"gLuTaMa" - 07-03-24 18:50:03 Service Pack 2 ComboFix 07-03-23 - Running from: "C:\Programme\Mozilla Firefox" ((((((((((((((((((((((((((((((( Files Created from 2007-02-24 to 2007-03-24 )))))))))))))))))))))))))))))))))) 2007-03-23 16:53 75,932 --a------ C:\WINDOWS\system32\drivers\klick.dat 2007-03-23 16:53 74,396 --a------ C:\WINDOWS\system32\drivers\klin.dat 2007-03-23 16:52 428,320 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2007-03-23 16:52 23,584 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat 2007-03-23 16:52 d-------- C:\Programme\KasperskyAV6.0.2.621 2007-03-23 16:52 d-------- C:\Programme\Kaspersky Lab 2007-03-23 16:52 d-------- C:\DOKUME~1\ALLUSE~1\ANWEND~1\Kaspersky Lab 2007-03-22 21:57 255,848 --a------ C:\WINDOWS\system32\xactengine2_6.dll 2007-03-22 18:08 d-------- C:\Programme\NO1 Video Converter 2007-03-22 17:57 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll 2007-03-22 17:57 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll 2007-03-22 17:57 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll 2007-03-22 17:57 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll 2007-03-22 17:57 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll 2007-03-22 17:57 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll 2007-03-22 17:57 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll 2007-03-22 17:57 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll 2007-03-22 17:51 d-------- C:\movies 2007-03-16 17:53 d-------- C:\DOKUME~1\ALLUSE~1\ANWEND~1\Spybot - Search & Destroy 2007-03-16 17:52 d-------- C:\Programme\Lavasoft 2007-03-16 17:52 d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\Lavasoft 2007-03-13 15:21 d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\dvdcss 2007-03-12 16:14 d-------- C:\Programme\iTunes 2007-03-12 16:14 d-------- C:\Programme\iPod 2007-03-12 16:14 d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\Apple Computer 2007-03-12 16:13 d-------- C:\Programme\QuickTime 2007-03-12 16:12 d-------- C:\Programme\Apple Software Update 2007-03-09 19:58 25,734 --a------ C:\WINDOWS\system32\drivers\klop.dat 2007-03-09 19:52 200,768 --a------ C:\WINDOWS\system32\klogon.dll 2007-03-06 17:53 d-------- C:\Programme\EA SPORTS 2007-03-03 20:39 110,360 --a------ C:\WINDOWS\system32\drivers\kl1.sys 2007-03-01 18:04 d-------- C:\claudis Ipod Musik 2007-03-01 17:57 d-------- C:\Programme\Winamp 2007-02-24 14:31 876,544 --a------ C:\WINDOWS\system32\XaraDocG.dll 2007-02-24 14:31 86,016 --a------ C:\WINDOWS\system32\BinCoder.dll 2007-02-24 14:31 253,952 --a------ C:\WINDOWS\system32\TemplOp.dll 2007-02-24 14:31 23,552 --a------ C:\WINDOWS\system32\XFontMan.dll 2007-02-24 14:31 180,224 --a------ C:\WINDOWS\system32\xwsindex.exe 2007-02-24 14:31 131,072 --a------ C:\WINDOWS\system32\BmpImporter.dll 2007-02-24 14:31 126,976 --a------ C:\WINDOWS\system32\TemplMan.dll 2007-02-24 14:31 118,784 --a------ C:\WINDOWS\system32\XMUpload.dll 2007-02-24 14:31 d-------- C:\WINDOWS\system32\Xara 2007-02-24 14:31 d-------- C:\Programme\Xara 2007-02-24 14:31 d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\Xara 2007-02-24 14:30 110,592 --a------ C:\WINDOWS\system32\tsccvid.dll (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-03-24 17:30 -------- d-------- C:\Programme\mozilla thunderbird 2007-03-24 17:23 12 --a------ C:\WINDOWS\bthservsdp.dat 2007-03-22 21:34 -------- d--h----- C:\Programme\installshield installation information 2007-03-22 20:37 -------- d-------- C:\Programme\usdb8 2007-03-16 17:52 -------- d-------- C:\Programme\usdownloader 134 beta 8 2007-03-16 17:51 -------- d-------- C:\Programme\Gemeinsame Dateien\wise installation wizard 2007-03-12 16:05 -------- d-------- C:\Programme\icqlite 2007-02-28 18:00 -------- d-------- C:\Programme\flashfxp 2007-02-25 12:05 -------- d-------- C:\Programme\java 2007-02-15 22:10 -------- d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\secondlife 2007-02-12 23:01 -------- d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\adobeum 2007-02-11 02:19 77228 --a------ C:\WINDOWS\system32\perfc007.dat 2007-02-11 02:19 421010 --a------ C:\WINDOWS\system32\perfh007.dat 2007-02-10 18:22 -------- d-------- C:\Programme\pcsx2 2007-02-10 18:06 -------- d-------- C:\Programme\divx 2007-02-03 11:16 -------- d-------- C:\Programme\thq 2007-02-01 05:56 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll 2007-02-01 05:56 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll 2007-02-01 05:56 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll 2007-02-01 05:56 639066 --a------ C:\WINDOWS\system32\divx.dll 2007-01-31 22:27 524288 --a------ C:\WINDOWS\system32\divxsm.exe 2007-01-31 19:29 -------- d-------- C:\Programme\google 2007-01-31 00:15 118784 --a------ C:\WINDOWS\system32\divxcodecupdatechecker.exe 2007-01-30 06:03 36624 --------- C:\WINDOWS\system32\drivers\pxhelp20.sys 2007-01-30 06:03 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll 2007-01-30 06:03 2560 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys 2007-01-30 06:03 2432 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2007-01-30 06:03 200704 --a------ C:\WINDOWS\system32\ssldivx.dll 2007-01-30 06:03 129784 --------- C:\WINDOWS\system32\pxafs.dll 2007-01-30 06:03 118520 --------- C:\WINDOWS\system32\pxinsi64.exe 2007-01-30 06:03 116472 --------- C:\WINDOWS\system32\pxcpyi64.exe 2007-01-30 06:03 1044480 --a------ C:\WINDOWS\system32\libdivx.dll 2007-01-30 05:56 73728 --a------ C:\WINDOWS\system32\dpl100.dll 2007-01-30 05:56 593920 --a------ C:\WINDOWS\system32\dpugui11.dll 2007-01-30 05:56 57344 --a------ C:\WINDOWS\system32\dpv11.dll 2007-01-30 05:56 53248 --a------ C:\WINDOWS\system32\dpugui10.dll 2007-01-30 05:56 344064 --a------ C:\WINDOWS\system32\dpus11.dll 2007-01-30 05:56 294912 --a------ C:\WINDOWS\system32\dpu11.dll 2007-01-30 05:56 294912 --a------ C:\WINDOWS\system32\dpu10.dll 2007-01-30 05:56 196608 --a------ C:\WINDOWS\system32\dtu100.dll 2007-01-27 21:17 -------- d-------- C:\Programme\microsoft works 2007-01-27 21:17 -------- d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\skype 2007-01-27 21:17 -------- d-------- C:\DOKUME~1\gLuTaMa\ANWEND~1\azureus 2007-01-20 15:08 2508 --a------ C:\DOKUME~1\gLuTaMa\ANWEND~1\$_hpcst$.hpc 2007-01-08 19:01 17408 --a------ C:\WINDOWS\system32\corpol.dll 2007-01-02 12:13 874 --a------ C:\WINDOWS\system32\ealregsnapshot1.reg 2007-01-02 12:13 554 --a------ C:\WINDOWS\system32\ealregsnapshot2.reg 2007-01-02 12:13 3056 --a------ C:\WINDOWS\system32\ealregsnapshot4.reg 2006-12-01 18:13 197 --a------ C:\DOKUME~1\gLuTaMa\ANWEND~1\g-force prefs (windowsmediaplayer).txt (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe" "MSMSGS"="\"C:\\Programme\\Messenger\\msmsgs.exe\" /background" "H/PC Connection Agent"="\"C:\\PROGRA~1\\MI3AA1~1\\wcescomm.exe\"" "swg"="C:\\Programme\\Google\\GoogleToolbarNotifier\\1.2.1128.5462\\GoogleToolbarNotifier.exe" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runonce] "ICQ Lite"="C:\\Programme\\ICQLite\\ICQLite.exe -trayboot" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "ehTray"="C:\\WINDOWS\\ehome\\ehtray.exe" "SunJavaUpdateSched"="\"C:\\Programme\\Java\\jre1.5.0_11\\bin\\jusched.exe\"" "SigmatelSysTrayApp"="stsystra.exe" "SynTPEnh"="C:\\Programme\\Synaptics\\SynTP\\SynTPEnh.exe" "ATICCC"="\"C:\\Programme\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay" "IntelZeroConfig"="\"C:\\Programme\\Intel\\Wireless\\bin\\ZCfgSvc.exe\"" "IntelWireless"="\"C:\\Programme\\Intel\\Wireless\\Bin\\ifrmewrk.exe\" /tf Intel PROSet/Wireless" "CTSVolFE.exe"="\"C:\\Programme\\Creative\\Mixer\\CTSVolFE.exe\" /r" "dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe" "ISUSPM Startup"="\"C:\\Programme\\Gemeinsame Dateien\\InstallShield\\UpdateService\\isuspm.exe\" -startup" "ISUSScheduler"="\"C:\\Programme\\Gemeinsame Dateien\\InstallShield\\UpdateService\\issch.exe\" -start" "ccApp"="\"C:\\Programme\\Gemeinsame Dateien\\Symantec Shared\\ccApp.exe\"" "DAEMON Tools"="\"C:\\Programme\\DAEMON Tools\\daemon.exe\" -lang 1033" "MSKDetectorExe"="C:\\Programme\\McAfee\\SpamKiller\\MSKDetct.exe /uninstall" "ICQ Lite"="\"C:\\Programme\\ICQLite\\ICQLite.exe\" -minimize" "GrooveMonitor"="\"C:\\Programme\\Microsoft Office\\Office12\\GrooveMonitor.exe\"" "Sony Ericsson PC Suite"="\"C:\\Programme\\Sony Ericsson\\Mobile2\\Application Launcher\\Application Launcher.exe\" /startoptions" "BluetoothAuthenticationAgent"="rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent" "NeroFilterCheck"="C:\\Programme\\Gemeinsame Dateien\\Ahead\\Lib\\NeroCheck.exe" "VC8Player"="C:\\Programme\\Virtual CD v8\\System\\VC8Play.exe" "Acrobat Assistant 7.0"="\"C:\\Programme\\Adobe\\Acrobat 7.0\\Distillr\\Acrotray.exe\"" @="" "QuickTime Task"="\"C:\\Programme\\QuickTime\\qttask.exe\" -atboottime" "iTunesHelper"="\"C:\\Programme\\iTunes\\iTunesHelper.exe\"" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"="Groove GFS Stub Execution Hook" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,\ 63,65,73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,5c,52,6f,79,61,6c,65,2e,\ 6d,73,73,74,79,6c,65,73,00 "InstallTheme"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,63,65,\ 73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,2e,74,68,65,6d,65,00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 termsvcs REG_MULTI_SZ TermService\0\0 bthsvcs REG_MULTI_SZ BthServ\0\0 WudfServiceGroup REG_MULTI_SZ WUDFSvc\0\0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{85a111c4-6b58-11db-bb51-0015c5bee73d}] Shell\AutoRun\command F:\setup.exe ~ ~ ~ ~ ~ ~ ~ ~ Hijackthis Backups ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ backup-20070323-174731-446 O1 - Hosts: 195.122.131.13 rs12vsnl.rapidshare.com backup-20070323-174731-117 O1 - Hosts: 195.122.131.13 rs12cg.rapidshare.com backup-20070323-174731-493 O1 - Hosts: 195.122.131.12 rs11l33.rapidshare.com backup-20070323-174731-418 O1 - Hosts: 195.122.131.12 rs11cg2.rapidshare.com backup-20070323-174731-873 O1 - Hosts: 195.122.131.12 rs11gc.rapidshare.com backup-20070323-174731-389 O1 - Hosts: 195.122.131.12 rs11l32.rapidshare.com backup-20070323-174731-375 O1 - Hosts: 195.122.131.12 rs11tl2.rapidshare.com backup-20070323-174731-339 O1 - Hosts: 195.122.131.12 rs11tl.rapidshare.com backup-20070323-174731-773 O1 - Hosts: 195.122.131.12 rs11tg.rapidshare.com backup-20070323-174731-474 O1 - Hosts: 195.122.131.12 rs11vsnl.rapidshare.com backup-20070323-174731-236 O1 - Hosts: 195.122.131.12 rs11cg.rapidshare.com backup-20070323-174731-637 O1 - Hosts: 195.122.131.11 rs10l32.rapidshare.com backup-20070323-174731-413 O1 - Hosts: 195.122.131.11 rs10tl2.rapidshare.com backup-20070323-174731-425 O1 - Hosts: 195.122.131.11 rs10tl.rapidshare.com backup-20070323-174731-964 O1 - Hosts: 195.122.131.11 rs10l33.rapidshare.com backup-20070323-174731-684 O1 - Hosts: 195.122.131.11 rs10cg2.rapidshare.com backup-20070323-174731-304 O1 - Hosts: 195.122.131.11 rs10vsnl.rapidshare.com backup-20070323-174731-246 O1 - Hosts: 195.122.131.11 rs10cg.rapidshare.com backup-20070323-174731-770 O1 - Hosts: 195.122.131.10 rs9tg.rapidshare.com backup-20070323-174731-105 O1 - Hosts: 195.122.131.11 rs10gc.rapidshare.com backup-20070323-174731-951 O1 - Hosts: 195.122.131.10 rs9l33.rapidshare.com backup-20070323-174731-577 O1 - Hosts: 195.122.131.11 rs10tg.rapidshare.com backup-20070323-174731-346 O1 - Hosts: 195.122.131.10 rs9tl2.rapidshare.com backup-20070323-174731-848 O1 - Hosts: 195.122.131.10 rs9tl.rapidshare.com backup-20070323-174731-852 O1 - Hosts: 195.122.131.10 rs9l32.rapidshare.com backup-20070323-174731-249 O1 - Hosts: 195.122.131.10 rs9cg2.rapidshare.com backup-20070323-174731-646 O1 - Hosts: 195.122.131.10 rs9cg.rapidshare.com backup-20070323-174731-892 O1 - Hosts: 195.122.131.10 rs9gc.rapidshare.com backup-20070323-174731-670 O1 - Hosts: 195.122.131.10 rs9vsnl.rapidshare.com backup-20070323-174731-489 O1 - Hosts: 195.122.131.9 rs8l33.rapidshare.com backup-20070323-174731-966 O1 - Hosts: 195.122.131.9 rs8l32.rapidshare.com backup-20070323-174731-229 O1 - Hosts: 195.122.131.9 rs8tl2.rapidshare.com backup-20070323-174731-661 O1 - Hosts: 195.122.131.9 rs8tl.rapidshare.com backup-20070323-174731-800 O1 - Hosts: 195.122.131.9 rs8cg2.rapidshare.com backup-20070323-174731-658 O1 - Hosts: 195.122.131.9 rs8cg.rapidshare.com backup-20070323-174731-403 O1 - Hosts: 195.122.131.9 rs8tg.rapidshare.com backup-20070323-174731-999 O1 - Hosts: 195.122.131.9 rs8gc.rapidshare.com backup-20070323-174731-959 O1 - Hosts: 195.122.131.9 rs8vsnl.rapidshare.com backup-20070323-174731-688 O1 - Hosts: 195.122.131.8 rs7l33.rapidshare.com backup-20070323-174731-178 O1 - Hosts: 195.122.131.8 rs7tl2.rapidshare.com backup-20070323-174731-643 O1 - Hosts: 195.122.131.8 rs7l32.rapidshare.com backup-20070323-174731-952 O1 - Hosts: 195.122.131.8 rs7cg.rapidshare.com backup-20070323-174731-627 O1 - Hosts: 195.122.131.8 rs7tg.rapidshare.com backup-20070323-174731-484 O1 - Hosts: 195.122.131.8 rs7tl.rapidshare.com backup-20070323-174731-334 O1 - Hosts: 195.122.131.8 rs7gc.rapidshare.com backup-20070323-174731-854 O1 - Hosts: 195.122.131.8 rs7cg2.rapidshare.com backup-20070323-174731-533 O1 - Hosts: 195.122.131.7 rs6tl2.rapidshare.com backup-20070323-174731-554 O1 - Hosts: 195.122.131.6 rs5vsnl.rapidshare.com backup-20070323-174731-518 O1 - Hosts: 195.122.131.7 rs6l32.rapidshare.com backup-20070323-174731-127 O1 - Hosts: 195.122.131.6 rs5tl2.rapidshare.com backup-20070323-174731-828 O1 - Hosts: 195.122.131.7 rs6l33.rapidshare.com backup-20070323-174731-381 O1 - Hosts: 195.122.131.5 rs4l32.rapidshare.com backup-20070323-174731-920 O1 - Hosts: 195.122.131.7 rs6vsnl.rapidshare.com backup-20070323-174731-439 O1 - Hosts: 195.122.131.6 rs5tg.rapidshare.com backup-20070323-174731-364 O1 - Hosts: 195.122.131.5 rs4l33.rapidshare.com backup-20070323-174731-898 O1 - Hosts: 195.122.131.8 rs7vsnl.rapidshare.com backup-20070323-174731-454 O1 - Hosts: 195.122.131.6 rs5cg.rapidshare.com backup-20070323-174731-735 O1 - Hosts: 195.122.131.6 rs5l32.rapidshare.com backup-20070323-174731-561 O1 - Hosts: 195.122.131.7 rs6gc.rapidshare.com backup-20070323-174731-330 O1 - Hosts: 195.122.131.6 rs5tl.rapidshare.com backup-20070323-174731-888 O1 - Hosts: 195.122.131.7 rs6cg.rapidshare.com backup-20070323-174731-909 O1 - Hosts: 195.122.131.6 rs5l33.rapidshare.com backup-20070323-174731-682 O1 - Hosts: 195.122.131.6 rs5gc.rapidshare.com backup-20070323-174731-283 O1 - Hosts: 195.122.131.7 rs6tl.rapidshare.com backup-20070323-174731-322 O1 - Hosts: 195.122.131.6 rs5cg2.rapidshare.com backup-20070323-174731-695 O1 - Hosts: 195.122.131.7 rs6cg2.rapidshare.com backup-20070323-174731-699 O1 - Hosts: 195.122.131.7 rs6tg.rapidshare.com backup-20070323-174731-478 O1 - Hosts: 195.122.131.5 rs4tl2.rapidshare.com backup-20070323-174731-728 O1 - Hosts: 195.122.131.4 rs3cg.rapidshare.com backup-20070323-174731-649 O1 - Hosts: 195.122.131.4 rs3vsnl.rapidshare.com backup-20070323-174731-226 O1 - Hosts: 195.122.131.4 rs3cg2.rapidshare.com backup-20070323-174731-984 O1 - Hosts: 195.122.131.5 rs4vsnl.rapidshare.com backup-20070323-174731-781 O1 - Hosts: 195.122.131.5 rs4tl.rapidshare.com backup-20070323-174731-183 O1 - Hosts: 195.122.131.4 rs3tl2.rapidshare.com backup-20070323-174731-570 O1 - Hosts: 195.122.131.5 rs4cg2.rapidshare.com backup-20070323-174731-830 O1 - Hosts: 195.122.131.4 rs3tl.rapidshare.com backup-20070323-174731-563 O1 - Hosts: 195.122.131.4 rs3l33.rapidshare.com backup-20070323-174731-997 O1 - Hosts: 195.122.131.4 rs3gc.rapidshare.com backup-20070323-174731-948 O1 - Hosts: 195.122.131.4 rs3tg.rapidshare.com backup-20070323-174731-858 O1 - Hosts: 195.122.131.3 rs2l33.rapidshare.com backup-20070323-174731-495 O1 - Hosts: 195.122.131.5 rs4gc.rapidshare.com backup-20070323-174731-720 O1 - Hosts: 195.122.131.5 rs4tg.rapidshare.com backup-20070323-174731-125 O1 - Hosts: 195.122.131.4 rs3l32.rapidshare.com backup-20070323-174731-457 O1 - Hosts: 195.122.131.5 rs4cg.rapidshare.com backup-20070323-174731-924 O1 - Hosts: 195.122.131.2 rs1l33.rapidshare.com backup-20070323-174731-879 O1 - Hosts: 195.122.131.3 rs2tl2.rapidshare.com backup-20070323-174731-672 O1 - Hosts: 195.122.131.3 rs2cg.rapidshare.com backup-20070323-174731-918 O1 - Hosts: 195.122.131.3 rs2vsnl.rapidshare.com backup-20070323-174731-604 O1 - Hosts: 195.122.131.3 rs2tl.rapidshare.com backup-20070323-174731-362 O1 - Hosts: 195.122.131.3 rs2tg.rapidshare.com backup-20070323-174731-932 O1 - Hosts: 195.122.131.3 rs2gc.rapidshare.com backup-20070323-174731-522 O1 - Hosts: 195.122.131.3 rs2l32.rapidshare.com backup-20070323-174731-409 O1 - Hosts: 195.122.131.3 rs2cg2.rapidshare.com backup-20070323-174731-882 O1 - Hosts: 195.122.131.2 rs1cg2.rapidshare.com backup-20070323-174731-442 O1 - Hosts: 195.122.131.2 rs1l32.rapidshare.com backup-20070323-174731-340 O1 - Hosts: 195.122.131.2 rs1gc.rapidshare.com backup-20070323-174731-243 O1 - Hosts: 195.122.131.2 rs1tl2.rapidshare.com backup-20070323-174731-976 O1 - Hosts: 195.122.131.2 rs1tl.rapidshare.com backup-20070323-174731-154 O1 - Hosts: 195.122.131.2 rs1tg.rapidshare.com backup-20070323-174731-102 O1 - Hosts: 195.122.131.2 rs1cg.rapidshare.com backup-20070323-174731-185 O1 - Hosts: 195.122.131.2 rs1vsnl.rapidshare.com Contents of the 'Scheduled Tasks' folder C:\WINDOWS\tasks\1-Klick-Wartung.job C:\WINDOWS\tasks\AppleSoftwareUpdate.job ******************************************************************** catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006 http://www.gmer.net scanning hidden processes ... scanning hidden services ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 ******************************************************************** Completion time: 07-03-24 18:53:21