Werbung oeffnet sich immer wieder.

#1 Hallo,

Seit ein paar Tagen öffnen sich immer wieder einfach so werbe Seiten von System Doctor und WinAntiVirus Pro 2006, die mir empfehlen die und die Anti Viren software herunter zu laden, hab im Forum schon andere solche Probleme gesehen blicke aber nicht ganz durch was ich machen soll. Wenn mir jemand das mal erklaeren koennte waere ich sehr dankbar.

MfG Dennis G.

#2 Arbeite bitte Punkt 1-3 ab und poste die Ergebnisse von 2 und 3 http://board.protecus.de/t23188.htm
__________
MfG Ralf
SEO-Spam Hunter

#3 Punkt 2:
"pz" - 2007-05-26 20:58:16 Service Pack 2
ComboFix 07-05.26.3.V - Running from: "C:\Dokumente und Einstellungen\pz\Desktop\"


(((((((((((((((((((((((((((((((((((((((((((((((((( V Log )))))))))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\jkkjh.dll
C:\WINDOWS\system32\jkkjj.dll
C:\WINDOWS\system32\qatbfjta.dll
C:\WINDOWS\system32\abadd.bak1
C:\WINDOWS\system32\abadd.bak2
C:\WINDOWS\system32\abadd.ini
C:\WINDOWS\system32\atjfbtaq.ini
C:\WINDOWS\system32\abadd.bak1
C:\WINDOWS\system32\abadd.bak2
C:\WINDOWS\system32\abadd.ini
C:\WINDOWS\system32\ddaba.dll
C:\WINDOWS\system32\ljjkihg.dll


* * * POST RUN FILES/FOLDERS * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *



(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


"C:\DOKUME~1\pz\Desktop\internet.lnk"


((((((((((((((((((((((((((((((( Files Created from 2007-04-26 to 2007-05-26 ))))))))))))))))))))))))))))))))))


2007-05-26 20:13 50,745 --a------ C:\WINDOWS\system32\jblkkspm.dll
2007-05-26 19:17 <DIR> d-------- C:\VundoFix Backups
2007-05-25 22:35 <DIR> d-------- C:\Dokumente und Einstellungen\pz\DoctorWeb
2007-05-25 22:35 <DIR> d-------- C:\DOKUME~1\pz\DoctorWeb
2007-05-25 22:20 <DIR> d-------- C:\Programme\VirusTotalUploader
2007-05-25 21:22 <DIR> d-------- C:\DOKUME~1\pz\ANWEND~1\Lavasoft
2007-05-25 21:21 <DIR> d-------- C:\Programme\Lavasoft
2007-05-24 14:49 725,044 --ahs---- C:\WINDOWS\system32\awtqn.dll
2007-05-21 17:03 46,592 -ra------ C:\WINDOWS\system32\drivers\tshd4_kern_i386.sys
2007-05-21 17:03 44,416 -ra------ C:\WINDOWS\system32\drivers\Surroundhp_kern_i386.sys
2007-05-21 17:03 38,400 -ra------ C:\WINDOWS\system32\drivers\SRS_SSCFilter_i386.sys
2007-05-21 17:03 37,248 -ra------ C:\WINDOWS\system32\drivers\csiidecoder_kern_i386.sys
2007-05-21 17:03 32,000 -ra------ C:\WINDOWS\system32\drivers\wowhd_kern_i386.sys
2007-05-21 17:03 <DIR> d-------- C:\DOKUME~1\ALLUSE~1\ANWEND~1\SRS Labs
2007-05-21 16:55 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Blizzard Entertainment
2007-05-15 20:05 <DIR> d-------- C:\DOKUME~1\pz\ANWEND~1\IGN_DLM
2007-05-15 19:18 487,479 --a------ C:\WINDOWS\system32\SkinMagic.dll
2007-05-14 17:45 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2007-05-14 16:53 552 --a------ C:\WINDOWS\system32\d3d8caps.dat
2007-05-14 14:58 <DIR> d-------- C:\DOKUME~1\ALLUSE~1\ANWEND~1\Office Genuine Advantage
2007-05-14 14:35 <DIR> d-------- C:\Programme\QuickTime
2007-05-12 20:53 671 --a------ C:\WINDOWS\eReg.dat
2007-05-09 20:07 <DIR> d-------- C:\DOKUME~1\pz\ANWEND~1\Fraunhofer
2007-05-08 16:07 <DIR> d-------- C:\DOKUME~1\pz\ANWEND~1\teamspeak2
2007-05-05 17:42 <DIR> d-------- C:\Programme\Microsoft Works
2007-05-05 17:41 <DIR> d-------- C:\Programme\Microsoft.NET
2007-05-05 17:39 <DIR> d-------- C:\WINDOWS\SHELLNEW
2007-05-05 17:38 <DIR> d-------- C:\DOKUME~1\ALLUSE~1\ANWEND~1\Microsoft Help
2007-05-05 17:37 <DIR> dr-h----- C:\MSOCache
2007-05-05 11:59 <DIR> d-------- C:\ATI
2007-05-04 14:44 <DIR> d-------- C:\DOKUME~1\pz\ANWEND~1\SecondLife
2007-05-03 20:19 427,864 --a------ C:\WINDOWS\system32\XceedZip.dll
2007-05-03 20:19 <DIR> d-------- C:\Programme\Driver-Soft
2007-05-02 21:00 <DIR> d-------- C:\DOKUME~1\pz\ANWEND~1\Roxio
2007-05-02 20:58 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Napster Shared
2007-05-02 20:57 <DIR> d-------- C:\DOKUME~1\ALLUSE~1\ANWEND~1\Napster
2007-04-30 20:39 <DIR> d-------- C:\Programme\MSXML 6.0
2007-04-30 20:36 77,824 --a------ C:\WINDOWS\system32\DriveInfo.dll
2007-04-30 20:36 32,768 --a------ C:\WINDOWS\system32\chipxum.dll
2007-04-30 20:36 <DIR> d-------- C:\Programme\CHIP System-Check-Tool
2007-04-29 16:13 <DIR> d-------- C:\ProgramData
2007-04-29 12:36 <DIR> d-------- C:\Programme\Electronic Arts
2007-04-29 09:00 <DIR> d-------- C:\DOKUME~1\pz\ANWEND~1\Ahead
2007-04-29 08:47 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Ahead
2007-04-29 08:44 <DIR> d-------- C:\Programme\Gemeinsame Dateien\LightScribe
2007-04-28 22:56 <DIR> d-------- C:\DOKUME~1\ALLUSE~1\ANWEND~1\Google
2007-04-28 13:09 49,152 --a------ C:\WINDOWS\system32\ChCfg.exe
2007-04-28 13:08 315,392 --a------ C:\WINDOWS\alcupd.exe
2007-04-28 13:08 217,088 --a------ C:\WINDOWS\Alcrmv.exe
2007-04-28 13:08 147,456 --a------ C:\WINDOWS\system32\RtlCPAPI.dll
2007-04-28 13:08 <DIR> d-------- C:\Programme\Realtek AC97
2007-04-28 12:30 74,752 --a------ C:\WINDOWS\ST6UNST.EXE
2007-04-28 12:30 290,816 --a------ C:\WINDOWS\Setup1.exe
2007-04-28 11:41 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Borland Shared
2007-04-28 11:36 <DIR> d-------- C:\Programme\Microsoft SQL Server
2007-04-28 10:11 33,340 --------- C:\WINDOWS\system32\dbmsqlgc.dll
2007-04-28 10:11 24,576 --------- C:\WINDOWS\system32\dbmsgnet.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-05-26 18:57:43 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Xfire
2007-05-25 19:21:08 -------- d-----w C:\Programme\Gemeinsame Dateien\Wise Installation Wizard
2007-05-22 14:31:01 12,464 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-05-15 18:59:06 -------- d--h--w C:\Programme\InstallShield Installation Information
2007-05-14 14:57:58 -------- d-----w C:\Programme\Gemeinsame Dateien\Kaspersky Lab
2007-05-14 12:33:41 -------- d-----w C:\Programme\Apple Software Update
2007-05-09 11:54:20 93,714 ----a-w C:\WINDOWS\system32\perfc007.dat
2007-05-09 11:54:20 478,922 ----a-w C:\WINDOWS\system32\perfh007.dat
2007-05-05 11:18:53 -------- d-----w C:\Programme\ATI Technologies
2007-05-04 10:29:57 22,584 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2007-05-04 10:29:23 99,904 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
2007-05-03 11:21:51 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Screenshot Sender
2007-05-01 14:21:14 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\SpamTest
2007-04-30 18:50:51 -------- d-----w C:\Programme\ATI Multimedia
2007-04-30 18:50:51 -------- d-----w C:\Programme\9-14_mmc_uci
2007-04-29 08:08:23 -------- d-----w C:\Programme\Google
2007-04-28 10:34:08 -------- d-----w C:\Programme\SCM PC Card
2007-04-26 14:47:25 400 ----a-w C:\DOKUME~1\pz\ANWEND~1\wklnhst.dat
2007-04-25 16:11:14 63,040 ----a-w C:\WINDOWS\system32\PnkBstrA.exe
2007-04-24 11:48:11 -------- d-----w C:\Programme\Gemeinsame Dateien\ATI
2007-04-24 10:56:12 1,080 ----a-w C:\WINDOWS\AUTOLNCH.REG
2007-04-23 18:50:12 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\CyberLink
2007-04-23 14:15:47 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\ATI MMC
2007-04-23 05:43:19 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\MediaLife
2007-04-23 05:41:18 -------- d-----w C:\Programme\CyberLink
2007-04-19 13:37:56 -------- d-----w C:\Programme\9-16_mmc_enu
2007-04-19 13:30:48 -------- d-----w C:\Programme\Gemeinsame Dateien\ATI Technologies
2007-04-19 13:30:20 -------- d-----w C:\Programme\6-12_xcode_38463
2007-04-19 13:28:16 -------- d-----w C:\Programme\atiCDwiz
2007-04-19 13:27:39 -------- d-----w C:\Programme\TitanTV
2007-04-19 13:17:14 -------- d-----w C:\Programme\7-4_xp_dd_ccc_wdm_enu_44981
2007-04-18 16:21:22 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Google
2007-04-18 16:13:24 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-17 12:32:22 -------- d-----w C:\Programme\Windows Journal Viewer
2007-04-13 12:08:24 -------- d-----w C:\Programme\Windows Media Components
2007-04-13 11:58:54 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\ATI
2007-04-13 10:23:55 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\DivX
2007-04-12 22:16:40 0 ----a-w C:\WINDOWS\nsreg.dat
2007-04-12 18:32:14 -------- d-----w C:\Programme\FreePDF_XP
2007-04-12 17:18:50 -------- d-----w C:\Programme\MSXML 4.0
2007-04-12 11:07:55 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Template
2007-04-12 10:37:40 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Image Zone Express
2007-04-12 10:37:31 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\HP
2007-04-11 20:11:45 -------- d-----w C:\Programme\Gemeinsame Dateien\HP
2007-04-11 20:09:07 -------- d-----w C:\Programme\HP
2007-04-11 11:34:26 -------- d-----w C:\Programme\MSN Messenger
2007-04-10 20:08:01 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Logitech
2007-04-10 19:59:33 118,784 ------r C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe
2007-04-10 19:58:42 -------- d-----w C:\Programme\Gemeinsame Dateien\Logitech
2007-04-10 19:52:57 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Help
2007-04-10 19:43:33 -------- d-----w C:\Programme\msaccrt
2007-04-10 19:35:56 -------- d-----w C:\Programme\Gemeinsame Dateien\CyberLink
2007-04-10 19:32:39 -------- d-----w C:\Programme\Gemeinsame Dateien\InstallShield
2007-04-10 19:23:29 79,758 ----a-w C:\WINDOWS\hpfins05.dat
2007-04-10 00:07:50 -------- d-----w C:\Programme\Windows Desktop Search
2007-04-09 23:29:45 -------- d-----w C:\Programme\MSBuild
2007-04-09 23:25:51 -------- d-----w C:\Programme\Reference Assemblies
2007-04-09 23:00:50 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\IE7pro
2007-04-09 22:44:59 -------- d-----w C:\Programme\Windows Media Connect 2
2007-04-09 22:36:48 -------- d-----w C:\Programme\Windows Live Toolbar
2007-04-09 22:04:02 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Windows Desktop Search
2007-04-09 22:03:17 -------- d-----w C:\DOKUME~1\pz\ANWEND~1\Apple Computer
2007-04-09 22:03:12 -------- d-----w C:\Programme\iPod
2007-04-09 22:00:14 -------- d-----w C:\Programme\DivX
2007-04-09 18:02:28 -------- d-----w C:\Programme\ASUS
2007-04-09 17:56:59 -------- d-----w C:\Programme\CONEXANT
2007-03-27 07:55:57 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
2007-03-27 07:55:48 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2007-03-27 07:55:32 2,560 ------w C:\WINDOWS\system32\drivers\cdralw2k.sys
2007-03-27 07:55:32 2,432 ------w C:\WINDOWS\system32\drivers\cdr4_xp.sys
2007-03-27 07:55:31 36,624 ------w C:\WINDOWS\system32\drivers\PxHelp20.sys
2007-03-27 07:55:31 129,784 ------w C:\WINDOWS\system32\pxafs.dll
2007-03-27 07:55:31 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
2007-03-27 07:55:31 116,472 ------w C:\WINDOWS\system32\pxcpyi64.exe
2007-03-27 07:55:23 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
2007-03-27 07:55:23 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
2007-03-27 07:49:07 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll
2007-03-27 07:49:07 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
2007-03-27 07:49:05 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
2007-03-27 07:49:03 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
2007-03-27 07:49:02 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
2007-03-27 07:49:02 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
2007-03-27 07:49:02 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
2007-03-27 07:49:02 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
2007-03-27 07:48:59 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
2007-03-27 07:48:58 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
2007-03-27 07:48:58 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
2007-03-27 07:48:58 639,066 ----a-w C:\WINDOWS\system32\DivX.dll
2007-03-23 04:07:56 1,683,280 ------w C:\WINDOWS\system32\XpsSvcs.dll
2007-03-23 04:07:54 583,504 ------w C:\WINDOWS\system32\XPSSHHDR.dll
2007-03-22 19:05:00 520,192 ----a-w C:\WINDOWS\system32\ati2sgag.exe
2007-03-22 18:25:02 124,928 ------w C:\WINDOWS\system32\prntvpt.dll
2007-03-17 13:44:25 293,376 ----a-w C:\WINDOWS\system32\winsrv.dll
2007-03-15 01:58:38 315,392 ----a-w C:\WINDOWS\system32\ATIDEMGX.dll
2007-03-15 01:57:34 267,776 ----a-w C:\WINDOWS\system32\ati2dvag.dll
2007-03-15 01:55:38 307,200 ----a-w C:\WINDOWS\system32\atiiiexx.dll
2007-03-15 01:50:39 122,880 ----a-w C:\WINDOWS\system32\atipdlxx.dll
2007-03-15 01:50:27 114,688 ----a-w C:\WINDOWS\system32\Oemdspif.dll
2007-03-15 01:50:19 26,112 ----a-w C:\WINDOWS\system32\Ati2mdxx.exe
2007-03-15 01:50:12 42,496 ----a-w C:\WINDOWS\system32\ati2edxx.dll
2007-03-15 01:49:59 114,688 ----a-w C:\WINDOWS\system32\ati2evxx.dll
2007-03-15 01:48:39 450,560 ----a-w C:\WINDOWS\system32\ati2evxx.exe
2007-03-15 01:47:52 53,248 ----a-w C:\WINDOWS\system32\ATIDDC.DLL
2007-03-15 01:40:10 2,820,544 ----a-w C:\WINDOWS\system32\ati3duag.dll
2007-03-15 01:29:47 1,315,712 ----a-w C:\WINDOWS\system32\ativvaxx.dll
2007-03-15 01:29:32 3,107,788 ----a-w C:\WINDOWS\system32\ativvaxx.dat
2007-03-15 01:19:32 5,402,624 ----a-w C:\WINDOWS\system32\atioglxx.dll
2007-03-15 01:16:14 258,048 ----a-w C:\WINDOWS\system32\atikvmag.dll
2007-03-15 01:14:43 17,408 ----a-w C:\WINDOWS\system32\atitvo32.dll
2007-03-15 01:10:28 356,352 ----a-w C:\WINDOWS\system32\ati2cqag.dll
2007-03-08 15:36:30 579,072 ----a-w C:\WINDOWS\system32\user32.dll
2007-03-08 15:36:30 40,960 ----a-w C:\WINDOWS\system32\mf3216.dll
2007-03-08 15:36:30 281,600 ----a-w C:\WINDOWS\system32\gdi32.dll
2007-03-08 15:32:24 1,843,712 ----a-w C:\WINDOWS\system32\win32k.sys
2007-03-06 22:04:53 143,676 ----a-w C:\WINDOWS\system32\atiicdxx.dat


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{00011268-E188-40DF-A514-835FCD78B1BF}=F:\Programme\IE7pro\IE7pro.dll [2007-02-14 17:04]
{00C6482D-C502-44C8-8409-FCE54AD9C208}=F:\Programme\TechSmith\SnagIt 7\SnagItBHO.dll [2005-10-14 08:25]
{2F85D76C-0569-466F-A488-493E6BD0E955}=C:\Programme\Windows Desktop Search\dsWebAllow.dll [2006-11-21 15:53]
{4B646AFB-9341-4330-8FD1-C32485AEE619}=C:\WINDOWS\system32\jblkkspm.dll [2007-05-26 20:13]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Programme\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43]
{9030D464-4C02-4ABF-8ECC-5164760863C6}=C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-07-07 13:29]
{AA58ED58-01DD-4d91-8333-CF10577473F7}=c:\programme\google\googletoolbar2.dll [2007-04-29 09:42]
{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}=C:\Programme\Windows Live Toolbar\msntb.dll [2006-10-10 23:26]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CARPService"="carpserv.exe" [2003-03-19 01:13 C:\WINDOWS\system32\carpserv.exe]
"OESpamTest"="F:\PROGRA~1\KASPER~1\KASPER~3\OESpamTest.ExE" [2006-05-25 14:06]
"ATIPTA"="C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-03-22 21:10]
"HydraVisionDesktopManager"="C:\Programme\ATI Technologies\ATI HYDRAVISION\HydraDM.exe" [2003-09-15 21:00]
"SoundMan"="SOUNDMAN.EXE" []
"NWEReboot"="" []
"QuickTime Task"="C:\Programme\QuickTime\qttask.exe" [2007-04-27 09:41]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 14:00]
"LDM"="F:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2007-04-10 21:59]
"StartCCC"="C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 13:35]
"@"="" []
"ATI Launchpad"="" []
"ATI DeviceDetect"="C:\Programme\ATI Multimedia\main\ATIDtct.EXE" [2006-10-31 22:24]
"ATI Remote Control"="C:\Programme\ATI Multimedia\RemCtrl\ATIRW.exe" [2004-04-16 06:43]
"swg"="C:\Programme\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-04-29 09:42]
"igndlm.exe"="F:\Programme\Download Manager\DLM.exe" [2007-03-05 23:57]
"Steam"="" []
"SRS Audio Sandbox"="F:\Programme\SRS Labs\Audio Sandbox\SRSSSC.exe" [2007-03-16 15:22]
"WMPNSCFG"="C:\Programme\Windows Media Player\WMPNSCFG.exe" [2006-10-24 21:05]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"="C:\Programme\Windows Desktop Search\MSNLNamespaceMgr.dll" [2006-11-21 15:50]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"EA Core"="C:\Programme\Electronic Arts\EA Link\Core.exe" -silent
"Steam"=

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"FreePDF Assistant"=C:\Programme\FreePDF_XP\fpassist.exe
"HP Software Update"=F:\Programme\HP\HP Software Update\HPWuSchd2.exe
"iTunesHelper"="F:\Programme\itunes\iTunesHelper.exe"
"MediaLifeService"="F:\Programme\Logitech\MediaLife\MediaLifeService.exe"
"NeroFilterCheck"=C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe
"Norton"=C:\Programme\ASUS\WLAN Card Utilities\NorExec.exe
"QuickTime Task"="C:\Programme\QuickTime\qttask.exe" -atboottime
"Control Center"=C:\Programme\ASUS\WLAN Card Utilities\Center.exe
"NapsterShell"=F:\Programme\Napster\napster.exe /systray
"SunJavaUpdateSched"="C:\Programme\Java\jre1.6.0_01\bin\jusched.exe"


Contents of the 'Scheduled Tasks' folder
2007-05-21 12:33:00 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
2007-05-26 18:59:09 C:\WINDOWS\tasks\Auf Updates für Windows Live Toolbar prüfen.job
2007-05-26 17:22:31 C:\WINDOWS\tasks\User_Feed_Synchronization-{92471295-E3C2-47D8-BB9B-5C8AE2FA6080}.job

********************************************************************

catchme 0.3.681 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-05-26 21:16:08
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

C:\WINDOWS\PhotoSnapViewer.INI:KAVICHS 196 bytes hidden from API
C:\WINDOWS\Präriewind.bmp:KAVICHS 68 bytes hidden from API
C:\WINDOWS\QTFont.for:KAVICHS 68 bytes hidden from API
C:\WINDOWS\QTFont.qfn:KAVICHS 100 bytes hidden from API
C:\WINDOWS\regedit.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\Rhododendron.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Santa Fe-Stuck.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system.ini:KAVICHS 228 bytes hidden from API
C:\WINDOWS\TASKMAN.EXE:KAVICHS 68 bytes hidden from API
C:\WINDOWS\TORG.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\tsoc.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\twain.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\twain_32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\twunk_16.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\twunk_32.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\uninst.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroBackItUp.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroBackItUp.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroMediaHome.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroMediaHome.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroShowTime.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroShowTime.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroVision.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\hh.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\hpfins05.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\hpfmdl05.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\hppsapp.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\HP_RedboxHprblog_HPSU.ini:KAVICHS 68 bytes hidden from API
C:\WINDOWS\iis6.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\imsins.BAK:KAVICHS 36 bytes hidden from API
C:\WINDOWS\imsins.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\DirectX.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\eReg.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\explorer.exe:KAVICHS 132 bytes hidden from API
C:\WINDOWS\explorer.scf:KAVICHS 36 bytes hidden from API
C:\WINDOWS\FaxSetup.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Feder.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Fächer.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Granit.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\gswin32.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\HBCIKRNL.INI:KAVICHS 68 bytes hidden from API
C:\WINDOWS\msdfmap.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\msgsocm.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\NeroDigital.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\NOTEPAD.EXE:KAVICHS 68 bytes hidden from API
C:\WINDOWS\nscstiu_error.txt:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ntdtcsetup.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ocgen.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ocmsn.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ODBC.INI:KAVICHS 68 bytes hidden from API
C:\WINDOWS\ODBCINST.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\OEWABLog.txt:KAVICHS 36 bytes hidden from API
C:\WINDOWS\SchedLgU.Txt:KAVICHS 68 bytes hidden from API
C:\WINDOWS\UNNeroVision.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Seifenblase.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Setup1.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\setupact.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\setupapi.log:KAVICHS 100 bytes hidden from API
C:\WINDOWS\setuplog.txt:KAVICHS 36 bytes hidden from API
C:\WINDOWS\soundman.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\ST6UNST.EXE:KAVICHS 68 bytes hidden from API
C:\WINDOWS\wiaservc.log:KAVICHS 132 bytes hidden from API
C:\WINDOWS\win.ini:KAVICHS 228 bytes hidden from API
C:\WINDOWS\WindowsUpdate.log:KAVICHS 228 bytes hidden from API
C:\WINDOWS\winhelp.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\winhlp32.exe:KAVICHS 100 bytes hidden from API
C:\WINDOWS\WININIT.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\winnt.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\winnt256.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\wmprfDEU.prx:KAVICHS 100 bytes hidden from API
C:\WINDOWS\wmsetup.log:KAVICHS 228 bytes hidden from API
C:\WINDOWS\WMSysPr9.prx:KAVICHS 68 bytes hidden from API
C:\WINDOWS\Zapotek.bmp:KAVICHS 68 bytes hidden from API
C:\WINDOWS\_default.pif:KAVICHS 68 bytes hidden from API
C:\WINDOWS\KB927891.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\KB930916.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\KB931768-IE7.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Alcrmv.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\alcupd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Angler.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ATIWDM.LOG:KAVICHS 36 bytes hidden from API
C:\WINDOWS\AUTOLNCH.REG:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Blaue Spitzen 16.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\bootstat.dat:KAVICHS 228 bytes hidden from API
C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\clock.avi:KAVICHS 36 bytes hidden from API
C:\WINDOWS\comsetup.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\IsUn0407.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\IsUninst.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Kaffeetasse.bmp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNRecode.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNRecode.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\updspapi.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\vb.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\vbaddin.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\vmmreg32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dmusic.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\lzexpand.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rcimlby.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\$winnt$.inf:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\12520437.cpx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\12520850.cpx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\6to4svc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\aaaamon.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\aaclient.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\abadd.tmp:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\abadd.tmp2:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\access.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\acctres.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\accwiz.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\acelpdec.ax:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\acledit.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\icwdial.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\icwphbk.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ideograf.uce:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\idndl.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\idq.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ie4uinit.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\IE7Eula.rtf:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ieakeng.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ieaksie.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ieakui.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ieapfltr.dat:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ieapfltr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\iedkcs32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ieencode.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ieframe.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\ieframe.dll.mui:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\iepeers.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\iernonce.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\iertutil.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\apphelp.dll:KAVICHS 164 bytes hidden from API
C:\WINDOWS\system32\appwiz.cpl:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\arp.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\asctrls.ocx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\asferror.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\asfsipc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ASNDIS3.vxd:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ASNDIS5.sys:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ASUSW32N50.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\asycfilt.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_10006.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_10007.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_10010.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_10017.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_10029.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_10079.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_10081.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_10082.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_1026.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_1250.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_1251.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_1252.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_1253.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_1254.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_1255.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_1256.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_1257.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_1258.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_20127.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_20261.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_20866.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_20905.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_21866.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28591.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_28592.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_28593.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\C_28594.NLS:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\C_28595.NLS:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\C_28597.NLS:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28598.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28599.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28603.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\charmap.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ChCfg.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\chcp.com:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\chipxum.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\chkdsk.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\chkntfs.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ciadmin.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ciadv.msc:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cic.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cidaemon.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ciodm.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\cisvc.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ckcnv.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\clb.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\clbcatex.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\clbcatq.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\cleanmgr.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\cliconf.chm:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cliconfg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cliconfg.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cliconfg.rll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ClientCpl.cpl:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\clipbrd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_437.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_500.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_737.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_775.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_850.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_852.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_855.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_857.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_860.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_861.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_863.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_865.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_866.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_869.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_874.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_875.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_932.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_936.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_949.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_950.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\d3d8.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\d3d8caps.dat:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\d3d8thk.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\aclui.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\append.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\at.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\atiiiexx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\atmadm.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\avifile.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\btpanui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Channels anzeigen.scf:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\clipsrv.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\comm.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\crtdll.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_10000.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_28605.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\d3d9.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ddeml.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dfsshlex.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\diskpart.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ddeshare.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ddraw.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\ddrawex.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\debug.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\declrds.ax:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\defrag.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\desk.cpl:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\deskadp.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\deskmon.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\deskperf.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\devenum.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\devmgmt.msc:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\devmgr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dfrg.msc:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dfrgfat.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dfrgntfs.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dfrgres.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\dfrgsnap.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dfrgui.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dfshim.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dllhost.exe:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\dllhst3g.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dmadmin.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmband.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmcompos.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmconfig.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dmdlgs.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmdskmgr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmdskres.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\dmime.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmintf.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmloader.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmocx.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmremote.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dmscript.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmserver.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dmstyle.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dmsynth.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dsm_de.qm:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dsound.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\dsound.vxd:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dsound3d.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dsprop.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dsprpres.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dsquery.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dssec.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dssec.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dssenh.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dsuiext.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dswave.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dtu100.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dtu_de.qm:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dumprep.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\duser.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\dvdplay.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dvdupgrd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\findstr.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\finger.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\firewall.cpl:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\fixmapi.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fldrclnr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fltlib.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\fltmc.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\FM20.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20DEU.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20ENU.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fmifs.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\FNTCACHE.DAT:KAVICHS 228 bytes hidden from API
C:\WINDOWS\system32\fontext.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fontsub.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\fontview.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\forcedos.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\format.com:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\framebuf.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\freecell.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\fsmgmt.msc:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fsquirt.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olecli32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\olecnv32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\oledlg.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\oleprn.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olepro32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\olesvr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olesvr32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\olethk32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\opengl32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\osk.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\osuninst.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\osuninst.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\p2p.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\p2pgasvc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\p2pgraph.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\p2pnetsh.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\p2psvc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\packager.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\panmap.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\paqsp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ir41_32.ax:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ir41_qc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ir41_qcx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ir50_32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ir50_qc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ir50_qcx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\irclass.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\irprops.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\isign32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\isrdbg32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\itircl.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\itss.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\iuengine.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ivfsrc.ax:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ixsso.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\iyuv_32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\Iyvu9_32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\java.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\javacpl.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\javaw.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\javaws.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jblkkspm.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\jet500.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\JETCOMP.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgaw400.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgdw400.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\kbdfr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdgae.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdgr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\kbdgr1.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdic.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdinbe1.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdinben.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdinmal.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdir.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdit.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdit142.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdla.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdmac.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdmaori.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdmlt47.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdusl.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdusr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdusx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kd1394.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kdcom.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\kerberos.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\kernel32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\key01.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\keyboard.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\keyboard.sys:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\keymgr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kmddsp.tsp:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\korean.uce:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\krnl386.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\l_except.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\l_intl.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\magnify.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mag_hook.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\main.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\makecab.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mapi32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\mapistub.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mcastmib.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mcd32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mcdsrv32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mchgrcoi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciavi.drv:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciavi32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mcicda.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mciole16.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciole32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciqtz32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mciseq.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciseq.drv:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciwave.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciwave.drv:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mdaccore.rsp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mdhcp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mdminst.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mdwmdmsp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MediaLogic.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mem.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mf3216.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mfc40.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mfc40u.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mfc42.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\mfc42loc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mfc42u.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\MFC71.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\MFC71CHS.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71CHT.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71DEU.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71ENU.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71ESP.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71FRA.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71ITA.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71JPN.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71KOR.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MFC71u.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\Mfcans32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mfcsubs.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\MFPLAT.dll:KAVICHS 164 bytes hidden from API
C:\WINDOWS\system32\mgmtapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mib.bin:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\midimap.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\miglibnt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\migpwd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\milcore.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mimefilt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mlang.dat:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mlang.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\mll_hp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mll_mtf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mll_qic.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mmc.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mmcbase.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\mmcndmgr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mprui.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mrinfo.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MRT.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msaatext.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msacm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msacm32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\msacm32.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msadds32.ax:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msadp32.acm:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msafd.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msapsspc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msasn1.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\msaud32.acm:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msaudite.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mscat32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\mscdexnt.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\MSCMCDE.DLL:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mscms.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\MSCOMCT2.OCX:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\MSCOMCTL.OCX:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msconf.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mscoree.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mscorier.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mscories.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mscpx32r.dLL:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mscpxl32.dLL:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msswchx.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mstask.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mstext35.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mstext40.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mstime.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mstinit.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mstlsapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mstsc.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mstscax.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msutb.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\msv1_0.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msvbvm50.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\MSVBVM60.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msvci70.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msvcirt.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\msvcp50.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msvcp60.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\msvcp70.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\netid.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\netlogon.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\netman.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\netmsg.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\netplwiz.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\netrap.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\netsetup.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\netsetup.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\netsh.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\netshell.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\netstat.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\netui0.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\netui1.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\netui2.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\newdev.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\nlhtml.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\nlsdl.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\nlsfunc.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\nmevtmsg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\nmmkcert.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\noise.chs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\noise.cht:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\noise.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntlanui2.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntlsapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntmarta.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntmsapi.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\ntmsdba.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntmsevt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntmsmgr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntmsmgr.msc:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntmsoprq.msc:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntmssvc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntoskrnl.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntprint.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntsd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntsdexts.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntshrui.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntvdm.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntvdmd.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\nusrmgr.cpl:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\nwprovau.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\perfwci.h:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfwci.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\photometadatahandler.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\photowiz.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\pid.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\pidgen.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\pifmgr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ping.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ping6.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\pintool.exe:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\pjlmon.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\plustab.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\pmspl.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\pngfilt.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\PnkBstrA.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\PnkBstrB.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\pnrpnsp.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\polstore.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\raschap.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rasctrnm.h:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasctrs.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasctrs.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasdial.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasdlg.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\rasman.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rasmans.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rasmontr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasmxs.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasphone.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasppp.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rasrad.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rassapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasser.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rastapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rastls.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rcbdyctl.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\rpcrt4.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\rpcss.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rsaci.rat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsaenh.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rsh.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rshx32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsm.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsmps.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsmsink.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsmui.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvp.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rsvp.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvpcnts.h:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvpmsg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvpperf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvpsp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rtcshare.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rtipxmib.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\RtlCPAPI.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\rtm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rtutils.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\runas.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rundll32.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\runonce.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rwinsta.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\safrcdlg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\safrdm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\safrslv.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\samlib.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\zllictbl.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\_psisdecd.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\sprio600.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sprio800.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\spupdsvc.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\spxcoins.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sqlclnt.rsp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sqlsodbc.chm:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sqlsrv32.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\sqlsrv32.rll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\sqlunirl.dll:KAVICHS 164 bytes hidden from API
C:\WINDOWS\system32\sqlwid.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sqlwoa.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\srclient.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\srrstr.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\srsvc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\srvsvc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ss3dfo.scr:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ssbezier.scr:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ssdpapi.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\ssdpsrv.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ssflwbox.scr:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ssldivx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ssmarque.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ssmypics.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ssmyst.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sspipes.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\system.mdw:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\systray.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\t2embed.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\tapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapi3.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapi32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\tapiperf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapisrv.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\tapiui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\taskman.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\taskmgr.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\tcmsetup.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tcpmib.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tcpmon.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\tcpmon.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tcpmonui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tcpsvcs.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tdc.ocx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tzchange.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\udhisapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ufat.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\UIAutomationCore.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ulib.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\umandlg.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\umdmxfrm.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\umpnpmgr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\unicode.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\unicows.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\unimdm.tsp:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\unimdmat.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\uniplat.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\unlodctr.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\unredmon.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\untfs.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\upnp.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\upnpcont.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\upnphost.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\upnpui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ups.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\w32topl.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\w3ssl.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\W95fiber.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\watchdog.sys:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wavemsp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbcache.deu:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wbcache.enu:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbcache.esn:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbcache.fra:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbcache.ita:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbcache.nld:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbcache.sve:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.deu:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wbdbase.enu:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.esn:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.fra:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.ita:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.nld:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.sve:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wdfapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wdfmgr.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wdigest.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wdl.trm:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wdmaud.drv:KAVICHS 228 bytes hidden from API
C:\WINDOWS\system32\webcheck.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\webclnt.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\webfldrs.msi:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\webhits.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\webvw.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wextract.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\WgaLogon.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\WgaTray.exe:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\wiaacmgr.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wiadefui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wiadss.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wiascr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wiaservc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wiasf.ax:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wiashext.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\wiavideo.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wiavusd.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wifeman.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\win.com:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\win32k.sys:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\win32spl.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\win87em.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\winbrand.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\winchat.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\WindowsCodecs.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\WindowsCodecsExt.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\winfax.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\WinFXDocObj.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\usrv42a.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\usrv80a.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\usrvoica.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\usrvpa.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\utildll.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\utilman.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\uwdf.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\uxtheme.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\v7vga.rom:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\VB6DE.DLL:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\VB6STKIT.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\VBADE32.OLB:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\VBAEN32.OLB:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\VBAEND32.OLB:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vbajet32.dll:KAVICHS 68 bytes hidden from

#4 Ah, da nutzt jemand KAV 5

Poste bitte ein Hijackthis report
__________
MfG Ralf
SEO-Spam Hunter

#5 Logfile of HijackThis v1.99.1
Scan saved at 21:26:07, on 26.05.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\carpserv.exe
F:\PROGRA~1\KASPER~1\KASPER~3\OESpamTest.ExE
C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Programme\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
F:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Programme\ATI Multimedia\main\ATIDtct.EXE
C:\Programme\ATI Multimedia\RemCtrl\ATIRW.exe
C:\Programme\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Programme\Windows Media Player\WMPNSCFG.exe
F:\Programme\Kaspersky Security Suite\Kaspersky Anti-Hacker\KAVPF.exe
F:\Programme\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programme\Gemeinsame Dateien\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\system32\notepad.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Dokumente und Einstellungen\pz\Desktop\HJT\HJT.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR
O2 - BHO: IE7pro - {00011268-E188-40DF-A514-835FCD78B1BF} - F:\Programme\IE7pro\IE7pro.dll
O2 - BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54AD9C208} - F:\Programme\TechSmith\SnagIt 7\SnagItBHO.dll
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Programme\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: (no name) - {4B646AFB-9341-4330-8FD1-C32485AEE619} - C:\WINDOWS\system32\jblkkspm.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - F:\Programme\TechSmith\SnagIt 7\SnagItIEAddin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar2.dll
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [OESpamTest] F:\PROGRA~1\KASPER~1\KASPER~3\OESpamTest.ExE
O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [HydraVisionDesktopManager] C:\Programme\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] F:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [StartCCC] C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [ATI DeviceDetect] C:\Programme\ATI Multimedia\main\ATIDtct.EXE
O4 - HKCU\..\Run: [ATI Remote Control] C:\Programme\ATI Multimedia\RemCtrl\ATIRW.exe
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [igndlm.exe] F:\Programme\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [SRS Audio Sandbox] "F:\Programme\SRS Labs\Audio Sandbox\SRSSSC.exe" /hideme
O4 - HKCU\..\Run: [WMPNSCFG] C:\Programme\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Xfire.lnk = F:\Programme\Xfire\xfire.exe
O4 - Global Startup: Kaspersky Anti-Hacker.lnk = F:\Programme\Kaspersky Security Suite\Kaspersky Anti-Hacker\KAVPF.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = F:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = F:\Programme\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Windows-Desktopsuche.lnk = C:\Programme\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Programme\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: IE7pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - F:\Programme\IE7pro\IE7pro.dll
O9 - Extra 'Tools' menuitem: IE7pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - F:\Programme\IE7pro\IE7pro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Programme\ATI Multimedia\dtv\EXPLBAR.DLL
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gcompany-edg.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: bw+0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {56EA119A-8754-4DB2-8334-F862454004D3} - F:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live Mail desktop\mailcomm.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\GEMEIN~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: Kaspersky Anti-Virus service (kavsvc) - Kaspersky Lab - F:\Programme\Kaspersky Security Suite\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing)

#6 Hake in Hijackthis bitte folgendes an und druecke fix checked:

O2 - BHO: (no name) - {4B646AFB-9341-4330-8FD1-C32485AEE619} - C:\WINDOWS\system32\jblkkspm.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

Danach bitte neu starten und schauen, ob die Eintraege wirklich verschwunden sind.
Schaue, ob deine Probleme nun beseitigt sind.
__________
MfG Ralf
SEO-Spam Hunter

#7 Alos habe sie geloescht und nochmal nachgeschaut ob sie weg sind, sie sind weg. Gut seitdem ich das gemacht habe und eine wenig im netz war , so ca. 5 min hab ich keine werbung mehr bekommen. Ich glaub das Problem ist behoben wenn nicht melde ich mich nochmal. Aber denk es ist weg.
Vielen Dank Raman fuer deine schnelle, kompetente und freundliche hilfe. Werde das Forum auch an Freunde weiter Empfehlen.

MfG Dennis G.

#8 Schoen zu hoeren und ich hoffe das bleibt so Du musst diesen Ordner noch loeschen: C:\Dokumente und Einstellungen\pz\Desktop\HJT
__________
MfG Ralf
SEO-Spam Hunter