hm obwohl avira aus war, hat es sich am ende paar mal gemeldet, erst nach mehrmaligem ignorieren der combo fix warnung von avira, hat es Ruhe gegeben...
combofix log
Combofix Logfile: Code:
ComboFix 11-10-12.01 - Admin 12.10.2011 20:37:19.1.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.3326.2181 [GMT 2:00]
ausgeführt von:: c:\users\Admin\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: Lavasoft Ad-Watch Live! Virenschutz *Disabled/Updated* {9FF26384-70D4-CE6B-3ECB-E759A6A40116}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Lavasoft Ad-Watch Live! *Disabled/Updated* {24938260-56EE-C1E5-047B-DC2BDD234BAB}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\logboot_08.10.2011.tureg.log
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-09-12 bis 2011-10-12 ))))))))))))))))))))))))))))))
.
.
2011-10-12 18:43 . 2011-10-12 18:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-10-12 18:18 . 2011-10-12 18:18 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8D535193-E90D-40D1-9844-8AE415EBCC98}\offreg.dll
2011-10-12 18:18 . 2011-09-21 07:00 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8D535193-E90D-40D1-9844-8AE415EBCC98}\mpengine.dll
2011-10-08 20:57 . 2011-10-08 20:57 -------- d-----w- c:\programdata\NVIDIA Corporation
2011-10-08 20:56 . 2011-10-08 20:59 -------- d-----w- c:\program files\NVIDIA Corporation
2011-10-08 20:56 . 2011-10-08 20:56 -------- d-----w- C:\NVIDIA
2011-10-08 20:46 . 2011-10-08 20:46 -------- d-----w- c:\program files\Driver Cleaner Pro
2011-10-08 12:15 . 2011-10-08 12:15 -------- d-----w- c:\program files\Avira
2011-10-08 12:15 . 2011-09-18 06:39 134344 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-10-08 12:15 . 2011-09-15 21:55 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-10-08 12:15 . 2011-09-15 21:55 74640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-10-08 10:03 . 2011-10-08 10:03 -------- d-----w- c:\program files\CCleaner
2011-10-08 08:51 . 2011-10-08 08:51 -------- d-----w- C:\_OTL
2011-10-07 19:05 . 2011-10-08 12:15 -------- d-----w- c:\programdata\Avira
2011-10-05 17:10 . 2011-10-05 17:10 -------- d-----w- c:\program files\Sophos
2011-10-04 19:19 . 2011-09-28 10:36 16432 ----a-w- c:\windows\system32\lsdelete.exe
2011-10-04 11:00 . 2011-10-04 11:18 -------- d-----w- c:\windows\system32\sound
2011-10-04 10:55 . 2011-10-04 10:55 -------- d-----w- c:\windows\system32\Scenario
2011-10-04 10:55 . 2011-10-04 10:55 -------- d-----w- c:\windows\system32\rmdll
2011-10-04 10:55 . 2011-10-04 10:55 -------- d-----w- c:\windows\system32\rm
2011-10-04 10:54 . 2011-10-04 10:54 -------- d-----w- c:\windows\system32\render
2011-10-04 10:54 . 2011-10-04 10:54 -------- d-----w- c:\windows\system32\fonts
2011-10-04 10:54 . 2011-10-04 10:54 -------- d-----w- c:\windows\system32\Debug
2011-10-04 10:53 . 2011-10-04 10:54 -------- d-----w- c:\windows\system32\DATA
2011-10-04 10:38 . 2011-10-04 10:53 -------- d-----w- c:\windows\system32\art
2011-10-04 10:38 . 2011-10-04 10:38 -------- d-----w- c:\windows\system32\ai
2011-10-04 10:38 . 2011-10-04 10:38 11033360 ----a-w- c:\windows\system32\Spartan.exe
2011-10-04 10:38 . 2011-10-04 10:38 81998 ----a-w- c:\windows\system32\RockallDLL.dll
2011-10-04 10:38 . 2011-10-04 10:38 746496 ----a-w- c:\windows\system32\granny2.dll
2011-10-04 10:37 . 2011-10-04 10:38 139536 ----a-w- c:\windows\system32\eulax.dll
2011-10-04 10:37 . 2011-10-04 10:37 173408 ----a-w- c:\windows\system32\pw32b.dll
2011-10-04 10:37 . 2011-10-04 10:37 152848 ----a-w- c:\windows\system32\AOEOnlineReplace.exe
2011-10-04 10:37 . 2011-10-04 10:37 2982672 ----a-w- c:\windows\system32\AOEOnline.exe
2011-10-04 09:58 . 2011-10-04 09:58 -------- d-----w- c:\program files\Microsoft Games
2011-10-04 09:57 . 2008-10-15 04:22 452440 ----a-w- c:\windows\system32\d3dx10_40.dll
2011-10-04 09:57 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\system32\D3DX9_40.dll
2011-10-04 09:57 . 2008-10-15 04:22 2036576 ----a-w- c:\windows\system32\D3DCompiler_40.dll
2011-10-04 09:56 . 2009-09-04 15:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2011-10-04 09:56 . 2007-04-04 16:53 81768 ----a-w- c:\windows\system32\xinput1_3.dll
2011-10-04 09:56 . 2011-10-04 09:56 -------- d-----w- c:\windows\system32\xlive
2011-10-04 09:56 . 2011-10-04 09:56 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2011-10-03 18:32 . 2011-10-03 18:32 -------- d-----w- c:\programdata\Hewlett-Packard
2011-10-03 18:32 . 2009-07-14 01:15 280064 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\hpzppw71.dll
2011-10-03 17:32 . 2011-10-03 17:32 -------- d-----w- c:\program files\Lavalys
2011-10-03 16:52 . 2011-10-03 16:52 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2011-10-03 16:22 . 2011-10-03 16:22 1 ----a-w- c:\windows\system32\SI.bin
2011-10-03 15:46 . 2011-10-03 17:21 -------- d-----w- c:\programdata\Ubisoft
2011-10-03 15:26 . 2005-05-26 13:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2011-10-01 22:27 . 2011-09-16 14:52 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2011-10-01 22:27 . 2011-09-16 14:44 21312 ----a-w- c:\windows\system32\authuitu.dll
2011-10-01 22:27 . 2011-09-16 14:44 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2011-10-01 22:27 . 2011-10-01 22:33 -------- d-----w- c:\program files\TuneUp Utilities 2011
2011-10-01 22:25 . 2011-10-01 22:29 -------- d-----w- c:\programdata\TuneUp Software
2011-10-01 22:25 . 2011-10-01 22:25 -------- d-sh--w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2011-10-01 22:06 . 2011-10-01 22:13 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2011-10-01 22:04 . 2011-10-01 22:04 -------- d-----w- c:\program files\Adobe Media Player
2011-10-01 22:03 . 2011-10-01 22:03 -------- d-----w- c:\program files\Common Files\Adobe AIR
2011-10-01 15:24 . 2009-07-21 02:04 50200 ----a-w- c:\windows\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll
2011-10-01 15:23 . 2009-07-21 02:04 79896 ----a-w- c:\windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll
2011-10-01 15:23 . 2011-10-01 15:23 -------- d-----w- c:\windows\system32\RsFx
2011-10-01 15:22 . 2011-10-01 15:22 -------- d-----w- c:\windows\system32\1033
2011-10-01 15:20 . 2011-10-01 15:23 -------- d-----w- c:\program files\Microsoft SQL Server
2011-10-01 15:19 . 2011-10-01 15:19 -------- d-----w- c:\program files\Microsoft Sync Framework
2011-10-01 15:19 . 2011-10-01 15:19 -------- d-----w- c:\program files\Microsoft Synchronization Services
2011-10-01 15:19 . 2011-10-01 15:19 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2011-10-01 15:19 . 2011-10-01 15:19 596304 ----a-w- c:\program files\Common Files\Microsoft Shared\VSTO\10.0\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU\install.exe
2011-10-01 15:19 . 2011-10-01 15:19 53088 ----a-w- c:\program files\Common Files\Microsoft Shared\VSTO\10.0\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU\install.res.1031.dll
2011-10-01 15:18 . 2011-10-01 15:18 -------- d-----w- c:\programdata\PreEmptive Solutions
2011-10-01 15:16 . 2011-10-12 18:21 -------- d-----w- c:\program files\Microsoft Silverlight
2011-10-01 15:14 . 2011-10-01 15:14 -------- d-----w- c:\program files\Microsoft ASP.NET
2011-10-01 15:14 . 2011-10-01 15:14 -------- d-----w- c:\program files\IIS
2011-10-01 15:14 . 2011-10-04 13:49 2490752 ----a-w- c:\programdata\Microsoft\VisualStudio\10.0\1031\ResourceCache.dll
2011-10-01 15:10 . 2011-10-01 15:22 -------- d-----w- c:\windows\system32\1031
2011-10-01 15:09 . 2011-10-01 15:09 -------- d-----w- c:\windows\symbols
2011-10-01 15:09 . 2011-10-04 13:39 -------- d-----w- c:\program files\Common Files\Merge Modules
2011-10-01 15:09 . 2011-10-01 15:20 -------- d-----w- c:\program files\Microsoft SDKs
2011-10-01 15:09 . 2011-10-01 15:18 -------- d-----w- c:\program files\Microsoft Visual Studio 10.0
2011-10-01 15:09 . 2011-10-01 15:12 -------- d-----w- c:\program files\Microsoft F#
2011-10-01 15:09 . 2011-10-01 15:10 -------- d-----w- c:\program files\HTML Help Workshop
2011-10-01 15:09 . 2011-10-01 15:09 -------- d-----w- c:\program files\Microsoft Help Viewer
2011-10-01 15:07 . 2011-10-01 15:07 -------- d-----w- c:\program files\Microsoft Visual Studio 9.0
2011-10-01 15:05 . 2011-10-01 15:22 -------- d-----w- c:\program files\Microsoft.NET
2011-10-01 15:04 . 2011-10-01 15:04 -------- d-----w- c:\windows\PCHEALTH
2011-10-01 14:20 . 2011-10-01 14:20 -------- d-----w- c:\program files\Alcohol Soft
2011-10-01 14:14 . 2011-10-01 14:14 722416 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-10-01 14:14 . 2011-10-01 14:14 -------- d-----w- c:\program files\Franzis
2011-09-30 09:51 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2011-09-30 09:51 . 2006-09-28 14:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2011-09-30 09:50 . 2011-09-30 09:50 -------- d-----w- c:\program files\Winamp Detect
2011-09-30 09:50 . 2011-09-30 09:51 -------- d-----w- c:\program files\Winamp
2011-09-30 09:45 . 2011-09-30 09:45 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2011-09-29 20:24 . 2011-09-29 20:24 -------- d-----w- c:\program files\Microsoft Baseline Security Analyzer 2
2011-09-29 20:15 . 2011-09-29 20:15 -------- d-----w- c:\program files\Secunia
2011-09-28 19:27 . 2011-09-28 19:27 -------- d-----w- c:\program files\Windows7FirewallControl
2011-09-28 18:32 . 2011-09-28 18:32 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-28 18:32 . 2011-09-28 18:32 -------- d-----w- c:\windows\system32\Macromed
2011-09-28 12:55 . 2011-09-28 12:55 -------- d-----w- c:\program files\mst software
2011-09-28 12:31 . 2011-09-28 12:51 -------- d-----w- c:\program files\Process296Monitor
2011-09-28 11:52 . 2011-09-28 11:52 24944 ----a-w- c:\windows\system32\drivers\GVTDrv.sys
2011-09-28 11:40 . 2011-09-28 11:40 -------- d-----w- C:\RaidTool
2011-09-28 11:40 . 2008-03-19 02:54 151552 ------r- c:\windows\system32\xRaidAPI.dll
2011-09-28 11:40 . 2007-11-19 03:28 1966080 ------r- c:\windows\system32\xRaidSetup.exe
2011-09-28 11:40 . 2008-07-31 02:21 79960 ----a-w- c:\windows\system32\drivers\jraid.sys
2011-09-28 11:40 . 2011-09-28 11:40 -------- d-----w- c:\windows\RaidTool
2011-09-28 11:34 . 2011-09-28 11:34 -------- d-----w- c:\program files\Intel
2011-09-28 11:34 . 2008-08-19 02:56 53248 ----a-r- c:\windows\system32\CSVer.dll
2011-09-28 11:34 . 2011-09-28 11:34 -------- d-----w- C:\Intel
2011-09-28 11:31 . 2011-09-28 12:03 16608 ----a-w- c:\windows\gdrv.sys
2011-09-28 11:30 . 2011-09-28 11:30 -------- d-----w- c:\program files\OpenOffice.org 3
2011-09-28 11:20 . 2009-07-20 10:25 301656 ----a-w- c:\windows\system32\BtCoreIf.dll
2011-09-28 11:20 . 2009-07-20 10:26 84496 ----a-w- c:\windows\system32\KemXML.dll
2011-09-28 11:20 . 2009-07-20 10:26 117264 ----a-w- c:\windows\system32\KemWnd.dll
2011-09-28 11:20 . 2009-07-20 10:26 145936 ----a-w- c:\windows\system32\KemUtil.dll
2011-09-28 11:20 . 2009-07-20 10:26 170512 ----a-w- c:\windows\system32\kemutb.dll
2011-09-28 11:20 . 2011-09-28 11:20 -------- d-----w- c:\programdata\Logitech
2011-09-28 11:20 . 2011-09-28 11:22 -------- d-----w- c:\program files\Common Files\Logishrd
2011-09-28 11:20 . 2011-09-28 11:20 -------- d-----w- c:\program files\Logitech
2011-09-28 11:20 . 2011-09-28 11:21 -------- d-----w- c:\programdata\LogiShrd
2011-09-28 11:08 . 2011-09-28 11:08 -------- d-----w- c:\program files\xp-AntiSpy_deutsch39711
2011-09-28 11:07 . 2011-09-28 11:07 -------- d-----w- c:\program files\VideoLAN
2011-09-28 11:03 . 2011-10-07 19:01 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2011-09-28 11:03 . 2011-10-04 20:15 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-09-28 10:59 . 2011-09-28 10:59 -------- d-----r- c:\program files\Skype
2011-09-28 10:59 . 2011-09-28 10:59 -------- d-----w- c:\programdata\Skype
2011-09-28 10:57 . 2011-09-28 10:57 -------- d-----w- c:\programdata\Malwarebytes
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-04 10:17 . 2009-08-18 09:30 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2011-10-04 10:17 . 2009-08-18 09:24 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-09-27 14:33 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-09-30 21:55 . 2011-09-27 20:16 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824]
"RtHDVCpl"="RtHDVCpl.exe" [2008-07-24 6265376]
"Skytel"="Skytel.exe" [2008-07-24 1833504]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
"Windows7FirewallControl"="c:\program files\Windows7FirewallControl\Windows7FirewallControl.exe" [2011-04-06 831488]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-09-23 258512]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-9-28 813584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 10:28 72208 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
backup=c:\windows\pss\Secunia PSI Tray.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
path=c:\users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
backup=c:\windows\pss\OpenOffice.org 3.3.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-06-06 10:55 937920 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
2010-03-06 01:44 500208 ------w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
2010-07-22 20:10 402432 ----a-w- c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2009-09-18 15:34 205976 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-06-09 11:06 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
2010-02-19 11:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
.
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2011-09-28 2151640]
R3 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R3 GVTDrv;GVTDrv;c:\windows\system32\Drivers\GVTDrv.sys [2011-09-28 24944]
R3 MEMSWEEP2;MEMSWEEP2;c:\windows\system32\BAD6.tmp [x]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [2010-09-01 15544]
R3 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R3 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\PSIA.exe [2011-04-19 993848]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys [2009-12-08 48128]
R4 MSSQLServerADHelper100;SQL Server Hilfsdienst für Active Directory;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-21 47128]
R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336]
R4 SQLAgent$SQLEXPRESS;SQL Server-Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [2011-08-18 64512]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-10-01 722416]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 36000]
S2 AntiVirMailService;Avira Email Schutz;c:\program files\Avira\AntiVir Desktop\avmailc.exe [2011-09-23 342480]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-09-23 86224]
S2 AntiVirWebService;Avira Browser Schutz;c:\program files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2011-09-23 463824]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-09-16 1526080]
S2 Windows7FirewallService;Windows7FirewallService;c:\program files\Windows7FirewallControl\Windows7FirewallService.exe [2011-04-06 405504]
S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-11-29 10064]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Inhalt des "geplante Tasks" Ordners
.
2011-10-12 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2011-08-18 10:36]
.
.
------- Zusätzlicher Suchlauf -------
.
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\oj8q3gd4.default\
FF - prefs.js: browser.startup.homepage - chrome://foxtab/content/homepage.html
FF - user.js: network.http.max-persistent-connections-per-server - 4
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\BAD6.tmp"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-627701320-1578443614-114551620-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:21,07,9d,ae,42,7a,14,e6,11,65,af,3b,08,36,c4,1a,97,0e,a2,71,72,08,8b,
e0,dc,47,77,ac,84,ce,36,3a,cd,ba,52,e0,df,4b,be,f9,1d,b0,b4,3e,79,0d,fc,54,\
"??"=hex:38,f4,4e,01,4f,25,95,da,fb,b9,53,76,e6,ff,a6,4c
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'Explorer.exe'(6096)
c:\program files\Logitech\SetPoint\GameHook.dll
c:\program files\Logitech\SetPoint\lgscroll.dll
c:\progra~1\SPYBOT~1\SDHelper.dll
.
Zeit der Fertigstellung: 2011-10-12 21:00:24
ComboFix-quarantined-files.txt 2011-10-12 19:00
.
Vor Suchlauf: 9 Verzeichnis(se), 118.872.481.792 Bytes frei
Nach Suchlauf: 12 Verzeichnis(se), 118.828.900.352 Bytes frei
.
- - End Of File - - ACF72B170EA4B19299F912CF9166BAFC
--- --- --- |
aswMBR.exe und speichere die Datei auf deinem Desktop.