Avira Virenmeldung: JS/Redirector.455

Spieker000 · 21.02.2010, 18:55

Hallo liebe Community,
seit einigen Tagen bekomme ich von meinem Antivirprogramm immer eine Virenmeldung:

Auf ihrem Computer wurde ein Virus oder unerwünschtes Programm gefunden!

C:\Dokumente und Einstellungen\MeinName\...\exx[1].htm

Enthält Erkennungsmus des Java-Scripvirus JS/Redirector.455

Diese Meldung kommt manchmal 1 mal manchmal aber auch 5 mal gleichzeitig.
Nun weiß ich genau was ich tun soll.
Wenn ich ihn löschen will kommt die Meldung nach ein paar Sekunden wieder.
Egal was ich mache die Meldung kommt immer wieder.
Manchmal möchte ich dann meinen PC

.
Ich hoffe das ihr mir weiterhelfen könnt.
Zusätzlich möchte ich noch sagen das ich mich nicht sehr mit Technik auskenne und hoffe das ihr es auch für etwas dämliche erklären könnt.
Das mit dem Lop S&D habe ich schon ausgeführt und hoffe das ihr mir helfen könnt.

Schonmal vielen Dank in voraus.
Falls ihr noch fragen habt werde ich versuchen sie zu beantworten.

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Helmut Nagel ( Administrator )
BOOT : Normal boot
Antivirus : AntiVir Desktop 9.0.1.32 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:66 Go)
D:\ (CD or DVD) - UDF - Total:7 Go (Free:0 Go)
E:\ (USB)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 21.02.2010|18:49 )

--------------------\\ Ordner Verzeichnis unter ANWEND~1

[07.04.2009|19:26] C:\DOKUME~1\ALLUSE~1\ANWEND~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[24.02.2009|21:09] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Adobe
[16.05.2006|09:51] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Ahead
[29.12.2006|12:32] C:\DOKUME~1\ALLUSE~1\ANWEND~1\AOL
[14.02.2010|12:17] C:\DOKUME~1\ALLUSE~1\ANWEND~1\AOL Downloads
[07.04.2009|19:24] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Apple
[07.04.2009|19:26] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Apple Computer
[19.02.2010|15:30] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Avira
[03.09.2009|16:21] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Blizzard
[04.02.2010|18:03] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Codemasters
[23.02.2008|11:19] C:\DOKUME~1\ALLUSE~1\ANWEND~1\ElsterFormular
[04.01.2009|21:16] C:\DOKUME~1\ALLUSE~1\ANWEND~1\EmailNotifier
[24.03.2008|13:36] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Friends Games
[30.12.2009|16:51] C:\DOKUME~1\ALLUSE~1\ANWEND~1\GameHouse
[21.11.2008|16:05] C:\DOKUME~1\ALLUSE~1\ANWEND~1\GamesBar
[21.11.2006|17:17] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Google
[10.02.2010|15:58] C:\DOKUME~1\ALLUSE~1\ANWEND~1\ICQ
[26.07.2007|17:51] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Intenium
[16.05.2006|09:49] C:\DOKUME~1\ALLUSE~1\ANWEND~1\MAGIX
[04.01.2009|21:16] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Megaupload
[24.07.2007|17:19] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Meine Spiele
[04.02.2010|17:37] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Microsoft
[17.03.2008|19:17] C:\DOKUME~1\ALLUSE~1\ANWEND~1\MythPeople
[16.08.2009|13:15] C:\DOKUME~1\ALLUSE~1\ANWEND~1\NexonEU
[15.08.2009|17:43] C:\DOKUME~1\ALLUSE~1\ANWEND~1\NexonUS
[24.03.2008|12:01] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Oberon Media
[03.02.2010|13:00] C:\DOKUME~1\ALLUSE~1\ANWEND~1\PC Suite
[17.12.2007|18:53] C:\DOKUME~1\ALLUSE~1\ANWEND~1\PlayFirst
[29.10.2009|14:59] C:\DOKUME~1\ALLUSE~1\ANWEND~1\PMB Files
[28.12.2006|15:07] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Prism
[11.10.2008|19:28] C:\DOKUME~1\ALLUSE~1\ANWEND~1\QuickTime
[29.01.2010|21:05] C:\DOKUME~1\ALLUSE~1\ANWEND~1\RTL Winter Sports 2008
[29.01.2010|16:14] C:\DOKUME~1\ALLUSE~1\ANWEND~1\RTL Winter Sports 2009
[15.03.2009|12:44] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Sandlot Games
[16.05.2006|09:40] C:\DOKUME~1\ALLUSE~1\ANWEND~1\SBSI
[29.04.2007|09:59] C:\DOKUME~1\ALLUSE~1\ANWEND~1\ScreenSeven
[28.07.2007|18:13] C:\DOKUME~1\ALLUSE~1\ANWEND~1\SecretsOfOlympus
[19.02.2010|14:20] C:\DOKUME~1\ALLUSE~1\ANWEND~1\SITEguard
[25.07.2009|11:32] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Skype
[19.02.2010|15:20] C:\DOKUME~1\ALLUSE~1\ANWEND~1\STOPzilla!
[11.02.2007|13:13] C:\DOKUME~1\ALLUSE~1\ANWEND~1\SugarGames
[10.02.2010|16:02] C:\DOKUME~1\ALLUSE~1\ANWEND~1\SweetIM
[08.01.2010|13:29] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Synetic
[25.03.2008|18:51] C:\DOKUME~1\ALLUSE~1\ANWEND~1\TEMP
[30.07.2007|17:55] C:\DOKUME~1\ALLUSE~1\ANWEND~1\TERMINAL Studio
[22.06.2007|20:56] C:\DOKUME~1\ALLUSE~1\ANWEND~1\T-Online
[14.09.2009|13:34] C:\DOKUME~1\ALLUSE~1\ANWEND~1\TrackMania
[14.08.2006|09:19] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Trymedia
[13.05.2007|10:46] C:\DOKUME~1\ALLUSE~1\ANWEND~1\TuneUp Software
[08.01.2010|14:39] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Ubisoft
[17.06.2006|18:16] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Viewpoint
[28.06.2006|16:15] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Windows Genuine Advantage
[24.03.2008|17:20] C:\DOKUME~1\ALLUSE~1\ANWEND~1\yahoo!
[24.03.2008|17:20] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Yahoo! Companion
[04.03.2009|16:09] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Zylom
[0|Datei(en)] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Bytes
[57|Verzeichnis(se),] C:\DOKUME~1\ALLUSE~1\ANWEND~1\Bytes frei

[16.05.2006|09:59] C:\DOKUME~1\DEFAUL~1\ANWEND~1\Adobe
[23.07.2009|16:25] C:\DOKUME~1\DEFAUL~1\ANWEND~1\ATI
[16.05.2006|09:04] C:\DOKUME~1\DEFAUL~1\ANWEND~1\Identities
[16.05.2006|09:47] C:\DOKUME~1\DEFAUL~1\ANWEND~1\Macromedia
[16.05.2006|09:59] C:\DOKUME~1\DEFAUL~1\ANWEND~1\Microsoft
[0|Datei(en)] C:\DOKUME~1\DEFAUL~1\ANWEND~1\Bytes
[7|Verzeichnis(se),] C:\DOKUME~1\DEFAUL~1\ANWEND~1\Bytes frei

[23.02.2008|17:08] C:\DOKUME~1\HELMUT~1\ANWEND~1\Adobe
[24.02.2007|13:43] C:\DOKUME~1\HELMUT~1\ANWEND~1\AdobeUM
[17.06.2006|18:16] C:\DOKUME~1\HELMUT~1\ANWEND~1\AOL
[30.06.2009|19:46] C:\DOKUME~1\HELMUT~1\ANWEND~1\Apple Computer
[28.09.2009|19:28] C:\DOKUME~1\HELMUT~1\ANWEND~1\astragon Software GmbH
[23.07.2009|16:25] C:\DOKUME~1\HELMUT~1\ANWEND~1\ATI
[13.05.2007|11:04] C:\DOKUME~1\HELMUT~1\ANWEND~1\concept design
[04.01.2009|21:16] C:\DOKUME~1\HELMUT~1\ANWEND~1\EmailNotifier
[18.02.2008|21:13] C:\DOKUME~1\HELMUT~1\ANWEND~1\flash
[24.07.2007|17:19] C:\DOKUME~1\HELMUT~1\ANWEND~1\gemsweeperextractedgfx
[17.01.2010|11:21] C:\DOKUME~1\HELMUT~1\ANWEND~1\Glory of the Roman Empire Demo
[17.06.2006|22:04] C:\DOKUME~1\HELMUT~1\ANWEND~1\Google
[17.06.2006|19:07] C:\DOKUME~1\HELMUT~1\ANWEND~1\Help
[17.06.2006|19:42] C:\DOKUME~1\HELMUT~1\ANWEND~1\Hewlett-Packard
[10.02.2010|18:15] C:\DOKUME~1\HELMUT~1\ANWEND~1\ICQ
[22.03.2008|18:13] C:\DOKUME~1\HELMUT~1\ANWEND~1\Identities
[16.10.2009|10:32] C:\DOKUME~1\HELMUT~1\ANWEND~1\IGN_DLM
[24.12.2008|19:10] C:\DOKUME~1\HELMUT~1\ANWEND~1\InstallShield
[16.05.2006|09:47] C:\DOKUME~1\HELMUT~1\ANWEND~1\Macromedia
[09.08.2006|16:58] C:\DOKUME~1\HELMUT~1\ANWEND~1\MAGIX
[27.01.2009|17:06] C:\DOKUME~1\HELMUT~1\ANWEND~1\MayhemIntergalactic
[04.01.2009|21:18] C:\DOKUME~1\HELMUT~1\ANWEND~1\Megaupload
[13.10.2009|22:07] C:\DOKUME~1\HELMUT~1\ANWEND~1\Microsoft
[08.01.2010|19:47] C:\DOKUME~1\HELMUT~1\ANWEND~1\Move Networks
[26.06.2008|13:55] C:\DOKUME~1\HELMUT~1\ANWEND~1\Mozilla
[16.12.2009|20:54] C:\DOKUME~1\HELMUT~1\ANWEND~1\My Games
[18.08.2006|08:16] C:\DOKUME~1\HELMUT~1\ANWEND~1\Nikon
[24.03.2008|12:01] C:\DOKUME~1\HELMUT~1\ANWEND~1\Oberon Media
[03.02.2010|13:00] C:\DOKUME~1\HELMUT~1\ANWEND~1\PC Suite
[26.12.2009|17:30] C:\DOKUME~1\HELMUT~1\ANWEND~1\Petroglyph
[17.12.2007|18:53] C:\DOKUME~1\HELMUT~1\ANWEND~1\PlayFirst
[29.01.2010|16:14] C:\DOKUME~1\HELMUT~1\ANWEND~1\ProtectDisc
[01.02.2009|21:38] C:\DOKUME~1\HELMUT~1\ANWEND~1\Red Alert 3 Demo
[03.02.2010|12:55] C:\DOKUME~1\HELMUT~1\ANWEND~1\Samsung
[24.07.2007|18:34] C:\DOKUME~1\HELMUT~1\ANWEND~1\ScreenSeven
[13.07.2009|12:09] C:\DOKUME~1\HELMUT~1\ANWEND~1\SecuROM
[27.09.2009|19:12] C:\DOKUME~1\HELMUT~1\ANWEND~1\Sierra
[12.02.2010|17:46] C:\DOKUME~1\HELMUT~1\ANWEND~1\Skype
[12.02.2010|16:06] C:\DOKUME~1\HELMUT~1\ANWEND~1\skypePM
[17.06.2006|18:51] C:\DOKUME~1\HELMUT~1\ANWEND~1\Sun
[18.02.2008|21:09] C:\DOKUME~1\HELMUT~1\ANWEND~1\Supreme Auction
[05.12.2009|16:40] C:\DOKUME~1\HELMUT~1\ANWEND~1\teamspeak2
[11.01.2009|21:55] C:\DOKUME~1\HELMUT~1\ANWEND~1\TeamViewer
[31.05.2009|21:19] C:\DOKUME~1\HELMUT~1\ANWEND~1\Teeworlds
[18.06.2006|18:54] C:\DOKUME~1\HELMUT~1\ANWEND~1\Template
[22.06.2007|20:56] C:\DOKUME~1\HELMUT~1\ANWEND~1\T-Online
[13.05.2007|10:46] C:\DOKUME~1\HELMUT~1\ANWEND~1\TuneUp Software
[02.09.2007|09:59] C:\DOKUME~1\HELMUT~1\ANWEND~1\URSE Games
[21.05.2009|20:50] C:\DOKUME~1\HELMUT~1\ANWEND~1\ValuSoft
[03.09.2009|16:15] C:\DOKUME~1\HELMUT~1\ANWEND~1\Wargaming.Net
[22.04.2009|15:50] C:\DOKUME~1\HELMUT~1\ANWEND~1\Xfire
[24.03.2008|17:20] C:\DOKUME~1\HELMUT~1\ANWEND~1\Yahoo!
[22.06.2006|20:58] C:\DOKUME~1\HELMUT~1\ANWEND~1\Yahoo! Messenger
[31.10.2009|11:10] C:\DOKUME~1\HELMUT~1\ANWEND~1\YoudaGames
[17.06.2006|18:16] C:\DOKUME~1\HELMUT~1\ANWEND~1\You've Got Pictures Screensaver
[22.03.2008|18:13] C:\DOKUME~1\HELMUT~1\ANWEND~1\Zylom
[0|Datei(en)] C:\DOKUME~1\HELMUT~1\ANWEND~1\Bytes
[58|Verzeichnis(se),] C:\DOKUME~1\HELMUT~1\ANWEND~1\Bytes frei

[24.02.2008|09:56] C:\DOKUME~1\LOCALS~1\ANWEND~1\Adobe
[01.03.2007|11:58] C:\DOKUME~1\LOCALS~1\ANWEND~1\AdobeUM
[31.05.2008|07:08] C:\DOKUME~1\LOCALS~1\ANWEND~1\Google
[21.05.2007|16:29] C:\DOKUME~1\LOCALS~1\ANWEND~1\Macromedia
[13.02.2010|20:29] C:\DOKUME~1\LOCALS~1\ANWEND~1\Microsoft
[12.05.2007|10:38] C:\DOKUME~1\LOCALS~1\ANWEND~1\Sun
[31.05.2008|07:08] C:\DOKUME~1\LOCALS~1\ANWEND~1\Yahoo!
[0|Datei(en)] C:\DOKUME~1\LOCALS~1\ANWEND~1\Bytes
[9|Verzeichnis(se),] C:\DOKUME~1\LOCALS~1\ANWEND~1\Bytes frei

[08.05.2007|17:06] C:\DOKUME~1\NETWOR~1\ANWEND~1\Macromedia
[16.05.2006|09:04] C:\DOKUME~1\NETWOR~1\ANWEND~1\Microsoft
[26.09.2008|18:44] C:\DOKUME~1\NETWOR~1\ANWEND~1\Xfire
[0|Datei(en)] C:\DOKUME~1\NETWOR~1\ANWEND~1\Bytes
[5|Verzeichnis(se),] C:\DOKUME~1\NETWOR~1\ANWEND~1\Bytes frei

--------------------\\ Geplante Aufgaben unter C:\WINDOWS\Tasks

[21.02.2010 18:28][--ah-----] C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
[21.02.2010 18:01][--a------] C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[03.02.2010 10:56][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[13.02.2010 10:39][--a------] C:\WINDOWS\tasks\NSSstub.job
[19.02.2010 17:19][--a------] C:\WINDOWS\tasks\1-Klick-Wartung.job
[19.02.2010 20:42][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1150569650.job
[04.08.2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[21.02.2010 17:36][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Ordner Verzeichnis unter C:\Programme

[04.02.2010|19:47] C:\Programme\1C Company
[22.11.2008|21:03] C:\Programme\3000AD
[28.09.2006|12:45] C:\Programme\Act 3d
[26.12.2009|15:33] C:\Programme\Activision
[24.02.2009|21:08] C:\Programme\Adobe
[13.12.2009|18:04] C:\Programme\AGEIA Technologies
[16.05.2006|09:51] C:\Programme\Ahead
[24.03.2008|17:11] C:\Programme\AOL
[13.02.2008|18:40] C:\Programme\AOL 9.0
[29.12.2006|16:24] C:\Programme\AOL 9.0a
[29.12.2006|16:23] C:\Programme\AOL 9.0b
[29.12.2006|16:22] C:\Programme\AOL 9.0c
[22.10.2007|17:58] C:\Programme\AOL 9.0d
[10.09.2006|17:56] C:\Programme\AOL Banking
[07.04.2009|19:24] C:\Programme\Apple Software Update
[18.08.2006|08:14] C:\Programme\ArcSoft
[20.02.2010|10:01] C:\Programme\Ask.com
[03.02.2010|22:42] C:\Programme\Atari
[02.05.2007|21:15] C:\Programme\AvantGo Connect
[19.02.2010|15:30] C:\Programme\Avira
[22.01.2010|22:06] C:\Programme\Biathlon 2009 (Demo)
[07.04.2009|19:25] C:\Programme\Bonjour
[04.02.2010|17:38] C:\Programme\BRS
[21.02.2010|14:54] C:\Programme\CCleaner
[08.01.2010|13:28] C:\Programme\Cobra 11 - Highway Nights Demo
[04.02.2010|17:33] C:\Programme\Codemasters
[02.05.2007|21:15] C:\Programme\Common Files
[16.05.2006|09:01] C:\Programme\ComPlus Applications
[26.12.2009|15:59] C:\Programme\Cornelsen
[01.08.2009|11:12] C:\Programme\crimecity
[01.11.2009|14:57] C:\Programme\Cyanide
[21.01.2010|19:02] C:\Programme\DachserGlobalPlayer
[10.01.2010|15:30] C:\Programme\Die Römer - DEMO
[03.02.2010|12:56] C:\Programme\DIFX
[20.08.2009|16:17] C:\Programme\DVDVideoSoft
[03.01.2010|17:18] C:\Programme\EA GAMES
[06.01.2008|14:26] C:\Programme\eBay
[23.08.2008|11:34] C:\Programme\ElsterFormular
[19.02.2010|19:42] C:\Programme\Enigma Software Group
[07.10.2009|19:10] C:\Programme\Enlight
[30.01.2009|12:11] C:\Programme\Firaxis Games
[13.07.2009|12:05] C:\Programme\Firefly Studios
[19.08.2006|13:29] C:\Programme\FotoStation Easy
[16.06.2009|14:11] C:\Programme\GameShadow
[27.09.2009|17:49] C:\Programme\GameSpy Arcade
[19.02.2010|14:19] C:\Programme\Gemeinsame Dateien
[30.01.2010|14:19] C:\Programme\German Truck Simulator
[18.01.2010|18:05] C:\Programme\German Truck Simulator Demo
[13.05.2007|10:49] C:\Programme\Google
[02.02.2010|15:25] C:\Programme\Gratuitous Space Battles Demo
[17.06.2006|19:38] C:\Programme\Hewlett-Packard
[17.06.2009|13:00] C:\Programme\ICQ6
[03.02.2010|14:44] C:\Programme\ICQ6.5
[11.02.2010|10:13] C:\Programme\ICQ6Toolbar
[14.02.2010|20:22] C:\Programme\ICQ7.0
[22.11.2008|14:01] C:\Programme\Infogrames
[30.01.2009|19:30] C:\Programme\Install Creator
[26.04.2009|11:00] C:\Programme\InstallJammer Registry
[10.02.2010|15:58] C:\Programme\InstallShield Installation Information
[19.02.2010|16:24] C:\Programme\Internet Explorer
[16.10.2009|10:33] C:\Programme\Interplay Entertainment Corp
[16.05.2006|09:51] C:\Programme\InterVideo
[03.01.2010|17:16] C:\Programme\Invictus Games
[07.04.2009|19:26] C:\Programme\iPod
[07.04.2009|19:26] C:\Programme\iTunes
[29.12.2009|19:48] C:\Programme\Java
[20.11.2009|17:31] C:\Programme\JoWooD
[13.09.2009|17:58] C:\Programme\Landwirtschafts-Simulator 2009 Demo
[17.06.2006|18:16] C:\Programme\Learn2.com
[04.09.2009|16:06] C:\Programme\LibUSB-Win32-0.1.10.1
[14.10.2008|20:00] C:\Programme\Liquid Entertainment
[26.12.2009|17:06] C:\Programme\LucasArts
[16.05.2006|09:49] C:\Programme\MAGIX Online Druck Service (FS)
[29.12.2009|13:47] C:\Programme\MarkAny
[03.02.2010|13:26] C:\Programme\MarkAnyContentSAFER
[13.04.2009|16:59] C:\Programme\Maxis
[04.01.2009|21:16] C:\Programme\Megaupload
[16.02.2010|17:30] C:\Programme\Messenger
[23.07.2007|18:54] C:\Programme\Microsoft ActiveSync
[16.05.2006|09:02] C:\Programme\microsoft frontpage
[13.10.2009|22:01] C:\Programme\Microsoft Games
[04.02.2010|17:37] C:\Programme\Microsoft Games for Windows - LIVE
[10.01.2010|19:06] C:\Programme\Microsoft Office
[14.10.2009|22:23] C:\Programme\Microsoft Works
[09.01.2010|22:13] C:\Programme\Monte Cristo
[19.02.2010|16:21] C:\Programme\Movie Maker
[21.02.2010|17:51] C:\Programme\Mozilla Firefox
[15.10.2009|22:28] C:\Programme\Mplayer
[09.08.2009|21:19] C:\Programme\MSBuild
[10.01.2010|19:06] C:\Programme\MSECache
[16.05.2006|09:00] C:\Programme\MSN
[16.05.2006|09:00] C:\Programme\MSN Gaming Zone
[16.05.2006|09:32] C:\Programme\MSN Messenger
[17.06.2006|22:11] C:\Programme\MSXML 4.0
[09.08.2009|21:17] C:\Programme\MSXML 6.0
[01.11.2009|13:35] C:\Programme\MTA San Andreas
[28.08.2009|17:31] C:\Programme\Müllabfuhr-Simulator 2008 DEMO
[19.02.2010|16:19] C:\Programme\NetMeeting
[18.08.2006|08:14] C:\Programme\Nikon
[09.10.2009|20:07] C:\Programme\NiProD
[16.05.2006|09:00] C:\Programme\Online Services
[16.05.2006|09:01] C:\Programme\Online-Dienste
[14.12.2009|18:01] C:\Programme\OpenAL
[19.02.2010|16:44] C:\Programme\Outlook Express
[31.10.2009|11:09] C:\Programme\OXXOGames
[19.02.2010|15:19] C:\Programme\Paladin Antivirus
[29.10.2009|14:58] C:\Programme\Pando Networks
[05.02.2010|22:01] C:\Programme\Paradox Interactive
[11.12.2009|13:44] C:\Programme\PartyGaming
[03.02.2010|12:56] C:\Programme\PC Connectivity Solution
[03.01.2009|19:10] C:\Programme\petroglyph
[23.08.2008|11:35] C:\Programme\POI-Warner GoPal Edition
[17.06.2006|18:13] C:\Programme\Programmverknüpfungen
[08.01.2010|13:28] C:\Programme\ProtectDisc Driver Installer
[14.11.2009|21:56] C:\Programme\Pyro Studios
[07.04.2009|19:25] C:\Programme\QuickTime
[19.09.2009|20:55] C:\Programme\Railroad Tycoon 3 Demo
[17.06.2006|18:16] C:\Programme\Real
[09.08.2009|21:19] C:\Programme\Reference Assemblies
[03.02.2010|17:20] C:\Programme\RTL Biathlon 2008 (Demo)
[29.01.2010|21:04] C:\Programme\RTL Winter Sports 2008 (Demo)
[29.01.2010|16:13] C:\Programme\RTL Winter Sports 2009 (Demo)
[18.08.2006|11:38] C:\Programme\s25atonce
[03.02.2010|12:56] C:\Programme\Samsung
[30.12.2009|15:14] C:\Programme\Schwertransport Simulator Demo
[09.03.2008|12:43] C:\Programme\Siemens Data Suite
[27.09.2009|17:27] C:\Programme\Sierra
[04.04.2009|17:25] C:\Programme\Sierra Online
[16.01.2010|20:35] C:\Programme\SimBin
[07.11.2009|14:58] C:\Programme\Singles2
[06.12.2009|12:14] C:\Programme\sixteen tons entertainment
[02.02.2010|16:38] C:\Programme\Skispringen 2006 Demo
[25.07.2009|11:33] C:\Programme\Skype
[14.02.2010|20:19] C:\Programme\Smart MX ToolBox v1.1!
[29.01.2010|13:16] C:\Programme\SpaceShuttleMission2007DEMO
[13.02.2010|16:14] C:\Programme\Steam
[12.07.2008|18:40] C:\Programme\Sun
[09.03.2008|12:41] C:\Programme\Supreme Auction
[10.02.2010|16:02] C:\Programme\SweetIM
[23.08.2008|14:07] C:\Programme\T-Com
[07.10.2009|16:14] C:\Programme\TDK
[23.08.2008|14:59] C:\Programme\Teamspeak2_RC2
[16.07.2009|09:43] C:\Programme\TeamViewer
[17.06.2006|20:19] C:\Programme\Telekom
[09.03.2008|12:42] C:\Programme\test Archiv CD-Rom 2006
[24.12.2008|19:10] C:\Programme\Thrustmaster
[22.06.2007|20:55] C:\Programme\T-Online
[06.01.2010|18:56] C:\Programme\TrackMania Nations ESWC
[05.12.2009|12:38] C:\Programme\Truck_Racing_By_Renault_Trucks
[06.12.2009|13:30] C:\Programme\Trymedia
[13.05.2007|10:55] C:\Programme\TuneUp Utilities 2007
[20.11.2009|17:02] C:\Programme\TV Manager Demo
[21.01.2010|19:09] C:\Programme\Ubi Soft
[08.01.2010|14:32] C:\Programme\Ubisoft
[16.05.2006|09:04] C:\Programme\Uninstall Information
[06.12.2009|13:30] C:\Programme\Valusoft
[17.06.2006|18:16] C:\Programme\Viewpoint
[22.03.2009|18:46] C:\Programme\Vstep
[22.11.2008|18:02] C:\Programme\Wildlife Park
[19.02.2010|16:19] C:\Programme\Windows Media Player
[19.02.2010|16:19] C:\Programme\Windows NT
[16.05.2006|09:01] C:\Programme\WindowsUpdate
[21.11.2008|21:27] C:\Programme\WinRAR
[16.05.2006|09:02] C:\Programme\xerox
[23.04.2009|12:57] C:\Programme\Xfire
[24.03.2008|17:20] C:\Programme\Yahoo!
[0|Datei(en)] C:\Programme\Bytes
[168|Verzeichnis(se),] C:\Programme\Bytes frei

--------------------\\ Ordner Verzeichnis unter C:\Programme\Gemeinsame Dateien

[24.02.2009|21:08] C:\Programme\Gemeinsame Dateien\Adobe
[16.05.2006|09:50] C:\Programme\Gemeinsame Dateien\Ahead
[23.07.2007|18:54] C:\Programme\Gemeinsame Dateien\aol
[29.12.2006|16:19] C:\Programme\Gemeinsame Dateien\aolback
[29.12.2006|12:33] C:\Programme\Gemeinsame Dateien\aolshare
[07.04.2009|19:26] C:\Programme\Gemeinsame Dateien\Apple
[04.09.2009|15:54] C:\Programme\Gemeinsame Dateien\Blizzard Entertainment
[16.05.2006|09:01] C:\Programme\Gemeinsame Dateien\Dienste
[20.08.2009|16:17] C:\Programme\Gemeinsame Dateien\DVDVideoSoft
[17.06.2006|19:36] C:\Programme\Gemeinsame Dateien\Hewlett-Packard
[07.10.2009|16:08] C:\Programme\Gemeinsame Dateien\InstallShield
[19.02.2010|14:19] C:\Programme\Gemeinsame Dateien\iS3
[17.06.2006|18:47] C:\Programme\Gemeinsame Dateien\Java
[04.08.2009|18:51] C:\Programme\Gemeinsame Dateien\logishrd
[16.05.2006|09:48] C:\Programme\Gemeinsame Dateien\MAGIX Shared
[22.06.2007|21:28] C:\Programme\Gemeinsame Dateien\Marmiko Shared
[10.01.2010|19:06] C:\Programme\Gemeinsame Dateien\Microsoft Shared
[16.05.2006|09:01] C:\Programme\Gemeinsame Dateien\MSSoap
[18.08.2006|08:15] C:\Programme\Gemeinsame Dateien\Nikon
[28.07.2006|18:42] C:\Programme\Gemeinsame Dateien\NSV
[17.06.2006|18:16] C:\Programme\Gemeinsame Dateien\Nullsoft
[16.05.2006|09:58] C:\Programme\Gemeinsame Dateien\ODBC
[17.06.2006|18:16] C:\Programme\Gemeinsame Dateien\Real
[25.07.2009|11:33] C:\Programme\Gemeinsame Dateien\Skype
[16.05.2006|09:57] C:\Programme\Gemeinsame Dateien\SpeechEngines
[22.06.2007|20:54] C:\Programme\Gemeinsame Dateien\SWF Studio
[19.02.2010|16:19] C:\Programme\Gemeinsame Dateien\System
[13.12.2009|18:04] C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
[0|Datei(en)] C:\Programme\Gemeinsame Dateien\Bytes
[30|Verzeichnis(se),] C:\Programme\Gemeinsame Dateien\Bytes frei

--------------------\\ Process

( 60 Processes )

iexplore.exe ~ [PID:2944]
iexplore.exe ~ [PID:1352]

--------------------\\ Ueberpruefung mit S_Lop

Kein Lop Ordner gefunden !

--------------------\\ Suche nach Lop Dateien - Ordnern

C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\nsk1E.tmp
C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\NSSstub.txt
C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\status.txt
C:\DOKUME~1\HELMUT~1\Cookies\helmut nagel@adultfriendfinder[2].txt
C:\DOKUME~1\HELMUT~1\Cookies\helmut nagel@ero-advertising[2].txt
C:\DOKUME~1\HELMUT~1\Cookies\helmut nagel@partypoker[1].txt

--------------------\\ Suche innerhalb der Registry

..... OK !

--------------------\\ Ueberpruefung der Hosts Datei

Hosts Datei SAUBER

--------------------\\ Suche nach verborgenen Dateien mit Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-21 18:51:33
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Suche nach anderen Infektionen

--------------------\\ Cracks & Keygens ..

C:\DOKUME~1\HELMUT~1\Eigene Dateien\Eigene Musik\iTunes\iTunes Music\Compilations\The Dome, Vol. 49 [Disc 1]\1-14 Crack The Shutters.m4a

[F:19250][D:223]-> C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp
[F:60][D:0]-> C:\DOKUME~1\HELMUT~1\Cookies
[F:682][D:4]-> C:\DOKUME~1\HELMUT~1\LOKALE~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 21.02.2010|11:41 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 21.02.2010|14:53 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 21.02.2010|18:53 - Option : [1]

--------------------\\ Scan beendet um 18:53:51

cosinus · 22.02.2010, 17:04

Hallo und

Bitte diese Liste beachten und abarbeiten. Beim Scan mit MalwareBytes auch alle externen Speicher (ext. Platten, USB-Sticks, ... mit anklemmen!! )

Wichtig für Benutzer mit Windows Vista und Windows 7: Bitte alle Tools per Rechtsklick => Als Admin ausführen!

Die Logfiles kannst Du zB alle in eine Datei zippen und auf File-Upload.net hochladen und hier verlinken, denn 1. sind manche Logfiles fürs Board nämlich zu groß und 2. kann ich mit einem Klick mir gleich alle auf einmal runterladen.

Spieker000 · 23.02.2010, 14:49

Logfile of random's system information tool 1.06 (written by random/random)
Run by Helmut Nagel at 2010-02-23 14:47:42
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 68 GB (28%) free of 238 GB
Total RAM: 2047 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:47:49, on 23.02.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Avira\AntiVir Desktop\sched.exe
C:\Programme\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programme\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Programme\ICQ6Toolbar\ICQ Service.exe
C:\Programme\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\libusbd-nt.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Programme\QuickTime\QTTask.exe
C:\Programme\Gemeinsame Dateien\AOL\1150566148\ee\AOLSoftware.exe
C:\Programme\Java\jre6\bin\jusched.exe
C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\AOLSP Scheduler.exe
C:\Programme\Yahoo!\Search Protection\SearchProtection.exe
C:\Programme\T-Com\Sinus 154 data II\PRISMSVR.EXE
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\SweetIM\Messenger\SweetIM.exe
C:\WINDOWS\odbns.exe
C:\Programme\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\svx.exe
C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programme\Microsoft ActiveSync\WCESCOMM.EXE
C:\Programme\Pando Networks\Media Booster\PMB.exe
C:\Programme\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Programme\AOL 9.0d\aoltray.exe
C:\Programme\T-Com\Sinus 154 data II\TS154USB.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Dokumente und Einstellungen\Helmut Nagel\Lokale Einstellungen\Temporary Internet Files\Content.IE5\6697DIYD\RSIT[1].exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Programme\trend micro\Helmut Nagel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Yahoo! Deutschland
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = eumex.ip;*.local
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Programme\AOL\AOL Toolbar 5.0\aoltb.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,C:\WINDOWS\system32\sdra64.exe,
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Programme\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Programme\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programme\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [HostManager] C:\Programme\Gemeinsame Dateien\AOL\1150566148\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\AOLSP Scheduler.exe"
O4 - HKLM\..\Run: [YSearchProtection] "C:\Programme\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\Programme\T-Com\Sinus 154 data II\PRISMSVR.EXE" /APPLY
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Programme\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [odnex] C:\WINDOWS\odbns.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ctfmon] C:\WINDOWS\ctfmon.exe
O4 - HKLM\..\Run: [lsass] C:\WINDOWS\lsass.exe
O4 - HKLM\..\Run: [netw] C:\WINDOWS\svw.exe
O4 - HKLM\..\Run: [netc] C:\WINDOWS\svc.exe
O4 - HKLM\..\Run: [netx] C:\WINDOWS\svx.exe
O4 - HKLM\..\Run: [povesikah] Rundll32.exe "c:\windows\system32\doluwuhi.dll",a
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [swg] "C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programme\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Programme\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Programme\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [TOY5KNQ8OC] C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\Akr.exe
O4 - HKCU\..\Run: [eventcreatexp.exe] C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\eventcreatexp.exe
O4 - HKCU\..\Run: [Paladin Antivirus] "C:\Programme\Paladin Antivirus\pav.exe" -noscan
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: AOL 9.0 Tray-Symbol.lnk = C:\Programme\AOL 9.0d\aoltray.exe
O4 - Global Startup: T-Com WLAN Manager.lnk = C:\Programme\T-Com\Sinus 154 data II\TS154USB.exe
O8 - Extra context menu item: &AOL Toolbar-Suche - c:\programme\aol\aol toolbar 5.0\resources\de-de\local\search.html
O8 - Extra context menu item: Save YouTube Video as MP3 - res://C:\Programme\Gemeinsame Dateien\DVDVideoSoft\Dll\IEContextMenuY.dll/scriptY2MP3.htm
O9 - Extra button: Mobilen Favoriten erstellen - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Programme\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Programme\Microsoft ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Mobilen Favoriten erstellen... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Programme\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Programme\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Programme\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Programme\ICQ7.0\ICQ.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programme\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programme\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: @c:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @c:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Programme\Messenger\msmsgs.exe
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.9.113.cab
O16 - DPF: {579FC5F5-F9FE-451C-A0DC-2F7FF46F9597} (PTV xVectorMap Plugin 2.0) - http://xvectormap.ptv.de/xvectormap/PTVxVectorMap20.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1165779007218
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game05.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C212D449-8B3C-41F2-BD9A-047BD770550F} (Perparer Class) - http://www.fiaa.eu/OPLauncher.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0FA8AF31-7A02-4C1F-BDE9-76BCE81F149F}: NameServer = 83.149.115.157,4.2.2.1,192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: zidoyowi.dll c:\windows\system32\doluwuhi.dll
O21 - SSODL: libunumav - {39c93d9b-1fd2-4e76-836f-1e02a2cd3c2f} - c:\windows\system32\lolanayo.dll (file missing)
O21 - SSODL: ruhiputur - {0ab62315-07d3-4b7e-aaaa-9b1e064cf8bb} - c:\windows\system32\doluwuhi.dll
O22 - SharedTaskScheduler: gahurihor - {39c93d9b-1fd2-4e76-836f-1e02a2cd3c2f} - c:\windows\system32\lolanayo.dll (file missing)
O22 - SharedTaskScheduler: kupuhivus - {0ab62315-07d3-4b7e-aaaa-9b1e064cf8bb} - c:\windows\system32\doluwuhi.dll
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL Privacy Protection Service (AOLService) - Unknown owner - C:\Programme\Gemeinsame Dateien\AOL\AOL Privacy Protection\\aolserv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - The Firebird Project - C:\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Programme\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe
O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) - LibUsb-Win32 - C:\WINDOWS\system32\libusbd-nt.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programme\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 13746 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Klick-Wartung.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1150569650.job
C:\WINDOWS\tasks\NSSstub.job
C:\WINDOWS\tasks\qsqzunoo.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll [2007-12-18 817936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}]
AOL Toolbar Launcher - C:\Programme\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-22 1086816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\programme\google\googletoolbar3.dll [2007-01-19 2427968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Programme\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-27 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Programme\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Programme\Java\jre6\bin\jp2ssv.dll [2009-12-29 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-12-29 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\programme\google\googletoolbar3.dll [2007-01-19 2427968]
{DE9C389F-3316-41A7-809B-AA305ED9D922} - AOL Toolbar - C:\Programme\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-22 1086816]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll [2007-12-18 817936]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Programme\ICQ6Toolbar\ICQToolBar.dll [2010-01-03 1019128]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Programme\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Programme\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-03-01 577536]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"AOLDialer"=C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLDial.exe [2006-11-17 71216]
"QuickTime Task"=C:\Programme\QuickTime\QTTask.exe [2009-01-05 413696]
"HostManager"=C:\Programme\Gemeinsame Dateien\AOL\1150566148\ee\AOLSoftware.exe [2006-11-17 50736]
"SunJavaUpdateSched"=C:\Programme\Java\jre6\bin\jusched.exe [2009-12-29 149280]
"AOL Spyware Protection"=C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\AOLSP Scheduler.exe [2004-09-23 78960]
"YSearchProtection"=C:\Programme\Yahoo!\Search Protection\SearchProtection.exe [2008-01-10 223984]
"PRISMSVR.EXE"=C:\Programme\T-Com\Sinus 154 data II\PRISMSVR.EXE [2004-04-26 295001]
"Adobe Reader Speed Launcher"=C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"iTunesHelper"=C:\Programme\iTunes\iTunesHelper.exe [2009-04-02 342312]
"NPSStartup"= []
"SweetIM"=C:\Programme\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]
"odnex"=C:\WINDOWS\odbns.exe [2010-02-16 320512]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-02-09 13680640]
"avgnt"=C:\Programme\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"ctfmon"=C:\WINDOWS\ctfmon.exe []
"lsass"=C:\WINDOWS\lsass.exe []
"netw"=C:\WINDOWS\svw.exe [2010-02-21 303104]
"netc"=C:\WINDOWS\svc.exe [2010-02-21 299520]
"netx"=C:\WINDOWS\svx.exe [2010-02-21 297472]
"povesikah"=c:\windows\system32\doluwuhi.dll [1601-01-01 93696]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-06-14 68856]
"H/PC Connection Agent"=C:\Programme\Microsoft ActiveSync\WCESCOMM.EXE [2004-02-09 401491]
"Pando Media Booster"=C:\Programme\Pando Networks\Media Booster\PMB.exe [2009-10-29 2923192]
"AutoStartNPSAgent"=C:\Programme\Samsung\Samsung New PC Studio\NPSAgent.exe [2010-02-03 102400]
"TOY5KNQ8OC"=C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\Akr.exe []
"eventcreatexp.exe"=C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\eventcreatexp.exe []
"Paladin Antivirus"=C:\Programme\Paladin Antivirus\pav.exe -noscan []

C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart
AOL 9.0 Tray-Symbol.lnk - C:\Programme\AOL 9.0d\aoltray.exe
T-Com WLAN Manager.lnk - C:\Programme\T-Com\Sinus 154 data II\TS154USB.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="zidoyowi.dll c:\windows\system32\doluwuhi.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
libunumav - {39c93d9b-1fd2-4e76-836f-1e02a2cd3c2f} - c:\windows\system32\lolanayo.dll []
ruhiputur - {0ab62315-07d3-4b7e-aaaa-9b1e064cf8bb} - c:\windows\system32\doluwuhi.dll [1601-01-01 93696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
gahurihor - {39c93d9b-1fd2-4e76-836f-1e02a2cd3c2f} - c:\windows\system32\lolanayo.dll []
kupuhivus - {0ab62315-07d3-4b7e-aaaa-9b1e064cf8bb} - c:\windows\system32\doluwuhi.dll [1601-01-01 93696]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
loyejosu.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Programme\Gemeinsame Dateien\aol\ACS\AOLacsd.exe"="C:\Programme\Gemeinsame Dateien\aol\ACS\AOLacsd.exe:*:Enabled:AOL"
"C:\Programme\Gemeinsame Dateien\aol\ACS\AOLDial.exe"="C:\Programme\Gemeinsame Dateien\aol\ACS\AOLDial.exe:*:Enabled:AOL"
"C:\Programme\AOL 9.0\waol.exe"="C:\Programme\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Eine DLL-Datei als Anwendung ausführen"
"C:\Programme\Yahoo!\Messenger\YPager.exe"="C:\Programme\Yahoo!\Messenger\YPager.exe:*:Enabled:Yahoo! Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\AOL 9.0a\waol.exe"="C:\Programme\AOL 9.0a\waol.exe:*:Enabled:AOL"
"C:\Programme\AOL 9.0c\waol.exe"="C:\Programme\AOL 9.0c\waol.exe:*:Enabled:AOL"
"C:\Programme\AOL 9.0d\waol.exe"="C:\Programme\AOL 9.0d\waol.exe:*:Enabled:AOL"
"C:\Programme\Microsoft ActiveSync\wcescomm.exe"="C:\Programme\Microsoft ActiveSync\wcescomm.exe:*:Enabled:ActiveSync Connection Manager"
"C:\Programme\Microsoft ActiveSync\WCESMgr.exe"="C:\Programme\Microsoft ActiveSync\WCESMgr.exe:*:Enabled:ActiveSync Application"
"C:\Programme\concept design\onlineTV 3\onlineTV.exe"="C:\Programme\concept design\onlineTV 3\onlineTV.exe:*:Enabled

nlineTV"
"C:\Programme\Gemeinsame Dateien\aol\1150566148\ee\aolsoftware.exe"="C:\Programme\Gemeinsame Dateien\aol\1150566148\ee\aolsoftware.exe:*:Enabled:AOL Services"
"C:\Programme\Steam\SteamApps\spieker000\team fortress 2\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\team fortress 2\hl2.exe:*:Enabled:hl2"
"C:\Programme\Steam\SteamApps\spieker000\counter-strike source\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\Programme\Steam\SteamApps\spieker000\half-life 2 deathmatch\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2"
"C:\Programme\Steam\SteamApps\spieker000\counter-strike\hl.exe"="C:\Programme\Steam\SteamApps\spieker000\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Programme\Steam\SteamApps\spieker000\source sdk base\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\source sdk base\hl2.exe:*

isabled:hl2"
"C:\Dokumente und Einstellungen\Helmut Nagel\Eigene Dateien\SRO_Full-Client_Downloader.exe"="C:\Dokumente und Einstellungen\Helmut Nagel\Eigene Dateien\SRO_Full-Client_Downloader.exe:*:Enabled:Full-Client Downloader"
"C:\Programme\Xfire\Xfire.exe"="C:\Programme\Xfire\Xfire.exe:*:Enabled:Xfire"
"C:\Programme\LucasArts\Star Wars Empire at War\GameData\fpupdate.exe"="C:\Programme\LucasArts\Star Wars Empire at War\GameData\fpupdate.exe:*:Enabled:fpupdate"
"C:\Programme\Steam\SteamApps\spieker000\age of chivalry\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\age of chivalry\hl2.exe:*:Enabled:hl2"
"C:\Programme\Steam\SteamApps\spieker000\synergy\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\synergy\hl2.exe:*:Enabled:hl2"
"C:\Programme\Steam\SteamApps\spieker000\day of defeat source\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\day of defeat source\hl2.exe:*:Enabled:hl2"
"C:\Programme\Steam\SteamApps\spieker000\insurgency\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\insurgency\hl2.exe:*:Enabled:hl2"
"C:\Programme\TmNationsForever\TmForever.exe"="C:\Programme\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Programme\Steam\SteamApps\common\defcon\defcon.exe"="C:\Programme\Steam\SteamApps\common\defcon\defcon.exe:*:Enabled

efcon"
"C:\Programme\Steam\SteamApps\spieker000\stcc demo\STCC_Demo_Steam.exe"="C:\Programme\Steam\SteamApps\spieker000\stcc demo\STCC_Demo_Steam.exe:*:Enabled:RACE 07"
"C:\Programme\Steam\SteamApps\spieker000\race07 demo\RaceDemo_Steam.exe"="C:\Programme\Steam\SteamApps\spieker000\race07 demo\RaceDemo_Steam.exe:*:Enabled:RACE 07"
"C:\Programme\Liquid Entertainment\Battle Realms\Battle_Realms_F.exe"="C:\Programme\Liquid Entertainment\Battle Realms\Battle_Realms_F.exe:*:Enabled:Battle_Realms_F"
"C:\Programme\ICQ6\ICQ.exe"="C:\Programme\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"C:\Programme\Monte Cristo\Fire Department 2\FIRE.EXE"="C:\Programme\Monte Cristo\Fire Department 2\FIRE.EXE:*:Enabled:FIRE"
"C:\Programme\sixteen tons entertainment\Emergency 4\Em4.exe"="C:\Programme\sixteen tons entertainment\Emergency 4\Em4.exe:*:Enabled:Em4"
"C:\Programme\Microsoft Games\Age of Empires\Empires.exe"="C:\Programme\Microsoft Games\Age of Empires\Empires.exe:*:Enabled:Age of Empires"
"C:\Programme\Steam\SteamApps\spieker000\ricochet\hl.exe"="C:\Programme\Steam\SteamApps\spieker000\ricochet\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Programme\Steam\SteamApps\spieker000\source sdk base 2007\hl2.exe"="C:\Programme\Steam\SteamApps\spieker000\source sdk base 2007\hl2.exe:*:Enabled:hl2"
"C:\Programme\Steam\SteamApps\common\buccaneer demo\Buccaneer.exe"="C:\Programme\Steam\SteamApps\common\buccaneer demo\Buccaneer.exe:*:Enabled:Buccaneer: The Pursuit of Infamy Demo"
"C:\Programme\Steam\SteamApps\spieker000\deathmatch classic\hl.exe"="C:\Programme\Steam\SteamApps\spieker000\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Programme\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Programme\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Programme\Steam\SteamApps\spieker000\race 07\Race_Steam.exe"="C:\Programme\Steam\SteamApps\spieker000\race 07\Race_Steam.exe:*:Enabled:RACE 07"
"C:\Programme\TeamViewer\Version4\TeamViewer.exe"="C:\Programme\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"C:\Programme\Act of War - Direct Action Demo\actofwar.exe"="C:\Programme\Act of War - Direct Action Demo\actofwar.exe:*:Enabled:actofwar"
"C:\Programme\Bonjour\mDNSResponder.exe"="C:\Programme\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Programme\iTunes\iTunes.exe"="C:\Programme\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Programme\alaplaya\S4League\S4Client.exe"="C:\Programme\alaplaya\S4League\S4Client.exe:*:Enabled:Project S4 Client.exe"
"C:\Dokumente und Einstellungen\Helmut Nagel\Lokale Einstellungen\Temp\Rar$EX12.9468\teeworlds-0.5.1-win32\teeworlds_srv.exe"="C:\Dokumente und Einstellungen\Helmut Nagel\Lokale Einstellungen\Temp\Rar$EX12.9468\teeworlds-0.5.1-win32\teeworlds_srv.exe:*:Enabled:teeworlds_srv"
"C:\Programme\ECSRO\SilkErrSender.exe"="C:\Programme\ECSRO\SilkErrSender.exe:*:Enabled:FTPSender MFC ?? ????"
"C:\Programme\ICQ6.5\ICQ.exe"="C:\Programme\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Programme\SimBin\GTR 2\GTR2.exe"="C:\Programme\SimBin\GTR 2\GTR2.exe:*:Enabled:GTR2 - FIA GT Racing Game"
"C:\Programme\Firefly Studios\Stronghold 2-Demo\Stronghold2Demo.exe"="C:\Programme\Firefly Studios\Stronghold 2-Demo\Stronghold2Demo.exe:*:Enabled:Stronghold2Demo"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Programme\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Programme\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Dokumente und Einstellungen\Helmut Nagel\temp\TeamViewer\Version4\TeamViewer.exe"="C:\Dokumente und Einstellungen\Helmut Nagel\temp\TeamViewer\Version4\TeamViewer.exe:*:Enabled:TeamViewer Remote Control Application"
"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonUS\NGM\NGM.exe"="C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonUS\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Download er_Engine"
"C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonEU\NGM\NGM.exe"="C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"C:\Nexon\Combat Arms EU\NMService.exe"="C:\Nexon\Combat Arms EU\NMService.exe:*:Enabled:Nexon Messenger Core"
"C:\Programme\Steam\SteamApps\common\trackmania nations forever\TmForever.exe"="C:\Programme\Steam\SteamApps\common\trackmania nations forever\TmForever.exe:*:Enabled:TrackMania Nations Forever"
"C:\Programme\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe"="C:\Programme\Steam\SteamApps\common\trackmania nations forever\TmForeverLauncher.exe:*:Enabled:TrackMania Nations Forever"
"C:\Programme\Steam\SteamApps\spieker010\stcc demo\STCC_Demo_Steam.exe"="C:\Programme\Steam\SteamApps\spieker010\stcc demo\STCC_Demo_Steam.exe:*:Enabled:STCC - The Game - Demo"
"C:\Programme\Steam\SteamApps\spieker010\stcc demo\Config.exe"="C:\Programme\Steam\SteamApps\spieker010\stcc demo\Config.exe:*:Enabled:STCC - The Game - Demo"
"C:\Programme\Steam\SteamApps\common\order of war - demo\oow_final.bin"="C:\Programme\Steam\SteamApps\common\order of war - demo\oow_final.bin:*:Enabled:Thu Jul 23 06:02:39 2009"
"C:\Programme\Messenger\Msmsgs.exe"="C:\Programme\Messenger\Msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Programme\World of Warcraft\WoW-3.2.0-deDE-downloader.exe"="C:\Programme\World of Warcraft\WoW-3.2.0-deDE-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Programme\World of Warcraft\Launcher.exe"="C:\Programme\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Programme\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-deDE-downloader.exe"="C:\Programme\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-deDE-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Programme\World of Warcraft\Repair.exe"="C:\Programme\World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\Programme\Steam\SteamApps\_spieker000_\counter-strike source\hl2.exe"="C:\Programme\Steam\SteamApps\_spieker000_\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\Programme\Starship Combat and Tactics Simulator\scts.exe"="C:\Programme\Starship Combat and Tactics Simulator\scts.exe:*:Enabled:scts"
"C:\Programme\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-deDE-downloader.exe"="C:\Programme\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-deDE-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Programme\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-deDE-downloader.exe"="C:\Programme\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-deDE-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Programme\Steam\SteamApps\_spieker000_\race on - demo\RaceOn_Demo_Steam.exe"="C:\Programme\Steam\SteamApps\_spieker000_\race on - demo\RaceOn_Demo_Steam.exe:*:Enabled:RACE On - DEMO"
"C:\Programme\Steam\SteamApps\_spieker000_\race on - demo\Config.exe"="C:\Programme\Steam\SteamApps\_spieker000_\race on - demo\Config.exe:*:Enabled:RACE On - DEMO"
"C:\Programme\Steam\SteamApps\_spieker000_\day of defeat source\hl2.exe"="C:\Programme\Steam\SteamApps\_spieker000_\day of defeat source\hl2.exe:*:Enabled:hl2"
"C:\Programme\Pando Networks\Media Booster\PMB.exe"="C:\Programme\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"C:\Programme\Paradox Interactive\Supreme Ruler 2020 Gold Demo\SupremeRuler2020GCDemo.exe"="C:\Programme\Paradox Interactive\Supreme Ruler 2020 Gold Demo\SupremeRuler2020GCDemo.exe:*:Enabled:Supreme Ruler 2020 Gold Demo"
"C:\Programme\Steam\SteamApps\common\left 4 dead 2 demo\left4dead2.exe"="C:\Programme\Steam\SteamApps\common\left 4 dead 2 demo\left4dead2.exe:*:Enabled:left4dead2"
"C:\Programme\Truck_Racing_By_Renault_Trucks\Bin\RTR.exe"="C:\Programme\Truck_Racing_By_Renault_Trucks\Bin\RTR.exe:*:Enabled:Truck Racing by Renault Trucks"
"C:\Programme\Valusoft\18 Wheels of Steel - Across America\prism3d.exe"="C:\Programme\Valusoft\18 Wheels of Steel - Across America\prism3d.exe:*:Enabled

rism3d"
"C:\Programme\Steam\SteamApps\common\dirt 2 - demo\dirt2.exe"="C:\Programme\Steam\SteamApps\common\dirt 2 - demo\dirt2.exe:*:Enabled

iRT 2 - Demo"
"C:\Programme\Firaxis Games\Sid Meier's Civilization 4 Demo\Civilization4.exe"="C:\Programme\Firaxis Games\Sid Meier's Civilization 4 Demo\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4 Demo"
"C:\Programme\Activision\Star Trek Elite Force II Single Player Demo\EF2.exe"="C:\Programme\Activision\Star Trek Elite Force II Single Player Demo\EF2.exe:*:Enabled:Elite Force II"
"C:\Programme\LucasArts\Star Wars Empire at War Forces of Corruption\swfoc.exe"="C:\Programme\LucasArts\Star Wars Empire at War Forces of Corruption\swfoc.exe:*:Enabled:Star Wars(TM): Empire at War(TM): Forces of Corruption(TM)"
"C:\Programme\EA GAMES\Battlefield 2 Demo\BF2.exe"="C:\Programme\EA GAMES\Battlefield 2 Demo\BF2.exe:*:Enabled:Battlefield 2"
"C:\Programme\Ubisoft\Tom Clancy's Splinter Cell Chaos Theory\System\splintercell3.exe"="C:\Programme\Ubisoft\Tom Clancy's Splinter Cell Chaos Theory\System\splintercell3.exe:*:Enabled:splintercell3"
"C:\Programme\Codemasters\OF Dragon Rising Demo\OFDR Demo.exe"="C:\Programme\Codemasters\OF Dragon Rising Demo\OFDR Demo.exe:*:Enabled:OF Dragon Rising Demo"
"C:\Programme\Steam\Steam.exe"="C:\Programme\Steam\Steam.exe:*:Enabled:Steam 732897"
"C:\Programme\Steam\SteamApps\_spieker000_\eternal-silence\hl2.exe"="C:\Programme\Steam\SteamApps\_spieker000_\eternal-silence\hl2.exe:*

isabled:hl2"
"C:\Programme\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Programme\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Programme\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Programme\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Programme\Codemasters\DiRT2 Demo\dirt2.exe"="C:\Programme\Codemasters\DiRT2 Demo\dirt2.exe:*:Enabled

iRT2 Demo"
"C:\Programme\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe"="C:\Programme\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2"
"C:\Programme\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe"="C:\Programme\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer"
"C:\Programme\Paradox Interactive\East India Company Demo\eastindia.exe"="C:\Programme\Paradox Interactive\East India Company Demo\eastindia.exe:*:Enabled:East India Company Demo"
"C:\Programme\ICQ7.0\ICQ.exe"="C:\Programme\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Programme\ICQ7.0\aolload.exe"="C:\Programme\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"
"C:\Programme\Steam\SteamApps\_spieker000_\half-life 2 deathmatch\hl2.exe"="C:\Programme\Steam\SteamApps\_spieker000_\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Programme\Gemeinsame Dateien\aol\ACS\AOLacsd.exe"="C:\Programme\Gemeinsame Dateien\aol\ACS\AOLacsd.exe:*:Enabled:AOL"
"C:\Programme\Gemeinsame Dateien\aol\ACS\AOLDial.exe"="C:\Programme\Gemeinsame Dateien\aol\ACS\AOLDial.exe:*:Enabled:AOL"
"C:\Programme\AOL 9.0\waol.exe"="C:\Programme\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programme\concept design\onlineTV 3\onlineTV.exe"="C:\Programme\concept design\onlineTV 3\onlineTV.exe:*:Enabled

nlineTV"
"C:\Programme\ICQ7.0\ICQ.exe"="C:\Programme\ICQ7.0\ICQ.exe:*:Enabled:ICQ7"
"C:\Programme\ICQ7.0\aolload.exe"="C:\Programme\ICQ7.0\aolload.exe:*:Enabled:aolload.exe"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{07e8c066-e200-11dc-8879-0015f2f25afd}]
shell\AutoRun\command - J:\preinst.exe

======List of files/folders created in the last 1 months======

2010-02-23 14:47:42 ----D---- C:\Programme\trend micro
2010-02-23 14:47:41 ----D---- C:\rsit
2010-02-23 14:43:01 ----D---- C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\Malwarebytes
2010-02-23 14:42:54 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes
2010-02-23 14:42:53 ----D---- C:\Programme\Malwarebytes' Anti-Malware
2010-02-21 14:54:26 ----D---- C:\Programme\CCleaner
2010-02-21 14:52:43 ----SH---- C:\WINDOWS\system32\bubeguto.dll
2010-02-21 13:49:46 ----A---- C:\WINDOWS\svx.exe
2010-02-21 11:38:09 ----A---- C:\lopR.txt
2010-02-21 11:37:42 ----D---- C:\Lop SD
2010-02-21 11:11:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-02-21 11:10:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-02-21 11:10:51 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-02-20 17:28:24 ----A---- C:\WINDOWS\svw.exe
2010-02-20 17:28:24 ----A---- C:\WINDOWS\svc.exe
2010-02-19 19:43:12 ----D---- C:\sh4ldr
2010-02-19 19:42:17 ----D---- C:\Programme\Enigma Software Group
2010-02-19 16:24:48 ----D---- C:\WINDOWS\Prefetch
2010-02-19 15:30:45 ----D---- C:\Programme\Avira
2010-02-19 15:30:45 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Avira
2010-02-19 14:38:03 ----D---- C:\Programme\Paladin Antivirus
2010-02-19 14:26:21 ----A---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\_VOIDkrl32mainweq.dll
2010-02-19 14:25:23 ----A---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\_VOIDmainqt.dll
2010-02-19 14:20:07 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SITEguard
2010-02-19 14:19:21 ----D---- C:\Programme\Gemeinsame Dateien\iS3
2010-02-19 14:19:19 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\STOPzilla!
2010-02-19 14:14:24 ----A---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\fiosejgfse.dll
2010-02-19 14:01:43 ----A---- C:\WINDOWS\system32\_VOIDnkvxdulpux.dll
2010-02-18 17:04:17 ----D---- C:\~ErdUserProfile.$$$
2010-02-16 17:46:02 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-02-16 17:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$
2010-02-16 17:45:40 ----HDC---- C:\WINDOWS\$NtUninstallKB978207$
2010-02-16 17:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-02-16 17:45:27 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-02-16 17:45:17 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$
2010-02-16 17:45:05 ----HDC---- C:\WINDOWS\$NtUninstallKB976749$
2010-02-16 17:44:58 ----HDC---- C:\WINDOWS\$NtUninstallKB976325$
2010-02-16 17:44:50 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-02-16 17:44:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-02-16 17:44:33 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-02-16 17:44:25 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-02-16 17:44:19 ----HDC---- C:\WINDOWS\$NtUninstallKB974455$
2010-02-16 17:44:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-02-16 17:43:54 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-02-16 17:43:41 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-02-16 17:43:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-02-16 17:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-02-16 17:43:09 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-02-16 17:42:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-02-16 17:42:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-02-16 17:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-02-16 17:42:24 ----HDC---- C:\WINDOWS\$NtUninstallKB972260$
2010-02-16 17:42:15 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-02-16 17:42:05 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-02-16 17:41:55 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2010-02-16 17:41:48 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2010-02-16 17:41:38 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2010-02-16 17:41:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-02-16 17:41:15 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-02-16 17:41:08 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-02-16 17:41:00 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-02-16 17:40:50 ----HDC---- C:\WINDOWS\$NtUninstallKB969897$
2010-02-16 17:40:37 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-02-16 17:40:30 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2010-02-16 17:40:21 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-02-16 17:40:12 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-02-16 17:39:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978207_1$
2010-02-16 17:39:41 ----HDC---- C:\WINDOWS\$NtUninstallKB963027$
2010-02-16 17:39:32 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-02-16 17:39:23 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2010-02-16 17:39:17 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
2010-02-16 17:39:02 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-02-16 17:38:55 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-02-16 17:38:42 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-02-16 17:38:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2010-02-16 17:38:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-02-16 17:38:20 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-02-16 17:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2010-02-16 17:38:03 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2010-02-16 17:37:57 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-02-16 17:37:46 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2010-02-16 17:37:37 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2010-02-16 17:37:28 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2010-02-16 17:37:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-02-16 17:37:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2010-02-16 17:37:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-02-16 17:36:48 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-02-16 17:36:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-02-16 17:36:16 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$
2010-02-16 17:36:05 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-02-16 17:35:58 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2010-02-16 17:35:52 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-02-16 17:35:41 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_1$
2010-02-16 17:35:35 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2010-02-16 17:35:28 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2010-02-16 17:35:17 ----HDC---- C:\WINDOWS\$NtUninstallKB953838$
2010-02-16 17:35:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-02-16 17:34:59 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-02-16 17:34:51 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-02-16 17:34:42 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-02-16 17:34:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2010-02-16 17:34:22 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-02-16 17:34:12 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2010-02-16 17:34:03 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-02-16 17:33:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-02-16 17:33:40 ----HDC---- C:\WINDOWS\$NtUninstallKB950759$
2010-02-16 17:33:34 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2010-02-16 17:33:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-02-16 17:29:59 ----D---- C:\WINDOWS\system32\de
2010-02-16 17:29:59 ----D---- C:\WINDOWS\l2schemas
2010-02-16 17:29:58 ----D---- C:\WINDOWS\system32\bits
2010-02-16 17:20:01 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-02-16 17:19:59 ----D---- C:\WINDOWS\EHome
2010-02-16 16:17:19 ----A---- C:\WINDOWS\odbns.exe
2010-02-14 12:17:24 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AOL Downloads
2010-02-13 17:58:33 ----SHD---- C:\WINDOWS\system32\lowsec
2010-02-11 10:26:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$
2010-02-11 10:25:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$
2010-02-11 10:21:51 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2010-02-11 10:21:45 ----HDC---- C:\WINDOWS\$NtUninstallKB978251_0$
2010-02-11 10:21:36 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$
2010-02-11 10:21:26 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$
2010-02-11 10:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$
2010-02-11 10:20:54 ----HDC---- C:\WINDOWS\$NtUninstallKB977165_0$
2010-02-10 15:53:59 ----D---- C:\Programme\ICQ7.0
2010-02-04 19:47:15 ----D---- C:\Programme\1C Company
2010-02-04 18:03:07 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Codemasters
2010-02-04 17:37:36 ----D---- C:\WINDOWS\system32\xlive
2010-02-04 17:37:36 ----D---- C:\Programme\Microsoft Games for Windows - LIVE
2010-02-04 17:37:08 ----RA---- C:\WINDOWS\system32\tmpB6.tmp
2010-02-04 17:37:08 ----RA---- C:\WINDOWS\system32\tmpB5.tmp
2010-02-03 22:42:35 ----D---- C:\Programme\Atari
2010-02-03 17:18:44 ----D---- C:\Programme\RTL Biathlon 2008 (Demo)
2010-02-03 13:26:42 ----D---- C:\Programme\MarkAnyContentSAFER
2010-02-03 13:00:08 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\PC Suite
2010-02-03 13:00:07 ----D---- C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\PC Suite
2010-02-03 12:59:54 ----A---- C:\WINDOWS\ModemLog_SAMSUNG USB Mobile Modem.txt
2010-02-03 12:56:29 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2010-02-02 16:24:17 ----D---- C:\Programme\Skispringen 2006 Demo
2010-01-30 14:10:03 ----D---- C:\Programme\German Truck Simulator
2010-01-29 21:05:10 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\RTL Winter Sports 2008
2010-01-29 21:04:17 ----D---- C:\Programme\RTL Winter Sports 2008 (Demo)
2010-01-29 16:14:28 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\RTL Winter Sports 2009
2010-01-29 16:13:25 ----D---- C:\Programme\RTL Winter Sports 2009 (Demo)
2010-01-29 13:16:42 ----D---- C:\Programme\SpaceShuttleMission2007DEMO

======List of files/folders modified in the last 1 months======

2017-05-03 23:01:00 ----A---- C:\WINDOWS\WAVEMIX.INI
2017-05-03 23:01:00 ----A---- C:\WINDOWS\LLATSNI.EXE
2010-02-23 14:47:42 ----AD---- C:\Programme
2010-02-23 14:46:09 ----D---- C:\WINDOWS\system32\drivers
2010-02-23 14:32:36 ----D---- C:\WINDOWS\Temp
2010-02-23 14:24:52 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-23 14:24:22 ----D---- C:\WINDOWS\Minidump
2010-02-23 14:24:22 ----D---- C:\WINDOWS
2010-02-23 14:24:16 ----D---- C:\WINDOWS\system32
2010-02-23 14:18:14 ----SD---- C:\WINDOWS\Tasks
2010-02-22 17:02:02 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-22 14:24:34 ----D---- C:\WINDOWS\system32\FxsTmp
2010-02-22 14:16:41 ----D---- C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\Skype
2010-02-22 13:48:48 ----D---- C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\skypePM
2010-02-21 17:51:58 ----D---- C:\Programme\Mozilla Firefox
2010-02-21 17:51:51 ----D---- C:\WINDOWS\Debug
2010-02-21 11:11:12 ----HD---- C:\WINDOWS\inf
2010-02-21 11:11:10 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-21 11:10:50 ----HD---- C:\WINDOWS\$hf_mig$
2010-02-21 11:10:38 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-02-20 10:01:58 ----SHD---- C:\WINDOWS\Installer
2010-02-20 10:01:57 ----D---- C:\Programme\Ask.com
2010-02-20 10:01:39 ----D---- C:\Config.Msi
2010-02-19 19:51:54 ----D---- C:\WINDOWS\system32\CatRoot
2010-02-19 19:36:19 ----A---- C:\WINDOWS\win.ini
2010-02-19 16:47:23 ----D---- C:\WINDOWS\system32\wbem
2010-02-19 16:47:23 ----D---- C:\WINDOWS\AppPatch
2010-02-19 16:44:47 ----D---- C:\Programme\Outlook Express
2010-02-19 16:39:28 ----D---- C:\WINDOWS\WinSxS
2010-02-19 16:24:15 ----D---- C:\WINDOWS\system32\Setup
2010-02-19 16:24:15 ----D---- C:\Programme\Internet Explorer
2010-02-19 16:24:14 ----RSD---- C:\WINDOWS\Fonts
2010-02-19 16:23:30 ----D---- C:\WINDOWS\security
2010-02-19 16:21:08 ----D---- C:\WINDOWS\network diagnostic
2010-02-19 16:21:08 ----D---- C:\WINDOWS\ime
2010-02-19 16:21:03 ----D---- C:\WINDOWS\system32\usmt
2010-02-19 16:21:02 ----D---- C:\WINDOWS\PeerNet
2010-02-19 16:21:02 ----D---- C:\Programme\Movie Maker
2010-02-19 16:19:28 ----D---- C:\WINDOWS\system32\Restore
2010-02-19 16:19:28 ----D---- C:\WINDOWS\system32\npp
2010-02-19 16:19:28 ----D---- C:\WINDOWS\msagent
2010-02-19 16:19:27 ----D---- C:\WINDOWS\srchasst
2010-02-19 16:19:26 ----D---- C:\Programme\NetMeeting
2010-02-19 16:19:25 ----D---- C:\WINDOWS\system32\Com
2010-02-19 16:19:23 ----D---- C:\Programme\Windows NT
2010-02-19 16:19:23 ----D---- C:\Programme\Windows Media Player
2010-02-19 16:19:21 ----D---- C:\WINDOWS\Help
2010-02-19 16:19:21 ----D---- C:\Programme\Gemeinsame Dateien\System
2010-02-19 16:19:10 ----AD---- C:\WINDOWS\system32\oobe
2010-02-19 16:19:09 ----D---- C:\WINDOWS\system
2010-02-19 14:19:21 ----D---- C:\Programme\Gemeinsame Dateien
2010-02-16 17:30:15 ----D---- C:\Programme\Messenger
2010-02-16 17:30:00 ----D---- C:\WINDOWS\system32\de-de
2010-02-16 17:26:29 ----D---- C:\WINDOWS\ServicePackFiles
2010-02-14 20:19:02 ----D---- C:\Programme\Smart MX ToolBox v1.1!
2010-02-13 16:14:29 ----D---- C:\Programme\Steam
2010-02-11 10:13:32 ----D---- C:\Programme\ICQ6Toolbar
2010-02-10 18:15:02 ----D---- C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\ICQ
2010-02-10 16:02:56 ----D---- C:\Programme\SweetIM
2010-02-10 16:02:56 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SweetIM
2010-02-10 15:58:43 ----HD---- C:\Programme\InstallShield Installation Information
2010-02-10 15:58:28 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ICQ
2010-02-05 22:06:00 ----RSD---- C:\WINDOWS\assembly
2010-02-05 22:05:39 ----D---- C:\WINDOWS\system32\DirectX
2010-02-05 22:01:47 ----D---- C:\Programme\Paradox Interactive
2010-02-04 17:38:07 ----D---- C:\Programme\BRS
2010-02-04 17:37:36 ----SD---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft
2010-02-04 17:37:08 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2010-02-04 17:37:08 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2010-02-04 17:33:01 ----D---- C:\Programme\Codemasters
2010-02-03 14:44:25 ----D---- C:\Programme\ICQ6.5
2010-02-03 13:26:46 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-02-03 12:56:29 ----D---- C:\Programme\Samsung
2010-02-03 12:56:26 ----D---- C:\Programme\DIFX
2010-02-03 12:56:21 ----D---- C:\Programme\PC Connectivity Solution
2010-02-03 12:56:13 ----D---- C:\WINDOWS\system32\Samsung_USB_Drivers
2010-02-03 12:55:47 ----D---- C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\Samsung
2010-02-02 15:25:08 ----D---- C:\Programme\Gratuitous Space Battles Demo
2010-01-29 16:14:15 ----D---- C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\ProtectDisc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2006-06-17 82380]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 avgio;avgio; \??\C:\Programme\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 kbdhid;Tastatur-HID-Treiber; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 acedrv11;acedrv11; \??\C:\WINDOWS\system32\drivers\acedrv11.sys []
R2 ASCTRM;ASCTRM; C:\WINDOWS\system32\drivers\ASCTRM.sys [2006-06-17 8552]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-07-31 278728]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-11-25 56816]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-07-31 25416]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2008-08-23 15781]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-03-20 3960000]
R3 Arp1394;1394-ARP-Clientprotokoll; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 DT154_A02;Sinus 154 data II Driver; C:\WINDOWS\system32\DRIVERS\TS154USB.sys [2004-06-02 379264]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 HidUsb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1; C:\WINDOWS\system32\drivers\libusb0.sys [2005-03-09 33792]
R3 mouhid;Maus-HID-Treiber; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-18 12288]
R3 NIC1394;1394-Netzwerktreiber; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-02-09 6307328]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-09-30 13056]
R3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Miniporttreiber für erweiterten Microsoft USB 2.0-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2-aktivierter Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Miniporttreiber für Microsoft USB Open Host-Controller; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
S3 AN983;ADMtek AN983/AN985/ADM951X-10/100-MBit/s-Fast Ethernet-Adapter; C:\WINDOWS\system32\DRIVERS\AN983.sys [2004-08-03 36224]
S3 AVMUNET;Eumex 300 IP; C:\WINDOWS\system32\DRIVERS\avmunet.sys [2005-03-02 15104]
S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dtwmnic5;Telekom Eumex 604PC HomeNet; C:\WINDOWS\system32\DRIVERS\dtwmnic5.sys []
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2003-03-09 51024]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2003-03-09 16080]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2003-03-09 21456]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-09-30 34048]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561AV.SYS [2009-04-30 495768]
S3 PnkBstrK;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-04 5888]
S3 Ser2pl;SIEMENS Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2003-05-07 41472]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Microsoft USB-Druckerklasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB-Scannertreiber; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2003-12-22 104064]
S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Planer; C:\Programme\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Programme\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 AOL ACS;AOL Connectivity Service; C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe [2006-10-23 46640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
R2 Bonjour Service;Bonjour-Dienst; C:\Programme\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 ICQ Service;ICQ Service; C:\Programme\ICQ6Toolbar\ICQ Service.exe [2010-01-03 246520]
R2 JavaQuickStarterService;Java Quick Starter; C:\Programme\Java\jre6\bin\jqs.exe [2009-12-29 153376]
R2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1; C:\WINDOWS\system32\libusbd-nt.exe [2005-03-09 18944]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-02-09 163908]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-23 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-08-08 201816]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 UxTuneUp;TuneUp Designerweiterung; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R3 iPod Service;iPod-Dienst; C:\Programme\iPod\bin\iPodService.exe [2009-04-02 656168]
S2 AOLService;AOL Privacy Protection Service; C:\Programme\Gemeinsame Dateien\AOL\AOL Privacy Protection\\aolserv.exe [2004-10-11 49152]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\MAGIX\Common\Database\bin\fbserver.exe [2005-08-10 1527900]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-02-26 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2003-03-09 65795]
S3 ServiceLayer;ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Spieker000 · 23.02.2010, 14:51

info.txt logfile of random's system information tool 1.06 2010-02-23 14:47:54

======Uninstall list======

-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
-->C:\WINDOWS\IsUn0407.exe -fC:\WINDOWS\orun32.isu
-->MsiExec /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
18 Wheels of Steel - Across America-->C:\PROGRA~1\Valusoft\18WHEE~1\UNWISE.EXE C:\PROGRA~1\Valusoft\18WHEE~1\INSTALL.LOG
18 Wheels of Steel Extreme Trucker-->"C:\Programme\InstallShield Installation Information\{30ED44CB-7314-4C6E-800C-C4BADDE67D8A}\setup.exe" -runfromtemp -l0x0007 -removeonly
1944 - Winterschlacht in den Ardennen-->C:\Programme\Monte Cristo\1944 Winterschlacht in den Ardennen\uninst.exe
Act 3d Silex Screensaver-->C:\Programme\Act 3d\Silex Screensaver\uninstall.exe
Act of War - Direct Action Demo-->MsiExec.exe /X{6217F843-857A-4EF7-AF1A-7CF2B7664E02}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.3 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A81300000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
ANSTOSS 4-->"C:\Programme\ASCARON Entertainment\ANSTOSS 4\unins000.exe"
Anstoss action-->"C:\Programme\ASCARON Entertainment\ANSTOSS action\unins000.exe"
AOL Coach Version 1.0(Build:20040229.1 de)-->"C:\Programme\Gemeinsame Dateien\aolshare\Coach\AolCInUn.exe" -lang="de-de"
AOL Deinstallation-->C:\Programme\Gemeinsame Dateien\AOL\uninstaller.exe
AOL Meine Fotos Bildschirmschoner-->C:\Programme\Gemeinsame Dateien\AOL\Screensaver\uninst_ygpss.exe
AOL Privacy Protection-->C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\UNWISE.EXE C:\PROGRA~1\GEMEIN~1\aol\AOLPRI~1\INSTALL.LOG
AOL Toolbar 5.0-->"C:\Programme\AOL\AOL Toolbar 5.0\uninstall.exe"
Apple Mobile Device Support-->MsiExec.exe /I{AFA20D47-69C3-4030-8DF8-D37466E70F13}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ArcSoft Panorama Maker 3.0-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{1CABB679-3958-44AA-BFFF-4E68A2684255}\Setup.exe" -l0x7 -uninst
Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Avira AntiVir Personal - Free Antivirus-->C:\Programme\Avira\AntiVir Desktop\setup.exe /REMOVE
Battle Realms-->MsiExec.exe /I{9AA761E6-CA51-4FF2-A552-D51638BF0595}
Battlefield 2(TM) Demo-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{8BECF123-B0EF-4E51-B7F3-923EFE15CC4A}\setup.exe" -l0x9 -removeonly
Battlestar Galactica: The Colonial Wars-->C:\PROGRA~1\LUCASA~1\STARWA~1\GameData\UNWISE.EXE C:\PROGRA~1\LUCASA~1\STARWA~1\GameData\INSTALL.LOG
Battlestar Galatica: Colonial Wars Minimod-->C:\PROGRA~1\LUCASA~1\STARWA~1\UNWISE.EXE C:\PROGRA~1\LUCASA~1\STARWA~1\INSTALL.LOG
Battlestations: Pacific Demo-->MsiExec.exe /I{A1F649A2-F97D-4BC8-97B1-E61664F00F42}
Biathlon 2009 (Demo)-->"C:\Programme\Biathlon 2009 (Demo)\Uninstall.exe"
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Buccaneer: The Pursuit of Infamy Demo-->"C:\Programme\Steam\steam.exe" steam://uninstall/23110
Bus-Simulator 2008 Demo-->"C:\Programme\Bus-Simulator 2008 Demo\unins000.exe"
Call of Duty(R) 2-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374}
Call of Duty: Modern Warfare 2 - Multiplayer-->"C:\Programme\Steam\steam.exe" steam://uninstall/10190
Call of Duty: Modern Warfare 2-->"C:\Programme\Steam\steam.exe" steam://uninstall/10180
CCleaner-->"C:\Programme\CCleaner\uninst.exe"
Cobra 11 - Highway Nights Demo (remove only)-->"C:\Programme\Cobra 11 - Highway Nights Demo\Uninstall.exe"
Coffee Tycoon (remove only)-->"C:\Programme\Coffee Tycoon\Uninstall.exe"
Counter-Strike: Source-->MsiExec.exe /I{9580813D-94B1-4C28-9426-A441E2BB29A5}
Counter-Strike-->"C:\Programme\Steam\steam.exe" steam://uninstall/10
Cross Racing Championship 2005 Demo-->C:\Programme\Invictus Games\Cross Racing Championship 2005 Demo\uninstall.exe
Dachser Global Player-->C:\PROGRA~1\DACHSE~1\UNWISE.EXE C:\PROGRA~1\DACHSE~1\INSTALL.LOG
Deathmatch Classic-->"C:\Programme\Steam\steam.exe" steam://uninstall/40
Désinstaller SAS-->"C:\Programme\NiProD\[BETA-TEST]Sas\uninstall.exe"
DEUTSCHLAND SPIELT GAME CENTER-->"C:\Programme\OXXOGames\GPlayer\\MyInstall.exe" UInstAllGPAndDS
Die Römer - DEMO-->C:\Programme\Die Römer - DEMO\Uninstall\uninstall.exe /C "/U:C:\Programme\Die Römer - DEMO\Uninstall\uninstall.xml"
DiRT 2 - Demo-->"C:\Programme\Steam\steam.exe" steam://uninstall/44300
DiRT2 Demo-->"C:\Programme\InstallShield Installation Information\{AE04B8FC-4CD9-4A94-BE8F-C2434470FB11}\setup.exe" -runfromtemp -l0x0007 -removeonly
Download Manager 2.3.9-->C:\Programme\Download Manager\uninst.exe
East India Company Demo-->"C:\Programme\Paradox Interactive\East India Company Demo\unins000.exe"
EAWMapEditor-->MsiExec.exe /I{ECB4D56B-E365-4922-AC0F-70CF770443A3}
EMEA02-->MsiExec.exe /X{949460AD-3C77-44FD-8D78-BF605EF28114}
Emergency 4-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{80AE0E0A-5579-4015-9C1A-35F2F2CE5673}\setup.exe" -l0x7
Empire Earth II-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{DF315348-721C-40B8-BAE2-58C6C7D935A2}\setup.exe" -l0x7 -removeonly
Eternal Silence-->"C:\Programme\Steam\steam.exe" steam://uninstall/17550
Euro Truck Simulator 1.3-->C:\Programme\Euro Truck Simulator\uninst.exe
Euro Truck Simulator 30 Minuten Demo (entfernen)-->"C:\Programme\Euro Truck Simulator 30 Minuten Demo\Uninstall.exe"
F1 2007 pour GTR2 v1.15-->C:\Programme\SimBin\GTR 2\Uninstal mod F1 2007 pour GTR2.exe
Fahr-Simulator 2009 Demo-->"C:\Dokumente und Einstellungen\Helmut Nagel\Anwendungsdaten\astragon Software GmbH\Fahr-Simulator 2009\unins000.exe"
Firebird SQL Server (D)-->C:\MAGIX\Common\Database\uninstall.exe
FotoStation Easy-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{67DD948A-974D-41B7-9723-036BCFA45232}\Setup.exe"
Free YouTube to Mp3 Converter version 3.2-->"C:\Programme\DVDVideoSoft\Free YouTube to Mp3 Converter\unins000.exe"
gamedata-->c:\programme\petroglyph\empire at war\uninstall.exe
GamesBar 1.1.0.5-->C:\Programme\GamesBar\uninst.exe
GameShadow-->MsiExec.exe /I{EBB11C78-68A6-42D7-84FC-517F9DBF9D55}
GameSpy Arcade-->C:\PROGRA~1\GAMESP~1\UNWISE.EXE C:\PROGRA~1\GAMESP~1\INSTALL.LOG
Genius Biologie Demoversion (remove only)-->C:\Programme\Cornelsen\Genius Biologie Demoversion\Uninstall.exe
German Truck Simulator 1.00-->C:\Programme\German Truck Simulator\uninst.exe
German Truck Simulator Demo (entfernen)-->"C:\Programme\German Truck Simulator Demo\Uninstall.exe"
Google Desktop Search-->C:\Programme\Google\Google Desktop Search\GoogleDesktopSearchSetup.exe -uninstall
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\programme\google\googletoolbar3.dll"
Grand Theft Auto San Andreas-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{086BADF8-9B1F-4E89-B207-2EDA520972D6}\setup.exe" -l0x7 -removeonly
Gratuitous Space Battles Demo-->"C:\Programme\Gratuitous Space Battles Demo\unins000.exe"
GTR 2-->"C:\Programme\SimBin\GTR 2\Uninstall\unins000.exe"
GTR Evolution-->"C:\Programme\SimBin\GTR Evolution Offline\Uninstall\unins000.exe"
GTR2 Online Functionality Patch-->"C:\Programme\SimBin\GTR 2\unins000.exe"
Half-Life 2: Lost Coast-->"C:\Programme\Steam\steam.exe" steam://uninstall/340
High Definition Audio - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Programme\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
HP Foto- und Bildbearbeitung 2.0 - All-in-One-->MsiExec.exe /X{9867A917-5D17-40DE-83BA-BEA5293194B1}
HP Foto und Bildbearbeitung 2.0 - hp psc 1200 series-->C:\Programme\Hewlett-Packard\Digital Imaging\{7C8BB31C-E09E-4c7d-BBF1-45E33B467FE1}\Setup\hpzscr01.exe -datfile hposcr02.dat -forcereboot
HP Foto- und Bildbearbeitung 2.0 All-in-One Treiber -->MsiExec.exe /X{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}
hp psc 1200 series-->MsiExec.exe /X{C900EF06-2E76-49C7-8DB0-41F629B21DC5}
HP Speicher-Disc-->MsiExec.exe /X{B376402D-58EA-45EA-BD50-DD924EB67A70}
ICQ Toolbar-->C:\Programme\ICQ6Toolbar\ICQUnToolbar.exe
ICQ7-->"C:\Programme\InstallShield Installation Information\{88EB38EF-4D2C-436D-ABD3-56B232674062}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
Imperial Glory-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{1FCC8C70-66B9-420D-942C-2C2A8441C744}\setup.exe" -l0x7 -removeonly
Insurgency-->"C:\Programme\Steam\steam.exe" steam://uninstall/17700
InterVideo WinDVD-->"C:\Programme\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
iTunes-->MsiExec.exe /I{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
J2SE Runtime Environment 5.0 Update 9-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
King-->C:\Programme\JoWooD\King\uninst.exe
Landwirtschafts-Simulator 2009 Demo-->"C:\Programme\Landwirtschafts-Simulator 2009 Demo\unins000.exe"
Learn2 Player (Uninstall Only)-->C:\Programme\Learn2.com\StRunner\stuninst.exe
Left 4 Dead 2 Demo-->"C:\Programme\Steam\steam.exe" steam://uninstall/590
LibUSB-Win32-0.1.10.1-->C:\Programme\LibUSB-Win32-0.1.10.1\unins000.exe
Loksim3D-->C:\WINDOWS\system32\GKSUI20.EXE c:\Loksim3D\Uninstall6B0D.DAT
LucasArts' Force Commander Demo-->C:\WINDOWS\uninst.exe -f"C:\Programme\LucasArts\Force Commander Demo\Install\DeIsL1.isu" -c"C:\Programme\LucasArts\Force Commander Demo\Install\LecSetup.dll"
Macromedia Flash Player 8-->MsiExec.exe /X{5E8A1B08-0FBD-4543-9646-F2C2D0D05750}
MAGIX Digital Foto Maker SE (D)-->C:\MAGIX\DFM2006_SE\instslct.exe
MAGIX Media Suite - Standard Edition (D)-->C:\MAGIX\FSC_Media_Suite_2005\instslct.exe
MAGIX mp3 maker SE (D)-->C:\MAGIX\mp3_maker_2005_SE\instslct.exe
MAGIX Online Druck Service (FS) -->C:\Programme\MAGIX Online Druck Service (FS)\uninst.exe
Malwarebytes' Anti-Malware-->"C:\Programme\Malwarebytes' Anti-Malware\unins000.exe"
Men of War: Red Tide - Demo (Remove Only)-->"C:\Programme\1C Company\Men of War Red Tide - Demo\unins000.exe"
Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 3.7-->"C:\WINDOWS\ISUN0407.EXE" -f"C:\Programme\Microsoft ActiveSync\DeIsL1.isu" -c"C:\Programme\Microsoft ActiveSync\ceuninst.dll"
Microsoft Flight Simulator X Demo-->C:\PROGRA~1\GEMEIN~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{B98A34C0-A6A2-4087-B272-557C1C6D0A07}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{B578C85A-A84C-4230-A177-C5B2AF565B8C}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{B45FABE7-D101-4D99-A671-E16DA40AF7F0}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office PowerPoint Viewer 2007 (German)-->MsiExec.exe /X{95120000-00AF-0407-0000-0000000FF1CE}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Works-->MsiExec.exe /I{4EA2F95F-A537-4D17-9E7F-6B3FF8D9BBE3}
Microsoft XML Parser und SDK-->MsiExec.exe /I{35343FF7-939B-401A-87B3-FF90A5123D88}
Mozilla Firefox (3.0.17)-->C:\Programme\Mozilla Firefox\uninstall\helper.exe
Mplayer.com-->C:\Programme\Mplayer\System\Unwise32.exe /a C:\PROGRA~1\Mplayer\System\install.log
MSXML 4.0 SP2 (KB925672)-->MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 4.0 SP2 Parser und SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MSXML 6 Service Pack 2 (KB973686)-->MsiExec.exe /I{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}
MTA: Race for San Andreas R1.1-->C:\Programme\MTA San Andreas\Uninstall.exe
Müllabfuhr-Simulator 2008 DEMO-->"C:\Programme\Müllabfuhr-Simulator 2008 DEMO\unins000.exe"
Need for Speed™ SHIFT Demo-->MsiExec.exe /X{BBF0A67B-5DBA-452F-9D2E-6F168BC226E5}
Nero BurnRights-->C:\WINDOWS\UNNeroBurnRights.exe /UNINSTALL
Nero Digital-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
Nero OEM-->C:\Programme\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
NeroVision Express Content-->C:\WINDOWS\UNNVEContent.exe /UNINSTALL
New Worlds-->C:\WINDOWS\IsUninst.exe -f"C:\Programme\Interplay Entertainment Corp\NewWorlds\Uninst.isu"
Nikon View 5-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{AAB84E83-C8DF-4752-9DFC-2E2A48EE5E9F}\setup.exe" UNINSTALL
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
NVIDIA PhysX-->MsiExec.exe /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
OF Dragon Rising Demo-->"C:\Programme\InstallShield Installation Information\{4D3B92CA-7973-4D9E-BB93-52C705A473B6}\setup.exe" -runfromtemp -l0x0009 -removeonly
OpenAL-->"C:\Programme\OpenAL\OpenALwEAX.exe" /U
OpenOffice.org Installer 1.0-->MsiExec.exe /X{E728E952-DD4F-4BCD-A5C8-40FBFEFF91FE}
OPERATION7-->"c:\Fiaa\OPERATION7\uninstall.exe"
Pando Media Booster-->C:\Programme\Pando Networks\Media Booster\uninst.exe
PartyPoker-->"C:\Programme\PartyGaming\PartyPoker\Uninstall.exe" "C:\Programme\PartyGaming\PartyPoker\install.log"
PC Connectivity Solution-->MsiExec.exe /I{AC599724-5755-48C1-ABE7-ABB857652930}
Porsche Carrera Cup 2006 v1.1 - by GRF-->C:\Programme\SimBin\GTR 2\PCC06Uninstaller.exe
ProtectDisc Driver, Version 11-->C:\Programme\ProtectDisc Driver Installer\uninstall_v11.exe
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
RACE 07-->"C:\Programme\Steam\steam.exe" steam://uninstall/8600
RACE On - DEMO-->"C:\Programme\Steam\steam.exe" steam://uninstall/8760
RACE-->"C:\Programme\SimBin\RACE Offline\Uninstall\unins000.exe"
Radsport Manager-->C:\Programme\Cyanide\Radsport Manager\Uninstall.exe
Railroad Tycoon 3 Demo-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{773D872F-2FCB-4F5C-9E63-8E2291EBCF04}\Setup.exe" -l0x7
Rapture3D 2.3.26 Game-->"C:\Programme\BRS\unins000.exe"
RealPlayer Basic-->C:\Programme\Gemeinsame Dateien\Real\Update\\rnuninst.exe RealNetworks|RealPlayer|6.0
Realtek AC'97 Audio-->Alcrmv.exe -r -m
Restaurant Empire-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{7EABB309-64F7-11D7-B796-0050BFE4DB80}\setup.exe" -l0x7 -uninst
Rigs of Rods 0.36.1-->C:\Programme\Rigs of Rods 0.36.1\uninst.exe
RollerCoaster Tycoon 2-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}\Setup.exe" -l0x7
RTL Biathlon 2008 (Demo)-->"C:\Programme\RTL Biathlon 2008 (Demo)\Uninstall.exe"
RTL Winter Sports 2008 (Demo)-->"C:\Programme\RTL Winter Sports 2008 (Demo)\Uninstall.exe"
RTL Winter Sports 2009 (Demo)-->"C:\Programme\RTL Winter Sports 2009 (Demo)\Uninstall.exe"
s25atonce 3.2.3-->"C:\Programme\s25atonce\unins000.exe"
SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6_old\SSBCUninstall.exe
Samsung Mobile Modem Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\7\SSECUninstall.exe
SAMSUNG Mobile Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung New PC Studio-->"C:\Programme\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -runfromtemp -l0x0407 -removeonly
Samsung New PC Studio-->MsiExec.exe /X{F193FC0E-9E18-40FC-A974-509A1BDD240A}
SAMSUNG USB Mobile Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SS_BUninstall.exe
SamsungConnectivityCableDriver-->MsiExec.exe /X{7E84FAC8-C518-40F9-9807-7455301D6D25}
San Andreas Mod Installer-->"C:\WINDOWS\San Andreas Mod Installer\uninstall.exe" "/U:C:\Programme\San Andreas Mod Installer\Uninstall\uninstall.xml"
Schwertransport Simulator Demo (entfernen)-->"C:\Programme\Schwertransport Simulator Demo\Uninstall.exe"
Screen Antics 2.1-->C:\WINDOWS\uninst.exe
Sgc 3D Simulator 1.5-->"C:\Programme\sgc_3d_sim\unins000.exe"
SGCSim v5.0.1-->MsiExec.exe /I{4B3957E7-BE8B-4389-831E-7D196B176C1F}
Sicherheitsupdate für Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Sicherheitsupdate für Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950759)-->"C:\WINDOWS\$NtUninstallKB950759$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB953838)-->"C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB963027)-->"C:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969897)-->"C:\WINDOWS\$NtUninstallKB969897$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB972260)-->"C:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974455)-->"C:\WINDOWS\$NtUninstallKB974455$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB976325)-->"C:\WINDOWS\$NtUninstallKB976325$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Sid Meier's Civilization 4 Demo-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{2A241A64-9AD1-4D94-A227-6C3D5D2F854D}\setup.exe" -l0x7 -removeonly
Sid Meier's Railroad Tycoon-->C:\Programme\2K Games\Sid Meier's Railroad Tycoon\uninst.exe
SimCity 4-->C:\Dokumente und Einstellungen\Helmut Nagel\Desktop\Games und Sonstiges\Mods\EAUninstall.exe
Singles2-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{F4851D03-553C-4ACE-ADBD-CA6BE8451072}\setup.exe" -l0x7 -removeonly
Sinus 154 data II-->C:\Programme\Gemeinsame Dateien\InstallShield\Driver\8\Intel 32\IDriver.exe /M{C53FB914-C1F6-4F9D-93E2-A3A84935EC15}
Skispringen 2006 Demo-->"C:\Programme\Skispringen 2006 Demo\setup.exe" -u
Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
Source Dedicated Server-->"C:\Programme\Steam\steam.exe" steam://uninstall/205
Source SDK Base - Orange Box-->"C:\Programme\Steam\steam.exe" steam://uninstall/218
Source SDK-->"C:\Programme\Steam\steam.exe" steam://uninstall/211
SpaceShuttleMission2007 DEMO v1.31-->"C:\Programme\SpaceShuttleMission2007DEMO\unins000.exe"
Spreng- und Abriss-Simulator (Demo)-->C:\Programme\Spreng- und Abriss-Simulator (Demo)\Uninstal.exe
Spyhunter Compact OS 1.0b-->"C:\sh4ldr\unins000.exe"
Star Trek Elite Force II Single Player Demo-->C:\PROGRA~1\ACTIVI~1\STARTR~2\Uninstall\Unwise.exe /u C:\PROGRA~1\ACTIVI~1\STARTR~2\Uninstall\Install.log
Star Wars Empire at War Forces of Corruption-->C:\Programme\InstallShield Installation Information\{6592FDEC-2C1A-413A-9985-25FEC2F0848D}\Setup.exe -runfromtemp -l0x0007 -removeonly
Star Wars Empire at War-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{99AE7207-8612-4DBA-A8F8-BAE5C633390D}\Setup.exe" -l0x7 -removeonly
Starfleet Command Demo-->C:\WINDOWS\IsUninst.exe -f"C:\Games\Interplay\Starfleet Command Demo\Uninst.isu"
Starship Combat and Tactics Simulator-->C:\WINDOWS\st6unst.exe -n "C:\Programme\Starship Combat and Tactics Simulator\ST6UNST.LOG"
STCC - The Game - Demo-->"C:\Programme\Steam\steam.exe" steam://uninstall/8700
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Stronghold 2 Demo-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{D992240F-649B-4DF7-8EC5-323D59ACC18B}\setup.exe" -l0x7 -removeonly
Supreme Ruler 2020 Gold Demo 6.6.1-->"C:\Programme\Paradox Interactive\Supreme Ruler 2020 Gold Demo\unins000.exe"
SweetIM for Messenger 2.8-->MsiExec.exe /X{DF6F459C-8B89-4F88-B63F-A2E136BB6B79}
SweetIM Toolbar for Internet Explorer 3.6-->MsiExec.exe /X{31CF6C0E-51F0-41D2-B088-A6A143C4303C}
TeamSpeak 2 RC2-->C:\Programme\Teamspeak2_RC2\unins000.exe
Thrustmaster Force Feedback Driver-->C:\Programme\InstallShield Installation Information\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}\setup.exe -runfromtemp -l0x0007 -removeonly
Tom Clancy's Splinter Cell Chaos Theory-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{888DD888-82BE-4D85-BCB2-2E042CD3E844}\setup.exe" -l0x7 -removeonly
Tom Clancy's Splinter Cell-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{A174402A-2EE6-4B86-A930-7BC85A9933BD}\setup.exe" -l0x7
TrackMania Nations ESWC 1.7.9-->"C:\Programme\TrackMania Nations ESWC\unins000.exe"
TrackMania Nations Forever-->"C:\Programme\Steam\steam.exe" steam://uninstall/11020
Trek Wars - Federation at War 0.9 -->C:\WINDOWS\uninstall\Trek Wars - Federation at War\setup.exe
Truck Racing by Renault Trucks-->C:\Programme\Truck_Racing_By_Renault_Trucks\uninst.exe
TuneUp Utilities 2007-->MsiExec.exe /I{C8BB4912-12D9-42AE-B571-E580D8CD1B5B}
TV Manager (Demo)-->"C:\Programme\TV Manager Demo\unins000.exe"
Tycoon City - New York-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{A5101403-2C42-40E0-8D9E-5E49E7C3B89E}\setup.exe" -l0x7
UEAW v4 -->C:\Programme\LucasArts\Star Wars Empire at War Forces of Corruption\Uninstal_UEAW_v4.exe
Uninstall 1.0.0.1-->"C:\Programme\Gemeinsame Dateien\DVDVideoSoft\unins000.exe"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update für Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Update für Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update für Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Update für Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Update für Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Update für Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Update für Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Update für Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Update für Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Update für Windows XP (KB976749)-->"C:\WINDOWS\$NtUninstallKB976749$\spuninst\spuninst.exe"
Update für Windows XP (KB978207)-->"C:\WINDOWS\$NtUninstallKB978207$\spuninst\spuninst.exe"
Viewpoint Media Player-->C:\Programme\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u
War Encounter V2.0-->"C:\Programme\War Encounter\unins000.exe"
werner_saver01 Screen Saver-->C:\WINDOWS\werner_saver01.scr /u
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format Runtime-->"C:\Programme\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format SDK Hotfix - KB891122-->"C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe"
Windows Media Player 10 Hotfix - KB888656-->"C:\WINDOWS\$NtUninstallKB888656$\spuninst\spuninst.exe"
Windows Media Player 10-->"C:\Programme\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Messenger 5.1 MUI Pack-->MsiExec.exe /I{F3CBA4E6-436E-4B51-9651-93830EE38616}
Windows Messenger 5.1-->MsiExec.exe /I{9D1C26BD-E792-4159-9D16-07EA222D8EF0}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Windows-Treiberpaket - Nokia pccsmcfd (10/12/2007 6.85.4.0)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_4A1E30386F4D0DEC8F5DF262CFBD8845EEBAB175\pccsmcfd.inf
WinRAR Archivierer-->C:\Programme\WinRAR\uninstall.exe
World Racing-->C:\Programme\Gemeinsame Dateien\InstallShield\Driver\8\Intel 32\IDriver.exe /M{B151F020-1DEE-4716-944F-2759FC3C51DA}
Xfire (remove only)-->"C:\Programme\Xfire\uninst.exe"
Yahoo! Suche Schutzvorkehrung-->C:\PROGRA~1\Yahoo!\SEARCH~1\UNINST~1.EXE
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
Youda Marina-->"C:\Programme\OXXOGames\GPlayer\\MyInstall.exe" ScriptUInst "C:\Programme\OXXOGames\GPlayer\Install\\Game_YoudaMarina.log"

======Security center information======

AV: Paladin Antivirus (outdated)
AV: AntiVir Desktop (disabled) (outdated)

======System event log======

Computer Name: HNPC4
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.

Record Number: 104407
Source Name: EventLog
Time Written: 20100211101339.000000+060
Event Type: Informationen
User:

Computer Name: HNPC4
Event Code: 6006
Message: Der Ereignisprotokolldienst wurde beendet.

Record Number: 104406
Source Name: EventLog
Time Written: 20100210212029.000000+060
Event Type: Informationen
User:

Computer Name: HNPC4
Event Code: 4201
Message: Netzwerkadapter "Sinus 154 data II - Paketplaner-Miniport" wurde mit dem Netzwerk verbunden, und das
System wurde über das Netzwerk im normalen Zustand gestartet.

Record Number: 104405
Source Name: Tcpip
Time Written: 20100210210354.000000+060
Event Type: Informationen
User:

Computer Name: HNPC4
Event Code: 4201
Message: Netzwerkadapter "Sinus 154 data II - Paketplaner-Miniport" wurde mit dem Netzwerk verbunden, und das
System wurde über das Netzwerk im normalen Zustand gestartet.

Record Number: 104404
Source Name: Tcpip
Time Written: 20100210210339.000000+060
Event Type: Informationen
User:

Computer Name: HNPC4
Event Code: 4201
Message: Netzwerkadapter "Sinus 154 data II - Paketplaner-Miniport" wurde mit dem Netzwerk verbunden, und das
System wurde über das Netzwerk im normalen Zustand gestartet.

Record Number: 104403
Source Name: Tcpip
Time Written: 20100210210314.000000+060
Event Type: Informationen
User:

=====Application event log=====

Computer Name: HNPC4
Event Code: 2003
Message:
Record Number: 12079
Source Name: EAPOL
Time Written: 20090829101146.000000+120
Event Type: Informationen
User:

Computer Name: HNPC4
Event Code: 4096
Message: Der AntiVir Dienst wurde erfolgreich gestartet!

Record Number: 12078
Source Name: Avira AntiVir
Time Written: 20090829095718.000000+120
Event Type: Informationen
User: NT-AUTORITÄT\SYSTEM

Computer Name: HNPC4
Event Code: 1800
Message: Der Windows-Sicherheitscenterdienst wurde gestartet.

Record Number: 12077
Source Name: SecurityCenter
Time Written: 20090829095715.000000+120
Event Type: Informationen
User:

Computer Name: HNPC4
Event Code: 32068
Message: Die ausgehende Verteilerregel ist nicht gültig, weil kein gültiges Gerät gefunden werden kann. Ausgehende Faxe, die diese Regel verwenden, werden nicht weitergeleitet. Stellen Sie sicher, dass das angezielte Gerät bzw. die angezielten Geräte angeschlossen, korrekt installiert und angeschaltet sind. Stellen Sie außerdem sicher, dass die Gruppe korrekt konfiguriert ist, falls die Weiterleitung an eine Gruppe von Geräten erfolgen soll.
Landes-/Regionskennzahl: "*"
Ortskennzahl: "*"

Record Number: 12076
Source Name: Microsoft Fax
Time Written: 20090829095714.000000+120
Event Type: Warnung
User:

Computer Name: HNPC4
Event Code: 32026
Message: Fehler beim Initialisieren der zugewiesenen Faxgeräte (virtuell oder TAPI) durch den Faxdienst.
Es können keine Faxe gesendet werden, bis ein Faxgerät installiert ist.

Record Number: 12075
Source Name: Microsoft Fax
Time Written: 20090829095714.000000+120
Event Type: Warnung
User:

=====Security event log=====

Computer Name: HNPC4
Event Code: 514
Message: Ein Authentifizierungspaket wurde durch die lokale Sicherheitsinstanz geladen.
Dieses Authentifizierungspaket wird verwendet, um Anmeldeversuche zu authentifizieren.

Name des Authentifizierungspakets: C:\WINDOWS\system32\wdigest.dll : WDigest

Record Number: 223408
Source Name: Security
Time Written: 20100221110746.000000+060
Event Type: Überwachung erfolgreich
User: NT-AUTORITÄT\SYSTEM

Computer Name: HNPC4
Event Code: 514
Message: Ein Authentifizierungspaket wurde durch die lokale Sicherheitsinstanz geladen.
Dieses Authentifizierungspaket wird verwendet, um Anmeldeversuche zu authentifizieren.

Name des Authentifizierungspakets: C:\WINDOWS\system32\schannel.dll : Schannel

Record Number: 223407
Source Name: Security
Time Written: 20100221110746.000000+060
Event Type: Überwachung erfolgreich
User: NT-AUTORITÄT\SYSTEM

Computer Name: HNPC4
Event Code: 514
Message: Ein Authentifizierungspaket wurde durch die lokale Sicherheitsinstanz geladen.
Dieses Authentifizierungspaket wird verwendet, um Anmeldeversuche zu authentifizieren.

Name des Authentifizierungspakets: C:\WINDOWS\system32\schannel.dll : Microsoft Unified Security Protocol Provider

Record Number: 223406
Source Name: Security
Time Written: 20100221110746.000000+060
Event Type: Überwachung erfolgreich
User: NT-AUTORITÄT\SYSTEM

Computer Name: HNPC4
Event Code: 514
Message: Ein Authentifizierungspaket wurde durch die lokale Sicherheitsinstanz geladen.
Dieses Authentifizierungspaket wird verwendet, um Anmeldeversuche zu authentifizieren.

Name des Authentifizierungspakets: C:\WINDOWS\system32\msv1_0.dll : NTLM

Record Number: 223405
Source Name: Security
Time Written: 20100221110746.000000+060
Event Type: Überwachung erfolgreich
User: NT-AUTORITÄT\SYSTEM

Computer Name: HNPC4
Event Code: 514
Message: Ein Authentifizierungspaket wurde durch die lokale Sicherheitsinstanz geladen.
Dieses Authentifizierungspaket wird verwendet, um Anmeldeversuche zu authentifizieren.

Name des Authentifizierungspakets: C:\WINDOWS\system32\kerberos.dll : Kerberos

Record Number: 223404
Source Name: Security
Time Written: 20100221110746.000000+060
Event Type: Überwachung erfolgreich
User: NT-AUTORITÄT\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Programme\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Programme\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Programme\Java\jre1.6.0_07\lib\ext\QTJava.zip
"QTJAVA"=C:\Programme\Java\jre1.6.0_07\lib\ext\QTJava.zip

-----------------EOF-----------------

Spieker000 · 23.02.2010, 14:59

Bei Malwarebytes Anti Malware wird mir ein Fehler angezeigt.
Nach der Installation möchte ich es aktuallisieren doch es kommt:

Datei kann nicht ausgeführt werden:
C:\Programme\Malwarebytes'Anti-Malware\mbam.exe

CreateProcess schlug fehl; Code2.
Das System kann die angegebene Datei nicht finden.

cosinus · 23.02.2010, 15:15

Bei der Menge an Schädlingen wundert mich das nicht, das MBAM nicht geht

Bitte mal den Avenger anwenden:

1.) Lade Dir von hier Avenger:
Swandog46's Public Anti-Malware Tools (Download, linksseitig)

2.) Entpack das zip-Archiv, führe die Datei "avenger.exe" aus (unter Vista per Rechtsklick => als Administrator ausführen). Die Haken unten wie abgebildet setzen:

3.) Kopiere Dir exakt die Zeilen aus dem folgenden Code-Feld:

Code:

ATTFilter

registry values to delete:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | lsass
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | netw
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | netc
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | netx
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | povesikah
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLS
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | libunumav
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad | ruhiputur
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler | gahurihor
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler | kupuhivus

files to delete:
C:\WINDOWS\system32\bubeguto.dll
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\_VOIDkrl32mainweq.dll
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\_VOIDmainqt.dll
C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\fiosejgfse.dll
C:\WINDOWS\system32\_VOIDnkvxdulpux.dll
C:\WINDOWS\system32\sdra64.exe
C:\WINDOWS\odbns.exe
C:\WINDOWS\lsass.exe
C:\WINDOWS\svw.exe
C:\WINDOWS\svc.exe
C:\WINDOWS\svx.exe
c:\windows\system32\doluwuhi.dll
C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\Akr.exe
c:\windows\system32\lolanayo.dll
c:\windows\system32\zidoyowi.dll
c:\windows\system32\loyejosu.dll
C:\WINDOWS\tasks\NSSstub.job
C:\WINDOWS\tasks\qsqzunoo.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\eventcreatexp.exe
C:\WINDOWS\system32\tmpB6.tmp
C:\WINDOWS\system32\tmpB5.tmp

folders to delete:
C:\Programme\Paladin Antivirus
C:\WINDOWS\system32\lowsec

drivers to delete:
EagleNT

4.) Geh in "The Avenger" nun oben auf "Load Script", dort auf "Paste from Clipboard".

5.) Der Code-Text hier aus meinem Beitrag müsste nun unter "Input Script here" in "The Avenger" zu sehen sein.

6.) Falls dem so ist, klick unten rechts auf "Execute". Bestätige die nächste Abfrage mit "Ja", die Frage zu "Reboot now" (Neustart des Systems) ebenso.

7.) Nach dem Neustart erhältst Du ein LogFile von Avenger eingeblendet. Kopiere dessen Inhalt und poste ihn hier.

8.) Die Datei c:\avenger\backup.zip bei file-upload.net hochladen und hier verlinken

Spieker000 · 23.02.2010, 16:22

Logfile of The Avenger Version 2.0, (c) by Swandog46
Swandog46's Public Anti-Malware Tools

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "C:\WINDOWS\system32\bubeguto.dll" deleted successfully.
File "C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\_VOIDkrl32mainweq.dll" deleted successfully.
File "C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\_VOIDmainqt.dll" deleted successfully.
File "C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\fiosejgfse.dll" deleted successfully.
File "C:\WINDOWS\system32\_VOIDnkvxdulpux.dll" deleted successfully.
File "C:\WINDOWS\system32\sdra64.exe" deleted successfully.
File "C:\WINDOWS\odbns.exe" deleted successfully.

Error: file "C:\WINDOWS\lsass.exe" not found!
Deletion of file "C:\WINDOWS\lsass.exe" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist

File "C:\WINDOWS\svw.exe" deleted successfully.
File "C:\WINDOWS\svc.exe" deleted successfully.
File "C:\WINDOWS\svx.exe" deleted successfully.
File "c:\windows\system32\doluwuhi.dll" deleted successfully.

Error: file "C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\Akr.exe" not found!
Deletion of file "C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\Akr.exe" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist

Error: file "c:\windows\system32\lolanayo.dll" not found!
Deletion of file "c:\windows\system32\lolanayo.dll" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist

File "c:\windows\system32\zidoyowi.dll" deleted successfully.
File "c:\windows\system32\loyejosu.dll" deleted successfully.
File "C:\WINDOWS\tasks\NSSstub.job" deleted successfully.
File "C:\WINDOWS\tasks\qsqzunoo.job" deleted successfully.
File "C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job" deleted successfully.
File "C:\WINDOWS\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job" deleted successfully.

Error: file "C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\eventcreatexp.exe" not found!
Deletion of file "C:\DOKUME~1\HELMUT~1\LOKALE~1\Temp\eventcreatexp.exe" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist

File "C:\WINDOWS\system32\tmpB6.tmp" deleted successfully.
File "C:\WINDOWS\system32\tmpB5.tmp" deleted successfully.
Folder "C:\Programme\Paladin Antivirus" deleted successfully.
Folder "C:\WINDOWS\system32\lowsec" deleted successfully.
Driver "EagleNT" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run|lsass" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run|netw" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run|netc" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run|netx" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run|povesikah" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLS" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad|libunumav" deleted successfully.
Registry value "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad|ruhiputur" deleted successfully.

Error: could not delete registry value "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler|gahurihor"
Deletion of registry value "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler|gahurihor" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist

Error: could not delete registry value "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler|kupuhivus"
Deletion of registry value "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler|kupuhivus" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist

Spieker000 · 23.02.2010, 16:24

File-Upload.net - avenger.txt

cosinus · 23.02.2010, 17:02

Du solltest die backup.zip hochladen, nicht das avenger.txt!

Spieker000 · 23.02.2010, 17:16

File-Upload.net - backup.zip

cosinus · 23.02.2010, 18:55

Ok, danke. Da ist ja ne ganze menge nun jetzt weg. Probier den Punkt mit Malwarebytes jetzt nochmal.

Spieker000 · 30.03.2010, 17:54

Entschuldigung das ich mich nicht bei euch bedankt habe denn der Computer hat völlig den Geist aufgegeben und musste dann 1 Monat lang zur Reperatur.
Vielen Dank nochmal für die schnelle Hilfe.

cosinus · 30.03.2010, 18:19

Ich hoffe der musste nicht wegen meiner Behandlung zur Reparatur

Musste Hardware getauscht werden oder hast jetzt nen ganz neuen oder wurde nur Windows neu gemacht?

Spieker000 · 05.04.2010, 18:38

Es musste nur Windows neu drauf gemacht werden.

23.02.2010, 17:02	#9
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Avira Virenmeldung: JS/Redirector.455 Du solltest die backup.zip hochladen, nicht das avenger.txt! __________________ Logfiles bitte immer in CODE-Tags posten

30.03.2010, 18:19	#13
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Avira Virenmeldung: JS/Redirector.455 Ich hoffe der musste nicht wegen meiner Behandlung zur Reparatur Musste Hardware getauscht werden oder hast jetzt nen ganz neuen oder wurde nur Windows neu gemacht? __________________ Logfiles bitte immer in CODE-Tags posten

Avira Virenmeldung: JS/Redirector.455

Plagegeister aller Art und deren Bekämpfung: Avira Virenmeldung: JS/Redirector.455