TR/Agent.iob und TR/Downloader! |
||
|---|---|---|
| #0
| ||
|
30.10.2008, 09:35
Member
Beiträge: 29 |
||
 
|
|
|
|
30.10.2008, 09:37
Member
Themenstarter Beiträge: 29 |
#2
Hier schon mal ein Logfile!
Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:36:54, on 30.10.2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Programme\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Programme\IVT Corporation\BlueSoleil\BTNtService.exe C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\Explorer.EXE C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Programme\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe C:\WINDOWS\system32\rundll32.exe C:\Programme\Java\jre1.6.0_07\bin\jusched.exe C:\WINDOWS\System32\comrepl.exe C:\WINDOWS\system32\ctfmon.exe C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Programme\IVT Corporation\BlueSoleil\BlueSoleil.exe C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe C:\Programme\Mozilla Firefox\firefox.exe C:\Programme\WinRAR\WinRAR.exe C:\DOKUME~1\reiser\LOKALE~1\Temp\Rar$EX01.023\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [PMXInit] C:\WINDOWS\system32\pmxinit.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Programme\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [ComRepl] C:\WINDOWS\System32\comrepl.exe /com /w O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BlueSoleil.lnk = ? O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{A9B21741-6EAC-43A5-A598-8126226CDF20}: NameServer = 217.237.151.115 217.237.148.102 O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Programme\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: AntiVir PersonalEdition Classic Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing) O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Programme\IVT Corporation\BlueSoleil\BTNtService.exe O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe -- End of file - 6453 bytes |
|
|
|
|
|
|
30.10.2008, 10:57
Member
Themenstarter Beiträge: 29 |
#3
Virus Total hat folgendes gefunden:
Datei 77wwsbdchk02.exe empfangen 2008.10.30 10:48:17 (CET) Antivirus Version letzte aktualisierung Ergebnis AhnLab-V3 2008.10.30.1 2008.10.30 - AntiVir 7.9.0.10 2008.10.30 TR/Downloader.Gen Authentium 5.1.0.4 2008.10.30 - Avast 4.8.1248.0 2008.10.29 - AVG 8.0.0.161 2008.10.29 - BitDefender 7.2 2008.10.30 - CAT-QuickHeal 9.50 2008.10.29 - ClamAV 0.93.1 2008.10.30 - DrWeb 4.44.0.09170 2008.10.30 - eSafe 7.0.17.0 2008.10.29 Suspicious File eTrust-Vet 31.6.6180 2008.10.29 - Ewido 4.0 2008.10.29 - F-Prot 4.4.4.56 2008.10.29 - F-Secure 8.0.14332.0 2008.10.30 W32/Horst.gen33 Fortinet 3.117.0.0 2008.10.28 - GData 19 2008.10.30 - Ikarus T3.1.1.44.0 2008.10.30 - K7AntiVirus 7.10.511 2008.10.29 - Kaspersky 7.0.0.125 2008.10.30 - McAfee 5418 2008.10.30 - Microsoft 1.4005 2008.10.30 - NOD32 3569 2008.10.30 - Norman 5.80.02 2008.10.29 W32/Horst.gen33 Panda 9.0.0.4 2008.10.29 Suspicious file PCTools 4.4.2.0 2008.10.29 - Prevx1 V2 2008.10.30 - Rising 21.01.32.00 2008.10.30 - SecureWeb-Gateway 6.7.6 2008.10.30 Trojan.Downloader.Gen Sophos 4.35.0 2008.10.30 - Sunbelt 3.1.1764.1 2008.10.29 - Symantec 10 2008.10.30 - TheHacker 6.3.1.1.134 2008.10.30 - TrendMicro 8.700.0.1004 2008.10.30 PAK_Generic.001 VBA32 3.12.8.9 2008.10.30 - ViRobot 2008.10.30.1445 2008.10.30 - VirusBuster 4.5.11.0 2008.10.29 - weitere Informationen File size: 25600 bytes MD5...: be1e7d80bcfb30ffe535eef4bb0710c3 SHA1..: e5c45f101e74be5f86ac18b80ba68fa856ef5fa1 SHA256: 92b2bbab036aeaa5272663fb4af0fbaeb9444edf3bfca26078a58db7e9dd2555 SHA512: ec11bc40b6c30fcdf1824bb571b98ec19f3b01b1fe2a37d9ad7bb4f3fcb3325d<br>6442511ce969119a752197e35d0ae7707cb84c61dbea94c770c4590852665c1d PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser TrID..: File type identification<br>UPX compressed Win32 Executable (39.5%)<br>Win32 EXE Yoda's Crypter (34.3%)<br>Win32 Executable Generic (11.0%)<br>Win32 Dynamic Link Library (generic) (9.8%)<br>Generic Win/DOS Executable (2.5%) PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x414c10<br>timedatestamp.....: 0x490871e1 (Wed Oct 29 14:23:29 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 3 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>UPX0 0x1000 0xe000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br>UPX1 0xf000 0x6000 0x5e00 7.88 f462a1fee9ffa73ac4ce9117a1d2295c<br>UPX2 0x15000 0x1000 0x200 4.04 48be1f66fb1ca9c4a4ac75a4fb5f4142<br><br>( 7 imports ) <br>> KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, VirtualAlloc, VirtualFree, ExitProcess<br>> ADVAPI32.dll: RegCloseKey<br>> MSVCP71.dll: __Nomemory@std@@YAXXZ<br>> MSVCR71.dll: rand<br>> ole32.dll: CoInitialize<br>> WININET.dll: InternetOpenA<br>> WS2_32.dll: -<br><br>( 0 exports ) <br> packers (Kaspersky): PE_Patch.UPX, UPX packers (F-Prot): UPX was kann ich damit anfangen? Danke Gruß Jose83 |
|
|
|
|
|
|
30.10.2008, 11:22
Ehrenmitglied
 Beiträge: 6028 |
#4
Poste mal die daten von: http://board.protecus.de/t23187.htm
Achte darauf das Hijack This bei dir in den Tempfiles steht,da HJ backups macht koennen diese verloren gehen Mach es wie es in der Anleitung steht __________ MfG Argus |
|
|
|
|
|
|
30.10.2008, 12:17
Member
Themenstarter Beiträge: 29 |
#5
Hier folgende logs:
Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:09:40, on 30.10.2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Programme\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Programme\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe C:\WINDOWS\system32\rundll32.exe C:\Programme\Java\jre1.6.0_07\bin\jusched.exe C:\WINDOWS\System32\comrepl.exe C:\WINDOWS\system32\ctfmon.exe C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Programme\IVT Corporation\BlueSoleil\BlueSoleil.exe C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Programme\IVT Corporation\BlueSoleil\BTNtService.exe C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\explorer.exe C:\Programme\Mozilla Firefox\firefox.exe C:\Programme\WinRAR\WinRAR.exe C:\DOKUME~1\reiser\LOKALE~1\Temp\Rar$EX00.662\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [PMXInit] C:\WINDOWS\system32\pmxinit.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Programme\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [ComRepl] C:\WINDOWS\System32\comrepl.exe /com /w O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [swg] C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BlueSoleil.lnk = ? O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{A9B21741-6EAC-43A5-A598-8126226CDF20}: NameServer = 217.237.151.115 217.237.148.102 O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Programme\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: AntiVir PersonalEdition Classic Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing) O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Programme\IVT Corporation\BlueSoleil\BTNtService.exe O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe -- End of file - 6136 bytes ComboFix 08-10-30.04 - reiser 2008-10-30 11:53:58.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1031.18.609 [GMT 1:00] ausgeführt von:: C:\Dokumente und Einstellungen\reiser\Desktop\ComboFix.exe * Neuer Wiederherstellungspunkt wurde erstellt . ((((((((((((((((((((((( Dateien erstellt von 2008-09-28 bis 2008-10-30 )))))))))))))))))))))))))))))) . 2008-10-29 22:49 . 2008-10-29 22:59 <DIR> d-a------ C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP 2008-10-24 11:35 . 2008-10-24 11:35 <DIR> d-------- C:\Programme\CCleaner 2008-10-24 10:30 . 2008-10-15 17:35 337,408 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll 2008-10-22 10:36 . 2004-08-04 00:57 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2008-10-22 10:16 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\system32\de 2008-10-22 10:16 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\system32\bits 2008-10-22 10:16 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\l2schemas 2008-10-22 10:13 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\ServicePackFiles 2008-10-16 05:34 . 2008-09-08 11:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys 2008-10-16 05:33 . 2008-08-14 14:19 2,191,488 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe 2008-10-16 05:33 . 2008-08-14 14:19 2,147,840 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe 2008-10-16 05:33 . 2008-08-14 14:19 2,068,352 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe 2008-10-16 05:33 . 2008-08-14 14:19 2,026,496 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe 2008-10-16 05:33 . 2008-09-15 16:24 1,846,528 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys 2008-10-15 07:51 . 2008-10-15 07:51 <DIR> d-------- C:\Programme\XnView 2008-10-15 07:51 . 2008-10-15 07:56 <DIR> d-------- C:\Dokumente und Einstellungen\Xaver\Anwendungsdaten\XnView 2008-10-14 12:04 . 2004-07-17 21:55 129,045 --------- C:\WINDOWS\system32\drivers\cxthsfs2.cty 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\UC.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\RAR.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\PKZIP.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\PKUNZIP.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\NOCLOSE.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\LHA.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\ARJ.PIF 2008-10-14 08:47 . 2008-10-14 08:50 441 --a------ C:\WINDOWS\wincmd.ini 2008-09-16 23:24 . 2008-09-16 23:24 <DIR> d-------- C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\EFSoftware 2008-09-09 14:41 . 2008-09-09 16:58 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy 2008-09-08 12:22 . 2008-09-08 12:22 <DIR> d-------- C:\Programme\Lavasoft 2008-09-08 12:22 . 2008-09-08 12:22 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard 2008-09-08 12:22 . 2008-09-08 12:24 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lavasoft 2008-09-08 12:10 . 2008-09-08 12:10 <DIR> d-------- C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\Lavasoft 2008-09-04 15:25 . 2008-10-30 10:59 <DIR> d-------- C:\Programme\Malwarebytes' Anti-Malware 2008-09-04 15:25 . 2008-09-04 15:25 <DIR> d-------- C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\Malwarebytes 2008-09-04 15:25 . 2008-09-04 15:25 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes 2008-09-04 15:25 . 2008-10-22 16:10 38,496 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2008-09-04 15:25 . 2008-10-22 16:10 15,504 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-09-04 14:54 . 2008-09-04 14:54 <DIR> d--h----- C:\WINDOWS\PIF 2008-09-04 14:38 . 2008-09-04 14:38 <DIR> d-------- C:\WINDOWS\Sun . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-10-30 09:21 --------- d-----w C:\Programme\eMule 2008-10-29 12:49 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Google Updater 2008-09-16 22:38 --------- d-----w C:\Programme\Dealio 2008-09-15 15:24 1,846,528 ----a-w C:\WINDOWS\system32\win32k.sys 2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys 2008-09-04 09:12 --------- d-----w C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\U3 2008-08-26 07:57 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-08-23 10:35 65,536 ----a-w C:\WINDOWS\system32\comrepl.exe 2008-08-14 13:19 2,191,488 ----a-w C:\WINDOWS\system32\ntoskrnl.exe 2008-08-14 13:19 2,068,352 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe 2008-07-18 20:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll 2008-07-18 20:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe 2008-07-18 20:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll 2008-07-18 20:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll 2008-07-18 20:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll 2008-07-18 20:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll 2008-07-18 20:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll 2008-07-18 20:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll 2008-07-12 02:52 233,472 ----a-w C:\WINDOWS\system32\TubeFinder.exe 2008-07-07 20:26 253,952 ----a-w C:\WINDOWS\system32\es.dll . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe" [2006-06-01 94208] "swg"="C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-04-02 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-20 266497] "PMXInit"="C:\WINDOWS\system32\pmxinit.exe" [2002-08-21 745543] "!AVG Anti-Spyware"="C:\Programme\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 6731312] "NeroFilterCheck"="C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648] "Google Desktop Search"="C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe" [2008-09-30 29744] "HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb06.exe" [2002-07-11 188416] "Adobe Reader Speed Launcher"="C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "SunJavaUpdateSched"="C:\Programme\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784] "ComRepl"="C:\WINDOWS\System32\comrepl.exe" [2008-08-23 65536] "BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 C:\WINDOWS\system32\bthprops.cpl] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360] C:\Dokumente und Einstellungen\All Users\Startmen\Programme\Autostart\ BlueSoleil.lnk - C:\Programme\IVT Corporation\BlueSoleil\BlueSoleil.exe [2008-05-14 1183744] [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Google Updater.lnk] path=C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Google Updater.lnk backup=C:\WINDOWS\pss\Google Updater.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^WinZip Quick Pick.lnk] path=C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\WinZip Quick Pick.lnk backup=C:\WINDOWS\pss\WinZip Quick Pick.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] --------- 2007-11-20 14:29 360448 C:\Programme\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] --a------ 2008-04-02 17:36 68856 C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Programme\\eMule\\emule.exe"= "C:\\Programme\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"= "C:\\Casino\\CASINO-CLUB Deutsch\\casino.exe"= "C:\\Programme\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"= R3 AVMWAN;AVM NDIS WAN CAPI-Treiber;C:\WINDOWS\system32\DRIVERS\avmwan.sys [2001-08-17 37568] R3 fpcibase;AVM ISDN-Controller FRITZ!Card PCI;C:\WINDOWS\system32\DRIVERS\fpcibase.sys [2001-08-17 444416] R3 powervr;powervr;C:\WINDOWS\system32\DRIVERS\powervr.sys [2002-08-22 566336] S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245;C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe [2008-09-30 29744] S3 s217bus;Sony Ericsson Device 217 driver (WDM);C:\WINDOWS\system32\DRIVERS\s217bus.sys [2007-11-02 83496] S3 s217mdfl;Sony Ericsson Device 217 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\s217mdfl.sys [2007-11-02 15016] S3 s217mdm;Sony Ericsson Device 217 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\s217mdm.sys [2007-11-02 109992] S3 s217mgmt;Sony Ericsson Device 217 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\s217mgmt.sys [2007-11-02 103976] S3 s217nd5;Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (NDIS);C:\WINDOWS\system32\DRIVERS\s217nd5.sys [2007-11-02 24872] S3 s217obex;Sony Ericsson Device 217 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\s217obex.sys [2007-11-02 100008] S3 s217unic;Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (WDM);C:\WINDOWS\system32\DRIVERS\s217unic.sys [2007-11-02 105896] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bd649220-37c9-11dd-8834-000a9417386f}] \Shell\AutoRun\command - F:\LaunchU3.exe -a . . ------- Zusätzlicher Suchlauf ------- . FireFox -: Profile - C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\Mozilla\Firefox\Profiles\n9bllabo.default\ FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q= FF -: plugin - C:\Programme\Google\Google Updater\2.4.1368.5602\npCIDetect13.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-30 11:57:59 Windows 5.1.2600 Service Pack 3 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostarteinträge... Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** . ------------------------ Weitere laufende Prozesse ------------------------ . C:\Programme\Lavasoft\Ad-Aware\aawservice.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\rundll32.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Programme\IVT Corporation\BlueSoleil\BTNtService.exe C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\system32\verclsid.exe . ************************************************************************** . Zeit der Fertigstellung: 2008-10-30 12:02:08 - PC wurde neu gestartet ComboFix-quarantined-files.txt 2008-10-30 11:02:02 Vor Suchlauf: 12 Verzeichnis(se), 22.553.939.968 Bytes frei Nach Suchlauf: 12 Verzeichnis(se), 22,563,020,800 Bytes frei WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect 168 --- E O F --- 2008-10-29 14:47:47 Malwarebytes' Anti-Malware 1.30 Datenbank Version: 1338 Windows 5.1.2600 Service Pack 3 30.10.2008 11:47:38 mbam-log-2008-10-30 (11-47-23).txt Scan-Methode: Vollständiger Scan (C:\|) Durchsuchte Objekte: 105034 Laufzeit: 46 minute(s), 31 second(s) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 19 Infizierte Dateien: 814 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: C:\Casino (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\data (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\sfx (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\logs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sfx (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\download (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\download\delta (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\download\modules (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\download\xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\logs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs (Adware.Casino) -> No action taken. Infizierte Dateien: C:\Casino\Casino Club Poker\blackjack.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\browser.exe (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\browserhost.exe (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\cacerts.crt (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\cam.cas (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\cardlib.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\common.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\db.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\devlib.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\devlibcomm.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\filemap.lst (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\fivecard.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\games.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\gsid.txt (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\id.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\INSTALL.LOG (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\languages.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\libeay32.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\licens.txt (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\mfc80.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\microsoft.vc80.crt.manifest (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\microsoft.vc80.mfc.manifest (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\modstatus.lst (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\mp3dec.asi (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\mss32.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\msvcp80.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\msvcr80.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\navigator.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\omaha.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\options.cfg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\poker.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\poker.exe (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sc.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\shfolder.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\srvmap.lst (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\ssleay32.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\texas.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\UNWISE.EXE (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\UNWISE.INI (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\update.exe (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\vistaelevator.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\webdollar.exe (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xml.dll (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\0.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\1.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\10.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\11.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\12.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\13.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\14.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\15.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\16.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\17.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\18.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\19.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\2.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\20.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\21.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\22.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\23.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\24.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\25.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\26.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\27.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\28.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\29.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\3.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\30.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\31.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\32.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\33.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\34.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\35.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\36.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\37.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\38.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\39.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\4.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\40.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\41.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\42.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\43.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\44.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\45.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\46.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\47.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\48.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\49.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\5.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\50.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\51.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\6.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\7.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\8.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\9.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\allin_popup.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\allin_popup_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\archive.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\archive_ff.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\avatar.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\b.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\base.css (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\bj_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\bkg.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\bkg_playerlist.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\bkg_playernotes.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\browserdetect.js (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_blackjack.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_close.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_filters_big.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_filters_small.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_game.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_game.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_general.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_join.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_join.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_join_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_main.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_medium.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_minmax.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_sublevels_big.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_sublevels_small.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_timebank.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\but_timebank_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\caret.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\chatbubble.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\chatpanel_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\chips.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\decktype_settings.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\edit.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\fcs_bkg5.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\fcs_bkg8.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\fc_bkg5.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\gamelimits1.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\gamelimits2.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\gamelimits3.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\game_bjframe.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\game_blackjack.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\game_summary.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\gre_font_10p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\gre_font_11p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\hand.html (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\hand.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\hand_cursor.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\hand_ff.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\harrow.cur (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\headers_bkg.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\headers_text.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\history.html (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\history.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\history_ff.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\icon_mute_unmute_notes.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\input_additional.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\input_additional_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\input_boxes.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\input_lists.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\language.xml (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\language.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\languages.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\language_ff.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\main.js (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\main_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\main_listhi.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\menu_buttons.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\menu_window_headers.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\navigator_bg.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\navigator_buttons.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\navigator_moneytext.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\navigator_timer.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\oh_bkg10.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\oh_bkg5.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_big.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_bottom.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_game_big.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_game_small.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_game_small.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_game_small_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_game_top.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_left.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_medium.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_moretables.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_texts.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_top.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_top_big.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\panel_top_network_health.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\pointer.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_bkg_mini.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_cardback.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_cards.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_cards_4c.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_cards_large.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_cards_large_4c.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_deckside.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_font_10p_bold.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_font_10p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_font_11p_bold.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_font_11p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_makechoice.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_makechoice_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_pucks.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\poker_pucks_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\pol_font_10p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\pol_font_11p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\popupbkg.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\popups.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_actions.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_actions_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_active.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_active.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_active_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_inactive.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_inactive.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_inactive_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_mute.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_note.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\position_numbers.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\pot_bets.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\progress_ani.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\promo-test1.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\quickplay_items.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\rus_font_10p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\rus_font_11p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\sc_bkg5.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\sc_bkg8.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tablelimits_bkg_mini.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tablelimits_header.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tablelimits_minmax.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tabs_big.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tabs_small.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tab_casino.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tel_bkg5.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\text.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\timeslider.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\timeslider_mini.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tournamentinfo_bkg.png (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tur_font_10p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tur_font_11p_regular.xbf (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tx_bkg10.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\tx_bkg5.jpg (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\user.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\user_ff.xsl (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\white_line.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\win_graphics.bmp (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\xml.gif (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\data\xml_decoder.js (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\data\but_main.bmp.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\data\history.html.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\data\input_additional.bmp.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\data\main.js.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\data\poker_font_11p_bold.xbf.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\blackjack_main.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\fcs_main.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\fc_main.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\filerefs.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\gameclient.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\message.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\mtt_lobby.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\sc_main.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\soko_main.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\download\xrs\tel_main.xrs.bos (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sfx\c_button.wav (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sfx\c_chip.wav (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sfx\c_deal.mp3 (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sfx\c_deal.wav (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sfx\p_alert.wav (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\sfx\p_checkknock.wav (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\blackjack_game_panel.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\blackjack_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\common.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\ext_clientspecific.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\ext_game.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\ext_general.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\ext_mc_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\ext_navigator.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\fcs_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\fc_join.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\fc_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\filemap.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\filerefs.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\gameclient.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\game_common.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\game_common_message.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\game_common_mini.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\game_panel.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\game_panel_mini.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\gizmo.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\mc_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\message.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\mtt_join.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\mtt_lobby.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\navigator.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\omaha_join.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\omaha_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\omaha_main_mini.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\optdef.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\poker_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\sc_join.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\sc_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\soko_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\tel_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\texas_join.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\texas_main.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\texas_main_mini.xrs (Adware.Casino) -> No action taken. C:\Casino\Casino Club Poker\xrs\tournament_join.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\arialn_wglb.ttf (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\arial_wgl.ttf (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\arial_wgl_b.ttf (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\bj.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\browser.exe (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\browser.ini (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\cam.cas (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\cardlib.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\casino.exe (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\clientcore.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\clientscommon.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\common.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\commondlg.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\countries.lst (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\cximagecrt.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\db.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\devlib.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\devlibcomm.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\download.log (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\filemap.lst (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\game.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\games.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gamescommon.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gamestatus.dat (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gui2lobby.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\INSTALL.LOG (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\installerclient.exe (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\ipwssl6.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\license.txt (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\misc.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\modstatus.lst (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\mp3dec.asi (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\mss32.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\msvcp71.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\msvcr71.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\msvcrt.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\phist.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\playermessage.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\ro.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\singleplayer.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\srvmap.lst (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\startcasino.exe (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\timer.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\unicows.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\UNWISE.EXE (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\UNWISE.INI (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\update.exe (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\vp2.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\webbrowsercontrol.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\webcashier.ini (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\webdollar.ini (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xml.dll (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\download\modules\ke.bos (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_als_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_als_paylines_hi.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_als_paylines_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_als_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_as_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_as_paylines_on.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_as_reel_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bay_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bay_paylines_hi_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bay_symbols_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_arrow.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg1.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg1_btndata.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg2.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg2_btndata.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg3.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg3_btndata.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg4.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg4_btndata.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg5.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_bkg5_btndata.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_cards.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bj_lightmap.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bms3_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bms3_paylines_hi_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bms3_reel_symbols_hist.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bp_denominations.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_bp_hist_cards.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_cf_hist_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_cf_hist_paylines.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_cf_hist_symbols.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_bms_paylines_hist.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_cardback.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_free_rounds_digits.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_hist.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_blue.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_blue_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_grn.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_grn_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_lila.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_lila_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_red.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_red_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_std.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_std_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_ylw.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_mark_s_ylw_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_panel_markers.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_player_icons.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_player_icons_small.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_practice.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_ro_bigball.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_ro_historyled.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_ro_player_color.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_ro_smallball.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_ro_winmarker.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_small_digits.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_timer.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_vp_bonus_win_frame.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_vp_suits.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_common_vp_texts2.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_cr_hist_map.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_dw_hist_cards.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_euro_hist_map.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fbs_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fbs_paylines_on.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fbs_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fmx_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fmx_paylines_on.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fmx_reel_symbols.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_foe_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_foe_paylines_on.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_foe_reel_symbols.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_animclose.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_btndata.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_fillmap.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_frame.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_hist_map.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_numbers.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_fro_wheelanim.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hcs_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hcs_paylines_on.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hcs_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hhs_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hhs_paylines_hi.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hhs_paylines_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hhs_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hnm_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hnm_paylines_hi_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_hnm_reel_symbols_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jbs_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jbs_paylines_hi.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jbs_paylines_low.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jbs_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jjs2_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jjs2_paylines_on_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jjs2_reel_symbols_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jjs2_symbol_frame.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_job_hist_cards.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jpp_hist_cards.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_bonus_buttons_hi.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_bonus_game_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_buttons.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_card_back.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_card_deck.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_card_frames.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_card_masks.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_combinations_low.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_denominations.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_digits_big.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_held_text.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_hist_cards.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_hold_buttons.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_logo_types.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_texts.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_jp_winner_anim.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_ke_hist_map.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_ke_hist_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_kzo_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_kzo_paylines_hi_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_kzo_symbols_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_lcs_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_lcs_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mds_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mds_paylines_hi_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mds_symbols_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mfs_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mfs_paylines_on.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mfs_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mms_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mms_paylines_hilite.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mms_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mw2_digits_hist.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mw2_symbols_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mw2_symbols_hi_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_mw2_win_hist.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_sd_hist_cards.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_sd_hist_card_frame_green.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_sd_hist_card_frame_red.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_sd_hist_card_frame_yellow.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_sh_hist_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_sh_hist_paylines.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_sh_hist_reelsymbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_ss_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_ss_payline_hist.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_ss_reel_symbols_hist.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_tts_bkg.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_tts_payline_on.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_tts_symbols.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_xgs_bkg_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_xgs_paylines_hi_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\game_xgs_symbols_hist.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_background.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_background_anim.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_bannerbackup.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_bannercurrent.JPG (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_browser.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_caret.bmp (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_currency_button.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_dlg_icons.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_edit.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_games_buttons.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_ba_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_ba_icon_big.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_bjtao_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_bj_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_bj_ss_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_cp_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_cr_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_euro_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_fro_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_mba_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_pg_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_ro_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_rtro_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_sb_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_gui2_jt_war_icon.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_hand_cursor.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_layout.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_layout_specific.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_lobby_buttons.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_lobby_promotions.jpg (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_login_image.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_logo.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_message_icons.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_personalinfo.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_pointer.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_tournament_banner.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_tournament_logo.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\gfx\gui_tournament_promo.png (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\club1.mid (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_bust.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_checkbj.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_dbust.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_dhbj.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_dhnbj.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_idnpay.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_insur.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_iwin.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_bj_phbj.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_0.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_00.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_1.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_10.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_11.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_12.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_13.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_14.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_15.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_16.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_17.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_18.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_19.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_2.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_20.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_21.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_22.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_23.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_24.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_25.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_26.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_27.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_28.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_29.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_3.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_30.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_31.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_32.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_33.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_34.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_35.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_36.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_4.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_5.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_6.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_7.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_8.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_9.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_betexc.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_betlow.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_button.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_chip.wav (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_counter.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_deal.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_dealrw.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_flipcard.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_machine_btn.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_mkchoice.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_nmbet.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_ping.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_place.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_plyw.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_push.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_ro_black.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_ro_bounc.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_ro_even.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_ro_odd.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_ro_red.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_ro_roll.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_turn.wav (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_win1.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\game_common_win2.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_alert.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_cashier_open.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_confirm.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_folder_switch.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_games_open.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_game_download.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_game_select.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_game_select2.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_game_start.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_level1_open.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_message_notification.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_sound_on.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_thank_you.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_thank_you_voice.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_welcome.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_welcome_voice.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\sfx\gui_window_open.mp3 (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_casino_banner.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_casino_bannerdefault.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_casino_conditions.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_casino_defaultsettings.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_casino_settings.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_char_convert.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_common_colors.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_common_fonts.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_common_game.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_common_main.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_common_validinput.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_currency_format.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_currency_iso.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_filemap.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_installer_gamepackages.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_language_iso.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_lobby.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_playerinfovalidator.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\config_product_id.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_als_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_als_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_as_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_as_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bay_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bay_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ba_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ba_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bjsd_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bjsd_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bjss_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bjss_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bjtao_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bjtao_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bj_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bj_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bj_main.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bj_panel.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bms3_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bms3_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bp_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_bp_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_cf_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_cf_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ch_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ch_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_chat.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_defaultsettings.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_free_games.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_message.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_tournamentcomponents.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_tournamentdefines.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_tournamentinfo.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_common_vp_panel.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_cp_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_cp_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_cr_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_cr_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_dw_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_dw_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ebj_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ebj_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_euro_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_euro_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fb_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fb_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fmx_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fmx_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_foe_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_foe_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fro_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fro_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fro_main.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_fro_panel.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_hcs_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_hcs_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_hhs_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_hhs_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_hnm_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_hnm_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jbs_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jbs_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jjs2_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jjs2_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_job_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_job_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jpp_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jpp_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jp_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jp_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_jp_main.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ke_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ke_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_kzo_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_kzo_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_lcs_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_lcs_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mba_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mba_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mds_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mds_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mfs_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mfs_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mms_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mms_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mw2_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_mw2_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_rtro_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_rtro_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_sd_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_sd_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_session_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_sh_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_sh_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ss_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_ss_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_tob_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_tob_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_tts_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_tts_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_war_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_war_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_xgs_history.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\game_xgs_limits.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_background.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_balanceinfo.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_banner.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_cashier.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_casinomenu.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_changepassword.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_compprogram.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_connecting.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_exitcasino.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_freegames.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_gui2_lobby.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_gui2_tableselect.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_gui2_topnav.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_introscreen.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_keycode.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_license.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_loading.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_login.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_lostpassword.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_menupopup.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_newplayer.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_playerhistory.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_playerinfo_create.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_playerinfo_update.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_playermessage.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_playersonline.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_referafriend.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_registrationcomplete.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_sounddef.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_casino_tournaments.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_common_bitmaps.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_common_bitmap_templates.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_common_main.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_common_messagedialog.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_gui2_bitmap_templates.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_include_keycode.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_include_newplayer.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_include_playerinfo_create.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_include_playerinfo_data.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_background.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_download.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_existingplayer.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_exit.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_finish.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_gamepackage.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_keycode.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_license.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_newplayer.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_playerinfo_create.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\gui_installer_registrationcomplete.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\string_customer.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\string_games.xrs (Adware.Casino) -> No action taken. C:\Casino\CASINO-CLUB Deutsch\xrs\string_gui.xrs (Adware.Casino) -> No action taken. Ad-Aware Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742) Adobe Flash Player ActiveX Adobe Flash Player Plugin Adobe Reader 8.1.2 - Deutsch Apple Software Update Avanquest update AVG Anti-Spyware 7.5 Avira AntiVir Personal - Free Antivirus BlueSoleil Casino Club Poker CASINO-CLUB Deutsch CCleaner (remove only) CDex extraction audio C-Media WDM Audio Driver DVD Shrink 3.2 eMule Free YouTube to Mp3 Converter version 3.1 Google Desktop Google Earth Google Updater Hercules Tools HijackThis 2.0.2 Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix für Windows Internet Explorer 7 (KB947864) Hotfix für Windows Media Player 11 (KB939683) Hotfix für Windows XP (KB952287) hp deskjet 5550 series (nur entfernen) Java(TM) 6 Update 7 KYRO Malwarebytes' Anti-Malware Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office Professional Edition 2003 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Mozilla Firefox (3.0.3) Nero 7 Ultra Edition Sicherheitsupdate für Windows Internet Explorer 7 (KB938127) Sicherheitsupdate für Windows Internet Explorer 7 (KB942615) Sicherheitsupdate für Windows Internet Explorer 7 (KB944533) Sicherheitsupdate für Windows Internet Explorer 7 (KB950759) Sicherheitsupdate für Windows Internet Explorer 7 (KB953838) Sicherheitsupdate für Windows Internet Explorer 7 (KB956390) Sicherheitsupdate für Windows Media Player 11 (KB936782) Sicherheitsupdate für Windows Media Player 11 (KB954154) Sicherheitsupdate für Windows XP (KB923789) Sicherheitsupdate für Windows XP (KB938464) Sicherheitsupdate für Windows XP (KB941569) Sicherheitsupdate für Windows XP (KB946648) Sicherheitsupdate für Windows XP (KB950760) Sicherheitsupdate für Windows XP (KB950762) Sicherheitsupdate für Windows XP (KB950974) Sicherheitsupdate für Windows XP (KB951066) Sicherheitsupdate für Windows XP (KB951376) Sicherheitsupdate für Windows XP (KB951376-v2) Sicherheitsupdate für Windows XP (KB951698) Sicherheitsupdate für Windows XP (KB951748) Sicherheitsupdate für Windows XP (KB952954) Sicherheitsupdate für Windows XP (KB953839) Sicherheitsupdate für Windows XP (KB954211) Sicherheitsupdate für Windows XP (KB956391) Sicherheitsupdate für Windows XP (KB956803) Sicherheitsupdate für Windows XP (KB956841) Sicherheitsupdate für Windows XP (KB957095) Sicherheitsupdate für Windows XP (KB958644) Sony Ericsson PC Suite 3.108.00 Uninstall 1.0.0.1 Update für Windows XP (KB951072-v2) Update für Windows XP (KB951978) Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Format SDK Hotfix - KB891122 Windows Media Player 11 Windows Media Player 11 Windows XP Service Pack 3 WinRAR WinZip 11.1 XMedia Recode 1.0.1.1 XnView 1.95 Bitte um Hilfe! Danke im voraus! Dieser Beitrag wurde am 30.10.2008 um 12:26 Uhr von Jose83 editiert.
|
|
|
|
|
|
|
30.10.2008, 12:23
Ehrenmitglied
Beiträge: 6028 |
#6
Virustotal
Verborgene Dateien sichtbar machen Arbeitsplatz öffnen >Extras >Ordneroptionen >den Reiter "Ansicht" >Versteckte Dateien und Ordner >"alle Dateien und Ordner anzeigen" aktivieren und >Extras >Ordneroptionen >den Reiter "Ansicht" >Dateien und Ordner >"Geschützte Systemdateien ausblenden (empfohlen)" deaktivieren Prüfe mal diese Datei(en) bei Virustotal http://www.virustotal.com/flash/index_en.html Zitat C:\WINDOWS\System32\comrepl.exeNote: Wenn bei ViruTotal die Meldung kommt ” Die Datei wurde bereits analysiert “wähle „Analysiere die Datei“ Poste nur die URL am Ende __________ MfG Argus |
|
|
|
|
|
|
30.10.2008, 12:36
Member
Themenstarter Beiträge: 29 |
#7
Was genau meinst du mit der URL am Ende? Da ist so viel!
|
|
|
|
|
|
|
30.10.2008, 12:41
Member
Themenstarter Beiträge: 29 |
#8
AhnLab-V3 2008.10.30.1 2008.10.30 -
AntiVir 7.9.0.10 2008.10.30 - Authentium 5.1.0.4 2008.10.30 - Avast 4.8.1248.0 2008.10.29 - AVG 8.0.0.161 2008.10.29 - BitDefender 7.2 2008.10.30 - CAT-QuickHeal 9.50 2008.10.29 - ClamAV 0.93.1 2008.10.30 - DrWeb 4.44.0.09170 2008.10.30 - eSafe 7.0.17.0 2008.10.29 - eTrust-Vet 31.6.6180 2008.10.29 - Ewido 4.0 2008.10.30 - F-Prot 4.4.4.56 2008.10.29 - F-Secure 8.0.14332.0 2008.10.30 - Fortinet 3.117.0.0 2008.10.28 - GData 19 2008.10.30 - Ikarus T3.1.1.44.0 2008.10.30 Trojan.Win32.Tervemoy.A K7AntiVirus 7.10.511 2008.10.29 - Kaspersky 7.0.0.125 2008.10.30 Heur.Trojan.Generic McAfee 5418 2008.10.30 - Microsoft 1.4005 2008.10.30 Trojan:Win32/Tervemoy.A NOD32 3569 2008.10.30 - Norman 5.80.02 2008.10.29 - Panda 9.0.0.4 2008.10.29 Suspicious file PCTools 4.4.2.0 2008.10.29 - Prevx1 V2 2008.10.30 Cloaked Malware Rising 21.01.32.00 2008.10.30 - SecureWeb-Gateway 6.7.6 2008.10.30 - Sophos 4.35.0 2008.10.30 - Sunbelt 3.1.1764.1 2008.10.29 - Symantec 10 2008.10.30 - TheHacker 6.3.1.1.134 2008.10.30 - TrendMicro 8.700.0.1004 2008.10.30 - VBA32 3.12.8.9 2008.10.30 - ViRobot 2008.10.30.1445 2008.10.30 - VirusBuster 4.5.11.0 2008.10.29 - weitere Informationen File size: 65536 bytes MD5...: 789fcc97b264ce40a5fee6979b02b183 SHA1..: 966509d4d8fc39a27fd86813a0689cb8b88f4b9a SHA256: acf8500a3a4de98585207379b4504363dabbfe29218a452c3092364326e47ff0 SHA512: 28cb866a7b2ee1d0865fa63ce9a264a6c5aa26368d60354f37626c17132133db 80bf1b7376a87cd7d9cd221e179d2c47f8e04693dc32a2c7a29536e509645da8 PEiD..: - TrID..: File type identification Win32 Executable MS Visual C++ (generic) (65.2%) Win32 Executable Generic (14.7%) Win32 Dynamic Link Library (generic) (13.1%) Generic Win/DOS Executable (3.4%) DOS Executable Generic (3.4%) PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x406e3e timedatestamp.....: 0x48afe79e (Sat Aug 23 10:34:06 2008) machinetype.......: 0x14c (I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0xb65f 0xc000 6.26 545de66fdbc6a4d9fd01c53c71f6ca71 .rdata 0xd000 0x1b12 0x2000 4.65 27784aabba6a9e2bdb067789560d1f7f .data 0xf000 0x49d8 0x1000 1.49 6cfd715424c32ff02bc7a92c050bcbfb ( 5 imports ) > USER32.dll: LoadImageA > ADVAPI32.dll: RegCreateKeyExA, RegQueryValueExA, RegGetKeySecurity, RegOpenKeyExA, RegSetValueExA, RegCloseKey > WS2_32.dll: - > WININET.dll: HttpQueryInfoA, InternetOpenA, InternetOpenUrlA, InternetReadFile, InternetCloseHandle > KERNEL32.dll: ExitProcess, GetSystemInfo, VirtualProtect, GetLocaleInfoA, FlushFileBuffers, GetStringTypeW, GetStringTypeA, LCMapStringW, MultiByteToWideChar, LCMapStringA, GetFileTime, GetSystemDirectoryA, GetFileType, OpenProcess, CreateDirectoryA, GetProcessPriorityBoost, GetVolumeInformationA, GetStartupInfoA, OpenMutexA, CreateMutexA, CloseHandle, GetDriveTypeA, GetLogicalDriveStringsA, Sleep, GetLocalTime, LoadLibraryA, GetModuleFileNameA, SetEnvironmentVariableA, GetEnvironmentVariableA, ReadFile, CreateFileA, WriteFile, CreateProcessA, GlobalFree, CopyFileA, CreateThread, GlobalAlloc, GetCurrentProcess, GetProcAddress, RtlUnwind, GetModuleHandleA, TerminateProcess, GetCommandLineA, GetVersionExA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, GetStdHandle, UnhandledExceptionFilter, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, WideCharToMultiByte, GetLastError, GetEnvironmentStringsW, SetHandleCount, HeapDestroy, HeapCreate, VirtualFree, HeapFree, SetFilePointer, HeapAlloc, InterlockedExchange, VirtualQuery, SetUnhandledExceptionFilter, IsBadReadPtr, IsBadWritePtr, IsBadCodePtr, HeapReAlloc, HeapSize, GetACP, GetOEMCP, GetCPInfo, VirtualAlloc, SetStdHandle ( 0 exports ) Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=2329C36800DC7F2A00060106D0CE6E0064261AE8 Sorry ich musste nicht genau was du meinst! Hab alles kopiert! Hoffe du kannst trotzdem helfen! |
|
|
|
|
|
|
30.10.2008, 13:07
Ehrenmitglied
Beiträge: 6028 |
#9
Schliesse alle Fenster und starte Hijack This
Klicke: Do a Systemscan only Setze ein Häckchen in das Kästchen vor den genannten Eintrag bei Zitat O4 - HKLM\..\Run: [ComRepl] C:\WINDOWS\System32\comrepl.exe /com /wklicke: Fix checked Dein Internet Explorer muss geschlossen wenn Du Fix Checked klickst Den folgenden Text in den Editor (Start - Zubehör - Editor) kopieren und als cfscript.txt mit 'Speichern unter' auf dem Desktop. Gebe bei Dateityp 'Alle Dateien' an. Du solltest jetzt auf dem Desktop diese Datei finden. Zitat Registry::CFScript.txt mit der rechten Maustaste auf das Symbol von Combofix ziehen  Combofix noch mal anwenden poste dann nach neustart das neue Log Scanne mit AVP http://virus-protect.org/artikel/tools/kaspersky.html __________ MfG Argus |
|
|
|
|
|
|
30.10.2008, 13:51
Member
Themenstarter Beiträge: 29 |
#10
ComboFix 08-10-30.04 - reiser 2008-10-30 13:47:09.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1031.18.616 [GMT 1:00] ausgeführt von:: C:\Dokumente und Einstellungen\reiser\Desktop\Versch. Software\ComboFix.exe Benutzte Befehlsschalter :: C:\Dokumente und Einstellungen\reiser\Desktop\cfscript.txt * Neuer Wiederherstellungspunkt wurde erstellt . ((((((((((((((((((((((( Dateien erstellt von 2008-09-28 bis 2008-10-30 )))))))))))))))))))))))))))))) . 2008-10-29 22:49 . 2008-10-29 22:59 <DIR> d-a------ C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP 2008-10-24 11:35 . 2008-10-24 11:35 <DIR> d-------- C:\Programme\CCleaner 2008-10-24 10:30 . 2008-10-15 17:35 337,408 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll 2008-10-22 10:36 . 2004-08-04 00:57 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2008-10-22 10:16 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\system32\de 2008-10-22 10:16 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\system32\bits 2008-10-22 10:16 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\l2schemas 2008-10-22 10:13 . 2008-10-22 10:16 <DIR> d-------- C:\WINDOWS\ServicePackFiles 2008-10-16 05:34 . 2008-09-08 11:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys 2008-10-16 05:33 . 2008-08-14 14:19 2,191,488 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe 2008-10-16 05:33 . 2008-08-14 14:19 2,147,840 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe 2008-10-16 05:33 . 2008-08-14 14:19 2,068,352 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe 2008-10-16 05:33 . 2008-08-14 14:19 2,026,496 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe 2008-10-16 05:33 . 2008-09-15 16:24 1,846,528 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys 2008-10-15 07:51 . 2008-10-15 07:51 <DIR> d-------- C:\Programme\XnView 2008-10-15 07:51 . 2008-10-15 07:56 <DIR> d-------- C:\Dokumente und Einstellungen\Xaver\Anwendungsdaten\XnView 2008-10-14 12:04 . 2004-07-17 21:55 129,045 --------- C:\WINDOWS\system32\drivers\cxthsfs2.cty 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\UC.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\RAR.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\PKZIP.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\PKUNZIP.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\NOCLOSE.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\LHA.PIF 2008-10-14 08:47 . 2008-08-08 06:04 545 --a------ C:\WINDOWS\ARJ.PIF 2008-10-14 08:47 . 2008-10-14 08:50 441 --a------ C:\WINDOWS\wincmd.ini 2008-09-16 23:24 . 2008-09-16 23:24 <DIR> d-------- C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\EFSoftware 2008-09-09 14:41 . 2008-09-09 16:58 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy 2008-09-08 12:22 . 2008-09-08 12:22 <DIR> d-------- C:\Programme\Lavasoft 2008-09-08 12:22 . 2008-09-08 12:22 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Wise Installation Wizard 2008-09-08 12:22 . 2008-09-08 12:24 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Lavasoft 2008-09-08 12:10 . 2008-09-08 12:10 <DIR> d-------- C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\Lavasoft 2008-09-04 15:25 . 2008-10-30 10:59 <DIR> d-------- C:\Programme\Malwarebytes' Anti-Malware 2008-09-04 15:25 . 2008-09-04 15:25 <DIR> d-------- C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\Malwarebytes 2008-09-04 15:25 . 2008-09-04 15:25 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes 2008-09-04 15:25 . 2008-10-22 16:10 38,496 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2008-09-04 15:25 . 2008-10-22 16:10 15,504 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-09-04 14:54 . 2008-09-04 14:54 <DIR> d--h----- C:\WINDOWS\PIF 2008-09-04 14:38 . 2008-09-04 14:38 <DIR> d-------- C:\WINDOWS\Sun . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-10-30 12:07 --------- d-----w C:\Programme\eMule 2008-10-29 12:49 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Google Updater 2008-09-16 22:38 --------- d-----w C:\Programme\Dealio 2008-09-15 15:24 1,846,528 ----a-w C:\WINDOWS\system32\win32k.sys 2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys 2008-09-04 09:12 --------- d-----w C:\Dokumente und Einstellungen\reiser\Anwendungsdaten\U3 2008-08-26 07:57 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-08-23 10:35 65,536 ----a-w C:\WINDOWS\system32\comrepl.exe 2008-08-14 13:19 2,191,488 ----a-w C:\WINDOWS\system32\ntoskrnl.exe 2008-08-14 13:19 2,068,352 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe 2008-07-18 20:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll 2008-07-18 20:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe 2008-07-18 20:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll 2008-07-18 20:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll 2008-07-18 20:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll 2008-07-18 20:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll 2008-07-18 20:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll 2008-07-18 20:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll 2008-07-12 02:52 233,472 ----a-w C:\WINDOWS\system32\TubeFinder.exe 2008-07-07 20:26 253,952 ----a-w C:\WINDOWS\system32\es.dll . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe" [2006-06-01 94208] "swg"="C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-04-02 68856] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360] C:\Dokumente und Einstellungen\All Users\Startmen\Programme\Autostart\ BlueSoleil.lnk - C:\Programme\IVT Corporation\BlueSoleil\BlueSoleil.exe [2008-05-14 1183744] [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^Google Updater.lnk] path=C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Google Updater.lnk backup=C:\WINDOWS\pss\Google Updater.lnkCommon Startup [HKLM\~\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^WinZip Quick Pick.lnk] path=C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\WinZip Quick Pick.lnk backup=C:\WINDOWS\pss\WinZip Quick Pick.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] --------- 2007-11-20 14:29 360448 C:\Programme\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] --a------ 2008-04-02 17:36 68856 C:\Programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Programme\\eMule\\emule.exe"= "C:\\Programme\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"= "C:\\Casino\\CASINO-CLUB Deutsch\\casino.exe"= "C:\\Programme\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"= R3 AVMWAN;AVM NDIS WAN CAPI-Treiber;C:\WINDOWS\system32\DRIVERS\avmwan.sys [2001-08-17 37568] R3 fpcibase;AVM ISDN-Controller FRITZ!Card PCI;C:\WINDOWS\system32\DRIVERS\fpcibase.sys [2001-08-17 444416] R3 powervr;powervr;C:\WINDOWS\system32\DRIVERS\powervr.sys [2002-08-22 566336] S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245;C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe [2008-09-30 29744] S3 s217bus;Sony Ericsson Device 217 driver (WDM);C:\WINDOWS\system32\DRIVERS\s217bus.sys [2007-11-02 83496] S3 s217mdfl;Sony Ericsson Device 217 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\s217mdfl.sys [2007-11-02 15016] S3 s217mdm;Sony Ericsson Device 217 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\s217mdm.sys [2007-11-02 109992] S3 s217mgmt;Sony Ericsson Device 217 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\s217mgmt.sys [2007-11-02 103976] S3 s217nd5;Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (NDIS);C:\WINDOWS\system32\DRIVERS\s217nd5.sys [2007-11-02 24872] S3 s217obex;Sony Ericsson Device 217 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\s217obex.sys [2007-11-02 100008] S3 s217unic;Sony Ericsson Device 217 USB Ethernet Emulation SEMC217 (WDM);C:\WINDOWS\system32\DRIVERS\s217unic.sys [2007-11-02 105896] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bd649220-37c9-11dd-8834-000a9417386f}] \Shell\AutoRun\command - F:\LaunchU3.exe -a . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-30 13:48:28 Windows 5.1.2600 Service Pack 3 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostarteinträge... Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** . Zeit der Fertigstellung: 2008-10-30 13:50:25 ComboFix-quarantined-files.txt 2008-10-30 12:50:18 ComboFix2.txt 2008-10-30 12:41:53 ComboFix3.txt 2008-10-30 11:02:10 Vor Suchlauf: 12 Verzeichnis(se), 24.526.295.040 Bytes frei Nach Suchlauf: 12 Verzeichnis(se), 24,514,834,432 Bytes frei 133 --- E O F --- 2008-10-29 14:47:47 |
|
|
|
|
|
|
31.10.2008, 09:58
Member
Themenstarter Beiträge: 29 |
#11
Hey Arnold,
ich denk mal es hat hingehauen. Die Meldung erscheint nicht mehr! Allerdings glaube ich dass jetzt beim booten des PC's einige Prozesse weniger im Hintergrund mitlaufen denn es fehlen einige Symbole rechts unten in der Taskleiste! Das Antivirsymbol war weg. Hab ich nur durch neu installieren wieder herbekommen. Hast du eine Idee wo das herkommen kann? Ansonsten vielen Dank für die Hilfe. Echt super wie Ihr bescheid wisst! Gruß Jose |
|
|
|
|
|
|
31.10.2008, 10:21
Ehrenmitglied
Beiträge: 6028 |
#12
Im algemeinen lieben verschiedene Virenscanner sich nicht,kann sein das Kaspersky daten von Antivir entfernt hat
CombiFix entfernen Start > Ausführen> Kopiere rein ComboFix /U OK Scanne mal mit a-squared Anti-Malware 4.0 http://www.emsisoft.de/de/ Leider dauert das Updaten lange,ist ein Malware scanner und mit inbegriffen Ikarus Virenscanner,wenn etwas gefunden wird in die Quaratäne verschieben Java Dein Java software ist veraltet, Download Java Runtime Environment (JRE) 6u10 zum Desktop Entferne ueber "Start -> Einstellungen -> Systemsteuerung -> Software Die aeltere Versionen von Java Runtime Environment (JRE of J2SE) Nachdem alles entfernt wurde --->Rechner neu starten Schliesse alle Programme auch dein Webbrowser Installiere jetzt vom Desktop aus ---> jre-6u10-windows-i586-p-s.exe __________ MfG Argus |
|
|
|
|
|
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!
bitte erst » hier kostenlos registrieren!!
Folgende Themen könnten Dich auch interessieren:
Seite(n): 1
Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten
mein Antivir bringt immer wieder eine Meldung, dass ein sog TR/Agent.iob und auch ein TR/Downloader... in Lokale Einstellungen/Temp... gefunden wurde! Wie kann ich diese blöden Meldungen los werden?
Bitte um Hilfe!