon Utilities ZoomBrowser EX
CCleaner
CIG
Client Security Solution
CoPilot Central 2.0
Dienstprogramm 'ThinkPad-Tastaturanpassung'
Diskeeper Lite
DivX Codec
DivX Converter
DivX Player
DivX Version Checker
DivX Web Player
EndNote X Volume License Edition
Ergänzung zu Productivity Center für ThinkPad
File Viewer Utility 1.2
FLVPlayer
Funktion "TrackPoint-Eingabehilfen"
Help Center
High Definition Audio - KB888111
Hotfix für Windows XP (KB2158563)
Hotfix für Windows XP (KB2443685)
Hotfix für Windows XP (KB2570791)
Hotfix für Windows XP (KB2633952)
Hotfix für Windows XP (KB2756822)
Hotfix für Windows XP (KB942288-v3)
Hotfix für Windows XP (KB952287)
Hotfix für Windows XP (KB961118)
Hotfix für Windows XP (KB970653-v3)
Hotfix für Windows XP (KB976098-v2)
Hotfix für Windows XP (KB979306)
Hotfix für Windows XP (KB981793)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB976002-v5)
Intel(R) PROSet/Wireless Software
InterActual Player
InterVideo WinDVD
InterVideo WinDVD Creator 3
IsoBuster 2.2
J2SE Runtime Environment 5.0 Update 6
Logitech Audio Echo Cancellation Component
Logitech QuickCam
Logitech Video Enumerator
Logitech® Camera-Treiber
Malwarebytes Anti-Malware Version 1.65.1.1000
mCore
mDriver
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Language Pack - DEU
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft ActiveSync
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft ReportViewer 2010 Redistributable
Microsoft Silverlight
Microsoft Visio Professional 2002 [DEU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 SP1 CRT Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
mMHouse
Mobile Partner Manager
Mozilla Firefox 16.0.2 (x86 de)
Mozilla Maintenance Service
mPfMgr
mProSafe
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6.0 Parser
MVision
mWlsSafe
mXML
NetBalancer
Norton PartitionMagic
Norton PartitionMagic 8.0
PDFCreator
QuickTime
RealPlayer
Rescue and Recovery
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Sicherheitsupdate für Microsoft Windows (KB2564958)
Sicherheitsupdate für Step by Step Interactive Training (KB898458)
Sicherheitsupdate für Step by Step Interactive Training (KB923723)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2183461)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2360131)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2416400)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2482017)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2497640)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2530548)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2544521)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2559049)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2586448)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2618444)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2647516)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2675157)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2699988)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2722913)
Sicherheitsupdate für Windows Internet Explorer 7 (KB2744842)
Sicherheitsupdate für Windows Internet Explorer 7 (KB929969)
Sicherheitsupdate für Windows Internet Explorer 7 (KB937143)
Sicherheitsupdate für Windows Internet Explorer 7 (KB938127)
Sicherheitsupdate für Windows Internet Explorer 7 (KB939653)
Sicherheitsupdate für Windows Internet Explorer 7 (KB942615)
Sicherheitsupdate für Windows Internet Explorer 7 (KB950759)
Sicherheitsupdate für Windows Internet Explorer 7 (KB953838)
Sicherheitsupdate für Windows Internet Explorer 7 (KB956390)
Sicherheitsupdate für Windows Internet Explorer 7 (KB958215)
Sicherheitsupdate für Windows Internet Explorer 7 (KB960714)
Sicherheitsupdate für Windows Internet Explorer 7 (KB961260)
Sicherheitsupdate für Windows Internet Explorer 7 (KB963027)
Sicherheitsupdate für Windows Internet Explorer 7 (KB969897)
Sicherheitsupdate für Windows Internet Explorer 7 (KB972260)
Sicherheitsupdate für Windows Internet Explorer 7 (KB974455)
Sicherheitsupdate für Windows Internet Explorer 7 (KB976325)
Sicherheitsupdate für Windows Internet Explorer 7 (KB978207)
Sicherheitsupdate für Windows Internet Explorer 7 (KB982381)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2510531)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2544521)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2744842)
Sicherheitsupdate für Windows Media Player (KB2378111)
Sicherheitsupdate für Windows Media Player (KB911564)
Sicherheitsupdate für Windows Media Player (KB952069)
Sicherheitsupdate für Windows Media Player (KB954155)
Sicherheitsupdate für Windows Media Player (KB968816)
Sicherheitsupdate für Windows Media Player (KB973540)
Sicherheitsupdate für Windows Media Player (KB975558)
Sicherheitsupdate für Windows Media Player (KB978695)
Sicherheitsupdate für Windows Media Player 10 (KB917734)
Sicherheitsupdate für Windows Media Player 10 (KB936782)
Sicherheitsupdate für Windows Media Player 6.4 (KB925398)
Sicherheitsupdate für Windows XP (KB2079403)
Sicherheitsupdate für Windows XP (KB2115168)
Sicherheitsupdate für Windows XP (KB2121546)
Sicherheitsupdate für Windows XP (KB2160329)
Sicherheitsupdate für Windows XP (KB2229593)
Sicherheitsupdate für Windows XP (KB2259922)
Sicherheitsupdate für Windows XP (KB2279986)
Sicherheitsupdate für Windows XP (KB2286198)
Sicherheitsupdate für Windows XP (KB2296011)
Sicherheitsupdate für Windows XP (KB2296199)
Sicherheitsupdate für Windows XP (KB2347290)
Sicherheitsupdate für Windows XP (KB2360937)
Sicherheitsupdate für Windows XP (KB2387149)
Sicherheitsupdate für Windows XP (KB2393802)
Sicherheitsupdate für Windows XP (KB2412687)
Sicherheitsupdate für Windows XP (KB2419632)
Sicherheitsupdate für Windows XP (KB2423089)
Sicherheitsupdate für Windows XP (KB2436673)
Sicherheitsupdate für Windows XP (KB2440591)
Sicherheitsupdate für Windows XP (KB2443105)
Sicherheitsupdate für Windows XP (KB2476490)
Sicherheitsupdate für Windows XP (KB2476687)
Sicherheitsupdate für Windows XP (KB2478960)
Sicherheitsupdate für Windows XP (KB2478971)
Sicherheitsupdate für Windows XP (KB2479628)
Sicherheitsupdate für Windows XP (KB2479943)
Sicherheitsupdate für Windows XP (KB2481109)
Sicherheitsupdate für Windows XP (KB2483185)
Sicherheitsupdate für Windows XP (KB2485376)
Sicherheitsupdate für Windows XP (KB2485663)
Sicherheitsupdate für Windows XP (KB2503658)
Sicherheitsupdate für Windows XP (KB2503665)
Sicherheitsupdate für Windows XP (KB2506212)
Sicherheitsupdate für Windows XP (KB2506223)
Sicherheitsupdate für Windows XP (KB2507618)
Sicherheitsupdate für Windows XP (KB2507938)
Sicherheitsupdate für Windows XP (KB2508272)
Sicherheitsupdate für Windows XP (KB2508429)
Sicherheitsupdate für Windows XP (KB2509553)
Sicherheitsupdate für Windows XP (KB2510581)
Sicherheitsupdate für Windows XP (KB2511455)
Sicherheitsupdate für Windows XP (KB2524375)
Sicherheitsupdate für Windows XP (KB2535512)
Sicherheitsupdate für Windows XP (KB2536276-v2)
Sicherheitsupdate für Windows XP (KB2536276)
Sicherheitsupdate für Windows XP (KB2544893-v2)
Sicherheitsupdate für Windows XP (KB2544893)
Sicherheitsupdate für Windows XP (KB2555917)
Sicherheitsupdate für Windows XP (KB2562937)
Sicherheitsupdate für Windows XP (KB2566454)
Sicherheitsupdate für Windows XP (KB2567053)
Sicherheitsupdate für Windows XP (KB2567680)
Sicherheitsupdate für Windows XP (KB2570222)
Sicherheitsupdate für Windows XP (KB2570947)
Sicherheitsupdate für Windows XP (KB2584146)
Sicherheitsupdate für Windows XP (KB2585542)
Sicherheitsupdate für Windows XP (KB2592799)
Sicherheitsupdate für Windows XP (KB2598479)
Sicherheitsupdate für Windows XP (KB2603381)
Sicherheitsupdate für Windows XP (KB2618451)
Sicherheitsupdate für Windows XP (KB2619339)
Sicherheitsupdate für Windows XP (KB2620712)
Sicherheitsupdate für Windows XP (KB2621440)
Sicherheitsupdate für Windows XP (KB2624667)
Sicherheitsupdate für Windows XP (KB2631813)
Sicherheitsupdate für Windows XP (KB2633171)
Sicherheitsupdate für Windows XP (KB2639417)
Sicherheitsupdate für Windows XP (KB2641653)
Sicherheitsupdate für Windows XP (KB2646524)
Sicherheitsupdate für Windows XP (KB2647518)
Sicherheitsupdate für Windows XP (KB2653956)
Sicherheitsupdate für Windows XP (KB2655992)
Sicherheitsupdate für Windows XP (KB2659262)
Sicherheitsupdate für Windows XP (KB2660465)
Sicherheitsupdate für Windows XP (KB2661637)
Sicherheitsupdate für Windows XP (KB2676562)
Sicherheitsupdate für Windows XP (KB2685939)
Sicherheitsupdate für Windows XP (KB2686509)
Sicherheitsupdate für Windows XP (KB2691442)
Sicherheitsupdate für Windows XP (KB2695962)
Sicherheitsupdate für Windows XP (KB2698365)
Sicherheitsupdate für Windows XP (KB2705219)
Sicherheitsupdate für Windows XP (KB2707511)
Sicherheitsupdate für Windows XP (KB2709162)
Sicherheitsupdate für Windows XP (KB2712808)
Sicherheitsupdate für Windows XP (KB2718523)
Sicherheitsupdate für Windows XP (KB2719985)
Sicherheitsupdate für Windows XP (KB2723135)
Sicherheitsupdate für Windows XP (KB2724197)
Sicherheitsupdate für Windows XP (KB2727528)
Sicherheitsupdate für Windows XP (KB2731847)
Sicherheitsupdate für Windows XP (KB2761226)
Sicherheitsupdate für Windows XP (KB923561)
Sicherheitsupdate für Windows XP (KB923689)
Sicherheitsupdate für Windows XP (KB938464)
Sicherheitsupdate für Windows XP (KB941569)
Sicherheitsupdate für Windows XP (KB946648)
Sicherheitsupdate für Windows XP (KB950760)
Sicherheitsupdate für Windows XP (KB950762)
Sicherheitsupdate für Windows XP (KB950974)
Sicherheitsupdate für Windows XP (KB951066)
Sicherheitsupdate für Windows XP (KB951376-v2)
Sicherheitsupdate für Windows XP (KB951698)
Sicherheitsupdate für Windows XP (KB951748)
Sicherheitsupdate für Windows XP (KB952004)
Sicherheitsupdate für Windows XP (KB952954)
Sicherheitsupdate für Windows XP (KB953839)
Sicherheitsupdate für Windows XP (KB954211)
Sicherheitsupdate für Windows XP (KB954459)
Sicherheitsupdate für Windows XP (KB954600)
Sicherheitsupdate für Windows XP (KB955069)
Sicherheitsupdate für Windows XP (KB956391)
Sicherheitsupdate für Windows XP (KB956572)
Sicherheitsupdate für Windows XP (KB956744)
Sicherheitsupdate für Windows XP (KB956802)
Sicherheitsupdate für Windows XP (KB956803)
Sicherheitsupdate für Windows XP (KB956841)
Sicherheitsupdate für Windows XP (KB956844)
Sicherheitsupdate für Windows XP (KB957095)
Sicherheitsupdate für Windows XP (KB957097)
Sicherheitsupdate für Windows XP (KB958644)
Sicherheitsupdate für Windows XP (KB958687)
Sicherheitsupdate für Windows XP (KB958690)
Sicherheitsupdate für Windows XP (KB958869)
Sicherheitsupdate für Windows XP (KB959426)
Sicherheitsupdate für Windows XP (KB960225)
Sicherheitsupdate für Windows XP (KB960715)
Sicherheitsupdate für Windows XP (KB960803)
Sicherheitsupdate für Windows XP (KB960859)
Sicherheitsupdate für Windows XP (KB961371)
Sicherheitsupdate für Windows XP (KB961373)
Sicherheitsupdate für Windows XP (KB961501)
Sicherheitsupdate für Windows XP (KB968537)
Sicherheitsupdate für Windows XP (KB969059)
Sicherheitsupdate für Windows XP (KB969898)
Sicherheitsupdate für Windows XP (KB969947)
Sicherheitsupdate für Windows XP (KB970238)
Sicherheitsupdate für Windows XP (KB970430)
Sicherheitsupdate für Windows XP (KB971468)
Sicherheitsupdate für Windows XP (KB971486)
Sicherheitsupdate für Windows XP (KB971557)
Sicherheitsupdate für Windows XP (KB971633)
Sicherheitsupdate für Windows XP (KB971657)
Sicherheitsupdate für Windows XP (KB971961)
Sicherheitsupdate für Windows XP (KB972270)
Sicherheitsupdate für Windows XP (KB973346)
Sicherheitsupdate für Windows XP (KB973354)
Sicherheitsupdate für Windows XP (KB973507)
Sicherheitsupdate für Windows XP (KB973525)
Sicherheitsupdate für Windows XP (KB973869)
Sicherheitsupdate für Windows XP (KB973904)
Sicherheitsupdate für Windows XP (KB974112)
Sicherheitsupdate für Windows XP (KB974318)
Sicherheitsupdate für Windows XP (KB974392)
Sicherheitsupdate für Windows XP (KB974571)
Sicherheitsupdate für Windows XP (KB975025)
Sicherheitsupdate für Windows XP (KB975467)
Sicherheitsupdate für Windows XP (KB975560)
Sicherheitsupdate für Windows XP (KB975561)
Sicherheitsupdate für Windows XP (KB975562)
Sicherheitsupdate für Windows XP (KB975713)
Sicherheitsupdate für Windows XP (KB977165)
Sicherheitsupdate für Windows XP (KB977816)
Sicherheitsupdate für Windows XP (KB977914)
Sicherheitsupdate für Windows XP (KB978037)
Sicherheitsupdate für Windows XP (KB978251)
Sicherheitsupdate für Windows XP (KB978262)
Sicherheitsupdate für Windows XP (KB978338)
Sicherheitsupdate für Windows XP (KB978542)
Sicherheitsupdate für Windows XP (KB978601)
Sicherheitsupdate für Windows XP (KB978706)
Sicherheitsupdate für Windows XP (KB979309)
Sicherheitsupdate für Windows XP (KB979482)
Sicherheitsupdate für Windows XP (KB979559)
Sicherheitsupdate für Windows XP (KB979683)
Sicherheitsupdate für Windows XP (KB979687)
Sicherheitsupdate für Windows XP (KB980195)
Sicherheitsupdate für Windows XP (KB980218)
Sicherheitsupdate für Windows XP (KB980232)
Sicherheitsupdate für Windows XP (KB980436)
Sicherheitsupdate für Windows XP (KB981322)
Sicherheitsupdate für Windows XP (KB981349)
Sicherheitsupdate für Windows XP (KB981852)
Sicherheitsupdate für Windows XP (KB981957)
Sicherheitsupdate für Windows XP (KB981997)
Sicherheitsupdate für Windows XP (KB982132)
Sicherheitsupdate für Windows XP (KB982214)
Sicherheitsupdate für Windows XP (KB982665)
Sicherheitsupdate für Windows XP (KB982802)
SigmaPlot 10.0
Skype™ 4.2
SopCast 3.5.0
SoundMAX
System Migration Assistant
System Update
ThinkPad-Dienstprogramm 'EasyEject'
ThinkPad-Konfiguration
ThinkPad-Präsentationsdirektor
ThinkPad-UltraNav-Assistent
ThinkPad Bluetooth with Enhanced Data Rate Software
ThinkPad Energie-Manager
ThinkPad FullScreen Magnifier
ThinkPad Modem
ThinkPad PC Card Power Policy
ThinkPad Power Management Driver
ThinkPad UltraNav Driver
ThinkVantage Access Connections
ThinkVantage Away Manager
ThinkVantage Fingerprint Software 5.5
ThinkVantage Productivity Center
ThinkVantage System für aktiven Festplattenschutz
ThinkVantage System Update Toolbar Button for IE
ThinkVantage Technologies Welcome Message
Update für Windows Internet Explorer 7 (KB976749)
Update für Windows Internet Explorer 7 (KB980182)
Update für Windows XP (KB2141007)
Update für Windows XP (KB2345886)
Update für Windows XP (KB2467659)
Update für Windows XP (KB2541763)
Update für Windows XP (KB2607712)
Update für Windows XP (KB2616676-v2)
Update für Windows XP (KB2641690)
Update für Windows XP (KB2661254-v2)
Update für Windows XP (KB2718704)
Update für Windows XP (KB2736233)
Update für Windows XP (KB2749655)
Update für Windows XP (KB951072-v2)
Update für Windows XP (KB951978)
Update für Windows XP (KB955759)
Update für Windows XP (KB955839)
Update für Windows XP (KB967715)
Update für Windows XP (KB968389)
Update für Windows XP (KB971029)
Update für Windows XP (KB971737)
Update für Windows XP (KB973687)
Update für Windows XP (KB973815)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
VC80CRTRedist - 8.0.50727.762
WEB.DE SmartSurfer
WebFldrs XP
Winamp
Winamp Toolbar for Firefox
Winamp Toolbar for Internet Explorer
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Format Runtime
Windows Media Player 10
Windows Media Player 10 Hotfix - KB894476
Windows XP Service Pack 3
WinFuture xp-Iso-Builder 3.0.8
WinRAR archiver
WISO Steuer 2012
XP Themes
.
==== End Of File ===========================
|
|
13.12.2012, 19:58
| #4 |
| /// TB-Ausbilder | Besuch von BDS/ZeroAccess.Gen ... oooooh oh .... Na jetzt ist ausmisten angesagt: Schritt 1: Entferne Ccleaner. Schritt 2: AdwCleaner: Werbeprogramme suchen und löschen
Schritt 3: Temporäre Dateien löschen mit TFC
Schritt 4: Hast du auf dem Computer nur Windows oder noch ein anderes System?
__________________  Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
13.12.2012, 20:55
| #5 |
| | Besuch von BDS/ZeroAccess.Gen ... Gemacht... 1. ccleaner ist runter; 2. adwCleaner: Code:
ATTFilter # AdwCleaner v2.100 - Datei am 13/12/2012 um 20:30:12 erstellt
# Aktualisiert am 09/12/2012 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzer : Onkel Markus - MARKUS
# Bootmodus : Normal
# Ausgeführt unter : C:\Dokumente und Einstellungen\Onkel Markus\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\DOKUME~1\ONKELM~1\LOKALE~1\Temp\Searchqu.ini
Datei Gelöscht : C:\Programme\Mozilla Firefox\searchplugins\ask.xml
Datei Gelöscht : C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Winamp Toolbar
Ordner Gelöscht : C:\Dokumente und Einstellungen\Onkel Markus\Anwendungsdaten\Ask.com
Ordner Gelöscht : C:\Programme\Ask.com
Ordner Gelöscht : C:\Programme\Winamp Toolbar
Ordner Gelöscht : C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\APN
Schlüssel Gelöscht : HKCU\Software\APN DTX
Schlüssel Gelöscht : HKCU\Software\Ask.com
Schlüssel Gelöscht : HKCU\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Winamp Toolbar
Schlüssel Gelöscht : HKLM\Software\APN
Schlüssel Gelöscht : HKLM\Software\AskToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\winamptbServer.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6EF4E91D-DDD5-4478-BCA7-DA04435934C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{841FD004-57A2-4B49-BBDB-5897394619DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B38D6EDE-390B-4620-8365-29E16459EBDA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F20F11FD-203E-45A9-B7BB-AFC1B4FEA7A6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FE178B09-C8AA-4734-804D-1849BCCA0C29}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{841FD004-57A2-4B49-BBDB-5897394619DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{538CD77C-BFDD-49B0-9562-77419CAB89D1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.Downloader
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.Downloader.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Winamp Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar
Schlüssel Gelöscht : HKLM\Software\TENCENT
Schlüssel Gelöscht : HKLM\Software\Winamp Toolbar
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
***** [Internet Browser] *****
-\\ Internet Explorer v8.0.6001.18702
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.ask.com/web?l=dis&o=APN10234&gct=hp&apn_dtid=^YYYYYY^YY^US&apn_ptnrs=^A8B&apn_uid=6636018933564177&p2=^A8B^YYYYYY^YY^US --> hxxp://www.google.com
*************************
AdwCleaner[S1].txt - [11190 octets] - [13/12/2012 20:30:12]
########## EOF - C:\AdwCleaner[S1].txt - [11251 octets] ##########
3. Temporäre Datein gelöscht mit TFC 4. Ja ich habe nur Windows auf dem Rechner. Ich hatte mal die ganzen prozesse in meinem taskmgr durchgegooglet. Bei "UIExec.exe" bin ich mir nicht sicher was das sein soll. Die einen sprechen von einem Windows-Prozess (für was auch immer), die anderen haben das Ding auch schon mal bei Trojaner-Board gepostet, allerdings werde ich da nicht wirklich schlau was damit nun ist. Hast Du Indikationen dass das nicht auf meinen Rechner hingehört?? Danke für die schnelle Hilfe! 00 |
|
13.12.2012, 21:10
| #6 |
| /// TB-Ausbilder | Besuch von BDS/ZeroAccess.Gen ... Wenn du T-Mobile-Kunde bist dann macht das Sinn ... Schritt 1: aswMBR ... Klicke "Fix MB" (geht ganz schnell) und starte neu. Schritt 2: Berichte ob alles geklappt hat. Schritt 3: Neues Logfile mit aswMBR
__________________ --> Besuch von BDS/ZeroAccess.Gen ... |
|
13.12.2012, 22:45
| #7 |
| | Besuch von BDS/ZeroAccess.Gen ... Nee ich bin eigentlich kein T-mobile-Kunde... habe das ganze durchgeführt, der Prozess ist aber immernoch da... Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-13 18:42:19
-----------------------------
18:42:19.859 OS Version: Windows 5.1.2600 Service Pack 3
18:42:19.859 Number of processors: 2 586 0xF02
18:42:19.859 ComputerName: MARKUS UserName:
18:42:21.109 Initialize success
18:56:51.265 AVAST engine defs: 12121301
19:02:17.546 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
19:02:17.578 Disk 0 Vendor: HITACHI_ SBDI Size: 114473MB BusType: 3
19:02:17.593 Disk 0 MBR read successfully
19:02:17.593 Disk 0 MBR scan
19:02:17.828 Disk 0 unknown MBR code
19:02:17.828 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 60428 MB offset 63
19:02:17.890 Disk 0 Partition 2 00 12 Compaq diag MSWIN4.1 4429 MB offset 123757200
19:02:17.953 Disk 0 Partition - 00 0F Extended LBA 49612 MB offset 132829200
19:02:17.968 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 49612 MB offset 132829263
19:02:18.031 Disk 0 scanning sectors +234435600
19:02:18.203 Disk 0 scanning C:\WINDOWS\system32\drivers
19:02:58.250 Service scanning
19:03:38.328 Modules scanning
19:03:49.812 Disk 0 trace - called modules:
19:03:49.875 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys
19:03:49.890 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x871c9ab8]
19:03:49.890 3 CLASSPNP.SYS[f7511fd7] -> nt!IofCallDriver -> \Device\000000ac[0x87131970]
19:03:49.890 5 ACPI.sys[f73a7620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x871c7030]
19:03:51.062 AVAST engine scan C:\WINDOWS
19:04:02.390 AVAST engine scan C:\WINDOWS\system32
19:08:14.343 AVAST engine scan C:\WINDOWS\system32\drivers
19:08:35.656 AVAST engine scan C:\Dokumente und Einstellungen\Onkel Markus
19:25:53.968 AVAST engine scan C:\Dokumente und Einstellungen\All Users
19:27:17.281 Scan finished successfully
19:29:22.953 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\MBR.dat"
19:29:22.953 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\aswMBR.txt"
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-13 22:32:27
-----------------------------
22:32:27.984 OS Version: Windows 5.1.2600 Service Pack 3
22:32:27.984 Number of processors: 2 586 0xF02
22:32:27.984 ComputerName: MARKUS UserName:
22:32:29.343 Initialize success
22:34:08.453 AVAST engine defs: 12121301
22:34:21.937 Verifying
22:34:31.984 Disk 0 Windows 501 MBR fixed successfully
22:35:06.031 Verifying
22:35:16.031 Disk 0 Windows 501 MBR fixed successfully
22:36:48.812 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\MBR.dat"
22:36:48.921 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\aswMBR.txt"
|
|
14.12.2012, 16:40
| #8 | ||
| /// TB-Ausbilder | Besuch von BDS/ZeroAccess.Gen ... Natürlich ist er noch da, wir arbeiten uns langsam voran  Mach bitte nochmal ein aswMBR-Logfile jetzt wo du den MBR neu geschrieben hast, ich muss sehen, ob das auch wirklich okay ist. Du kannst aber schon hiermit weiter machen: Scan mit Combofix
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
14.12.2012, 18:34
| #9 |
| | Besuch von BDS/ZeroAccess.Gen ... sooooo... also es wurde wohl was gefunden und gelöscht aber dieses UIEexec-Dings ist immer noch da. anbei die weiteren Infos. vielen dank schon mal weiterhin... Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-13 18:42:19
-----------------------------
18:42:19.859 OS Version: Windows 5.1.2600 Service Pack 3
18:42:19.859 Number of processors: 2 586 0xF02
18:42:19.859 ComputerName: MARKUS UserName:
18:42:21.109 Initialize success
18:56:51.265 AVAST engine defs: 12121301
19:02:17.546 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
19:02:17.578 Disk 0 Vendor: HITACHI_ SBDI Size: 114473MB BusType: 3
19:02:17.593 Disk 0 MBR read successfully
19:02:17.593 Disk 0 MBR scan
19:02:17.828 Disk 0 unknown MBR code
19:02:17.828 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 60428 MB offset 63
19:02:17.890 Disk 0 Partition 2 00 12 Compaq diag MSWIN4.1 4429 MB offset 123757200
19:02:17.953 Disk 0 Partition - 00 0F Extended LBA 49612 MB offset 132829200
19:02:17.968 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 49612 MB offset 132829263
19:02:18.031 Disk 0 scanning sectors +234435600
19:02:18.203 Disk 0 scanning C:\WINDOWS\system32\drivers
19:02:58.250 Service scanning
19:03:38.328 Modules scanning
19:03:49.812 Disk 0 trace - called modules:
19:03:49.875 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys
19:03:49.890 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x871c9ab8]
19:03:49.890 3 CLASSPNP.SYS[f7511fd7] -> nt!IofCallDriver -> \Device\000000ac[0x87131970]
19:03:49.890 5 ACPI.sys[f73a7620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x871c7030]
19:03:51.062 AVAST engine scan C:\WINDOWS
19:04:02.390 AVAST engine scan C:\WINDOWS\system32
19:08:14.343 AVAST engine scan C:\WINDOWS\system32\drivers
19:08:35.656 AVAST engine scan C:\Dokumente und Einstellungen\Onkel Markus
19:25:53.968 AVAST engine scan C:\Dokumente und Einstellungen\All Users
19:27:17.281 Scan finished successfully
19:29:22.953 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\MBR.dat"
19:29:22.953 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\aswMBR.txt"
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-13 22:32:27
-----------------------------
22:32:27.984 OS Version: Windows 5.1.2600 Service Pack 3
22:32:27.984 Number of processors: 2 586 0xF02
22:32:27.984 ComputerName: MARKUS UserName:
22:32:29.343 Initialize success
22:34:08.453 AVAST engine defs: 12121301
22:34:21.937 Verifying
22:34:31.984 Disk 0 Windows 501 MBR fixed successfully
22:35:06.031 Verifying
22:35:16.031 Disk 0 Windows 501 MBR fixed successfully
22:36:48.812 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\MBR.dat"
22:36:48.921 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\aswMBR.txt"
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-12-14 17:13:05
-----------------------------
17:13:05.015 OS Version: Windows 5.1.2600 Service Pack 3
17:13:05.015 Number of processors: 2 586 0xF02
17:13:05.015 ComputerName: MARKUS UserName:
17:13:08.359 Initialize success
17:13:25.875 AVAST engine defs: 12121301
17:14:12.968 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
17:14:12.968 Disk 0 Vendor: HITACHI_ SBDI Size: 114473MB BusType: 3
17:14:13.031 Disk 0 MBR read successfully
17:14:13.031 Disk 0 MBR scan
17:14:13.109 Disk 0 Windows XP default MBR code
17:14:13.125 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 60428 MB offset 63
17:14:13.203 Disk 0 Partition 2 00 12 Compaq diag MSWIN4.1 4429 MB offset 123757200
17:14:13.281 Disk 0 Partition - 00 0F Extended LBA 49612 MB offset 132829200
17:14:13.296 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 49612 MB offset 132829263
17:14:13.328 Disk 0 scanning sectors +234435600
17:14:13.453 Disk 0 scanning C:\WINDOWS\system32\drivers
17:14:43.937 Service scanning
17:15:12.593 Modules scanning
17:15:23.609 Disk 0 trace - called modules:
17:15:23.640 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys
17:15:23.640 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x871291f0]
17:15:23.640 3 CLASSPNP.SYS[f7511fd7] -> nt!IofCallDriver -> \Device\000000ac[0x8713ac98]
17:15:23.656 5 ACPI.sys[f73a7620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x8713c030]
17:15:24.156 AVAST engine scan C:\WINDOWS
17:15:33.265 AVAST engine scan C:\WINDOWS\system32
17:18:06.140 AVAST engine scan C:\WINDOWS\system32\drivers
17:18:24.625 AVAST engine scan C:\Dokumente und Einstellungen\Onkel Markus
17:24:00.250 AVAST engine scan C:\Dokumente und Einstellungen\All Users
17:25:02.906 Scan finished successfully
17:56:18.750 Disk 0 MBR has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\MBR.dat"
17:56:18.750 The log file has been saved successfully to "C:\Dokumente und Einstellungen\Onkel Markus\Desktop\trojaner\aswMBR.txt"
Code:
ATTFilter ComboFix 12-12-14.01 - Onkel Markus 14.12.2012 18:05:09.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.1022.516 [GMT 1:00]
ausgeführt von:: c:\dokumente und einstellungen\Onkel Markus\Desktop\ComboFix.exe
AV: AntiVir Desktop *Enabled/Outdated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\04DE.22A
c:\dokumente und einstellungen\Onkel Markus\WINDOWS
c:\windows\Disk2.exe
c:\windows\IsUn0407.exe
c:\windows\system32\TPHDLOG0.LOG
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
c:\windows\system32\vrlogon.dll
c:\windows\wininit.ini
.
Infizierte Kopie von c:\windows\system32\ntdll.dll wurde gefunden und desinfiziert
Kopie von - c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll wurde wiederhergestellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-11-14 bis 2012-12-14 ))))))))))))))))))))))))))))))
.
.
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Malwarebytes
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\programme\Malwarebytes' Anti-Malware
2012-12-12 20:23 . 2012-09-29 18:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-10 19:48 . 2012-12-10 19:48 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\SeriousBit
2012-12-10 19:47 . 2011-05-18 16:11 31016 ----a-w- c:\windows\system32\drivers\nbdrv.sys
2012-12-10 19:46 . 2012-12-10 19:47 -------- d-----w- c:\programme\NetBalancer
2012-12-07 19:07 . 2012-12-07 19:07 -------- d-----r- c:\dokumente und einstellungen\LocalService\Favoriten
2012-12-01 18:14 . 2012-12-01 18:14 -------- d-----w- c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\searchresultstb
2012-12-01 17:45 . 2012-12-01 18:17 -------- d-----w- c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4
2012-12-01 17:45 . 2012-12-01 17:45 -------- d-----w- c:\programme\asktoolbar4
2012-11-26 17:34 . 2012-08-28 15:05 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-11-26 17:34 . 2012-08-28 15:05 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2012-11-26 17:34 . 2012-08-28 15:05 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2012-11-26 17:34 . 2012-08-28 15:05 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2012-11-25 14:24 . 2012-11-25 14:24 -------- d-sh--w- c:\dokumente und einstellungen\Onkel Markus\PrivacIE
2012-11-25 14:22 . 2012-11-25 14:22 -------- d-sh--w- c:\dokumente und einstellungen\NetworkService\IETldCache
2012-11-25 14:21 . 2012-11-25 14:21 -------- d-sh--w- c:\dokumente und einstellungen\Onkel Markus\IETldCache
2012-11-25 14:18 . 2012-11-25 14:19 -------- dc-h--w- c:\windows\ie8
2012-11-25 14:07 . 2012-11-25 14:07 -------- d-----w- c:\programme\Microsoft Silverlight
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-22 19:56 . 2006-01-27 01:00 1866496 ------w- c:\windows\system32\win32k.sys
2012-10-02 18:04 . 2006-01-27 01:01 58368 ------w- c:\windows\system32\synceng.dll
2009-02-24 19:34 . 2012-10-27 18:24 1044480 ----a-w- c:\programme\mozilla firefox\plugins\libdivx.dll
2009-02-24 19:34 . 2012-10-27 18:24 200704 ----a-w- c:\programme\mozilla firefox\plugins\ssldivx.dll
2012-10-27 18:25 . 2012-10-27 18:24 261600 ----a-w- c:\programme\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{3cb073f3-be3c-4e8f-942d-8a747b54486f}"= "c:\programme\asktoolbar4\asktoolbar4X.dll" [2012-01-30 81920]
.
[HKEY_CLASSES_ROOT\clsid\{3cb073f3-be3c-4e8f-942d-8a747b54486f}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3cb073f3-be3c-4e8f-942d-8a747b54486f}]
2012-01-30 06:19 81920 ----a-w- c:\programme\asktoolbar4\asktoolbar4X.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3cb073f3-be3c-4e8f-942d-8a747b54486f}"= "c:\programme\asktoolbar4\asktoolbar4X.dll" [2012-01-30 81920]
.
[HKEY_CLASSES_ROOT\clsid\{3cb073f3-be3c-4e8f-942d-8a747b54486f}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\programme\Skype\Phone\Skype.exe" [2010-05-13 26192168]
"H/PC Connection Agent"="c:\programme\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PWRMGRTR"="c:\progra~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2006-05-25 151552]
"TPHOTKEY"="c:\progra~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe" [2006-07-25 94208]
"ATICCC"="c:\programme\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-05-10 90112]
"PDService.exe"="c:\programme\Lenovo\SafeGuard PrivateDisk\pdservice.exe" [2006-03-13 41472]
"CanonMyPrinter"="c:\programme\Canon\MyPrinter\BJMyPrt.exe" [2007-09-13 1603152]
"UIExec"="c:\programme\Mobile Partner Manager\UIExec.exe" [2010-01-13 133120]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2011-03-04 281768]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AwayNotify]
2006-08-16 17:07 49152 ------w- c:\programme\Lenovo\AwayTask\AwayNotify.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2006-04-25 17:20 40448 ------w- c:\windows\system32\psqlpwd.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpfnf2]
2005-07-05 14:45 28672 ------w- c:\windows\system32\notifyf2.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tphotkey]
2005-11-30 11:16 24576 ------w- c:\windows\system32\tphklock.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli psqlpwd
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
2007-02-07 23:12 488984 -c----w- c:\programme\Gemeinsame Dateien\LogiShrd\LComMgr\Communications_Helper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2007-02-07 23:13 774168 -c----w- c:\programme\Logitech\QuickCam10\QuickCam10.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LPManager]
2006-07-04 16:11 110592 -c----w- c:\progra~1\THINKV~2\PrdCtr\LPMGR.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2004-08-04 12:00 59392 -c----w- c:\windows\system32\IME\PINTLGNT\IMSCINST.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2004-08-04 12:00 455168 -c----w- c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2006-02-14 05:16 512000 -c----w- c:\programme\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPLpr]
2006-02-14 05:17 110592 ------w- c:\programme\Synaptics\SynTP\SynTPLpr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TP4EX]
2005-10-16 23:11 65536 ------w- c:\windows\system32\TP4EX.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPKMAPHELPER]
2006-06-02 20:00 856064 ------w- c:\programme\ThinkPad\Utilities\TpKmapAp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LVSrvLauncher"=2 (0x2)
"LVPrcSrv"=2 (0x2)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programme\\Skype\\Plugin Manager\\skypePM.exe"=
.
R1 Ndisprot;GreenPacket NDIS Protocol Driver;c:\windows\system32\drivers\Ndisprot.sys [19.10.2010 19:11 21504]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\programme\Avira\AntiVir Desktop\sched.exe [21.03.2011 18:35 136360]
R2 OsiGpib;OsiGpib;c:\windows\system32\drivers\OsiGpib.sys [26.01.2008 10:12 11776]
R2 PrivateDisk;PrivateDisk;c:\programme\Lenovo\SafeGuard PrivateDisk\privatediskm.sys [13.03.2006 15:05 58368]
R2 SmartSurferManager;SmartSurfer Manager;c:\programme\WEB.DE\WEB.DE SmartSurfer\SmurfService.exe [01.08.2007 12:07 132560]
R2 smi2;smi2;c:\programme\SMI2\smi2.sys [14.07.2006 14:55 3968]
R2 smihlp;SMI helper driver;c:\programme\ThinkVantage Fingerprint Software\smihlp.sys [25.04.2006 18:00 3456]
R2 UI Assistant Service;UI Assistant Service;c:\programme\Mobile Partner Manager\AssistantServices.exe [19.10.2010 19:11 247296]
R3 Nbdrv;NetBalancer Service;c:\windows\system32\drivers\nbdrv.sys [10.12.2012 20:47 31016]
S2 gpibclsd;GPIB Device Class Driver;c:\windows\system32\drivers\gpibclsd.sys [26.01.2008 10:13 34664]
S2 NetBalancerService;NetBalancerService;c:\programme\NetBalancer\SeriousBit.NetBalancer.Service.exe [10.12.2012 20:46 8704]
S3 gpibclsb;GPIB Board Class Driver;c:\windows\system32\drivers\gpibclsb.sys [26.01.2008 10:13 57096]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [19.10.2010 19:11 9216]
S3 siusbmod;siusbmod;c:\windows\system32\drivers\siusbmod.sys [28.07.2005 15:20 27008]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [01.10.2006 14:37 26624]
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-12-14 c:\windows\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
- c:\programme\Windows Live Toolbar\MSNTBUP.EXE [2007-02-12 13:54]
.
2012-12-14 c:\windows\Tasks\PMTask.job
- c:\progra~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE [2007-06-19 16:13]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
uInternet Settings,ProxyServer = 127.0.0.1:61798
uSearchURL,(Default) = hxxp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
IE: &Winamp Search - c:\dokumente und einstellungen\All Users\Anwendungsdaten\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: &Windows Live Search - c:\programme\Windows Live Toolbar\msntb.dll/search.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Senden an &Bluetooth-Gerät... - c:\programme\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
FF - ProfilePath - c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Mozilla\Firefox\Profiles\wg48t7rj.default\
FF - prefs.js: browser.startup.homepage - www.google.de
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 5
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2012-12-01 18:45; {3cb073f3-be3c-4e8f-942d-8a747b54486f}; c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Mozilla\Firefox\Profiles\wg48t7rj.default\extensions\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
FF - ExtSQL: !HIDDEN! 2009-09-03 15:29; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Notify-ACNotify - ACNotify.dll
Notify-NavLogon - (no file)
AddRemove-Microsoft Interactive Training - c:\windows\IsUn0407.exe
AddRemove-Presentation Director - c:\windows\IsUn0407.exe
AddRemove-Winamp Toolbar for Firefox - c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Mozilla\Firefox\Profiles\wg48t7rj.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-12-14 18:15
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\DeterministicNetworks\DNE\Parameters]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,79,00,73,00,\
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'winlogon.exe'(744)
c:\programme\ThinkPad\ConnectUtilities\ACNotify.dll
c:\programme\ThinkPad\ConnectUtilities\AcSvcStub.dll
c:\programme\ThinkPad\ConnectUtilities\AcLocSettings.dll
c:\programme\ThinkPad\ConnectUtilities\ACHelper.dll
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\psqlpwd.dll
c:\programme\ThinkVantage Fingerprint Software\infra.dll
c:\programme\ThinkVantage Fingerprint Software\homefus2.dll
c:\windows\system32\biologon.dll
c:\programme\ThinkVantage Fingerprint Software\homepass.dll
c:\programme\ThinkVantage Fingerprint Software\bio.dll
c:\programme\ThinkVantage Fingerprint Software\remote.dll
c:\programme\ThinkVantage Fingerprint Software\ps2css.dll
c:\windows\system32\tphklock.dll
c:\programme\ThinkVantage Fingerprint Software\crypto.dll
c:\programme\Lenovo\AwayTask\AwayNotify.dll
.
- - - - - - - > 'lsass.exe'(796)
c:\windows\system32\psqlpwd.dll
c:\programme\ThinkVantage Fingerprint Software\infra.dll
c:\programme\ThinkVantage Fingerprint Software\homefus2.dll
.
- - - - - - - > 'explorer.exe'(2660)
c:\windows\system32\PROCHLP.DLL
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\ibmpmsvc.exe
c:\windows\system32\Ati2evxx.exe
c:\programme\Intel\Wireless\Bin\EvtEng.exe
c:\windows\system32\Ati2evxx.exe
c:\programme\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\system32\IPSSVC.EXE
c:\programme\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
c:\programme\Avira\AntiVir Desktop\avguard.exe
c:\programme\ThinkPad\Bluetooth Software\bin\btwdins.exe
c:\programme\RWTH Aachen\Cisco VPN Client\cvpnd.exe
c:\programme\Diskeeper Corporation\Diskeeper\DkService.exe
c:\programme\Avira\AntiVir Desktop\avshadow.exe
c:\programme\Intel\Wireless\Bin\RegSrvc.exe
c:\programme\lenovo\system update\suservice.exe
c:\programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe
c:\windows\System32\TPHDEXLG.EXE
c:\windows\system32\TpKmpSVC.exe
c:\programme\Lenovo\Client Security Solution\tvttcsd.exe
c:\programme\Lenovo\Rescue and Recovery\rrservice.exe
c:\programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe
c:\programme\Lenovo\Rescue and Recovery\ADM\IUService.exe
c:\windows\system32\wdfmgr.exe
c:\programme\Gemeinsame Dateien\Lenovo\Logger\logmon.exe
c:\programme\ThinkPad\ConnectUtilities\AcSvc.exe
c:\windows\system32\rundll32.exe
c:\programme\ATI Technologies\ATI.ACE\CLI.EXE
c:\programme\Lenovo\PkgMgr\HOTKEY\TPONSCR.exe
c:\programme\Lenovo\PkgMgr\HOTKEY_1\TpScrex.exe
c:\progra~1\MICROS~3\rapimgr.exe
c:\programme\ATI Technologies\ATI.ACE\cli.exe
c:\programme\Skype\Plugin Manager\skypePM.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\programme\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
c:\programme\Diskeeper Corporation\Diskeeper\DkIcon.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-12-14 18:19:12 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-12-14 17:19
.
Vor Suchlauf: 3.371.159.552 Bytes frei
Nach Suchlauf: 3.532.886.016 Bytes frei
.
WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 042A39DB6AF21F32BD8ED628654E2F88
|
|
14.12.2012, 18:48
| #10 | ||
| /// TB-Ausbilder | Besuch von BDS/ZeroAccess.Gen ... So das beruhigt mich jetzt schon mal. Wir suchen weiter. Ausserdem haben wir hier den Fall einer neuen Variante von Adware die ich untersuchen möchte: Schritt 1: Scan mit MBAR Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Schritt 2: Combofix-Skript
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
14.12.2012, 19:57
| #11 |
| | Besuch von BDS/ZeroAccess.Gen ... ...die liste an aktiven prozessen im taskmanager hat sich gerade gefühlt halbiert... Ist wirklich merklich weniger geworden, allerdings scheinen auch einige thinkpad-prozesse aus der liste verschwunden zu sein (viele prozesse fingen vorher mit "TP" an...). besagter UIEexec ist aber auch nicht mehr da. Sehr schön. Was auch immer der gemacht hat.in mozilla klebt aber tatsächlich noch eine adware drin, wie Du schon entdeckt hattest... Code:
ATTFilter Malwarebytes Anti-Rootkit 1.01.0.1011
www.malwarebytes.org
Database version: v2012.12.14.08
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Onkel Markus :: MARKUS [administrator]
14.12.2012 19:22:35
mbar-log-2012-12-14 (19-22-35).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 26151
Time elapsed: 10 minute(s), 32 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter ComboFix 12-12-14.01 - Onkel Markus 14.12.2012 19:33:47.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.1022.564 [GMT 1:00]
ausgeführt von:: c:\dokumente und einstellungen\Onkel Markus\Desktop\ComboFix.exe
Benutzte Befehlsschalter :: c:\dokumente und einstellungen\Onkel Markus\Desktop\CFScript.txt
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\TPHDLOG0.LOG
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-11-14 bis 2012-12-14 ))))))))))))))))))))))))))))))
.
.
2012-12-14 18:11 . 2012-12-14 18:11 35144 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2012-12-14 17:29 . 2012-12-14 17:29 -------- d-----w- c:\windows\LastGood
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Malwarebytes
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\programme\Malwarebytes' Anti-Malware
2012-12-12 20:23 . 2012-09-29 18:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-10 19:48 . 2012-12-10 19:48 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\SeriousBit
2012-12-10 19:47 . 2011-05-18 16:11 31016 ----a-w- c:\windows\system32\drivers\nbdrv.sys
2012-12-10 19:46 . 2012-12-10 19:47 -------- d-----w- c:\programme\NetBalancer
2012-12-07 19:07 . 2012-12-07 19:07 -------- d-----r- c:\dokumente und einstellungen\LocalService\Favoriten
2012-12-01 18:14 . 2012-12-01 18:14 -------- d-----w- c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\searchresultstb
2012-12-01 17:45 . 2012-12-01 18:17 -------- d-----w- c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4
2012-12-01 17:45 . 2012-12-01 17:45 -------- d-----w- c:\programme\asktoolbar4
2012-11-26 17:34 . 2012-08-28 15:05 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-11-26 17:34 . 2012-08-28 15:05 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2012-11-26 17:34 . 2012-08-28 15:05 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2012-11-26 17:34 . 2012-08-28 15:05 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2012-11-25 14:24 . 2012-11-25 14:24 -------- d-sh--w- c:\dokumente und einstellungen\Onkel Markus\PrivacIE
2012-11-25 14:22 . 2012-11-25 14:22 -------- d-sh--w- c:\dokumente und einstellungen\NetworkService\IETldCache
2012-11-25 14:21 . 2012-11-25 14:21 -------- d-sh--w- c:\dokumente und einstellungen\Onkel Markus\IETldCache
2012-11-25 14:18 . 2012-11-25 14:19 -------- dc-h--w- c:\windows\ie8
2012-11-25 14:07 . 2012-11-25 14:07 -------- d-----w- c:\programme\Microsoft Silverlight
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-22 19:56 . 2006-01-27 01:00 1866496 ------w- c:\windows\system32\win32k.sys
2012-10-02 18:04 . 2006-01-27 01:01 58368 ------w- c:\windows\system32\synceng.dll
2009-02-24 19:34 . 2012-10-27 18:24 1044480 ----a-w- c:\programme\mozilla firefox\plugins\libdivx.dll
2009-02-24 19:34 . 2012-10-27 18:24 200704 ----a-w- c:\programme\mozilla firefox\plugins\ssldivx.dll
2012-10-27 18:25 . 2012-10-27 18:24 261600 ----a-w- c:\programme\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\programme\asktoolbar4 ----
.
2012-12-01 17:45 . 2012-12-01 17:45 122092 ----a-w- c:\programme\asktoolbar4\uninstall.exe
2012-12-01 17:45 . 2012-12-01 17:45 38 ----a-w- c:\programme\asktoolbar4\as_guid.dat
2012-01-30 06:19 . 2012-01-30 06:19 9662 ----a-w- c:\programme\asktoolbar4\install.ico
2012-01-30 06:19 . 2012-01-30 06:19 81920 ----a-w- c:\programme\asktoolbar4\asktoolbar4X.dll
2012-01-30 06:19 . 2012-01-30 06:19 9989 ----a-w- c:\programme\asktoolbar4\manifest.xml
2012-01-30 06:19 . 2012-01-30 06:19 442368 ----a-w- c:\programme\asktoolbar4\searchresultstb.dll
2012-01-30 06:19 . 2012-01-30 06:19 696 ----a-w- c:\programme\asktoolbar4\chrome\content\toolbar.htm
2012-01-30 06:19 . 2012-01-30 06:19 722200 ----a-w- c:\programme\asktoolbar4\chrome\content\toolbar.xul
2012-01-30 06:19 . 2012-01-30 06:19 10126 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\custom.js
2012-01-30 06:19 . 2012-01-30 06:19 573 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\dtxpanel.xul
2012-01-30 06:19 . 2012-01-30 06:19 653 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\dtxpaneltransparent.xul
2012-01-30 06:19 . 2012-01-30 06:19 407 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\dtxpanelwin.xul
2012-01-30 06:19 . 2012-01-30 06:19 307 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\dtxprefwin.xul
2012-01-30 06:19 . 2012-01-30 06:19 657 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\dtxtransparentwin.xul
2012-01-30 06:19 . 2012-01-30 06:19 387 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\dtxwin.xul
2012-01-30 06:19 . 2012-01-30 06:19 1639 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\emailnotifierproviders.xml
2012-01-30 06:19 . 2012-01-30 06:19 721535 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\external.js
2012-01-30 06:19 . 2012-01-30 06:19 344 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\neterror.xhtml
2012-01-30 06:19 . 2012-01-30 06:19 241 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\rsspreview.html
2012-01-30 06:19 . 2012-01-30 06:19 22187 ----a-w- c:\programme\asktoolbar4\chrome\content\modules\nsDragAndDrop.js
2012-01-30 06:19 . 2012-01-30 06:19 5860 ----a-w- c:\programme\asktoolbar4\chrome\content\newtab\newtab.html
2012-01-30 06:19 . 2012-01-30 06:19 3232 ----a-w- c:\programme\asktoolbar4\chrome\data\search\engines.xml
2012-01-30 06:19 . 2012-01-30 06:19 1214 ----a-w- c:\programme\asktoolbar4\chrome\locale\toolbar\de.js
2012-01-30 06:19 . 2012-01-30 06:19 2039 ----a-w- c:\programme\asktoolbar4\chrome\locale\toolbar\en.js
2012-01-30 06:19 . 2012-01-30 06:19 1233 ----a-w- c:\programme\asktoolbar4\chrome\locale\toolbar\es.js
2012-01-30 06:19 . 2012-01-30 06:19 1234 ----a-w- c:\programme\asktoolbar4\chrome\locale\toolbar\fr.js
2012-01-30 06:19 . 2012-01-30 06:19 1241 ----a-w- c:\programme\asktoolbar4\chrome\locale\toolbar\it.js
2012-01-30 06:19 . 2012-01-30 06:19 24017 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\dtx.css
2012-01-30 06:19 . 2012-01-30 06:19 5340 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\paneltemplate.html
2012-01-30 06:19 . 2012-12-01 17:45 2282 ----a-w- c:\programme\asktoolbar4\ask.xml
2012-01-30 06:19 . 2012-01-30 06:19 88576 ----a-w- c:\programme\asktoolbar4\dtUser.exe
2012-01-30 06:19 . 2012-01-30 06:19 1150 ----a-w- c:\programme\asktoolbar4\search.ico
2012-01-30 06:19 . 2012-01-30 06:19 117 ----a-w- c:\programme\asktoolbar4\chrome\cleanCVS.bat
2012-01-30 06:19 . 2012-01-30 06:19 9876 ----a-w- c:\programme\asktoolbar4\chrome\content\custom.js
2012-01-30 06:19 . 2012-01-30 06:19 1112 ----a-w- c:\programme\asktoolbar4\chrome\content\neterror.xhtml
2012-01-30 06:19 . 2012-01-30 06:19 663 ----a-w- c:\programme\asktoolbar4\chrome\content\preferences.xml
2012-01-30 06:19 . 2012-01-30 06:19 144 ----a-w- c:\programme\asktoolbar4\chrome\content\template.xml
2012-01-30 06:19 . 2012-01-30 06:19 7839 ----a-w- c:\programme\asktoolbar4\chrome\content\vmncode.js
2012-01-30 06:19 . 2012-01-30 06:19 2520 ----a-w- c:\programme\asktoolbar4\chrome\content\vmnrsswin.xml
2012-01-30 06:19 . 2012-01-30 06:19 4940 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\about.xml
2012-01-30 06:19 . 2012-01-30 06:19 2518 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\rsswin.xml
2012-01-30 06:19 . 2012-01-30 06:19 7476 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\rsswin.xsl
2012-01-30 06:19 . 2012-01-30 06:19 1087 ----a-w- c:\programme\asktoolbar4\chrome\content\lib\wmpstreamer.html
2012-01-30 06:19 . 2012-01-30 06:19 3820 ----a-w- c:\programme\asktoolbar4\chrome\content\modules\datastore.jsm
2012-01-30 06:19 . 2012-01-30 06:19 5816 ----a-w- c:\programme\asktoolbar4\chrome\content\newtab\newtab_mystart.html
2012-01-30 06:19 . 2012-01-30 06:19 5654 ----a-w- c:\programme\asktoolbar4\chrome\content\newtab\newtab_yahoo.html
2012-01-30 06:19 . 2012-01-30 06:19 2671 ----a-w- c:\programme\asktoolbar4\chrome\content\newtab\images\btn_search.gif
2012-01-30 06:19 . 2012-01-30 06:19 45 ----a-w- c:\programme\asktoolbar4\chrome\content\newtab\images\bullet.gif
2012-01-30 06:19 . 2012-01-30 06:19 389 ----a-w- c:\programme\asktoolbar4\chrome\content\newtab\images\field_bg.gif
2012-01-30 06:19 . 2012-01-30 06:19 1022 ----a-w- c:\programme\asktoolbar4\chrome\content\newtab\images\powered_by_yahoo.gif
2012-01-30 06:19 . 2012-01-30 06:19 1167 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-next-off.png
2012-01-30 06:19 . 2012-01-30 06:19 1289 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-next.png
2012-01-30 06:19 . 2012-01-30 06:19 1172 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-previous-off.png
2012-01-30 06:19 . 2012-01-30 06:19 1287 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-previous.png
2012-01-30 06:19 . 2012-01-30 06:19 4591 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\bg.png
2012-01-30 06:19 . 2012-01-30 06:19 4885 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\border-radius.htc
2012-01-30 06:19 . 2012-01-30 06:19 2675 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\btn-gotostore.png
2012-01-30 06:19 . 2012-01-30 06:19 873 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\btn-wide-close-over.png
2012-01-30 06:19 . 2012-01-30 06:19 857 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\btn-wide-close.png
2012-01-30 06:19 . 2012-01-30 06:19 1254 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 7972 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\index.html
2012-01-30 06:19 . 2012-01-30 06:19 980 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\not_available.gif
2012-01-30 06:19 . 2012-01-30 06:19 942 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\page_white_copy.gif
2012-01-30 06:19 . 2012-01-30 06:19 12659 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\panel.html
2012-01-30 06:19 . 2012-01-30 06:19 48 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\partner.xml
2012-01-30 06:19 . 2012-01-30 06:19 16310 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\pmfeed.xml
2012-01-30 06:19 . 2012-01-30 06:19 1517 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\shopping-hot.png
2012-01-30 06:19 . 2012-01-30 06:19 1367 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\tb_icon.png
2012-01-30 06:19 . 2012-01-30 06:19 825 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\throbber.gif
2012-01-30 06:19 . 2012-01-30 06:19 48318 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget.js
2012-01-30 06:19 . 2012-01-30 06:19 48292 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget.jsw
2012-01-30 06:19 . 2012-01-30 06:19 1757 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget.xml
2012-01-30 06:19 . 2012-01-30 06:19 36 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget_version.txt
2012-01-30 06:19 . 2012-01-30 06:19 11724 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 3463 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\css\IE7Styles.css
2012-01-30 06:19 . 2012-01-30 06:19 216 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\arrow-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 175 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\arrows_grey-left.gif
2012-01-30 06:19 . 2012-01-30 06:19 120 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\arrows_grey-right.gif
2012-01-30 06:19 . 2012-01-30 06:19 901 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\bg_top.png
2012-01-30 06:19 . 2012-01-30 06:19 1505 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\btn-back.png
2012-01-30 06:19 . 2012-01-30 06:19 608 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 2626 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\coupon-activated.png
2012-01-30 06:19 . 2012-01-30 06:19 218 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\delete.png
2012-01-30 06:19 . 2012-01-30 06:19 4176 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
2012-01-30 06:19 . 2012-01-30 06:19 1622 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\noimage.png
2012-01-30 06:19 . 2012-01-30 06:19 6165 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\power-by.png
2012-01-30 06:19 . 2012-01-30 06:19 3362 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\save.png
2012-01-30 06:19 . 2012-01-30 06:19 1261 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollb-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 352 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollb-down.png
2012-01-30 06:19 . 2012-01-30 06:19 353 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollb.png
2012-01-30 06:19 . 2012-01-30 06:19 1261 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollt-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 350 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollt-down.png
2012-01-30 06:19 . 2012-01-30 06:19 356 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollt.png
2012-01-30 06:19 . 2012-01-30 06:19 11710 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\sprite.png
2012-01-30 06:19 . 2012-01-30 06:19 514 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-arrow-hover.png
2012-01-30 06:19 . 2012-01-30 06:19 430 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-arrow.png
2012-01-30 06:19 . 2012-01-30 06:19 1062 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-off-l.png
2012-01-30 06:19 . 2012-01-30 06:19 2975 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-off-r.png
2012-01-30 06:19 . 2012-01-30 06:19 167 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-on-l.png
2012-01-30 06:19 . 2012-01-30 06:19 2943 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-on-r.png
2012-01-30 06:19 . 2012-01-30 06:19 224 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-over-l.png
2012-01-30 06:19 . 2012-01-30 06:19 339 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-over-r.png
2012-01-30 06:19 . 2012-01-30 06:19 151 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-white-left.png
2012-01-30 06:19 . 2012-01-30 06:19 115 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-white-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 148 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-white-right.png
2012-01-30 06:19 . 2012-01-30 06:19 275 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\vid-bg.png
2012-01-30 06:19 . 2012-01-30 06:19 72328 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery-1.4.2.min.js
2012-01-30 06:19 . 2012-01-30 06:19 1928 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery.event.wheel.js
2012-01-30 06:19 . 2012-01-30 06:19 5283 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery.pagination.js
2012-01-30 06:19 . 2012-01-30 06:19 2262 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery.scrollTo-min.js
2012-01-30 06:19 . 2012-01-30 06:19 1246 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\JSON.js
2012-01-30 06:19 . 2012-01-30 06:19 8511 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\listnav.js
2012-01-30 06:19 . 2012-01-30 06:19 22833 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\main.js
2012-01-30 06:19 . 2012-01-30 06:19 2678 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\main.html
2012-01-30 06:19 . 2012-01-30 06:19 3148 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 3483 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\bg.png
2012-01-30 06:19 . 2012-01-30 06:19 3078 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-help-over.png
2012-01-30 06:19 . 2012-01-30 06:19 3132 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-help.png
2012-01-30 06:19 . 2012-01-30 06:19 4178 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-managealerts-over.png
2012-01-30 06:19 . 2012-01-30 06:19 4207 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-managealerts.png
2012-01-30 06:19 . 2012-01-30 06:19 873 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-wide-close-over.png
2012-01-30 06:19 . 2012-01-30 06:19 857 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-wide-close.png
2012-01-30 06:19 . 2012-01-30 06:19 1367 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\default.png
2012-01-30 06:19 . 2012-01-30 06:19 2211 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\logo-bizrate.png
2012-01-30 06:19 . 2012-01-30 06:19 1367 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\tb_icon.png
2012-01-30 06:19 . 2012-01-30 06:19 49 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\transparent.gif
2012-01-30 06:19 . 2012-01-30 06:19 1014 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-left.png
2012-01-30 06:19 . 2012-01-30 06:19 930 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 2881 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-right-resize.png
2012-01-30 06:19 . 2012-01-30 06:19 1003 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-right.png
2012-01-30 06:19 . 2012-01-30 06:19 2386 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\scripts\defscript.js
2012-01-30 06:19 . 2012-01-30 06:19 5398 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\index.html
2012-01-30 06:19 . 2012-01-30 06:19 2866 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\tb_icon.png
2012-01-30 06:19 . 2012-01-30 06:19 5197 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget.js
2012-01-30 06:19 . 2012-01-30 06:19 1305 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget.xml
2012-01-30 06:19 . 2012-01-30 06:19 32 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget_version.txt
2012-01-30 06:19 . 2012-01-30 06:19 215 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 216 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrow-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 175 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrows_grey-left.gif
2012-01-30 06:19 . 2012-01-30 06:19 120 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrows_grey-right.gif
2012-01-30 06:19 . 2012-01-30 06:19 631 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\back.png
2012-01-30 06:19 . 2012-01-30 06:19 1462 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\btn-search-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1599 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 218 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\delete.png
2012-01-30 06:19 . 2012-01-30 06:19 336 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 352 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb-down.png
2012-01-30 06:19 . 2012-01-30 06:19 353 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb.png
2012-01-30 06:19 . 2012-01-30 06:19 346 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 350 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt-down.png
2012-01-30 06:19 . 2012-01-30 06:19 356 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt.png
2012-01-30 06:19 . 2012-01-30 06:19 514 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-arrow-hover.png
2012-01-30 06:19 . 2012-01-30 06:19 430 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-arrow.png
2012-01-30 06:19 . 2012-01-30 06:19 206 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-off-l.png
2012-01-30 06:19 . 2012-01-30 06:19 315 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-off-r.png
2012-01-30 06:19 . 2012-01-30 06:19 167 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-on-l.png
2012-01-30 06:19 . 2012-01-30 06:19 259 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-on-r.png
2012-01-30 06:19 . 2012-01-30 06:19 224 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-over-l.png
2012-01-30 06:19 . 2012-01-30 06:19 339 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-over-r.png
2012-01-30 06:19 . 2012-01-30 06:19 176 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-left.png
2012-01-30 06:19 . 2012-01-30 06:19 125 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 198 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-right.png
2012-01-30 06:19 . 2012-01-30 06:19 151 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-left.png
2012-01-30 06:19 . 2012-01-30 06:19 115 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 148 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-right.png
2012-01-30 06:19 . 2012-01-30 06:19 4176 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\throbber.gif
2012-01-30 06:19 . 2012-01-30 06:19 275 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\vid-bg.png
2012-01-30 06:19 . 2012-01-30 06:19 544 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\youtube.png
2012-01-30 06:19 . 2012-01-30 06:19 453 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\function.js
2012-01-30 06:19 . 2012-01-30 06:19 72328 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\jquery-1.4.2.min.js
2012-01-30 06:19 . 2012-01-30 06:19 1246 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\JSON.js
2012-01-30 06:19 . 2012-01-30 06:19 2856 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\main.html
2012-01-30 06:19 . 2012-01-30 06:19 3871 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 10552 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\bg-facebook.png
2012-01-30 06:19 . 2012-01-30 06:19 43 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\blank.gif
2012-01-30 06:19 . 2012-01-30 06:19 873 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\btn-wide-close-over.png
2012-01-30 06:19 . 2012-01-30 06:19 857 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\btn-wide-close.png
2012-01-30 06:19 . 2012-01-30 06:19 366 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\default.png
2012-01-30 06:19 . 2012-01-30 06:19 49 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\transparent.gif
2012-01-30 06:19 . 2012-01-30 06:19 188 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-left.png
2012-01-30 06:19 . 2012-01-30 06:19 118 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 198 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-right-resize.png
2012-01-30 06:19 . 2012-01-30 06:19 184 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-right.png
2012-01-30 06:19 . 2012-01-30 06:19 3431 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts\defscript.js
2012-01-30 06:19 . 2012-01-30 06:19 72328 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts\jquery-1.4.2.min.js
2012-01-30 06:19 . 2012-01-30 06:19 642 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-buffering.gif
2012-01-30 06:19 . 2012-01-30 06:19 1676 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-connecting.gif
2012-01-30 06:19 . 2012-01-30 06:19 1530 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-ico.png
2012-01-30 06:19 . 2012-01-30 06:19 854 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-playing.gif
2012-01-30 06:19 . 2012-01-30 06:19 1530 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-stopped.png
2012-01-30 06:19 . 2012-01-30 06:19 34494 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta.ico
2012-01-30 06:19 . 2012-01-30 06:19 14178 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta.png
2012-01-30 06:19 . 2012-01-30 06:19 1530 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\tb_icon.png
2012-01-30 06:19 . 2012-01-30 06:19 19341 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\widget.js
2012-01-30 06:19 . 2012-01-30 06:19 19341 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\widget.jsw
2012-01-30 06:19 . 2012-01-30 06:19 716 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\widget.xml
2012-01-30 06:19 . 2012-01-30 06:19 6 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\country.json
2012-01-30 06:19 . 2012-01-30 06:19 2 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\favorites.json
2012-01-30 06:19 . 2012-01-30 06:19 5158 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\index.html
2012-01-30 06:19 . 2012-01-30 06:19 101937 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\net.vmn.www.WebTV.zip
2012-01-30 06:19 . 2012-01-30 06:19 1546 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\tb_icon.png
2012-01-30 06:19 . 2012-01-30 06:19 1741 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\videoplayer.html
2012-01-30 06:19 . 2012-01-30 06:19 4973 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\widget.js
2012-01-30 06:19 . 2012-01-30 06:19 1322 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\widget.xml
2012-01-30 06:19 . 2012-01-30 06:19 32 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\widget_version.txt
2012-01-30 06:19 . 2012-01-30 06:19 7490 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 925 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\css\videoplayer.css
2012-01-30 06:19 . 2012-01-30 06:19 216 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\arrow-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 175 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\arrows_grey-left.gif
2012-01-30 06:19 . 2012-01-30 06:19 120 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\arrows_grey-right.gif
2012-01-30 06:19 . 2012-01-30 06:19 631 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\back.png
2012-01-30 06:19 . 2012-01-30 06:19 611 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\btn-search-over.png
2012-01-30 06:19 . 2012-01-30 06:19 608 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 218 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\delete.png
2012-01-30 06:19 . 2012-01-30 06:19 336 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollb-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 352 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollb-down.png
2012-01-30 06:19 . 2012-01-30 06:19 353 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollb.png
2012-01-30 06:19 . 2012-01-30 06:19 346 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollt-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 350 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollt-down.png
2012-01-30 06:19 . 2012-01-30 06:19 356 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollt.png
2012-01-30 06:19 . 2012-01-30 06:19 502 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\star-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 454 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\star.png
2012-01-30 06:19 . 2012-01-30 06:19 514 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-arrow-hover.png
2012-01-30 06:19 . 2012-01-30 06:19 430 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-arrow.png
2012-01-30 06:19 . 2012-01-30 06:19 206 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-off-l.png
2012-01-30 06:19 . 2012-01-30 06:19 315 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-off-r.png
2012-01-30 06:19 . 2012-01-30 06:19 167 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-on-l.png
2012-01-30 06:19 . 2012-01-30 06:19 259 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-on-r.png
2012-01-30 06:19 . 2012-01-30 06:19 224 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-over-l.png
2012-01-30 06:19 . 2012-01-30 06:19 339 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-over-r.png
2012-01-30 06:19 . 2012-01-30 06:19 176 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-red-left.png
2012-01-30 06:19 . 2012-01-30 06:19 125 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-red-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 198 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-red-right.png
2012-01-30 06:19 . 2012-01-30 06:19 151 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-white-left.png
2012-01-30 06:19 . 2012-01-30 06:19 115 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-white-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 148 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-white-right.png
2012-01-30 06:19 . 2012-01-30 06:19 4176 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\throbber.gif
2012-01-30 06:19 . 2012-01-30 06:19 275 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\vid-bg.png
2012-01-30 06:19 . 2012-01-30 06:19 365 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\function.js
2012-01-30 06:19 . 2012-01-30 06:19 72328 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery-1.4.2.min.js
2012-01-30 06:19 . 2012-01-30 06:19 22081 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.autocomplete.min.js
2012-01-30 06:19 . 2012-01-30 06:19 1928 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.event.wheel.js
2012-01-30 06:19 . 2012-01-30 06:19 62728 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.jlembed.js
2012-01-30 06:19 . 2012-01-30 06:19 2262 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.scrollTo-min.js
2012-01-30 06:19 . 2012-01-30 06:19 6547 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.url.js
2012-01-30 06:19 . 2012-01-30 06:19 1246 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\JSON.js
2012-01-30 06:19 . 2012-01-30 06:19 20718 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\main.js
2012-01-30 06:19 . 2012-01-30 06:19 4365 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\videoplayer.js
2012-01-30 06:19 . 2012-01-30 06:19 2822 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\main.html
2012-01-30 06:19 . 2012-01-30 06:19 3192 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 8005 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\bg.gif
2012-01-30 06:19 . 2012-01-30 06:19 1599 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 873 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\btn-wide-close-over.png
2012-01-30 06:19 . 2012-01-30 06:19 857 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\btn-wide-close.png
2012-01-30 06:19 . 2012-01-30 06:19 544 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\default.png
2012-01-30 06:19 . 2012-01-30 06:19 16896 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\Thumbs.db
2012-01-30 06:19 . 2012-01-30 06:19 49 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\transparent.gif
2012-01-30 06:19 . 2012-01-30 06:19 2864 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-left.png
2012-01-30 06:19 . 2012-01-30 06:19 118 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 2881 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-right-resize.png
2012-01-30 06:19 . 2012-01-30 06:19 2863 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-right.png
2012-01-30 06:19 . 2012-01-30 06:19 2386 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\scripts\defscript.js
2012-01-30 06:19 . 2012-01-30 06:19 4480 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\index.html
2012-01-30 06:19 . 2012-01-30 06:19 544 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\tb_icon.png
2012-01-30 06:19 . 2012-01-30 06:19 5863 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.js
2012-01-30 06:19 . 2012-01-30 06:19 5854 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.jsw
2012-01-30 06:19 . 2012-01-30 06:19 1213 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.xml
2012-01-30 06:19 . 2012-01-30 06:19 36 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget_version.txt
2012-01-30 06:19 . 2012-01-30 06:19 3435 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\css\autocomplete.css
2012-01-30 06:19 . 2012-01-30 06:19 4617 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 216 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrow-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 175 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrows_grey-left.gif
2012-01-30 06:19 . 2012-01-30 06:19 120 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrows_grey-right.gif
2012-01-30 06:19 . 2012-01-30 06:19 7997 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\bg.gif
2012-01-30 06:19 . 2012-01-30 06:19 1457 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\btn-search-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1981 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 1662 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\powered-by-youtube.gif
2012-01-30 06:19 . 2012-01-30 06:19 231 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-off-l.png
2012-01-30 06:19 . 2012-01-30 06:19 333 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-off-r.png
2012-01-30 06:19 . 2012-01-30 06:19 167 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-on-l.png
2012-01-30 06:19 . 2012-01-30 06:19 320 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-on-r.png
2012-01-30 06:19 . 2012-01-30 06:19 176 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-left.png
2012-01-30 06:19 . 2012-01-30 06:19 125 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 198 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-right.png
2012-01-30 06:19 . 2012-01-30 06:19 151 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-left.png
2012-01-30 06:19 . 2012-01-30 06:19 115 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 148 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-right.png
2012-01-30 06:19 . 2012-01-30 06:19 4176 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\throbber.gif
2012-01-30 06:19 . 2012-01-30 06:19 578 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\vid-bg.png
2012-01-30 06:19 . 2012-01-30 06:19 544 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\youtube.png
2012-01-30 06:19 . 2012-01-30 06:19 90837 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\autocomplete.js
2012-01-30 06:19 . 2012-01-30 06:19 77912 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\jquery-1.4.3.min.js
2012-01-30 06:19 . 2012-01-30 06:19 7189 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\paginator.js
2012-01-30 06:19 . 2012-01-30 06:19 14558 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\youtube.js
2012-01-30 06:19 . 2012-01-30 06:19 2781 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\main.html
2012-01-30 06:19 . 2012-01-30 06:19 3527 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 8005 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\bg.gif
2012-01-30 06:19 . 2012-01-30 06:19 1599 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 873 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-wide-close-over.png
2012-01-30 06:19 . 2012-01-30 06:19 857 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-wide-close.png
2012-01-30 06:19 . 2012-01-30 06:19 544 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\default.png
2012-01-30 06:19 . 2012-01-30 06:19 231 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-off-l.png
2012-01-30 06:19 . 2012-01-30 06:19 333 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-off-r.png
2012-01-30 06:19 . 2012-01-30 06:19 167 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-on-l.png
2012-01-30 06:19 . 2012-01-30 06:19 320 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-on-r.png
2012-01-30 06:19 . 2012-01-30 06:19 49 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\transparent.gif
2012-01-30 06:19 . 2012-01-30 06:19 225 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-left.png
2012-01-30 06:19 . 2012-01-30 06:19 118 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 241 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-right-resize.png
2012-01-30 06:19 . 2012-01-30 06:19 170 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-right.png
2012-01-30 06:19 . 2012-01-30 06:19 2386 ----a-w- c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\scripts\defscript.js
2012-01-30 06:19 . 2012-01-30 06:19 297 ----a-w- c:\programme\asktoolbar4\chrome\data\dynamicElements\vmntoolbar.xsl
2012-01-30 06:19 . 2012-01-30 06:19 1599 ----a-w- c:\programme\asktoolbar4\chrome\data\rss\rss.xml
2012-01-30 06:19 . 2012-01-30 06:19 26419 ----a-w- c:\programme\asktoolbar4\chrome\data\search\engines_mystart.xml
2012-01-30 06:19 . 2012-01-30 06:19 26419 ----a-w- c:\programme\asktoolbar4\chrome\data\search\engines_yahoo.xml
2012-01-30 06:19 . 2012-01-30 06:19 955 ----a-w- c:\programme\asktoolbar4\chrome\data\search\search.xsl
2012-01-30 06:19 . 2012-01-30 06:19 6844 ----a-w- c:\programme\asktoolbar4\chrome\data\weather\icons.xml
2012-01-30 06:19 . 2012-01-30 06:19 257 ----a-w- c:\programme\asktoolbar4\chrome\locale\locale.js
2012-01-30 06:19 . 2012-01-30 06:19 15719 ----a-w- c:\programme\asktoolbar4\chrome\locale\lib\de.js
2012-01-30 06:19 . 2012-01-30 06:19 14841 ----a-w- c:\programme\asktoolbar4\chrome\locale\lib\en.js
2012-01-30 06:19 . 2012-01-30 06:19 16108 ----a-w- c:\programme\asktoolbar4\chrome\locale\lib\es.js
2012-01-30 06:19 . 2012-01-30 06:19 16168 ----a-w- c:\programme\asktoolbar4\chrome\locale\lib\fr.js
2012-01-30 06:19 . 2012-01-30 06:19 15931 ----a-w- c:\programme\asktoolbar4\chrome\locale\lib\it.js
2012-01-30 06:19 . 2012-01-30 06:19 3377 ----a-w- c:\programme\asktoolbar4\chrome\skin\about.gif
2012-01-30 06:19 . 2012-01-30 06:19 7718 ----a-w- c:\programme\asktoolbar4\chrome\skin\about_logo.png
2012-01-30 06:19 . 2012-01-30 06:19 1338 ----a-w- c:\programme\asktoolbar4\chrome\skin\ask_logo_24x.png
2012-01-30 06:19 . 2012-01-30 06:19 3577 ----a-w- c:\programme\asktoolbar4\chrome\skin\babylon_logo.png
2012-01-30 06:19 . 2012-01-30 06:19 153 ----a-w- c:\programme\asktoolbar4\chrome\skin\bluelite.gif
2012-01-30 06:19 . 2012-01-30 06:19 153 ----a-w- c:\programme\asktoolbar4\chrome\skin\bluesky.gif
2012-01-30 06:19 . 2012-01-30 06:19 2498 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-de.png
2012-01-30 06:19 . 2012-01-30 06:19 4130 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-en.png
2012-01-30 06:19 . 2012-01-30 06:19 2461 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-es.png
2012-01-30 06:19 . 2012-01-30 06:19 4854 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-fr.png
2012-01-30 06:19 . 2012-01-30 06:19 4049 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-it.png
2012-01-30 06:19 . 2012-01-30 06:19 2546 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-over-de.png
2012-01-30 06:19 . 2012-01-30 06:19 4258 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-over-en.png
2012-01-30 06:19 . 2012-01-30 06:19 2562 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-over-es.png
2012-01-30 06:19 . 2012-01-30 06:19 5038 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-over-fr.png
2012-01-30 06:19 . 2012-01-30 06:19 4150 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-over-it.png
2012-01-30 06:19 . 2012-01-30 06:19 5106 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search-over.png
2012-01-30 06:19 . 2012-01-30 06:19 5208 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 1778 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-settings-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1795 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-settings.png
2012-01-30 06:19 . 2012-01-30 06:19 1818 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-widgets-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1806 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn-widgets.png
2012-01-30 06:19 . 2012-01-30 06:19 1391 ----a-w- c:\programme\asktoolbar4\chrome\skin\btn_settings.png
2012-01-30 06:19 . 2012-01-30 06:19 763 ----a-w- c:\programme\asktoolbar4\chrome\skin\ca.png
2012-01-30 06:19 . 2012-01-30 06:19 8885 ----a-w- c:\programme\asktoolbar4\chrome\skin\custom.css
2012-01-30 06:19 . 2012-01-30 06:19 746 ----a-w- c:\programme\asktoolbar4\chrome\skin\dictionary.png
2012-01-30 06:19 . 2012-01-30 06:19 134 ----a-w- c:\programme\asktoolbar4\chrome\skin\divider.png
2012-01-30 06:19 . 2012-01-30 06:19 972 ----a-w- c:\programme\asktoolbar4\chrome\skin\downloadcom.png
2012-01-30 06:19 . 2012-01-30 06:19 867 ----a-w- c:\programme\asktoolbar4\chrome\skin\dtxlogo.png
2012-01-30 06:19 . 2012-01-30 06:19 3447 ----a-w- c:\programme\asktoolbar4\chrome\skin\email.png
2012-01-30 06:19 . 2012-01-30 06:19 3303 ----a-w- c:\programme\asktoolbar4\chrome\skin\email_on.png
2012-01-30 06:19 . 2012-01-30 06:19 235 ----a-w- c:\programme\asktoolbar4\chrome\skin\facebook.png
2012-01-30 06:19 . 2012-01-30 06:19 1457 ----a-w- c:\programme\asktoolbar4\chrome\skin\games.png
2012-01-30 06:19 . 2012-01-30 06:19 3229 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphna.png
2012-01-30 06:19 . 2012-01-30 06:19 3065 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred0.png
2012-01-30 06:19 . 2012-01-30 06:19 3117 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred0_5.png
2012-01-30 06:19 . 2012-01-30 06:19 3180 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred1.png
2012-01-30 06:19 . 2012-01-30 06:19 3222 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred1_5.png
2012-01-30 06:19 . 2012-01-30 06:19 3219 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred2.png
2012-01-30 06:19 . 2012-01-30 06:19 3260 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred2_5.png
2012-01-30 06:19 . 2012-01-30 06:19 3222 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred3.png
2012-01-30 06:19 . 2012-01-30 06:19 3255 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred3_5.png
2012-01-30 06:19 . 2012-01-30 06:19 3200 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred4.png
2012-01-30 06:19 . 2012-01-30 06:19 3237 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred4_5.png
2012-01-30 06:19 . 2012-01-30 06:19 3194 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphred5.png
2012-01-30 06:19 . 2012-01-30 06:19 3229 ----a-w- c:\programme\asktoolbar4\chrome\skin\graphredna.png
2012-01-30 06:19 . 2012-01-30 06:19 152 ----a-w- c:\programme\asktoolbar4\chrome\skin\grey.gif
2012-01-30 06:19 . 2012-01-30 06:19 740 ----a-w- c:\programme\asktoolbar4\chrome\skin\ico-shield.png
2012-01-30 06:19 . 2012-01-30 06:19 1598 ----a-w- c:\programme\asktoolbar4\chrome\skin\images.png
2012-01-30 06:19 . 2012-01-30 06:19 153 ----a-w- c:\programme\asktoolbar4\chrome\skin\lichen.gif
2012-01-30 06:19 . 2012-01-30 06:19 7616 ----a-w- c:\programme\asktoolbar4\chrome\skin\logo-about.png
2012-01-30 06:19 . 2012-01-30 06:19 1692 ----a-w- c:\programme\asktoolbar4\chrome\skin\logo-over.png
2012-01-30 06:19 . 2012-01-30 06:19 566 ----a-w- c:\programme\asktoolbar4\chrome\skin\logo-separator.png
2012-01-30 06:19 . 2012-01-30 06:19 1372 ----a-w- c:\programme\asktoolbar4\chrome\skin\logo.png
2012-01-30 06:19 . 2012-01-30 06:19 543 ----a-w- c:\programme\asktoolbar4\chrome\skin\mail.png
2012-01-30 06:19 . 2012-01-30 06:19 165 ----a-w- c:\programme\asktoolbar4\chrome\skin\menuseparatorback.gif
2012-01-30 06:19 . 2012-01-30 06:19 1415 ----a-w- c:\programme\asktoolbar4\chrome\skin\modify-save.png
2012-01-30 06:19 . 2012-01-30 06:19 708 ----a-w- c:\programme\asktoolbar4\chrome\skin\modify.png
2012-01-30 06:19 . 2012-01-30 06:19 149 ----a-w- c:\programme\asktoolbar4\chrome\skin\modifyhot.png
2012-01-30 06:19 . 2012-01-30 06:19 570 ----a-w- c:\programme\asktoolbar4\chrome\skin\music.png
2012-01-30 06:19 . 2012-01-30 06:19 0 ----a-w- c:\programme\asktoolbar4\chrome\skin\namespacetoolbar.css
2012-01-30 06:19 . 2012-01-30 06:19 3442 ----a-w- c:\programme\asktoolbar4\chrome\skin\news.png
2012-01-30 06:19 . 2012-01-30 06:19 3534 ----a-w- c:\programme\asktoolbar4\chrome\skin\options-main.png
2012-01-30 06:19 . 2012-01-30 06:19 4643 ----a-w- c:\programme\asktoolbar4\chrome\skin\options-search.png
2012-01-30 06:19 . 2012-01-30 06:19 153 ----a-w- c:\programme\asktoolbar4\chrome\skin\orange.gif
2012-01-30 06:19 . 2012-01-30 06:19 690 ----a-w- c:\programme\asktoolbar4\chrome\skin\pixsy.png
2012-01-30 06:19 . 2012-01-30 06:19 3555 ----a-w- c:\programme\asktoolbar4\chrome\skin\ppcbully.png
2012-01-30 06:19 . 2012-01-30 06:19 737 ----a-w- c:\programme\asktoolbar4\chrome\skin\protect-id.png
2012-01-30 06:19 . 2012-01-30 06:19 2423 ----a-w- c:\programme\asktoolbar4\chrome\skin\p_yahoo.png
2012-01-30 06:19 . 2012-01-30 06:19 691 ----a-w- c:\programme\asktoolbar4\chrome\skin\relatedlinks.png
2012-01-30 06:19 . 2012-01-30 06:19 187 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-collapse.png
2012-01-30 06:19 . 2012-01-30 06:19 511 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-delete.png
2012-01-30 06:19 . 2012-01-30 06:19 196 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-expand.png
2012-01-30 06:19 . 2012-01-30 06:19 498 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-feed.png
2012-01-30 06:19 . 2012-01-30 06:19 540 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-folder-remove.png
2012-01-30 06:19 . 2012-01-30 06:19 621 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-folder-rename.png
2012-01-30 06:19 . 2012-01-30 06:19 630 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-folder.png
2012-01-30 06:19 . 2012-01-30 06:19 677 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-found.png
2012-01-30 06:19 . 2012-01-30 06:19 384 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-reload.png
2012-01-30 06:19 . 2012-01-30 06:19 2890 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss-subscribe.png
2012-01-30 06:19 . 2012-01-30 06:19 772 ----a-w- c:\programme\asktoolbar4\chrome\skin\rss.png
2012-01-30 06:19 . 2012-01-30 06:19 469 ----a-w- c:\programme\asktoolbar4\chrome\skin\rssback.gif
2012-01-30 06:19 . 2012-01-30 06:19 1876 ----a-w- c:\programme\asktoolbar4\chrome\skin\rsstopback.gif
2012-01-30 06:19 . 2012-01-30 06:19 1445 ----a-w- c:\programme\asktoolbar4\chrome\skin\search-over.png
2012-01-30 06:19 . 2012-01-30 06:19 3309 ----a-w- c:\programme\asktoolbar4\chrome\skin\search.png
2012-01-30 06:19 . 2012-01-30 06:19 3466 ----a-w- c:\programme\asktoolbar4\chrome\skin\settings.png
2012-01-30 06:19 . 2012-01-30 06:19 784 ----a-w- c:\programme\asktoolbar4\chrome\skin\shopping.png
2012-01-30 06:19 . 2012-01-30 06:19 792 ----a-w- c:\programme\asktoolbar4\chrome\skin\siteinfo.png
2012-01-30 06:19 . 2012-01-30 06:19 3198 ----a-w- c:\programme\asktoolbar4\chrome\skin\skin-bluelite.png
2012-01-30 06:19 . 2012-01-30 06:19 3561 ----a-w- c:\programme\asktoolbar4\chrome\skin\skin-bluesky.png
2012-01-30 06:19 . 2012-01-30 06:19 3166 ----a-w- c:\programme\asktoolbar4\chrome\skin\skin-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 3116 ----a-w- c:\programme\asktoolbar4\chrome\skin\skin-lichen.png
2012-01-30 06:19 . 2012-01-30 06:19 3683 ----a-w- c:\programme\asktoolbar4\chrome\skin\skin-orange.png
2012-01-30 06:19 . 2012-01-30 06:19 3156 ----a-w- c:\programme\asktoolbar4\chrome\skin\skin-yellow.png
2012-01-30 06:19 . 2012-01-30 06:19 3654 ----a-w- c:\programme\asktoolbar4\chrome\skin\skin.xml
2012-01-30 06:19 . 2012-01-30 06:19 493 ----a-w- c:\programme\asktoolbar4\chrome\skin\technorati.png
2012-01-30 06:19 . 2012-01-30 06:19 825 ----a-w- c:\programme\asktoolbar4\chrome\skin\throbber.gif
2012-01-30 06:19 . 2012-01-30 06:19 763 ----a-w- c:\programme\asktoolbar4\chrome\skin\toolbarsplitter.png
2012-01-30 06:19 . 2012-01-30 06:19 633 ----a-w- c:\programme\asktoolbar4\chrome\skin\translate.png
2012-01-30 06:19 . 2012-01-30 06:19 6090 ----a-w- c:\programme\asktoolbar4\chrome\skin\TRUSTe_about.png
2012-01-30 06:19 . 2012-01-30 06:19 1640 ----a-w- c:\programme\asktoolbar4\chrome\skin\video.png
2012-01-30 06:19 . 2012-01-30 06:19 8305 ----a-w- c:\programme\asktoolbar4\chrome\skin\vmn.css
2012-01-30 06:19 . 2012-01-30 06:19 3038 ----a-w- c:\programme\asktoolbar4\chrome\skin\vmn.png
2012-01-30 06:19 . 2012-01-30 06:19 566 ----a-w- c:\programme\asktoolbar4\chrome\skin\web.png
2012-01-30 06:19 . 2012-01-30 06:19 853 ----a-w- c:\programme\asktoolbar4\chrome\skin\websearch.png
2012-01-30 06:19 . 2012-01-30 06:19 586 ----a-w- c:\programme\asktoolbar4\chrome\skin\wikipedia.png
2012-01-30 06:19 . 2012-01-30 06:19 7856 ----a-w- c:\programme\asktoolbar4\chrome\skin\yahoosearch.png
2012-01-30 06:19 . 2012-01-30 06:19 153 ----a-w- c:\programme\asktoolbar4\chrome\skin\yellow.gif
2012-01-30 06:19 . 2012-01-30 06:19 608 ----a-w- c:\programme\asktoolbar4\chrome\skin\youtube.png
2012-01-30 06:19 . 2012-01-30 06:19 732 ----a-w- c:\programme\asktoolbar4\chrome\skin\zoom.png
2012-01-30 06:19 . 2012-01-30 06:19 653 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\add.png
2012-01-30 06:19 . 2012-01-30 06:19 596 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\alexabutton.css
2012-01-30 06:19 . 2012-01-30 06:19 648 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\aol.png
2012-01-30 06:19 . 2012-01-30 06:19 46 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\arrow-dn.gif
2012-01-30 06:19 . 2012-01-30 06:19 46 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\arrow-right-disabled.gif
2012-01-30 06:19 . 2012-01-30 06:19 46 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\arrow-right.gif
2012-01-30 06:19 . 2012-01-30 06:19 46 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\arrow-up.gif
2012-01-30 06:19 . 2012-01-30 06:19 205 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-divider.png
2012-01-30 06:19 . 2012-01-30 06:19 299 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-end.png
2012-01-30 06:19 . 2012-01-30 06:19 205 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 203 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-mdl_ff.png
2012-01-30 06:19 . 2012-01-30 06:19 342 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-start.png
2012-01-30 06:19 . 2012-01-30 06:19 240 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-divider.png
2012-01-30 06:19 . 2012-01-30 06:19 284 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-end.png
2012-01-30 06:19 . 2012-01-30 06:19 210 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 179 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-mdl_ff.png
2012-01-30 06:19 . 2012-01-30 06:19 352 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-start.png
2012-01-30 06:19 . 2012-01-30 06:19 55 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\blank.gif
2012-01-30 06:19 . 2012-01-30 06:19 1638 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btn-widgets-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1631 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btn-widgets.png
2012-01-30 06:19 . 2012-01-30 06:19 207 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btnback-down-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 207 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btnback-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 310 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btnleft-down-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 307 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btnleft-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 289 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btnright-down-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 309 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btnright-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 763 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\btn_slider.png
2012-01-30 06:19 . 2012-01-30 06:19 261 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\button-splitter-down-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 264 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\button-splitter-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 264 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\button-splitter.png
2012-01-30 06:19 . 2012-01-30 06:19 309 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\checkmark.png
2012-01-30 06:19 . 2012-01-30 06:19 191 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\chevron.png
2012-01-30 06:19 . 2012-01-30 06:19 264 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\collapse.png
2012-01-30 06:19 . 2012-01-30 06:19 421 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\comcast.png
2012-01-30 06:19 . 2012-01-30 06:19 1223 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\dtx-test.css
2012-01-30 06:19 . 2012-01-30 06:19 217 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\edit-back-hot.png
2012-01-30 06:19 . 2012-01-30 06:19 214 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\edit-back.png
2012-01-30 06:19 . 2012-01-30 06:19 253 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\embarq.png
2012-01-30 06:19 . 2012-01-30 06:19 303 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\expand.png
2012-01-30 06:19 . 2012-01-30 06:19 949 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\fast.png
2012-01-30 06:19 . 2012-01-30 06:19 902 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\found.png
2012-01-30 06:19 . 2012-01-30 06:19 741 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\gmail.png
2012-01-30 06:19 . 2012-01-30 06:19 308 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\gripper.png
2012-01-30 06:19 . 2012-01-30 06:19 811 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\highlight.png
2012-01-30 06:19 . 2012-01-30 06:19 309 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\highlight_blue.png
2012-01-30 06:19 . 2012-01-30 06:19 299 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\highlight_cyan.png
2012-01-30 06:19 . 2012-01-30 06:19 300 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\highlight_lime.png
2012-01-30 06:19 . 2012-01-30 06:19 302 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\highlight_magenta.png
2012-01-30 06:19 . 2012-01-30 06:19 309 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\highlight_yellow.png
2012-01-30 06:19 . 2012-01-30 06:19 297 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\hotmail.png
2012-01-30 06:19 . 2012-01-30 06:19 2923 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\ico-check.png
2012-01-30 06:19 . 2012-01-30 06:19 278 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\imap.png
2012-01-30 06:19 . 2012-01-30 06:19 1895 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\lastsearch-thumb-back.gif
2012-01-30 06:19 . 2012-01-30 06:19 1087 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\launchers.css
2012-01-30 06:19 . 2012-01-30 06:19 7823 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\loadingMid.gif
2012-01-30 06:19 . 2012-01-30 06:19 316 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\lock.png
2012-01-30 06:19 . 2012-01-30 06:19 582 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\logo-separator.png
2012-01-30 06:19 . 2012-01-30 06:19 254 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\mailcom.png
2012-01-30 06:19 . 2012-01-30 06:19 136 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitem-splitter.png
2012-01-30 06:19 . 2012-01-30 06:19 202 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitemback-down-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 209 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitemback-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 289 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitemleft-down-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 307 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitemleft-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 323 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitemleft.png
2012-01-30 06:19 . 2012-01-30 06:19 252 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitemright-down-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 309 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menuitemright-vista.png
2012-01-30 06:19 . 2012-01-30 06:19 446 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menu_bg-basic.png
2012-01-30 06:19 . 2012-01-30 06:19 129 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menu_separator_bar.png
2012-01-30 06:19 . 2012-01-30 06:19 133 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\menu_separator_white.png
2012-01-30 06:19 . 2012-01-30 06:19 152 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\minus.gif
2012-01-30 06:19 . 2012-01-30 06:19 724 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\modify.png
2012-01-30 06:19 . 2012-01-30 06:19 58 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\move.gif
2012-01-30 06:19 . 2012-01-30 06:19 507 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\movetarget.png
2012-01-30 06:19 . 2012-01-30 06:19 970 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\newsitem.gif
2012-01-30 06:19 . 2012-01-30 06:19 157 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\plus.gif
2012-01-30 06:19 . 2012-01-30 06:19 543 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\pop.png
2012-01-30 06:19 . 2012-01-30 06:19 355 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio.png
2012-01-30 06:19 . 2012-01-30 06:19 387 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank0.png
2012-01-30 06:19 . 2012-01-30 06:19 451 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank0_5.png
2012-01-30 06:19 . 2012-01-30 06:19 451 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank1.png
2012-01-30 06:19 . 2012-01-30 06:19 526 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank1_5.png
2012-01-30 06:19 . 2012-01-30 06:19 531 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank2.png
2012-01-30 06:19 . 2012-01-30 06:19 587 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank2_5.png
2012-01-30 06:19 . 2012-01-30 06:19 580 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank3.png
2012-01-30 06:19 . 2012-01-30 06:19 639 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank3_5.png
2012-01-30 06:19 . 2012-01-30 06:19 660 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank4.png
2012-01-30 06:19 . 2012-01-30 06:19 718 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank4_5.png
2012-01-30 06:19 . 2012-01-30 06:19 708 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rank5.png
2012-01-30 06:19 . 2012-01-30 06:19 771 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rankna.png
2012-01-30 06:19 . 2012-01-30 06:19 905 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\reload.png
2012-01-30 06:19 . 2012-01-30 06:19 1037 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\remove.png
2012-01-30 06:19 . 2012-01-30 06:19 223 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rename.gif
2012-01-30 06:19 . 2012-01-30 06:19 92 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\resize-box.gif
2012-01-30 06:19 . 2012-01-30 06:19 832 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rss.png
2012-01-30 06:19 . 2012-01-30 06:19 604 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rsschannelback.png
2012-01-30 06:19 . 2012-01-30 06:19 7280 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\RSSLogo.png
2012-01-30 06:19 . 2012-01-30 06:19 85 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\rsstabdivider.gif
2012-01-30 06:19 . 2012-01-30 06:19 257 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\scroll-left.png
2012-01-30 06:19 . 2012-01-30 06:19 258 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\scroll-right.png
2012-01-30 06:19 . 2012-01-30 06:19 840 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\search-go.png
2012-01-30 06:19 . 2012-01-30 06:19 712 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\search.png
2012-01-30 06:19 . 2012-01-30 06:19 139 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\separator.png
2012-01-30 06:19 . 2012-01-30 06:19 423 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\text-ellipsis.xml
2012-01-30 06:19 . 2012-01-30 06:19 825 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\throbber.gif
2012-01-30 06:19 . 2012-01-30 06:19 76 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\toolbarsplitter.gif
2012-01-30 06:19 . 2012-01-30 06:19 45 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\transparent_1px.gif
2012-01-30 06:19 . 2012-01-30 06:19 2914 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton.css
2012-01-30 06:19 . 2012-01-30 06:19 110 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-highrisk-user.gif
2012-01-30 06:19 . 2012-01-30 06:19 110 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-highrisk.gif
2012-01-30 06:19 . 2012-01-30 06:19 174 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-lowrisk.gif
2012-01-30 06:19 . 2012-01-30 06:19 904 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-norating.gif
2012-01-30 06:19 . 2012-01-30 06:19 120 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-verified-user.gif
2012-01-30 06:19 . 2012-01-30 06:19 120 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-verified.gif
2012-01-30 06:19 . 2012-01-30 06:19 180 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-verifying.gif
2012-01-30 06:19 . 2012-01-30 06:19 244 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\yahoo.png
2012-01-30 06:19 . 2012-01-30 06:19 1503 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\debugbar\debug.html
2012-01-30 06:19 . 2012-01-30 06:19 1348 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\footer.htm
2012-01-30 06:19 . 2012-01-30 06:19 700 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\gamecategory.xsl
2012-01-30 06:19 . 2012-01-30 06:19 25783 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\gameData.js
2012-01-30 06:19 . 2012-01-30 06:19 7902 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\gameList.xsl
2012-01-30 06:19 . 2012-01-30 06:19 1992 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\games.xsl
2012-01-30 06:19 . 2012-01-30 06:19 681 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\gametype.xsl
2012-01-30 06:19 . 2012-01-30 06:19 481 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\initHTML.html
2012-01-30 06:19 . 2012-01-30 06:19 10521 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\popupGames.html
2012-01-30 06:19 . 2012-01-30 06:19 802 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\popupHTML.html
2012-01-30 06:19 . 2012-01-30 06:19 4339 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\popupRSS.html
2012-01-30 06:19 . 2012-01-30 06:19 14657 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\popupWidgets.html
2012-01-30 06:19 . 2012-01-30 06:19 14413 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\popupWidgets.html.bak
2012-01-30 06:19 . 2012-01-30 06:19 455 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\scroll.png
2012-01-30 06:19 . 2012-01-30 06:19 5466 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\css\panels.css
2012-01-30 06:19 . 2012-01-30 06:19 907 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupAbout.css
2012-01-30 06:19 . 2012-01-30 06:19 7211 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupGames.css
2012-01-30 06:19 . 2012-01-30 06:19 6263 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupRSS.css
2012-01-30 06:19 . 2012-01-30 06:19 9698 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupWidgets.css
2012-01-30 06:19 . 2012-01-30 06:19 2749 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\main.html
2012-01-30 06:19 . 2012-01-30 06:19 2750 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\main.html.bak
2012-01-30 06:19 . 2012-01-30 06:19 3162 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\css\dialog.css
2012-01-30 06:19 . 2012-01-30 06:19 8005 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\bg.gif
2012-01-30 06:19 . 2012-01-30 06:19 1615 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\btn-search.png
2012-01-30 06:19 . 2012-01-30 06:19 873 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\btn-wide-close-over.png
2012-01-30 06:19 . 2012-01-30 06:19 857 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\btn-wide-close.png
2012-01-30 06:19 . 2012-01-30 06:19 867 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\default.png
2012-01-30 06:19 . 2012-01-30 06:19 205 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-off-l.png
2012-01-30 06:19 . 2012-01-30 06:19 312 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-off-r.png
2012-01-30 06:19 . 2012-01-30 06:19 167 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-on-l.png
2012-01-30 06:19 . 2012-01-30 06:19 278 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-on-r.png
2012-01-30 06:19 . 2012-01-30 06:19 49 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\transparent.gif
2012-01-30 06:19 . 2012-01-30 06:19 266 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\ttlbar-left.png
2012-01-30 06:19 . 2012-01-30 06:19 146 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\ttlbar-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 286 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\ttlbar-right.png
2012-01-30 06:19 . 2012-01-30 06:19 204 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-left.png
2012-01-30 06:19 . 2012-01-30 06:19 118 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 214 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-right-resize.png
2012-01-30 06:19 . 2012-01-30 06:19 205 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-right.png
2012-01-30 06:19 . 2012-01-30 06:19 114 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-left.png
2012-01-30 06:19 . 2012-01-30 06:19 114 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-right.png
2012-01-30 06:19 . 2012-01-30 06:19 3270 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\scripts\defscript.js
2012-01-30 06:19 . 2012-01-30 06:19 3270 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\default\scripts\defscript.js.bak
2012-01-30 06:19 . 2012-01-30 06:19 46 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-dn.gif
2012-01-30 06:19 . 2012-01-30 06:19 188 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-sml-drop.png
2012-01-30 06:19 . 2012-01-30 06:19 211 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-sml.png
2012-01-30 06:19 . 2012-01-30 06:19 46 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-up.gif
2012-01-30 06:19 . 2012-01-30 06:19 205 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrowr-bluew5.png
2012-01-30 06:19 . 2012-01-30 06:19 2526 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bg-aboutbox.png
2012-01-30 06:19 . 2012-01-30 06:19 179 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bg-btnover.png
2012-01-30 06:19 . 2012-01-30 06:19 3335 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bg-pnl520x390.png
2012-01-30 06:19 . 2012-01-30 06:19 1622 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-addtoolbar-left-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1643 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-addtoolbar-left.png
2012-01-30 06:19 . 2012-01-30 06:19 1147 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-addtoolbar-right.png
2012-01-30 06:19 . 2012-01-30 06:19 1345 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-back.png
2012-01-30 06:19 . 2012-01-30 06:19 283 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-close-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 457 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-close-greyover.png
2012-01-30 06:19 . 2012-01-30 06:19 486 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-drag.png
2012-01-30 06:19 . 2012-01-30 06:19 1032 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-mdl-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1033 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-mdl.png
2012-01-30 06:19 . 2012-01-30 06:19 1895 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-moredetails.png
2012-01-30 06:19 . 2012-01-30 06:19 442 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-next-over.png
2012-01-30 06:19 . 2012-01-30 06:19 471 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-next.png
2012-01-30 06:19 . 2012-01-30 06:19 1700 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-play-left-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1691 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-play-left.png
2012-01-30 06:19 . 2012-01-30 06:19 440 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-previous-over.png
2012-01-30 06:19 . 2012-01-30 06:19 476 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-previous.png
2012-01-30 06:19 . 2012-01-30 06:19 1145 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-right-over.png
2012-01-30 06:19 . 2012-01-30 06:19 3452 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-search-pnlbtm-over.png
2012-01-30 06:19 . 2012-01-30 06:19 916 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-search-pnlbtm.png
2012-01-30 06:19 . 2012-01-30 06:19 1568 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-try-left-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1590 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-try-left.png
2012-01-30 06:19 . 2012-01-30 06:19 43 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bullet-orange.gif
2012-01-30 06:19 . 2012-01-30 06:19 2549 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\gamethumb-on.png
2012-01-30 06:19 . 2012-01-30 06:19 574 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\gamethumb2-over.png
2012-01-30 06:19 . 2012-01-30 06:19 566 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-calendar.png
2012-01-30 06:19 . 2012-01-30 06:19 3657 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-dollar.png
2012-01-30 06:19 . 2012-01-30 06:19 692 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-download.png
2012-01-30 06:19 . 2012-01-30 06:19 1011 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-joystick24.png
2012-01-30 06:19 . 2012-01-30 06:19 1054 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-news24.png
2012-01-30 06:19 . 2012-01-30 06:19 248 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-play.png
2012-01-30 06:19 . 2012-01-30 06:19 209 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-tags.png
2012-01-30 06:19 . 2012-01-30 06:19 228 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-Add.png
2012-01-30 06:19 . 2012-01-30 06:19 251 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-download.png
2012-01-30 06:19 . 2012-01-30 06:19 218 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-Info.png
2012-01-30 06:19 . 2012-01-30 06:19 290 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-play.png
2012-01-30 06:19 . 2012-01-30 06:19 233 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-shop.png
2012-01-30 06:19 . 2012-01-30 06:19 179 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\menul-bgon.png
2012-01-30 06:19 . 2012-01-30 06:19 168 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\menul-bgover.png
2012-01-30 06:19 . 2012-01-30 06:19 448 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\panel-botm-noscroll.png
2012-01-30 06:19 . 2012-01-30 06:19 663 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scroll-bg-206.png
2012-01-30 06:19 . 2012-01-30 06:19 663 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scroll-bg.png
2012-01-30 06:19 . 2012-01-30 06:19 951 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scroll-topwin.png
2012-01-30 06:19 . 2012-01-30 06:19 1063 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 1105 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb-down.png
2012-01-30 06:19 . 2012-01-30 06:19 1102 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1118 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb.png
2012-01-30 06:19 . 2012-01-30 06:19 832 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt-disable.png
2012-01-30 06:19 . 2012-01-30 06:19 864 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt-down.png
2012-01-30 06:19 . 2012-01-30 06:19 892 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt-over.png
2012-01-30 06:19 . 2012-01-30 06:19 893 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt.png
2012-01-30 06:19 . 2012-01-30 06:19 532 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\searchbox-pnlbtm.png
2012-01-30 06:19 . 2012-01-30 06:19 328 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\star_x_grey.png
2012-01-30 06:19 . 2012-01-30 06:19 367 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\star_x_orange.png
2012-01-30 06:19 . 2012-01-30 06:19 5528 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\TRUSTe_about.png
2012-01-30 06:19 . 2012-01-30 06:19 496 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-detailed-on.png
2012-01-30 06:19 . 2012-01-30 06:19 451 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-detailed-over.png
2012-01-30 06:19 . 2012-01-30 06:19 402 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-thumb-on.png
2012-01-30 06:19 . 2012-01-30 06:19 380 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-thumb-over.png
2012-01-30 06:19 . 2012-01-30 06:19 690 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\widgets-square-16px.png
2012-01-30 06:19 . 2012-01-30 06:19 1097 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\widgets-square-24px.png
2012-01-30 06:19 . 2012-01-30 06:19 447 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\panels\images\widgets.png
2012-01-30 06:19 . 2012-01-30 06:19 10423 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\managerpanel.html
2012-01-30 06:19 . 2012-01-30 06:19 4366 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\volumeslider.html
2012-01-30 06:19 . 2012-01-30 06:19 2878 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\css\manager.css
2012-01-30 06:19 . 2012-01-30 06:19 540 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\css\slider.css
2012-01-30 06:19 . 2012-01-30 06:19 1990 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\bg-pnl.png
2012-01-30 06:19 . 2012-01-30 06:19 263 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\btn-close-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 444 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\btn-close-greyover.png
2012-01-30 06:19 . 2012-01-30 06:19 184 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\collapsed_button.gif
2012-01-30 06:19 . 2012-01-30 06:19 181 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\expanded_button.gif
2012-01-30 06:19 . 2012-01-30 06:19 1378 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-playstation-down.png
2012-01-30 06:19 . 2012-01-30 06:19 1339 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-playstation-over.png
2012-01-30 06:19 . 2012-01-30 06:19 1335 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-playstation.png
2012-01-30 06:19 . 2012-01-30 06:19 879 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-radio.png
2012-01-30 06:19 . 2012-01-30 06:19 775 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\music-note.png
2012-01-30 06:19 . 2012-01-30 06:19 1480 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-pause-on.png
2012-01-30 06:19 . 2012-01-30 06:19 1419 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-pause.png
2012-01-30 06:19 . 2012-01-30 06:19 1560 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-play-on.png
2012-01-30 06:19 . 2012-01-30 06:19 1515 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-play.png
2012-01-30 06:19 . 2012-01-30 06:19 691 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-bg.png
2012-01-30 06:19 . 2012-01-30 06:19 755 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-buffer.gif
2012-01-30 06:19 . 2012-01-30 06:19 769 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-busy.gif
2012-01-30 06:19 . 2012-01-30 06:19 824 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-off.png
2012-01-30 06:19 . 2012-01-30 06:19 1000 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-on.gif
2012-01-30 06:19 . 2012-01-30 06:19 969 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-warning.png
2012-01-30 06:19 . 2012-01-30 06:19 701 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options-design-on.png
2012-01-30 06:19 . 2012-01-30 06:19 704 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options-design.png
2012-01-30 06:19 . 2012-01-30 06:19 485 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options-on.png
2012-01-30 06:19 . 2012-01-30 06:19 493 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options.png
2012-01-30 06:19 . 2012-01-30 06:19 614 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-0.png
2012-01-30 06:19 . 2012-01-30 06:19 668 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-1.png
2012-01-30 06:19 . 2012-01-30 06:19 721 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-2.png
2012-01-30 06:19 . 2012-01-30 06:19 793 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-3.png
2012-01-30 06:19 . 2012-01-30 06:19 788 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-mute.png
2012-01-30 06:19 . 2012-01-30 06:19 155 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\scrollbar-handle.png
2012-01-30 06:19 . 2012-01-30 06:19 92 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\scrollbar-track.png
2012-01-30 06:19 . 2012-01-30 06:19 329 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\slider.png
2012-01-30 06:19 . 2012-01-30 06:19 386 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\slideron.png
2012-01-30 06:19 . 2012-01-30 06:19 1056 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\radio\images\track.png
2012-01-30 06:19 . 2012-01-30 06:19 248 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_02.png
2012-01-30 06:19 . 2012-01-30 06:19 218 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_03.png
2012-01-30 06:19 . 2012-01-30 06:19 293 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_04.png
2012-01-30 06:19 . 2012-01-30 06:19 316 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_06.png
2012-01-30 06:19 . 2012-01-30 06:19 254 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_07.png
2012-01-30 06:19 . 2012-01-30 06:19 328 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_08.png
2012-01-30 06:19 . 2012-01-30 06:19 288 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_09.png
2012-01-30 06:19 . 2012-01-30 06:19 250 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_10.png
2012-01-30 06:19 . 2012-01-30 06:19 284 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_11.png
2012-01-30 06:19 . 2012-01-30 06:19 173 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_12.png
2012-01-30 06:19 . 2012-01-30 06:19 277 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_13.png
2012-01-30 06:19 . 2012-01-30 06:19 270 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_14.png
2012-01-30 06:19 . 2012-01-30 06:19 344 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_15.png
2012-01-30 06:19 . 2012-01-30 06:19 278 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_16.png
2012-01-30 06:19 . 2012-01-30 06:19 312 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_18.png
2012-01-30 06:19 . 2012-01-30 06:19 299 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_19.png
2012-01-30 06:19 . 2012-01-30 06:19 287 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_20.png
2012-01-30 06:19 . 2012-01-30 06:19 300 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_21.png
2012-01-30 06:19 . 2012-01-30 06:19 263 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\btn-close-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 444 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\btn-close-greyover.png
2012-01-30 06:19 . 2012-01-30 06:19 579 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\close-hot.png
2012-01-30 06:19 . 2012-01-30 06:19 585 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\close-normal.png
2012-01-30 06:19 . 2012-01-30 06:19 7823 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\loadingMid.gif
2012-01-30 06:19 . 2012-01-30 06:19 354 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\proxy.html
2012-01-30 06:19 . 2012-01-30 06:19 7617 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\template.html
2012-01-30 06:19 . 2012-01-30 06:19 7614 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\template.html.bak
2012-01-30 06:19 . 2012-01-30 06:19 810 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\template.xml
2012-01-30 06:19 . 2012-01-30 06:19 6198 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\templateFF.html
2012-01-30 06:19 . 2012-01-30 06:19 825 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\uwa\throbber.gif
2012-01-30 06:19 . 2012-01-30 06:19 3257 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\cond999.png
2012-01-30 06:19 . 2012-01-30 06:19 6844 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\icons.xml
2012-01-30 06:19 . 2012-01-30 06:19 4454 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\na-s.png
2012-01-30 06:19 . 2012-01-30 06:19 5599 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\na-t.png
2012-01-30 06:19 . 2012-01-30 06:19 19254 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\na.png
2012-01-30 06:19 . 2012-01-30 06:19 3435 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\weather.png
2012-01-30 06:19 . 2012-01-30 06:19 7586 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\popupWeather.css
2012-01-30 06:19 . 2012-01-30 06:19 16562 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\popupWeather.html
2012-01-30 06:19 . 2012-01-30 06:19 653 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\add.png
2012-01-30 06:19 . 2012-01-30 06:19 205 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\arrowr-bluew5.png
2012-01-30 06:19 . 2012-01-30 06:19 7368 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl.png
2012-01-30 06:19 . 2012-01-30 06:19 1676 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350.png
2012-01-30 06:19 . 2012-01-30 06:19 4108 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue-whitebg.png
2012-01-30 06:19 . 2012-01-30 06:19 3129 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue.png
2012-01-30 06:19 . 2012-01-30 06:19 174 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\box-check.png
2012-01-30 06:19 . 2012-01-30 06:19 160 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\box-uncheck.png
2012-01-30 06:19 . 2012-01-30 06:19 279 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-close-grey.png
2012-01-30 06:19 . 2012-01-30 06:19 460 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-close-greyover.png
2012-01-30 06:19 . 2012-01-30 06:19 196 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-delete.png
2012-01-30 06:19 . 2012-01-30 06:19 3452 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm-over.png
2012-01-30 06:19 . 2012-01-30 06:19 916 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm.png
2012-01-30 06:19 . 2012-01-30 06:19 607 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next-off.png
2012-01-30 06:19 . 2012-01-30 06:19 643 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next.png
2012-01-30 06:19 . 2012-01-30 06:19 649 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous-off.png
2012-01-30 06:19 . 2012-01-30 06:19 683 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous.png
2012-01-30 06:19 . 2012-01-30 06:19 248 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\ico-check.png
2012-01-30 06:19 . 2012-01-30 06:19 2175 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid-s.png
2012-01-30 06:19 . 2012-01-30 06:19 22233 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid.png
2012-01-30 06:19 . 2012-01-30 06:19 2719 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\options-weather.png
2012-01-30 06:19 . 2012-01-30 06:19 163 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\over-blue.png
2012-01-30 06:19 . 2012-01-30 06:19 169 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\over-orange.png
2012-01-30 06:19 . 2012-01-30 06:19 3954 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug.png
2012-01-30 06:19 . 2012-01-30 06:19 3481 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug2.png
2012-01-30 06:19 . 2012-01-30 06:19 336 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\radio-checked.png
2012-01-30 06:19 . 2012-01-30 06:19 313 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\radio-unchecked.png
2012-01-30 06:19 . 2012-01-30 06:19 532 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\searchbox-pnlbtm.png
2012-01-30 06:19 . 2012-01-30 06:19 431 ----a-w- c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\weather-contour.png
2012-01-30 06:19 . 2012-01-30 06:19 1627 ----a-w- c:\programme\asktoolbar4\chrome\skin\options\options-main.png
2012-01-30 06:19 . 2012-01-30 06:19 1483 ----a-w- c:\programme\asktoolbar4\chrome\skin\options\options-search.png
2012-01-30 06:19 . 2012-01-30 06:19 1778 ----a-w- c:\programme\asktoolbar4\chrome\skin\options\options-weather.gif
2012-01-30 06:19 . 2012-01-30 06:19 2719 ----a-w- c:\programme\asktoolbar4\chrome\skin\options\options-weather.png
2012-01-30 06:19 . 2012-01-30 06:19 1288 ----a-w- c:\programme\asktoolbar4\chrome\skin\options\options-widgets.png
2012-01-30 06:19 . 2012-01-30 06:19 286 ----a-w- c:\programme\asktoolbar4\chrome\skin\searchbar\searchbar-background-left.png
2012-01-30 06:19 . 2012-01-30 06:19 152 ----a-w- c:\programme\asktoolbar4\chrome\skin\searchbar\searchbar-background-middle.png
2012-01-30 06:19 . 2012-01-30 06:19 288 ----a-w- c:\programme\asktoolbar4\chrome\skin\searchbar\searchbar-background-right.png
2012-01-30 06:19 . 2012-01-30 06:19 1525 ----a-w- c:\programme\asktoolbar4\components\windowmediator.js
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{3cb073f3-be3c-4e8f-942d-8a747b54486f}"= "c:\programme\asktoolbar4\asktoolbar4X.dll" [2012-01-30 81920]
.
[HKEY_CLASSES_ROOT\clsid\{3cb073f3-be3c-4e8f-942d-8a747b54486f}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3cb073f3-be3c-4e8f-942d-8a747b54486f}]
2012-01-30 06:19 81920 ----a-w- c:\programme\asktoolbar4\asktoolbar4X.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3cb073f3-be3c-4e8f-942d-8a747b54486f}"= "c:\programme\asktoolbar4\asktoolbar4X.dll" [2012-01-30 81920]
.
[HKEY_CLASSES_ROOT\clsid\{3cb073f3-be3c-4e8f-942d-8a747b54486f}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\programme\Skype\Phone\Skype.exe" [2010-05-13 26192168]
"H/PC Connection Agent"="c:\programme\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PWRMGRTR"="c:\progra~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2006-05-25 151552]
"TPHOTKEY"="c:\progra~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe" [2006-07-25 94208]
"ATICCC"="c:\programme\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-05-10 90112]
"PDService.exe"="c:\programme\Lenovo\SafeGuard PrivateDisk\pdservice.exe" [2006-03-13 41472]
"CanonMyPrinter"="c:\programme\Canon\MyPrinter\BJMyPrt.exe" [2007-09-13 1603152]
"UIExec"="c:\programme\Mobile Partner Manager\UIExec.exe" [2010-01-13 133120]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2011-03-04 281768]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Z1"="c:\dokumente und einstellungen\Onkel Markus\Desktop\mbar-1.01.0.1011\mbar\mbar.exe" [2012-12-04 1342312]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AwayNotify]
2006-08-16 17:07 49152 ------w- c:\programme\Lenovo\AwayTask\AwayNotify.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2006-04-25 17:20 40448 ------w- c:\windows\system32\psqlpwd.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpfnf2]
2005-07-05 14:45 28672 ------w- c:\windows\system32\notifyf2.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tphotkey]
2005-11-30 11:16 24576 ------w- c:\windows\system32\tphklock.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli psqlpwd
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
2007-02-07 23:12 488984 -c----w- c:\programme\Gemeinsame Dateien\LogiShrd\LComMgr\Communications_Helper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2007-02-07 23:13 774168 -c----w- c:\programme\Logitech\QuickCam10\QuickCam10.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LPManager]
2006-07-04 16:11 110592 -c----w- c:\progra~1\THINKV~2\PrdCtr\LPMGR.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2004-08-04 12:00 59392 -c----w- c:\windows\system32\IME\PINTLGNT\IMSCINST.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2004-08-04 12:00 455168 -c----w- c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2006-02-14 05:16 512000 -c----w- c:\programme\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPLpr]
2006-02-14 05:17 110592 ------w- c:\programme\Synaptics\SynTP\SynTPLpr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TP4EX]
2005-10-16 23:11 65536 ------w- c:\windows\system32\TP4EX.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPKMAPHELPER]
2006-06-02 20:00 856064 ------w- c:\programme\ThinkPad\Utilities\TpKmapAp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LVSrvLauncher"=2 (0x2)
"LVPrcSrv"=2 (0x2)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programme\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Programme\\Skype\\Phone\\Skype.exe"=
"c:\\Programme\\Microsoft ActiveSync\\rapimgr.exe"=
.
R1 Ndisprot;GreenPacket NDIS Protocol Driver;c:\windows\system32\drivers\Ndisprot.sys [19.10.2010 19:11 21504]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\programme\Avira\AntiVir Desktop\sched.exe [21.03.2011 18:35 136360]
R2 OsiGpib;OsiGpib;c:\windows\system32\drivers\OsiGpib.sys [26.01.2008 10:12 11776]
R2 PrivateDisk;PrivateDisk;c:\programme\Lenovo\SafeGuard PrivateDisk\privatediskm.sys [13.03.2006 15:05 58368]
R2 SmartSurferManager;SmartSurfer Manager;c:\programme\WEB.DE\WEB.DE SmartSurfer\SmurfService.exe [01.08.2007 12:07 132560]
R2 smi2;smi2;c:\programme\SMI2\smi2.sys [14.07.2006 14:55 3968]
R2 smihlp;SMI helper driver;c:\programme\ThinkVantage Fingerprint Software\smihlp.sys [25.04.2006 18:00 3456]
R3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [14.12.2012 19:11 35144]
R3 Nbdrv;NetBalancer Service;c:\windows\system32\drivers\nbdrv.sys [10.12.2012 20:47 31016]
S2 gpibclsd;GPIB Device Class Driver;c:\windows\system32\drivers\gpibclsd.sys [26.01.2008 10:13 34664]
S2 NetBalancerService;NetBalancerService;c:\programme\NetBalancer\SeriousBit.NetBalancer.Service.exe [10.12.2012 20:46 8704]
S2 UI Assistant Service;UI Assistant Service;c:\programme\Mobile Partner Manager\AssistantServices.exe [19.10.2010 19:11 247296]
S3 gpibclsb;GPIB Board Class Driver;c:\windows\system32\drivers\gpibclsb.sys [26.01.2008 10:13 57096]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [19.10.2010 19:11 9216]
S3 siusbmod;siusbmod;c:\windows\system32\drivers\siusbmod.sys [28.07.2005 15:20 27008]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [01.10.2006 14:37 26624]
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - BITS
*NewlyCreated* - MBAMCHAMELEON
.
Inhalt des "geplante Tasks" Ordners
.
2012-12-14 c:\windows\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
- c:\programme\Windows Live Toolbar\MSNTBUP.EXE [2007-02-12 13:54]
.
2012-12-14 c:\windows\Tasks\PMTask.job
- c:\progra~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE [2007-06-19 16:13]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
uInternet Settings,ProxyServer = 127.0.0.1:61798
uSearchURL,(Default) = hxxp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
IE: &Winamp Search - c:\dokumente und einstellungen\All Users\Anwendungsdaten\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: &Windows Live Search - c:\programme\Windows Live Toolbar\msntb.dll/search.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Senden an &Bluetooth-Gerät... - c:\programme\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
FF - ProfilePath - c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Mozilla\Firefox\Profiles\wg48t7rj.default\
FF - prefs.js: browser.startup.homepage - www.google.de
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 5
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2012-12-01 18:45; {3cb073f3-be3c-4e8f-942d-8a747b54486f}; c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Mozilla\Firefox\Profiles\wg48t7rj.default\extensions\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
FF - ExtSQL: !HIDDEN! 2009-09-03 15:29; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-12-14 19:40
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\DeterministicNetworks\DNE\Parameters]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,79,00,73,00,\
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'winlogon.exe'(736)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\psqlpwd.dll
c:\programme\ThinkVantage Fingerprint Software\infra.dll
c:\programme\ThinkVantage Fingerprint Software\homefus2.dll
c:\windows\system32\biologon.dll
c:\programme\ThinkVantage Fingerprint Software\homepass.dll
c:\programme\ThinkVantage Fingerprint Software\bio.dll
c:\programme\ThinkVantage Fingerprint Software\remote.dll
c:\programme\ThinkVantage Fingerprint Software\ps2css.dll
c:\windows\system32\tphklock.dll
c:\programme\ThinkVantage Fingerprint Software\crypto.dll
c:\programme\Lenovo\AwayTask\AwayNotify.dll
.
- - - - - - - > 'lsass.exe'(792)
c:\windows\system32\psqlpwd.dll
c:\programme\ThinkVantage Fingerprint Software\infra.dll
c:\programme\ThinkVantage Fingerprint Software\homefus2.dll
.
Zeit der Fertigstellung: 2012-12-14 19:42:02
ComboFix-quarantined-files.txt 2012-12-14 18:42
ComboFix2.txt 2012-12-14 17:19
.
Vor Suchlauf: 3.399.196.672 Bytes frei
Nach Suchlauf: 3.377.856.512 Bytes frei
.
- - End Of File - - 3E02D5DD1B0439605E24B5E0BC7DF13C
|
|
14.12.2012, 20:10
| #12 | ||
| /// TB-Ausbilder | Besuch von BDS/ZeroAccess.Gen ... So, dann hab ich hier einmal die Keule für den finalen Schlag Bitte darauf achten, dass der Upload klappt. Combofix-Skript
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
14.12.2012, 20:16
| #13 |
| | Besuch von BDS/ZeroAccess.Gen ... sorry muss nochmal schlechte kunde tun...hatte nochmal neugestartet, seit dem ist das ding wieder da, und auch die anderen "TP"-Prozesse...soll ich dennoch das gerade gepostete procedere durchführen?? |
|
14.12.2012, 20:29
| #14 |
| /// TB-Ausbilder | Besuch von BDS/ZeroAccess.Gen ... Ja bitte durchführen.
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
14.12.2012, 21:37
| #15 |
| | Besuch von BDS/ZeroAccess.Gen ... Upload hat geklappt. Kann es sein dass Combofix einen Einfluss auf die Standardmäßige Verwendung des Browsers hat? Ich habe eigentlich Firefox standardmäßig gesetzt, aber sobald das Programm gelaufen ist, ist der IE gesetzt...normal??????? Code:
ATTFilter ComboFix 12-12-14.01 - Onkel Markus 14.12.2012 21:16:41.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.49.1031.18.1022.365 [GMT 1:00]
ausgeführt von:: c:\dokumente und einstellungen\Onkel Markus\Desktop\ComboFix.exe
Benutzte Befehlsschalter :: c:\dokumente und einstellungen\Onkel Markus\Desktop\CFScript.txt
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
file zipped: c:\programme\asktoolbar4\asktoolbar4X.dll
file zipped: c:\programme\asktoolbar4\dtUser.exe
file zipped: c:\programme\asktoolbar4\searchresultstb.dll
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\apnuserid.dat
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\cfg.dat
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\dtx.ini
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\games\8f483d8d90322a3aa71921bf71c39a08
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\games\923851c9299343afdcb8d023bd897e44
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\games\c69274a8ea6164b3e969214c216f1c83
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\games\GameCategories.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\games\GameTypes.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\geodata.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\guid.dat
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\log.txt
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\preferences.dat
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\shopping\categories.js
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\stats.dat
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\uninstallIE.dat
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\weather\29dcc30c46c4a16ee5aa734a33f534e4
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\weather\ea6a84e2beaf4d6ac5f77713d6f0c8c0
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\weather\forecasts_cache.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\weather\observations_cache.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\weatherbutton_prefs.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\widgets_cache\520a4e78922e09d9be574ae557ca1d2e
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\widgets_cache\71817d91616add2d00182879c3d6fe80
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\widgets_cache\category_cache.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\widgets_cache\e4f9257277836f853480ffe8fecad7ef
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\asktoolbar4\widgets_cache\widget_cache.xml
c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\searchresultstb
c:\programme\asktoolbar4
c:\programme\asktoolbar4\as_guid.dat
c:\programme\asktoolbar4\ask.xml
c:\programme\asktoolbar4\asktoolbar4X.dll
c:\programme\asktoolbar4\chrome\cleanCVS.bat
c:\programme\asktoolbar4\chrome\content\custom.js
c:\programme\asktoolbar4\chrome\content\lib\about.xml
c:\programme\asktoolbar4\chrome\content\lib\custom.js
c:\programme\asktoolbar4\chrome\content\lib\dtxpanel.xul
c:\programme\asktoolbar4\chrome\content\lib\dtxpaneltransparent.xul
c:\programme\asktoolbar4\chrome\content\lib\dtxpanelwin.xul
c:\programme\asktoolbar4\chrome\content\lib\dtxprefwin.xul
c:\programme\asktoolbar4\chrome\content\lib\dtxtransparentwin.xul
c:\programme\asktoolbar4\chrome\content\lib\dtxwin.xul
c:\programme\asktoolbar4\chrome\content\lib\emailnotifierproviders.xml
c:\programme\asktoolbar4\chrome\content\lib\external.js
c:\programme\asktoolbar4\chrome\content\lib\neterror.xhtml
c:\programme\asktoolbar4\chrome\content\lib\rsspreview.html
c:\programme\asktoolbar4\chrome\content\lib\rsswin.xml
c:\programme\asktoolbar4\chrome\content\lib\rsswin.xsl
c:\programme\asktoolbar4\chrome\content\lib\wmpstreamer.html
c:\programme\asktoolbar4\chrome\content\modules\datastore.jsm
c:\programme\asktoolbar4\chrome\content\modules\nsDragAndDrop.js
c:\programme\asktoolbar4\chrome\content\neterror.xhtml
c:\programme\asktoolbar4\chrome\content\newtab\images\btn_search.gif
c:\programme\asktoolbar4\chrome\content\newtab\images\bullet.gif
c:\programme\asktoolbar4\chrome\content\newtab\images\field_bg.gif
c:\programme\asktoolbar4\chrome\content\newtab\images\powered_by_yahoo.gif
c:\programme\asktoolbar4\chrome\content\newtab\newtab.html
c:\programme\asktoolbar4\chrome\content\newtab\newtab_mystart.html
c:\programme\asktoolbar4\chrome\content\newtab\newtab_yahoo.html
c:\programme\asktoolbar4\chrome\content\preferences.xml
c:\programme\asktoolbar4\chrome\content\template.xml
c:\programme\asktoolbar4\chrome\content\toolbar.htm
c:\programme\asktoolbar4\chrome\content\toolbar.xul
c:\programme\asktoolbar4\chrome\content\vmncode.js
c:\programme\asktoolbar4\chrome\content\vmnrsswin.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-next-off.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-next.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-previous-off.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\arrow-previous.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\bg.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\border-radius.htc
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\btn-gotostore.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\btn-wide-close-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\btn-wide-close.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\css\IE7Styles.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\arrow-grey.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\arrows_grey-left.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\arrows_grey-right.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\bg_top.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\btn-back.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\btn-search.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\coupon-activated.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\delete.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\loader.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\noimage.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\power-by.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\save.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollb-disable.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollb-down.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollb.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollt-disable.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollt-down.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\scrollt.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\sprite.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-arrow-hover.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-arrow.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-off-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-off-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-on-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-on-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-over-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-over-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-white-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-white-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\tab-white-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\images\vid-bg.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\index.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery-1.4.2.min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery.event.wheel.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery.pagination.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\jquery.scrollTo-min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\JSON.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\listnav.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\js\main.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\not_available.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\page_white_copy.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\panel.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\partner.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\pmfeed.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\shopping-hot.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\bg.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-help-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-help.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-managealerts-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-managealerts.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-wide-close-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\btn-wide-close.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\default.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\logo-bizrate.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\tb_icon.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\transparent.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-right-resize.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\images\win-btm-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\main.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\skin\scripts\defscript.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\tb_icon.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\throbber.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget.jsw
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.Bizrate\widget_version.txt
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrow-grey.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrows_grey-left.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\arrows_grey-right.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\back.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\btn-search-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\btn-search.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\delete.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb-disable.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb-down.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollb.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt-disable.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt-down.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\scrollt.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-arrow-hover.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-arrow.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-off-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-off-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-on-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-on-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-over-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-over-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-red-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\tab-white-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\throbber.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\vid-bg.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\images\youtube.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\index.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\function.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\jquery-1.4.2.min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\js\JSON.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\bg-facebook.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\blank.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\btn-wide-close-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\btn-wide-close.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\default.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\transparent.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-right-resize.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images\win-btm-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\main.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts\defscript.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts\jquery-1.4.2.min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\tb_icon.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.MyStartFacebook\widget_version.txt
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-buffering.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-connecting.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-ico.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-playing.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-stopped.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta.ico
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\tb_icon.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\widget.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\widget.jsw
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.RadioBeta\widget.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\country.json
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\css\videoplayer.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\favorites.json
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\arrow-grey.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\arrows_grey-left.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\arrows_grey-right.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\back.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\btn-search-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\btn-search.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\delete.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollb-disable.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollb-down.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollb.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollt-disable.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollt-down.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\scrollt.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\star-grey.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\star.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-arrow-hover.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-arrow.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-off-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-off-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-on-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-on-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-over-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-over-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-red-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-red-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-red-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-white-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-white-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\tab-white-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\throbber.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\images\vid-bg.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\index.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\function.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery-1.4.2.min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.autocomplete.min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.event.wheel.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.jlembed.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.scrollTo-min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\jquery.url.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\JSON.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\main.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\js\videoplayer.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\net.vmn.www.WebTV.zip
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\bg.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\btn-search.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\btn-wide-close-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\btn-wide-close.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\default.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\Thumbs.db
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\transparent.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-right-resize.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\images\win-btm-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\main.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\skin\scripts\defscript.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\tb_icon.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\videoplayer.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\widget.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\widget.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.WebTV\widget_version.txt
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\css\autocomplete.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrow-grey.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrows_grey-left.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\arrows_grey-right.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\bg.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\btn-search-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\btn-search.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\powered-by-youtube.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-off-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-off-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-on-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-on-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-red-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\tab-white-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\throbber.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\vid-bg.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\images\youtube.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\index.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\autocomplete.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\jquery-1.4.3.min.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\paginator.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\js\youtube.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\css\dialog.css
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\bg.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-search.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-wide-close-over.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\btn-wide-close.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\default.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-off-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-off-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-on-l.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\tab-on-r.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\transparent.gif
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-left.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-mdl.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-right-resize.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\images\win-btm-right.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\main.html
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\skin\scripts\defscript.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\tb_icon.png
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.js
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.jsw
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget.xml
c:\programme\asktoolbar4\chrome\content\widgets\net.vmn.www.YouTube_v2\widget_version.txt
c:\programme\asktoolbar4\chrome\data\dynamicElements\vmntoolbar.xsl
c:\programme\asktoolbar4\chrome\data\rss\rss.xml
c:\programme\asktoolbar4\chrome\data\search\engines.xml
c:\programme\asktoolbar4\chrome\data\search\engines_mystart.xml
c:\programme\asktoolbar4\chrome\data\search\engines_yahoo.xml
c:\programme\asktoolbar4\chrome\data\search\search.xsl
c:\programme\asktoolbar4\chrome\data\weather\icons.xml
c:\programme\asktoolbar4\chrome\locale\lib\de.js
c:\programme\asktoolbar4\chrome\locale\lib\en.js
c:\programme\asktoolbar4\chrome\locale\lib\es.js
c:\programme\asktoolbar4\chrome\locale\lib\fr.js
c:\programme\asktoolbar4\chrome\locale\lib\it.js
c:\programme\asktoolbar4\chrome\locale\locale.js
c:\programme\asktoolbar4\chrome\locale\toolbar\de.js
c:\programme\asktoolbar4\chrome\locale\toolbar\en.js
c:\programme\asktoolbar4\chrome\locale\toolbar\es.js
c:\programme\asktoolbar4\chrome\locale\toolbar\fr.js
c:\programme\asktoolbar4\chrome\locale\toolbar\it.js
c:\programme\asktoolbar4\chrome\skin\about.gif
c:\programme\asktoolbar4\chrome\skin\about_logo.png
c:\programme\asktoolbar4\chrome\skin\ask_logo_24x.png
c:\programme\asktoolbar4\chrome\skin\babylon_logo.png
c:\programme\asktoolbar4\chrome\skin\bluelite.gif
c:\programme\asktoolbar4\chrome\skin\bluesky.gif
c:\programme\asktoolbar4\chrome\skin\btn-search-de.png
c:\programme\asktoolbar4\chrome\skin\btn-search-en.png
c:\programme\asktoolbar4\chrome\skin\btn-search-es.png
c:\programme\asktoolbar4\chrome\skin\btn-search-fr.png
c:\programme\asktoolbar4\chrome\skin\btn-search-it.png
c:\programme\asktoolbar4\chrome\skin\btn-search-over-de.png
c:\programme\asktoolbar4\chrome\skin\btn-search-over-en.png
c:\programme\asktoolbar4\chrome\skin\btn-search-over-es.png
c:\programme\asktoolbar4\chrome\skin\btn-search-over-fr.png
c:\programme\asktoolbar4\chrome\skin\btn-search-over-it.png
c:\programme\asktoolbar4\chrome\skin\btn-search-over.png
c:\programme\asktoolbar4\chrome\skin\btn-search.png
c:\programme\asktoolbar4\chrome\skin\btn-settings-over.png
c:\programme\asktoolbar4\chrome\skin\btn-settings.png
c:\programme\asktoolbar4\chrome\skin\btn-widgets-over.png
c:\programme\asktoolbar4\chrome\skin\btn-widgets.png
c:\programme\asktoolbar4\chrome\skin\btn_settings.png
c:\programme\asktoolbar4\chrome\skin\ca.png
c:\programme\asktoolbar4\chrome\skin\custom.css
c:\programme\asktoolbar4\chrome\skin\dictionary.png
c:\programme\asktoolbar4\chrome\skin\divider.png
c:\programme\asktoolbar4\chrome\skin\downloadcom.png
c:\programme\asktoolbar4\chrome\skin\dtxlogo.png
c:\programme\asktoolbar4\chrome\skin\email.png
c:\programme\asktoolbar4\chrome\skin\email_on.png
c:\programme\asktoolbar4\chrome\skin\facebook.png
c:\programme\asktoolbar4\chrome\skin\games.png
c:\programme\asktoolbar4\chrome\skin\graphna.png
c:\programme\asktoolbar4\chrome\skin\graphred0.png
c:\programme\asktoolbar4\chrome\skin\graphred0_5.png
c:\programme\asktoolbar4\chrome\skin\graphred1.png
c:\programme\asktoolbar4\chrome\skin\graphred1_5.png
c:\programme\asktoolbar4\chrome\skin\graphred2.png
c:\programme\asktoolbar4\chrome\skin\graphred2_5.png
c:\programme\asktoolbar4\chrome\skin\graphred3.png
c:\programme\asktoolbar4\chrome\skin\graphred3_5.png
c:\programme\asktoolbar4\chrome\skin\graphred4.png
c:\programme\asktoolbar4\chrome\skin\graphred4_5.png
c:\programme\asktoolbar4\chrome\skin\graphred5.png
c:\programme\asktoolbar4\chrome\skin\graphredna.png
c:\programme\asktoolbar4\chrome\skin\grey.gif
c:\programme\asktoolbar4\chrome\skin\ico-shield.png
c:\programme\asktoolbar4\chrome\skin\images.png
c:\programme\asktoolbar4\chrome\skin\lib\add.png
c:\programme\asktoolbar4\chrome\skin\lib\alexabutton.css
c:\programme\asktoolbar4\chrome\skin\lib\aol.png
c:\programme\asktoolbar4\chrome\skin\lib\arrow-dn.gif
c:\programme\asktoolbar4\chrome\skin\lib\arrow-right-disabled.gif
c:\programme\asktoolbar4\chrome\skin\lib\arrow-right.gif
c:\programme\asktoolbar4\chrome\skin\lib\arrow-up.gif
c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-divider.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-end.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-mdl.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-mdl_ff.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btn-start.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-divider.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-end.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-mdl.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-mdl_ff.png
c:\programme\asktoolbar4\chrome\skin\lib\bg-btnover-start.png
c:\programme\asktoolbar4\chrome\skin\lib\blank.gif
c:\programme\asktoolbar4\chrome\skin\lib\btn-widgets-over.png
c:\programme\asktoolbar4\chrome\skin\lib\btn-widgets.png
c:\programme\asktoolbar4\chrome\skin\lib\btn_slider.png
c:\programme\asktoolbar4\chrome\skin\lib\btnback-down-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\btnback-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\btnleft-down-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\btnleft-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\btnright-down-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\btnright-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\button-splitter-down-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\button-splitter-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\button-splitter.png
c:\programme\asktoolbar4\chrome\skin\lib\checkmark.png
c:\programme\asktoolbar4\chrome\skin\lib\chevron.png
c:\programme\asktoolbar4\chrome\skin\lib\collapse.png
c:\programme\asktoolbar4\chrome\skin\lib\comcast.png
c:\programme\asktoolbar4\chrome\skin\lib\debugbar\debug.html
c:\programme\asktoolbar4\chrome\skin\lib\dtx-test.css
c:\programme\asktoolbar4\chrome\skin\lib\dtx.css
c:\programme\asktoolbar4\chrome\skin\lib\edit-back-hot.png
c:\programme\asktoolbar4\chrome\skin\lib\edit-back.png
c:\programme\asktoolbar4\chrome\skin\lib\embarq.png
c:\programme\asktoolbar4\chrome\skin\lib\expand.png
c:\programme\asktoolbar4\chrome\skin\lib\fast.png
c:\programme\asktoolbar4\chrome\skin\lib\found.png
c:\programme\asktoolbar4\chrome\skin\lib\gmail.png
c:\programme\asktoolbar4\chrome\skin\lib\gripper.png
c:\programme\asktoolbar4\chrome\skin\lib\highlight.png
c:\programme\asktoolbar4\chrome\skin\lib\highlight_blue.png
c:\programme\asktoolbar4\chrome\skin\lib\highlight_cyan.png
c:\programme\asktoolbar4\chrome\skin\lib\highlight_lime.png
c:\programme\asktoolbar4\chrome\skin\lib\highlight_magenta.png
c:\programme\asktoolbar4\chrome\skin\lib\highlight_yellow.png
c:\programme\asktoolbar4\chrome\skin\lib\hotmail.png
c:\programme\asktoolbar4\chrome\skin\lib\ico-check.png
c:\programme\asktoolbar4\chrome\skin\lib\imap.png
c:\programme\asktoolbar4\chrome\skin\lib\lastsearch-thumb-back.gif
c:\programme\asktoolbar4\chrome\skin\lib\launchers.css
c:\programme\asktoolbar4\chrome\skin\lib\loadingMid.gif
c:\programme\asktoolbar4\chrome\skin\lib\lock.png
c:\programme\asktoolbar4\chrome\skin\lib\logo-separator.png
c:\programme\asktoolbar4\chrome\skin\lib\mailcom.png
c:\programme\asktoolbar4\chrome\skin\lib\menu_bg-basic.png
c:\programme\asktoolbar4\chrome\skin\lib\menu_separator_bar.png
c:\programme\asktoolbar4\chrome\skin\lib\menu_separator_white.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitem-splitter.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitemback-down-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitemback-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitemleft-down-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitemleft-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitemleft.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitemright-down-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\menuitemright-vista.png
c:\programme\asktoolbar4\chrome\skin\lib\minus.gif
c:\programme\asktoolbar4\chrome\skin\lib\modify.png
c:\programme\asktoolbar4\chrome\skin\lib\move.gif
c:\programme\asktoolbar4\chrome\skin\lib\movetarget.png
c:\programme\asktoolbar4\chrome\skin\lib\newsitem.gif
c:\programme\asktoolbar4\chrome\skin\lib\panels\css\panels.css
c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupAbout.css
c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupGames.css
c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupRSS.css
c:\programme\asktoolbar4\chrome\skin\lib\panels\css\popupWidgets.css
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\css\dialog.css
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\bg.gif
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\btn-search.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\btn-wide-close-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\btn-wide-close.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\default.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-off-l.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-off-r.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-on-l.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\tab-on-r.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\transparent.gif
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\ttlbar-left.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\ttlbar-mdl.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\ttlbar-right.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-left.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-mdl.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-right-resize.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-btm-right.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-left.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\images\win-right.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\main.html
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\main.html.bak
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\scripts\defscript.js
c:\programme\asktoolbar4\chrome\skin\lib\panels\default\scripts\defscript.js.bak
c:\programme\asktoolbar4\chrome\skin\lib\panels\footer.htm
c:\programme\asktoolbar4\chrome\skin\lib\panels\gamecategory.xsl
c:\programme\asktoolbar4\chrome\skin\lib\panels\gameData.js
c:\programme\asktoolbar4\chrome\skin\lib\panels\gameList.xsl
c:\programme\asktoolbar4\chrome\skin\lib\panels\games.xsl
c:\programme\asktoolbar4\chrome\skin\lib\panels\gametype.xsl
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-dn.gif
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-sml-drop.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-sml.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrow-up.gif
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\arrowr-bluew5.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bg-aboutbox.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bg-btnover.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bg-pnl520x390.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-addtoolbar-left-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-addtoolbar-left.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-addtoolbar-right.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-back.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-close-grey.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-close-greyover.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-drag.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-mdl-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-mdl.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-moredetails.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-next-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-next.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-play-left-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-play-left.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-previous-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-previous.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-right-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-search-pnlbtm-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-search-pnlbtm.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-try-left-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\btn-try-left.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\bullet-orange.gif
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\gamethumb-on.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\gamethumb2-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-calendar.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-dollar.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-download.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-joystick24.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-news24.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-play.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\ico-tags.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-Add.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-download.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-Info.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-play.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\icon-shop.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\menul-bgon.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\menul-bgover.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\panel-botm-noscroll.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scroll-bg-206.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scroll-bg.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scroll-topwin.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb-disable.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb-down.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollb.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt-disable.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt-down.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\scrollt.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\searchbox-pnlbtm.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\star_x_grey.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\star_x_orange.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\TRUSTe_about.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-detailed-on.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-detailed-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-thumb-on.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\view-thumb-over.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\widgets-square-16px.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\widgets-square-24px.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\images\widgets.png
c:\programme\asktoolbar4\chrome\skin\lib\panels\initHTML.html
c:\programme\asktoolbar4\chrome\skin\lib\panels\popupGames.html
c:\programme\asktoolbar4\chrome\skin\lib\panels\popupHTML.html
c:\programme\asktoolbar4\chrome\skin\lib\panels\popupRSS.html
c:\programme\asktoolbar4\chrome\skin\lib\panels\popupWidgets.html
c:\programme\asktoolbar4\chrome\skin\lib\panels\popupWidgets.html.bak
c:\programme\asktoolbar4\chrome\skin\lib\panels\scroll.png
c:\programme\asktoolbar4\chrome\skin\lib\plus.gif
c:\programme\asktoolbar4\chrome\skin\lib\pop.png
c:\programme\asktoolbar4\chrome\skin\lib\radio.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\css\manager.css
c:\programme\asktoolbar4\chrome\skin\lib\radio\css\slider.css
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\bg-pnl.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\btn-close-grey.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\btn-close-greyover.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\collapsed_button.gif
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\expanded_button.gif
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-playstation-down.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-playstation-over.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-playstation.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\ico-radio.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\music-note.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-pause-on.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-pause.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-play-on.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-btn-play.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-bg.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-buffer.gif
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-busy.gif
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-off.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-on.gif
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-eq-warning.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options-design-on.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options-design.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options-on.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-options.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-0.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-1.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-2.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-3.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\radio-volume-mute.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\scrollbar-handle.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\scrollbar-track.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\slider.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\slideron.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\images\track.png
c:\programme\asktoolbar4\chrome\skin\lib\radio\managerpanel.html
c:\programme\asktoolbar4\chrome\skin\lib\radio\volumeslider.html
c:\programme\asktoolbar4\chrome\skin\lib\rank0.png
c:\programme\asktoolbar4\chrome\skin\lib\rank0_5.png
c:\programme\asktoolbar4\chrome\skin\lib\rank1.png
c:\programme\asktoolbar4\chrome\skin\lib\rank1_5.png
c:\programme\asktoolbar4\chrome\skin\lib\rank2.png
c:\programme\asktoolbar4\chrome\skin\lib\rank2_5.png
c:\programme\asktoolbar4\chrome\skin\lib\rank3.png
c:\programme\asktoolbar4\chrome\skin\lib\rank3_5.png
c:\programme\asktoolbar4\chrome\skin\lib\rank4.png
c:\programme\asktoolbar4\chrome\skin\lib\rank4_5.png
c:\programme\asktoolbar4\chrome\skin\lib\rank5.png
c:\programme\asktoolbar4\chrome\skin\lib\rankna.png
c:\programme\asktoolbar4\chrome\skin\lib\reload.png
c:\programme\asktoolbar4\chrome\skin\lib\remove.png
c:\programme\asktoolbar4\chrome\skin\lib\rename.gif
c:\programme\asktoolbar4\chrome\skin\lib\resize-box.gif
c:\programme\asktoolbar4\chrome\skin\lib\rss.png
c:\programme\asktoolbar4\chrome\skin\lib\rsschannelback.png
c:\programme\asktoolbar4\chrome\skin\lib\RSSLogo.png
c:\programme\asktoolbar4\chrome\skin\lib\rsstabdivider.gif
c:\programme\asktoolbar4\chrome\skin\lib\scroll-left.png
c:\programme\asktoolbar4\chrome\skin\lib\scroll-right.png
c:\programme\asktoolbar4\chrome\skin\lib\search-go.png
c:\programme\asktoolbar4\chrome\skin\lib\search.png
c:\programme\asktoolbar4\chrome\skin\lib\separator.png
c:\programme\asktoolbar4\chrome\skin\lib\text-ellipsis.xml
c:\programme\asktoolbar4\chrome\skin\lib\throbber.gif
c:\programme\asktoolbar4\chrome\skin\lib\toolbarsplitter.gif
c:\programme\asktoolbar4\chrome\skin\lib\transparent_1px.gif
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_02.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_03.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_04.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_06.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_07.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_08.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_09.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_10.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_11.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_12.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_13.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_14.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_15.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_16.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_18.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_19.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_20.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\border_21.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\btn-close-grey.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\btn-close-greyover.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\close-hot.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\close-normal.png
c:\programme\asktoolbar4\chrome\skin\lib\uwa\loadingMid.gif
c:\programme\asktoolbar4\chrome\skin\lib\uwa\paneltemplate.html
c:\programme\asktoolbar4\chrome\skin\lib\uwa\proxy.html
c:\programme\asktoolbar4\chrome\skin\lib\uwa\template.html
c:\programme\asktoolbar4\chrome\skin\lib\uwa\template.html.bak
c:\programme\asktoolbar4\chrome\skin\lib\uwa\template.xml
c:\programme\asktoolbar4\chrome\skin\lib\uwa\templateFF.html
c:\programme\asktoolbar4\chrome\skin\lib\uwa\throbber.gif
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton.css
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\cond999.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\icons.xml
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\na-s.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\na-t.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\na.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\icons\weather.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\add.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\arrowr-bluew5.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue-whitebg.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\box-check.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\box-uncheck.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-close-grey.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-close-greyover.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-delete.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm-over.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next-off.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous-off.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\ico-check.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid-s.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\options-weather.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\over-blue.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\over-orange.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug2.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\radio-checked.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\radio-unchecked.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\searchbox-pnlbtm.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\images\weather-contour.png
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\popupWeather.css
c:\programme\asktoolbar4\chrome\skin\lib\weatherbutton\panels\popupWeather.html
c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-highrisk-user.gif
c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-highrisk.gif
c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-lowrisk.gif
c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-norating.gif
c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-verified-user.gif
c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-verified.gif
c:\programme\asktoolbar4\chrome\skin\lib\websiteinspector-verifying.gif
c:\programme\asktoolbar4\chrome\skin\lib\yahoo.png
c:\programme\asktoolbar4\chrome\skin\lichen.gif
c:\programme\asktoolbar4\chrome\skin\logo-about.png
c:\programme\asktoolbar4\chrome\skin\logo-over.png
c:\programme\asktoolbar4\chrome\skin\logo-separator.png
c:\programme\asktoolbar4\chrome\skin\logo.png
c:\programme\asktoolbar4\chrome\skin\mail.png
c:\programme\asktoolbar4\chrome\skin\menuseparatorback.gif
c:\programme\asktoolbar4\chrome\skin\modify-save.png
c:\programme\asktoolbar4\chrome\skin\modify.png
c:\programme\asktoolbar4\chrome\skin\modifyhot.png
c:\programme\asktoolbar4\chrome\skin\music.png
c:\programme\asktoolbar4\chrome\skin\namespacetoolbar.css
c:\programme\asktoolbar4\chrome\skin\news.png
c:\programme\asktoolbar4\chrome\skin\options-main.png
c:\programme\asktoolbar4\chrome\skin\options-search.png
c:\programme\asktoolbar4\chrome\skin\options\options-main.png
c:\programme\asktoolbar4\chrome\skin\options\options-search.png
c:\programme\asktoolbar4\chrome\skin\options\options-weather.gif
c:\programme\asktoolbar4\chrome\skin\options\options-weather.png
c:\programme\asktoolbar4\chrome\skin\options\options-widgets.png
c:\programme\asktoolbar4\chrome\skin\orange.gif
c:\programme\asktoolbar4\chrome\skin\p_yahoo.png
c:\programme\asktoolbar4\chrome\skin\pixsy.png
c:\programme\asktoolbar4\chrome\skin\ppcbully.png
c:\programme\asktoolbar4\chrome\skin\protect-id.png
c:\programme\asktoolbar4\chrome\skin\relatedlinks.png
c:\programme\asktoolbar4\chrome\skin\rss-collapse.png
c:\programme\asktoolbar4\chrome\skin\rss-delete.png
c:\programme\asktoolbar4\chrome\skin\rss-expand.png
c:\programme\asktoolbar4\chrome\skin\rss-feed.png
c:\programme\asktoolbar4\chrome\skin\rss-folder-remove.png
c:\programme\asktoolbar4\chrome\skin\rss-folder-rename.png
c:\programme\asktoolbar4\chrome\skin\rss-folder.png
c:\programme\asktoolbar4\chrome\skin\rss-found.png
c:\programme\asktoolbar4\chrome\skin\rss-reload.png
c:\programme\asktoolbar4\chrome\skin\rss-subscribe.png
c:\programme\asktoolbar4\chrome\skin\rss.png
c:\programme\asktoolbar4\chrome\skin\rssback.gif
c:\programme\asktoolbar4\chrome\skin\rsstopback.gif
c:\programme\asktoolbar4\chrome\skin\search-over.png
c:\programme\asktoolbar4\chrome\skin\search.png
c:\programme\asktoolbar4\chrome\skin\searchbar\searchbar-background-left.png
c:\programme\asktoolbar4\chrome\skin\searchbar\searchbar-background-middle.png
c:\programme\asktoolbar4\chrome\skin\searchbar\searchbar-background-right.png
c:\programme\asktoolbar4\chrome\skin\settings.png
c:\programme\asktoolbar4\chrome\skin\shopping.png
c:\programme\asktoolbar4\chrome\skin\siteinfo.png
c:\programme\asktoolbar4\chrome\skin\skin-bluelite.png
c:\programme\asktoolbar4\chrome\skin\skin-bluesky.png
c:\programme\asktoolbar4\chrome\skin\skin-grey.png
c:\programme\asktoolbar4\chrome\skin\skin-lichen.png
c:\programme\asktoolbar4\chrome\skin\skin-orange.png
c:\programme\asktoolbar4\chrome\skin\skin-yellow.png
c:\programme\asktoolbar4\chrome\skin\skin.xml
c:\programme\asktoolbar4\chrome\skin\technorati.png
c:\programme\asktoolbar4\chrome\skin\throbber.gif
c:\programme\asktoolbar4\chrome\skin\toolbarsplitter.png
c:\programme\asktoolbar4\chrome\skin\translate.png
c:\programme\asktoolbar4\chrome\skin\TRUSTe_about.png
c:\programme\asktoolbar4\chrome\skin\video.png
c:\programme\asktoolbar4\chrome\skin\vmn.css
c:\programme\asktoolbar4\chrome\skin\vmn.png
c:\programme\asktoolbar4\chrome\skin\web.png
c:\programme\asktoolbar4\chrome\skin\websearch.png
c:\programme\asktoolbar4\chrome\skin\wikipedia.png
c:\programme\asktoolbar4\chrome\skin\yahoosearch.png
c:\programme\asktoolbar4\chrome\skin\yellow.gif
c:\programme\asktoolbar4\chrome\skin\youtube.png
c:\programme\asktoolbar4\chrome\skin\zoom.png
c:\programme\asktoolbar4\components\windowmediator.js
c:\programme\asktoolbar4\dtUser.exe
c:\programme\asktoolbar4\install.ico
c:\programme\asktoolbar4\manifest.xml
c:\programme\asktoolbar4\search.ico
c:\programme\asktoolbar4\searchresultstb.dll
c:\programme\asktoolbar4\uninstall.exe
c:\windows\system32\TPHDLOG0.LOG
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-11-14 bis 2012-12-14 ))))))))))))))))))))))))))))))
.
.
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Malwarebytes
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2012-12-12 20:23 . 2012-12-12 20:23 -------- d-----w- c:\programme\Malwarebytes' Anti-Malware
2012-12-12 20:23 . 2012-09-29 18:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-10 19:48 . 2012-12-10 19:48 -------- d-----w- c:\dokumente und einstellungen\All Users\Anwendungsdaten\SeriousBit
2012-12-10 19:47 . 2011-05-18 16:11 31016 ----a-w- c:\windows\system32\drivers\nbdrv.sys
2012-12-10 19:46 . 2012-12-10 19:47 -------- d-----w- c:\programme\NetBalancer
2012-12-07 19:07 . 2012-12-07 19:07 -------- d-----r- c:\dokumente und einstellungen\LocalService\Favoriten
2012-11-26 17:34 . 2012-11-01 12:17 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-11-26 17:34 . 2012-11-01 12:17 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2012-11-26 17:34 . 2012-11-01 12:17 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2012-11-26 17:34 . 2012-11-01 12:17 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2012-11-25 14:24 . 2012-11-25 14:24 -------- d-sh--w- c:\dokumente und einstellungen\Onkel Markus\PrivacIE
2012-11-25 14:22 . 2012-11-25 14:22 -------- d-sh--w- c:\dokumente und einstellungen\NetworkService\IETldCache
2012-11-25 14:21 . 2012-11-25 14:21 -------- d-sh--w- c:\dokumente und einstellungen\Onkel Markus\IETldCache
2012-11-25 14:18 . 2012-11-25 14:19 -------- dc-h--w- c:\windows\ie8
2012-11-25 14:07 . 2012-11-25 14:07 -------- d-----w- c:\programme\Microsoft Silverlight
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-13 11:55 . 2006-01-27 01:00 1866496 ------w- c:\windows\system32\win32k.sys
2012-11-06 00:41 . 2006-01-27 01:00 290560 ----a-w- c:\windows\system32\atmfd.dll
2012-11-02 02:02 . 2006-01-27 01:00 375296 ------w- c:\windows\system32\dpnet.dll
2012-11-01 12:17 . 2006-01-27 01:01 916992 ----a-w- c:\windows\system32\wininet.dll
2012-11-01 12:17 . 2006-01-27 01:01 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-11-01 12:17 . 2006-01-27 01:01 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-01 00:35 . 2006-01-27 01:01 385024 ----a-w- c:\windows\system32\html.iec
2012-10-02 18:04 . 2006-01-27 01:01 58368 ------w- c:\windows\system32\synceng.dll
2009-02-24 19:34 . 2012-10-27 18:24 1044480 ----a-w- c:\programme\mozilla firefox\plugins\libdivx.dll
2009-02-24 19:34 . 2012-10-27 18:24 200704 ----a-w- c:\programme\mozilla firefox\plugins\ssldivx.dll
2012-10-27 18:25 . 2012-10-27 18:24 261600 ----a-w- c:\programme\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\programme\Skype\Phone\Skype.exe" [2010-05-13 26192168]
"H/PC Connection Agent"="c:\programme\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PWRMGRTR"="c:\progra~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL" [2006-05-25 151552]
"TPHOTKEY"="c:\progra~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe" [2006-07-25 94208]
"ATICCC"="c:\programme\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-05-10 90112]
"PDService.exe"="c:\programme\Lenovo\SafeGuard PrivateDisk\pdservice.exe" [2006-03-13 41472]
"CanonMyPrinter"="c:\programme\Canon\MyPrinter\BJMyPrt.exe" [2007-09-13 1603152]
"UIExec"="c:\programme\Mobile Partner Manager\UIExec.exe" [2010-01-13 133120]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2011-03-04 281768]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AwayNotify]
2006-08-16 17:07 49152 ------w- c:\programme\Lenovo\AwayTask\AwayNotify.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2006-04-25 17:20 40448 ------w- c:\windows\system32\psqlpwd.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tpfnf2]
2005-07-05 14:45 28672 ------w- c:\windows\system32\notifyf2.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\tphotkey]
2005-11-30 11:16 24576 ------w- c:\windows\system32\tphklock.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli psqlpwd
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
2007-02-07 23:12 488984 -c----w- c:\programme\Gemeinsame Dateien\LogiShrd\LComMgr\Communications_Helper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2007-02-07 23:13 774168 -c----w- c:\programme\Logitech\QuickCam10\QuickCam10.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LPManager]
2006-07-04 16:11 110592 -c----w- c:\progra~1\THINKV~2\PrdCtr\LPMGR.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
2004-08-04 12:00 59392 -c----w- c:\windows\system32\IME\PINTLGNT\IMSCINST.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
2004-08-04 12:00 455168 -c----w- c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2006-02-14 05:16 512000 -c----w- c:\programme\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPLpr]
2006-02-14 05:17 110592 ------w- c:\programme\Synaptics\SynTP\SynTPLpr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TP4EX]
2005-10-16 23:11 65536 ------w- c:\windows\system32\TP4EX.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPKMAPHELPER]
2006-06-02 20:00 856064 ------w- c:\programme\ThinkPad\Utilities\TpKmapAp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LVSrvLauncher"=2 (0x2)
"LVPrcSrv"=2 (0x2)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programme\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Programme\\Microsoft ActiveSync\\rapimgr.exe"=
"c:\\Programme\\Skype\\Phone\\Skype.exe"=
.
R1 Ndisprot;GreenPacket NDIS Protocol Driver;c:\windows\system32\drivers\Ndisprot.sys [19.10.2010 19:11 21504]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\programme\Avira\AntiVir Desktop\sched.exe [21.03.2011 18:35 136360]
R2 OsiGpib;OsiGpib;c:\windows\system32\drivers\OsiGpib.sys [26.01.2008 10:12 11776]
R2 PrivateDisk;PrivateDisk;c:\programme\Lenovo\SafeGuard PrivateDisk\privatediskm.sys [13.03.2006 15:05 58368]
R2 SmartSurferManager;SmartSurfer Manager;c:\programme\WEB.DE\WEB.DE SmartSurfer\SmurfService.exe [01.08.2007 12:07 132560]
R2 smi2;smi2;c:\programme\SMI2\smi2.sys [14.07.2006 14:55 3968]
R2 smihlp;SMI helper driver;c:\programme\ThinkVantage Fingerprint Software\smihlp.sys [25.04.2006 18:00 3456]
R2 UI Assistant Service;UI Assistant Service;c:\programme\Mobile Partner Manager\AssistantServices.exe [19.10.2010 19:11 247296]
R3 Nbdrv;NetBalancer Service;c:\windows\system32\drivers\nbdrv.sys [10.12.2012 20:47 31016]
S2 gpibclsd;GPIB Device Class Driver;c:\windows\system32\drivers\gpibclsd.sys [26.01.2008 10:13 34664]
S2 NetBalancerService;NetBalancerService;c:\programme\NetBalancer\SeriousBit.NetBalancer.Service.exe [10.12.2012 20:46 8704]
S3 gpibclsb;GPIB Board Class Driver;c:\windows\system32\drivers\gpibclsb.sys [26.01.2008 10:13 57096]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [19.10.2010 19:11 9216]
S3 siusbmod;siusbmod;c:\windows\system32\drivers\siusbmod.sys [28.07.2005 15:20 27008]
S3 tap0801;TAP-Win32 Adapter V8;c:\windows\system32\drivers\tap0801.sys [01.10.2006 14:37 26624]
.
Inhalt des "geplante Tasks" Ordners
.
2012-12-14 c:\windows\Tasks\Auf Updates für Windows Live Toolbar prüfen.job
- c:\programme\Windows Live Toolbar\MSNTBUP.EXE [2007-02-12 13:54]
.
2012-12-14 c:\windows\Tasks\PMTask.job
- c:\progra~1\ThinkPad\UTILIT~1\PWMIDTSK.EXE [2007-06-19 16:13]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com
uInternet Settings,ProxyServer = 127.0.0.1:61798
uSearchURL,(Default) = hxxp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
IE: &Winamp Search - c:\dokumente und einstellungen\All Users\Anwendungsdaten\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: &Windows Live Search - c:\programme\Windows Live Toolbar\msntb.dll/search.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Senden an &Bluetooth-Gerät... - c:\programme\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Mozilla\Firefox\Profiles\wg48t7rj.default\
FF - prefs.js: browser.startup.homepage - www.google.de
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 5
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2012-12-01 18:45; {3cb073f3-be3c-4e8f-942d-8a747b54486f}; c:\dokumente und einstellungen\Onkel Markus\Anwendungsdaten\Mozilla\Firefox\Profiles\wg48t7rj.default\extensions\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
FF - ExtSQL: !HIDDEN! 2009-09-03 15:29; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-asktoolbar4 - c:\programme\asktoolbar4\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-12-14 21:28
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
.
c:\windows\system32\TPHDLOG0.LOG 384 bytes
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 1
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\DeterministicNetworks\DNE\Parameters]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,79,00,73,00,\
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'winlogon.exe'(1284)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\psqlpwd.dll
c:\programme\ThinkVantage Fingerprint Software\infra.dll
c:\programme\ThinkVantage Fingerprint Software\homefus2.dll
c:\windows\system32\biologon.dll
c:\programme\ThinkVantage Fingerprint Software\homepass.dll
c:\programme\ThinkVantage Fingerprint Software\bio.dll
c:\programme\ThinkVantage Fingerprint Software\remote.dll
c:\programme\ThinkVantage Fingerprint Software\ps2css.dll
c:\windows\system32\tphklock.dll
c:\programme\ThinkVantage Fingerprint Software\crypto.dll
c:\programme\Lenovo\AwayTask\AwayNotify.dll
.
- - - - - - - > 'lsass.exe'(1336)
c:\windows\system32\psqlpwd.dll
c:\programme\ThinkVantage Fingerprint Software\infra.dll
c:\programme\ThinkVantage Fingerprint Software\homefus2.dll
.
- - - - - - - > 'explorer.exe'(2936)
c:\windows\system32\PROCHLP.DLL
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\ibmpmsvc.exe
c:\windows\system32\Ati2evxx.exe
c:\programme\Intel\Wireless\Bin\EvtEng.exe
c:\windows\system32\Ati2evxx.exe
c:\programme\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\system32\IPSSVC.EXE
c:\programme\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
c:\programme\Avira\AntiVir Desktop\avguard.exe
c:\programme\ThinkPad\Bluetooth Software\bin\btwdins.exe
c:\programme\RWTH Aachen\Cisco VPN Client\cvpnd.exe
c:\programme\Diskeeper Corporation\Diskeeper\DkService.exe
c:\programme\Avira\AntiVir Desktop\avshadow.exe
c:\programme\Intel\Wireless\Bin\RegSrvc.exe
c:\programme\lenovo\system update\suservice.exe
c:\programme\Gemeinsame Dateien\Lenovo\tvt_reg_monitor_svc.exe
c:\windows\System32\TPHDEXLG.EXE
c:\windows\system32\TpKmpSVC.exe
c:\programme\Lenovo\Client Security Solution\tvttcsd.exe
c:\programme\Lenovo\Rescue and Recovery\rrservice.exe
c:\programme\Gemeinsame Dateien\Lenovo\Scheduler\tvtsched.exe
c:\programme\Lenovo\Rescue and Recovery\ADM\IUService.exe
c:\windows\system32\wdfmgr.exe
c:\programme\Gemeinsame Dateien\Lenovo\Logger\logmon.exe
c:\programme\ThinkPad\ConnectUtilities\AcSvc.exe
c:\windows\system32\rundll32.exe
c:\programme\ATI Technologies\ATI.ACE\CLI.EXE
c:\programme\Lenovo\PkgMgr\HOTKEY\TPONSCR.exe
c:\programme\Lenovo\PkgMgr\HOTKEY_1\TpScrex.exe
c:\progra~1\MICROS~3\rapimgr.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\programme\Diskeeper Corporation\Diskeeper\DkIcon.exe
c:\programme\ATI Technologies\ATI.ACE\cli.exe
c:\programme\Skype\Plugin Manager\skypePM.exe
c:\programme\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-12-14 21:33:06 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-12-14 20:33
ComboFix2.txt 2012-12-14 18:42
ComboFix3.txt 2012-12-14 17:19
.
Vor Suchlauf: 3.157.131.264 Bytes frei
Nach Suchlauf: 3.126.112.256 Bytes frei
.
- - End Of File - - FD49EEAF1E5F5F35381EAF52A67AEABB
Hochladen war erfolgreich
|
|
| Themen zu Besuch von BDS/ZeroAccess.Gen ... |
| administrator, anti-malware, autostart, avira, bericht, csrss.exe, dateien, desktop.ini, entfernen, explorer, explorer.exe, falsch, gelöscht, microsoft, quarantäne, rechner, recycler, scan, security, seite, seiten, service pack 3, software, speicher, temp, trojan.agent |
Linear-Darstellung
