| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Verschiedene RKIT/Agent in BAcroIeHelpe 180.dllWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
10.08.2012, 13:34
| #16 |
 |  Verschiedene RKIT/Agent in BAcroIeHelpe 180.dll Hier sind die Logs ComboFix.txt Code:
ATTFilter ComboFix 12-08-09.01 - Dennis 10.08.2012 14:13:22.1.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3071.1974 [GMT 2:00]
ausgeführt von:: c:\users\Dennis\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Dennis\AppData\Roaming\srvblck5.tmp
c:\users\Public\invokesi.exe
c:\windows\system32\spsys.log
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-07-10 bis 2012-08-10 ))))))))))))))))))))))))))))))
.
.
2012-08-10 12:23 . 2012-08-10 12:23 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-08-10 12:23 . 2012-08-10 12:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-10 09:46 . 2012-06-29 08:44 6891424 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{83B9640B-9297-4878-8ECA-33D7B3FA6CB6}\mpengine.dll
2012-08-09 16:48 . 2012-08-09 16:48 -------- d-----w- c:\program files\Windows Portable Devices
2012-08-09 16:28 . 2012-06-13 13:40 2047488 ----a-w- c:\windows\system32\win32k.sys
2012-08-09 16:27 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2012-08-09 16:27 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2012-08-09 16:27 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2012-08-09 16:15 . 2012-02-29 15:11 5120 ----a-w- c:\windows\system32\wmi.dll
2012-08-09 16:15 . 2012-02-29 15:11 172032 ----a-w- c:\windows\system32\wintrust.dll
2012-08-09 16:15 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-08-09 16:15 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-08-09 15:58 . 2012-08-09 15:58 98816 ----a-w- c:\windows\system32\mfps.dll
2012-08-09 15:30 . 2009-10-09 21:56 2048 ----a-w- c:\windows\system32\winrsmgr.dll
2012-08-09 09:13 . 2010-09-13 13:56 168960 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2012-08-09 09:13 . 2010-09-13 13:56 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2012-08-09 09:13 . 2010-09-06 16:20 125952 ----a-w- c:\windows\system32\srvsvc.dll
2012-08-09 09:13 . 2010-09-06 16:19 17920 ----a-w- c:\windows\system32\netevent.dll
2012-08-09 09:13 . 2010-04-16 16:46 502272 ----a-w- c:\windows\system32\usp10.dll
2012-08-09 09:13 . 2010-10-12 13:41 515584 ----a-w- c:\program files\Windows Mail\wab.exe
2012-08-09 09:13 . 2010-10-12 15:53 33280 ----a-w- c:\program files\Windows Mail\wabfind.dll
2012-08-09 09:13 . 2010-10-12 13:41 66048 ----a-w- c:\program files\Windows Mail\wabmig.exe
2012-08-09 09:11 . 2011-03-10 17:03 1162240 ----a-w- c:\windows\system32\mfc42u.dll
2012-08-09 09:11 . 2011-03-10 17:03 1136640 ----a-w- c:\windows\system32\mfc42.dll
2012-08-09 09:11 . 2011-11-18 20:23 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-08-09 09:11 . 2010-01-29 15:40 1616384 ----a-w- c:\program files\Windows Mail\msoe.dll
2012-08-09 09:11 . 2010-05-27 20:08 81920 ----a-w- c:\windows\system32\iccvid.dll
2012-08-09 09:11 . 2011-02-18 14:03 305152 ----a-w- c:\windows\system32\drivers\srv.sys
2012-08-09 09:11 . 2011-07-06 15:31 214016 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-08-09 09:11 . 2011-04-29 13:24 79872 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2012-08-09 09:11 . 2011-04-29 13:24 106496 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2012-08-09 09:11 . 2011-03-02 15:44 86528 ----a-w- c:\windows\system32\dnsrslvr.dll
2012-08-09 09:11 . 2009-05-04 09:59 25088 ----a-w- c:\windows\system32\dnscacheugc.exe
2012-08-09 09:10 . 2010-04-05 17:01 67072 ----a-w- c:\windows\system32\asycfilt.dll
2012-08-09 09:10 . 2010-06-28 17:00 1316864 ----a-w- c:\windows\system32\ole32.dll
2012-08-09 09:10 . 2010-06-28 14:54 339968 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe
2012-08-09 09:10 . 2011-10-14 16:02 429056 ----a-w- c:\windows\system32\EncDec.dll
2012-08-09 09:10 . 2010-08-17 14:11 128000 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-09 09:10 . 2012-03-20 23:28 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-08-09 09:10 . 2010-08-26 16:37 157184 ----a-w- c:\windows\system32\t2embed.dll
2012-08-09 09:10 . 2011-04-21 13:58 273408 ----a-w- c:\windows\system32\drivers\afd.sys
2012-08-09 09:08 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2012-08-09 09:08 . 2010-08-31 15:46 954752 ----a-w- c:\windows\system32\mfc40.dll
2012-08-09 09:08 . 2010-08-31 15:46 954288 ----a-w- c:\windows\system32\mfc40u.dll
2012-08-09 09:08 . 2010-06-18 17:31 36864 ----a-w- c:\windows\system32\rtutils.dll
2012-08-09 09:08 . 2011-11-25 15:59 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-08-09 09:08 . 2010-08-26 16:34 1696256 ----a-w- c:\windows\system32\gameux.dll
2012-08-09 09:08 . 2011-03-03 15:40 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2012-08-09 09:08 . 2011-03-03 13:35 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2012-08-09 09:08 . 2011-12-14 16:17 680448 ----a-w- c:\windows\system32\msvcrt.dll
2012-08-09 09:08 . 2010-08-20 16:05 867328 ----a-w- c:\windows\system32\wmpmde.dll
2012-08-09 09:08 . 2010-12-29 18:28 322560 ----a-w- c:\windows\system32\sbe.dll
2012-08-09 09:08 . 2010-12-29 18:28 153088 ----a-w- c:\windows\system32\sbeio.dll
2012-08-09 09:08 . 2010-12-29 18:26 177664 ----a-w- c:\windows\system32\mpg2splt.ax
2012-08-09 09:06 . 2012-03-01 11:01 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-08-09 09:06 . 2011-08-25 16:15 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2012-08-09 09:06 . 2011-08-25 16:14 563712 ----a-w- c:\windows\system32\oleaut32.dll
2012-08-09 09:06 . 2011-08-25 16:14 238080 ----a-w- c:\windows\system32\oleacc.dll
2012-08-09 09:06 . 2011-08-25 13:31 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2012-08-09 09:06 . 2012-06-05 16:47 1401856 ----a-w- c:\windows\system32\msxml6.dll
2012-08-09 09:06 . 2012-06-05 16:47 1248768 ----a-w- c:\windows\system32\msxml3.dll
2012-08-09 09:05 . 2012-05-01 14:03 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-08-09 09:05 . 2010-12-17 15:45 2067968 ----a-w- c:\windows\system32\mstscax.dll
2012-08-09 09:05 . 2010-12-17 13:54 677888 ----a-w- c:\windows\system32\mstsc.exe
2012-08-09 09:05 . 2012-04-03 08:16 3602816 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-09 09:05 . 2012-04-03 08:16 3550080 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-09 09:05 . 2011-09-30 15:57 707584 ----a-w- c:\program files\Common Files\System\wab32.dll
2012-08-09 09:04 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll
2012-08-09 09:03 . 2012-06-04 15:26 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-08-09 09:03 . 2012-06-02 00:04 278528 ----a-w- c:\windows\system32\schannel.dll
2012-08-09 09:03 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2012-08-09 09:03 . 2012-06-02 00:03 204288 ----a-w- c:\windows\system32\ncrypt.dll
2012-08-09 09:03 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2012-08-09 09:03 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2012-08-09 09:03 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll
2012-08-09 08:40 . 2012-01-09 15:54 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-08-09 08:27 . 2012-07-14 00:14 16864 ----a-w- c:\program files\Mozilla Firefox\plugin-container.exe
2012-08-08 15:52 . 2012-08-09 08:29 -------- d-----w- c:\program files\Emsisoft Anti-Malware
2012-08-08 15:36 . 2012-08-08 15:37 -------- d-----w- c:\windows\system32\ca-ES
2012-08-08 15:36 . 2012-08-08 15:37 -------- d-----w- c:\windows\system32\eu-ES
2012-08-08 15:36 . 2012-08-08 15:37 -------- d-----w- c:\windows\system32\vi-VN
2012-08-08 15:31 . 2012-08-08 15:31 -------- d-----w- c:\windows\system32\SPReview
2012-08-08 15:19 . 2009-04-10 21:28 928768 ----a-w- c:\windows\system32\scavenge.dll
2012-08-08 15:18 . 2009-04-10 21:27 57856 ----a-w- c:\windows\system32\compcln.exe
2012-08-08 15:16 . 2009-04-10 21:28 485888 ----a-w- c:\windows\system32\evr.dll
2012-08-08 15:15 . 2009-04-10 21:28 99328 ----a-w- c:\program files\Windows Media Player\wmpband.dll
2012-08-08 14:55 . 2012-08-08 14:55 -------- d-----w- C:\PerfLogs
2012-08-08 14:13 . 2008-01-18 21:33 193024 ----a-w- c:\windows\system32\recdisc.exe
2012-08-08 14:13 . 2008-01-18 21:36 6656 ----a-w- c:\windows\system32\sdspres.dll
2012-08-08 14:13 . 2008-01-18 21:36 28160 ----a-w- c:\windows\system32\sxproxy.dll
2012-08-08 14:10 . 2008-01-18 21:42 94776 ----a-w- c:\windows\system32\MigAutoPlay.exe
2012-08-08 14:09 . 2008-01-18 21:34 1177600 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\imjplm.dll
2012-08-08 14:08 . 2008-01-18 21:36 92672 ----a-w- c:\windows\system32\ufat.dll
2012-08-08 14:08 . 2008-01-18 21:36 56320 ----a-w- c:\windows\system32\uexfat.dll
2012-08-08 14:08 . 2008-01-18 21:33 35840 ----a-w- c:\windows\system32\UI0Detect.exe
2012-08-08 07:48 . 2012-08-08 07:48 -------- d-----w- c:\users\Dennis\AppData\Roaming\Malwarebytes
2012-08-08 07:48 . 2012-08-08 07:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-08 07:48 . 2012-08-08 07:48 -------- d-----w- c:\programdata\Malwarebytes
2012-08-08 07:48 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-07 20:54 . 2012-08-07 20:54 -------- d-----w- c:\users\Dennis\AppData\Roaming\xmldm
2012-08-07 20:38 . 2012-08-07 20:38 -------- d-----w- C:\_OTL
2012-08-05 10:04 . 2012-08-10 09:41 -------- d-----w- c:\program files\Sophos
2012-08-05 09:02 . 2012-08-05 10:05 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2012-08-05 09:02 . 2012-08-05 09:57 -------- d-----w- c:\program files\Spybot - Search & Destroy
2012-07-24 10:40 . 2012-08-10 09:40 -------- d-----w- c:\program files\Origin
2012-07-20 19:52 . 2012-07-20 19:52 -------- d-----w- c:\users\Dennis\AppData\Roaming\TuneUp Software
2012-07-20 19:52 . 2012-07-20 19:53 -------- d-----w- c:\programdata\TuneUp Software
2012-07-18 16:24 . 2012-07-18 16:24 -------- d-----w- c:\program files\SystemRequirementsLab
2012-07-18 16:24 . 2012-07-18 16:24 -------- d-----w- c:\users\Dennis\SystemRequirementsLab
2012-07-11 20:33 . 2012-08-10 09:38 -------- d-----r- c:\users\Dennis\Dropbox
2012-07-11 20:30 . 2012-07-11 20:30 -------- d-----w- c:\program files\Dropbox
2012-07-11 20:29 . 2012-08-10 09:39 -------- d-----w- c:\users\Dennis\AppData\Roaming\Dropbox
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-09 15:58 . 2012-08-09 15:58 4096 ----a-w- c:\windows\system32\drivers\de-DE\dxgkrnl.sys.mui
2012-08-08 14:39 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2012-08-08 14:39 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll
2012-08-03 09:23 . 2012-04-01 08:43 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-03 09:23 . 2011-07-16 13:33 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-11 18:58 . 2012-06-11 18:58 8733696 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-06-11 18:35 . 2012-06-11 18:35 58880 ----a-w- c:\windows\system32\coinst_8.98.dll
2012-06-11 18:00 . 2012-06-11 18:00 20467712 ----a-w- c:\windows\system32\atioglxx.dll
2012-06-11 17:25 . 2012-06-11 17:25 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2012-06-11 17:24 . 2012-06-11 17:24 924160 ----a-w- c:\windows\system32\aticfx32.dll
2012-06-11 17:20 . 2012-06-11 17:20 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-06-11 17:19 . 2012-06-11 17:19 468992 ----a-w- c:\windows\system32\atieclxx.exe
2012-06-11 17:19 . 2012-06-11 17:19 217600 ----a-w- c:\windows\system32\atiesrxx.exe
2012-06-11 17:17 . 2012-06-11 17:17 163840 ----a-w- c:\windows\system32\atitmmxx.dll
2012-06-11 17:17 . 2012-06-11 17:17 20992 ----a-w- c:\windows\system32\atimuixx.dll
2012-06-11 17:17 . 2012-06-11 17:17 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-06-11 17:16 . 2012-06-11 17:16 6301696 ----a-w- c:\windows\system32\atidxx32.dll
2012-06-11 16:45 . 2012-06-11 16:45 46080 ----a-w- c:\windows\system32\aticalrt.dll
2012-06-11 16:45 . 2012-06-11 16:45 5480448 ----a-w- c:\windows\system32\atiumdag.dll
2012-06-11 16:45 . 2012-06-11 16:45 44032 ----a-w- c:\windows\system32\aticalcl.dll
2012-06-11 16:43 . 2012-06-11 16:43 4729344 ----a-w- c:\windows\system32\atiumdva.dll
2012-06-11 16:40 . 2012-06-11 16:40 13277696 ----a-w- c:\windows\system32\aticaldd.dll
2012-06-11 16:26 . 2012-06-11 16:26 368640 ----a-w- c:\windows\system32\atiadlxx.dll
2012-06-11 16:26 . 2012-06-11 16:26 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-06-11 16:26 . 2012-06-11 16:26 33280 ----a-w- c:\windows\system32\atigktxx.dll
2012-06-11 16:25 . 2012-06-11 16:25 295936 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-06-11 16:25 . 2012-06-11 16:25 42496 ----a-w- c:\windows\system32\atiuxpag.dll
2012-06-11 16:24 . 2012-06-11 16:24 32768 ----a-w- c:\windows\system32\atiu9pag.dll
2012-06-11 16:24 . 2012-06-11 16:24 37376 ----a-w- c:\windows\system32\atitmpxx.dll
2012-06-11 16:24 . 2012-06-11 16:24 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-06-11 16:23 . 2012-06-11 16:23 56832 ----a-w- c:\windows\system32\atimpc32.dll
2012-06-11 16:23 . 2012-06-11 16:23 56832 ----a-w- c:\windows\system32\amdpcom32.dll
2012-06-11 11:50 . 2012-06-11 11:50 159232 ----a-w- c:\windows\system32\clinfo.exe
2012-06-11 11:50 . 2012-06-11 11:50 65024 ----a-w- c:\windows\system32\OpenVideo.dll
2012-06-11 11:50 . 2012-06-11 11:50 56320 ----a-w- c:\windows\system32\OVDecode.dll
2012-06-11 11:49 . 2012-06-11 11:49 13008896 ----a-w- c:\windows\system32\amdocl.dll
2012-06-11 11:48 . 2012-06-11 11:48 50176 ----a-w- c:\windows\system32\OpenCL.dll
2012-05-31 10:25 . 2010-12-06 06:02 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-05-28 10:56 . 2003-03-18 19:14 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-05-28 10:56 . 2003-02-21 03:42 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-05-15 10:26 . 2012-05-23 14:09 8105280 ----a-w- c:\windows\system32\nvwgf2um.dll
2012-05-15 10:26 . 2012-05-23 14:09 19607872 ----a-w- c:\windows\system32\nvoglv32.dll
2012-05-15 10:26 . 2012-05-23 14:09 11354944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-05-15 10:26 . 2012-05-23 14:09 2524992 ----a-w- c:\windows\system32\nvcuvid.dll
2012-05-15 10:26 . 2012-05-23 14:09 2445120 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-05-15 10:26 . 2012-05-23 14:09 5982528 ----a-w- c:\windows\system32\nvcuda.dll
2012-05-15 10:26 . 2012-05-23 14:08 17551680 ----a-w- c:\windows\system32\nvcompiler.dll
2012-05-15 10:26 . 2011-09-14 14:10 883008 ----a-w- c:\windows\system32\nvgenco32.dll
2012-05-15 10:26 . 2011-09-14 14:10 1000768 ----a-w- c:\windows\system32\nvdispco32.dll
2012-05-15 10:26 . 2010-07-10 04:37 2368832 ----a-w- c:\windows\system32\nvapi.dll
2012-05-15 10:26 . 2010-07-10 04:37 15322432 ----a-w- c:\windows\system32\nvd3dum.dll
2012-05-15 09:28 . 2011-09-14 11:42 2561344 ----a-w- c:\windows\system32\nvsvcr.dll
2012-05-15 09:28 . 2010-07-09 15:37 645440 ----a-w- c:\windows\system32\nvvsvc.exe
2012-05-15 09:28 . 2010-07-09 15:37 62272 ----a-w- c:\windows\system32\nvshext.dll
2012-05-15 09:28 . 2010-07-09 15:37 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-05-15 09:28 . 2010-07-09 15:37 3931456 ----a-w- c:\windows\system32\nvcpl.dll
2012-05-15 09:27 . 2010-07-09 15:37 2759488 ----a-w- c:\windows\system32\nvsvc.dll
2012-05-15 00:21 . 2012-05-15 00:21 423744 ----a-w- c:\windows\system32\nvStreaming.exe
2012-07-14 00:15 . 2012-08-09 08:28 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\Dennis\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\Dennis\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\Dennis\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-10 1233920]
"iCloudServices"="c:\program files\Common Files\Apple\Internet Services\iCloudServices.exe" [2012-02-23 59240]
"ApplePhotoStreams"="c:\program files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2012-02-24 59240]
"MobileDocuments"="c:\program files\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-18 202240]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2007-10-01 4702208]
"QuickFinder Scheduler"="c:\program files\WordPerfect Office X3\Programs\QFSCHD130.EXE" [2007-01-02 83568]
"NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-09-28 185896]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-08 348664]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2012-05-28 296056]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-06-07 421776]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
"Skytel"="Skytel.exe" [2007-08-03 1826816]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
2006-10-11 11:45 75304 ----a-w- c:\program files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2012-04-18 18:56 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\recinfo306]
2007-10-23 12:52 2764800 ----a-w- c:\recinfo\RecInfo.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 20252341
*Deregistered* - 20252341
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Inhalt des "geplante Tasks" Ordners
.
2012-08-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-01 09:23]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.de/
mStart Page =
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Dennis\AppData\Roaming\Mozilla\Firefox\Profiles\91bwina0.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-{2EF17083-57D4-4D64-AE4F-55F32A2C4571} - c:\programdata\Codecv\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-08-10 14:23
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-08-10 14:30:04
ComboFix-quarantined-files.txt 2012-08-10 12:29
.
Vor Suchlauf: 27 Verzeichnis(se), 101.767.618.560 Bytes frei
Nach Suchlauf: 31 Verzeichnis(se), 101.490.970.624 Bytes frei
.
- - End Of File - - 9AFEB89EABB763A93D394C1B85A27067
Add Remove Programs Code:
ATTFilter Update for Microsoft Office 2007 (KB2508958) Adobe AIR Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.3) - Deutsch Amazon MP3-Downloader 1.0.9 AMD Catalyst Install Manager AniTuner Apple Application Support Apple Mobile Device Support Apple Software Update aTube Catcher Audacity 1.3.14 (Unicode) Avira Free Antivirus Big Fish Games Center (remove only) Big Fish Games Sudoku (remove only) BlueJ 3.0.4 Bonjour Canon MP Navigator 3.0 Canon MP510 Canon MP510 Benutzerregistrierung Canon Utilities Easy-PhotoPrint Catalyst Control Center InstallProxy Codecv ConvertHelper 2.2 Cradle of Rome (remove only) dcmsvc 1.0 Die Sims 2 Die Sims 2: Family Fun - Accessoires Die Sims 2: Nightlife Die Sims 2: Open For Business Die Sims 2: Wilde Campus-Jahre Die Sims™ 2 Apartment-Leben Die Sims™ 2 Freizeit-Spaß Die Sims™ 2 Gute Reise Die Sims™ 2 H&M®-Fashion-Accessoires Die Sims™ 2 Haustiere Die Sims™ 2 Küchen- und Bad-Einrichtungs-Accessoires Die Sims™ 2 Party-Accessoires Die Sims™ 2 Teen Style-Accessoires Die Sims™ 2 Vier Jahreszeiten Die Sims™ 2 Villen- und Garten-Accessoires Die Sims™ 2: Glamour-Accessoires Die Sims™ 3 Die Sims™ 3 "Erstelle eine Welt"-Tool - Beta Die Sims™ 3 Einfach tierisch Die Sims™ 3 Erstelle ein Muster-Tool Die Sims™ 3 Late Night Die Sims™ 3 Lebensfreude Die Sims™ 3 Reiseabenteuer Die Sims™ 3 Showtime Die Sims™ 3 Traumkarrieren Dropbox FirstSteps Diagnostics FlowBreeze Standard 2.6.0.14 GIMP 2.6.11 Google Earth Google Update Helper Greenfoot 2.0.1 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) iCloud Internet Explorer Toolbar 4.6 by SweetPacks iTunes Java-Editor 10.4c, 2010.09.03 Java Auto Updater Java DB 10.5.3.0 Java(TM) 6 Update 31 Java(TM) SE Development Kit 6 Update 23 Mahjong Towers Eternity EU (remove only) Malwarebytes Anti-Malware Version 1.62.0.1300 Microsoft .NET Framework 3.5 Language Pack SP1 - DEU Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Extended DEU Language Pack Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Excel MUI (German) 2007 Microsoft Office File Validation Add-In Microsoft Office Live Add-in 1.5 Microsoft Office Outlook MUI (German) 2007 Microsoft Office PowerPoint MUI (German) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Italian) 2007 Microsoft Office Proofing (German) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Shared MUI (German) 2007 Microsoft Office Standard 2007 Microsoft Office Word MUI (German) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft WSE 3.0 Runtime MilkShape 3D 1.8.4 MilkShape 3D 1.8.5 Mozilla Firefox 14.0.1 (x86 de) Mozilla Maintenance Service MSXML 4.0 SP2 (KB941833) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Mystery Case Files - Prime Suspects (remove only) Nero 8 Essentials NVIDIA 3D Vision Controller-Treiber 301.42 NVIDIA 3D Vision Controller Driver NVIDIA 3D Vision Treiber 301.42 NVIDIA Display Control Panel NVIDIA Grafiktreiber 301.42 NVIDIA Install Application NVIDIA PhysX NVIDIA PhysX-Systemsoftware 9.12.0213 NVIDIA Stereoscopic 3D Driver NVIDIA Systemsteuerung 301.42 NVIDIA Update 1.8.15 NVIDIA Update Components PC Connectivity Solution Poker Superstars II (remove only) PVSonyDll QRCode QuickTime Raw Therapee V4.0.8.3 x86 RealNetworks - Microsoft Visual C++ 2008 Runtime RealPlayer Realtek High Definition Audio Driver RealUpgrade 1.1 Replay Video Capture s3oc - Sims3 Object Cloner s3pe - Sims3 Package Editor ScanSoft OmniPage SE 4.0 Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2596786) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition Security Update for Windows Media Encoder (KB2447961) Security Update for Windows Media Encoder (KB954156) Sims 2 Wardrobe Wrangler v1.1 SlimDX Redistributable for .NET 2.0 (September 2011) Spybot - Search & Destroy StarUML 5.0.2.1570 Steam System Requirements Lab CYRI The Lord of the Rings: War in the North TriDef 3D Games (LG 3D Monitor/TV) 1.7.1 TSR RigFix Update für Microsoft Office Excel 2007 Help (KB963678) Update für Microsoft Office Outlook 2007 Help (KB963677) Update für Microsoft Office Powerpoint 2007 Help (KB963669) Update für Microsoft Office Word 2007 Help (KB963665) Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition Video mp3 Extractor Virtual Villagers (remove only) Visual Studio Tools for the Office system 3.0 Runtime Warner Bros. Digital Copy Manager Windows-Treiberpaket - Nokia pccsmcfd (10/12/2007 6.85.4.0) Windows Media Encoder 9-Reihe WinPcap 4.1.2 WinRAR WordPerfect Office X3 XMedia Recode 2.2.8.9 |
| Themen zu Verschiedene RKIT/Agent in BAcroIeHelpe 180.dll |
| .dll, 32 bit, anderen, appdata, bacroiehelpe180.dll, betriebssystem, codecv, entferne, entfernen, folge, folgende, google earth, hoffe, home, incredibar toolbar, install.exe, liste, meldung, msiexec.exe, nvidia update, office 2007, origin, plug-in, roaming, safer networking, sweetpacks, tagen, trojan-spy.win32.farko, verschiedene, viren, vista 32 bit, visual studio, windows, windows vista |
Baum-Darstellung