Home » Viren, Trojaner & Malware Forum » !critical system error! » Themenansicht

!critical system error!
#0
05.12.2006, 18:19
capo7
...neu hier

Beiträge: 3
#1 Hallo Sabrina! Kannst du mir vielleicht helfen? Ich habe im Tray ein kleines, hässliches, gelbes, blinkendes Warnschild was mir ständig die meldung gibt ich hätte einen Wurm oder n Trojaner drauf...wechselt sich gerne ab des weiteren öffnet sich ständig ein fenster dass mir Antyspyware software verkaufen will, abgesehn von den pop-ups die noch hinzukommen.
danke für deine aufmerksamkeit...

logs:

Logfile of HijackThis v1.99.1
Scan saved at 18:07:42, on 05.12.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\F-SECU~1\backweb\4476822\Program\SERVIC~1.EXE
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\fsgk32st.exe
C:\Programme\F-Secure Internet Security\backweb\4476822\program\fsbwsys.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\FSGK32.EXE
C:\Programme\F-Secure Internet Security\Common\FSMA32.EXE
C:\Programme\F-Secure Internet Security\Anti-Virus\fssm32.exe
C:\WINDOWS\system32\LckFldService.exe
C:\Programme\F-Secure Internet Security\Common\FSMB32.EXE
C:\Programme\F-Secure Internet Security\Common\FCH32.EXE
C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Gemeinsame Dateien\Ulead Systems\DVD\ULCDRSvr.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Programme\F-Secure Internet Security\Common\FAMEH32.EXE
C:\Programme\F-Secure Internet Security\Anti-Virus\fsqh.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\fsav32.exe
C:\Programme\F-Secure Internet Security\Anti-Virus\fsrw.exe
C:\Programme\F-Secure Internet Security\FWES\Program\fsdfwd.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Programme\Java\jre1.5.0_09\bin\jusched.exe
C:\Programme\Gemeinsame Dateien\Ulead Systems\AutoDetector\monitor.exe
C:\Apps\Powercinema\PCMService.exe
C:\apps\ABoard\ABoard.exe
C:\Programme\Windows Defender\MSASCui.exe
C:\Programme\F-Secure Internet Security\Common\FSM32.EXE
C:\apps\ABoard\AOSD.exe
C:\PROGRA~1\F-SECU~1\ANTI-S~1\fsaw.exe
C:\Programme\F-Secure Internet Security\FSGUI\ispnews.exe
C:\Programme\Yahoo!\YCentral\YahooCentral.exe
C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
C:\Programme\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Programme\QuickTime\qttask.exe
C:\Programme\F-Secure Internet Security\FSGUI\fsguidll.exe
C:\Programme\MSN Messenger\MsnMsgr.Exe
C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe
C:\Programme\Microsoft ActiveSync\WCESCOMM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\F-Secure Internet Security\backweb\4476822\Program\fspex.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
C:\DOKUME~1\Savas\LOKALE~1\Temp\Rar$EX00.797\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = CAPO DI CAPI
R3 - URLSearchHook: Yahoo! Toolbar mit Pop-Up-Blocker - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Programme\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: (no name) - {1a1ddc19-5893-43ab-a73f-f41a0f34d115} - C:\Programme\Video ActiveX Object\isaddon.dll (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Xilokit Deskloops BHO - {B0CD151E-D4F1-4474-9BED-7D0173050EAD} - C:\Programme\Xilokit\Deskloops\DLIEHelper.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar mit Pop-Up-Blocker - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Programme\Gemeinsame Dateien\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Programme\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Programme\F-Secure Internet Security\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Programme\F-Secure Internet Security\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Programme\F-Secure Internet Security\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Programme\F-Secure Internet Security\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [YCentral] C:\Programme\Yahoo!\YCentral\YahooCentral.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programme\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Programme\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programme\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [BitTorrent] "C:\Programme\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: F-Secure 2006.lnk = C:\Programme\F-Secure Internet Security\backweb\4476822\Program\fspex.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Programme\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Dieses Popup &blockieren - C:\Programme\F-Secure Internet Security\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Mobilen Favoriten erstellen - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Programme\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Programme\Microsoft ActiveSync\INetRepl.dll
O9 - Extra 'Tools' menuitem: Mobilen Favoriten erstellen... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Programme\Microsoft ActiveSync\INetRepl.dll
O9 - Extra button: IE-Schutzschild - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Programme\F-Secure Internet Security\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: IE-Schutzschild... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Programme\F-Secure Internet Security\Anti-Spyware\ieshield.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {0e921e80-267a-42aa-aee4-60b9a1222a44} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {0e921e80-267a-42aa-aee4-60b9a1222a44} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\ger.htm
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by108fd.bay108.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1152569828187
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: flammei - {9d635a36-6b3c-4146-8625-f3aaf507bbf8} - C:\WINDOWS\system32\vcehaeb.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: F-Secure 2006 (BackWeb Plug-in - 4476822) - F-Secure Internet Security 2005 - C:\PROGRA~1\F-SECU~1\backweb\4476822\Program\SERVIC~1.EXE
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Programme\F-Secure Internet Security\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Programme\F-Secure Internet Security\backweb\4476822\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Programme\F-Secure Internet Security\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Programme\F-Secure Internet Security\Common\FSMA32.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LckFldService - Unknown owner - C:\WINDOWS\system32\LckFldService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Programme\Gemeinsame Dateien\Ulead Systems\DVD\ULCDRSvr.exe





Savas - 06-12-04 21:10:20,28 Service Pack 2
ComboFix 06.11.27W - Running from: "C:\Dokumente und Einstellungen\Savas\Desktop"

((((((((((((((((((((((((((((((( Files Created from 2006-11-04 to 2006-12-04 ))))))))))))))))))))))))))))))))))


2006-12-04 21:05 <DIR> dr-h----- C:\Dokumente und Einstellungen\Savas\Recent
2006-12-04 21:03 <DIR> d-------- C:\Programme\CleanUp!
2006-12-04 19:53 <DIR> d-------- C:\Programme\Virus-Bursters
2006-12-04 19:52 17,920 --a------ C:\WINDOWS\system32\vcehaeb.dll
2006-12-04 19:52 <DIR> d-------- C:\Programme\Video ActiveX Object
2006-12-04 19:42 <DIR> d-------- C:\Programme\DaemonTools_WhenUSave_Installer
2006-12-04 18:51 98,304 --a------ C:\WINDOWS\system32CmdLineExt.dll
2006-12-04 18:51 86,016 --a------ C:\WINDOWS\system32\OpenAL32.dll
2006-12-04 18:51 413,696 --a------ C:\WINDOWS\system32\wrap_oal.dll
2006-12-04 18:51 <DIR> d-------- C:\Programme\OpenAL
2006-12-01 23:15 <DIR> d-------- C:\Programme\Windows Media Connect 2
2006-11-25 11:45 <DIR> d--h-c--- C:\WINDOWS\ie7
2006-11-19 01:22 <DIR> d-------- C:\Programme\Eidos
2006-11-18 18:16 <DIR> d-------- C:\Programme\FLVPlayer
2006-11-18 18:05 92,728 --a------ C:\WINDOWS\system32\bass.dll
2006-11-18 18:05 <DIR> d-------- C:\Programme\You Ripper
2006-11-18 17:11 <DIR> d-------- C:\Programme\AtomixMP3
2006-11-16 00:05 <DIR> d-------- C:\7fbef003bc7e57aa7cca08bb69b1ea7f
2006-11-15 23:21 442,368 -ra------ C:\WINDOWS\system32\vp6vfw.dll
2006-11-12 17:05 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll
2006-11-12 17:05 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll
2006-11-12 17:05 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll
2006-11-12 17:05 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll
2006-11-11 21:47 <DIR> d-------- C:\Programme\CCleaner
2006-11-11 16:11 <DIR> d-------- C:\Programme\City Interactive
2006-11-08 16:10 <DIR> d-------- C:\Programme\Radical Games
2006-11-07 21:03 6,049,280 --------- C:\WINDOWS\system32\ieframe.dll
2006-11-07 21:03 50,688 --------- C:\WINDOWS\system32\msfeedsbs.dll
2006-11-07 21:03 458,752 --------- C:\WINDOWS\system32\msfeeds.dll
2006-11-07 21:03 180,736 --------- C:\WINDOWS\system32\ieui.dll
2006-11-07 14:27 <DIR> d-------- C:\Programme\BearShare
2006-11-06 15:51 <DIR> d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\temp
2006-11-06 15:37 <DIR> dr-h----- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\SecuROM
2006-11-04 14:14 1,245,696 --a------ C:\WINDOWS\system32\msxml4.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-12-04 21:09 -------- d-------- C:\Programme\Mozilla Firefox
2006-12-04 19:42 -------- d-------- C:\Programme\DAEMON Tools
2006-12-04 19:37 639224 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2006-12-04 01:09 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Azureus
2006-12-01 23:15 -------- d-------- C:\Programme\Windows Media Player
2006-11-30 18:21 -------- d---s---- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Microsoft
2006-11-30 18:01 -------- d-------- C:\Programme\Gemeinsame Dateien\Microsoft Shared
2006-11-25 11:48 -------- d-------- C:\Programme\Internet Explorer
2006-11-25 11:46 -------- d-------- C:\Programme\Java
2006-11-23 14:06 -------- d-------- C:\Programme\Nokia
2006-11-23 14:06 -------- d-------- C:\Programme\Gemeinsame Dateien
2006-11-23 14:05 -------- d-------- C:\Programme\Two Worlds Pinball
2006-11-23 14:04 -------- d-------- C:\Programme\Xara
2006-11-23 14:04 -------- d-------- C:\Programme\Common Files
2006-11-23 14:02 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\concept design
2006-11-19 12:51 -------- d-------- C:\Programme\PokerStars
2006-11-18 17:01 -------- d--h----- C:\Programme\InstallShield Installation Information
2006-11-18 17:01 -------- d-------- C:\Programme\KONAMI
2006-11-15 23:21 -------- d-------- C:\Programme\EA GAMES
2006-11-14 17:44 -------- d-------- C:\Programme\EA SPORTS
2006-11-07 21:03 413696 --a------ C:\WINDOWS\system32\vbscript.dll
2006-11-07 21:03 231424 --a------ C:\WINDOWS\system32\webcheck.dll
2006-11-07 21:03 156160 --a------ C:\WINDOWS\system32\msls31.dll
2006-11-07 18:01 -------- d-------- C:\Programme\Windows Live Toolbar
2006-11-07 03:27 382976 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-11-07 03:27 229376 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-11-07 03:26 71680 --a------ C:\WINDOWS\system32\admparse.dll
2006-11-07 03:26 55296 --a------ C:\WINDOWS\system32\iesetup.dll
2006-11-07 03:26 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-11-07 03:26 43008 --a------ C:\WINDOWS\system32\iernonce.dll
2006-11-07 03:26 152064 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-11-07 03:26 13312 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-11-07 03:26 123904 --a------ C:\WINDOWS\system32\advpack.dll
2006-11-07 03:25 161792 --a------ C:\WINDOWS\system32\ieakui.dll
2006-11-06 15:41 -------- d-------- C:\Programme\Electronic Arts
2006-11-06 15:37 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2006-11-03 21:35 -------- d-------- C:\Programme\Azureus
2006-11-03 14:44 -------- d-------- C:\Programme\TuneUp WinStyler
2006-10-26 19:57 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Publish Providers
2006-10-26 19:54 -------- d-------- C:\Programme\VSTplugins
2006-10-26 19:52 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Sony
2006-10-26 19:51 -------- d-------- C:\Programme\Sony Setup
2006-10-26 14:45 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\PC Suite
2006-10-24 20:33 8282112 --a------ C:\WINDOWS\system32\wmploc.dll
2006-10-24 20:04 99840 --a------ C:\WINDOWS\system32\wmpshell.dll
2006-10-24 20:04 275968 --a------ C:\WINDOWS\system32\wmerror.dll
2006-10-24 20:02 8192 --a------ C:\WINDOWS\system32\asferror.dll
2006-10-22 00:49 -------- d-------- C:\Programme\Cain
2006-10-21 23:21 -------- d-------- C:\Programme\WinPcap
2006-10-21 14:26 -------- d-------- C:\Programme\Xilokit
2006-10-19 18:07 -------- d-------- C:\Programme\Audacity 1.3 Beta
2006-10-18 23:03 43008 --------- C:\WINDOWS\system32\wpdshextres.dll
2006-10-18 22:58 8704 --a------ C:\WINDOWS\system32\wdfmgr.exe
2006-10-18 22:58 8704 --a------ C:\WINDOWS\system32\uwdf.exe
2006-10-18 22:47 991744 --a------ C:\WINDOWS\system32\drmv2clt.dll
2006-10-18 22:47 937984 --a------ C:\WINDOWS\system32\WMNetMgr.dll
2006-10-18 22:47 767488 --------- C:\WINDOWS\system32\WMVSENCD.dll
2006-10-18 22:47 757248 --a------ C:\WINDOWS\system32\wmadmod.dll
2006-10-18 22:47 656896 --------- C:\WINDOWS\system32\WMVXENCD.dll
2006-10-18 22:47 63488 --a------ C:\WINDOWS\system32\wpdmtpus.dll
2006-10-18 22:47 629760 --a------ C:\WINDOWS\system32\wpd_ci.dll
2006-10-18 22:47 613376 --------- C:\WINDOWS\system32\wmpmde.dll
2006-10-18 22:47 603648 --a------ C:\WINDOWS\system32\WMSPDMOD.dll
2006-10-18 22:47 542720 --a------ C:\WINDOWS\system32\blackbox.dll
2006-10-18 22:47 535040 --------- C:\WINDOWS\system32\wmdrmsdk.dll
2006-10-18 22:47 429056 --a------ C:\WINDOWS\system32\wmdrmdev.dll
2006-10-18 22:47 414208 --a------ C:\WINDOWS\system32\msscp.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmvdmod.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\WMVADVE.DLL
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\WMVADVD.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wmsdmod.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\wdfapi.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MPG4DMOD.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MP4SDMOD.dll
2006-10-18 22:47 4096 --a------ C:\WINDOWS\system32\MP43DMOD.dll
2006-10-18 22:47 37376 --a------ C:\WINDOWS\system32\wmdmps.dll
2006-10-18 22:47 35840 --a------ C:\WINDOWS\system32\wpdconns.dll
2006-10-18 22:47 356352 --a------ C:\WINDOWS\system32\wpdsp.dll
2006-10-18 22:47 348672 --a------ C:\WINDOWS\system32\wmdrmnet.dll
2006-10-18 22:47 33792 --a------ C:\WINDOWS\system32\wmdmlog.dll
2006-10-18 22:47 321536 --a------ C:\WINDOWS\system32\mswmdm.dll
2006-10-18 22:47 317440 --------- C:\WINDOWS\system32\MP4SDECD.dll
2006-10-18 22:47 314880 --a------ C:\WINDOWS\system32\wmpdxm.dll
2006-10-18 22:47 295936 --------- C:\WINDOWS\system32\wmpeffects.dll
2006-10-18 22:47 284160 --a------ C:\WINDOWS\system32\portabledeviceapi.dll
2006-10-18 22:47 276992 --a------ C:\WINDOWS\system32\audiodev.dll
2006-10-18 22:47 27136 --a------ C:\WINDOWS\system32\mspmsnsv.dll
2006-10-18 22:47 2603008 --------- C:\WINDOWS\system32\WpdShext.dll
2006-10-18 22:47 259072 --------- C:\WINDOWS\system32\MPG4DECD.dll
2006-10-18 22:47 259072 --------- C:\WINDOWS\system32\MP43DECD.dll
2006-10-18 22:47 2450944 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-10-18 22:47 242688 --a------ C:\WINDOWS\system32\wmpasf.dll
2006-10-18 22:47 229376 --a------ C:\WINDOWS\system32\cewmdm.dll
2006-10-18 22:47 222208 --a------ C:\WINDOWS\system32\wmasf.dll
2006-10-18 22:47 212992 --a------ C:\WINDOWS\system32\mfplat.dll
2006-10-18 22:47 211456 --a------ C:\WINDOWS\system32\qasf.dll
2006-10-18 22:47 204288 --a------ C:\WINDOWS\system32\wmpsrcwp.dll
2006-10-18 22:47 199168 --------- C:\WINDOWS\system32\PortableDeviceWMDRM.dll
2006-10-18 22:47 179712 --a------ C:\WINDOWS\system32\msnetobj.dll
2006-10-18 22:47 175616 --a------ C:\WINDOWS\system32\mspmsp.dll
2006-10-18 22:47 166912 --a------ C:\WINDOWS\system32\portabledevicetypes.dll
2006-10-18 22:47 1661440 --a------ C:\WINDOWS\system32\wmpencen.dll
2006-10-18 22:47 1574912 --------- C:\WINDOWS\system32\WMVENCOD.dll
2006-10-18 22:47 157184 --a------ C:\WINDOWS\system32\wmidx.dll
2006-10-18 22:47 154624 --a------ C:\WINDOWS\system32\wpdmtp.dll
2006-10-18 22:47 1543680 --------- C:\WINDOWS\system32\WMVDECOD.dll
2006-10-18 22:47 1382912 --------- C:\WINDOWS\system32\WMVSDECD.dll
2006-10-18 22:47 133632 --a------ C:\WINDOWS\system32\wpdshserviceobj.dll
2006-10-18 22:47 1329152 --a------ C:\WINDOWS\system32\WMSPDMOE.dll
2006-10-18 22:47 132096 --------- C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
2006-10-18 22:47 130048 --------- C:\WINDOWS\system32\wmpps.dll
2006-10-18 22:47 11264 --a------ C:\WINDOWS\system32\LAPRXY.dll
2006-10-18 22:47 1117696 --a------ C:\WINDOWS\system32\WMADMOE.dll
2006-10-18 22:47 101888 --------- C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2006-10-18 21:03 100864 --a------ C:\WINDOWS\system32\logagent.exe
2006-10-18 21:00 38528 --a------ C:\WINDOWS\system32\drivers\wpdusb.sys
2006-10-18 21:00 249856 --------- C:\WINDOWS\system32\drmupgds.exe
2006-10-18 21:00 17408 --------- C:\WINDOWS\system32\wpdshextautoplay.exe
2006-10-18 18:00 -------- d-------- C:\Programme\MultiTranse
2006-10-18 14:58 -------- d-------- C:\Programme\Posum
2006-10-17 21:49 -------- d-------- C:\Programme\Cryptainer LE
2006-10-17 12:06 78336 --a------ C:\WINDOWS\system32\ieencode.dll
2006-10-17 12:05 40960 --a------ C:\WINDOWS\system32\licmgr10.dll
2006-10-17 12:05 206336 --------- C:\WINDOWS\system32\WinFXDocObj.exe
2006-10-17 12:05 105984 --a------ C:\WINDOWS\system32\url.dll
2006-10-17 12:04 101376 --a------ C:\WINDOWS\system32\occache.dll
2006-10-17 11:58 61952 --------- C:\WINDOWS\system32\icardie.dll
2006-10-17 11:58 12288 --------- C:\WINDOWS\system32\msfeedssync.exe
2006-10-17 11:57 36352 --a------ C:\WINDOWS\system32\imgutil.dll
2006-10-17 11:57 266752 --------- C:\WINDOWS\system32\iertutil.dll
2006-10-17 11:56 45568 --a------ C:\WINDOWS\system32\mshta.exe
2006-10-17 11:28 48128 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-10-17 11:27 380928 --------- C:\WINDOWS\system32\ieapfltr.dll
2006-10-16 22:19 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\SecondLife
2006-10-14 10:35 -------- d-------- C:\Programme\MSXML 4.0
2006-10-14 10:35 -------- d-------- C:\Programme\Alcohol Soft
2006-10-14 10:29 -------- d-------- C:\Programme\Yahoo SiteBuilder
2006-10-13 13:35 146432 --a------ C:\WINDOWS\system32\nwprovau.dll
2006-10-12 17:56 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Virtual Mechanics
2006-10-09 21:25 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Ambient Design
2006-10-09 21:23 -------- d-------- C:\Programme\Ambient Design
2006-10-09 21:15 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Itsth
2006-10-08 19:23 -------- d-------- C:\Programme\ASCOMP Software
2006-10-07 17:41 48 ---h----- C:\WINDOWS\system32\SWCTL.DLL
2006-10-07 17:41 -------- d-------- C:\Programme\Usco
2006-10-07 16:23 -------- d-------- C:\Programme\Ulead Systems
2006-10-07 13:31 -------- d-------- C:\Dokumente und Einstellungen\Savas\Anwendungsdaten\Macromedia
2006-10-07 13:30 -------- d-------- C:\Programme\Macromedia
2006-10-07 13:30 -------- d-------- C:\Programme\Gemeinsame Dateien\Macromedia Shared
2006-10-07 13:30 -------- d-------- C:\Programme\Gemeinsame Dateien\Macromedia
2006-10-07 12:26 -------- d-------- C:\Programme\PDF2HTML v1.6
2006-10-06 15:54 -------- d-------- C:\Programme\SpeedFan
2006-10-03 16:45 73216 --a------ C:\WINDOWS\cadkasdeinst01.exe
2006-10-02 15:28 312128 --------- C:\WINDOWS\system32\msdelta.dll
2006-09-28 20:13 95344 --------- C:\WINDOWS\system32\WUDFCoinstaller.dll
2006-09-28 18:56 55808 --------- C:\WINDOWS\system32\WudfSvc.dll
2006-09-28 18:56 316416 --------- C:\WINDOWS\system32\WUDFx.dll
2006-09-28 18:56 165376 --------- C:\WINDOWS\system32\WudfPlatform.dll
2006-09-28 18:56 146432 --------- C:\WINDOWS\system32\WudfHost.exe
2006-09-25 17:58 23856 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-09-13 06:02 1084416 --a------ C:\WINDOWS\system32\msxml3.dll
2006-09-12 20:00 737280 --a------ C:\WINDOWS\iun6002.exe


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"MsnMsgr"="\"C:\\Programme\\MSN Messenger\\MsnMsgr.Exe\" /background"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="\"C:\\Programme\\Gemeinsame Dateien\\Ahead\\lib\\NMBgMonitor.exe\""
"H/PC Connection Agent"="\"C:\\Programme\\Microsoft ActiveSync\\WCESCOMM.EXE\""
"BitTorrent"="\"C:\\Programme\\BitTorrent\\bittorrent.exe\" --force_start_minimized"
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"IMJPMIG8.1"="\"C:\\WINDOWS\\IME\\imjp8_1\\IMJPMIG.EXE\" /Spoil /RemAdvDef /Migration32"
"PHIME2002ASync"="C:\\WINDOWS\\system32\\IME\\TINTLGNT\\TINTSETP.EXE /SYNC"
"PHIME2002A"="C:\\WINDOWS\\system32\\IME\\TINTLGNT\\TINTSETP.EXE /IMEName"
"SoundMan"="SOUNDMAN.EXE"
"ATIPTA"="C:\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe"
"SunJavaUpdateSched"="\"C:\\Programme\\Java\\jre1.5.0_09\\bin\\jusched.exe\""
"Ulead AutoDetector v2"="C:\\Programme\\Gemeinsame Dateien\\Ulead Systems\\AutoDetector\\monitor.exe"
"PCMService"="\"c:\\Apps\\Powercinema\\PCMService.exe\""
"ACTIVBOARD"="c:\\apps\\ABoard\\ABoard.exe"
"Windows Defender"="\"C:\\Programme\\Windows Defender\\MSASCui.exe\" -hide"
"F-Secure Manager"="\"C:\\Programme\\F-Secure Internet Security\\Common\\FSM32.EXE\" /splash"
"F-Secure TNB"="\"C:\\Programme\\F-Secure Internet Security\\TNB\\TNBUtil.exe\" /CHECKALL /WAITFORSW"
"F-Secure Startup Wizard"="\"C:\\Programme\\F-Secure Internet Security\\FSGUI\\FSSW.EXE\" /reboot"
"News Service"="\"C:\\Programme\\F-Secure Internet Security\\FSGUI\\ispnews.exe\""
"YCentral"="C:\\Programme\\Yahoo!\\YCentral\\YahooCentral.exe"
"TkBellExe"="\"C:\\Programme\\Gemeinsame Dateien\\Real\\Update_OB\\realsched.exe\" -osboot"
"Adobe Photo Downloader"="\"C:\\Programme\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\apdproxy.exe\""
"QuickTime Task"="\"C:\\Programme\\QuickTime\\qttask.exe\" -atboottime"
"DAEMON Tools"="\"C:\\Programme\\DAEMON Tools\\daemon.exe\" -lang 1033"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Die derzeitige Homepage"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,00,01,00,00,00,00,00,00,00,04,00,00,c0,03,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"
"{9d635a36-6b3c-4146-8625-f3aaf507bbf8}"="flammei"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"="Microsoft AntiMalware ShellExecuteHook"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
"ClearRecentDocsOnExit"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run]
"isamonitor.exe"="C:\\Programme\\Video ActiveX Object\\isamonitor.exe"
"pmsngr.exe"="C:\\Programme\\Video ActiveX Object\\pmsngr.exe"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"0aMCPClient"="{F5DF91F9-15E9-416B-A7C3-7519B11ECBFC}"
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
"flammei"="{9d635a36-6b3c-4146-8625-f3aaf507bbf8}"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"H/PC Connection Agent"="\"C:\\Programme\\Microsoft ActiveSync\\WCESCOMM.EXE\""
"SmpcSys"="C:\\APPS\\SMP\\SmpSys.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"DAEMON Tools"="\"C:\\Programme\\DAEMON Tools\\daemon.exe\" -lang 1033"
"Adobe Photo Downloader"="\"C:\\Programme\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\apdproxy.exe\""
"QuickTime Task"="\"C:\\Programme\\QuickTime\\qttask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Adobe Reader - Schnellstart.lnk]
"path"="C:\\Dokumente und Einstellungen\\All Users\\Startmenü\\Programme\\Autostart\\Adobe Reader - Schnellstart.lnk"
"backup"="C:\\WINDOWS\\pss\\Adobe Reader - Schnellstart.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE "
"item"="Adobe Reader - Schnellstart"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^Savas^Startmenü^Programme^Autostart^Yahoo! Widget Engine.lnk]
"path"="C:\\Dokumente und Einstellungen\\Savas\\Startmenü\\Programme\\Autostart\\Yahoo! Widget Engine.lnk"
"backup"="C:\\WINDOWS\\pss\\Yahoo! Widget Engine.lnkStartup"
"location"="Startup"
"command"="C:\\PROGRA~1\\Yahoo!\\YAHOO!~1\\YAHOOW~1.EXE "
"item"="Yahoo! Widget Engine"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="apdproxy"
"hkey"="HKLM"
"command"="\"C:\\Programme\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\apdproxy.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BearShare"
"hkey"="HKLM"
"command"="\"C:\\Programme\\BearShare\\BearShare.exe\" /pause"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X6100 Series]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="lxbfbmgr"
"hkey"="HKLM"
"command"="\"C:\\Programme\\Lexmark X6100 Series\\lxbfbmgr.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NeroCheck"
"hkey"="HKLM"
"command"="C:\\Programme\\Gemeinsame Dateien\\Ahead\\Lib\\NeroCheck.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"C:\\Programme\\QuickTime\\qttask.exe\" -atboottime"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Steam"
"hkey"="HKCU"
"command"="\"C:\\Programme\\Steam\\Steam.exe\" -silent"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="realsched"
"hkey"="HKLM"
"command"="\"C:\\Programme\\Gemeinsame Dateien\\Real\\Update_OB\\realsched.exe\" -osboot"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"TUWinStylerThemeSvc"=dword:00000002
"Macromedia Licensing Service"=dword:00000003
"AOL ACS"=dword:00000002

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"



~ ~ ~ ~ ~ ~ ~ ~ Hijackthis Backups ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

backup-20060704-215330-161
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
backup-20060704-215330-339
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
backup-20060704-215330-358
O3 - Toolbar: Alcohol Soft - Alcohol 120% Toolbar - {1CE4EE89-2D5C-4361-AF3B-D902AB545381} - C:\Programme\Alcohol Soft\Alcohol 120% Toolbar\a120_tb.dll
backup-20060704-215330-690
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll
backup-20060704-215330-714
O2 - BHO: XBTP05231 - {031F120A-BBAF-45d8-B306-375F2A6B9398} - C:\PROGRA~1\ALCOHO~1\ALCOHO~2\a120_tb.dll
backup-20060704-215330-788
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll
backup-20060704-215330-959
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
backup-20060704-215310-506
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://format.packardbell.com/cgi-bin/redirect/?country=GE&range=AD&phase=6&key=SEARCH

Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\1-Klick-Wartung.job
C:\WINDOWS\tasks\Auf Updates fr Windows Live Toolbar prfen.job
C:\WINDOWS\tasks\Erweiterte Garantie.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\Scheduled scanning task.job

Completion time: 06-12-04 21:11:43.18
C:\ComboFix.txt ... 06-12-04 21:11








Datentr„ger in Laufwerk C: ist HDD
Volumeseriennummer: BCC7-C0D2

Verzeichnis von C:\WINDOWS\system32

06-12-05 18:00 1,158 wpa.dbl
06-12-05 17:59 18,330 lckfldservicelog.txt
06-12-04 19:52 17,920 vcehaeb.dll
06-12-04 18:51 413,696 wrap_oal.dll
06-12-04 18:51 86,016 OpenAL32.dll
06-12-02 08:40 16,832 amcompat.tlb
06-12-02 08:40 23,392 nscompat.tlb
06-11-25 11:46 8,833 jupdate-1.5.0_09-b03.log
06-11-23 23:26 0 mslck.dat
06-11-18 18:05 92,728 bass.dll
06-11-17 18:54 1,040,384 ieframe.dll.mui
06-11-17 18:53 12,288 advpack.dll.mui
06-11-08 02:38 10,342,824 MRT.exe
06-11-07 21:03 670,720 mstime.dll
06-11-07 21:03 413,696 vbscript.dll
06-11-07 21:03 180,736 ieui.dll
06-11-07 21:03 1,162,240 urlmon.dll
06-11-07 21:03 156,160 msls31.dll
06-11-07 21:03 27,136 jsproxy.dll
06-11-07 21:03 475,648 mshtmled.dll
06-11-07 21:03 3,577,856 mshtml.dll
06-11-07 21:03 231,424 webcheck.dll
06-11-07 21:03 131,584 extmgr.dll
06-11-07 21:03 50,688 msfeedsbs.dll
06-11-07 21:03 458,752 msfeeds.dll
06-11-07 21:03 191,488 iepeers.dll
06-11-07 21:03 818,688 wininet.dll
06-11-07 21:03 6,049,280 ieframe.dll
06-11-07 03:27 382,976 iedkcs32.dll
06-11-07 03:27 229,376 ieaksie.dll
06-11-07 03:26 152,064 ieakeng.dll
06-11-07 03:26 71,680 admparse.dll
06-11-07 03:26 55,296 iesetup.dll
06-11-07 03:26 13,312 ieudinit.exe
06-11-07 03:26 54,784 ie4uinit.exe
06-11-07 03:26 43,008 iernonce.dll
06-11-07 03:26 123,904 advpack.dll
06-11-07 03:26 92,672 inseng.dll
06-11-07 03:25 161,792 ieakui.dll
06-11-07 03:24 56,483 ieuinit.inf
06-11-06 15:37 98,304 CmdLineExt.dll
06-11-04 20:08 749,568 tmp6F.tmp
06-11-04 14:14 1,245,696 msxml4.dll
06-10-30 14:08 383,390 perfh009.dat
06-10-30 14:08 394,830 perfh007.dat
06-10-30 14:08 53,744 perfc009.dat
06-10-30 14:08 64,796 perfc007.dat
06-10-30 14:08 906,376 PerfStringBackup.INI
06-10-24 20:33 8,282,112 wmploc.dll
06-10-24 20:04 99,840 wmpshell.dll
06-10-24 20:04 99,840 SET34E.tmp
06-10-24 20:04 275,968 wmerror.dll
06-10-24 20:02 8,192 asferror.dll
06-10-18 23:03 43,008 wpdshextres.dll
06-10-18 22:58 8,704 uwdf.exe
06-10-18 22:58 8,704 wdfmgr.exe
06-10-18 22:47 2,450,944 SET2F5.tmp
06-10-18 22:47 603,648 WMSPDMOD.dll
06-10-18 22:47 4,096 wmsdmoe2.dll
06-10-18 22:47 4,096 wmsdmod.dll
06-10-18 22:47 629,760 wpd_ci.dll
06-10-18 22:47 656,896 WMVXENCD.dll
06-10-18 22:47 1,329,152 WMSPDMOE.dll
06-10-18 22:47 35,840 wpdconns.dll
06-10-18 22:47 154,624 wpdmtp.dll
06-10-18 22:47 63,488 wpdmtpus.dll
06-10-18 22:47 2,603,008 WpdShext.dll
06-10-18 22:47 4,096 WMVADVD.dll
06-10-18 22:47 133,632 SET317.tmp
06-10-18 22:47 767,488 WMVSENCD.dll
06-10-18 22:47 356,352 wpdsp.dll
06-10-18 22:47 1,382,912 WMVSDECD.dll
06-10-18 22:47 1,574,912 WMVENCOD.dll
06-10-18 22:47 4,096 wmvdmoe2.dll
06-10-18 22:47 4,096 wmvdmod.dll
06-10-18 22:47 1,543,680 WMVDECOD.dll
06-10-18 22:47 2,450,944 wmvcore.dll
06-10-18 22:47 4,096 WMVADVE.DLL
06-10-18 22:47 133,632 wpdshserviceobj.dll
06-10-18 22:47 535,040 wmdrmsdk.dll
06-10-18 22:47 157,184 wmidx.dll
06-10-18 22:47 937,984 WMNetMgr.dll
06-10-18 22:47 10,834,432 wmp.dll
06-10-18 22:47 242,688 wmpasf.dll
06-10-18 22:47 204,288 wmpsrcwp.dll
06-10-18 22:47 348,672 wmdrmnet.dll
06-10-18 22:47 130,048 wmpps.dll
06-10-18 22:47 613,376 wmpmde.dll
06-10-18 22:47 314,880 wmpdxm.dll
06-10-18 22:47 1,661,440 wmpencen.dll
06-10-18 22:47 295,936 wmpeffects.dll
06-10-18 22:47 4,096 wdfapi.dll
06-10-18 22:47 166,912 SET308.tmp
06-10-18 22:47 284,160 SET306.tmp
06-10-18 22:47 222,208 SET2E9.tmp
06-10-18 22:47 757,248 SET2E7.tmp
06-10-18 22:47 211,456 qasf.dll
06-10-18 22:47 199,168 PortableDeviceWMDRM.dll
06-10-18 22:47 132,096 PortableDeviceWiaCompat.dll
06-10-18 22:47 166,912 portabledevicetypes.dll
06-10-18 22:47 284,160 portabledeviceapi.dll
06-10-18 22:47 101,888 PortableDeviceClassExtension.dll
06-10-18 22:47 429,056 wmdrmdev.dll
06-10-18 22:47 757,248 wmadmod.dll
06-10-18 22:47 37,376 wmdmps.dll
06-10-18 22:47 33,792 wmdmlog.dll
06-10-18 22:47 222,208 wmasf.dll
06-10-18 22:47 1,117,696 WMADMOE.dll
06-10-18 22:47 179,712 msnetobj.dll
06-10-18 22:47 321,536 mswmdm.dll
06-10-18 22:47 27,136 mspmsnsv.dll
06-10-18 22:47 175,616 mspmsp.dll
06-10-18 22:47 414,208 msscp.dll
06-10-18 22:47 212,992 SET2DE.tmp
06-10-18 22:47 259,072 MPG4DECD.dll
06-10-18 22:47 4,096 MP4SDMOD.dll
06-10-18 22:47 317,440 MP4SDECD.dll
06-10-18 22:47 212,992 mfplat.dll
06-10-18 22:47 4,096 MP43DMOD.dll
06-10-18 22:47 4,096 MPG4DMOD.dll
06-10-18 22:47 11,264 LAPRXY.dll
06-10-18 22:47 259,072 MP43DECD.dll
06-10-18 22:47 229,376 cewmdm.dll
06-10-18 22:47 991,744 drmv2clt.dll
06-10-18 22:47 542,720 blackbox.dll
06-10-18 22:47 276,992 audiodev.dll
06-10-18 21:05 232,448 l3codecp.acm
06-10-18 21:03 100,864 logagent.exe
06-10-18 21:00 249,856 drmupgds.exe
06-10-18 21:00 17,408 wpdshextautoplay.exe
06-10-17 21:47 26,214,400 cxl1705
06-10-17 12:06 443,904 html.iec
06-10-17 12:06 78,336 ieencode.dll
06-10-17 12:05 206,336 WinFXDocObj.exe
06-10-17 12:05 1,817,088 inetcpl.cpl
06-10-17 12:05 105,984 url.dll
06-10-17 12:05 192,000 msrating.dll
06-10-17 12:05 40,960 licmgr10.dll
06-10-17 12:04 101,376 occache.dll
06-10-17 12:00 491,520 jscript.dll
06-10-17 11:58 12,288 msfeedssync.exe
06-10-17 11:58 61,952 icardie.dll
06-10-17 11:58 44,544 pngfilt.dll
06-10-17 11:58 346,624 dxtmsft.dll
06-10-17 11:57 36,352 imgutil.dll
06-10-17 11:57 214,528 dxtrans.dll
06-10-17 11:57 266,752 iertutil.dll
06-10-17 11:56 45,568 mshta.exe
06-10-17 11:55 66,560 tdc.ocx
06-10-17 11:28 48,128 mshtmler.dll
06-10-17 11:27 380,928 ieapfltr.dll
06-10-17 11:19 1,383,424 mshtml.tlb
06-10-16 12:19 270,336 xpsp3res.dll
06-10-13 13:35 146,432 nwprovau.dll
06-10-12 03:10 127,078 javaws.exe
06-10-12 03:10 49,265 jpicpl32.cpl
06-10-12 01:35 53,346 javaw.exe
06-10-12 01:35 49,248 java.exe
06-10-10 06:15 372,080 FNTCACHE.DAT
06-10-07 17:41 48 SWCTL.DLL
06-10-07 13:30 1 FlashPaper2PrinterPort
06-10-03 13:14 45 initdebug.nfo
06-10-02 15:28 312,128 msdelta.dll
06-10-02 10:51 8,775 jupdate-1.5.0_08-b03.log
06-09-28 20:13 95,344 WUDFCoinstaller.dll
06-09-28 18:56 146,432 WudfHost.exe
06-09-28 18:56 316,416 WUDFx.dll
06-09-28 18:56 165,376 WudfPlatform.dll
06-09-28 18:56 55,808 WudfSvc.dll
06-09-28 16:05 237,848 xactengine2_4.dll
06-09-28 16:05 2,414,360 d3dx9_31.dll
06-09-28 16:04 68,888 xinput1_3.dll
06-09-28 16:03 15,128 x3daudio1_1.dll
06-09-25 17:58 14,640 spmsg.dll
06-09-25 17:58 23,856 spupdsvc.exe
06-09-23 12:12 474,624 shlwapi.dll
06-09-23 12:12 82,428 IE7Eula.rtf
06-09-23 12:12 1,022,976 browseui.dll
06-09-14 09:39 152,064 cdfview.dll
06-09-14 09:39 1,056,256 danim.dll
06-09-13 06:02 1,084,416 msxml3.dll
06-09-05 23:01 2,451,824 ieapfltr.dat

Datentr„ger in Laufwerk C: ist HDD
Volumeseriennummer: BCC7-C0D2

Verzeichnis von C:\DOKUME~1\Savas\LOKALE~1\Temp

06-12-05 18:09 110,481 bt2733.bat
06-12-05 18:05 342 jusched.log
06-12-05 18:03 512 ~DFCE5C.tmp
06-12-05 18:03 475,136 ~DFCE08.tmp
06-12-05 18:03 512 ~DFBBDA.tmp
06-12-05 18:03 475,136 ~DFBBCC.tmp
06-12-05 18:01 224 WCESCOMM.LOG
06-12-04 23:24 640 WcesView.log
06-12-04 23:10 117,496 dktfh9bg.rar
06-12-04 22:47 416 java_install_reg.log
06-12-04 22:43 65,536 drm_dialogs.dll
06-12-04 22:43 13,592 temp.ani
12 Datei(en) 1,260,023 Bytes
0 Verzeichnis(se), 169,615,413,248 Bytes frei






Datentr„ger in Laufwerk C: ist HDD
Volumeseriennummer: BCC7-C0D2

Verzeichnis von C:\WINDOWS

06-12-05 18:10 2,643,040 ntbtlog.txt
06-12-05 17:59 0 0.log
06-12-05 17:59 159 wiadebug.log
06-12-05 17:59 1,421,260 WindowsUpdate.log
06-12-05 17:59 50 wiaservc.log
06-12-05 17:58 2,048 bootstat.dat
06-12-05 14:44 32,458 SchedLgU.Txt
06-12-04 23:39 576 lexstat.ini
06-12-04 22:56 631,828 setupapi.log
06-12-04 18:58 116 NeroDigital.ini
06-12-04 18:51 98,304 system32CmdLineExt.dll
06-12-04 18:51 461,867 DirectX.log
06-12-03 21:34 101 pdf2html.INI
06-12-03 16:34 54,156 QTFont.qfn
06-12-02 14:50 1,409 QTFont.for
06-12-02 08:40 119,537 spupdsvc.log
06-12-02 08:40 50,288 wmsetup.log
06-12-01 23:16 2,681 wmsetup10.log
06-12-01 23:16 74,865 iis6.log
06-12-01 23:16 156,187 comsetup.log
06-12-01 23:16 25,992 ocmsn.log
06-12-01 23:16 94,680 ntdtcsetup.log
06-12-01 23:16 1,374 imsins.log
06-12-01 23:16 179,284 tsoc.log
06-12-01 23:16 6,792 KB926239.log
06-12-01 23:16 23,484 msgsocm.log
06-12-01 23:16 221,616 ocgen.log
06-12-01 23:16 469,877 FaxSetup.log
06-12-01 23:16 126,214 updspapi.log
06-12-01 23:16 1,374 imsins.BAK
06-12-01 23:16 3,623 MSCompPackV1.log
06-12-01 23:15 54,023 wmp11.log
06-12-01 23:15 953 win.ini
06-12-01 23:15 83,875 WMFDist11.log
06-12-01 23:14 27,460 Wudf01000Inst.log
06-11-30 18:03 926 ODBC.INI
06-11-25 11:47 63,165 KB924496.log
06-11-25 11:47 75,617 ie7_main.log
06-11-25 11:47 162,974 ie7.log
06-11-25 11:45 26,364 IDNMitigationAPIs.log
06-11-25 11:44 25,236 NLSDownlevelMapping.log
06-11-25 11:44 26,822 KB915865.log
06-11-25 11:42 18,212 KB925486.log
06-11-25 11:42 32,867 KB922760.log
06-11-25 11:38 11,757 KB914440.log
06-11-25 11:32 1,230 iereseticons.log
06-11-25 11:29 25,477 ie7Uninst.log
06-11-16 00:05 14,857 KB923980.log
06-11-16 00:05 16,890 KB924270.log
06-11-16 00:04 15,567 KB920213.log
06-11-11 16:48 401 setupact.log
06-11-11 11:23 227 system.ini
06-11-09 19:18 2,751 KB893803v2.log
06-11-02 18:29 1,436 langorig.ini
06-10-18 14:59 0 WRKLOCK.INI
06-10-14 00:33 14,071 KB924191.log
06-10-14 00:33 14,476 KB922819.log
06-10-14 00:32 13,051 KB923414.log
06-10-14 00:31 10,585 KB923191.log
06-10-12 17:47 60 wininit.ini
06-10-10 09:48 8,680 fsiuupd.log
06-10-10 09:48 0 fsiugeneric.log
06-10-09 21:37 32 tdlp32.ini
06-10-03 18:34 278 cdplayer.ini
06-10-03 16:45 73,216 cadkasdeinst01.exe
06-10-01 00:03 106 ULEAD32.INI
06-09-25 21:32 11,346 DPINST.LOG
06-09-25 08:28 30 Iedit.INI
06-09-17 20:42 6,537 mgxoschk.ini
06-09-17 20:01 66 bodycap.ini
06-09-17 19:01 72 wb.ini
06-09-14 18:01 5,564 mozver.dat
06-09-12 20:00 737,280 iun6002.exe
06-09-12 19:59 25,314 ie7beta3Uninst.log
06-09-12 18:55 12,723 KB920685.log
06-09-12 18:55 15,564 KB920872.log
06-09-12 18:54 12,292 KB919007.log
06-09-12 18:54 9,787 KB922582.log
06-09-11 21:18 84 StyleBuilder.INI
06-09-03 09:11 345 OEWABLog.txt


Datentr„ger in Laufwerk C: ist HDD
Volumeseriennummer: BCC7-C0D2

Verzeichnis von C:\WINDOWS\Temp

06-12-05 18:00 409 WGANotify.settings
06-12-05 18:00 43 WGAErrLog.txt
2 Datei(en) 452 Bytes
0 Verzeichnis(se), 169,615,659,008 Bytes frei





Datentr„ger in Laufwerk C: ist HDD
Volumeseriennummer: BCC7-C0D2

Verzeichnis von C:\WINDOWS\Downloaded Program Files

06-03-27 12:00 5,019 swflash.inf
05-08-13 23:26 113,664 MsnMessengerSetupDownloader.ocx
05-06-30 14:19 227 MsnMessengerSetupDownloader.inf
05-05-26 03:19 293 muweb.inf
04-10-15 06:53 110,592 PURde-xx.dll
04-10-08 15:13 587 MSNPupld.inf
04-10-08 15:01 372,736 MsnPUpld.dll
04-09-22 14:59 110,592 PURen-us.dll
04-08-11 19:04 65 desktop.ini
04-06-01 13:41 853 yinst.inf
04-06-01 13:36 141,312 yinsthelper.dll
02-07-25 17:13 24,576 dwusplay.dll
02-07-25 17:13 196,608 dwusplay.exe
02-07-25 17:05 172,032 isusweb.dll
14 Datei(en) 1,249,156 Bytes
0 Verzeichnis(se), 169,615,654,912 Bytes frei



Datentr„ger in Laufwerk C: ist HDD
Volumeseriennummer: BCC7-C0D2

Verzeichnis von C:\

06-12-05 18:14 0 sys.txt
06-12-05 18:14 942 down.txt
06-12-05 18:13 321 tmp.txt
06-12-05 18:13 14,174 system.txt
06-12-05 18:12 810 systemtemp.txt
06-12-05 18:12 105,772 system32.txt
06-12-05 17:58 2,146,881,536 hiberfil.sys
06-12-05 17:58 2,146,811,904 pagefile.sys
06-12-04 22:06 23,784 ComboFix.txt
06-12-04 21:11 25,332 ComboFix2.txt
06-12-02 12:25 1,905 crashAddress.txt
06-11-11 11:23 493 BOOT.INI
06-09-11 21:30 493 BOOT.BKK
06-08-14 20:30 110 timesheet_20060814.csv
06-06-19 21:24 80 FilterLog.log
06-05-06 21:14 0 DBS.TXT
06-03-07 20:21 1,174 SAUDIT.TXT
06-03-07 20:13 166 WINBOM.000
06-03-07 19:57 820 IPH.PH
06-03-07 19:56 0 IO.SYS
06-03-07 19:56 0 MSDOS.SYS
06-03-07 19:54 210 BOOT.BAK
04-08-04 14:00 262,448 cmldr
04-08-04 14:00 4,952 bootfont.bin
04-08-04 14:00 47,564 NTDETECT.COM
04-08-04 14:00 251,184 NTLDR
26 Datei(en) 4,294,436,174 Bytes
0 Verzeichnis(se), 169,615,650,816 Bytes frei




DANKE FÜR DIE AUFMERKSAMKEIT
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
Seite(n): 1