MyWay.Speedbar...was tun?

#1 moin,
ich habe irgendwie probleme mit meinem rechner.
aaaaaalso ich habe MyWay.Speedbar auf meinem rechner, der kram soll weg!!
eine eigenartige beobachtung war, dass ich netscape 7.1 auf dem rechner hatte und es plötzlich, ohne, dass ich irgendwas deinstalliert habe oder sonst was gemacht habe, plötzlich weg war...
als ich noch netscape 7.1 hatte ist mein rechner so alle 20 min abgestürtzt.
dann hab ich mir netscape 7.2 geholt und der rechner stürtzt nicht mehr ab...mmh...hä?
jedenfalls bekomm ich mit ad-aware MyWay nicht weg

hier das Log von ad-aware

Ad-Aware SE Build 1.05
Logfile Created ononnerstag, 11. November 2004 16:06:26
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R18 08.11.2004
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):20 total references
MyWay.Speedbar(TAC index:0):1 total references
Tracking Cookie(TAC index:3):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


11.11.2004 16:06:26 - Scan started. (Smart mode)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 820
ThreadCreationTime : 11.11.2004 13:46:06
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 948
ThreadCreationTime : 11.11.2004 13:46:09
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 972
ThreadCreationTime : 11.11.2004 13:46:11
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1020
ThreadCreationTime : 11.11.2004 13:46:11
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Anwendung für Dienste und Controller
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1032
ThreadCreationTime : 11.11.2004 13:46:11
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1208
ThreadCreationTime : 11.11.2004 13:46:12
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1320
ThreadCreationTime : 11.11.2004 13:46:12
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1508
ThreadCreationTime : 11.11.2004 13:46:12
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1556
ThreadCreationTime : 11.11.2004 13:46:12
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1784
ThreadCreationTime : 11.11.2004 13:46:13
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : EXPLORER.EXE

#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1848
ThreadCreationTime : 11.11.2004 13:46:14
BasePriority : Normal
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [sstray.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1944
ThreadCreationTime : 11.11.2004 13:46:14
BasePriority : Normal
FileVersion : 1.00.00.0317
ProductVersion : 1.00.00.0317
ProductName : NVIDIA nForce
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA nForce Taskbar Utility
InternalName : SSTray.exe
LegalCopyright : Copyright 2000-2002 NVIDIA Corporation

#:13 [cthelper.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1968
ThreadCreationTime : 11.11.2004 13:46:14
BasePriority : Normal
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : CtHelper Application
CompanyName : Creative Technology Ltd
FileDescription : CtHelper Application
InternalName : CtHelper
LegalCopyright : Copyright (C) 2002
OriginalFilename : CtHelper.EXE

#:14 [jusched.exe]
FilePath : D:\Programme\Java\j2re1.4.2_02\bin\
ProcessID : 2032
ThreadCreationTime : 11.11.2004 13:46:15
BasePriority : Normal


#:15 [icqlite.exe]
FilePath : D:\miscdownloads\icqneu\ICQLite\
ProcessID : 164
ThreadCreationTime : 11.11.2004 13:46:15
BasePriority : Normal
FileVersion : 555
ProductVersion : 1, 0, 0
ProductName : ICQLite
CompanyName : ICQ Ltd.
FileDescription : ICQLite
InternalName : ICQ Lite
LegalCopyright : Copyright (C) 2002
OriginalFilename : ICQLite.exe

#:16 [itouch.exe]
FilePath : C:\Programme\Logitech\iTouch\
ProcessID : 180
ThreadCreationTime : 11.11.2004 13:46:15
BasePriority : Normal
FileVersion : 2.15.264
ProductVersion : 2.15.264
ProductName : iTouch
CompanyName : Logitech Inc.
FileDescription : iTouch Application
InternalName : iTouch
LegalCopyright : (C) 1998-2002 Logitech. All rights reserved.
LegalTrademarks : Logitech® and iTouch® are registered trademarks of Logitech Inc.
OriginalFilename : iTouch.exe
Comments : Created by the iTouch team

#:17 [avpcc.exe]
FilePath : D:\Programme\
ProcessID : 132
ThreadCreationTime : 11.11.2004 13:46:15
BasePriority : Normal
FileVersion : 4.0.2.8
ProductVersion : 4.0.164.0
ProductName : Kaspersky Anti-Virus
CompanyName : Kaspersky Labs.
FileDescription : KL Control Centre
InternalName : KL Control Centre
LegalCopyright : Copyright (c) Kaspersky Labs. 1996-2002.
LegalTrademarks : Kaspersky Anti-Virus(R) and AVP(R) are registered trademarks of Kaspersky Labs.
OriginalFilename : AVPCC.EXE
Comments : Andrey Bryksin [andrey@avp.ru]

#:18 [nclaunch.exe]
FilePath : C:\WINDOWS\
ProcessID : 196
ThreadCreationTime : 11.11.2004 13:46:15
BasePriority : Normal
FileVersion : 2, 2, 0, 66
ProductVersion : 2, 2, 0, 66
ProductName : Northcode NCLaunch
CompanyName : Northcode Inc.
FileDescription : NCLaunch
InternalName : NCLaunch
LegalCopyright : Copyright © 2000-2003
LegalTrademarks : All Rights Reserved
OriginalFilename : NCLaunch.exe
Comments : File launcher used by SWF Studio screensavers on Windows NT, 2000 and XP

#:19 [teatimer.exe]
FilePath : D:\miscdownloads\dearchanddestroy\nochmal\Spybot - Search & Destroy\
ProcessID : 204
ThreadCreationTime : 11.11.2004 13:46:15
BasePriority : Normal
FileVersion : 1, 3, 0, 10
ProductVersion : 1, 3, 0, 10
ProductName : Spybot - Search & Destroy
CompanyName : Safer Networking Limited
FileDescription : System settings protector
InternalName : TeaTimer
LegalCopyright : © 2000-2004 Patrick M. Kolla / Safer Networking Limited. Alle Rechte vorbehalten.
LegalTrademarks : "Spybot" und "Spybot - Search & Destroy" sind registrierte Warenzeichen.
OriginalFilename : TeaTimer.exe
Comments : Schützt Systemeinstellungen vor ungewollten Änderungen.

#:20 [em_exec.exe]
FilePath : C:\Programme\Logitech\MouseWare\system\
ProcessID : 220
ThreadCreationTime : 11.11.2004 13:46:15
BasePriority : Normal
FileVersion : 9.75.302
ProductVersion : 9.75.302
ProductName : MouseWare
CompanyName : Logitech Inc.
FileDescription : Logitech Events Handler Application
InternalName : Em_Exec
LegalCopyright : (C) 1987-2002 Logitech. All rights reserved.
LegalTrademarks : Logitech® and MouseWare® are registered trademarks of Logitech Inc.
OriginalFilename : Em_Exec.exe
Comments : Created by the MouseWare team

#:21 [ticicon.exe]
FilePath : C:\program files\E-Color\E-Color Indicator\
ProcessID : 344
ThreadCreationTime : 11.11.2004 13:46:17
BasePriority : Normal
FileVersion : 2, 1, 0, 10
ProductVersion : 2, 1, 0, 0
ProductName : E-Color Indicator system tray application
CompanyName : E-Color, Inc.
FileDescription : TICIcon.exe
InternalName : TICIcon.exe
LegalCopyright : Copyright© 1999-2000 E-Color, Inc.
LegalTrademarks : All rights reserved
OriginalFilename : TICIcon.exe
Comments : E-Color Indicator system tray application

#:22 [tabuserw.exe]
FilePath : D:\miscdownloads\wacompad\
ProcessID : 536
ThreadCreationTime : 11.11.2004 13:46:18
BasePriority : Normal
FileVersion : 4.76-4
ProductVersion : 4.76-4
ProductName : Wacom Technology, Corp. TABUSERW
CompanyName : Wacom Technology, Corp.
FileDescription : TABUSERW
InternalName : TABUSERW
LegalCopyright : Copyright © 1997,1998,1999,2000,2001,2002,2003 Wacom Technology, Corp.
OriginalFilename : TABUSERW.EXE

#:23 [avpcc.exe]
FilePath : D:\Programme\
ProcessID : 660
ThreadCreationTime : 11.11.2004 13:46:20
BasePriority : Normal
FileVersion : 4.0.2.8
ProductVersion : 4.0.164.0
ProductName : Kaspersky Anti-Virus
CompanyName : Kaspersky Labs.
FileDescription : KL Control Centre
InternalName : KL Control Centre
LegalCopyright : Copyright (c) Kaspersky Labs. 1996-2002.
LegalTrademarks : Kaspersky Anti-Virus(R) and AVP(R) are registered trademarks of Kaspersky Labs.
OriginalFilename : AVPCC.EXE
Comments : Andrey Bryksin [andrey@avp.ru]

#:24 [avwupsrv.exe]
FilePath : D:\miscdownloads\antivir\
ProcessID : 676
ThreadCreationTime : 11.11.2004 13:46:20
BasePriority : Normal


#:25 [ctsvccda.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 716
ThreadCreationTime : 11.11.2004 13:46:20
BasePriority : Normal
FileVersion : 1.0.1.0
ProductVersion : 1.0.0.0
ProductName : Creative Service for CDROM Access
CompanyName : Creative Technology Ltd
FileDescription : Creative Service for CDROM Access
InternalName : CTsvcCDAEXE
LegalCopyright : Copyright (c) Creative Technology Ltd., 1999. All rights reserved.
OriginalFilename : CTsvcCDA.EXE

#:26 [incdsrv.exe]
FilePath : d:\Programme\Ahead\InCD\
ProcessID : 764
ThreadCreationTime : 11.11.2004 13:46:20
BasePriority : Normal
FileVersion : 4, 0, 5, 4
ProductVersion : 4, 0, 5, 4
ProductName : AHEAD Software incdsrv
CompanyName : AHEAD Software
FileDescription : incdsrv
InternalName : incdsrv
LegalCopyright : Copyright © 2003
OriginalFilename : incdsrv.exe

#:27 [avpm.exe]
FilePath : D:\Programme\
ProcessID : 888
ThreadCreationTime : 11.11.2004 13:46:28
BasePriority : Normal
FileVersion : 4.2.0.58
ProductVersion : 4.2.0.0
ProductName : Kaspersky Anti-Virus
CompanyName : Kaspersky Labs.
FileDescription : KAV Monitor main module
InternalName : AvpM
LegalCopyright : Copyright (c) Kaspersky Labs. 1996-2002.
LegalTrademarks : Kaspersky Anti-Virus(R) and AVP(R) are registered trademarks of Kaspersky Labs.
OriginalFilename : AvpM.Exe
Comments : Victor Matiouchenkov [victor@avp.ru]

#:28 [nvsvc32.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 904
ThreadCreationTime : 11.11.2004 13:46:28
BasePriority : Normal
FileVersion : 6.14.10.5216
ProductVersion : 6.14.10.5216
ProductName : NVIDIA Driver Helper Service, Version 52.16
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 52.16
InternalName : NVSVC
LegalCopyright : (C) NVIDIA Corporation. All rights reserved.
OriginalFilename : nvsvc32.exe

#:29 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1072
ThreadCreationTime : 11.11.2004 13:46:28
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:30 [tablet.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1236
ThreadCreationTime : 11.11.2004 13:46:28
BasePriority : High


#:31 [mspmspsv.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1480
ThreadCreationTime : 11.11.2004 13:46:31
BasePriority : Normal
FileVersion : 7.00.00.1954
ProductVersion : 7.00.00.1954
ProductName : Microsoft (R) DRM
CompanyName : Microsoft Corporation
FileDescription : WMDM PMSP Service
InternalName : MSPMSPSV.EXE
LegalCopyright : Copyright (C) Microsoft Corp. 1981-2000
OriginalFilename : MSPMSPSV.EXE

#:32 [netscp.exe]
FilePath : D:\Programme\Netscape\
ProcessID : 4036
ThreadCreationTime : 11.11.2004 13:48:10
BasePriority : Normal


#:33 [ad-aware.exe]
FilePath : D:\miscdownloads\adaware\Ad-Aware SE Personal\
ProcessID : 2652
ThreadCreationTime : 11.11.2004 15:06:17
BasePriority : Normal
FileVersion : 6.2.0.206
ProductVersion : VI.Second Edition
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

MyWay.Speedbar Object Recognized!
Type : Regkey
Data :
Category : Misc
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer\browser helper objects\{0494d0d1-f8e0-41ad-92a3-14154ece70ac}

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 1


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 1


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : besitzer@serving-sys[2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:besitzer@serving-sys.com/
Expires : 01.01.2038 09:00:00
LastSync : Hits:4
UseCount : 0
Hits : 4

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 2



Deep scanning and examining files...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 2

Disk Scan Result for C:\WINDOWS\System32
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 2

Disk Scan Result for C:\DOKUME~1\Besitzer\LOKALE~1\Temp\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 2


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 2



MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\windows\currentversion\applets\wordpad\recent file list
Description : list of recent files opened using wordpad


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\adobe\acrobat reader\5.0\avgeneral\crecentfiles
Description : list of recently used files in adobe reader


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : software\musicmatch\musicmatch jukebox\4.0\mmradio
Description : information on the last station listened to using musicmatch radio


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : S-1-5-21-316113308-3515047601-3899504120-1003\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : C:\Dokumente und Einstellungen\Besitzer\recent
Description : list of recently opened documents



Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 22

16:08:29 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:02:03.63
Objects scanned:63605
Objects identified:2
Objects ignored:0
New critical objects:2

--------------------------------------------------------------------------
--------------------------------------------------------------------------
---------------------------------------------------------------------------
und hier noch mal das log von Hijackthis
----------------------------------------------------------------------------
--------------------------------------------------------------------------
---------------------------------------------------------------------------

Logfile of HijackThis v1.98.2
Scan saved at 16:44:09, on 11.11.2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\sstray.exe
C:\WINDOWS\System32\CTHELPER.EXE
D:\Programme\Java\j2re1.4.2_02\bin\jusched.exe
D:\miscdownloads\icqneu\ICQLite\ICQLite.exe
C:\Programme\Logitech\iTouch\iTouch.exe
D:\Programme\avpcc.exe
C:\WINDOWS\NCLAUNCH.EXe
D:\miscdownloads\dearchanddestroy\nochmal\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\Logitech\MouseWare\system\em_exec.exe
C:\program files\E-Color\E-Color Indicator\TICIcon.exe
D:\miscdownloads\wacompad\TabUserW.exe
D:\Programme\avpcc.exe
D:\miscdownloads\antivir\AVWUPSRV.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
d:\Programme\Ahead\InCD\InCDsrv.exe
D:\Programme\avpm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\Tablet.exe
C:\WINDOWS\System32\MsPMSPSv.exe
D:\miscdownloads\adaware\Ad-Aware SE Personal\Ad-Aware.exe
C:\WINDOWS\explorer.exe
D:\miscdownloads\hijackthis\HijackThis19802.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\rundll32.exe
D:\PMAIL\winpm-32.exe
D:\PROGRA~1\Netscape\Netscp.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = ftp=192.168.1.49:800;gopher=192.168.1.49:800;http=192.168.1.49:800;https=192.168.1.49:800;socks=192.168.1.49:1080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 192.168.1.49;;localhost;<local>
O2 - BHO: (no name) - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\MISCDO~1\DEARCH~1\nochmal\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Jet Detection] C:\Programme\Creative\SBAudigy\PROGRAM\ADGJDet.exe
O4 - HKLM\..\Run: [CTStartup] C:\Programme\Creative\Splash Screen\CTEaxSpl.EXE /run
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Programme\Java\j2re1.4.2_02\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ICQ Lite] D:\miscdownloads\icqneu\ICQLite\ICQLite.exe -minimize
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Programme\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [AVPCC] D:\Programme\avpcc.exe /wait
O4 - HKCU\..\Run: [NCLaunch] C:\WINDOWS\NCLAUNCH.EXe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\miscdownloads\dearchanddestroy\nochmal\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [WashAndGo - Cleanup of old Backupfiles] D:\miscdownloads\purgatio\dasganze\\checker.exe /check
O4 - HKCU\..\Run: [TVgenial] D:\miscdownloads\winload kram\Tvgenial\TVgenial.exe -d
O4 - HKCU\..\Run: [Mozilla Quick Launch] "d:\miscdownloads\browser\Netscape\Netscp.exe" -turbo
O4 - HKCU\..\RunOnce: [ICQ Lite] D:\miscdownloads\icqneu\ICQLite\ICQLite.exe -trayboot
O4 - Global Startup: 3Deep.lnk = C:\program files\E-Color\3Deep\3Deepctl.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: E-Color Indicator.lnk = C:\program files\E-Color\E-Color Indicator\TICIcon.exe
O4 - Global Startup: E-Color.lnk = C:\program files\E-Color\Registration\SonnReg.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: TabUserW.lnk = D:\miscdownloads\wacompad\TabUserW.exe
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\miscdownloads\icqneu\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\miscdownloads\icqneu\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\MSMSGS.EXE
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://files.ea.com/downloads/rtpatch/v2/EARTPX.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/1667235ce555a65ea220/netzip/RdxIE601_de.cab
O16 - DPF: {8FA9D107-547B-4DBC-9D88-FABD891EDB0A} (shizmoo Class) - http://arcade.icq.com/multiplayer/odyssey_web8.cab
O16 - DPF: {BD092CD7-AA66-4FF6-8CE1-D4E01489ED2B} -
O16 - DPF: {D81CA86B-EF63-42AF-BEE3-4502D9A03C2D} (MMRadioHostX Class) - http://wwws.musicmatch.com/graphics/WebPlayer/MMLRadio_Nt.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/2,0,0,4370/mcfscan.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B20BB7A0-A6ED-4090-8FE5-9911A3834315}: NameServer = 212.51.16.1,212.51.17.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B4491C31-5EFA-4E2D-9120-4832E3ADD693}: NameServer = 195.180.208.3,195.179.139.1,194.163.28.1



wär nett wenn mir jemand helfen könnte...
mfg jonas

#2 Sieht alles in allem nicht schlecht aus............. Da ist kein Problem auszumachen
__________
MfG Ralf
SEO-Spam Hunter