Ich hab spyware, sagt mir der test

[lance]

Hallo community, ich soll drei Spyware-Dateien haben, sagt mir der test mit ad-aware, den ich grad gemacht hab. Ist komisch, ich geh über Firefox ins Netz, besuche nur ein paar sichere Seiten und habe in den letzten Tagen nur ein paar messenger-Programme und eine Webcam instaliert. Darf ich mal um euren Rat bitten? Ich geb mal das Logfile durch:

Danke für eure hilfe!!!

P.S.: Meine Idee war: soll ich meinen Compu einfach zurücksetzen (dann ohne die Neuinstallationen)?


Ad-Aware SE Build 1.06r1
Logfile Created on:Sonntag, 18. Dezember 2005 10:29:03
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R81 16.12.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):43 total references
Tracking Cookie(TAC index:3):3 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


18.12.2005 10:29:03 - Scan started. (Full System Scan)

MRU List Object Recognized!
Location: : C:\Dokumente und Einstellungen\oliver wegner\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\google\navclient\1.1\history
Description : list of recently used search terms in the google toolbar


MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\mediaplayer\medialibraryui
Description : last selected node in the microsoft windows media player media library


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\mediaplayer\player\recentfilelist
Description : list of recently used files in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\mediaplayer\player\settings
Description : last save as directory used in jasc paint shop pro


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\mediaplayer\player\settings
Description : last open directory used in jasc paint shop pro


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\mediaplayer\preferences
Description : last cd record path used in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\office\11.0\access\settings
Description : list of recently opened documents in microsoft access


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\office\11.0\excel\recent templates
Description : list of recent templates used by microsoft excel


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\office\11.0\powerpoint\recent file list
Description : list of recent files used by microsoft powerpoint


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\office\11.0\powerpoint\recent templates
Description : list of recent templates used by microsoft powerpoint


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\office\11.0\powerpoint\recenttemplatelist
Description : list of recent templates used by microsoft powerpoint


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\office\11.0\publisher\recent file list
Description : list of recent files used by microsoft publisher


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\office\11.0\word\recent templates
Description : list of recent templates used by microsoft word


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\windows\currentversion\applets\regedit
Description : last key accessed using the microsoft registry editor


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\windows\currentversion\applets\wordpad\recent file list
Description : list of recent files opened using wordpad


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\realnetworks\realplayer\6.0\preferences
Description : list of recent skins in realplayer


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\realnetworks\realplayer\6.0\preferences
Description : list of recent clips in realplayer


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\realnetworks\realplayer\6.0\preferences
Description : last login time in realplayer


MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-21-924847032-1886303401-1367912088-1006\software\winrar\dialogedithistory\extrpath
Description : winrar "extract-to" history


Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 324
ThreadCreationTime : 18.12.2005 09:25:42
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 376
ThreadCreationTime : 18.12.2005 09:25:46
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 400
ThreadCreationTime : 18.12.2005 09:25:47
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 444
ThreadCreationTime : 18.12.2005 09:25:47
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Anwendung für Dienste und Controller
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 456
ThreadCreationTime : 18.12.2005 09:25:47
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 608
ThreadCreationTime : 18.12.2005 09:25:48
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 664
ThreadCreationTime : 18.12.2005 09:25:48
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 704
ThreadCreationTime : 18.12.2005 09:25:48
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 744
ThreadCreationTime : 18.12.2005 09:25:48
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 788
ThreadCreationTime : 18.12.2005 09:25:49
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1036
ThreadCreationTime : 18.12.2005 09:25:49
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1048
ThreadCreationTime : 18.12.2005 09:25:49
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : EXPLORER.EXE

#:13 [rundll32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1180
ThreadCreationTime : 18.12.2005 09:25:50
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Eine DLL-Datei als Anwendung ausführen
InternalName : rundll
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : RUNDLL.EXE

#:14 [osd.exe]
FilePath : C:\Programme\Launch Manager\
ProcessID : 1196
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 1, 0, 0, 5
ProductVersion : 1, 0, 0, 5
ProductName : On Screen Display
CompanyName : Wistron
FileDescription : On Screen Display
InternalName : OSD
LegalCopyright : Copyright c 2002
OriginalFilename : OSD.exe

#:15 [syntplpr.exe]
FilePath : C:\Programme\Synaptics\SynTP\
ProcessID : 1204
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 7.12.2 30Sep04
ProductVersion : 7.12.2 30Sep04
ProductName : Synaptics Pointing Device Driver
CompanyName : Synaptics, Inc.
FileDescription : TouchPad Driver Helper Application
InternalName : SynTPLpr
LegalCopyright : Copyright (C) Synaptics, Inc. 1996-2004
OriginalFilename : SynTPLpr.exe

#:16 [pdvdserv.exe]
FilePath : C:\Programme\Home Cinema\PowerDVD\
ProcessID : 1212
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 6.00.1027
ProductVersion : 6.00.1027
ProductName : PowerDVD
CompanyName : Cyberlink Corp.
FileDescription : PowerDVD RC Service
InternalName : PowerDVD RC Service
LegalCopyright : Copyright (c) CyberLink Corp. 1997-2004
OriginalFilename : PDVDSERV.EXE

#:17 [pcmservice.exe]
FilePath : C:\Programme\Home Cinema\PowerCinema\
ProcessID : 1220
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 4.0.0.0000
ProductVersion : 4.0.0.0000
ProductName : Cyberlink PowerCinema
CompanyName : CyberLink Corp.
FileDescription : CyberLink PowerCinema Resident Program
InternalName : CyberLink PowerCinema Resident Program
LegalCopyright : Copyright (c) 2005 CyberLink Corp.
OriginalFilename : PCMService.exe

#:18 [******.exe]
FilePath : C:\Programme\SlySoft\******\
ProcessID : 1244
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : High


#:19 [lvcomsx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1260
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 8.4.1.1092
ProductVersion : 8.4.1.1092
ProductName : Logitech QuickCam
CompanyName : Logitech Inc.
FileDescription : LVCom Server
InternalName : LVComS.exe
LegalCopyright : (c) 1996-2004 Logitech. All rights reserved.
OriginalFilename : LVComS.exe

#:20 [logitray.exe]
FilePath : C:\Programme\Logitech\Video\
ProcessID : 1280
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 8.4.6.1012
ProductVersion : 8.4.6.1012
ProductName : Logitech QuickCam
CompanyName : Logitech Inc.
FileDescription : ImageStudio Tray Application
InternalName : LogiTray.exe
LegalCopyright : (c) 1996-2005 Logitech. All rights reserved.
OriginalFilename : LogiTray.exe

#:21 [icqlite.exe]
FilePath : C:\Programme\ICQLite\
ProcessID : 1296
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 20, 35, 2430, 0
ProductVersion : 20, 35, 2430, 0
ProductName : ICQLite
CompanyName : ICQ Ltd.
FileDescription : ICQLite
InternalName : ICQ Lite
LegalCopyright : Copyright (C) 2002
OriginalFilename : ICQLite.exe

#:22 [msmsgs.exe]
FilePath : C:\Programme\Messenger\
ProcessID : 1316
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright (c) Microsoft Corporation 2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe

#:23 [skype.exe]
FilePath : C:\Programme\Skype\Phone\
ProcessID : 1332
ThreadCreationTime : 18.12.2005 09:25:51
BasePriority : Normal


#:24 [backweb-8876480.exe]
FilePath : C:\Program Files\Logitech\Desktop Messenger\8876480\Program\
ProcessID : 1424
ThreadCreationTime : 18.12.2005 09:25:52
BasePriority : Normal
FileVersion : 1.4.50
ProductVersion : 1.4.50
ProductName : Logitech Desktop Messenger
CompanyName : Logitech
FileDescription : Logitech Desktop Messenger
InternalName : Logitech BackWeb Runner
LegalCopyright : Copyright (C) Logitech 2000-2004. All rights reserved
OriginalFilename : backweb-8876480.exe
Comments : www.logitech.com/ldm

#:25 [ypager.exe]
FilePath : C:\Programme\Yahoo!\Messenger\
ProcessID : 1504
ThreadCreationTime : 18.12.2005 09:25:52
BasePriority : Normal


#:26 [reader_sl.exe]
FilePath : C:\Programme\Adobe\Acrobat 7.0\Reader\
ProcessID : 1552
ThreadCreationTime : 18.12.2005 09:25:52
BasePriority : Normal
FileVersion : 7.0.5.2005092300
ProductVersion : 7.0.5.2005092300
ProductName : Adobe Acrobat
CompanyName : Adobe Systems Incorporated
FileDescription : Adobe Acrobat SpeedLauncher
LegalCopyright : Copyright 1984-2005 Adobe Systems Incorporated and its licensors. All rights reserved.
OriginalFilename : AcroSpeedLaunch.exe

#:27 [bttray.exe]
FilePath : C:\Programme\WIDCOMM\Bluetooth Software\
ProcessID : 1560
ThreadCreationTime : 18.12.2005 09:25:52
BasePriority : Normal
FileVersion : 4.0.1.700
ProductVersion : 4.0.1.700
ProductName : Bluetooth Software 4.0.1.700
CompanyName : Broadcom Corporation.
FileDescription : Bluetooth Tray Application
InternalName : BTTray
LegalCopyright : Copyright 2000-2004, Broadcom Corporation.
OriginalFilename : BTTray.exe

#:28 [fxsvr2.exe]
FilePath : C:\Programme\Logitech\Video\
ProcessID : 1788
ThreadCreationTime : 18.12.2005 09:25:53
BasePriority : Normal
FileVersion : 8.4.6.1012
ProductVersion : 8.4.6.1012
ProductName : Logitech QuickCam
CompanyName : Logitech Inc.
FileDescription : QuickCam Framework Server
InternalName : FxSvr.EXE
LegalCopyright : (c) 1996-2005 Logitech. All rights reserved.
OriginalFilename : FxSvr.EXE

#:29 [btstac~1.exe]
FilePath : C:\PROGRA~1\WIDCOMM\BLUETO~1\
ProcessID : 1824
ThreadCreationTime : 18.12.2005 09:25:53
BasePriority : Normal
FileVersion : 4.0.1.700
ProductVersion : 4.0.1.700
ProductName : Bluetooth Software 4.0.1.700
CompanyName : Broadcom Corporation.
FileDescription : Bluetooth Stack COM Server
InternalName : BTStackServer
LegalCopyright : Copyright 2000-2004, Broadcom Corporation.
OriginalFilename : BTStackServer.exe

#:30 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 176
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:31 [btwdins.exe]
FilePath : C:\Programme\WIDCOMM\Bluetooth Software\bin\
ProcessID : 184
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 4.0.1.700
ProductVersion : 4.0.1.700
ProductName : Bluetooth Software 4.0.1.700
CompanyName : Broadcom Corporation.
FileDescription : Bluetooth Support Server
InternalName : BTWDIns
LegalCopyright : Copyright 2000-2004, Broadcom Corporation.
OriginalFilename : BTWDIns.EXE

#:32 [clcapsvc.exe]
FilePath : C:\Programme\Home Cinema\PowerCinema\Kernel\TV\
ProcessID : 208
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 4.00.1523
ProductVersion : 4.00.1523
ProductName : CLCapSvc Module
FileDescription : CLCapSvc Module
InternalName : CLCapSvc
LegalCopyright : Copyright 2004
OriginalFilename : CLCapSvc.EXE

#:33 [clmlserver.exe]
FilePath : C:\Programme\CyberLink\Shared Files\CLML_NTService\
ProcessID : 296
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 1, 1, 0, 1516
ProductVersion : 1, 1, 0, 1516
ProductName : Cyberlink Media Library Server
CompanyName : Cyberlink
FileDescription : NT CLMLServer
InternalName : NT CLMLServer
LegalCopyright : Copyright c 2004
OriginalFilename : CLMLServer.exe

#:34 [inorpc.exe]
FilePath : C:\Programme\CA\eTrust Antivirus\
ProcessID : 344
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 7.1.194.0
ProductVersion : 7.1.194.0
ProductName : eTrust Antivirus
CompanyName : Computer Associates International, Inc.
InternalName : InoRpc.exe
LegalCopyright : Copyright 2004 Computer Associates International, Inc.
LegalTrademarks : eTrust (TM) is a trademark of Computer Associates Int'l, Inc.
OriginalFilename : InoRpc.exe
Comments : eTrust Antivirus English Version

#:35 [clmlservice.exe]
FilePath : C:\Programme\CyberLink\Shared Files\CLML_NTService\
ProcessID : 348
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 1, 1, 0, 1516
ProductVersion : 1, 1, 0, 1516
ProductName : Cyberlink MediaLibrary NT Service
CompanyName : Cyberlink
FileDescription : Cyberlink MediaLibrary NT Service
InternalName : CLMLService
LegalCopyright : Copyright c 2004
OriginalFilename : CLMLService.exe

#:36 [inort.exe]
FilePath : C:\Programme\CA\eTrust Antivirus\
ProcessID : 356
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 7.1.194.0
ProductVersion : 7.1.194.0
ProductName : eTrust Antivirus
CompanyName : Computer Associates International, Inc.
InternalName : InoRT.dll
LegalCopyright : Copyright 2004 Computer Associates International, Inc.
LegalTrademarks : eTrust (TM) is a trademark of Computer Associates Int'l, Inc.
OriginalFilename : InoRT.dll
Comments : eTrust Antivirus English Version

#:37 [inotask.exe]
FilePath : C:\Programme\CA\eTrust Antivirus\
ProcessID : 568
ThreadCreationTime : 18.12.2005 09:25:58
BasePriority : Normal
FileVersion : 7.1.194.0
ProductVersion : 7.1.194.0
ProductName : eTrust Antivirus
CompanyName : Computer Associates International, Inc.
InternalName : InoTask.exe
LegalCopyright : Copyright 2004 Computer Associates International, Inc.
LegalTrademarks : eTrust (TM) is a trademark of Computer Associates Int'l, Inc.
OriginalFilename : InoTask.exe
Comments : eTrust Antivirus English Version

#:38 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 876
ThreadCreationTime : 18.12.2005 09:25:59
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:39 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1500
ThreadCreationTime : 18.12.2005 09:25:59
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: DNSRV(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe

#:40 [clsched.exe]
FilePath : C:\Programme\Home Cinema\PowerCinema\Kernel\TV\
ProcessID : 2088
ThreadCreationTime : 18.12.2005 09:26:03
BasePriority : Normal
FileVersion : 4.00.1523
ProductVersion : 4.00.1523
ProductName : CLSched Module
FileDescription : CLSched Module
InternalName : CLSched
LegalCopyright : Copyright 2004
OriginalFilename : CLSched.EXE

#:41 [x10nets.exe]
FilePath : C:\PROGRA~1\COMMON~1\X10\Common\
ProcessID : 2396
ThreadCreationTime : 18.12.2005 09:26:04
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : x10 Module
CompanyName : X10
FileDescription : X10 Module
InternalName : x10
LegalCopyright : Copyright 1999 X10
OriginalFilename : x10.exe

#:42 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2628
ThreadCreationTime : 18.12.2005 09:26:05
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:43 [wuauclt.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 3288
ThreadCreationTime : 18.12.2005 09:26:48
BasePriority : Normal
FileVersion : 5.8.0.2469 built by: lab01_n(wmbla)
ProductVersion : 5.8.0.2469
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Automatische Updates
InternalName : wuauclt.exe
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : wuauclt.exe

#:44 [ad-aware.exe]
FilePath : C:\Programme\Lavasoft\Ad-Aware SE Personal\
ProcessID : 3520
ThreadCreationTime : 18.12.2005 09:28:06
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 43


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 43


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 43


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : oliver wegner@2o7[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:30
Value : Cookieliver wegner@2o7.net/
Expires : 17.12.2010 10:28:02
LastSync : Hits:30
UseCount : 0
Hits : 30

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : oliver wegner@mediaplex[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:7
Value : Cookieliver wegner@mediaplex.com/
Expires : 22.06.2009 01:00:00
LastSync : Hits:7
UseCount : 0
Hits : 7

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : oliver wegner@atdmt[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookieliver wegner@atdmt.com/
Expires : 16.12.2010 01:00:00
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 3
Objects found so far: 46



Deep scanning and examining files (C
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 46


Deep scanning and examining files (D
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 46


Deep scanning and examining files (E
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for E:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 46


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 46




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 46

10:39:36 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:10:33.797
Objects scanned:143817
Objects identified:3
Objects ignored:0
New critical objects:3

[Anonymous]

Hallo,

also alles gelesen habe ich ehrlich gesagt nicht...

Kannst du mit Ad-Aware umgehen? Dann schicke diese Dinge in Quarantäne, das genügt

Spybot Search & Destroy solltest du auch haben und den CWShredder.

Dann scanne dein System mit einem Virenscanner und alles ist okay.

Harmlose Adware, Malware oder Apyware gibt es überall, nicht alles muss aber gefährlich und böse sein...

[lance]

Hallo kaiserfive, danke dir. Bin kein Profi in Sachen Compu, aber in Quarantäne schicken, das kann nicht so schwer sein, denke ich. Ich probiers mal und mache auch einen Virencheck. Melde mich evtl. nochmal bei dir. Mir fällt ein: Beim Abmelden gibt mir mein Compu eine Fehlermeldung DDE Server Window musste beendet werden. Der ist aber deaktiviert. Weiterhin: Kann es an einem Applet liegen, das ich auf einer Website lade? Gruß und danke und schönen Sonntag, lance

[Anonymous]

Ad-Aware SE Personal ist Freeware und denek an die deutsche Sprache, die gibt es dafür und die muss man extra downloaden, geht über uns und über das BSI, Bundesamt für Sicherheit bla bla...

Ad-Aware bietet dir einen vollständigen Scan oder einen intelligenten. Dann kommen die Treffer als Ergebnis, du hakst die an und schickst dann in Quarantäne, das war es...

Spybot ist noch einfacher zu bedienen, vergiss aber das immunisieren nicht. Auch Spybot ist deutsch!

Bevor du Falsches löschst, frage uns.

[Helloween]

Hallo lance,

zu deinen MRU-Listen : http://www.pcwelt.de/downloads/tools...nstiges/38995/

die kannst du, musst sie aber nicht löschen.

Zu deinem DDE - Fehler: http://www.supportnet.de/fresh/2005/3/id1024392.asp

Du könntest, wenn der fehler wieder aufritt mal den Taskmanager aufrufen, dann kann man genau sehen, welches Programm sich nicht automatisch beendet.

[lance]

Es handelt sich bei den gefährlichen Objekten um drei Data Miner vom Typ IE Cache. Die kann ich doch löschen, denke ich mal. Gruß, lance

[lance]

Danke auch an halloween. Echt nett. Schönen Sonntag.

[Anonymous]

DataMiner ist in 99 Prozent der Fälle absolut ungefährlich...

Das Zauberwort heißt: Kundenbeziehungsmanagement

Man "spioniert" den Kunden aus, schaut nach seinen Gewohnheiten um ein Profil zu erstellen und dir die richtige Werbung zu präsentieren...

Ich lösche dies regelmäßig bei jedem Scan...

[lance]

Danke dir, kaiserfive. Werd ich löschen. lance.