Combofix Logfile: Code:
ComboFix 12-06-05.01 - ShowNoMercy 05.06.2012 13:50:52.1.4 - x64
Microsoft Windows 7 Professional 6.1.7600.0.1252.49.1031.18.4093.2775 [GMT 2:00]
ausgeführt von:: c:\users\ShowNoMercy\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-05-05 bis 2012-06-05 ))))))))))))))))))))))))))))))
.
.
2012-06-05 11:55 . 2012-06-05 11:55 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-04 04:15 . 2012-06-04 04:15 -------- d-----w- c:\program files (x86)\TeamViewer
2012-06-04 03:24 . 2012-06-04 03:24 -------- d-----w- c:\program files (x86)\ESET
2012-06-03 16:30 . 2012-06-03 16:30 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-06-03 16:30 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-02 12:56 . 2012-06-02 12:56 -------- d-----w- c:\program files (x86)\streamWriter
2012-06-02 12:12 . 2012-06-02 12:12 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-06-01 19:47 . 2012-06-01 19:47 -------- d-----w- c:\program files (x86)\Electronic Arts
2012-06-01 16:34 . 2012-06-01 16:34 -------- d-----w- c:\programdata\EA Core
2012-06-01 15:43 . 2012-06-01 15:42 447752 ----a-w- c:\windows\SysWow64\vp6vfw.dll
2012-06-01 15:43 . 2012-06-01 15:43 -------- d-----w- c:\program files (x86)\Microsoft WSE
2012-06-01 15:42 . 2006-09-28 14:05 3977496 ----a-w- c:\windows\system32\d3dx9_31.dll
2012-06-01 15:42 . 2006-09-28 14:05 2414360 ----a-w- c:\windows\SysWow64\d3dx9_31.dll
2012-06-01 15:42 . 2012-06-01 19:47 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
2012-06-01 13:55 . 2012-06-01 18:50 -------- d-----w- c:\program files (x86)\Origin Games
2012-06-01 13:54 . 2012-06-01 13:58 -------- d-----w- c:\programdata\Origin
2012-06-01 13:53 . 2012-06-01 13:53 -------- d-----w- c:\programdata\Electronic Arts
2012-06-01 13:53 . 2012-06-01 13:54 -------- d-----w- c:\program files (x86)\Origin
2012-06-01 13:12 . 2012-06-01 13:12 2300696 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-06-01 13:12 . 2012-06-01 13:12 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-06-01 13:12 . 2012-06-01 13:12 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-06-01 12:38 . 2012-06-01 12:38 -------- d-----w- c:\program files (x86)\Microsoft
2012-06-01 12:38 . 2012-06-01 12:38 -------- d-----w- c:\program files (x86)\Windows Live SkyDrive
2012-06-01 12:37 . 2012-06-01 12:38 -------- d-----w- c:\program files (x86)\Windows Live
2012-06-01 12:37 . 2012-06-01 12:37 -------- d-----w- c:\windows\PCHEALTH
2012-06-01 12:28 . 2012-06-01 12:28 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2012-06-01 11:19 . 2011-03-25 03:23 324608 ----a-w- c:\windows\system32\drivers\usbport.sys
2012-06-01 11:19 . 2011-03-25 03:22 52224 ----a-w- c:\windows\system32\drivers\usbehci.sys
2012-06-01 11:19 . 2011-03-25 03:23 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2012-06-01 11:19 . 2011-03-25 03:23 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2012-06-01 11:19 . 2011-03-25 03:22 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2012-06-01 11:19 . 2011-03-25 03:22 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2012-06-01 11:19 . 2011-03-25 03:22 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2012-06-01 11:02 . 2012-06-01 11:02 -------- d-----w- c:\program files\TeamSpeak 3 Client
2012-06-01 10:38 . 2012-06-01 10:38 -------- d-----w- c:\programdata\Blizzard Entertainment
2012-05-31 21:05 . 2012-05-31 21:05 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-31 21:05 . 2012-05-31 21:05 419488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-05-31 21:05 . 2012-05-31 21:05 -------- d-----w- c:\windows\SysWow64\Macromed
2012-05-31 21:05 . 2012-05-31 21:05 -------- d-----w- c:\windows\system32\Macromed
2012-05-31 20:22 . 2012-05-31 20:22 -------- d-----w- c:\programdata\Malwarebytes
2012-05-31 20:07 . 2012-05-31 20:07 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-05-31 20:07 . 2012-05-31 20:07 -------- d-----w- c:\program files (x86)\Oracle
2012-05-31 20:07 . 2012-04-04 16:47 772504 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-05-31 20:07 . 2012-04-04 16:47 687504 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-05-31 20:06 . 2012-05-31 20:06 -------- d-----w- c:\program files (x86)\Java
2012-05-31 19:45 . 2012-05-31 19:45 -------- d-----w- c:\windows\SysWow64\wbem\en-US
2012-05-31 19:45 . 2012-05-31 19:45 -------- d-----w- c:\windows\system32\wbem\en-US
2012-05-31 19:35 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2012-05-31 19:35 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2012-05-31 19:16 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2012-05-31 19:16 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2012-05-31 19:00 . 2009-11-25 10:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2012-05-31 19:00 . 2009-11-25 10:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2012-05-31 19:00 . 2009-11-25 10:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2012-05-31 19:00 . 2009-11-25 10:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2012-05-31 19:00 . 2009-11-25 10:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2012-05-31 19:00 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2012-05-31 19:00 . 2009-11-25 10:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2012-05-31 19:00 . 2009-11-25 10:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2012-05-31 19:00 . 2009-11-25 10:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2012-05-31 19:00 . 2009-11-25 10:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2012-05-31 19:00 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-05-31 18:42 . 2012-03-01 06:54 22896 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-05-31 18:42 . 2012-03-01 06:45 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-05-31 18:42 . 2012-03-01 06:40 80896 ----a-w- c:\windows\system32\imagehlp.dll
2012-05-31 18:42 . 2012-03-01 06:35 5120 ----a-w- c:\windows\system32\wmi.dll
2012-05-31 18:42 . 2012-03-01 05:49 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-05-31 18:42 . 2012-03-01 05:45 158720 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-05-31 18:42 . 2012-03-01 05:40 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-05-31 18:40 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2012-05-31 18:39 . 2012-05-31 18:39 955848 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-05-31 18:39 . 2012-05-31 18:39 839112 ----a-w- c:\windows\system32\deployJava1.dll
2012-05-31 18:39 . 2012-05-31 18:39 -------- d-----w- c:\program files\Java
2012-05-31 17:59 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2012-05-31 17:58 . 2009-09-03 07:36 1975296 ----a-w- c:\windows\system32\CertEnroll.dll
2012-05-31 17:57 . 2011-03-11 06:19 1359872 ----a-w- c:\windows\system32\mfc42u.dll
2012-05-31 17:56 . 2011-08-17 05:32 613888 ----a-w- c:\windows\system32\psisdecd.dll
2012-05-31 17:55 . 2011-02-05 12:41 556928 ----a-w- c:\windows\system32\winresume.efi
2012-05-31 17:55 . 2011-02-05 12:41 640896 ----a-w- c:\windows\system32\winload.efi
2012-05-31 17:55 . 2011-02-05 12:41 20352 ----a-w- c:\windows\system32\kdusb.dll
2012-05-31 17:55 . 2011-02-05 12:41 19328 ----a-w- c:\windows\system32\kd1394.dll
2012-05-31 17:55 . 2011-02-05 12:41 17792 ----a-w- c:\windows\system32\kdcom.dll
2012-05-31 17:55 . 2011-02-05 12:39 603976 ----a-w- c:\windows\system32\winload.exe
2012-05-31 17:55 . 2011-02-05 12:39 518160 ----a-w- c:\windows\system32\winresume.exe
2012-05-31 17:55 . 2010-08-31 04:32 954752 ----a-w- c:\windows\SysWow64\mfc40.dll
2012-05-31 17:55 . 2010-08-31 04:32 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll
2012-05-31 17:55 . 2009-08-29 07:50 46592 ----a-w- c:\windows\system32\msasn1.dll
2012-05-31 17:55 . 2009-08-29 06:57 34816 ----a-w- c:\windows\SysWow64\msasn1.dll
2012-05-31 17:53 . 2012-05-31 17:53 -------- d-----w- C:\Windows.old
2012-05-31 17:53 . 2012-05-31 17:53 -------- d-----w- c:\programdata\ATI
2012-05-31 17:49 . 2011-12-16 08:42 634368 ----a-w- c:\windows\system32\msvcrt.dll
2012-05-31 17:45 . 2012-05-31 17:45 -------- d-----w- c:\programdata\AMD
2012-05-31 17:45 . 2012-05-31 17:45 -------- d-----w- c:\program files (x86)\AMD AVT
2012-05-31 17:45 . 2012-05-31 17:45 -------- d-----w- c:\program files (x86)\AMD APP
2012-05-31 17:45 . 2012-05-31 17:45 -------- d-----w- c:\program files\Common Files\ATI Technologies
2012-05-31 17:45 . 2012-05-31 17:45 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2012-05-31 17:44 . 2012-05-31 17:44 -------- d-----w- c:\program files (x86)\ATI Technologies
2012-05-31 17:43 . 2012-05-31 17:45 -------- d-----w- c:\program files\ATI Technologies
2012-05-31 17:43 . 2012-05-31 17:43 -------- d-----w- c:\program files\ATI
2012-05-31 17:36 . 2012-05-02 13:24 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-05-31 17:36 . 2012-04-27 08:20 132832 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-05-31 17:36 . 2012-04-24 22:32 98848 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-05-31 17:36 . 2012-05-31 17:36 -------- d-----w- c:\programdata\Avira
2012-05-31 17:36 . 2012-05-31 17:36 -------- d-----w- c:\program files (x86)\Avira
2012-05-31 17:36 . 2011-11-19 15:07 77312 ----a-w- c:\windows\system32\packager.dll
2012-05-31 17:36 . 2011-11-19 14:06 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-05-31 17:35 . 2012-06-04 21:22 -------- d-sh--w- c:\windows\Installer
2012-05-31 17:31 . 2012-05-31 17:31 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-05-31 17:28 . 2012-01-25 06:27 76288 ----a-w- c:\windows\system32\rdpwsx.dll
2012-05-31 17:28 . 2012-01-25 06:27 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-05-31 17:28 . 2012-01-25 06:20 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-05-31 17:28 . 2010-01-09 07:19 139264 ----a-w- c:\windows\system32\cabview.dll
2012-05-31 17:28 . 2010-01-09 06:52 132608 ----a-w- c:\windows\SysWow64\cabview.dll
2012-05-31 17:28 . 2012-02-15 06:27 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-05-31 17:28 . 2012-02-15 05:44 826368 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-05-31 17:28 . 2012-02-15 04:47 204800 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-05-31 17:28 . 2012-02-15 04:46 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-05-31 17:19 . 2012-05-14 23:41 8955792 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{FCB6CC03-1FF1-41B1-B242-CE957E67C912}\mpengine.dll
2012-05-31 17:19 . 2012-02-23 08:18 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-05-31 17:04 . 2012-05-31 17:04 0 ----a-w- c:\windows\ativpsrm.bin
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-06 05:22 . 2012-04-06 05:22 11174400 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-04-06 02:22 . 2012-04-06 02:22 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-04-06 02:21 . 2012-04-06 02:21 909312 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-04-06 02:20 . 2012-04-06 02:20 1067520 ----a-w- c:\windows\system32\aticfx64.dll
2012-04-06 02:16 . 2012-04-06 02:16 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-04-06 02:16 . 2012-04-06 02:16 503808 ----a-w- c:\windows\system32\atieclxx.exe
2012-04-06 02:16 . 2012-04-06 02:16 236544 ----a-w- c:\windows\system32\atiesrxx.exe
2012-04-06 02:14 . 2012-04-06 02:14 120320 ----a-w- c:\windows\system32\atitmm64.dll
2012-04-06 02:14 . 2012-04-06 02:14 21504 ----a-w- c:\windows\system32\atimuixx.dll
2012-04-06 02:14 . 2012-04-06 02:14 59392 ----a-w- c:\windows\system32\atiedu64.dll
2012-04-06 02:14 . 2012-04-06 02:14 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2012-04-06 02:13 . 2012-04-06 02:13 6800896 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-04-06 02:10 . 2012-04-06 02:10 26181632 ----a-w- c:\windows\system32\atio6axx.dll
2012-04-06 02:00 . 2012-04-06 02:00 64000 ----a-w- c:\windows\system32\coinst.dll
2012-04-06 01:54 . 2009-07-13 21:59 7479296 ----a-w- c:\windows\system32\atidxx64.dll
2012-04-06 01:50 . 2012-04-06 01:50 19753984 ----a-w- c:\windows\SysWow64\atioglxx.dll
2012-04-06 01:35 . 2012-04-06 01:35 1120768 ----a-w- c:\windows\system32\atiumd6v.dll
2012-04-06 01:34 . 2012-04-06 01:34 1831424 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2012-04-06 01:34 . 2012-04-06 01:34 4731904 ----a-w- c:\windows\system32\atiumd6a.dll
2012-04-06 01:34 . 2012-04-06 01:34 6203392 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-04-06 01:30 . 2012-04-06 01:30 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2012-04-06 01:30 . 2012-04-06 01:30 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2012-04-06 01:30 . 2012-04-06 01:30 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2012-04-06 01:30 . 2012-04-06 01:30 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2012-04-06 01:29 . 2012-04-06 01:29 16090624 ----a-w- c:\windows\system32\aticaldd64.dll
2012-04-06 01:25 . 2012-04-06 01:25 13764096 ----a-w- c:\windows\SysWow64\aticaldd.dll
2012-04-06 01:23 . 2012-04-06 01:23 7431680 ----a-w- c:\windows\system32\atiumd64.dll
2012-04-06 01:22 . 2012-04-06 01:22 4795904 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-04-06 01:11 . 2012-04-06 01:11 514560 ----a-w- c:\windows\system32\atiadlxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 360448 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2012-04-06 01:11 . 2012-04-06 01:11 17408 ----a-w- c:\windows\system32\atig6pxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 41984 ----a-w- c:\windows\system32\atig6txx.dll
2012-04-06 01:10 . 2012-04-06 01:10 33280 ----a-w- c:\windows\SysWow64\atigktxx.dll
2012-04-06 01:10 . 2012-04-06 01:10 343040 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-04-06 01:09 . 2012-04-06 01:09 54784 ----a-w- c:\windows\system32\atiuxp64.dll
2012-04-06 01:09 . 2012-04-06 01:09 41984 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-04-06 01:09 . 2012-04-06 01:09 44544 ----a-w- c:\windows\system32\atiu9p64.dll
2012-04-06 01:09 . 2012-04-06 01:09 32256 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-04-06 01:09 . 2012-04-06 01:09 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\atimpc64.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\amdpcom64.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\atimpc32.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2012-04-05 20:34 . 2012-04-05 20:34 187392 ----a-w- c:\windows\system32\clinfo.exe
2012-04-05 20:34 . 2012-04-05 20:34 74752 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-04-05 20:34 . 2012-04-05 20:34 64512 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-04-05 20:33 . 2012-04-05 20:33 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-04-05 20:33 . 2012-04-05 20:33 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-04-05 20:33 . 2012-04-05 20:33 16457216 ----a-w- c:\windows\system32\amdocl64.dll
2012-04-05 20:32 . 2012-04-05 20:32 13007872 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-04-05 20:32 . 2012-04-05 20:32 54784 ----a-w- c:\windows\system32\OpenCL.dll
2012-04-05 20:32 . 2012-04-05 20:32 50176 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-03-09 12:07 . 2012-03-09 12:07 29184 ----a-w- c:\windows\system32\kdbsdk64.dll
2012-03-09 12:06 . 2012-03-09 12:06 24576 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2012-06-01 3407496]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-05-01 348624]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-04-21 129976]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-05-01 86224]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 25994202
*NewlyCreated* - 59739085
*Deregistered* - 25994202
*Deregistered* - 59739085
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\ShowNoMercy\AppData\Roaming\Mozilla\Firefox\Profiles\gqtpmxkp.default\
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-547596515-2706801567-419722999-1001\Software\SecuROM\License information*]
"datasecu"=hex:38,8f,b9,26,f0,7a,ea,65,71,07,41,8c,6a,50,87,26,c1,da,a1,8f,a4,
78,fe,be,14,d9,ef,58,52,96,a1,6d,dc,fa,da,27,78,2c,e5,a4,47,74,66,47,50,cd,\
"rkeysecu"=hex:51,c5,32,3d,17,c6,73,f4,c7,78,56,98,31,79,d7,c7
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-06-05 13:57:22
ComboFix-quarantined-files.txt 2012-06-05 11:57
.
Vor Suchlauf: 9 Verzeichnis(se), 193.523.765.248 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 193.736.466.432 Bytes frei
.
- - End Of File - - 70CD3DC708D94E4C7C2E2C6F241E5E4A
--- --- --- |
