> Na die logfiles die RSIT ausgibt 
> Sie befinden sich auf deinem Desktop
achso... ok
, das wärn dann die hier: (ich muss sie in 2 teilen posten weil es zu viele zeichen sind...)
Logfile of random\'s system information tool 1.07 (written by random/random)
Run by Julian at 2010-05-15 21:25:13
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 248 GB (53%) free of 464 GB
Total RAM: 3038 MB (50% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:25:21, on 15.05.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal
Running processes:
C:\\Windows\\system32\\taskeng.exe
C:\\Windows\\system32\\Dwm.exe
C:\\Windows\\Explorer.EXE
C:\\Windows\\system32\\taskeng.exe
C:\\Program Files\\Sony\\VAIO Update 5\\VAIOUpdt.exe
C:\\Program Files\\Windows Defender\\MSASCui.exe
C:\\Program Files\\Apoint\\Apoint.exe
C:\\Program Files\\sony\\ISB Utility\\ISBMgr.exe
C:\\Program Files\\sony\\Marketing Tools\\MarketingTools.exe
C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe
C:\\Program Files\\Steganos Safe OEM\\SteganosHotKeyService.exe
C:\\Program Files\\Java\\jre6\\bin\\jusched.exe
C:\\Program Files\\iTunes\\iTunesHelper.exe
C:\\Program Files\\sony\\Network Utility\\LANUtil.exe
C:\\Program Files\\sony\\VAIO Media plus\\VMpTtray.exe
C:\\Windows\\ehome\\ehtray.exe
C:\\Program Files\\WIDCOMM\\Bluetooth Software\\BTTray.exe
C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe
C:\\Windows\\ehome\\ehmsas.exe
C:\\Windows\\system32\\conime.exe
C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CCC.exe
C:\\Program Files\\Sony\\VAIO Power Management\\SPMgr.exe
C:\\Program Files\\Apoint\\ApMsgFwd.exe
C:\\Program Files\\Apoint\\Apntex.exe
C:\\Windows\\System32\\mobsync.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10e.exe
C:\\Program Files\\iTunes\\iTunes.exe
C:\\Program Files\\WIDCOMM\\Bluetooth Software\\BtITunesPlugIn.exe
C:\\Program Files\\Microsoft Office\\OFFICE11\\OUTLOOK.EXE
C:\\Program Files\\Microsoft Office\\OFFICE11\\WINWORD.EXE
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Windows\\system32\\SearchFilterHost.exe
C:\\Users\\Julian\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\23ZBEWT2\\RSIT[1].exe
C:\\Program Files\\trend micro\\Julian.exe
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.facebook.com/
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant =
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch =
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = *.local
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O4 - HKLM\\..\\Run: [Windows Defender] %ProgramFiles%\\Windows Defender\\MSASCui.exe -hide
O4 - HKLM\\..\\Run: [RtHDVCpl] C:\\Program Files\\Realtek\\Audio\\HDA\\RtHDVCpl.exe
O4 - HKLM\\..\\Run: [Apoint] C:\\Program Files\\Apoint\\Apoint.exe
O4 - HKLM\\..\\Run: [ISBMgr.exe] \"C:\\Program Files\\Sony\\ISB Utility\\ISBMgr.exe\"
O4 - HKLM\\..\\Run: [StartCCC] \"C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun
O4 - HKLM\\..\\Run: [Google Desktop Search] \"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup
O4 - HKLM\\..\\Run: [MarketingTools] C:\\Program Files\\Sony\\Marketing Tools\\MarketingTools.exe
O4 - HKLM\\..\\Run: [AML] C:\\Program Files\\Sony\\VAIO Launcher\\AML.exe InitApp
O4 - HKLM\\..\\Run: [Skytel] C:\\Program Files\\Realtek\\Audio\\HDA\\Skytel.exe
O4 - HKLM\\..\\Run: [avgnt] \"C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\" /min
O4 - HKLM\\..\\Run: [SAFEOEM HotKeys] \"C:\\Program Files\\Steganos Safe OEM\\SteganosHotKeyService.exe\"
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime
O4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"
O4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"
O4 - HKLM\\..\\Run: [Adobe ARM] \"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"
O4 - HKLM\\..\\RunOnce: [Malwarebytes\' Anti-Malware] C:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe /install /silent
O4 - HKCU\\..\\Run: [NSUFloatingUI] \"C:\\Program Files\\Sony\\Network Utility\\LANUtil.exe\"
O4 - HKCU\\..\\Run: [VMpTtray.exe] C:\\Program Files\\Sony\\VAIO Media plus\\VMpTtray.exe
O4 - HKCU\\..\\Run: [NortonOnlineBackupReminder] \"C:\\Program Files\\Symantec\\Norton Online Backup\\Activation\\NobuActivation.exe\" UNATTENDED
O4 - HKCU\\..\\Run: [ehTray.exe] C:\\Windows\\ehome\\ehTray.exe
O4 - HKCU\\..\\Run: [ClipIncSrvTray] \"C:\\Program Files\\Tobit ClipInc\\Player\\ClipIncTray.exe\"
O4 - HKCU\\..\\Run: [rfxsrvtray] \"C:\\Program Files\\Tobit Radio.fx\\Client\\rfx-tray.exe\"
O4 - HKUS\\S-1-5-19\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'LOKALER DIENST\')
O4 - HKUS\\S-1-5-19\\..\\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User \'LOKALER DIENST\')
O4 - HKUS\\S-1-5-20\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'NETZWERKDIENST\')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie_ctx.htm
O8 - Extra context menu item: Google Sidewiki... - res://C:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\\PROGRA~1\\MICROS~2\\OFFICE11\\EXCEL.EXE/3000
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O9 - Extra \'Tools\' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\PROGRA~1\\COMMON~1\\Skype\\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\Windows\\system32\\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\\Program Files\\Common Files\\ArcSoft\\Connection Service\\Bin\\ACService.exe
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\\Program Files\\Adobe\\Photoshop Elements 7.0\\PhotoshopElementsFileAgent.exe
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\\Windows\\system32\\Ati2evxx.exe
O23 - Service: Dienst \"Bonjour\" (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btwdins.exe
O23 - Service: ClipInc 001 (ClipInc001) - Unknown owner - C:\\Program Files\\Tobit ClipInc\\Server\\ClipInc-Server.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\\Program Files\\Intel\\WiFi\\bin\\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\\Program Files\\Common Files\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.9.911.3589 (GoogleDesktopManager-110309-193829) - Google - C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Unknown owner - C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe (file missing)
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\\Program Files\\Common Files\\InterVideo\\RegMgr\\iviRegMgr.exe
O23 - Service: NSUService - Sony Corporation - C:\\Program Files\\sony\\Network Utility\\NSUService.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\PACSPTISVR.exe
O23 - Service: Radio.fx Server (Radio.fx) - Unknown owner - C:\\Program Files\\Tobit Radio.fx\\Server\\rfx-server.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\\Program Files\\Common Files\\Intel\\WirelessCommon\\RegSrvc.exe
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\\Program Files\\Realtek\\Audio\\HDA\\RtkAudioService.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHCImp.exe
O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHDBSvr.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHDs.exe
O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHPlMgr.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\\Program Files\\ArcSoft\\Magic-i Visual Effects 2\\uCamMonitor.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Entertainment Platform\\VzHardwareResourceManager\\VzHardwareResourceManager\\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\\Program Files\\sony\\VAIO Event Service\\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\\Program Files\\Sony\\VAIO Power Management\\SPMService.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Content Folder Watcher\\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\\Program Files\\Sony\\VCM Intelligent Analyzing Manager\\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VcmXml\\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Entertainment Platform\\VCSW\\VCSW.exe
O23 - Service: VUAgent - Sony Corporation - C:\\Program Files\\sony\\VAIO Update 5\\VUAgent.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Entertainment Platform\\VzCdb\\VzCdbSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\\Windows\\system32\\DRIVERS\\xaudio.exe
--
End of file - 12569 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll [2010-04-04 75200]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Anmelde-Hilfsprogramm - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll [2008-11-18 408952]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"Windows Defender\"=C:\\Program Files\\Windows Defender\\MSASCui.exe [2008-01-21 1008184]
\"RtHDVCpl\"=C:\\Program Files\\Realtek\\Audio\\HDA\\RtHDVCpl.exe [2009-01-06 6703648]
\"Apoint\"=C:\\Program Files\\Apoint\\Apoint.exe [2008-09-30 122880]
\"ISBMgr.exe\"=C:\\Program Files\\Sony\\ISB Utility\\ISBMgr.exe [2008-12-18 317288]
\"StartCCC\"=C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe [2009-03-02 61440]
\"Google Desktop Search\"=C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe [2009-11-21 30192]
\"MarketingTools\"=C:\\Program Files\\Sony\\Marketing Tools\\MarketingTools.exe [2009-05-06 26112]
\"AML\"=C:\\Program Files\\Sony\\VAIO Launcher\\AML.exe [2009-03-09 1101824]
\"Skytel\"=C:\\Program Files\\Realtek\\Audio\\HDA\\Skytel.exe [2009-01-06 1833504]
\"avgnt\"=C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe [2010-03-02 282792]
\"SAFEOEM HotKeys\"=C:\\Program Files\\Steganos Safe OEM\\SteganosHotKeyService.exe [2008-12-11 26112]
\"SunJavaUpdateSched\"=C:\\Program Files\\Java\\jre6\\bin\\jusched.exe [2009-10-11 149280]
\"QuickTime Task\"=C:\\Program Files\\QuickTime\\QTTask.exe [2010-03-17 421888]
\"iTunesHelper\"=C:\\Program Files\\iTunes\\iTunesHelper.exe [2010-04-24 142120]
\"Adobe Reader Speed Launcher\"=C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe [2010-04-04 36272]
\"Adobe ARM\"=C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe [2010-03-24 952768]
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunOnce]
\"Malwarebytes\' Anti-Malware\"=C:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe [2010-04-29 437584]
[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"NSUFloatingUI\"=C:\\Program Files\\Sony\\Network Utility\\LANUtil.exe [2008-12-21 274432]
\"VMpTtray.exe\"=C:\\Program Files\\Sony\\VAIO Media plus\\VMpTtray.exe [2009-02-05 99624]
\"NortonOnlineBackupReminder\"=C:\\Program Files\\Symantec\\Norton Online Backup\\Activation\\NobuActivation.exe [2009-01-16 503976]
\"ehTray.exe\"=C:\\Windows\\ehome\\ehTray.exe [2008-01-21 125952]
\"ClipIncSrvTray\"=C:\\Program Files\\Tobit ClipInc\\Player\\ClipIncTray.exe [2009-03-16 668424]
\"rfxsrvtray\"=C:\\Program Files\\Tobit Radio.fx\\Client\\rfx-tray.exe [2010-01-13 686344]
C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup
Bluetooth.lnk - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\BTTray.exe
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Windows]
\"AppInit_DLLS\"=\"C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL\"
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\VESWinlogon]
C:\\Windows\\system32\\VESWinlogon.dll [2009-01-19 98304]
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\WudfPf]
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\WudfRd]
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\WudfSvc]
[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\WudfUsbccidDriver]
[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System]
\"LogonHoursAction\"=2
\"DontDisplayLogonHoursWarnings\"=1
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System]
\"dontdisplaylastusername\"=0
\"legalnoticecaption\"=
\"legalnoticetext\"=
\"shutdownwithoutlogon\"=1
\"undockwithoutlogon\"=1
\"EnableUIADesktopToggle\"=0
[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\explorer]
\"NoDriveTypeAutoRun\"=145
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\explorer]
\"BindDirectlyToPropertySetStorage\"=
[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\authorizedapplications\\list]
[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\domainprofile\\authorizedapplications\\list]
[HKEY_CURRENT_USER\\software\\microsoft\\windows\\currentversion\\explorer\\mountpoints2\\{2dffea1c-d2cd-11de-a870-001dbab80bd3}]
shell\\AutoRun\\command - G:\\Menu.exe
[HKEY_CURRENT_USER\\software\\microsoft\\windows\\currentversion\\explorer\\mountpoints2\\{70da90f9-7ece-11de-9d12-00214ffb6ffa}]
shell\\AutoRun\\command - G:\\__DTMEDIA\\DTMedia.exe
======File associations======
.js - edit - C:\\Windows\\System32\\Notepad.exe %1
.js - open - C:\\Windows\\System32\\WScript.exe \"%1\" %*
======List of files/folders created in the last 1 months======
2010-05-15 21:25:14 ----D---- C:\\Program Files\\trend micro
2010-05-15 21:25:13 ----D---- C:\\rsit
2010-05-15 21:14:18 ----D---- C:\\Users\\Julian\\AppData\\Roaming\\Malwarebytes
2010-05-15 21:13:47 ----D---- C:\\ProgramData\\Malwarebytes
2010-05-15 21:13:47 ----D---- C:\\Program Files\\Malwarebytes\' Anti-Malware
2010-05-15 21:02:15 ----D---- C:\\Program Files\\CCleaner
2010-05-15 17:14:59 ----D---- C:\\Users\\Julian\\AppData\\Roaming\\Avira
2010-05-13 09:09:56 ----D---- C:\\Program Files\\Tobit Radio.fx
2010-05-13 09:09:56 ----A---- C:\\Windows\\RXCUnins.exe
2010-05-13 09:09:55 ----A---- C:\\Windows\\RXSUnins.exe
2010-05-12 16:53:09 ----A---- C:\\Windows\\system32\\inetcomm.dll
2010-04-28 14:56:07 ----D---- C:\\Program Files\\iPod
2010-04-28 14:55:55 ----D---- C:\\Program Files\\iTunes
2010-04-28 14:52:40 ----D---- C:\\Program Files\\Bonjour
2010-04-21 13:26:35 ----D---- C:\\ProgramData\\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-04-21 13:23:27 ----D---- C:\\Program Files\\QuickTime
2010-04-19 19:04:32 ----ASH---- C:\\Users\\Julian\\AppData\\Roaming\\desktop.ini
2010-04-17 20:30:37 ----A---- C:\\Windows\\system32\\wintrust.dll
2010-04-17 20:30:24 ----A---- C:\\Windows\\system32\\vbscript.dll
2010-04-17 20:30:01 ----A---- C:\\Windows\\system32\\ntoskrnl.exe
2010-04-17 20:30:01 ----A---- C:\\Windows\\system32\\ntkrnlpa.exe
2010-04-17 20:29:24 ----A---- C:\\Windows\\system32\\iphlpsvc.dll
2010-04-17 20:28:37 ----A---- C:\\Windows\\system32\\cabview.dll
======List of files/folders modified in the last 1 months======
2010-05-15 21:25:17 ----D---- C:\\Windows\\Temp
2010-05-15 21:25:14 ----RD---- C:\\Program Files
2010-05-15 21:13:49 ----D---- C:\\Windows\\system32\\drivers
2010-05-15 21:13:47 ----HD---- C:\\ProgramData
2010-05-15 21:03:41 ----D---- C:\\Windows\\Minidump
2010-05-15 21:03:41 ----D---- C:\\Windows\\Debug
2010-05-15 21:03:41 ----D---- C:\\Windows
2010-05-15 20:55:15 ----D---- C:\\Program Files\\Common Files\\DVDVideoSoft
2010-05-15 20:54:01 ----D---- C:\\Windows\\system32\\SupportAppCB
2010-05-15 20:52:06 ----HD---- C:\\Program Files\\InstallShield Installation Information
2010-05-15 20:52:00 ----SHD---- C:\\System Volume Information
2010-05-15 20:51:22 ----D---- C:\\Windows\\inf
2010-05-15 20:36:05 ----D---- C:\\ProgramData\\McAfee
2010-05-15 20:36:05 ----D---- C:\\Program Files\\Common Files
2010-05-15 20:35:43 ----D---- C:\\Program Files\\McAfee
2010-05-15 20:35:20 ----D---- C:\\Program Files\\Google
2010-05-15 20:08:03 ----D---- C:\\Windows\\Tasks
2010-05-15 20:07:44 ----D---- C:\\Windows\\system32\\catroot
2010-05-15 20:07:32 ----D---- C:\\Windows\\System32
2010-05-15 20:06:25 ----SHD---- C:\\Windows\\Installer
2010-05-15 20:06:24 ----D---- C:\\Windows\\Prefetch
2010-05-15 20:04:45 ----D---- C:\\Windows\\system32\\catroot2
2010-05-15 20:03:46 ----D---- C:\\ProgramData\\Google
2010-05-15 18:25:08 ----D---- C:\\Users\\Julian\\AppData\\Roaming\\Adobe
2010-05-15 17:13:51 ----D---- C:\\Windows\\winsxs
2010-05-14 20:43:20 ----D---- C:\\Program Files\\Common Files\\Adobe
2010-05-14 20:42:38 ----D---- C:\\ProgramData\\Adobe
2010-05-14 20:40:40 ----SD---- C:\\Users\\Julian\\AppData\\Roaming\\Microsoft
2010-05-14 20:40:39 ----SD---- C:\\ProgramData\\Microsoft
2010-05-14 17:00:43 ----D---- C:\\Update
2010-05-13 09:10:18 ----D---- C:\\Users\\Julian\\AppData\\Roaming\\Tobit
2010-05-13 08:53:19 ----D---- C:\\Program Files\\Windows Mail
2010-05-06 10:36:38 ----N---- C:\\Windows\\system32\\MpSigStub.exe
2010-05-03 18:17:11 ----D---- C:\\Program Files\\Adobe
2010-04-30 20:51:06 ----A---- C:\\Windows\\system32\\mrt.exe
2010-04-29 03:17:55 ----RSD---- C:\\Windows\\Fonts
2010-04-28 14:56:06 ----D---- C:\\Program Files\\Common Files\\Apple
2010-04-21 17:56:30 ----A---- C:\\Windows\\system32\\PerfStringBackup.INI
2010-04-21 12:51:43 ----SD---- C:\\Windows\\Downloaded Program Files
Archiv