Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!

Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!


Log-Analyse und Auswertung: Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 28.11.2010, 09:16   #1
die.das.ich
 
Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt! - Standard

Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!


Hallo, seit ca. 3 Wochen werden unregelmässig (mal 1x/Wo., mal 5 x /Tag) Spam-Mails mit Links haufenweise über meine Mailadresse auf meine Kontakte geschickt.
Kann mir jemand sagen, was ich dagegen machen soll/kann - es ist mehr als nur unangenehm... Passwort habe ich geändert, nutze die Adresse seit dem nicht mehr, schaue nur hin und wieder wegen Spams... Voraus vielen Dank!
Herzlichst Petra

Hier mein OLT. scan:

___________________________________________________________OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 11/28/2010 8:01:03 AM - Run 1
OTL by OldTimer - Version 3.2.17.3     Folder = C:\Users\****\Downloads
64bit- Home Premium Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy
 
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 42.00% Memory free
4.00 Gb Paging File | 1.00 Gb Available in Paging File | 36.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 282.99 Gb Total Space | 155.04 Gb Free Space | 54.79% Space Free | Partition Type: NTFS
Drive H: | 235.56 Mb Total Space | 64.69 Mb Free Space | 27.46% Space Free | Partition Type: FAT
Drive K: | 6.34 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive L: | 1.85 Gb Total Space | 1.84 Gb Free Space | 99.86% Space Free | Partition Type: FAT
 
Computer Name: **** | User Name: ****| Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\**\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Verbindungsassistent\Verbindungsassistent.exe (WebToGo Mobile Internet GmbH)
PRC - C:\Program Files (x86)\Verbindungsassistent\WTGService.exe ()
PRC - C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe (Zamiinc)
PRC - C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Portrait Professional 9 Test\PortraitProfessionalTrial.exe (Anthropics Technology Ltd.)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE ()
PRC - C:\Program Files (x86)\Software Informer\softinfo.exe (Informer Technologies, Inc.)
PRC - C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe (Acer)
PRC - C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe (Acer Incorporated)
PRC - C:\Program Files (x86)\PSP12\Corel Paint Shop Pro Photo.exe (Corel, Inc.)
PRC - C:\Program Files (x86)\PSP12\MediaCataloger.exe (Corel, Inc.)
PRC - C:\Windows\SysWOW64\PSIService.exe ()
PRC - C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe (Lexmark International Inc.)
PRC - C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe ()
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\****\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (Updater Service) -- C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe (Acer)
SRV:64bit: - (lxct_device) -- C:\Windows\SysNative\lxctcoms.exe ( )
SRV - (WTGService) -- C:\Program Files (x86)\Verbindungsassistent\WTGService.exe ()
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (DfSdkS) -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe (mst software GmbH, Germany)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Greg_Service) -- C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe (Acer Incorporated)
SRV - (ProtexisLicensing) -- C:\Windows\SysWOW64\PSIService.exe ()
SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation)
SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation)
SRV - (lxct_device) -- C:\Windows\SysWow64\lxctcoms.exe ( )
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (PDNSp50) -- C:\Windows\SysNative\drivers\PDNSp50.sys File not found
DRV:64bit: - (PDNMp50) -- C:\Windows\SysNative\drivers\PDNMp50.sys File not found
DRV:64bit: - (EagleX64) -- C:\Windows\SysNative\drivers\EagleX64.sys File not found
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (hwdatacard) -- C:\Windows\SysNative\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (ewusbnet) -- C:\Windows\SysNative\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (hwusbdev) -- C:\Windows\SysNative\drivers\ewusbdev.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (motmodem) -- C:\Windows\SysNative\drivers\motmodem.sys (Motorola)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:64bit: - (RTL85n64) -- C:\Windows\SysNative\drivers\RTL85n64.sys (Realtek)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek                                            )
DRV - (hwdatacard) -- C:\Windows\SysWOW64\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (PDNMp50) -- C:\Windows\SysWOW64\drivers\PDNMp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (PDNSp50) -- C:\Windows\SysWOW64\drivers\PDNSp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0407&m=et1831&r=17361209kn06973854si5bf8i3g947
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0407&m=et1831&r=17361209kn06973854si5bf8i3g947
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0407&m=et1831&r=17361209kn06973854si5bf8i3g947
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0407&m=et1831&r=17361209kn06973854si5bf8i3g947
IE - HKLM\..\URLSearchHook: {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0407&m=et1831&r=17361209kn06973854si5bf8i3g947
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
IE - HKCU\..\URLSearchHook: {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&ai=13054"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://search.babylon.com/home/?ai=13054"
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.2
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7.2
FF - prefs.js..extensions.enabledItems: {cc05a3e3-64c3-4af2-bfc1-af0d66b69065}:2.5.8.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: silvermel@pardal.de:1.3.4
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/11/26 22:47:55 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/11/26 22:47:52 | 000,000,000 | ---D | M]
 
[2009/12/29 09:17:32 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mozilla\Extensions
[2010/10/26 12:11:29 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\extensions
[2010/04/14 16:42:10 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010/03/27 14:50:35 | 000,000,000 | ---D | M] (softonic-de3 Toolbar) -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\extensions\{cc05a3e3-64c3-4af2-bfc1-af0d66b69065}
[2010/04/11 08:55:56 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\extensions\personas@christopher.beard
[2010/04/11 09:23:34 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\extensions\silvermel@pardal.de
[2010/04/11 09:12:23 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\extensions\silvermelxt@pardal.de
[2010/08/08 15:48:06 | 000,000,000 | ---D | M] -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\extensions\staged-xpis
[2010/05/10 14:59:38 | 000,001,196 | ---- | M] () -- C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\6kn6tuqv.default\searchplugins\winamp-search.xml
[2010/10/10 22:26:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/04/08 06:35:27 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/08/08 15:32:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/10/10 22:26:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2003/10/11 02:21:40 | 000,170,496 | ---- | M] (Macromedia, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\components\np32asw.dll
[2003/10/11 02:21:40 | 000,170,496 | ---- | M] (Macromedia, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\np32asw.dll
[2010/07/17 04:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/09/23 18:59:38 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010/07/24 11:34:55 | 000,002,226 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
[2010/09/23 18:59:38 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-de.xml
[2010/09/23 18:59:38 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010/09/23 18:59:38 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010/09/23 18:59:38 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll (Google Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (softonic-de3 Toolbar) - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (softonic-de3 Toolbar) - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (softonic-de3 Toolbar) - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Lexmark 5400 Series\ezprint.exe (Lexmark International Inc.)
O4:64bit: - HKLM..\Run: [LXCTCATS] C:\Windows\SysNative\spool\DRIVERS\x64\3\LXCTtime.DLL (Lexmark International Inc.)
O4:64bit: - HKLM..\Run: [lxctmon.exe] C:\Program Files (x86)\Lexmark 5400 Series\lxctmon.exe ()
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
O4 - HKLM..\Run: [4StoryPrePatch] C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe (Zamiinc)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [Corel Photo Downloader] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel PhotoDownloader.exe File not found
O4 - HKLM..\Run: [Lexmark 5400 Series] C:\Program Files (x86)\Lexmark 5400 Series\fm3032.exe ()
O4 - HKLM..\Run: [lxdvamon] C:\Program Files (x86) (x86)\Lexmark X5400 Series\lxdvamon.exe ()
O4 - HKLM..\Run: [lxdvmon.exe] C:\Program Files (x86) (x86)\Lexmark X5400 Series\lxdvmon.exe ()
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files (x86)\Winamp\winampa.exe File not found
O4 - HKCU..\Run: [drvsyskit] C:\Users\****\AppData\Roaming\drivers\winupgro.exe (Info soft)
O4 - HKCU..\Run: [fsm]  File not found
O4 - HKCU..\Run: [Smash] C:\Program Files (x86)\SoftMaker Office 2006\Smash.exe ()
O4 - HKCU..\Run: [Software Informer] C:\Program Files (x86)\Software Informer\softinfo.exe (Informer Technologies, Inc.)
O4 - HKCU..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Info soft)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWow64\Macromed\Flash\NPSWF32_FlashUtil.exe (Adobe Systems, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: skip5.com ([software] https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx (WRC Class)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) - K:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008/06/02 17:16:48 | 000,000,045 | R--- | M] () - K:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{26fc3b92-e8a0-11df-b9f7-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{26fc3b92-e8a0-11df-b9f7-0025115dca2e}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O33 - MountPoints2\{26fc3b9c-e8a0-11df-b9f7-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{26fc3b9c-e8a0-11df-b9f7-0025115dca2e}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O33 - MountPoints2\{2c5cfca2-3018-11df-b62c-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{2c5cfca2-3018-11df-b62c-0025115dca2e}\Shell\AutoRun\command - "" = J:\AutoRun.exe -- File not found
O33 - MountPoints2\{2c5cfcbd-3018-11df-b62c-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{2c5cfcbd-3018-11df-b62c-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{3587b0e2-db55-11df-92ab-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{3587b0e2-db55-11df-92ab-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{3587b0e7-db55-11df-92ab-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{3587b0e7-db55-11df-92ab-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{3587b188-db55-11df-92ab-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{3587b188-db55-11df-92ab-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{3587b18c-db55-11df-92ab-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{3587b18c-db55-11df-92ab-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{3587b211-db55-11df-92ab-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{3587b211-db55-11df-92ab-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{3587b215-db55-11df-92ab-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{3587b215-db55-11df-92ab-0025115dca2e}\Shell\AutoRun\command - "" = L:\AutoRun.exe -- File not found
O33 - MountPoints2\{513ac617-e1e3-11df-ba13-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{513ac617-e1e3-11df-ba13-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{513ac619-e1e3-11df-ba13-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{513ac619-e1e3-11df-ba13-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{513ac61c-e1e3-11df-ba13-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{513ac61c-e1e3-11df-ba13-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{6be7d396-cfb7-11df-a5f3-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{9f242a4c-e8bb-11df-be43-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{9f242a4c-e8bb-11df-be43-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{b1e23bf2-f64a-11de-a657-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{b1e23bf2-f64a-11de-a657-0025115dca2e}\Shell\AutoRun\command - "" = J:\AutoRun.exe -- File not found
O33 - MountPoints2\{b68b03c7-e90b-11df-bdce-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{b68b03c7-e90b-11df-bdce-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{b68b03d3-e90b-11df-bdce-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{b68b03d3-e90b-11df-bdce-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{b68b03eb-e90b-11df-bdce-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{b68b03eb-e90b-11df-bdce-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{b68b03f6-e90b-11df-bdce-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{b68b03f6-e90b-11df-bdce-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{b68b03f8-e90b-11df-bdce-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{b68b03f8-e90b-11df-bdce-0025115dca2e}\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{c13a140a-2c32-11df-b9c6-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c13a140a-2c32-11df-b9c6-0025115dca2e}\Shell\AutoRun\command - "" = L:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad23ae-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad23ae-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad23b9-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad23b9-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad23c7-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad23c7-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad23cc-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad23cc-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad23e4-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad23e4-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad241c-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad241c-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad2429-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad2429-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found
O33 - MountPoints2\{c7ad243f-e8bd-11df-b9d9-0025115dca2e}\Shell - "" = AutoRun
O33 - MountPoints2\{c7ad243f-e8bd-11df-b9d9-0025115dca2e}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found
O33 - MountPoints2\K\Shell - "" = AutoRun
O33 - MountPoints2\K\Shell\AutoRun\command - "" = K:\AutoRun.exe -- [2008/04/24 00:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010/11/28 02:20:09 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\Anthropics
[2010/11/28 02:11:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Portrait Professional 9 Test
[2010/11/20 12:45:06 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Local\Apple Computer
[2010/11/20 09:32:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Alice
[2010/11/20 09:32:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Alice
[2010/11/18 14:16:22 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\MAGIX Downloads
[2010/11/18 14:16:20 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\MAGIX
[2010/11/18 14:12:39 | 000,000,000 | R--D | C] -- C:\Users\***\Desktop\STEF
[2010/11/16 02:27:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SoftMaker Office 2006
[2010/11/16 02:27:01 | 000,000,000 | ---D | C] -- C:\Users\***\Documents\SoftMaker
[2010/11/16 02:27:01 | 000,000,000 | ---D | C] -- C:\Users\***\AppData\Roaming\SoftMaker
[2010/11/16 02:00:57 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml4a.dll
[2010/11/16 02:00:50 | 000,000,000 | ---D | C] -- C:\Users\****\Documents\MAGIX_Slideshow_Maker
[2010/11/16 02:00:48 | 000,000,000 | ---D | C] -- C:\ProgramData\MAGIX
[2010/11/16 02:00:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MAGIX
[2010/11/16 02:00:13 | 000,700,416 | ---- | C] (MAGIX AG) -- C:\Windows\SysWow64\mgxoschk.dll
[2010/11/16 02:00:13 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\MAGIX
[2010/11/09 18:56:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sudoku Maya Gold
[2010/11/09 18:54:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ReflexiveArcade
[2010/11/09 13:19:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\phenomedia
[2010/11/08 14:25:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Metin2
[2010/11/05 19:55:06 | 000,246,224 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbnet.sys
[2010/11/05 19:55:06 | 000,117,504 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbmdm.sys
[2010/11/05 19:55:06 | 000,114,304 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbdev.sys
[2010/11/05 19:55:06 | 000,029,696 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\SysNative\drivers\ewdcsc.sys
[2010/11/05 19:11:18 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System\WING32.DLL
[2010/11/05 17:58:08 | 000,000,000 | ---D | C] -- C:\tivola
[2010/11/05 09:48:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mobile Partner
[2010/11/04 14:08:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Franzis
[2010/11/04 13:39:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Romme und Canasta
[2010/11/04 13:32:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SWF Studio
[2010/11/04 13:12:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CrazyWords
[2010/11/04 13:11:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\abenteuer
[2010/11/03 22:15:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2010/11/03 22:11:19 | 000,000,000 | ---D | C] -- C:\Users\****\AppData\Roaming\PX24 Sendersoftware
[2010/11/03 21:22:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dart 'm Up
[2010/11/03 21:14:19 | 000,305,664 | ---- | C] (InstallShield Software Corporation ) -- C:\Windows\IsUn0407.exe
[2010/11/03 19:24:32 | 000,038,401 | ---- | C] (Samsung Electronics) -- C:\Windows\SysWow64\drivers\dvc.sys
[2010/10/30 15:27:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Western Digital Technologies
[2010/10/30 14:46:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Macrovision
[2010/10/30 14:46:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe Systems Shared
[2010/10/30 09:17:43 | 000,000,000 | -H-D | C] -- C:\Users\yannick\AppData\Roaming\drivers
[2010/02/19 18:02:38 | 000,643,072 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctpmui.dll
[2010/02/19 18:02:38 | 000,413,696 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctinpa.dll
[2010/02/19 18:02:38 | 000,397,312 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctiesc.dll
[2010/02/19 18:02:37 | 001,224,704 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctserv.dll
[2010/02/19 18:02:37 | 000,991,232 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctusb1.dll
[2010/02/19 18:02:37 | 000,163,840 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctprox.dll
[2010/02/19 18:02:36 | 000,696,320 | ---- | C] ( ) -- C:\Windows\SysWow64\lxcthbn3.dll
[2010/02/19 18:02:36 | 000,684,032 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctcomc.dll
[2010/02/19 18:02:36 | 000,585,728 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctlmpm.dll
[2010/02/19 18:02:36 | 000,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctcomm.dll
[2010/02/19 18:02:36 | 000,094,208 | ---- | C] ( ) -- C:\Windows\SysWow64\lxctpplc.dll
[2009/09/11 01:58:24 | 000,036,136 | ---- | C] (Oberon Media) -- C:\ProgramData\FullRemove.exe
[8 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[8 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2010/11/28 07:57:01 | 000,001,108 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/11/28 07:37:03 | 000,001,126 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3092659509-2928915563-1881502231-1000UA.job
[2010/11/28 04:34:43 | 000,112,891 | ---- | M] () -- C:\Users\****\Desktop\angel.jpg
[2010/11/28 02:11:44 | 000,001,153 | ---- | M] () -- C:\Users\****\Desktop\Portrait Professional 9 Test.lnk
[2010/11/27 22:57:02 | 000,001,104 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/11/27 21:30:49 | 000,727,182 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/11/27 21:30:49 | 000,616,254 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/11/27 21:30:49 | 000,106,376 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/11/27 21:14:27 | 000,000,952 | -HS- | M] () -- C:\Windows\SysWow64\KGyGaAvL.sys
[2010/11/27 19:48:14 | 000,000,586 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for yannick.job
[2010/11/27 14:37:00 | 000,001,074 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3092659509-2928915563-1881502231-1000Core.job
[2010/11/26 09:58:58 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/11/26 09:58:58 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/11/26 09:51:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/11/26 09:51:28 | 1408,684,032 | -HS- | M] () -- C:\hiberfil.sys
[2010/11/25 17:33:45 | 000,002,111 | ---- | M] () -- C:\Users\****\.recently-used.xbel
[2010/11/23 07:01:00 | 000,003,317 | ---- | M] () -- C:\Windows\AWSHKWV.INI
[2010/11/23 06:09:31 | 000,058,469 | ---- | M] () -- C:\Users\****\Desktop\angeli.jpg
[2010/11/22 21:50:32 | 000,061,385 | ---- | M] () -- C:\Users\****\Desktop\get-attachment.aspx (1).jpg
[2010/11/22 13:00:55 | 000,002,012 | ---- | M] () -- C:\Users\****\Desktop\Alice Einrichtungsassistent.lnk
[2010/11/19 22:50:52 | 000,000,797 | ---- | M] () -- C:\Windows\Dartemup.ini
[2010/11/18 14:11:57 | 000,380,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/11/16 02:00:13 | 000,007,119 | ---- | M] () -- C:\Windows\mgxoschk.ini
[2010/11/05 09:23:59 | 000,105,891 | ---- | M] () -- C:\Users\Public\Documents\Ihre Alice Bestellung.pdf
[2010/11/03 22:14:57 | 000,000,000 | ---- | M] () -- C:\Windows\SDP11.INI
[2010/11/03 21:01:31 | 000,000,027 | ---- | M] () -- C:\Windows\popcinfo.dat
[2010/10/30 14:46:27 | 000,002,318 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[8 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[8 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2010/11/28 04:34:40 | 000,112,891 | ---- | C] () -- C:\Users\****\Desktop\angel.jpg
[2010/11/28 02:11:44 | 000,001,153 | ---- | C] () -- C:\Users\****\Desktop\Portrait Professional 9 Test.lnk
[2010/11/25 17:33:45 | 000,002,111 | ---- | C] () -- C:\Users\****\.recently-used.xbel
[2010/11/23 06:09:31 | 000,058,469 | ---- | C] () -- C:\Users\****\Desktop\angeli.jpg
[2010/11/22 21:50:32 | 000,061,385 | ---- | C] () -- C:\Users\****\Desktop\get-attachment.aspx (1).jpg
[2010/11/22 13:00:55 | 000,002,012 | ---- | C] () -- C:\Users\****\Desktop\Alice Einrichtungsassistent.lnk
[2010/11/16 02:00:40 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2010/11/16 02:00:13 | 000,007,119 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2010/11/06 00:43:04 | 000,003,317 | ---- | C] () -- C:\Windows\AWSHKWV.INI
[2010/11/05 09:23:59 | 000,105,891 | ---- | C] () -- C:\Users\Public\Documents\Ihre Alice Bestellung.pdf
[2010/11/03 22:14:57 | 000,000,000 | ---- | C] () -- C:\Windows\SDP11.INI
[2010/11/03 21:22:24 | 000,000,797 | ---- | C] () -- C:\Windows\Dartemup.ini
[2010/11/03 19:24:32 | 000,002,169 | ---- | C] () -- C:\Windows\SysWow64\drivers\dvc.inf
[2010/10/30 14:46:27 | 000,002,318 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2010/10/29 13:16:14 | 000,207,868 | ---- | C] () -- C:\Users\Public\Documents\Petra010b.jpg
[2010/10/28 16:09:54 | 000,000,952 | -HS- | C] () -- C:\Windows\SysWow64\KGyGaAvL.sys
[2010/08/06 23:34:42 | 000,013,824 | ---- | C] () -- C:\Users\***\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/08/06 23:31:25 | 000,000,088 | RHS- | C] () -- C:\ProgramData\69B0749B3A.sys
[2010/08/06 23:31:24 | 000,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2010/08/06 05:26:36 | 000,722,382 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/07/24 11:24:01 | 000,153,600 | ---- | C] () -- C:\Windows\SysWow64\AI_ContextMenu.dll
[2010/07/20 20:58:14 | 000,016,387 | ---- | C] () -- C:\Windows\German.ini
[2010/04/08 06:51:10 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/02/19 18:02:38 | 000,274,432 | ---- | C] () -- C:\Windows\SysWow64\LXCTinst.dll
[2010/02/19 17:14:43 | 000,000,322 | ---- | C] () -- C:\Windows\WinInit.Ini
[2009/12/27 11:49:10 | 000,007,605 | ---- | C] () -- C:\Users\***\AppData\Local\Resmon.ResmonCfg
[2009/12/24 17:22:31 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\wunilog.ini
[2009/12/24 15:57:41 | 000,040,960 | R--- | C] () -- C:\Windows\SysWow64\psfind.dll
[2009/09/11 01:58:02 | 000,157,442 | ---- | C] () -- C:\Program Files (x86)\Common Files\emachines.ico
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:ABE89FFE
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:E3C56885
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:F3176E45
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:5D7E5A8F
@Alternate Data Stream - 137 bytes -> C:\ProgramData\TEMP:4CF61E54
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:1D32EC29
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:E1F04E8D
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:AB689DEA
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:4D066AD2
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:0B9176C0
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:93DE1838

< End of report >
--- --- ---



____________________________________________________________OTL Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 11/28/2010 8:01:04 AM - Run 1
OTL by OldTimer - Version 3.2.17.3     Folder = C:\Users\**\Downloads
64bit- Home Premium Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy
 
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 42.00% Memory free
4.00 Gb Paging File | 1.00 Gb Available in Paging File | 36.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 282.99 Gb Total Space | 155.04 Gb Free Space | 54.79% Space Free | Partition Type: NTFS
Drive H: | 235.56 Mb Total Space | 64.69 Mb Free Space | 27.46% Space Free | Partition Type: FAT
Drive K: | 6.34 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive L: | 1.85 Gb Total Space | 1.84 Gb Free Space | 99.86% Space Free | Partition Type: FAT
 
Computer Name: ** | User Name: **| Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Users\***\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Windows Mobile Device Center
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{B44BD314-2983-4482-9CC3-AE43CC711ABA}" = Motorola Driver Installation 4.1.0
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Lexmark 5400 Series" = Lexmark 5400 Series
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Drivers" = NVIDIA Drivers
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{06E6E30D-B498-442F-A943-07DE41D7F785}" = Microsoft Search Enhancement Pack
"{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}" = WD Diagnostics
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{171E6C1E-B5FC-11DF-B115-005056C00008}" = Google Earth Plug-in
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18472E28-FCA0-421F-BDAC-AC65012E29F2}" = ArcSoft MediaImpression
"{1dd9712a-55cb-4608-9498-2c606fa8d860}" = Nero 9 Essentials
"{1F8D3DB8-0D29-4F1A-B862-476DBCB9A0FD}" = Lernspaß 3
"{20400dbd-e6db-45b8-9b6b-1dd7033818ec}" = Nero InfoTool Help
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2348b586-c9ae-46ce-936c-a68e9426e214}" = Nero StartSmart Help
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 21
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{31D611A1-03B5-4018-BC6F-DDB5B5616478}_is1" = eMachines GameZone Console
"{33cf58f5-48d8-4575-83d6-96f574e4d83a}" = Nero DriveSpeed
"{3A22B3BA-E751-4F37-8ACB-C34B81FFABAA}" = Moorhuhn Piraten - Demo
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}" = Titan Quest
"{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595a3116-40bb-4e0f-a2e8-d7951da56270}" = NeroExpress
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{7A92A322-1A10-4153-B551-D547AA9B4649}" = Das große Abenteuer
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = eMachines Recovery Management
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110082360}" = Alien Shooter
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}" = Granny In Paradise
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}" = Merriam Websters Spell Jam
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}" = Amazonia
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}" = Alice Greenfingers
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}" = Heroes of Hellas
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}" = Dream Day First Home
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114803710}" = Star Defender 4
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}" = Dairy Dash
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}" = Farm Frenzy 2
"{83202942-84b3-4c50-8622-b8c0aa2d2885}" = Nero Express Help
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{869200db-287a-4dc0-b02b-2b6787fbcd4c}" = Nero DiscSpeed
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8DC42D05-680B-41B0-8878-6C14D24602DB}" = QuickTime
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90140011-0062-0407-0000-0000000FF1CE}" = Microsoft Office Home and Business 2010 - Deutsch
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars
"{995F1E2E-F542-4310-8E1D-9926F5A279B3}" = Windows Live Toolbar
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAF89271-2594-468D-B578-96B2E30C41C4}" = eBay Worldwide
"{AC76BA86-7AD7-1031-7B44-A94000000001}" = Adobe Reader 9.4.0 - Deutsch
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.4.0 MUI
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B5C5C17E-FEF6-4062-8151-A427AE8AF9D7}" = Titan Quest Immortal Throne
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Norton Online Backup
"{cc019e3f-59d2-4486-8d4b-878105b62a71}" = Nero DiscSpeed Help
"{D07C4EDD-1E82-4D66-A2E9-2A819A9E8A0D}" = Kids entdecken den menschlichen Körper
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{dba84796-8503-4ff0-af57-1747dd9a166d}" = Nero Online Upgrade
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{e5c7d048-f9b4-4219-b323-8bdb01a2563d}" = Nero DriveSpeed Help
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = eMachines Updater
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f4041dce-3fe1-4e18-8a9e-9de65231ee36}" = Nero ControlCenter
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{fbcdfd61-7dcf-4e71-9226-873ba0053139}" = Nero InfoTool
"100 Vertragsvorlagen und juristische Schreiben_is1" = 100 Vertragsvorlagen und juristische Schreiben
"125.000 animierte 3D-Cliparts_is1" = DATA BECKER 125.000 animierte 3D-Cliparts
"4StoryDE_is1" = 4Story 3.4
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Aimersoft Video Converter Std_is1" = Aimersoft Video Converter Std(Build 4.0.0.0)
"AirXonix_is1" = AirXonix version 1.45
"Alice" = Alice-Installationsdateien entfernen
"Ashampoo WinOptimizer 6_is1" = Ashampoo WinOptimizer 6.60
"CrazyWords" = CrazyWords
"Dao Setup" = Dao Setup
"Dart 'm Up" = Dart 'm Up
"Die Wilden Fußballkerle" = Die Wilden Fußballkerle
"eMachines Registration" = eMachines Registration
"eMachines Screensaver" = eMachines ScreenSaver
"eMachines Welcome Center" = Welcome Center
"eMule" = eMule
"Euro-Reisekosten 2010" = Euro-Reisekosten 2010 (remove only)
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Identity Card" = Identity Card
"Lilith The Will of Demon : Difficulty Changer_is1" = Lilith The Will of Demon : Difficulty Changer v1.1
"MAGIX Slideshow Maker D" = MAGIX Slideshow Maker 1.0.1.3 (D)
"MAtis - demo verze_is1" = MAtis - demo verze 2.2.9.3
"Metin2_is1" = Metin2
"Mobile Partner" = Mobile Partner
"Mozilla Firefox (3.6.11)" = Mozilla Firefox (3.6.11)
"NSS" = Norton Security Scan
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"PortraitProfessional9Trial_is1" = Portrait Professional 9.8 Test
"Romme und Canasta_is1" = Romme und Canasta
"Sacred Underworld_is1" = Sacred Underworld
"sm-un1.u32" = SoftMaker Office 2006 (C:\Program Files (x86)\SoftMaker Office 2006)
"softonic-de3 Toolbar" = softonic-de3 Toolbar
"Software Informer_is1" = Software Informer 1.0 BETA
"SpongeBob SquarePants Employee of the Month" = SpongeBob SquarePants Employee of the Month
"Sudoku Maya Gold_is1" = Sudoku Maya Gold
"SystemRequirementsLab" = System Requirements Lab
"Verbindungsassistent" = Verbindungsassistent
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR Archivierer
"World of Warcraft" = World of Warcraft
"Xfire" = Xfire (remove only)
"Youtube Music Downloader_is1" = Youtube Music Downloader V3.4
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Beach Soccer" = Beach Soccer
"Free Realms Installer" = Free Realms Installer
"Google Chrome" = Google Chrome
"Move Media Player" = Move Media Player
"SOE-Free Realms" = Free Realms
"Ubaya" = Ubaya
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 11/8/2010 11:09:53 AM | Computer Name = **| Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "c:\program files (x86)\windows
 live\photo gallery\MovieMaker.Exe".Error in manifest or policy file "c:\program
 files (x86)\windows live\photo gallery\WLMFDS.DLL" on line 8.  Component identity
 found in manifest does not match the identity of the component requested.  Reference
 is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".  Definition
 is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".  Please use
 sxstrace.exe for detailed diagnosis
Error - 11/9/2010 7:21:27 AM | Computer Name = ** | Source = Application Error | ID = 1000
Description = Faulting application name: winupgro.exe, version: 3.1.0.0, time stamp:
 0x4c35b6fb  Faulting module name: kernel32.dll, version: 6.1.7600.16385, time stamp:
 0x4a5bdbde  Exception code: 0xc0000005  Fault offset: 0x00094bdb  Faulting process id:
 0x880  Faulting application start time: 0x01cb800037863240  Faulting application path:
 C:\Users\yannick\AppData\Roaming\drivers\winupgro.exe  Faulting module path: C:\Windows\syswow64\kernel32.dll
Report
 Id: 7d947da0-ebf3-11df-b99f-0025115dca2e
 
Error - 11/9/2010 7:31:22 AM | Computer Name = ** | Source = CVHSVC | ID = 100
Description = Nur zur Information.  (Patch task for {90140011-0062-0407-0000-0000000FF1CE}):
 DownloadLatest Failed: There are currently no active network connections. Background
 Intelligent Transfer Service (BITS) will try again when an adapter is connected.

 
Error - 11/9/2010 7:39:18 AM | Computer Name = ** | Source = Application Error | ID = 1000
Description = Faulting application name: Verbindungsassistent.exe, version: 1.0.0.1,
 time stamp: 0x4c7fbfb7  Faulting module name: unknown, version: 0.0.0.0, time stamp:
 0x00000000  Exception code: 0xc0000005  Fault offset: 0x302c3532  Faulting process id:
 0x614  Faulting application start time: 0x01cb8002bc890f60  Faulting application path:
 C:\Program Files (x86)\Verbindungsassistent\Verbindungsassistent.exe  Faulting module
 path: unknown  Report Id: fc11ad40-ebf5-11df-b99f-0025115dca2e
 
Error - 11/9/2010 7:42:44 AM | Computer Name = ** | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
 with error: A required certificate is not within its validity period when verifying
 against the current system clock or the timestamp in the signed file.  .
 
Error - 11/9/2010 8:11:54 AM | Computer Name = ** | Source = Application Error | ID = 1000
Description = Faulting application name: winupgro.exe, version: 3.1.0.0, time stamp:
 0x4c35b6fb  Faulting module name: kernel32.dll, version: 6.1.7600.16385, time stamp:
 0x4a5bdbde  Exception code: 0xc0000005  Fault offset: 0x00094bdb  Faulting process id:
 0x110  Faulting application start time: 0x01cb800746168b00  Faulting application path:
 C:\Users\yannick\AppData\Roaming\drivers\winupgro.exe  Faulting module path: C:\Windows\syswow64\kernel32.dll
Report
 Id: 8a42f700-ebfa-11df-b99f-0025115dca2e
 
Error - 11/9/2010 8:12:28 AM | Computer Name = ** | Source = Application Error | ID = 1000
Description = Faulting application name: winupgro.exe, version: 3.1.0.0, time stamp:
 0x4c35b6fb  Faulting module name: kernel32.dll, version: 6.1.7600.16385, time stamp:
 0x4a5bdbde  Exception code: 0xc0000005  Fault offset: 0x00094bdb  Faulting process id:
 0xbc8  Faulting application start time: 0x01cb800759f3cf20  Faulting application path:
 C:\Users\yannick\AppData\Roaming\drivers\winupgro.exe  Faulting module path: C:\Windows\syswow64\kernel32.dll
Report
 Id: 9e35a780-ebfa-11df-b99f-0025115dca2e
 
Error - 11/9/2010 8:18:05 AM | Computer Name = ** | Source = Application Error | ID = 1000
Description = Faulting application name: winupgro.exe, version: 3.1.0.0, time stamp:
 0x4c35b6fb  Faulting module name: kernel32.dll, version: 6.1.7600.16385, time stamp:
 0x4a5bdbde  Exception code: 0xc0000005  Fault offset: 0x00094bdb  Faulting process id:
 0x9d0  Faulting application start time: 0x01cb80082252f9a0  Faulting application path:
 C:\Users\yannick\AppData\Roaming\drivers\winupgro.exe  Faulting module path: C:\Windows\syswow64\kernel32.dll
Report
 Id: 66f66a60-ebfb-11df-b99f-0025115dca2e
 
Error - 11/9/2010 9:58:39 AM | Computer Name = ** | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
 Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
 Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3.  The value
 "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
 "version" in element "assemblyIdentity" is invalid.
 
Error - 11/9/2010 9:59:11 AM | Computer Name = ** | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "c:\program files (x86)\windows
 live\photo gallery\MovieMaker.Exe".Error in manifest or policy file "c:\program
 files (x86)\windows live\photo gallery\WLMFDS.DLL" on line 8.  Component identity
 found in manifest does not match the identity of the component requested.  Reference
 is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".  Definition
 is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".  Please use
 sxstrace.exe for detailed diagnosis.
 
[ Media Center Events ]
Error - 6/11/2010 3:29:34 PM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 21:29:34 - Error connecting to the internet.  21:29:34 -     Unable 
to contact server..  
 
Error - 6/11/2010 3:29:45 PM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 21:29:39 - Error connecting to the internet.  21:29:39 -     Unable 
to contact server..  
 
Error - 6/11/2010 4:31:31 PM | Computer Name = **| Source = MCUpdate | ID = 0
Description = 22:31:31 - Error connecting to the internet.  22:31:31 -     Unable 
to contact server..  
 
Error - 6/11/2010 4:31:37 PM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 22:31:36 - Error connecting to the internet.  22:31:36 -     Unable 
to contact server..  
 
Error - 6/12/2010 1:19:07 AM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 07:19:07 - Error connecting to the internet.  07:19:07 -     Unable 
to contact server..  
 
Error - 6/12/2010 1:19:19 AM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 07:19:12 - Error connecting to the internet.  07:19:12 -     Unable 
to contact server..  
 
Error - 6/13/2010 6:44:08 AM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 12:44:08 - Error connecting to the internet.  12:44:08 -     Unable 
to contact server..  
 
Error - 6/13/2010 6:44:18 AM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 12:44:13 - Error connecting to the internet.  12:44:13 -     Unable 
to contact server..  
 
Error - 6/13/2010 10:49:24 AM | Computer Name = ** | Source = MCUpdate | ID = 0
Description = 16:49:24 - Error connecting to the internet.  16:49:24 -     Unable 
to contact server..  
 
Error - 6/13/2010 10:49:35 AM | Computer Name = **| Source = MCUpdate | ID = 0
Description = 16:49:29 - Error connecting to the internet.  16:49:29 -     Unable 
to contact server..  
 
[ System Events ]
Error - 7/28/2010 6:50:18 PM | Computer Name = ** | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
 
Error - 7/28/2010 6:50:22 PM | Computer Name = **| Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
 
Error - 7/28/2010 6:50:26 PM | Computer Name = ** | Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
 
Error - 7/28/2010 6:50:29 PM | Computer Name = **| Source = cdrom | ID = 262151
Description = The device, \Device\CdRom0, has a bad block.
 
Error - 8/2/2010 7:18:17 AM | Computer Name = ** | Source = Service Control Manager | ID = 7034
Description = The lxct_device service terminated unexpectedly.  It has done this
 1 time(s).
 
Error - 8/9/2010 11:56:16 AM | Computer Name = **| Source = Disk | ID = 262151
Description = The device, \Device\Harddisk3\DR3, has a bad block.
 
Error - 8/9/2010 11:56:17 AM | Computer Name = ** | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk3\DR3, has a bad block.
 
Error - 8/10/2010 9:15:15 AM | Computer Name = ** | Source = DCOM | ID = 10010
Description = 
 
Error - 8/13/2010 1:07:39 AM | Computer Name = ** | Source = DCOM | ID = 10010
Description = 
 
Error - 9/1/2010 3:23:38 PM | Computer Name = ** | Source = EventLog | ID = 6008
Description = The previous system shutdown at 21:19:13 on ?01.?09.?2010 was unexpected.
 
 
< End of report >
--- --- ---
Geändert von die.das.ich (28.11.2010 um 10:13 Uhr)

Alt 28.11.2010, 11:28   #2
markusg
/// Malware-holic
 
Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt! - Standard

Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!


nutze mal findykill:
FindyKill
bin mir nicht ganz sicher ob das unter x64 bit systemen läuft.
__________________

__________________
Antwort

Themen zu Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!
64-bit, alternate, autorun, babylon, becker, bho, c:\windows\system32\rundll32.exe, conduit, converter, defender, downloader, emachines, error, excel, failed, firefox, flash player, format, google, google chrome, google earth, home, home premium, ieframe.dll, install.exe, installation, location, logfile, media center, microsoft office word, mozilla, oldtimer, otl logfile, otl.exe, plug-in, programdata, realtek, registry, required, rundll, saver, scan, search the web, searchplugins, security, security scan, security update, server, shell32.dll, shortcut, software, spam-mails, spammails, start menu, symantec, syswow64, video converter, webcheck, windows


« Mein Pc schaltete sich selber aus! | Pc ist lahm - Mauszeiger blinkt - Anwendung friert ein... »


Ähnliche Themen: Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!


  1. Email Adresse versendet Spam (über 4000 Mails) trotz Passwortänderung/Formatierung/Systemwechsel an Kontakte und Fremde (kein Spoofing)
    Plagegeister aller Art und deren Bekämpfung - 01.10.2015 (9)
  2. Malware? SPAM-Mails in meinem Namen an meine Kontakte
    Log-Analyse und Auswertung - 28.09.2015 (10)
  3. SPAM wird von meiner Mail aus an meine Kontakte versendet
    Plagegeister aller Art und deren Bekämpfung - 02.04.2015 (39)
  4. vor 1 Woche Trojaner mit "UPS-Mail" eingefangen, nun wieder Spam-Mails über meine Accounts...
    Log-Analyse und Auswertung - 23.03.2015 (11)
  5. Yahoo-Mail verschickt Mails an meine Kontakte, aber alle Security Scans behaupten der Rechner sei sicher
    Plagegeister aller Art und deren Bekämpfung - 12.06.2014 (1)
  6. Meine Mail-Kontakte erhalten Mails unter meinem Namen und fast identischer Mailadresse
    Plagegeister aller Art und deren Bekämpfung - 15.04.2014 (4)
  7. Jemand nutzt meine Mail Adresse zum SPAM Versand - unverwünschte Mails vom Mailder Deameon
    Überwachung, Datenschutz und Spam - 18.07.2013 (3)
  8. Spam mails über meine Email Adresse
    Plagegeister aller Art und deren Bekämpfung - 06.05.2013 (12)
  9. Dritter erstellt Account über meine E-mail Adresse
    Plagegeister aller Art und deren Bekämpfung - 22.09.2012 (8)
  10. E-Mail Account bei gmx.de verschickt Mails an alle meine Kontakte
    Plagegeister aller Art und deren Bekämpfung - 19.07.2012 (3)
  11. Automatische Spam-Mails an alle meine Kontakte (live.de)
    Plagegeister aller Art und deren Bekämpfung - 26.06.2012 (3)
  12. Google Mail Konto: Spam-Email an alle meine Kontakte versendet
    Überwachung, Datenschutz und Spam - 22.11.2011 (1)
  13. Facebook versendet an alle meine Kontakte Spam mails
    Log-Analyse und Auswertung - 15.08.2011 (1)
  14. Google Mail Konto: Spam-Email an alle meine Kontakte versendet
    Überwachung, Datenschutz und Spam - 25.04.2011 (0)
  15. Verschicke Spam-Mails an meine Kontakte
    Plagegeister aller Art und deren Bekämpfung - 27.02.2011 (6)
  16. Über meine email-Adresse wurde Spam an Kontakte versendet! Malware gefunden!
    Log-Analyse und Auswertung - 16.11.2010 (12)
  17. Spam über meine email Adresse versendet
    Log-Analyse und Auswertung - 17.10.2010 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt! - Hallo, seit ca. 3 Wochen werden unregelmässig (mal 1x/Wo., mal 5 x /Tag) Spam-Mails mit Links haufenweise über meine Mailadresse auf meine Kontakte geschickt. Kann mir jemand sagen, was ich - Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt!...
Archiv
Du betrachtest: Spam-Mails über meine Mail-Adresse auf meine Kontakte geschickt! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129