24.05.2009, 00:26
|
#16 |
| |  ZPACK in ovfsthxphejvobd.dll lässt sich nicht löschen
 Hier Teil 2: Zitat:
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-12-03 1205760]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2009-04-28 1830128]
"Google Update"="c:\users\stefan behrens\AppData\Local\Google\Update\GoogleUpdate.exe" [2008-12-20 133104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2007-03-12 225280]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2007-08-22 80896]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-17 13580832]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-17 92704]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-05-11 516440]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-08-06 6265376]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-10-18 455968]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSetActiveDesktop"= 1 (0x1)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 10:05 356352 ----a-w c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Users^stefan behrens^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Kurznotizen.lnk]
path=c:\users\stefan behrens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kurznotizen.lnk
backup=c:\windows\pss\Kurznotizen.lnk.Startup
backupExtension=.Startup
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{5BB8CD12-0A43-40E1-BC27-C4E74AAFA659}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hpqtra08.exe:hpqtra08.exe
"{1785867E-A130-438A-A014-F7A90DA647F1}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hpqtra08.exe:hpqtra08.exe
"{A67F7E16-003C-47F3-8E7B-FAA46B7F5FDD}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hpqste08.exe:hpqste08.exe
"{E5505A26-5A4E-4F39-ACAC-33304C756553}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hpqste08.exe:hpqste08.exe
"{4C278827-3C90-41E3-B91A-19DB401AAA3C}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hposid01.exe:hposid01.exe
"{6FFCEF30-B686-4864-B4C0-8895AA60FF1C}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hposid01.exe:hposid01.exe
"{457F860C-77B3-4FE1-87A4-9E021BEC6BD3}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hpiscnapp.exe:hpiscnapp.exe
"{54E2FD9D-E3C3-4581-AE8B-97568605526E}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hpiscnapp.exe:hpiscnapp.exe
"{53F23157-8484-41D6-B7AB-643F6A9DB4A4}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\hpqkygrp.exe:hpqkygrp.exe
"{5B002FCB-DA38-4588-8C61-FF50A81971C4}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\hpqkygrp.exe:hpqkygrp.exe
"{E140E7A1-D22B-40BC-B71A-19E8BCF6D98D}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\Lager\hpiscnapp.exe:hpiscnapp.exe
"{90B23D8D-1F46-42B2-A2E2-C957A73F46A4}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\Lager\hpiscnapp.exe:hpiscnapp.exe
"{B71CDE94-60AA-43F2-A0C4-23ED92EB401D}"= Disabled:UDP:c:\program files\HP\Digital Imaging\bin\Lager\hpqkygrp.exe:hpqkygrp.exe
"{7A4B7DFA-D3F4-4123-A1AE-48D163022C88}"= Disabled:TCP:c:\program files\HP\Digital Imaging\bin\Lager\hpqkygrp.exe:hpqkygrp.exe
"{1966F2F4-9264-4E48-8D64-C1966EC5B04E}"= c:\program files\Skype\Phone\Skype.exe:Skype
"{C376A98B-3739-43B7-84E2-B15F74A57694}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{B21D26C4-4008-42CA-BB4A-1B5278A7F695}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"TCP Query User{52468850-222A-44DF-875D-6CD2ED07D160}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
"UDP Query User{0061C688-190C-4F9E-A65C-A9EC23F81825}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
"{E007A6AC-70C6-48C4-8DDA-38B1028A66D9}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live Sync
R0 Lbd;Lbd;c:\windows\System32\drivers\Lbd.sys [11.05.2009 03:24 64160]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [28.04.2009 11:33 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [28.04.2009 11:33 72944]
R2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [01.05.2009 02:49 108289]
R2 TabletServicePen;TabletServicePen;c:\windows\System32\Pen_Tablet.exe [30.10.2008 12:45 3032360]
R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [28.04.2009 11:33 7408]
R3 wacmoumonitor;Wacom Mode Helper;c:\windows\System32\drivers\wacmoumonitor.sys [30.10.2008 12:45 15144]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [09.03.2009 21:06 953168]
S3 MRV6X32U;Vista 32-bits Native WiFi Driver - USB;c:\windows\System32\drivers\MRVW23B.sys [13.10.2008 19:30 231040]
S3 ScratchAmp;ScratchAmp Driver (ScratchAmp.sys);c:\windows\System32\drivers\ScratchAmp.sys [19.04.2009 18:50 22912]
S4 O2MDRDR;O2MDRDR;c:\windows\System32\drivers\o2media.sys [12.03.2008 11:40 34144]
S4 O2SDRDR;O2SDRDR;c:\windows\System32\drivers\o2sd.sys [12.03.2008 11:40 28800]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Inhalt des "geplante Tasks" Ordners
2009-05-18 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-03-09 01:23]
2009-05-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-884559710-4201843287-3005015240-1000.job
- c:\users\stefan behrens\AppData\Local\Google\Update\GoogleUpdate.exe [2008-12-20 15:24]
2009-05-23 c:\windows\Tasks\User_Feed_Synchronization-{6E241DD5-9BE4-4161-854D-8195544C4D7A}.job
- c:\windows\system32\msfeedssync.exe [2008-01-21 02:24]
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
SafeBoot-procexp90.Sys
|
|
Baum-Darstellung