Cid Spam-pop Ups

Thema ist geschlossen!
Thema ist geschlossen!
#0
29.05.2007, 08:42
Member

Beiträge: 39
#1 hallo!

ich hab folgendes problem, meine schwester (ich liebe sie ja sooo heiß *sarkastschbin*) hat gemeint sie muss windows messenger live plus installieren mit nem sponsor namens CiD oder so, der dir halt unmengen an pop ups bereitet.

gut, ich hab live messenger wieder entfernt, aber diese CiD fenster tauchen noch immer auch und seitdem rennt mein internet wie ne lahme sau...

vielleicht kann mir wer helfen? weil mit dem virusscan findet er auch nichts hier hab ich mal vom datbat die skripten kopiert, vl. kann wer was damit anfangen und mir weitere anweisungen geben

danke viiiiiiieeeeeeeelmals im voraus

Datentr„ger in Laufwerk C: ist 53_01_33
Volumeseriennummer: B843-8B29

Verzeichnis von C:\WINDOWS\system32

29.05.2007 08:07 1.158 wpa.dbl
14.05.2007 02:10 0 Biport
27.04.2007 22:45 14.970.328 MRT.exe
18.04.2007 18:13 2.854.400 msi.dll
16.04.2007 20:49 4.196 jupdate-1.6.0_01-b06.log
04.04.2007 15:45 237.552 FNTCACHE.DAT
03.04.2007 16:28 383.488 ieapfltr.dll
03.04.2007 06:36 2.453.952 ieapfltr.dat
25.03.2007 10:19 383.034 perfh009.dat
25.03.2007 10:19 54.108 perfc009.dat
25.03.2007 10:19 394.024 perfh007.dat
25.03.2007 10:19 65.324 perfc007.dat
25.03.2007 10:19 907.002 PerfStringBackup.INI
17.03.2007 15:44 293.376 winsrv.dll
14.03.2007 02:04 139.264 javaws.exe
14.03.2007 02:04 69.632 javacpl.cpl
14.03.2007 00:31 135.168 javaw.exe
14.03.2007 00:31 135.168 java.exe
09.03.2007 13:51 270.336 xpsp3res.dll
08.03.2007 17:36 40.960 mf3216.dll
08.03.2007 17:36 281.600 gdi32.dll
08.03.2007 17:36 579.072 user32.dll
08.03.2007 17:32 1.843.712 win32k.sys
07.03.2007 19:40 232.960 webcheck.dll
07.03.2007 19:40 1.150.464 urlmon.dll
07.03.2007 19:40 822.784 wininet.dll
07.03.2007 19:40 670.720 mstime.dll
07.03.2007 19:40 102.400 occache.dll
07.03.2007 19:40 105.984 url.dll
07.03.2007 19:40 193.024 msrating.dll
07.03.2007 19:40 477.696 mshtmled.dll
07.03.2007 19:40 3.581.952 mshtml.dll
07.03.2007 19:40 27.136 jsproxy.dll
07.03.2007 19:40 458.752 msfeeds.dll
07.03.2007 19:40 1.823.744 inetcpl.cpl
07.03.2007 19:40 51.712 msfeedsbs.dll
07.03.2007 19:40 6.054.400 ieframe.dll
07.03.2007 19:40 266.752 iertutil.dll
07.03.2007 19:40 44.544 iernonce.dll
07.03.2007 19:40 384.000 iedkcs32.dll
07.03.2007 19:40 132.608 extmgr.dll
07.03.2007 19:40 153.088 ieakeng.dll
07.03.2007 19:40 230.400 ieaksie.dll
07.03.2007 19:40 124.928 advpack.dll
07.03.2007 10:27 56.832 ie4uinit.exe
28.02.2007 18:02 2.138.624 ntoskrnl.exe
28.02.2007 18:02 2.018.304 ntkrnlpa.exe
27.02.2007 10:20 13.824 ieudinit.exe
21.02.2007 10:00 161.792 ieakui.dll
17.02.2007 09:40 122.142 TZLog.log
16.02.2007 10:54 49.152 QuickTime.qts
16.02.2007 10:54 65.536 QuickTimeVR.qtx
16.02.2007 00:34 9.799 jupdate-1.5.0_11-b03.log
15.02.2007 19:01 337.280 WgaTray.exe
15.02.2007 19:01 1.476.992 LegitCheckControl.dll
15.02.2007 19:00 236.928 WgaLogon.dll
05.02.2007 22:18 185.856 upnphost.dll

Datentr„ger in Laufwerk C: ist 53_01_33
Volumeseriennummer: B843-8B29

Verzeichnis von C:\DOKUME~1\WEIKEN\LOKALE~1\Temp

29.05.2007 08:31 1.442.041 CC20.tmp
29.05.2007 08:11 344.064 ~DF6B9.tmp
29.05.2007 08:11 360.448 ~DFB894.tmp
29.05.2007 08:10 100.117 jusched.log
29.05.2007 08:08 16.384 ~DF9F1.tmp
29.05.2007 08:08 16.384 ~DFBBFF.tmp
29.05.2007 08:06 0 JET6B96.tmp
29.05.2007 00:14 1.430 wmplog00.sqm
26.05.2007 20:06 4.926 5dd5_appcompat.txt
25.05.2007 19:59 4.926 2def_appcompat.txt
25.05.2007 11:07 16.384 ~DFF04E.tmp
24.05.2007 13:46 4.926 be92_appcompat.txt
24.05.2007 01:01 4.926 c734_appcompat.txt
22.05.2007 21:58 4.926 941e_appcompat.txt
22.05.2007 15:57 4.926 bb06_appcompat.txt
22.05.2007 00:27 16.384 ~DFB06D.tmp
22.05.2007 00:24 351.630 image.bmp
22.05.2007 00:13 344.064 ~DF83D0.tmp
22.05.2007 00:13 344.064 ~DFE2BD.tmp
22.05.2007 00:07 16.384 ~DF871E.tmp
22.05.2007 00:07 16.384 ~DFE61F.tmp
22.05.2007 00:04 0 JET5AAF.tmp
21.05.2007 17:11 4.926 1317_appcompat.txt
18.05.2007 12:50 49.058 91b_appcompat.txt
18.05.2007 12:50 4.926 183b_appcompat.txt
18.05.2007 12:50 266.329 jar_cache45010.tmp
18.05.2007 12:50 77.433 jar_cache45009.tmp
18.05.2007 12:49 37.400 java_install_reg.log
17.05.2007 16:49 1.632 ae_appcompat.txt
17.05.2007 13:27 5.726 ICQ45.tmp
17.05.2007 13:27 16.688 ICQ46.tmp
16.05.2007 23:14 16.384 ~DF6CC8.tmp
16.05.2007 23:14 16.384 ~DF3D15.tmp
16.05.2007 19:13 779.864 MsgPlusUninstall.exe
15.05.2007 23:48 370 1F6.tmp
15.05.2007 23:48 220 1F5.tmp
15.05.2007 23:48 564 1F4.tmp
15.05.2007 23:48 375 1F3.tmp
15.05.2007 23:48 561 1F2.tmp
15.05.2007 23:48 607 1F1.tmp
15.05.2007 23:48 591 1F0.tmp
15.05.2007 19:45 16.384 ~DFFDD0.tmp
15.05.2007 11:08 16.384 ~DF5FFD.tmp
15.05.2007 11:07 16.384 ~DF3515.tmp
15.05.2007 01:54 49.058 f10e_appcompat.txt
14.05.2007 23:11 16.384 ~DFEF60.tmp
14.05.2007 23:11 16.384 ~DFBC7B.tmp
12.05.2007 20:13 53.703 imageio14953.tmp
12.05.2007 19:20 16.384 ~DF4DD.tmp
12.05.2007 19:20 16.384 ~DF92C5.tmp
12.05.2007 12:29 16.384 ~DF7B60.tmp
12.05.2007 12:29 16.384 ~DF48D4.tmp
11.05.2007 09:32 16.384 ~DF4A8.tmp
11.05.2007 09:32 16.384 ~DFD5D2.tmp
10.05.2007 12:52 16.384 ~DFB47D.tmp
10.05.2007 12:52 16.384 ~DF74BE.tmp
09.05.2007 23:38 16.384 ~DF543D.tmp
09.05.2007 23:38 16.384 ~DF1D49.tmp
09.05.2007 01:36 49.058 ac25_appcompat.txt
07.05.2007 16:59 0 7rp35.tmp
01.05.2007 16:04 16.384 ~DF3CEF.tmp
01.05.2007 16:04 16.384 ~DF19EC.tmp
01.05.2007 15:38 16.384 ~DFD86A.tmp
01.05.2007 15:38 512 ~DFB369.tmp
01.05.2007 15:38 16.384 ~DFB1C0.tmp
01.05.2007 15:07 512 ~DFD86F.tmp
01.05.2007 15:07 344.064 ~DFD779.tmp
01.05.2007 15:07 512 ~DFA0D1.tmp
01.05.2007 15:07 344.064 ~DF9EC2.tmp
01.05.2007 15:06 16.384 ~DF27B9.tmp
01.05.2007 15:06 512 ~DFD63D.tmp
01.05.2007 15:06 16.384 ~DFCB53.tmp
30.04.2007 12:42 16.384 ~DFFFD.tmp
30.04.2007 12:42 16.384 ~DFF1B2.tmp
27.04.2007 18:05 344.064 ~DF1777.tmp
27.04.2007 18:05 344.064 ~DF4080.tmp
27.04.2007 18:01 16.384 ~DF18C7.tmp
27.04.2007 18:01 16.384 ~DF4CCB.tmp
27.04.2007 17:59 16.384 ~DFC006.tmp
27.04.2007 17:59 512 ~DF903D.tmp
27.04.2007 17:59 16.384 ~DF8ED6.tmp
25.04.2007 13:26 16.384 ~DF5994.tmp
25.04.2007 13:26 16.384 ~DF17B2.tmp
23.04.2007 14:54 16.384 ~DFD71A.tmp
23.04.2007 14:54 16.384 ~DFA244.tmp
23.04.2007 00:32 16.384 ~WRF2223.tmp
22.04.2007 23:49 27.104 jar_cache43184.tmp
22.04.2007 23:35 16.384 ~DF4B42.tmp
22.04.2007 23:35 16.384 ~DFC95.tmp
21.04.2007 23:42 16.384 ~WRF2513.tmp
21.04.2007 23:42 16.384 ~WRF0006.tmp
21.04.2007 23:40 38.912 ~WRS1592.tmp
21.04.2007 22:52 16.384 ~WRF3872.tmp
21.04.2007 19:06 16.384 ~DF2957.tmp
21.04.2007 19:06 16.384 ~DFFEF7.tmp
20.04.2007 22:46 49.058 9809_appcompat.txt
20.04.2007 22:39 16.384 ~DF9BD4.tmp
20.04.2007 22:39 16.384 ~DF7878.tmp
20.04.2007 10:43 16.384 ~DFC059.tmp
20.04.2007 10:43 16.384 ~DF8D38.tmp
20.04.2007 07:53 16.384 ~DF5B.tmp
20.04.2007 07:53 16.384 ~DFD46D.tmp
19.04.2007 20:26 16.384 ~DF367A.tmp
18.04.2007 15:03 16.384 ~DF260B.tmp
18.04.2007 15:03 16.384 ~DFA1C.tmp
16.04.2007 20:45 1.192 jinstall.cfg
14.04.2007 08:49 16.384 ~DF3EFC.tmp
14.04.2007 08:49 16.384 ~DF255E.tmp
13.04.2007 20:28 16.384 ~DF5415.tmp
13.04.2007 20:28 16.384 ~DF1191.tmp
12.04.2007 22:21 16.384 ~DF5D73.tmp
12.04.2007 22:21 16.384 ~DF2AD9.tmp
12.04.2007 18:49 16.384 ~DF9B2A.tmp
12.04.2007 18:49 16.384 ~DF195A.tmp
10.04.2007 10:12 16.384 ~DFECDC.tmp
10.04.2007 10:12 16.384 ~DFDBF7.tmp
09.04.2007 17:16 16.384 ~DFF922.tmp
09.04.2007 17:16 16.384 ~DFD0D5.tmp
08.04.2007 15:52 16.384 ~DFC135.tmp
08.04.2007 15:52 16.384 ~DF49D2.tmp
07.04.2007 16:57 0 NBR4.tmp
07.04.2007 16:54 16.384 ~DF5ACA.tmp
07.04.2007 16:54 16.384 ~DF47A9.tmp
02.04.2007 19:06 16.384 ~DFE601.tmp
02.04.2007 19:06 16.384 ~DFBE80.tmp
01.04.2007 17:05 16.384 ~DF938F.tmp
01.04.2007 17:05 16.384 ~DF7C9C.tmp
30.03.2007 20:49 16.384 ~DF2C00.tmp
30.03.2007 20:49 16.384 ~DF6B64.tmp
30.03.2007 18:07 49.058 d339_appcompat.txt
30.03.2007 17:02 16.384 ~DFFE56.tmp
30.03.2007 17:02 16.384 ~DF4966.tmp
27.03.2007 16:05 16.384 ~DFFBE5.tmp
27.03.2007 16:05 16.384 ~DFAA02.tmp
27.03.2007 13:48 305 GEARInstall.log
27.03.2007 13:42 7.999 QTInstallCode.log
27.03.2007 13:29 3.937 qtplugin.log
27.03.2007 12:58 370 84.tmp
27.03.2007 12:58 220 7C.tmp
27.03.2007 12:58 564 74.tmp
27.03.2007 12:58 375 6C.tmp
27.03.2007 12:58 561 6B.tmp
27.03.2007 12:58 607 6A.tmp
27.03.2007 12:58 591 69.tmp
27.03.2007 12:53 370 67.tmp
27.03.2007 12:53 220 66.tmp
27.03.2007 12:53 564 65.tmp
27.03.2007 12:53 375 64.tmp
27.03.2007 12:53 561 63.tmp
27.03.2007 12:53 607 62.tmp
27.03.2007 12:53 591 61.tmp
27.03.2007 12:51 370 5F.tmp
27.03.2007 12:51 220 5E.tmp
27.03.2007 12:51 564 5D.tmp
27.03.2007 12:51 375 5C.tmp
27.03.2007 12:51 561 5B.tmp
27.03.2007 12:51 607 5A.tmp
27.03.2007 12:51 591 59.tmp
27.03.2007 12:50 370 57.tmp
27.03.2007 12:50 220 4F.tmp
27.03.2007 12:50 564 4E.tmp
27.03.2007 12:50 375 4D.tmp
27.03.2007 12:50 561 45.tmp
27.03.2007 12:50 607 44.tmp
27.03.2007 12:50 591 2E.tmp
27.03.2007 12:07 16.384 ~DF2355.tmp
27.03.2007 12:07 16.384 ~DF1173.tmp
22.03.2007 18:49 16.384 ~DFB4F5.tmp
22.03.2007 18:49 16.384 ~DF6389.tmp
22.03.2007 18:41 16.384 ~DF1CF3.tmp
22.03.2007 18:41 512 ~DF1D03.tmp
22.03.2007 18:41 16.384 ~DF1D13.tmp
22.03.2007 18:41 512 ~DF1D23.tmp
22.03.2007 18:41 512 ~DF1CE3.tmp
22.03.2007 18:41 16.384 ~DF1CD3.tmp
22.03.2007 18:41 16.384 ~DF1CB3.tmp
22.03.2007 18:41 512 ~DF1CC3.tmp
22.03.2007 18:40 16.384 ~DF1CE0.tmp
22.03.2007 18:40 16.384 ~DFF0C2.tmp
22.03.2007 18:40 512 ~DFF2BD.tmp
19.03.2007 11:11 16.384 ~DF5025.tmp
19.03.2007 11:11 16.384 ~DF3982.tmp
18.03.2007 17:12 16.384 ~DF4B1C.tmp
18.03.2007 17:12 16.384 ~DF2063.tmp
15.03.2007 14:46 16.384 ~DF6960.tmp
15.03.2007 14:46 16.384 ~DF2659.tmp
14.03.2007 00:41 5.393 ~WRS2142.tmp
14.03.2007 00:41 16.384 ~WRF2185.tmp
14.03.2007 00:41 5.393 ~WRS2117.tmp
14.03.2007 00:41 16.384 ~WRF2292.tmp
14.03.2007 00:28 16.384 ~DF52DE.tmp
14.03.2007 00:28 16.384 ~DF10AA.tmp
13.03.2007 11:28 16.384 ~DFD622.tmp
13.03.2007 11:28 16.384 ~DFAC57.tmp
12.03.2007 18:21 49.058 f92_appcompat.txt
12.03.2007 16:19 0 ~DF4.tmp
12.03.2007 16:10 16.384 ~DF1.tmp
12.03.2007 16:10 16.384 ~DF9FE5.tmp
09.03.2007 22:48 16.384 ~DF4455.tmp
09.03.2007 22:48 16.384 ~DF2AAB.tmp
08.03.2007 11:20 49.058 b9c4_appcompat.txt
08.03.2007 11:07 409 WGANotify.settings
08.03.2007 10:45 16.384 ~DF191B.tmp
08.03.2007 10:45 16.384 ~DFF058.tmp
07.03.2007 01:50 49.058 afee_appcompat.txt
07.03.2007 01:37 16.384 ~DF538B.tmp
07.03.2007 01:37 16.384 ~DF1AE8.tmp
06.03.2007 03:03 49.058 41a9_appcompat.txt
06.03.2007 01:19 16.384 ~DFA46A.tmp
06.03.2007 01:19 16.384 ~DF734F.tmp
03.03.2007 16:01 9.559.037 CC57.tmp
03.03.2007 15:28 16.384 ~DF1836.tmp
03.03.2007 15:28 16.384 ~DFD7D5.tmp
28.02.2007 12:01 16.384 ~DF8583.tmp
28.02.2007 12:00 16.384 ~DF58FC.tmp
27.02.2007 01:01 16.384 ~DF2088.tmp
27.02.2007 01:01 16.384 ~DFE8D9.tmp
24.02.2007 19:01 16.384 ~DFDB8A.tmp
24.02.2007 19:01 16.384 ~DF9572.tmp
24.02.2007 14:21 16.384 ~DFE8C1.tmp
24.02.2007 14:21 16.384 ~DFD02A.tmp
23.02.2007 21:20 16.384 ~DFDCE.tmp
23.02.2007 21:20 16.384 ~DFDBDC.tmp
22.02.2007 23:18 16.384 ~DFDC23.tmp
22.02.2007 23:18 16.384 ~DFC6A4.tmp
20.02.2007 23:55 16.384 ~DF3B4F.tmp
20.02.2007 23:55 16.384 ~DF302F.tmp
18.02.2007 01:52 16.384 ~DF3D10.tmp
18.02.2007 01:52 16.384 ~DFCC02.tmp
16.02.2007 12:37 16.384 ~DF6C87.tmp
16.02.2007 12:37 16.384 ~DF3530.tmp
16.02.2007 00:25 16.384 ~DFD15C.tmp
16.02.2007 00:25 16.384 ~DFB31D.tmp
15.02.2007 13:55 16.384 ~DFBD36.tmp
15.02.2007 13:55 16.384 ~DFA646.tmp
14.02.2007 13:35 16.384 ~DF616C.tmp
14.02.2007 13:34 16.384 ~DF32DA.tmp
13.02.2007 12:51 16.384 ~DFC764.tmp
13.02.2007 12:51 16.384 ~DFA375.tmp
12.02.2007 17:24 370 56.tmp
12.02.2007 17:24 220 55.tmp
12.02.2007 17:24 564 54.tmp
12.02.2007 17:24 375 53.tmp
12.02.2007 17:24 561 52.tmp
12.02.2007 17:24 607 51.tmp
12.02.2007 17:24 591 50.tmp
12.02.2007 17:20 370 4C.tmp
12.02.2007 17:20 220 4B.tmp
12.02.2007 17:20 564 4A.tmp
12.02.2007 17:20 375 49.tmp
12.02.2007 17:20 561 48.tmp
12.02.2007 17:20 607 47.tmp
12.02.2007 17:20 591 46.tmp
12.02.2007 17:04 370 43.tmp
12.02.2007 17:04 220 3B.tmp
12.02.2007 17:04 564 3A.tmp
12.02.2007 17:04 375 39.tmp
12.02.2007 17:04 561 38.tmp
12.02.2007 17:04 607 30.tmp
12.02.2007 17:04 591 2F.tmp
12.02.2007 16:55 370 2D.tmp
12.02.2007 16:55 220 2C.tmp
12.02.2007 16:55 564 1D.tmp
12.02.2007 16:55 375 1C.tmp
12.02.2007 16:55 561 1B.tmp
12.02.2007 16:55 607 1A.tmp
12.02.2007 16:55 591 12.tmp
12.02.2007 01:27 370 42.tmp
12.02.2007 01:27 220 41.tmp
12.02.2007 01:27 564 40.tmp
12.02.2007 01:27 375 3F.tmp
12.02.2007 01:27 561 3E.tmp
12.02.2007 01:27 607 3D.tmp
12.02.2007 01:27 591 3C.tmp
12.02.2007 01:21 370 37.tmp
12.02.2007 01:21 220 36.tmp
12.02.2007 01:21 564 35.tmp
12.02.2007 01:21 375 34.tmp
12.02.2007 01:21 561 33.tmp
12.02.2007 01:21 607 32.tmp
12.02.2007 01:21 591 31.tmp
12.02.2007 01:14 370 2B.tmp
12.02.2007 01:14 220 2A.tmp
12.02.2007 01:14 564 29.tmp
12.02.2007 01:14 375 28.tmp
12.02.2007 01:14 561 27.tmp
12.02.2007 01:14 607 1F.tmp
12.02.2007 01:14 591 1E.tmp
12.02.2007 01:10 370 19.tmp
12.02.2007 01:10 220 18.tmp
12.02.2007 01:10 564 17.tmp
12.02.2007 01:10 375 16.tmp
12.02.2007 01:10 561 15.tmp
12.02.2007 01:10 607 14.tmp
12.02.2007 01:10 591 13.tmp
12.02.2007 00:29 5.945.308 CCC.tmp
11.02.2007 23:27 16.384 ~DF4DFD.tmp
11.02.2007 23:27 16.384 ~DFEDA3.tmp
10.02.2007 23:59 16.384 ~DFF1A9.tmp
10.02.2007 23:59 16.384 ~DFCFFC.tmp
10.02.2007 15:34 1.725 CC94.tmp
10.02.2007 14:55 14.702 mso7D.tmp
10.02.2007 14:34 512 ~DFDFDA.tmp
10.02.2007 14:34 311.296 ~DFDF0A.tmp
10.02.2007 13:41 16.384 ~DF8DF9.tmp
10.02.2007 13:41 512 ~DF23CC.tmp
10.02.2007 13:41 16.384 ~DF1ED3.tmp
09.02.2007 22:57 14.128 ICQ29.tmp
09.02.2007 22:57 4.843 ICQ28.tmp
09.02.2007 22:52 32.768 ~DFE98A.tmp
09.02.2007 22:40 16.384 ~DF82A8.tmp
09.02.2007 12:03 16.384 ~DFB75D.tmp
09.02.2007 12:03 16.384 ~DF8E93.tmp
07.02.2007 14:10 16.384 ~DFE728.tmp
07.02.2007 14:10 16.384 ~DF9F8D.tmp
06.02.2007 20:29 16.384 ~DFF908.tmp
06.02.2007 20:29 16.384 ~DF81AE.tmp
05.02.2007 21:43 0 h2r2B.tmp
05.02.2007 21:43 4.985 r2h2A.tmp
05.02.2007 21:14 16.384 ~DFAF16.tmp
05.02.2007 21:14 16.384 ~DF6280.tmp
05.02.2007 17:50 16.384 ~DFECDE.tmp
05.02.2007 17:49 16.384 ~DFBA17.tmp
03.02.2007 15:35 49.058 d1b7_appcompat.txt
03.02.2007 12:18 16.384 ~DF3749.tmp
03.02.2007 12:18 16.384 ~DFE952.tmp
02.02.2007 21:19 16.384 ~DFA10D.tmp
02.02.2007 21:19 16.384 ~DF4197.tmp
01.02.2007 15:51 16.384 ~DF4E92.tmp
01.02.2007 15:51 16.384 ~DFF39.tmp

Datentr„ger in Laufwerk C: ist 53_01_33
Volumeseriennummer: B843-8B29

Verzeichnis von C:\WINDOWS

29.05.2007 08:06 1.550.368 WindowsUpdate.log
29.05.2007 08:06 261 wiadebug.log
29.05.2007 08:06 0 0.log
29.05.2007 08:05 50 wiaservc.log
29.05.2007 08:05 32.558 SchedLgU.Txt
29.05.2007 08:05 2.048 bootstat.dat
29.05.2007 00:14 49 NeroDigital.ini
28.05.2007 22:32 99.688 wmsetup.log
28.05.2007 21:51 1.409 QTFont.for
28.05.2007 21:51 54.156 QTFont.qfn
26.05.2007 20:05 372.157 comsetup.log
26.05.2007 20:05 228.620 ntdtcsetup.log
26.05.2007 20:05 174.383 iis6.log
26.05.2007 20:05 1.917 imsins.log
26.05.2007 20:05 57.342 ocmsn.log
26.05.2007 20:05 444.991 tsoc.log
26.05.2007 20:05 600.557 ocgen.log
26.05.2007 20:05 57.075 msgsocm.log
26.05.2007 20:05 1.168.585 FaxSetup.log
26.05.2007 20:05 161.551 setupapi.log
23.05.2007 12:51 1.374 imsins.BAK
23.05.2007 12:51 7.593 KB927891.log
23.05.2007 12:50 73.361 updspapi.log
14.05.2007 02:18 29 BRAINBOX.INI
09.05.2007 08:15 17.043 KB931768-IE7.log
09.05.2007 08:14 10.598 KB930916.log
08.05.2007 02:43 129 EMSOFT.INI
08.05.2007 02:25 30 4WINS.INI
08.05.2007 02:22 77 RANGOON.INI
08.05.2007 02:20 1.359 win.ini
08.05.2007 02:13 57 boxworld.ini
15.04.2007 03:06 222.328 setupact.log
12.04.2007 15:15 470 BRWMARK.INI
12.04.2007 11:53 14.246 KB931784.log
12.04.2007 11:52 12.335 KB931261.log
12.04.2007 11:52 12.646 KB930178.log
12.04.2007 11:52 14.277 KB932168.log
03.04.2007 23:44 12.391 KB925902.log
25.03.2007 19:28 8.074 OEWABLog.txt
14.03.2007 02:18 7.614 KB929399.log
14.03.2007 02:17 11.930 KB929338.log
08.03.2007 16:28 77.170 spupdsvc.log
08.03.2007 11:09 19.707 WgaNotify.log
17.02.2007 09:41 17.890 KB927779.log
17.02.2007 09:41 14.943 KB927802.log
17.02.2007 09:41 14.583 KB928255.log
17.02.2007 09:40 6.545 KB923723.log
17.02.2007 09:40 11.035 KB924667.log
17.02.2007 09:40 23.514 KB931836.log
17.02.2007 09:38 12.972 KB926436.log
17.02.2007 09:38 9.352 KB928090-IE7.log
17.02.2007 09:37 10.648 KB918118.log
17.02.2007 09:36 10.477 KB928843.log
02.02.2007 20:43 9.316 DPINST.LOG

Verzeichnis von C:\

29.05.2007 08:31 0 sys.txt
29.05.2007 08:31 16.813 system.txt
29.05.2007 08:31 92.373 systemtemp.txt
29.05.2007 08:31 106.443 system32.txt
29.05.2007 08:05 536.399.872 hiberfil.sys
29.05.2007 08:05 805.306.368 pagefile.sys
25.05.2007 20:00 268 sqmdata14.sqm
25.05.2007 20:00 244 sqmnoopt14.sqm
25.05.2007 14:15 268 sqmdata13.sqm
25.05.2007 14:15 244 sqmnoopt13.sqm
25.05.2007 05:41 268 sqmdata12.sqm
25.05.2007 05:41 244 sqmnoopt12.sqm
24.05.2007 06:45 268 sqmdata11.sqm
24.05.2007 06:45 244 sqmnoopt11.sqm
23.05.2007 04:06 268 sqmdata10.sqm
23.05.2007 04:06 244 sqmnoopt10.sqm
20.05.2007 02:49 268 sqmdata09.sqm
20.05.2007 02:49 244 sqmnoopt09.sqm
19.05.2007 06:40 268 sqmdata08.sqm
19.05.2007 06:40 244 sqmnoopt08.sqm
18.05.2007 06:41 268 sqmdata07.sqm
18.05.2007 06:41 244 sqmnoopt07.sqm
17.05.2007 06:32 268 sqmdata06.sqm
17.05.2007 06:32 244 sqmnoopt06.sqm
16.05.2007 22:34 268 sqmdata05.sqm
16.05.2007 22:34 244 sqmnoopt05.sqm
16.05.2007 15:37 268 sqmdata04.sqm
16.05.2007 15:37 244 sqmnoopt04.sqm
15.05.2007 14:22 268 sqmdata03.sqm
15.05.2007 14:22 244 sqmnoopt03.sqm
14.05.2007 16:23 268 sqmdata02.sqm
14.05.2007 16:23 244 sqmnoopt02.sqm
14.05.2007 04:49 268 sqmdata01.sqm
14.05.2007 04:49 244 sqmnoopt01.sqm
13.05.2007 04:18 268 sqmdata00.sqm
13.05.2007 04:18 244 sqmnoopt00.sqm
12.05.2007 04:06 268 sqmdata19.sqm
12.05.2007 04:06 244 sqmnoopt19.sqm
11.05.2007 23:21 268 sqmdata18.sqm
11.05.2007 23:21 244 sqmnoopt18.sqm
11.05.2007 16:42 268 sqmdata17.sqm
11.05.2007 16:42 244 sqmnoopt17.sqm
11.05.2007 03:16 268 sqmdata16.sqm
11.05.2007 03:16 244 sqmnoopt16.sqm
09.05.2007 18:20 268 sqmdata15.sqm
09.05.2007 18:20 244 sqmnoopt15.sqm
Seitenanfang Seitenende
29.05.2007, 09:25
Member
Avatar Chris4You

Beiträge: 694
#2 Hi,

wenns nur darum geht:

Counterspy
scanne und poste den scanreport (stelle vorher alles auf "remove")
http://virus-protect.org/counterspy.html
(Allerdings ist Counterspy nur 14 Tage frei... d. h. falls in Zukunft
was Größeres ansteht, musst Du auf Counterspy verzichten oder kaufen)...

Anschließen neues Hijackthis-Log...

Gruß,
Chris
Dieser Beitrag wurde am 29.05.2007 um 11:06 Uhr von Chris4You editiert.
Seitenanfang Seitenende
02.06.2007, 17:31
Member

Themenstarter

Beiträge: 39
#3 Scan History Details
Start Date: 02.06.2007 14:17:52
End Date: 02.06.2007 17:23:14
Total Time: 185 Min 22 Sec
Detected security risks

Cookie: Trafficmp.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@trafficmp[1].txt


Cookie: ATDMT.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@atdmt[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@atdmt[2].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@atdmt[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@atdmt[2].txt


BearShare P2P Program more information...
Details: BearShare is a peer-to-peer (P2P) application that allows its users to join together in a network via the Internet and share files from each other's hard drives.
Status: Deleted

Files detected
C:\Programme\BearShare Applications\BearShare MediaBar\MediaBar.dll

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\Implemented Categories
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\Implemented Categories\{7DD95801-9882-11CF-9FA9-00AA006C42C4}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\Implemented Categories\{7DD95802-9882-11CF-9FA9-00AA006C42C4}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\ProgID
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\ProgID


Beast RAT more information...
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\.BST
HKEY_LOCAL_MACHINE\Software\Classes\.BST


Cookie: BFast.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@bfast[1].txt


Cookie: Bilbo.Counted Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@bilbo.counted[2].txt


Cookie: BlueMountain.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@bluemountain[2].txt


Cookie: Bluestreak.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@bluestreak[1].txt


Cookie: Bravenet.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@bravenet[1].txt


Cookie: BS.Serving-Sys Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@bs.serving-sys[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@serving-sys[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@bs.serving-sys[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@serving-sys[2].txt


Cookie: BurstNet.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@burstnet[2].txt


Cookie: Centrport.net Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@centrport[1].txt


Cookie: CGI-Bin Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@cgi-bin[2].txt
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@cgi-bin[3].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@cgi-bin[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@cgi-bin[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@cgi-bin[3].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@cgi-bin[4].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@cgi-bin[5].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@cgi-bin[6].txt


Cookie: Com.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@com[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@com[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@com[1].txt


Cookie: CoreMetrics.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@data.coremetrics[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@data.coremetrics[1].txt


Cookie: DoubleClick Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@doubleclick[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@doubleclick[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@doubleclick[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@doubleclick[1].txt


AvenueMedia.InternetOptimizer Browser Plug-in more information...
Details: Internet Optimizer, also known as DyFuCA, is an adware application that hijacks the user's browser error page.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{AA4939C3-DECA-4A48-A454-97CD587C0EF5}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EEE4A2E5-9F56-432F-A6ED-F6F625B551E0}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{58634367-D62B-4C2C-86BE-5AAC45CDB671}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\SOFTWARE\POLICIES\AVENUE MEDIA
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\POLICIES\AVENUE MEDIA


Cookie: Hitbox.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@hitbox[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@hg1.hitbox[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@hitbox[2].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@hitbox[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@hitbox[2].txt


Cookie: FastClick.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@fastclick[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@fastclick[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@media.fastclick[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@fastclick[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@fastclick[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@media.fastclick[2].txt


Cookie: FortuneCity.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@fortunecity[2].txt


Cookie: GeoCities Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@geocities[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@geocities[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@geocities[2].txt


Cookie: HC2.HumanClick Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@hc2.humanclick[1].txt


Hotbar Toolbar more information...
Details: Hotbar Web Tools is a collection of browser and system enhancements. The primary application is the Hotbar toolbar, a which is a "skinable" browser toolbar for Internet Explorer.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{175816A5-219E-4079-B2F9-53C501C409BA}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{1C1793E0-1034-4CAC-837D-AA545F6961BF}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{5D16197A-1EAA-45AF-B29A-69F1AA055E87}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{8A61A950-C325-4F44-BA64-273180FF3464}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B53D4CD4-406D-43CC-8244-7893D72236DD}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B671426C-5C1A-48AC-9652-BC9402B1C404}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B9BB3219-F84C-4060-966B-4A1E73E24226}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F786CB18-3809-4E49-BC99-9A66DA47DB8B}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{71EFE583-62FE-4419-9918-CA3B683F7B36}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS\HbTools
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS\HbTools\PI
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS\HbTools\PI\3.2
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS\HbTools\PI\3.2
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS\Hotbar
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS\Hotbar\Install
HKEY_LOCAL_MACHINE\SOFTWARE\HBTOOLS\Hotbar\Install


Cookie: HotLog.ru Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@hotlog[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@hotlog[1].txt


iMesh P2P Program more information...
Details: iMesh is a peer-to-peer (P2P) application that allows its users to join together in a network via the Internet and share files from each other's hard drives.
Status: Deleted

Files detected
C:\PROGRAMME\iMeshBar\bar\History\search
C:\Programme\Microsoft AntiSpyware\Quarantine\41D7DC1C-5930-4F3C-AAA8-B93876\0E0922EB-540C-483A-8DDA-F30776
C:\Programme\Microsoft AntiSpyware\Quarantine\41D7DC1C-5930-4F3C-AAA8-B93876\550F60A8-5CFA-4D7B-964D-8D0F79
C:\WINDOWS\system32\HSeNJ.ocx
C:\PROGRAMME\IMESHBAR
C:\PROGRAMME\IMESHBAR\BAR
C:\PROGRAMME\IMESHBAR\BAR\HISTORY
C:\PROGRAMME\IMESHBAR\BAR\SETTINGS
C:\WINDOWS\SYSTEM32\IMESH_CACHE

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{42AB8D08-F741-4166-8A0D-3C1A50B43F93}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{42AB8D08-F741-4166-8A0D-3C1A50B43F93}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{42AB8D08-F741-4166-8A0D-3C1A50B43F93}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{42AB8D08-F741-4166-8A0D-3C1A50B43F93}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{42AB8D08-F741-4166-8A0D-3C1A50B43F93}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{42AB8D08-F741-4166-8A0D-3C1A50B43F93}\ProgID
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{42AB8D08-F741-4166-8A0D-3C1A50B43F93}\ProgID
HKEY_LOCAL_MACHINE\Software\Classes\GNUCCOM.CORE
HKEY_LOCAL_MACHINE\Software\Classes\GNUCCOM.CORE
HKEY_LOCAL_MACHINE\Software\Classes\GNUCCOM.CORE\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\GNUCCOM.CORE\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{00000000-A447-4EB9-A8D8-0C4B0661D988}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0BE385A3-85A5-4722-B677-68DAE891FF21}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{272C0D60-0561-4C83-B3DB-EB0A71F9D2EB}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{284477E4-A7CB-4055-9E1B-0EA7CBA28945}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{70CA4938-6A0F-4641-A9A9-C936E4C1E7DE}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{7468213E-010E-4EC6-A17D-642E909BA7EC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A916AF3C-976D-4358-8736-95BEA0B5FD2C}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{B86F4810-19A9-4050-9AC9-B5CF60B5799A}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BB5B7E14-F8B4-4365-A24D-F4965C33E1EE}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{BE45F056-E005-437B-BE88-23ACF70B0B6A}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C13D4627-02F5-4B03-897A-BF6A90022DD2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{C636F1FC-6AE4-4E6A-90AB-6D61D821A0DD}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{CB971AC0-6408-40DA-A540-92F9F256F51F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5694DFE-43B6-4E05-AA29-8C556C968973}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{D5E7424B-5AAD-41C5-944A-077CF49F9D45}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{E2032EC2-A9AC-4ED7-9BDB-EBECACF076F2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{EBAB4A71-8C34-461A-B57D-DD041D439555}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{F06FEA43-0CC3-4BF6-A85B-5EFB1C07AA4B}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{FC94A0F7-9C7C-4AE2-9106-5C212332B209}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{80F06796-5DE1-44CC-90A7-8B275950CFD7}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{C8791281-D7A4-440D-A0F8-C02E2085A21D}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{F048AEEC-AE7B-4DEC-BC7A-F5DB4B52C048}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar
HKEY_LOCAL_MACHINE\SOFTWARE\IMESHBAR\bar


IST.ISTbar Hijacker more information...
Details: ISTbar is an Internet Explorer Hijacker, which modifies your homepages and searches without a user's consent using an Internet Explorer toolbar.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0985C112-2562-46F2-8DA6-92648BA4630F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{67907B3C-A6EF-4A01-99AD-3FCD5F526429}\1.1\HELPDIR
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN


KaZaA P2P Program more information...
Details: KaZaA is a peer-to-peer (P2P) application that allows its users to join together in a network via the Internet and share files from each other's hard drives.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{66FC8717-EFA7-4546-8C4A-E224F3A80C76}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{66FC8717-EFA7-4546-8C4A-E224F3A80C76}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{66FC8717-EFA7-4546-8C4A-E224F3A80C76}\TreatAs
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{66FC8717-EFA7-4546-8C4A-E224F3A80C76}\TreatAs
HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET\HANDLERS\KAZAA
HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET\HANDLERS\KAZAA
HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET\HANDLERS\KAZAA\Type


Cookie: Lop.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@lop[1].txt


Cookie: Mediaplex.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@mediaplex[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@mediaplex[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@mediaplex[1].txt


Cookie: MetriWeb Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@metriweb[1].txt


Weatherbug Low Risk Adware more information...
Details: Weatherbug is an ad supported desktop weather applicaton that provides updates on weather conditions and displays real time temperatures in the taskbar icon.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\IMSIDE1EGATE.APPLICATION.1
HKEY_LOCAL_MACHINE\Software\Classes\IMSIDE1EGATE.APPLICATION.1
HKEY_LOCAL_MACHINE\Software\Classes\IMSIDE1EGATE.APPLICATION.1\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\IMSIDE1EGATE.APPLICATION.1\CLSID


Cookie: Overture.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@overture[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@overture[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@overture[1].txt


Cookie: PayCounter.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@paycounter[2].txt


Cookie: PointRoll.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@ads.pointroll[2].txt


Cookie: QuestionMarket.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@questionmarket[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@questionmarket[2].txt


Cookie: RealMedia.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@realmedia[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@realmedia[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@realmedia[1].txt


Cookie: Revenue.net Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@revenue[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@revenue[1].txt


Cookie: SageAnalyst Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@sageanalyst[1].txt


Cookie: Advertising.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@advertising[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@advertising[2].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@advertising[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@advertising[2].txt


Cookie: SexList.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@sexlist[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@sexlist[1].txt


Cookie: SpyLog.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@spylog[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@spylog[1].txt


Cookie: Stat.Onestat Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@stat.onestat[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@stat.onestat[2].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@stat.onestat[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@stat.onestat[2].txt


Cookie: Zedo Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@zedo[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@zedo[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@zedo[1].txt


Cookie: XXXCounter.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@xxxcounter[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@xxxcounter[1].txt


Cookie: Targetnet.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions an
Seitenanfang Seitenende
02.06.2007, 17:36
Member

Themenstarter

Beiträge: 39
#4 ....impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@targetnet[2].txt


Altnet/Topsearch Browser Plug-in more information...
Details: Altnet/Topsearch is a browser plug-in that acts as search engine for peer-to-peer applications Kazaa and Grokster.
Status: Deleted

Files detected
C:\Programme\Microsoft AntiSpyware\Quarantine\5C377713-CD3B-4B64-A4BF-94C1B7\1B867E62-91A5-45B8-B971-BA8C45
C:\Programme\Microsoft AntiSpyware\Quarantine\5C377713-CD3B-4B64-A4BF-94C1B7\B43BF5B5-52FF-4083-9F68-3E1C42


Cookie: TribalFusion.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@tribalfusion[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@tribalfusion[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@tribalfusion[2].txt


Cookie: Tripod Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@tripod[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@tripod[1].txt


Cookie: 247RealMedia.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@247realmedia[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@247realmedia[2].txt


Cookie: Weborama Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@weborama[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@weborama[1].txt


MyWebSearch Toolbar Potentially Unwanted Program more information...
Details: MyWebSearch Toolbar is a customizable Internet Explorer search toolbar with various other tools.
Status: Deleted

Files detected
C:\PROGRAMME\MYWEBSEARCH\bar\History\search2
C:\PROGRAMME\MYWEBSEARCH\bar\Settings\prevcfg2.htm
C:\PROGRAMME\MYWEBSEARCH\bar\Settings\s_bfeats.dat
C:\PROGRAMME\MYWEBSEARCH\bar\Settings\s_pid.dat
C:\PROGRAMME\MYWEBSEARCH\bar\Settings\setting2.htm
C:\PROGRAMME\MYWEBSEARCH\bar\Settings\settings.dat
C:\PROGRAMME\MYWEBSEARCH
C:\PROGRAMME\MYWEBSEARCH\BAR
C:\PROGRAMME\MYWEBSEARCH\BAR\HISTORY
C:\PROGRAMME\MYWEBSEARCH\BAR\SETTINGS

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}\TreatAs
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}\TreatAs
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}\TreatAs
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}\TreatAs
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN.1
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN.1
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN.1\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN.1\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN\CurVer
HKEY_LOCAL_MACHINE\Software\Classes\MYWEBSEARCH.PSEUDOTRANSPARENTPLUGIN\CurVer
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\bar\Switches
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\Email-IM
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\Email-IM\0
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\Email-IM\0
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\Email-IM\0
HKEY_LOCAL_MACHINE\SOFTWARE\FOCUSINTERACTIVE\Outlook
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{56256A51-B582-467E-B8D4-7786EDA79AE0}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{56256A51-B582-467E-B8D4-7786EDA79AE0}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{56256A51-B582-467E-B8D4-7786EDA79AE0}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{56256A51-B582-467E-B8D4-7786EDA79AE0}
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\bar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SearchAssistant
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SkinTools
HKEY_LOCAL_MACHINE\SOFTWARE\MYWEBSEARCH\SkinTools
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\MYWEBSEARCH
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\MYWEBSEARCH\bar


Cookie: www.frenchcum.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@www.frenchcum[2].txt


180solutions.SearchAssistant Adware (General) more information...
Details: 180search Assistant is an adware application that monitors users' search queries and web surfing in order to display targeted advertising.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\180SOLUTIONS
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP MANAGEMENT\ARPCACHE\MSBB
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP MANAGEMENT\ARPCACHE\MSBB
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP MANAGEMENT\ARPCACHE\MSBB


IST.XXXToolbar Toolbar more information...
Details: IST.XXXToolbar is an adult adware search toolbar for Internet Explorer. XXXToolbar displays a number of pop-up ads when Internet Explorer is running.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{339D8AFF-0B42-4260-AD82-78CE605A9543}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{D0288A41-9855-4A9B-8316-BABE243648DA}\1.0\HELPDIR


IST.SideFind Browser Plug-in more information...
Details: SideFind is a browser helper object (BHO) that add a side bar to Internet Explorer and displays alternate search results in the side bar.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{A36A5936-CFD9-4B41-86BD-319A1931887F}\TypeLib
HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\CMDMAPPING
HKEY_USERS\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\CMDMAPPING


Cookie: cookie.monster Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@cookie.monster[1].txt


Cookie: tickle Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\weiken\cookies\weiken@tickle[2].txt


FunWebProducts Potentially Unwanted Program more information...
Details: Fun Web Products bundles adware software in its products.
Status: Deleted

Files detected
C:\PROGRAMME\FUNWEBPRODUCTS
C:\PROGRAMME\FUNWEBPRODUCTS\SCREENSAVER
C:\PROGRAMME\FUNWEBPRODUCTS\SCREENSAVER\IMAGES
C:\PROGRAMME\FUNWEBPRODUCTS\SHARED

Registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\ScreenSaver
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\ScreenSaver
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\CursorManiaBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\CursorManiaBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\CursorManiaBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\CursorManiaBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\FunBuddyIconBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\FunBuddyIconBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\FunBuddyIconBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\FunBuddyIconBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\MyFunCardsIMBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\MyFunCardsIMBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\MyFunCardsIMBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\MyFunCardsIMBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\Promos
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\SmileyCentralBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\SmileyCentralBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\SmileyCentralBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\SmileyCentralBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUN WEB PRODUCTS\Settings\SmileyCentralBtn
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer\downloaded
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer
HKEY_LOCAL_MACHINE\SOFTWARE\FUNWEBPRODUCTS\Installer
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\FUNWEBPRODUCTS
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\FUNWEBPRODUCTS\Settings
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\FUNWEBPRODUCTS\Settings\MSNMessenger
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\FUNWEBPRODUCTS\Settings\MSNMessenger
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\FUNWEBPRODUCTS\Settings\MSNMessenger


Messenger Plus! Adware Bundler more information...
Details: Messenger Plus! is a add-on for MSN Messenger. Messenger Plus! installs an OPTIONAL adware called C2Media which is also known as LOP.com.
Status: Deleted

Files detected
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\Detoured.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\Lame_enc.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\Libsndfile.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\MsgPlus.exe
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\MsgPlusH.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\MsgPlusLoader.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\MsgPlusLoader1.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\Resources\MsgPlusRes.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Lokale Einstellungen\Temporary Internet Files\Content.IE5\RMFYNBYW\MsgPlus3-Setup[1].exe
C:\Dokumente und Einstellungen\WEIKEN\Lokale Einstellungen\Temp\MsgPlusUninstall.exe


Looking-For.Home Search Assistant Hijacker more information...
Details: Home Search Assistant is an Internet Explorer browser helper object (BHO) that changes the user's home page and modifes search results. It also spawns pop-ups on the desktop.
Status: Deleted

Files detected
C:\Dokumente und Einstellungen\WEIKEN\Lokale Einstellungen\Temp\7A.tmp
C:\Dokumente und Einstellungen\WEIKEN\Lokale Einstellungen\Temp\7B.tmp
C:\Dokumente und Einstellungen\WEIKEN\Lokale Einstellungen\Temp\7C.tmp


Cookie: SexTracker.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@sextracker[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@sextracker[2].txt


Cookie: casalemedia.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@casalemedia[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@casalemedia[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@casalemedia[1].txt


Cookie: statcounter.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@statcounter[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@statcounter[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@statcounter[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@statcounter[1].txt


YourSiteBar Toolbar more information...
Details: YourSiteBar from IST, the makers of numerous spyware Thread, is an affiliate based marketing toolbar.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\MODULEUSAGE\C:/WINDOWS/DOWNLOADED PROGRAM FILES/YSBACTIVEX.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\MODULEUSAGE\C:/WINDOWS/DOWNLOADED PROGRAM FILES/YSBACTIVEX.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\MODULEUSAGE\C:/WINDOWS/DOWNLOADED PROGRAM FILES/YSBACTIVEX.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS


Cookie: hitslink.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@counter2.hitslink[1].txt


RXToolbar Toolbar more information...
Details: RXToolbar is an Internet Explorer toolbar that shows links for the current page being viewed, targetted through www.searchenginebar.com.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\SEMANTICINSIGHT
HKEY_LOCAL_MACHINE\SOFTWARE\SEMANTICINSIGHT


AzeSearch.MWSearch Browser Plug-in more information...
Details: AzeSearch.MWSearch adds a search toolbar to Internet Explorer and hijacks the default search page.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{38252777-2500-456E-8B3D-A55850306DA2}\TypeLib


Cookie: ClickedyClick.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@www.clickedyclick[2].txt


Cookie: Offeroptimizer Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@offeroptimizer[2].txt


Altnet Download Manager Low Risk Adware more information...
Details: Altnet Download Manager accompanies Altnet P2P Networking and performs the job of downloading content from Altnet's P2P network.
Status: Deleted

Files detected
C:\Programme\Microsoft AntiSpyware\Quarantine\5C377713-CD3B-4B64-A4BF-94C1B7\2A3AB189-DA35-465F-BF2E-1F750D
C:\Programme\Microsoft AntiSpyware\Quarantine\5C377713-CD3B-4B64-A4BF-94C1B7\BD26EC7A-C984-4C3E-8E11-2247AA


Cookie: PriceBandit Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@apmebf[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@apmebf[2].txt


Cookie: Radar Spy Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@landing.domainsponsor[1].txt
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@tradedoubler[1].txt
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@yourmedia[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@tradedoubler[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@landing.domainsponsor[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@tradedoubler[2].txt


Cookie: dedmazai.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@counter12.sextracker[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@counter14.sextracker[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@counter2.sextracker[1].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@counter5.sextracker[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@counter12.sextracker[1].txt


Cookie: Desktop Spy Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@list[1].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@list[2].txt


Cookie: ABetterInternet.Aurora Cookie Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@a[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@a[1].txt


My Way Speedbar Potentially Unwanted Program more information...
Details: MyWay Speedbar is a search toolbar that installs into Internet Explorer and Netscape Navigator, adding search functions and popup blocking.
Status: Deleted

Files detected
C:\PROGRAMME\MyWay\myBar\1.bin\MY2NS.EXE
C:\PROGRAMME\MyWay\myBar\1.bin\MYWAYPLUGINPROXY.CLASS
C:\PROGRAMME\MyWay\myBar\1.bin\NPMYWAY.DLL
C:\PROGRAMME\MyWay\myBar\1.bin\PARTNER.BMP
C:\PROGRAMME\MyWay\myBar\1.bin\PARTNER.DAT
C:\PROGRAMME\MyWay\myBar\1.bin\PARTNER2.DAT
C:\PROGRAMME\MyWay\myBar\1.bin\PARTNER3.DAT
C:\PROGRAMME\MyWay\myBar\1.bin\PARTNER4.DAT
C:\PROGRAMME\MyWay\myBar\1.bin\PARTNER5.DAT
C:\PROGRAMME\MyWay\myBar\1.bin\PARTNER6.DAT
C:\PROGRAMME\MyWay\myBar\Cache\0001338E
C:\PROGRAMME\MyWay\myBar\Cache\00021BFA
C:\PROGRAMME\MyWay\myBar\Cache\000661F8
C:\PROGRAMME\MyWay\myBar\Cache\000A3826.bmp
C:\PROGRAMME\MyWay\myBar\Cache\002A1A13.g
C:\PROGRAMME\MyWay\myBar\Cache\002A3972.bin
C:\PROGRAMME\MyWay\myBar\Cache\002A3A5D.bin
C:\PROGRAMME\MyWay\myBar\Cache\002A3B47.bin
C:\PROGRAMME\MyWay\myBar\Cache\files.ini
C:\PROGRAMME\MyWay\myBar\History\search
C:\PROGRAMME\MyWay\myBar\Settings\prevcfg.htm
C:\PROGRAMME\MyWay\myBar\Settings\settings.dat
C:\PROGRAMME\MyWay\myBar\Settings\settings.dat.bak
C:\PROGRAMME\MyWay\myBar\Settings\settings.htm
C:\PROGRAMME\MyWay\myBar\Settings\settings.htm.bak
C:\PROGRAMME\MYWAY
C:\PROGRAMME\MYWAY\MYBAR
C:\PROGRAMME\MYWAY\MYBAR\1.BIN
C:\PROGRAMME\MYWAY\MYBAR\CACHE
C:\PROGRAMME\MYWAY\MYBAR\HISTORY
C:\PROGRAMME\MYWAY\MYBAR\SETTINGS

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{014DA6CD-189F-421A-88CD-07CFE51CFF10}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{014DA6CD-189F-421A-88CD-07CFE51CFF10}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{014DA6CD-189F-421A-88CD-07CFE51CFF10}\InProcServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\Implemented Categories
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\Implemented Categories\{00021493-0000-0000-C000-000000000046}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\Instance
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\Instance
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\Instance\InitPropertyBag
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{0494D0DE-F8E0-41AD-92A3-14154ECE70AC}\Instance\InitPropertyBag
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D4-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}\ProxyStubClsid32
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\INTERFACE\{0494D0D6-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN.1
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN.1
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN.1\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN.1\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN\CurVer
HKEY_LOCAL_MACHINE\Software\Classes\MYWAYTOOLBAR.SETTINGSPLUGIN\CurVer
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\0
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\0\win32
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\FLAGS
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\Software\Classes\TYPELIB\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar\partner
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_LOCAL_MACHINE\SOFTWARE\MYWAY\myBar
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\NETSCAPE\NETSCAPE NAVIGATOR\AUTOMATION SHUTDOWN
HKEY_USERS\S-1-5-21-1856784930-15627566-533656234-1007\SOFTWARE\NETSCAPE\NETSCAPE NAVIGATOR\AUTOMATION STARTUP


Cookie: ad.yieldmanager Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\me_myself_and_i\cookies\me_myself_and_i@ad.yieldmanager[2].txt
c:\dokumente und einstellungen\meisian\cookies\meisian@ad.yieldmanager[2].txt
c:\dokumente und einstellungen\meisian_2\cookies\meisian_2@ad.yieldmanager[1].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@ad.yieldmanager[2].txt


ErrorGuard Rogue Security Program more information...
Details: ErrorGuard is a program purports to scan for Thread and errors on the system and uses exaggerated claims of Thread to frighten the user into purchasing the program. ErrorGuard displays pop-ups that cannot be closed by usual methods, typically reporting system errors that may be false.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\MODULEUSAGE\C:/WINDOWS/DOWNLOADED PROGRAM FILES/INSTALL.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\MODULEUSAGE\C:/WINDOWS/DOWNLOADED PROGRAM FILES/INSTALL.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\MODULEUSAGE\C:/WINDOWS/DOWNLOADED PROGRAM FILES/INSTALL.DLL


Regfreeze Rogue Security Program more information...
Details: Regfreeze is a program that purports to scan for and repair errors in the Windows registy.
Status: Deleted

Files detected
C:\!KillBox\rfscanax.dll
C:\WINDOWS\rfscanax.dll

Registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\Control
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\Implemented Categories
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\Implemented Categories\{7DD95801-9882-11CF-9FA9-00AA006C42C4}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\Implemented Categories\{7DD95802-9882-11CF-9FA9-00AA006C42C4}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\MiscStatus
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\MiscStatus
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\MiscStatus\1
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\MiscStatus\1
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\ProgID
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\ProgID
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\ToolboxBitmap32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\ToolboxBitmap32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\TypeLib
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\Version
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\Version
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{AFAB176A-0D25-436A-8555-286F6D7AA388}\VersionIndependentProgID
HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\rfscanax.RegFreezeScanModule.1


Trojan.FakeAlert Trojan more information...
Details: Trojan.FakeAlert consists of files that cause false warnings of spyware on the computer. Usually the alerts are displayed in a balloon type pop-up from an icon in the system tray.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\BALLOON.APPLICATION
HKEY_LOCAL_MACHINE\Software\Classes\BALLOON.APPLICATION
HKEY_LOCAL_MACHINE\Software\Classes\BALLOON.APPLICATION\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\BALLOON.APPLICATION\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}\InprocHandler32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}\InprocHandler32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}\LocalServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}\LocalServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}\ProgID
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1CA7DBAF-B066-4554-977E-5CEBB7FA59C8}\ProgID


Need2FindBar Potentially Unwanted Program more information...
Details: Need2FindBar is a browser helper object (BHO) toolbar that has a search function.
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\MSIEDE1EGATE.APPLICATION.2
HKEY_LOCAL_MACHINE\Software\Classes\MSIEDE1EGATE.APPLICATION.2
HKEY_LOCAL_MACHINE\Software\Classes\MSIEDE1EGATE.APPLICATION.2\CLSID
HKEY_LOCAL_MACHINE\Software\Classes\MSIEDE1EGATE.APPLICATION.2\CLSID


PartyPoker Potentially Unwanted Program more information...
Details: PartyPoker is an online gambling application that requires the user to download its software in order to play.
Status: Deleted

Files detected
C:\Dokumente und Einstellungen\MeiSian\Lokale Einstellungen\Temporary Internet Files\Content.IE5\QGHC64I7\favicon[1].ico
C:\Dokumente und Einstellungen\MEISIAN_2\Lokale Einstellungen\Temporary Internet Files\Content.IE5\S2BMLRWW\favicon[2].ico
C:\Dokumente und Einstellungen\WEIKEN\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TA24X682\favicon[2].ico


Avalon-Spammer Trojan more information...
Status: Deleted

Files detected
C:\Dokumente und Einstellungen\WEIKEN\Lokale Einstellungen\Temp\CC8.tmp


Cookie: DriveCleaner Cookie (General) more information...
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\meisian\cookies\meisian@drivecleaner[2].txt
c:\dokumente und einstellungen\weiken\cookies\weiken@drivecleaner[1].txt
Seitenanfang Seitenende
07.06.2007, 18:26
Member

Themenstarter

Beiträge: 39
#5 hilfe???? ist das das falsche oder was genau ist los? sorry wenn ich ungeduldig bin
Seitenanfang Seitenende
08.06.2007, 08:48
Member

Beiträge: 35
#6 Hallo whycan,

es fehlt noch der bericht von HiJackThis (www-hijackthis.de)

Da dürfte noch irgendwas in Richtung

C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\MsgPlusLoader.dll
C:\Dokumente und Einstellungen\Me_Myself_And_I\Anwendungsdaten\MessengerPlus! 3\MsgPlusLoader1.dll

drinstehen, wahrscheinlich unter dem Punkt O4. Fixe die Einträge mit Hijackthis und dann sehen wir weiter.
__________
Mailen Sie mir! Kaffeefahrtentermine an truelife@habmalnefrage.de - Bitte Abfahrtsort, -zeit und -datum angeben!
Seitenanfang Seitenende
15.06.2007, 19:47
Member

Themenstarter

Beiträge: 39
#7 Logfile of HijackThis v1.99.1
Scan saved at 19:47:23, on 15.06.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
C:\Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Programme\Sunbelt Software\CounterSpy\SBCSSvc.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\ups.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe
C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\Programme\Microsoft IntelliType Pro\type32.exe
C:\Programme\Microsoft IntelliPoint\point32.exe
C:\Programme\ScanSoft\PaperPort\pptd40nt.exe
C:\Programme\Brother\ControlCenter2\brctrcen.exe
C:\Programme\Java\jre1.6.0_01\bin\jusched.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\WINDOWS\vsnpstd.exe
C:\Programme\QuickTime\qttask.exe
C:\Programme\Sunbelt Software\CounterSpy\SBCSTray.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
C:\Programme\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\Skype\Phone\Skype.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\ICQ6\ICQ.exe
C:\Programme\MSN Messenger\msnmsgr.exe
C:\Programme\Brother\Brmfcmon\BrMfcWnd.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Programme\Skype\Plugin Manager\skypePM.exe
C:\Programme\MSN Messenger\usnsvc.exe
C:\Programme\Microsoft Office\Office10\OUTLOOK.EXE
C:\Programme\Mozilla Firefox\firefox.exe
C:\Dokumente und Einstellungen\WEIKEN\Eigene Dateien\HijackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.at/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.at/0SEDEAT/SAOS01?FORM=TOOLBR
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar3.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [CamMonitor] C:\Programme\Hewlett-Packard\Digital Imaging\\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [type32] "C:\Programme\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Programme\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Programme\Gemeinsame Dateien\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Programme\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Programme\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Programme\Brother\Brmfl04b\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Programme\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [creativehopedeafball] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Plus clock creative hope\does part.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SBCSTray] C:\Programme\Sunbelt Software\CounterSpy\SBCSTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Skype] "C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ICQ] "C:\Programme\ICQ6\ICQ.exe" silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Programme\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Status Monitor.lnk = C:\Programme\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Programme\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by22fd.bay22.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/DE-AT/a-UNO1/GAME_UNO1.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20040428/qtinstall.info.apple.com/saba/de/win/QuickTimeInstaller.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1125807103937
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.studivz.net/photouploader/ImageUploader4.cab
O16 - DPF: {96512D57-F751-4088-A689-5778FCC77F7A} (Photo Uploader Control) - http://www.studivz.net/lib/photouploader/PhotoUploader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D909E944-3A96-4280-9983-9D00001973A4} (Access Control) - http://www.browserplugin.com/plugin/exe/access_special.ocx
O16 - DPF: {DA511858-B44C-439E-A0EA-704ED20035E7} (EphoxEditLive4.EditLive) - http://www.beepworld.de/hp/activexeditor/editlive4.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Programme\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Programme\Norton Internet Security\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Programme\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - C:\Programme\Sunbelt Software\CounterSpy\SBCSSvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
Seitenanfang Seitenende
16.06.2007, 17:02
Member

Beiträge: 35
#8 Hallo whycan,

fixe mit HijackThis:

O16 - DPF: {D909E944-3A96-4280-9983-9D00001973A4} (Access Control) - http://www.browserplugin.com/plugin/exe/access_special.ocx
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O4 - HKLM\..\Run: [creativehopedeafball] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Plus clock creative hope\does part.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
__________
Mailen Sie mir! Kaffeefahrtentermine an truelife@habmalnefrage.de - Bitte Abfahrtsort, -zeit und -datum angeben!
Seitenanfang Seitenende
17.06.2007, 16:33
Member

Themenstarter

Beiträge: 39
#9 Logfile of HijackThis v1.99.1
Scan saved at 16:32:51, on 17.06.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
C:\Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Programme\Sunbelt Software\CounterSpy\SBCSSvc.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\ups.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe
C:\Programme\Microsoft IntelliType Pro\type32.exe
C:\Programme\Microsoft IntelliPoint\point32.exe
C:\Programme\ScanSoft\PaperPort\pptd40nt.exe
C:\Programme\Brother\ControlCenter2\brctrcen.exe
C:\Programme\Java\jre1.6.0_01\bin\jusched.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\WINDOWS\vsnpstd.exe
C:\Programme\QuickTime\qttask.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
C:\Programme\Sunbelt Software\CounterSpy\SBCSTray.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\Skype\Phone\Skype.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\ICQ6\ICQ.exe
C:\Programme\MSN Messenger\msnmsgr.exe
C:\Programme\Brother\Brmfcmon\BrMfcWnd.exe
C:\Programme\Skype\Plugin Manager\skypePM.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\MSN Messenger\usnsvc.exe
C:\Dokumente und Einstellungen\WEIKEN\Eigene Dateien\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.at/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.at/0SEDEAT/SAOS01?FORM=TOOLBR
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar3.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [CamMonitor] C:\Programme\Hewlett-Packard\Digital Imaging\\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [type32] "C:\Programme\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Programme\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Programme\Gemeinsame Dateien\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Programme\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Programme\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Programme\Brother\Brmfl04b\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Programme\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SBCSTray] C:\Programme\Sunbelt Software\CounterSpy\SBCSTray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Skype] "C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ICQ] "C:\Programme\ICQ6\ICQ.exe" silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Programme\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Status Monitor.lnk = C:\Programme\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Programme\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by22fd.bay22.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/DE-AT/a-UNO1/GAME_UNO1.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20040428/qtinstall.info.apple.com/saba/de/win/QuickTimeInstaller.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1125807103937
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.studivz.net/photouploader/ImageUploader4.cab
O16 - DPF: {96512D57-F751-4088-A689-5778FCC77F7A} (Photo Uploader Control) - http://www.studivz.net/lib/photouploader/PhotoUploader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DA511858-B44C-439E-A0EA-704ED20035E7} (EphoxEditLive4.EditLive) - http://www.beepworld.de/hp/activexeditor/editlive4.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Programme\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Programme\Norton Internet Security\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Programme\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - C:\Programme\Sunbelt Software\CounterSpy\SBCSSvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
Seitenanfang Seitenende
25.06.2007, 15:13
Member

Beiträge: 35
#10 PC ist m.E. nach sauber!
__________
Mailen Sie mir! Kaffeefahrtentermine an truelife@habmalnefrage.de - Bitte Abfahrtsort, -zeit und -datum angeben!
Seitenanfang Seitenende
25.06.2007, 16:30
Member

Themenstarter

Beiträge: 39
#11 super dankeschööööön :-)
Seitenanfang Seitenende
04.09.2007, 22:25
...neu hier

Beiträge: 7
#12 Hi,
Ich habe das gleiche Problem und bin mir jetzt das Counterspy am herunetrladen un dann werde ich die ergebnisse mal hier reinstellen und schauen ob ihr mir helfen könnt;)
Danke im voraus A. F.
Seitenanfang Seitenende
04.09.2007, 23:11
Ehrenmitglied
Avatar Argus

Beiträge: 6028
#13 Erstellen eines Hijackthis-Logfiles

Als erstes mach ein neuen Ordner auf C:\ z.b. C:\HijackThis,download HijackThis.exe dahin
Download: HijackThis202
Doppelklick HijackThis.exe und installiere das Tool in C:\Programme
Am Ende steht auf dein Desktop eine verknüpfung
Starte Hijack This und klicke “Do a system scan and safe a logfile
Save log --> hijackthis.log - Save - es öffnet sich der Editor
nun das KOMPLETTE Log mit rechtem Mausklick abkopieren und ins Forum mit rechtem Mausklick "einfügen"

Download DeljobZip zum Desktop
Packe die Datei aus.
Doppelklick:Deljob.exe
Ein logfile wird sich oeffnen (logit.txt)
Kopiere den Inhalt des Berichts “logit.txt ”in diesen Thread
__________
MfG Argus
Seitenanfang Seitenende
15.09.2007, 19:58
...neu hier

Beiträge: 7
#14 Scan History Details
Start Date: 15.09.2007 12:40:08
End Date: 15.09.2007 13:36:23
Total Time: 56 Min 15 Sec
Detected security risks

Cookie: Hitbox.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@hitbox[2].txt


Cookie: FastClick.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@fastclick[1].txt


Cookie: GeoCities Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@geocities[2].txt


Cookie: Mediaplex.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@mediaplex[1].txt


Mirar Toolbar more information...
Details: Mirar is an adware application that installs a browser helper object (BHO) in the form of a toolbar.
Status: Deleted

Files detected
C:\Dokumente und Einstellungen\mm\Lokale Einstellungen\Temp\Mirar_VC_Setup_876260_V58IE7.exe

Registry entries detected
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP MANAGEMENT\ARPCACHE\{8A0DCBDA-6E20-489C-9041-C1E8A0352E75}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP MANAGEMENT\ARPCACHE\{8A0DCBDA-6E20-489C-9041-C1E8A0352E75}
HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP MANAGEMENT\ARPCACHE\{8A0DCBDA-6E20-489C-9041-C1E8A0352E75}
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPTOWNINSTALLER
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPTOWNINSTALLER\Coreg
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPTOWNINSTALLER\Coreg\settings


UpMedia.Search ToolBar Toolbar more information...
Status: Deleted

Registry entries detected
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{85E0B171-04FA-11D1-B7DA-00A0C90348A7}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{85E0B171-04FA-11D1-B7DA-00A0C90348A7}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{85E0B171-04FA-11D1-B7DA-00A0C90348A7}\Implemented Categories
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{85E0B171-04FA-11D1-B7DA-00A0C90348A7}\Implemented Categories\{00021494-0000-0000-C000-000000000046}
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{85E0B171-04FA-11D1-B7DA-00A0C90348A7}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{85E0B171-04FA-11D1-B7DA-00A0C90348A7}\InprocServer32
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{85E0B171-04FA-11D1-B7DA-00A0C90348A7}\InprocServer32
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA
HKEY_USERS\S-1-5-21-1209524187-2345627820-3253271983-1121\SOFTWARE\UPMEDIA


Cookie: TribalFusion.com Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@tribalfusion[2].txt


Cookie: cookie.monster Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@cookie.monster[1].txt
c:\dokumente und einstellungen\mm\cookies\mm@cookie.monster[2].txt


Cookie: PriceBandit Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@apmebf[2].txt


Cookie: Radar Spy Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@tradedoubler[1].txt
c:\dokumente und einstellungen\mm\cookies\mm@yourmedia[1].txt


Cookie: ad.yieldmanager Cookie (General) more information...
Details: Cookies are small "data tags" that web sites store on PCs in order to recognize unique visitors. Cookies are used to identify returning visitors who have registered for special services; to measure and analyze visitors' use of web site features; to count unique visitors to web pages; and to allow web surfers to use virtual "shopping carts." Online advertising networks use cookies to track users across web sites and to measure ad impressions and click-throughs.
Status: Deleted

Cookies detected
c:\dokumente und einstellungen\mm\cookies\mm@ad.yieldmanager[2].txt


PartyPoker Potentially Unwanted Program more information...
Details: PartyPoker is an online gambling application that requires the user to download its software in order to play.
Status: Deleted

Files detected
C:\Dokumente und Einstellungen\mm\Lokale Einstellungen\Temporary Internet Files\Content.IE5\MEMEAAQT\favicon[1].ico






Hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:21:45, on 15.09.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Programme\Network Associates\Common Framework\FrameworkService.exe
C:\Programme\Network Associates\VirusScan\Mcshield.exe
C:\Programme\Acronis\TrueImage\TrueImageMonitor.exe
C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe
C:\Programme\Network Associates\VirusScan\SHSTAT.EXE
C:\Programme\Network Associates\Common Framework\UpdaterUI.exe
C:\Programme\Java\jre1.6.0_02\bin\jusched.exe
C:\Programme\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
D:\programme\steam\steam.exe
C:\Programme\Network Associates\VirusScan\VsTskMgr.exe
D:\PROGRAMME\FRAPS.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programme\Google\Google Updater\GoogleUpdater.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
C:\Programme\Internet Explorer\IEXPLORE.EXE
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Sunbelt Software\CounterSpy\SBCSSvc.exe
C:\Programme\Sunbelt Software\CounterSpy\SBCSTray.exe
C:\Programme\Hijack This\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ch/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar1.dll
O4 - HKLM\..\Run: [AcronisTrueImage Monitor] "C:\Programme\Acronis\TrueImage\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [ShStatEXE] "C:\Programme\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Programme\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [Encrypted Disk Auto Mount] rundll32.exe edshell.dll,MountAll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Programme\Adobe\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Store file readme bash] C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\city about store file\grim mess.exe
O4 - HKLM\..\Run: [SBCSTray] C:\Programme\Sunbelt Software\CounterSpy\SBCSTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Steam] "d:\programme\steam\steam.exe" -silent
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [bend stop] C:\DOKUME~1\mm\ANWEND~1\MULTIB~1\Vc idle jugs.exe
O4 - HKCU\..\Run: [Fraps] D:\PROGRAMME\FRAPS.EXE
O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Google Updater.lnk = C:\Programme\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = mdomain.stogewi77.ch
O17 - HKLM\Software\..\Telephony: DomainName = mdomain.stogewi77.ch
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = mdomain.stogewi77.ch
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Framework-Dienst (McAfeeFramework) - Network Associates, Inc. - C:\Programme\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Programme\Network Associates\VirusScan\Mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Programme\Network Associates\VirusScan\VsTskMgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PMounter - Unknown owner - C:\Programme\Paragon\Ext2\PMounter.exe (file missing)
O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - C:\Programme\Sunbelt Software\CounterSpy\SBCSSvc.exe

--
End of file - 7558 bytes
Dieser Beitrag wurde am 15.09.2007 um 20:05 Uhr von AaRoN FrOsT editiert.
Seitenanfang Seitenende
15.09.2007, 22:58
Ehrenmitglied
Avatar Argus

Beiträge: 6028
#15 und das log von Deljob
__________
MfG Argus
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren: