Home » Spyware & Browser Hijacker Support Forum » Virus Alert! geht nicht weg » Themenansicht

Virus Alert! geht nicht weg

Thema ist geschlossen!
Thema ist geschlossen!
#0
28.06.2006, 17:29
Cobra1982
...neu hier

Beiträge: 1
#1 ich hab das gleiche problem wie einige andere hier.
bei mir ist in der taskleiste das Virus Alert! dingens und ich bekomm es nicht weg

Logfile of HijackThis v1.99.1
Scan saved at 17:19:13, on 28.06.2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
C:\Programme\Norton AntiVirus\navapsvc.exe
C:\Programme\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Opera\Opera.exe
C:\wincmd\TOTALCMD.EXE
C:\Programme\MSN Messenger\msnmsgr.exe
D:\HijackThis.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [EA Core] C:\Programme\Electronic Arts\EA Downloader\Core.exe -silent
O4 - Global Startup: Adobe Reader - Schnellstart.lnk = D:\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{3B75F8C7-5220-4997-B406-EECD6F13CB6E}: NameServer = 82.97.191.1 82.97.191.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{3B75F8C7-5220-4997-B406-EECD6F13CB6E}: NameServer = 82.97.191.1 82.97.191.2
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Programme\Norton AntiVirus\AdvTools\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programme\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Programme\TuneUp Utilities 2006\WinStylerThemeSvc.exe



CleanUp! started on 06/28/06 17:22:39.
...
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\License_fr.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\License_ja.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\modern-header.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\modern-wizard.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pconfig.dcf - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\ph.msm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\primosdk.DLL - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\px.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\px.msm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxCpyA64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxCpyI64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxdrv.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxdrv.msm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelp20.inf - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelp20.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxHelp64.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelper.inf - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelper.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelper.vxd - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxHlpa64.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhpinst.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxInsA64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxInsI64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxmas.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxsetup.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxwave.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\qt_de.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\qt_fr.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\qt_ja.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-de.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-en.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-fr.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-ja.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_de.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_en.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_fr.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_ja.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\side-banner-play.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\splash-screen-nostretch.ini - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\System.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-de.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-en.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-fr.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-ja.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\title_toolbar3.gif - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\vxblock.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Temporäres Verzeichnis 1 für hijackthis_199.zip\hijackthis.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Temporäres Verzeichnis 1 für XPAntiSpy371-Deutsch.zip\xp-AntiSpy.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\WMC0000.tmp\mpsetup.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\HijackThis.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\hijackthis.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\backups\backup-20060628-164907-274 - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\backups\backup-20060628-164907-274.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\backups\backup-20060628-164907-568 - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Apr2005_d3dx9_25_x64.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Apr2005_d3dx9_25_x86.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Apr2005_MDX_x86.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\BDA.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\BDANT.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\BDAXP.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\DirectX.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\DSETUP.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dsetup32.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxnt.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxsetup.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxupdate.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Feb2005_d3dx9_24_x64.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Feb2005_d3dx9_24_x86.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\13c9ea4.mst - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\269c0.mst - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\2acd4.mst - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\2ad22.mst - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\540818.mst - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\79df39.mst - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\aax319.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\aax408.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\aaxD8.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\advchk.iss - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\browserview-f1bff0.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\browserview-f27ae0.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\browserview-f39e7c.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\control.xml - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD1.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD1.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD11D.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD11D.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD2.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD2.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD3.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD3.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD4.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\EAD4.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\fla18.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\flaB7.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\flaB8.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\ginstall.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\GLB19C.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\GLB2F.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\GLB3F.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\GLB9D.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\IDSinst.LOG - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\java_install.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\java_install_reg.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\jinstall.cfg - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\jupdate1.5.0.xml - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\jusched.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\LSInstall.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\MSI81324.LOG - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\MSI9d881.LOG - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\NAVLiveReg.dat - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Norton AntiVirus 2004 Professional 1-3-2006 20h41m22s.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Norton Personal Firewall 1-3-2006 20h44m32s.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Perflib_Perfdata_b58.dat - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\plf113.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\qmgr.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\qmgr.inf - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\set37.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\setb0.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\setb1.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\setb2.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\setb3.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\setb4.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\setup.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\setup_wm.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\SNDSetup544.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\SNDSetup55.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\SNDunin.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\SNDUpdater544I.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\SNDUpdater55I.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\symcprop.dat - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\SYMEVENT.LOG - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1CC.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1CD.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1CE.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1D2.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1D3.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1D4.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1DB.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR1E5.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR370.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR421.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR422.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR423.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR427.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR429.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR430.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR437.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR43B.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR441.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR443.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR447.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR44A.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR44E.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR452.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR456.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR553.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFR88.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\TFRF2.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\wahtmltmp00.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\~DF45AA.tmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\~e5.0001 - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye284.tmp\Disk1\engine32.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye284.tmp\Disk1\layout.bin - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye284.tmp\Disk1\setup.ibt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye284.tmp\Disk1\setup.ini - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye284.tmp\Disk1\setup.inx - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye284.tmp\Disk1\bf2\PATCH.RTD - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye284.tmp\Disk1\xp1\PATCH.RTD - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye285.tmp\Disk1\data1.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye285.tmp\Disk1\data1.hdr - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye285.tmp\Disk1\setup.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye285.tmp\Disk1\bf2\PATCH.RTP - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\bye285.tmp\Disk1\xp1\PATCH.RTP - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\burn-anim.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\burn-burn.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\burn-empty.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\burn-full.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\burn-layer.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\buttons.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\compact-resize.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\compact.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\divx.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\fullscreen.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\logo.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\main-resize.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\main.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\screenshot.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\skin.divl - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Default\tree-layer.png - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\hsperfdata_Administrator\2436 - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\isp3B.tmp\_Setup.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\DivXComponentInstaller.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\dpl100.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-complete-de.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-complete-en.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-complete-fr.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-complete-ja.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-screenshot-de.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-screenshot-en.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-screenshot-fr.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\gds-screenshot-ja.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\GDSAPI.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-complete-de.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-complete-en.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-complete-fr.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-complete-ja.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-screenshot-de.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-screenshot-en.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-screenshot-fr.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google-screenshot-ja.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\google.css - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\GoogleDesktopSearch-de.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\GoogleDesktopSearch-en.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\GoogleDesktopSearch-fr.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\GoogleDesktopSearch-ja.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\GTAPI.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\InstallOptions.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\ioSpecial.ini - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\LangDLL.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\lang_de.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\lang_fr.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\lang_ja.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\LicenseActivator.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\License_de.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\License_en.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\License_fr.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\License_ja.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\modern-header.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\modern-wizard.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pconfig.dcf - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\ph.msm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\primosdk.DLL - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\px.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\px.msm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxCpyA64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxCpyI64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxdrv.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxdrv.msm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelp20.inf - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelp20.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxHelp64.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelper.inf - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelper.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhelper.vxd - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxHlpa64.sys - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxhpinst.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxInsA64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\PxInsI64.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxmas.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxsetup.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\pxwave.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\qt_de.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\qt_fr.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\qt_ja.qm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-de.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-en.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-fr.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README-ja.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_de.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_en.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_fr.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\README_ja.txt - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\side-banner-play.bmp - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\splash-screen-nostretch.ini - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\System.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-de.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-en.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-fr.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\terms-divx-ja.htm - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\title_toolbar3.gif - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\nsm2EE.tmp\vxblock.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Temporäres Verzeichnis 1 für hijackthis_199.zip\hijackthis.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\Temporäres Verzeichnis 1 für XPAntiSpy371-Deutsch.zip\xp-AntiSpy.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\WMC0000.tmp\mpsetup.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\HijackThis.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\hijackthis.log - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\backups\backup-20060628-164907-274 - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\backups\backup-20060628-164907-274.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\_tc\backups\backup-20060628-164907-568 - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Apr2005_d3dx9_25_x64.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Apr2005_d3dx9_25_x86.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Apr2005_MDX_x86.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\BDA.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\BDANT.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\BDAXP.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\DirectX.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\DSETUP.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dsetup32.dll - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxnt.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxsetup.exe - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxupdate.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Feb2005_d3dx9_24_x64.cab - deleted
C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp\{82C3ECD3-0752-450B-AD83-58858D427BA1}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\Feb2005_d3dx9_24_x86.cab - deleted
C:\WINDOWS\000001_.tmp - deleted
C:\WINDOWS\SET3.tmp - deleted
C:\WINDOWS\SET7.tmp - deleted
C:\WINDOWS\temp\setup.log - deleted
C:\Dokumente und Einstellungen\LocalService\Cookies\index.dat - deleted
C:\Dokumente und Einstellungen\LocalService\Cookies\index.dat - deleted
C:\Dokumente und Einstellungen\Default User\Cookies\index.dat - deleted
C:\Dokumente und Einstellungen\Default User\Cookies\index.dat - deleted
C:\Dokumente und Einstellungen\Administrator\Cookies\index.dat - deleted
C:\Dokumente und Einstellungen\Administrator\Cookies\index.dat - deleted
C:\WINDOWS\Prefetch\ACCESS.EXE-22C87E60.pf - deleted
C:\WINDOWS\Prefetch\ACRORD32.EXE-008ED147.pf - deleted
C:\WINDOWS\Prefetch\ATMCLK.EXE-15A39E48.pf - deleted
C:\WINDOWS\Prefetch\AUPDATE.EXE-089630E1.pf - deleted
C:\WINDOWS\Prefetch\AUTORUN.EXE-055703AF.pf - deleted
C:\WINDOWS\Prefetch\BF2.EXE-1277AA67.pf - deleted
C:\WINDOWS\Prefetch\CLEANMGR.EXE-1F86EA8E.pf - deleted
C:\WINDOWS\Prefetch\CLEANUP.EXE-3438663A.pf - deleted
C:\WINDOWS\Prefetch\CLEANUP451.EXE-14C8CBEA.pf - deleted
C:\WINDOWS\Prefetch\CLEANUP451.EXE-30DF8E0A.pf - deleted
C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf - deleted
C:\WINDOWS\Prefetch\CONF.EXE-20072972.pf - deleted
C:\WINDOWS\Prefetch\CONMGR.EXE-304D2122.pf - deleted
C:\WINDOWS\Prefetch\CONMGR_SETTING.EXE-06285A06.pf - deleted
C:\WINDOWS\Prefetch\COPYER.EXE-2563E828.pf - deleted
C:\WINDOWS\Prefetch\CSCRIPT.EXE-1C26180C.pf - deleted
C:\WINDOWS\Prefetch\DCOMCFG.EXE-1E780C99.pf - deleted
C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf - deleted
C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf - deleted
C:\WINDOWS\Prefetch\FIND.EXE-0EC32F1E.pf - deleted
C:\WINDOWS\Prefetch\FINDSTR.EXE-0CA6274B.pf - deleted
C:\WINDOWS\Prefetch\GW.EXE-2BDC9BFE.pf - deleted
C:\WINDOWS\Prefetch\HELPSVC.EXE-2878DDA2.pf - deleted
C:\WINDOWS\Prefetch\HIJACKTHIS.EXE-2E26B5F6.pf - deleted
C:\WINDOWS\Prefetch\HIJACKTHIS.EXE-33927A77.pf - deleted
C:\WINDOWS\Prefetch\HLSW.EXE-275007C8.pf - deleted
C:\WINDOWS\Prefetch\IEXPLORE.EXE-2CA9778D.pf - deleted
C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf - deleted
C:\WINDOWS\Prefetch\INTEGRATOR.EXE-1C936896.pf - deleted
C:\WINDOWS\Prefetch\LAUNCHER.EXE-15CE8C0B.pf - deleted
C:\WINDOWS\Prefetch\Layout.ini - deleted
C:\WINDOWS\Prefetch\LIVEUPDATE.EXE-1D133934.pf - deleted
C:\WINDOWS\Prefetch\LIVEUPDATE.EXE-1E6B427B.pf - deleted
C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf - deleted
C:\WINDOWS\Prefetch\LUCOMS~1.EXE-02DB5950.pf - deleted
C:\WINDOWS\Prefetch\MMSMEDIAPLAYER.EXE-1B23935E.pf - deleted
C:\WINDOWS\Prefetch\MSI2CC.TMP-273A2ED2.pf - deleted
C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf - deleted
C:\WINDOWS\Prefetch\MSIMN.EXE-0B61806C.pf - deleted
C:\WINDOWS\Prefetch\MSNMSGR.EXE-091111D0.pf - deleted
C:\WINDOWS\Prefetch\NDETECT.EXE-38C3701D.pf - deleted
C:\WINDOWS\Prefetch\NERO.EXE-0CF6CA7D.pf - deleted
C:\WINDOWS\Prefetch\NMAIN.EXE-1C7B4910.pf - deleted
C:\WINDOWS\Prefetch\NOTEPAD.EXE-189578DA.pf - deleted
C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf - deleted
C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf - deleted
C:\WINDOWS\Prefetch\ONECLICKMAINTENANCE.EXE-1D493D41.pf - deleted
C:\WINDOWS\Prefetch\OPERA.EXE-24550E7A.pf - deleted
C:\WINDOWS\Prefetch\OPSCAN.EXE-287893AE.pf - deleted
C:\WINDOWS\Prefetch\PHONEEXPLORER.EXE-0D6F37F6.pf - deleted
C:\WINDOWS\Prefetch\PHOTOALBUM.EXE-272BB226.pf - deleted
C:\WINDOWS\Prefetch\RASAUTOU.EXE-18B88A68.pf - deleted
C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf - deleted
C:\WINDOWS\Prefetch\REGISTRYCLEANER.EXE-2ACFEEF7.pf - deleted
C:\WINDOWS\Prefetch\RSVP.EXE-04E70CF3.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-14F5D53C.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-16ADAA9F.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-16CF83A0.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-18875903.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1961300E.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1B2B0278.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1B5BA951.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1BCBC1AE.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1C5D058A.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1CF74929.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1D5F9F16.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1D839711.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1E219C16.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-1F718F33.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-207248E4.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-20E26141.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-214B3D97.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-27B731DE.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-2A94BB85.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-2C5DB914.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-2CCDD171.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-2DB29E28.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-2E5AF1D7.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-32240B45.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-322A989B.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-3267993E.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-344147A2.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-37CC4017.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-3CFE5A57.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-3F53C31F.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-3FC8AAA3.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-43C7EFA9.pf - deleted
C:\WINDOWS\Prefetch\RUNDLL32.EXE-451FC2C0.pf - deleted
C:\WINDOWS\Prefetch\SECTOPC.EXE-0CFF6F99.pf - deleted
C:\WINDOWS\Prefetch\SETUP_WM.EXE-19AC5A9B.pf - deleted
C:\WINDOWS\Prefetch\SHREDDER.EXE-3973A961.pf - deleted
C:\WINDOWS\Prefetch\SNDVOL32.EXE-383480B7.pf - deleted
C:\WINDOWS\Prefetch\SOUNDEDITOR.EXE-1F60E4C1.pf - deleted
C:\WINDOWS\Prefetch\SRCHSTS.EXE-2A2315C4.pf - deleted
C:\WINDOWS\Prefetch\SSTEXT3D.SCR-17B3B9DD.pf - deleted
C:\WINDOWS\Prefetch\STARTUPMANAGER.EXE-050D96E4.pf - deleted
C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf - deleted
C:\WINDOWS\Prefetch\TEAMSPEAK.EXE-1B85B37D.pf - deleted
C:\WINDOWS\Prefetch\TOTALCMD.EXE-28848F1E.pf - deleted
C:\WINDOWS\Prefetch\TU2006TRIALDE.EXE-3B6C9C54.pf - deleted
C:\WINDOWS\Prefetch\UE32.EXE-1BEC132F.pf - deleted
C:\WINDOWS\Prefetch\UNDELETE.EXE-0A5CE9F4.pf - deleted
C:\WINDOWS\Prefetch\UNINSTALLMANAGER.EXE-1BD98C04.pf - deleted
C:\WINDOWS\Prefetch\VLC.EXE-0601A9F3.pf - deleted
C:\WINDOWS\Prefetch\WINAMP.EXE-085235B5.pf - deleted
C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf - deleted
C:\WINDOWS\Prefetch\WMPLAYER.EXE-09969332.pf - deleted
C:\WINDOWS\Prefetch\WMPLAYER.EXE-09969333.pf - deleted
C:\WINDOWS\Prefetch\WMPLAYER.EXE-09969336.pf - deleted
C:\WINDOWS\Prefetch\WMPLAYER.EXE-09969338.pf - deleted
C:\WINDOWS\Prefetch\WMPLAYER.EXE-0996933B.pf - deleted
C:\WINDOWS\Prefetch\XFIRE.EXE-399BF578.pf - deleted
C:\WINDOWS\Prefetch\~E5.0001-37C48A99.pf - deleted
Emptied Recycle Bin on drive C:
'Run MRU' list - removed from the registry.
'Doc Find Spec MRU' list - removed from the registry.
'FindComputerMRU' list - removed from the registry.
'ComputerNameMRU' list - removed from the registry.
'ContainingTextMRU' list - removed from the registry.
'FilesNamedMRU' list - removed from the registry.
Search Assistant MRU list - removed from the registry.
Explorer Open/Save MRU list - removed from the registry.
Explorer Last Visited MRU list - removed from the registry.
Paint Recent File List - removed from the registry.
WordPad Recent File List - removed from the registry.
Telnet's MRU list - removed from the registry.
Windows Media Player Recent File List - removed from the registry.
WinZip Extract MRU list - removed from the registry.
WinZip File MRU list - removed from the registry.
CleanUp! 4.5.1 recovered 1.04 GB of disk space from 2479 files. Wow! You really needed that.
CleanUp! finished on 06/28/06 17:22:45.



Datentr„ger in Laufwerk C: ist WinXP
Volumeseriennummer: 2FD3-C9A0

Verzeichnis von C:\WINDOWS\system32

28.06.2006 16:51 43.296 nvapps.xml
28.06.2006 16:51 67.080 ld101.tmp
28.06.2006 16:43 3.888 BMXBkpCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx
28.06.2006 16:43 3.888 BMXCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx
28.06.2006 16:42 4.972 stdole3.tlb
28.06.2006 16:41 6.656 simpole.tlb
28.06.2006 16:29 28.672 hp100.tmp
27.06.2006 16:57 2.184 wpa.dbl
25.06.2006 22:27 45.056 wavdest.ax
25.06.2006 22:27 684.032 fun_mp4_enc.dll
25.06.2006 22:27 77.824 fun_mp4_dec.dll
25.06.2006 22:27 2.729.472 fun_avcodec.dll
25.06.2006 22:27 532.480 FunEncFilter.ax
25.06.2006 22:27 675.840 FunDecFilter.ax
19.06.2006 22:19 176.128 guxxa.dll
19.06.2006 22:19 4.286 ot.ico
19.06.2006 22:19 4.286 ts.ico
19.06.2006 22:12 78.856 regperf.exe
25.05.2006 19:59 61.440 mp4_vcodec.dll
27.04.2006 17:49 288.417 SrchSTS.exe
27.03.2006 16:14 311.604 perfh009.dat
27.03.2006 16:14 316.594 perfh007.dat
27.03.2006 16:14 39.992 perfc009.dat
27.03.2006 16:14 48.156 perfc007.dat
27.03.2006 16:14 723.744 PerfStringBackup.INI





Datentr„ger in Laufwerk C: ist WinXP
Volumeseriennummer: 2FD3-C9A0

Verzeichnis von C:\DOKUME~1\ADMINI~1\LOKALE~1\Temp

28.06.2006 17:22 54.272 ginstall.dll
28.06.2006 17:19 16.384 ~DF45AA.tmp
28.06.2006 17:01 43.560 jusched.log
27.06.2006 23:21 72.192 ~e5.0001
26.06.2006 19:14 717 control.xml
20.06.2006 18:20 9.298.032 EAD4.exe
20.06.2006 18:19 0 EAD4.tmp
19.06.2006 07:01 0 fla18.tmp
17.06.2006 15:33 19.118 java_install_reg.log
16.06.2006 19:57 9.296.496 EAD3.exe
16.06.2006 19:56 0 EAD3.tmp
09.06.2006 23:38 2.244 browserview-f27ae0.htm
05.06.2006 06:50 939 jupdate1.5.0.xml
28.05.2006 13:37 9.294.448 EAD2.exe
28.05.2006 13:36 0 EAD2.tmp
25.05.2006 21:13 0 aax408.tmp
01.05.2006 16:30 67.560 TFR456.tmp
01.05.2006 16:30 59.218 TFR452.tmp
01.05.2006 16:30 56.657 TFR44E.tmp
01.05.2006 16:30 20.560 TFR44A.tmp
01.05.2006 16:30 40.950 TFR447.tmp
01.05.2006 16:30 67.994 TFR443.tmp
01.05.2006 16:30 46.021 TFR441.tmp
01.05.2006 16:30 21.122 TFR43B.tmp
01.05.2006 16:30 23.427 TFR437.tmp
01.05.2006 16:30 71.682 TFR430.tmp
01.05.2006 16:30 10.225 TFR429.tmp
01.05.2006 16:30 35.574 TFR427.tmp
01.05.2006 16:30 32.204 TFR423.tmp
01.05.2006 16:30 27.777 TFR422.tmp
01.05.2006 16:30 46.660 TFR421.tmp
01.05.2006 01:14 46.660 TFR88.tmp
28.04.2006 22:36 0 aaxD8.tmp
27.04.2006 22:14 16.384 Perflib_Perfdata_b58.dat
24.04.2006 19:52 0 flaB8.tmp
24.04.2006 19:51 0 flaB7.tmp
22.04.2006 19:02 12.370 browserview-f1bff0.htm
22.04.2006 17:08 9.289.328 EAD11D.exe
22.04.2006 17:05 0 EAD11D.tmp
22.04.2006 16:02 283 wahtmltmp00.htm
21.04.2006 22:36 710.656 EAD1.exe
21.04.2006 22:36 0 EAD1.tmp
26.03.2006 17:46 39.424 540818.mst
26.03.2006 17:46 39.424 2ad22.mst
26.03.2006 17:46 39.424 2acd4.mst
26.03.2006 17:46 39.424 269c0.mst
26.03.2006 17:46 39.424 13c9ea4.mst
26.03.2006 03:04 71.680 GLB19C.tmp
13.03.2006 19:57 20.560 TFRF2.tmp



Datentr„ger in Laufwerk C: ist WinXP
Volumeseriennummer: 2FD3-C9A0

Verzeichnis von C:\WINDOWS

28.06.2006 17:14 180.228 setupact.log
28.06.2006 16:57 1.333 wincmd.ini
28.06.2006 16:51 0 0.log
28.06.2006 16:51 159 wiadebug.log
28.06.2006 16:51 50 wiaservc.log
28.06.2006 16:51 2.048 bootstat.dat
28.06.2006 16:50 122.874 ntbtlog.txt
28.06.2006 16:43 32.498 SchedLgU.Txt
27.06.2006 20:01 116 NeroDigital.ini
26.06.2006 19:14 40.062 wmsetup.log
24.06.2006 22:07 192 winamp.ini
04.06.2006 18:48 155 wcx_ftp.ini
25.05.2006 19:51 1.787.904 setupapi.log
14.05.2006 08:18 80.991 cb006539[1].exe



Datentr„ger in Laufwerk C: ist WinXP
Volumeseriennummer: 2FD3-C9A0

Verzeichnis von C:\

28.06.2006 17:28 0 sys.txt
28.06.2006 17:28 4.905 system.txt
28.06.2006 17:28 4.873 systemtemp.txt
28.06.2006 17:28 98.454 system32.txt
28.06.2006 17:11 2.053 rapport.txt
28.06.2006 16:50 1.610.612.736 pagefile.sys
25.06.2006 21:55 0 conmgr.log
03.01.2006 21:34 47.580 NTDETECT.COM
03.01.2006 21:34 235.296 ntldr
03.01.2006 21:19 0 IO.SYS
03.01.2006 21:19 0 CONFIG.SYS
03.01.2006 21:19 0 AUTOEXEC.BAT
03.01.2006 21:19 0 MSDOS.SYS
03.01.2006 21:08 194 boot.ini
18.08.2001 12:00 4.952 bootfont.bin
15 Datei(en) 1.611.011.043 Bytes
0 Verzeichnis(se), 8.195.334.144 Bytes frei
Seitenanfang Seitenende
28.06.2006, 23:54
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#2 Cobra1982

1.
spyfalcon.zip -> http://virus-protect.org/zip/spyfalcon.zip -> entpacken auf dem Desktop -> spyfalcon.reg ->doppeltklicken und der Registry mit "ja/yes" beifügen

2.
Avenger
http://virus-protect.org/artikel/tools/avenger.html
kopiere rein:

Zitat

Files to delete:
C:\WINDOWS\system32\stdole3.tlb
C:\WINDOWS\system32\simpole.tlb
C:\WINDOWS\system32\guxxa.dll
C:\WINDOWS\system32\ot.ico
C:\WINDOWS\system32\ts.ico
C:\WINDOWS\system32\regperf.exe
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\ginstall.dll
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\~DF45AA.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\~e5.0001
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\control.xml
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD4.exe
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD4.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\fla18.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD3.exe
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD3.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD2.exe
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD2.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\aax408.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\aaxD8.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\flaB8.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\flaB7.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD11D.exe
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD11D.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD1.exe
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\EAD1.tmp
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\540818.mst
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\2ad22.mst
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\2acd4.mst
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\269c0.mst
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\13c9ea4.mst
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\GLB19C.tmp
Klicke die gruene Ampel
das Script wird nun ausgeführt, dann wird der PC automatisch neustarten

**
arbeite smitfraud.fix genau ab
http://virus-protect.org/artikel/tools/smitfrautfix.html

**
Arbeitsplatz-->Rechtsklick, dann auf Eigenschaften--->Reiter Systemwiederherstellung--->Häkchen setzen bei Systemwiederherstellung auf allen Laufwerken deaktivieren.
(dann wieder aktivieren)

**
Deinstallieren: ...falls es vorhanden ist.....
"Start -> Einstellungen -> Systemsteuerung -> Software"
C:\Programme\Media-Codec

**
berichte ;)
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
02.09.2006, 19:38
grmblfxVirus
...neu hier

Beiträge: 2
#3 Hallo Sabina,
ich hab das selbe Problem, sorry dass dich damit nocheinmal mehr einer belästigen muss, ich kriegs aber einfach nicht weg...

CleanUp hab ich gemacht, aber den log nicht gespeichert... brauchst du den?

Im Anhang sind jedenfalls die vier bat Dateien und der HijackThis-Log.

Danke schonmal ;)

Anhang: bats+hijackthis.txt
Seitenanfang Seitenende
02.09.2006, 22:26
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#4 grmblfxVirus

1.
gehe in die registry
start - Ausfuehren - regedit
bearbeiten - suchen - vwlummc.dll

loesche, was du findest unter:

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
hubbsi - {7b1eeccd-0a6d-4ad5-8ac1-4af5722b3885} <--loeschen
----------------------------------------------------------------------

loesche manuell oder mit der killbox:
http://virus-protect.org/killbox.html

C:\WINDOWS\system32\vwlummc.dll

PC neustarten

**

scanne mit smitfraudfix
http://virus-protect.org/artikel/tools/smitfrautfix.html

**
öffne das HijackThis -- Button "scan" -- vor die Malware-Einträge Häkchen setzen -- Button "Fix checked" -- PC neustarten

Zitat

O2 - BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINDOWS\System32\ixt4.dll (file missing)
O21 - SSODL: hubbsi - {7b1eeccd-0a6d-4ad5-8ac1-4af5722b3885} - C:\WINDOWS\System32\vwlummc.dll
dann berichte ;)
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
03.09.2006, 13:43
grmblfxVirus
...neu hier

Beiträge: 2
#5 Super, hat hervorragend funktioniert! Woher weisst du das nur alles??? :-O

Tausend Dank jedenfalls!!!!! ;)
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
Seite(n): 1