NEUE BEITRÄGE ERSTELLEN: Mit folgenden Infos Thread im Forum erstellen |
|
---|---|
30.04.2006, 20:10
Ehrenmitglied
Beiträge: 29434 |
|
|
|
05.07.2007, 18:40
Moderator
Beiträge: 7805 |
#2
Sollte nach dem Kontrollieren der Reporte aus dem ersten Posting, durch einen Helfer ein Combofix Report gefordert werden, findet ihr hier die Anleitung dazu.
http://www.bleepingcomputer.com/combofix/de/wie-combofix-benutzt-wird Lade es von http://download.bleepingcomputer.com/sUBs/ComboFix.exe und speichere es als test.exe auf den Desktop Danach schliesse alle Fenster, deaktiviere alle Hintergrundwaechter (AV und z.B. Spybots Tea-Timer) starte die combofix.exe, lies die Informationen auf den auftauchenden Fenstern und beantworte sie danach mit Ja. Der Scan mit Combofix kann einige Zeit in Anspruch nehmen, also habe etwas Geduld. Waehrend des Scans bitte nichts am Rechner unternehmen Es kann moeglich sein, das der Rechner zwischendurch neu gestartet wird. Nach Scanende wird ein Report angezeigt, den bitte kopieren und in deinem Thread einfuegen. Nutze immer eine aktuelle Version von Combofix, auch wenn du "deine" erst vor einem Tag heruntergeladen hast. Um Combofix unter Vista(32 Bit) nutzen zu koennen muss man es als Administrator starten. Also rechte Maustaste auf die Combofix.exe und "Als Administrator ausfuehren" waehlen. __________ MfG Ralf SEO-Spam Hunter |
|
|
12.08.2010, 18:14
Moderator
Beiträge: 5694 |
#3
Bitte nutze für die Erstellung eines neuen Threads diese Anleitung.
|
|
|
04.04.2014, 09:18
Member
Beiträge: 123 |
#4
GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-04-04 09:18:16 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 WDC_WD10 rev.80.0 931,51GB Running: 26bi4ft6.exe; Driver: C:\Users\TomTom41\AppData\Local\Temp\fxdorkow.sys ---- Kernel code sections - GMER 2.1 ---- INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528 fffff80003a00000 63 bytes [00, 00, 15, 02, 46, 69, 6C, ...] INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 592 fffff80003a00040 1 byte [10] .text C:\Windows\System32\win32k.sys!W32pServiceTable fffff960000e3f00 7 bytes [00, 98, F3, FF, 01, A6, F0] .text C:\Windows\System32\win32k.sys!W32pServiceTable + 8 fffff960000e3f08 3 bytes [C0, 06, 02] ---- User code sections - GMER 2.1 ---- .text C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe[1316] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe[1316] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe[1608] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe[1608] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe[2276] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe[2276] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE[4004] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE[4004] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[4112] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[4112] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe[2164] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe[2164] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 ? C:\Windows\system32\mssprxy.dll [2164] entry point in ".rdata" section 000000006bdb71e6 .text C:\Program Files (x86)\Google\Google Talk\googletalk.exe[3840] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\Google\Google Talk\googletalk.exe[3840] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe[5368] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe[5368] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe[5876] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe[5876] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\AVG\AVG2014\avgui.exe[5216] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\AVG\AVG2014\avgui.exe[5216] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[1308] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[1308] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe[6796] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe[6796] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe[6908] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758c1465 2 bytes [8C, 75] .text C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe[6908] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758c14bb 2 bytes [8C, 75] .text ... * 2 .text C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe[792] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 0000000076a18769 5 bytes [33, C0, C2, 04, 00] ---- User IAT/EAT - GMER 2.1 ---- IAT C:\Windows\Explorer.EXE[4720] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!FreeLibraryAndExitThread] [10002370] C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll IAT C:\Windows\Explorer.EXE[4720] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateThread] [100034e0] C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll IAT C:\Windows\Explorer.EXE[4720] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!LoadLibraryA] [100011e0] C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll ---- Threads - GMER 2.1 ---- Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4508:4164] 000007fefafe2a7c Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4508:4276] 000007fef3b64830 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4508:1788] 000007fef8095124 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4508:8480] 000007fef3ae9d90 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [4508:9936] 000007fef3b64830 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@Type 2 Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@Start 3 Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@Tag 5 Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@ImagePath system32\DRIVERS\EsgScanner.sys Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@DisplayName EsgScanner Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@Group FSFilter Activity Monitor Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@DependOnService FltMgr? Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner@Description Enigma Scan filter Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner\Instances Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner\Instances@DefaultInstance EsgScanner Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner\Instances\EsgScanner Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner\Instances\EsgScanner@Altitude 10000 Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner\Instances\EsgScanner@Flags 1 Reg HKLM\SYSTEM\CurrentControlSet\services\EsgScanner Reg HKLM\SYSTEM\CurrentControlSet\services\rdyboost\Parameters@LastBootPlanUserTime ?Fr?, ?Apr ?04 ?14, 01:51:04????????????U?????????????????????? Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@Type 16 Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@Start 2 Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@ImagePath C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@DisplayName SpyHunter 4 Service Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@Group Base Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@ObjectName LocalSystem Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service@Description SpyHunter 4 Helper Service Reg HKLM\SYSTEM\CurrentControlSet\services\SpyHunter 4 Service ---- EOF - GMER 2.1 ---- |
|
|
04.04.2014, 09:22
Member
Beiträge: 123 |
#5
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 09:22:03, on 04.04.2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.16521) FIREFOX: 28.0 (de) Boot mode: Normal Running processes: C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe C:\Program Files (x86)\Google\Google Talk\googletalk.exe C:\Program Files (x86)\TraXEx\TraXEx.exe C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\PC Speed Maximizer\SPMSmartScan.exe C:\Program Files (x86)\PC Speed Maximizer\SPMReminder.exe C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe C:\Program Files (x86)\AVG\AVG2014\avgui.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Users\TomTom41\Downloads\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://start.qone8.com/web/?type=ds&ts=1383509639&from=amt&uid=WDCXWD10EARS-22Y5B1_WD-WCAV5N14192441924&q={searchTerms} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://start.qone8.com/web/?type=ds&ts=1383509639&from=amt&uid=WDCXWD10EARS-22Y5B1_WD-WCAV5N14192441924&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: YouTubeUploaderLib.YouTubeUploaderLib - - (no file) R3 - URLSearchHook: (no name) - {f082c5e6-14c5-4619-8e93-07c2cb297e71} - (no file) R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file) R3 - URLSearchHook: (no name) - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - (no file) F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - mscoree.dll (file missing) O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: Soda PDF 6 Helper - {ACEC6276-3D7B-4AA9-BE79-23520A23026D} - C:\Program Files (x86)\Soda PDF 6\creator-ie-helper.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files (x86)\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O2 - BHO: [verify-U]_Add-on - {F4552A56-119C-478E-AB3F-2C850F78B72E} - C:\Program Files (x86)\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files (x86)\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - mscoree.dll (file missing) O3 - Toolbar: Soda PDF 6 Toolbar - {35251526-B7A4-44E4-8B2E-FD62AE267B82} - C:\Program Files (x86)\Soda PDF 6\creator-ie-plugin.dll O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe" O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKCU\..\Run: [Facebook Update] "C:\Users\TomTom41\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\Windows\TEMP\E_S92B7.tmp" /EF "HKCU" O4 - HKCU\..\Run: [BrowserMask] "C:\Program Files (x86)\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe" -delayed O4 - HKCU\..\Run: [Google Update] "C:\Users\TomTom41\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [googletalk] "C:\Program Files (x86)\Google\Google Talk\googletalk.exe" /autostart O4 - HKCU\..\Run: [PC Speed Maximizer] C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Facebook Update] "C:\Users\TomTom41\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver (User '?') O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Akamai NetSession Interface] "C:\Users\TomTom41\AppData\Local\Akamai\netsession_win.exe" (User '?') O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\Windows\TEMP\E_S92B7.tmp" /EF "HKCU" (User '?') O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [BrowserMask] "C:\Program Files (x86)\AntiBrowserSpy\AntiBrowserSpyBrowserMaske.exe" -delayed (User '?') O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Google Update] "C:\Users\TomTom41\AppData\Local\Google\Update\GoogleUpdate.exe" /c (User '?') O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User '?') O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [googletalk] "C:\Program Files (x86)\Google\Google Talk\googletalk.exe" /autostart (User '?') O4 - HKUS\S-1-5-21-2730371135-3999899296-2740375681-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [PC Speed Maximizer] C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe (User '?') O4 - Global Startup: TraXEx PC-Putzer.lnk = C:\Program Files (x86)\TraXEx\TraXEx.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\MIF5BA~1\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: IE-Spuren löschen - {6C7C0C9A-B51D-4ADB-A74D-C4E33744F866} - C:\Program Files (x86)\TraXEx\Integration\TraXEx Internet Explorer.lnk O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Löschautomat - {8DA7743F-9274-4BE8-899E-C0FF6ED61B00} - C:\Program Files (x86)\TraXEx\Integration\TraXEx Löschautomat.lnk O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\OFFICE11\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.clonewarsadventures.com O15 - Trusted Zone: *.freerealms.com O15 - Trusted Zone: *.soe.com O15 - Trusted Zone: *.sony.com O15 - Trusted Zone: *.starstable.com O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: LULU Software CrashHandler - LULU SOFTWARE LIMITED - C:\Program Files (x86)\Soda PDF 6\crash-handler-ws.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Soda PDF 6 - LULU SOFTWARE LIMITED - C:\Program Files (x86)\Soda PDF 6\ws.exe O23 - Service: Soda PDF 6 Creator - LULU SOFTWARE LIMITED - C:\Program Files (x86)\Soda PDF 6\creator-ws.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 18265 bytes |
|
|
04.04.2014, 09:25
Member
Beiträge: 123 |
#6
Acer Arcade Deluxe
Acer Arcade Deluxe Acer Arcade Deluxe Acer Arcade Movie Acer eRecovery Management Acer GameZone Console Acer Registration Acer ScreenSaver Acer Updater Acrobat.com Adobe AIR Adobe AIR Adobe Flash Player 12 ActiveX Adobe Flash Player 12 Plugin Adobe Reader XI (11.0.06) - Deutsch Adobe Shockwave Player 12.0 Advanced System Protector AntiBrowserSpy Apple Application Support Apple Software Update ArcSoft Panorama Maker 6 Avira Free Antivirus AVM FRITZ!Box Dokumentation AVM FRITZ!Box Druckeranschluss Classic Link Drivers Compatibility Pack für 2007 Office System COMPUTERBILD Alles-Öffner COMPUTERBILD Alles-Öffner COMPUTERBILD Notfall-Security-DVD COMPUTERBILD-Abzockschutz D3DX10 Die Sims™ 3 Die Sims™ 3 Jahreszeiten DieSimsMittelalter eBay Worldwide EPSON Copy Utility 3 EPSON PhotoQuicker3.5 EPSON PRINT Image Framer Tool2.1 EPSON Scan EPSON Web-To-Page EPSON-Drucker-Software eSobi v2 Facebook Video Calling 2.0.0.447 ffdshow v1.2.4422 [2012-04-09] Formatwandler 4 SE Free Video Cutter Joiner 9.9 FUJIFILM MyFinePix Studio 2.0 Gigaflat Google Chrome Google Earth Google Talk (remove only) Google Talk Plugin Google Update Helper Google+ Auto Backup Hercules Classic Webcam Drivers Hercules Deluxe Optical Glass Hercules Webcam Station Evolution High-Definition Video Playback 10 Hotkey Utility HTC Driver Installer HTC Sync Manager Identity Card Iminent Intel(R) Management Engine Components Intel(R) Rapid Storage Technology IPTInstaller Java 7 Update 51 Junk Mail filter update K-Lite Codec Pack 6.0.4 (Basic) Malwarebytes Anti-Malware Version 2.00.0.1000 Mesh Runtime Messenger Companion Microsoft Office Excel Viewer Microsoft Office File Validation Add-In Microsoft Office Klick-und-Los 2010 Microsoft Office Live Add-in 1.5 Microsoft Office Professional Edition 2003 Microsoft Primary Interoperability Assemblies 2005 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft WSE 3.0 Runtime Microsoft_VC100_CRT_x86 Mozilla Firefox 28.0 (x86 de) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MyWinLocker MyWinLocker Suite MyWinLocker Suite NAVIGON Fresh 3.4.1 Nero 10 Menu TemplatePack Basic Nero 10 Movie ThemePack Basic Nero BackItUp 10 Nero BackItUp 10 Help (CHM) Nero Burning ROM 10 Nero BurningROM 10 Help (CHM) Nero BurnRights 10 Nero BurnRights 10 Help (CHM) Nero Control Center 10 Nero ControlCenter 10 Help (CHM) Nero Core Components 10 Nero CoverDesigner 10 Nero CoverDesigner 10 Help (CHM) Nero DiscSpeed 10 Nero DiscSpeed 10 Help (CHM) Nero Dolby Files 10 Nero Express 10 Nero Express 10 Help (CHM) Nero InfoTool 10 Nero InfoTool 10 Help (CHM) Nero MediaHub 10 Nero MediaHub 10 Help (CHM) Nero Multimedia Suite 10 Nero Recode 10 Nero Recode 10 Help (CHM) Nero RescueAgent 10 Nero RescueAgent 10 Help (CHM) Nero SoundTrax 10 Nero SoundTrax 10 Help (CHM) Nero StartSmart 10 Nero StartSmart 10 Help (CHM) Nero Update Nero Vision 10 Nero Vision 10 Help (CHM) Nero WaveEditor 10 Nero WaveEditor 10 Help (CHM) neroxml Nikon Message Center 2 Norton Online Backup Notepad++ NVIDIA PhysX NVIDIA Stereoscopic 3D Driver Origin PC Speed Maximizer v3.2 PC Tools Registry Mechanic 11.1 Picasa 3 PIF DESIGNER2.1 ProtectDisc Driver, Version 11 QuickTime 7 RAF RealDownloader RealNetworks - Microsoft Visual C++ 2008 Runtime RealNetworks - Microsoft Visual C++ 2010 Runtime RealPlayer Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader RealUpgrade 1.1 ScanToWeb Security Update for CAPICOM (KB931906) Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Shredder SimCity™ Skype Click to Call Skype™ 6.14 Soda PDF 6 Soda PDF 6 Convert Module Soda PDF 6 Create Module Soda PDF 6 Edit Module Soda PDF 6 Insert Module Soda PDF 6 View Module swMSM System Speedup TraXEx 6.0 TuneUp Utilities 2014 Veetle TV Visual Studio 2012 x86 Redistributables VLC media player 2.1.3 Welcome Center Windows Live Communications Platform Windows Live Essentials Windows Live Essentials Windows Live Fotogalerie Windows Live Installer Windows Live Mail Windows Live Mail Windows Live Mesh Windows Live Mesh Windows Live Mesh ActiveX control for remote connections Windows Live Messenger Windows Live Messenger Windows Live Messenger Companion Core Windows Live Movie Maker Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Windows Live Writer Windows Live Writer Resources WinRAR 4.01 (32-Bit) Wise Care 365 version 2.20 woman - Jewel Master YouTube Song Downloader [verify-U]_AVS_IE_Add-on |
|
|
Disclaimer: Nutzung aller hier aufgelisteten Programme und Tipps auf eigene Gefahr. Vorher im Zweifel die wichtigsten Daten extern sichern und pruefen!
Erstelle im Forum ein neues Thema/Thread und wähle dafür einen aussagekräftigen Titel!
Als Vorarbeit arbeite folgende Punkte ab
1.
Problembeschreibung / Symptome ?
Das Problem ausfuehrlich beschreiben und falls vorhanden auch die Pfade der Viren/Malware, die vom Virenscanner gefunden wurden mit angeben.
-----------------------------------------------------------------------------------------------
2.
Temporäre Dateien beseitigen
Nutze die mit Windows gelieferte Datenträgerbereinigung(außer alte Dateien komprimieren), das Säubern der Systemwiederherstellung über "weitere Optionen" sollte man erst nach der erfolgreichen Bereinigung nutzen!
http://windowshelp.microsoft.com/Windows/de-DE/help/1264bc24-72a8-48aa-84e3-a355327139d91031.mspx
-----------------------------------------------------------------------------------------------
3.
mache einen Scan mit Malwarebytes -
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
Lade es herunter, installiere es und wähle bei Reiter:
-> “Update“> “Suche nach Aktualisierungen“
-> “Einstellungen“> “Beende Internet Explorer während des Löschvorgangs“
-> “Scanner”> "Quickscan durchfuehren".
Wenn am Ende Infizierungen gefunden werden, diese anhaken und entfernen lassen. Starte dein Rechner neu
es ist hilfreich für den Mod im Sicherheitsforum, wenn dann das Reinigungslog von Malwarebytes mit in den Beitrag kopiert wird. (kann man auch als Anhang als txt-Datei machen)
Downloadlink, falls der Download von der Mbam Seite geblockt wird:
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html
-----------------------------------------------------------------------------------------------
4.
Erstelle ein Gmer Report:
Lade es von hier http://www.gmer.net/download.php starte die Datei, druecke im Reiter Rootkits auf scan. Nach ende des Scans bitte mit Hilfe von Copy den Report in den eigenen Thread einfuegen...
Um Gmer unter Vista(32 Bit) nutzen zu koennen muss man es als Administrator starten. Also rechte Maustaste auf die heruntergeladenen Exedatei und "Als Administrator ausfuehren" waehlen.
-----------------------------------------------------------------------------------------------
5.
Erstellen eines Hijackthis-Logfiles
Download: http://www.trendsecure.com/portal/en-US/threat_analytics/HiJackThis.zip
Lade/entpacke HijackThis in einen extra Ordner, Benenne Hijackthis in HJT um, starte es und waehle
---> None of the above just start the program --> Scan -> Save log --> hijackthis.log - Save - es öffnet sich der Editor
nun das KOMPLETTE Log mit rechtem Mausklick abkopieren und ins Forum mit rechtem Mausklick "einfügen"
Unter Windows Vista muss Hijackthis als Administrator ausgefuehrt werden. Dazu mit der linken Maustaste auf das Programm klicken und "Als Administrator ausfuehren" waehlen.
-----------------------------------------------------------------------------------------------
6.
Erstellen einer Uninstall Liste
Starte Hijackthis, waehle "Open the Misc Tools section", oeffne "Open Uninstall Manager", drücke dort "Save list...". Sobald die Liste gespeichert wird, öffnet sich ein Fenster mit den entsprechenden Eintraegen. Bitte diese auch in den eigenen Thread kopieren.
-----------------------------------------------------------------------------------------------
Disclaimer: Nutzung aller hier aufgelisteten Programme und Tipps auf eigene Gefahr.
__________
MfG Sabina
rund um die PC-Sicherheit