| |
| |||||||
Log-Analyse und Auswertung: OTLPE Scan gemacht, was nun? (AKM-Trojaner?)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
04.02.2015, 03:31
| #1 |
| |  OTLPE Scan gemacht, was nun? (AKM-Trojaner?) Hallo, zuallererst ich bin computertechnisch leider nicht versiert, also bitte ich um Nachsicht, falls ich mich etwas blöd anstelle. :/ Ich habe Windows XP und habe mir (glaube ich) einen AKM Trojaner eingefangen und schon mit OTLPE gebootet/gescannt, da auch der abgesicherte Modus nicht ging, und habe nun den Bericht. Eine "Extras"-Datei, wie sie in einigen anderen Themen erwähnt wurde, habe ich bis jetzt nicht entdeckt. Nun weiß ich sowieso nicht so recht, was ich weiter machen soll und wollte hier um Hilfe bitten. LG, kiwii Code:
ATTFilter OTL logfile created on: 2/4/2015 3:01:27 AM - Run OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM Internet Explorer (Version = 8.0.6001.18702) Locale: 00000C07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy 2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 86.00% Memory free 2.00 Gb Paging File | 2.00 Gb Available in Paging File | 96.00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programme Drive C: | 287.35 Gb Total Space | 40.22 Gb Free Space | 14.00% Space Free | Partition Type: NTFS Drive D: | 10.73 Gb Total Space | 6.50 Gb Free Space | 60.55% Space Free | Partition Type: FAT32 Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: REATOGO | User Name: SYSTEM Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days Using ControlSet: ControlSet001 ========== Win32 Services (SafeList) ========== SRV - [2015/01/26 18:07:50 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand] -- C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2015/01/25 09:04:11 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2014/11/23 17:06:00 | 000,050,344 | ---- | M] (AVAST Software) [Auto] -- C:\Programme\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2014/11/21 00:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto] -- C:\Programme\ Malwarebytes Anti-Malware \mbamservice.exe -- (MBAMService) SRV - [2014/11/21 00:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto] -- C:\Programme\ Malwarebytes Anti-Malware \mbamscheduler.exe -- (MBAMScheduler) SRV - [2014/10/07 09:09:50 | 000,060,744 | ---- | M] (Apple Inc.) [Auto] -- C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2011/12/28 14:16:53 | 002,745,870 | ---- | M] () [Auto] -- C:\Programme\Tor\tor.exe -- (tor) SRV - [2011/07/19 22:18:24 | 000,440,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2008/11/22 09:12:34 | 001,333,016 | ---- | M] (Diskeeper Corporation) [Auto] -- C:\Programme\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper) SRV - [2008/04/07 02:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand] -- C:\Programme\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2006/10/26 08:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe -- (MDM) SRV - [2001/11/12 07:31:48 | 000,020,480 | ---- | M] (X10) [Auto] -- C:\Programme\Common Files\X10\Common\X10nets.exe -- (x10nets) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand] -- -- (WDICA) DRV - File not found [Kernel | On_Demand] -- -- (w810obex) DRV - File not found [Kernel | On_Demand] -- -- (w810mgmt) Sony Ericsson W810 USB WMC Device Management Drivers (WDM) DRV - File not found [Kernel | On_Demand] -- -- (w810mdm) DRV - File not found [Kernel | On_Demand] -- -- (w810mdfl) DRV - File not found [Kernel | On_Demand] -- -- (w810bus) Sony Ericsson W810 Driver driver (WDM) DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP) DRV - File not found [Kernel | System] -- -- (PCIDump) DRV - File not found [Kernel | System] -- -- (lbrtfdc) DRV - File not found [Kernel | System] -- -- (i2omgmt) DRV - File not found [Kernel | System] -- -- (Changer) DRV - [2014/11/23 17:06:22 | 000,787,800 | ---- | M] (AVAST Software) [File_System | System] -- C:\WINDOWS\system32\drivers\aswSnx.sys -- (aswSnx) DRV - [2014/11/23 17:06:21 | 000,423,784 | ---- | M] (AVAST Software) [File_System | System] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP) DRV - [2014/11/23 17:06:07 | 000,206,248 | ---- | M] () [Kernel | Boot] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm) DRV - [2014/11/23 17:06:07 | 000,070,384 | ---- | M] (AVAST Software) [File_System | Auto] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2014/11/23 17:06:07 | 000,057,928 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi) DRV - [2014/11/23 17:06:07 | 000,055,240 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr) DRV - [2014/11/23 17:06:07 | 000,049,944 | ---- | M] () [Kernel | Boot] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt) DRV - [2014/11/23 17:06:07 | 000,024,184 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid) DRV - [2014/11/21 00:14:06 | 000,023,256 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2013/01/18 18:53:38 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2013/01/18 18:53:38 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt) DRV - [2009/03/31 02:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009/03/20 03:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2009/03/20 03:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2009/03/20 03:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2008/07/26 10:26:20 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta) DRV - [2008/04/13 18:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE) DRV - [2008/02/01 04:43:00 | 000,489,624 | ---- | M] (Logitech Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LV561AV.SYS -- (PID_0928) Logitech QuickCam Express(PID_0928) DRV - [2008/01/09 06:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\seehcri.sys -- (seehcri) DRV - [2007/09/17 08:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2006/09/07 06:17:28 | 000,011,264 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\xfilt.sys -- (xfilt) DRV - [2006/09/07 06:17:28 | 000,009,728 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\videX32.sys -- (videX32) DRV - [2006/07/17 12:33:18 | 000,137,216 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (HdAudAddService) DRV - [2006/04/28 10:34:00 | 000,882,688 | R--- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\3xHybrid.sys -- (3xHybrid) DRV - [2005/12/09 09:37:42 | 002,400,256 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (lvmvdrv) DRV - [2005/12/09 09:37:42 | 000,016,768 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\LVPrcMon.sys -- (LVPrcMon) DRV - [2005/12/09 09:35:54 | 002,174,464 | ---- | M] () [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (Lvckap) DRV - [2005/11/28 04:45:16 | 000,007,040 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\x10hid.sys -- (X10Hid) DRV - [2005/05/19 09:52:58 | 000,017,792 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\x10ufx2.sys -- (XUIF) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\kiwii_x3_ON_C\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 IE - HKU\kiwii_x3_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com IE - HKU\kiwii_x3_ON_C\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie IE - HKU\kiwii_x3_ON_C\Software\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie IE - HKU\kiwii_x3_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\kiwii_x3_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local IE - HKU\Lidia_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.pl/ IE - HKU\Lidia_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\LocalService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.isUS: false FF - prefs.js..browser.startup.homepage: "hxxp://www.google.at/" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programme\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Programme\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Programme\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0: C:\Programme\DivX\DivX Web Player\npdivx32.dll (DivX, LLC) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\WINDOWS\system32\npdeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Programme\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Programme\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Programme\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Programme\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programme\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programme\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Dokumente und Einstellungen\kiwii x3\Lokale Einstellungen\Anwendungsdaten\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Programme\Alwil Software\Avast5\WebRep\FF [2015/02/01 13:35:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: C:\Programme\Mozilla Firefox\components [2015/01/26 18:07:33 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: C:\Programme\Mozilla Firefox\plugins [2015/01/26 18:07:37 | 000,000,000 | ---D | M] [2009/02/11 14:40:23 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Mozilla\Extensions [2015/02/03 19:49:47 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Mozilla\Firefox\Profiles\wgptaq5e.default-1422105172328\extensions [2014/09/09 12:43:05 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Mozilla\Firefox\Profileskhfkbm4a.default\extensions [2014/09/09 12:43:05 | 000,000,000 | ---D | M] (No name found) -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Mozilla\Firefox\Profileskhfkbm4a.default\extensions\staged [2015/01/26 18:07:33 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2015/01/26 18:07:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} [2015/01/26 18:07:33 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\browser\extensions [2015/01/26 18:07:55 | 000,000,000 | ---D | M] (Default) -- C:\Programme\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} File not found (No name found) -- O1 HOSTS File: ([2001/08/23 07:00:00 | 000,000,820 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation) O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation) O4 - HKLM..\Run: [Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [APSDaemon] C:\Programme\Gemeinsame Dateien\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [AvastUI.exe] C:\Programme\Alwil Software\Avast5\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [DivXMediaServer] C:\Programme\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC) O4 - HKLM..\Run: [DivXUpdate] C:\Programme\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [HDAudDeck] C:\Programme\VIAudioi\HDADeck\HDeck.exe (VIA Technologies, Inc.) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKU\kiwii_x3_ON_C..\Run: [LDM] C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech) O4 - HKU\Lidia_ON_C..\Run: [LDM] C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech) O4 - HKU\Lidia_ON_C..\Run: [msnmsgr] File not found O4 - HKU\Lidia_ON_C..\Run: [Nowe Gadu-Gadu] File not found O4 - HKU\Lidia_ON_C..\Run: [Sony PC Companion] File not found O4 - Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Logitech Desktop Messenger.lnk = C:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech) O4 - Startup: C:\Dokumente und Einstellungen\kiwii x3\Startmenü\Programme\Autostart\AutoStarter.lnk = File not found O4 - Startup: C:\Dokumente und Einstellungen\kiwii x3\Startmenü\Programme\Autostart\ja.lnk = C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\loadit.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\kiwii_x3_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKU\kiwii_x3_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\Lidia_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKU\Lidia_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\LocalService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\NetworkService_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\systemprofile_ON_C\Software\Policies\Microsoft\Internet Explorer\Restrictions present O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1234369632309 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Java Plug-in 11.31.2) O16 - DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab (Java Plug-in 1.7.0_17) O16 - DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Java Plug-in 1.8.0_31) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Java Plug-in 11.31.2) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.34.133.21 212.186.211.21 O18 - Protocol\Handler\bw+0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw+0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw-0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw00 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw00s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw-0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw10 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw10s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw20 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw20s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw30 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw30s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw40 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw40s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw50 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw50s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw60 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw60s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw70 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw70s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw80 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw80s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw90 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw90s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwa0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwa0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwb0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwb0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwc0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwc0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwd0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwd0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwe0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwe0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwf0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwf0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwg0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwg0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwh0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwh0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwi0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwi0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwj0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwj0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwk0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwk0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwl0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwl0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwm0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwm0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwn0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwn0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwo0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwo0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwp0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwp0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwq0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwq0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwr0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwr0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bws0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bws0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwt0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwt0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwu0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwu0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwv0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwv0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bww0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bww0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwx0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwx0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwy0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwy0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwz0 {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwz0s {8c76a76d-acf5-4305-a127-b5f76a0a7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation) O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Programme\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\offline-8876480 {8C76A76D-ACF5-4305-A127-B5F76A0A7641} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found O24 - Desktop Components:0 (Die derzeitige Homepage) - About:Home O24 - Desktop WallPaper: O24 - Desktop BackupWallPaper: O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/02/11 10:41:57 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ] O33 - MountPoints2\{5dd2ea3e-2e62-11e2-b44e-0009dd60000d}\Shell - "" = AutoRun O33 - MountPoints2\{5dd2ea3e-2e62-11e2-b44e-0009dd60000d}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{5dd2ea3e-2e62-11e2-b44e-0009dd60000d}\Shell\AutoRun\command - "" = J:\Startme.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2015/02/03 20:26:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2015/02/03 19:38:18 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\kiwii x3\Eigene Dateien\Usenet.nl [2015/02/03 19:23:11 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\kiwii x3\Desktop\Ant Videos [2015/01/26 18:07:33 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox [2015/01/24 08:12:56 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\kiwii x3\Eigene Dateien\Alte Firefox-Daten [2015/01/22 12:01:29 | 000,000,000 | RH-D | C] -- C:\Dokumente und Einstellungen\kiwii x3\Recent [2015/01/22 11:09:10 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\kiwii x3\Startmenü\Programme\Google Chrome [2015/01/22 09:23:25 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Chrome [2015/01/22 09:05:52 | 000,897,960 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npdeployJava1.dll [2015/01/22 09:05:52 | 000,818,088 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2015/01/22 09:02:41 | 000,000,000 | ---D | C] -- C:\Programme\Gemeinsame Dateien\Java [2015/01/22 09:00:38 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Oracle [2015/01/17 12:33:32 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen\kiwii x3\Lokale Einstellungen\Anwendungsdaten\Skype [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [10 C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\*.tmp files -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2015/02/03 20:44:14 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2015/02/03 20:43:37 | 2145,898,496 | -HS- | M] () -- C:\hiberfil.sys [2015/02/03 20:32:06 | 000,000,358 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job [2015/02/03 20:31:11 | 000,001,090 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2015/02/03 20:31:11 | 000,000,228 | ---- | M] () -- C:\WINDOWS\tasks\Ende des Supports für Microsoft Windows XP – Benachrichtigung – Anmeldung.job [2015/02/03 20:29:32 | 000,000,211 | RHS- | M] () -- C:\boot.ini [2015/02/03 20:27:00 | 000,001,094 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2015/02/03 20:04:15 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2015/02/03 20:00:43 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2015/02/03 19:58:46 | 000,000,740 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Startmenü\Programme\Autostart\ja.lnk [2015/02/03 19:58:44 | 000,605,378 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\loadit.exe [2015/02/03 19:53:56 | 000,003,785 | ---- | M] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\lpm.dat [2015/02/03 19:53:23 | 000,000,767 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Startmenü\Programme\Autostart\AutoStarter.lnk [2015/02/01 13:52:42 | 000,114,904 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [2015/02/01 13:35:31 | 000,296,456 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2015/01/29 11:47:54 | 000,002,515 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk [2015/01/25 09:04:11 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2015/01/25 09:04:10 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2015/01/24 11:23:00 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2015/01/23 19:15:09 | 000,048,640 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2015/01/22 11:52:10 | 000,000,684 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2015/01/22 10:16:22 | 000,001,769 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Google Chrome (2).lnk [2015/01/22 10:06:08 | 000,001,787 | ---- | M] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2015/01/22 09:23:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Google Chrome [2015/01/22 09:01:56 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Java [2015/01/22 09:01:35 | 000,096,680 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2015/01/22 09:01:22 | 000,272,296 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2015/01/22 09:01:21 | 000,176,552 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2015/01/22 09:01:21 | 000,146,432 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2015/01/22 09:01:20 | 000,176,552 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2015/01/22 09:01:13 | 000,897,960 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npdeployJava1.dll [2015/01/22 09:01:11 | 000,818,088 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2015/01/15 17:35:03 | 000,062,020 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat [2015/01/08 09:00:00 | 000,000,222 | ---- | M] () -- C:\WINDOWS\tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [10 C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\*.tmp files -> C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\*.tmp -> ] ========== Files Created - No Company Name ========== [2015/02/03 19:58:46 | 000,000,740 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Startmenü\Programme\Autostart\ja.lnk [2015/02/03 19:58:42 | 000,605,378 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\loadit.exe [2015/02/03 19:53:47 | 000,003,785 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\lpm.dat [2015/02/03 19:53:23 | 000,000,767 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Startmenü\Programme\Autostart\AutoStarter.lnk [2015/01/22 11:52:10 | 000,000,684 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2015/01/22 10:16:22 | 000,001,769 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Google Chrome (2).lnk [2015/01/22 09:23:25 | 000,001,787 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2015/01/22 09:22:37 | 000,001,094 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2015/01/22 09:22:36 | 000,001,090 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2014/09/09 12:35:52 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll [2014/06/20 07:12:56 | 000,024,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswHwid.sys [2013/03/17 15:42:42 | 000,206,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys [2013/03/17 15:42:41 | 000,049,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys [2012/09/15 04:48:50 | 000,003,087 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\PData.MMM [2012/09/15 04:48:50 | 000,003,087 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\PData.MM1 [2012/07/10 13:03:55 | 000,000,040 | ---- | C] () -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\kmhjztmhibqbasq [2012/02/07 16:27:06 | 000,000,218 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\.recently-used.xbel [2011/06/04 00:13:06 | 000,013,312 | ---- | C] () -- C:\Dokumente und Einstellungen\Lidia\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/12/22 14:12:57 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/05/30 11:57:59 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2010/05/30 11:57:59 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2010/05/30 11:57:53 | 000,002,528 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\$_hpcst$.hpc [2010/03/07 16:30:14 | 000,000,358 | ---- | C] () -- C:\WINDOWS\hegames.ini [2009/11/22 16:20:16 | 000,062,020 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2009/07/19 06:36:01 | 000,066,482 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2009/07/18 13:29:50 | 000,118,784 | R--- | C] () -- C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe [2009/03/21 16:56:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mngui.INI [2009/03/02 16:50:26 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2009/03/02 10:21:04 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009/02/15 16:25:38 | 000,048,640 | ---- | C] () -- C:\Dokumente und Einstellungen\kiwii x3\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/02/12 15:39:17 | 000,000,400 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2009/02/12 14:14:00 | 000,103,812 | ---- | C] () -- C:\WINDOWS\hpoins04.dat.temp [2009/02/12 14:14:00 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat.temp [2009/02/11 14:29:19 | 000,000,719 | R--- | C] () -- C:\WINDOWS\System32\InstExec.ini [2009/02/11 12:04:11 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2009/02/11 11:41:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2009/02/11 11:04:29 | 000,127,184 | ---- | C] () -- C:\WINDOWS\Unwise.exe [2009/02/11 11:04:05 | 000,003,072 | R--- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll [2009/02/11 11:04:04 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2009/02/11 10:43:22 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2009/02/11 10:39:10 | 000,021,740 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2009/02/11 10:36:14 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009/02/11 10:35:28 | 000,296,456 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2007/10/25 10:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2006/10/11 05:56:13 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006/10/11 05:56:13 | 001,626,112 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2006/10/11 05:56:13 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006/10/11 05:56:12 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006/10/11 05:56:12 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006/10/11 05:56:12 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006/10/11 05:56:12 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2006/10/11 05:56:11 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2006/10/11 05:56:09 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2006/10/11 05:56:09 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2005/12/09 09:37:42 | 002,400,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVMVdrv.sys [2005/12/09 09:37:42 | 000,016,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPrcMon.sys [2005/12/09 09:35:54 | 002,174,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\Lvckap.sys [2004/08/02 08:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2002/08/28 20:54:14 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2001/08/23 07:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001/08/23 07:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001/08/23 07:00:00 | 000,466,214 | ---- | C] () -- C:\WINDOWS\System32\perfh007.dat [2001/08/23 07:00:00 | 000,444,460 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001/08/23 07:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001/08/23 07:00:00 | 000,269,480 | ---- | C] () -- C:\WINDOWS\System32\perfi007.dat [2001/08/23 07:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001/08/23 07:00:00 | 000,087,168 | ---- | C] () -- C:\WINDOWS\System32\perfc007.dat [2001/08/23 07:00:00 | 000,072,526 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001/08/23 07:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001/08/23 07:00:00 | 000,034,478 | ---- | C] () -- C:\WINDOWS\System32\perfd007.dat [2001/08/23 07:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001/08/23 07:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001/08/23 07:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [1999/01/27 06:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll [1997/06/13 00:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll ========== LOP Check ========== [2009/02/11 11:15:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\LocalService\Anwendungsdaten\X10 Commander [2012/09/15 04:48:50 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\AUTOSICH [2013/11/24 06:15:22 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\AVAST Software [2011/01/09 11:44:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Canon [2012/01/29 14:34:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\DDMSettings [2009/03/28 17:49:41 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\gtk-2.0 [2013/11/03 21:04:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Langenscheidt [2009/07/18 13:28:15 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Leadertech [2010/12/12 16:00:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\ooVoo Details [2009/02/12 16:05:53 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\OpenOffice.org [2010/05/30 12:02:04 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\PC Suite [2012/02/18 07:26:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Samsung [2009/10/25 12:22:51 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\SecondLife [2010/05/27 14:16:36 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\TeamViewer [2009/02/15 17:25:01 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Teleca [2009/12/22 15:54:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Unity [2009/03/13 17:56:49 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\kiwii x3\Anwendungsdaten\Windows Search [2013/11/26 05:54:41 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Lidia\Anwendungsdaten\AVAST Software [2014/02/10 11:03:27 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Lidia\Anwendungsdaten\Langenscheidt [2009/02/11 12:01:48 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Lidia\Anwendungsdaten\Leadertech [2009/02/11 12:22:23 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Lidia\Anwendungsdaten\Nowe Gadu-Gadu [2011/02/28 03:33:44 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Lidia\Anwendungsdaten\ooVoo Details [2009/11/24 04:13:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Lidia\Anwendungsdaten\SecondLife [2009/03/02 04:57:07 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\Lidia\Anwendungsdaten\Teleca [2014/11/06 12:30:24 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\188F1432-103A-4ffb-80F1-36B633C5C9E1 [2010/05/03 11:25:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Alwil Software [2013/11/22 17:13:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVAST Software [2014/11/06 12:31:39 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB [2012/08/29 05:36:25 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\boost_interprocess [2009/02/11 12:31:43 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Diskeeper Corporation [2013/11/03 21:04:35 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Langenscheidt [2015/01/22 09:06:16 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Oracle [2010/05/30 12:02:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC Suite [2014/09/29 18:41:00 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sony [2014/09/29 18:41:31 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Sony Mobile [2009/02/11 11:15:26 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\X10 Settings [2009/03/14 18:18:18 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3} [2010/04/05 16:58:59 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2009/09/14 13:35:14 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{755AC846-7372-4AC8-8550-C52491DAA8BD} [2009/04/12 17:04:05 | 000,000,000 | ---D | M] -- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} [2015/02/03 20:32:06 | 000,000,358 | -H-- | M] () -- C:\WINDOWS\Tasks\avast! Emergency Update.job [2015/02/03 20:31:11 | 000,000,228 | ---- | M] () -- C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Benachrichtigung – Anmeldung.job [2015/01/08 09:00:00 | 000,000,222 | ---- | M] () -- C:\WINDOWS\Tasks\Ende des Supports für Microsoft Windows XP – Monatliche Benachrichtigung.job ========== Purity Check ========== < End of report > Geändert von kiwiix3 (04.02.2015 um 03:47 Uhr) Grund: Ich habe nun doch verstanden wie ich das "anhänge"... |
| Themen zu OTLPE Scan gemacht, was nun? (AKM-Trojaner?) |
| akm trojaner, andere, anderen, blöd, compu, computer, eingefangen, entdeck, extras, gefangen, gen, glaube, hilfe, hochladen, launch, otlpe, recht, scan, theme, themen, troja, trojaner, trojaner eingefangen |
Baum-Darstellung