Hey danke das du mir versuchst zu helfen aber ich habe gerade keine ahnung wie ich McAfee deaktiviere ich habe jetz in services.msc alle Dienste von mcaffe deaktiviert und führe jetz eben den Scann durch
Combofix Logfile: Code:
ComboFix 12-11-04.01 - Tim 04.11.2012 22:09:31.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.8086.6736 [GMT 1:00]
ausgeführt von:: c:\users\Tim\Desktop\ComboFix.exe
AV: McAfee Anti-Virus und Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee Anti-Virus und Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
* Im Speicher befindliches AV aktiv.
.
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\SysWow64\tmpBB3.tmp
c:\windows\SysWow64\tmpBB4.tmp
.
Infizierte Kopie von c:\windows\system32\Services.exe wurde gefunden und desinfiziert
Kopie von - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe wurde wiederhergestellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-10-04 bis 2012-11-04 ))))))))))))))))))))))))))))))
.
.
2012-11-04 21:14 . 2012-11-04 21:14 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-11-04 21:14 . 2012-11-04 21:14 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-04 17:07 . 2012-11-04 17:12 -------- d-----w- C:\TDSSKiller_Quarantine
2012-11-03 19:51 . 2012-11-03 19:51 -------- d-----w- C:\Games
2012-11-03 19:49 . 2012-11-03 19:49 -------- d-----w- c:\users\Tim\AppData\Local\Black_Tree_Gaming
2012-11-03 19:49 . 2012-11-03 19:49 -------- d-----w- c:\program files\Nexus Mod Manager
2012-11-01 22:05 . 2012-11-01 23:11 -------- d-----w- c:\program files (x86)\Lula 3D
2012-11-01 19:08 . 2012-11-01 19:08 -------- d-sh--w- c:\programdata\SecuROM
2012-11-01 18:52 . 2012-11-01 18:52 -------- d-----w- c:\users\Tim\AppData\Local\Rockstar Games
2012-11-01 17:46 . 2012-11-01 17:46 -------- d-----w- c:\users\Tim\AppData\Roaming\Iminent
2012-10-30 19:44 . 2012-10-30 19:44 -------- d-----w- c:\users\Tim\AppData\Roaming\ICQ Search
2012-10-30 19:44 . 2012-10-30 19:44 -------- d-----w- c:\program files (x86)\ICQ6Toolbar
2012-10-30 19:44 . 2012-10-30 19:44 -------- d-----w- c:\programdata\ICQ
2012-10-25 19:27 . 2012-04-20 14:40 196440 ----a-w- c:\windows\system32\drivers\HipShieldK.sys
2012-10-24 21:26 . 2012-10-24 21:26 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2012-10-24 21:25 . 2012-10-24 21:25 -------- d-----w- c:\windows\SysWow64\NV
2012-10-24 21:25 . 2012-10-24 21:25 -------- d-----w- c:\windows\system32\NV
2012-10-24 21:23 . 2012-10-20 04:13 9267520 ----a-w- c:\windows\system32\nvcuda.dll
2012-10-24 21:23 . 2012-10-20 04:13 839512 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2012-10-24 21:23 . 2012-10-20 04:13 361832 ----a-w- c:\windows\SysWow64\nvEncodeAPI.dll
2012-10-24 21:23 . 2012-10-20 04:13 2225512 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-10-24 21:23 . 2012-10-20 04:13 6147632 ----a-w- c:\windows\SysWow64\nvopencl.dll
2012-10-24 21:23 . 2012-10-20 04:13 417128 ----a-w- c:\windows\system32\nvEncodeAPI64.dll
2012-10-24 21:23 . 2012-10-20 04:13 2605928 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-10-24 21:23 . 2012-10-20 04:13 25256296 ----a-w- c:\windows\system32\nvcompiler.dll
2012-10-24 21:23 . 2012-10-20 04:13 199888 ----a-w- c:\windows\SysWow64\nvinit.dll
2012-10-24 21:23 . 2012-10-20 04:13 1873768 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-10-24 21:23 . 2012-10-20 04:13 15115376 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-10-24 21:22 . 2012-10-20 04:13 2783080 ----a-w- c:\windows\system32\nvcuvid.dll
2012-10-24 21:22 . 2012-10-20 04:13 26807656 ----a-w- c:\windows\system32\nvoglv64.dll
2012-10-24 21:22 . 2012-10-20 04:13 244184 ----a-w- c:\windows\system32\nvinitx.dll
2012-10-24 21:22 . 2012-10-20 04:13 20332904 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-10-24 21:22 . 2012-10-20 04:13 7443920 ----a-w- c:\windows\system32\nvopencl.dll
2012-10-24 21:22 . 2012-10-20 04:13 2492632 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-10-24 21:22 . 2012-10-20 04:13 18036992 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-10-24 21:22 . 2012-10-20 04:13 17559912 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-10-24 21:22 . 2012-10-20 04:13 11509608 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-10-24 21:22 . 2012-10-20 04:13 7815720 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-10-24 21:22 . 2012-10-20 04:13 12542472 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-10-24 20:54 . 2012-10-24 20:54 -------- d-----w- C:\NVIDIA
2012-10-24 18:58 . 2012-10-24 18:58 -------- d-----w- c:\users\Tim\AppData\Local\DayZCommander
2012-10-24 18:58 . 2012-10-24 19:21 -------- d-----w- c:\program files (x86)\Dotjosh Studios
2012-10-24 18:24 . 2012-10-30 21:14 -------- d-----w- c:\users\Tim\AppData\Local\ArmA 2 OA
2012-10-24 17:33 . 2012-10-24 17:33 -------- d-----w- c:\users\Tim\AppData\Local\ArmA 2
2012-10-24 16:50 . 2012-10-24 16:50 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2012-10-24 16:50 . 2012-10-24 16:50 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2012-10-24 16:50 . 2012-10-24 16:50 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2012-10-24 16:50 . 2012-10-24 16:50 -------- d-----w- c:\program files (x86)\OpenAL
2012-10-24 16:50 . 2012-10-24 16:50 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2012-10-24 16:39 . 2012-10-24 16:53 -------- d-----w- c:\program files (x86)\Bohemia Interactive
2012-10-23 19:07 . 2012-10-23 19:07 -------- d-----w- c:\program files (x86)\The Elder Scrolls V Skyrim
2012-10-19 15:58 . 2012-10-19 15:58 438120 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-10-16 16:53 . 2012-10-16 16:53 -------- d-----w- c:\windows\SysWow64\xlive
2012-10-16 16:53 . 2012-10-16 16:53 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2012-10-16 16:43 . 2012-10-16 16:43 -------- d-----w- c:\program files (x86)\Capcom
2012-10-16 15:03 . 2012-10-16 15:22 -------- d-----w- c:\program files (x86)\Mass Effect 3
2012-10-16 13:52 . 2012-10-16 13:52 -------- d-----w- c:\program files (x86)\Bethesda Softworks
2012-10-14 19:10 . 2012-10-14 19:10 -------- d-----w- c:\users\Tim\AppData\Roaming\Ubisoft
2012-10-14 19:05 . 2012-10-14 19:05 43680 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2012-10-14 19:05 . 2012-10-14 19:05 314016 ----a-w- c:\windows\system32\drivers\atksgt.sys
2012-10-14 13:20 . 2004-10-22 00:18 749568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2012-10-14 13:20 . 2004-10-22 00:17 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2012-10-14 13:20 . 2004-10-22 00:17 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2012-10-14 13:20 . 2004-10-22 00:16 180224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2012-10-14 13:20 . 2004-10-22 00:16 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2012-10-14 13:20 . 2012-10-14 13:20 323716 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
2012-10-14 13:20 . 2012-10-14 13:20 192644 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2012-10-13 23:24 . 2012-10-19 07:37 -------- d-----w- c:\users\Tim\AppData\Local\SniperV2
2012-10-13 23:08 . 2012-10-13 23:09 -------- d-----w- c:\program files (x86)\Sniper Elite V2
2012-10-13 00:04 . 2012-10-13 00:08 -------- d-----w- c:\program files (x86)\Torchlight II
2012-10-12 22:38 . 2012-10-12 22:38 -------- d-sh--w- c:\windows\ftpcache
2012-10-10 22:16 . 2012-08-30 18:03 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-10 22:16 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-10-10 22:16 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-10-10 22:16 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-10 22:16 . 2012-08-24 16:57 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-10 22:15 . 2012-09-14 19:19 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-10 22:15 . 2012-09-14 18:28 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-10 22:14 . 2012-08-11 00:56 715776 ----a-w- c:\windows\system32\kerberos.dll
2012-10-10 22:14 . 2012-08-10 23:56 542208 ----a-w- c:\windows\SysWow64\kerberos.dll
2012-10-10 22:14 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
2012-10-10 22:14 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-10 22:14 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-10 22:14 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-10 22:14 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-10 22:14 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-08 14:15 . 2012-10-08 14:18 -------- d-----w- c:\users\Tim\AppData\Local\Darksiders2
2012-10-08 13:30 . 2012-10-08 13:34 -------- d-----w- c:\users\Tim\AppData\Local\Google
2012-10-07 18:17 . 2012-10-07 18:17 180356 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll
2012-10-07 18:17 . 2004-07-15 22:20 733184 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll
2012-10-07 18:17 . 2004-07-15 22:20 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll
2012-10-07 18:17 . 2004-07-15 22:19 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll
2012-10-07 18:17 . 2004-07-15 22:18 172032 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll
2012-10-07 18:17 . 2004-07-15 22:18 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe
2012-10-07 18:17 . 2012-10-07 18:17 303236 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll
2012-10-07 16:22 . 2012-10-07 16:22 -------- d-----w- c:\users\Tim\AppData\Local\Gas Powered Games
2012-10-07 16:22 . 2012-10-07 16:22 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2012-10-07 16:22 . 2012-10-07 16:22 -------- d--h--r- c:\users\Tim\AppData\Roaming\SecuROM
2012-10-07 16:21 . 2012-10-24 20:56 -------- d-----w- C:\temp
2012-10-07 16:21 . 2012-10-12 22:52 -------- d-----w- c:\programdata\Media Center Programs
2012-10-07 16:11 . 2012-10-12 22:40 -------- d-----w- c:\program files (x86)\THQ
2012-10-07 16:09 . 2012-10-07 16:09 -------- d-----w- c:\programdata\InstallShield
2012-10-07 16:06 . 2012-10-07 16:06 -------- d-----w- c:\programdata\Trymedia
2012-10-07 16:03 . 2012-10-07 16:07 -------- d-----w- c:\program files (x86)\Atari
2012-10-07 16:03 . 2005-04-03 21:02 753664 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2012-10-07 16:03 . 2005-04-03 21:02 69714 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2012-10-07 16:03 . 2005-04-03 21:01 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2012-10-07 16:03 . 2005-04-03 21:00 184320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2012-10-07 16:03 . 2005-04-03 21:00 63488 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe
2012-10-07 16:03 . 2005-04-03 20:59 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2012-10-07 16:03 . 2012-10-07 16:03 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2012-10-07 16:03 . 2012-10-07 16:03 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2012-10-07 14:56 . 2012-10-12 23:35 -------- d-----w- c:\users\Tim\AppData\Roaming\.minecraft
2012-10-07 14:43 . 2012-10-07 14:43 -------- d-----w- c:\users\Tim\AppData\Local\storage
2012-10-07 14:29 . 2012-10-07 14:35 -------- d-----w- c:\users\Tim\AppData\Local\Ubisoft Game Launcher
2012-10-07 14:24 . 2012-10-07 14:24 -------- d-----w- c:\programdata\Ubisoft
2012-10-07 14:18 . 2012-10-14 18:54 -------- d-----w- c:\program files (x86)\Ubisoft
2012-10-07 14:02 . 2012-10-07 14:02 -------- d-----w- c:\programdata\RELOADED
2012-10-07 13:53 . 2012-10-07 13:53 -------- d-----w- c:\users\Tim\AppData\Local\Chromium
2012-10-07 13:11 . 2012-10-27 06:47 -------- d-----w- c:\program files (x86)\Rockstar Games
2012-10-07 13:11 . 2012-10-07 13:11 -------- d-----w- c:\programdata\Rockstar Games
2012-10-07 12:36 . 2012-10-16 14:08 -------- d-----w- c:\users\Tim\AppData\Local\SKIDROW
2012-10-07 12:11 . 2012-10-07 12:23 -------- d-----w- c:\program files (x86)\Firefly Studios
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-04 21:15 . 2012-08-23 14:00 34752 ----a-w- c:\windows\system32\drivers\WPRO_41_2001.sys
2012-11-03 14:26 . 2012-08-28 00:09 281520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-11-03 14:26 . 2012-08-27 14:27 281520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-11-03 14:26 . 2012-08-27 14:27 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-11-01 18:47 . 2012-08-23 19:02 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-01 18:47 . 2012-08-23 19:02 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-20 04:13 . 2012-08-23 14:53 1805672 ----a-w- c:\windows\system32\nvdispco64.dll
2012-10-20 04:13 . 2012-08-23 14:53 1504104 ----a-w- c:\windows\system32\nvdispgenco64.dll
2012-10-20 04:13 . 2012-08-23 14:52 982664 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-10-20 04:13 . 2012-08-23 14:52 14944432 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-10-20 04:13 . 2012-08-23 14:52 2811968 ----a-w- c:\windows\system32\nvapi64.dll
2012-10-20 00:36 . 2012-08-23 14:53 3544134 ----a-w- c:\windows\system32\nvcoproc.bin
2012-10-20 00:35 . 2012-08-23 14:53 6222696 ----a-w- c:\windows\system32\nvcpl.dll
2012-10-20 00:35 . 2012-08-23 14:53 3310440 ----a-w- c:\windows\system32\nvsvc64.dll
2012-10-20 00:35 . 2012-08-23 14:53 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-10-20 00:35 . 2012-08-23 14:53 890216 ----a-w- c:\windows\system32\nvvsvc.exe
2012-10-20 00:35 . 2012-08-23 14:53 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-10-20 00:35 . 2012-08-23 14:53 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-10-11 01:00 . 2012-08-23 08:24 65309168 ----a-w- c:\windows\system32\MRT.exe
2012-09-24 21:16 . 2012-09-10 10:55 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-19 19:39 . 2012-09-19 19:39 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2012-09-19 19:39 . 2012-09-19 19:39 916456 ----a-w- c:\windows\system32\deployJava1.dll
2012-09-19 19:39 . 2012-09-19 19:39 289768 ----a-w- c:\windows\system32\javaws.exe
2012-09-19 19:39 . 2012-09-19 19:39 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-19 19:39 . 2012-09-19 19:39 189416 ----a-w- c:\windows\system32\javaw.exe
2012-09-19 19:39 . 2012-09-19 19:39 188904 ----a-w- c:\windows\system32\java.exe
2012-09-10 10:55 . 2012-09-10 10:55 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-09-10 10:55 . 2012-09-10 10:55 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-08-28 00:21 . 2012-08-27 14:27 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-08-24 11:15 . 2012-09-22 12:58 17810944 ----a-w- c:\windows\system32\mshtml.dll
2012-08-24 10:39 . 2012-09-22 12:58 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-08-24 10:31 . 2012-09-22 12:58 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 10:22 . 2012-09-22 12:58 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-08-24 10:21 . 2012-09-22 12:58 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 10:20 . 2012-09-22 12:58 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 10:18 . 2012-09-22 12:58 237056 ----a-w- c:\windows\system32\url.dll
2012-08-24 10:17 . 2012-09-22 12:58 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-08-24 10:14 . 2012-09-22 12:58 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-08-24 10:14 . 2012-09-22 12:58 816640 ----a-w- c:\windows\system32\jscript.dll
2012-08-24 10:13 . 2012-09-22 12:58 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 10:12 . 2012-09-22 12:58 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-08-24 10:11 . 2012-09-22 12:58 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-08-24 10:10 . 2012-09-22 12:58 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-08-24 10:09 . 2012-09-22 12:58 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-24 10:04 . 2012-09-22 12:58 248320 ----a-w- c:\windows\system32\ieui.dll
2012-08-24 06:59 . 2012-09-22 12:58 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-08-24 06:51 . 2012-09-22 12:58 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-08-24 06:51 . 2012-09-22 12:58 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-08-24 06:47 . 2012-09-22 12:58 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-08-24 06:47 . 2012-09-22 12:58 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-08-24 06:43 . 2012-09-22 12:58 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-08-23 17:39 . 2012-08-23 17:39 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-08-23 08:26 . 2012-08-23 08:26 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-08-23 08:26 . 2012-08-23 08:26 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-08-23 08:26 . 2012-08-23 08:26 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2012-08-23 08:26 . 2012-08-23 08:26 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-08-23 08:26 . 2012-08-23 08:26 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-08-23 08:26 . 2012-08-23 08:26 82432 ----a-w- c:\windows\system32\icardie.dll
2012-08-23 08:26 . 2012-08-23 08:26 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-08-23 08:26 . 2012-08-23 08:26 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-08-23 08:26 . 2012-08-23 08:26 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-08-23 08:26 . 2012-08-23 08:26 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-08-23 08:26 . 2012-08-23 08:26 65024 ----a-w- c:\windows\system32\pngfilt.dll
2012-08-23 08:26 . 2012-08-23 08:26 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-08-23 08:26 . 2012-08-23 08:26 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2012-08-23 08:26 . 2012-08-23 08:26 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2012-08-23 08:26 . 2012-08-23 08:26 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-08-23 08:26 . 2012-08-23 08:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-08-23 08:26 . 2012-08-23 08:26 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-08-23 08:26 . 2012-08-23 08:26 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2012-08-23 08:26 . 2012-08-23 08:26 448512 ----a-w- c:\windows\system32\html.iec
2012-08-23 08:26 . 2012-08-23 08:26 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2012-08-23 08:26 . 2012-08-23 08:26 39936 ----a-w- c:\windows\system32\iernonce.dll
2012-08-23 08:26 . 2012-08-23 08:26 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2012-08-23 08:26 . 2012-08-23 08:26 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-08-23 08:26 . 2012-08-23 08:26 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-08-23 08:26 . 2012-08-23 08:26 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-08-23 08:26 . 2012-08-23 08:26 282112 ----a-w- c:\windows\system32\dxtrans.dll
2012-08-23 08:26 . 2012-08-23 08:26 267776 ----a-w- c:\windows\system32\ieaksie.dll
2012-08-23 08:26 . 2012-08-23 08:26 249344 ----a-w- c:\windows\system32\webcheck.dll
2012-08-23 08:26 . 2012-08-23 08:26 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-08-23 08:26 . 2012-08-23 08:26 222208 ----a-w- c:\windows\system32\msls31.dll
2012-08-23 08:26 . 2012-08-23 08:26 197120 ----a-w- c:\windows\system32\msrating.dll
2012-08-23 08:26 . 2012-08-23 08:26 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-08-23 08:26 . 2012-08-23 08:26 163840 ----a-w- c:\windows\system32\ieakui.dll
2012-08-23 08:26 . 2012-08-23 08:26 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-08-23 08:26 . 2012-08-23 08:26 160256 ----a-w- c:\windows\system32\wextract.exe
2012-08-23 08:26 . 2012-08-23 08:26 160256 ----a-w- c:\windows\system32\ieakeng.dll
2012-08-23 08:26 . 2012-08-23 08:26 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-08-23 08:26 . 2012-08-23 08:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-08-23 08:26 . 2012-08-23 08:26 149504 ----a-w- c:\windows\system32\occache.dll
2012-08-23 08:26 . 2012-08-23 08:26 145920 ----a-w- c:\windows\system32\iepeers.dll
2012-08-23 08:26 . 2012-08-23 08:26 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-08-23 08:26 . 2012-08-23 08:26 12288 ----a-w- c:\windows\system32\mshta.exe
2012-08-23 08:26 . 2012-08-23 08:26 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-08-23 08:26 . 2012-08-23 08:26 114176 ----a-w- c:\windows\system32\admparse.dll
2012-08-23 08:26 . 2012-08-23 08:26 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-08-23 08:26 . 2012-08-23 08:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-08-23 08:26 . 2012-08-23 08:26 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2012-08-23 08:26 . 2012-08-23 08:26 103936 ----a-w- c:\windows\system32\inseng.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-09-12 1535112]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe [2011-6-17 272528]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\drivers\b57xdbd.sys [2011-05-04 53760]
R3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\drivers\b57xdmp.sys [2011-05-04 11264]
R3 bScsiMSa;bScsiMSa;c:\windows\system32\drivers\bScsiMSa.sys [2011-05-16 51240]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\System32\Drivers\EtronHub3.sys [2011-07-29 56960]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\System32\Drivers\EtronXHCI.sys [2011-07-29 79104]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-04-20 196440]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe [2011-06-17 237008]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-07-17 106112]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2011-10-25 96768]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2011-10-25 213504]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys [2011-09-21 49760]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\drivers\iusb3hcs.sys [2012-02-27 16152]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-06-22 335784]
S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys [2011-05-10 17192]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-23 283200]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-02-07 121344]
S2 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2012-02-09 133632]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-02-07 161560]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-07-17 218320]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-06-22 177144]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-19 382824]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-02-07 363800]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys [2011-03-04 126952]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys [2011-03-04 390632]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-07-17 69672]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys [2012-02-09 25536]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys [2012-02-09 25536]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys [2012-02-09 44992]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-02-27 356120]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-02-27 788760]
S3 k57nd;Broadcom NetLink Gigabit Ethernet;c:\windows\system32\DRIVERS\k57amd64.sys [2011-05-09 356392]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-11-17 32344]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-07-17 513456]
S3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);c:\windows\system32\drivers\WPRO_41_2001.sys [2012-11-04 34752]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - mfeavfk01
.
Inhalt des "geplante Tasks" Ordners
.
2012-11-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-23 18:47]
.
2012-11-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3258117989-2826955832-4061626021-1000Core.job
- c:\users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-08 13:30]
.
2012-11-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3258117989-2826955832-4061626021-1000UA.job
- c:\users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-08 13:30]
.
2012-11-04 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 11:41]
.
2012-11-04 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 11:41]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-03-22 170264]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-03-22 398616]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-03-22 439064]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-31 12446824]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://start.icq.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Free YouTube to MP3 Converter - c:\users\Tim\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
TCP: DhcpNameServer = 192.168.178.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-60843246.sys
AddRemove-BattlEye for A1 - c:\program files (x86)\Bohemia Interactive\ArmABattlEye\UnInstallBE.exe
AddRemove-BattlEye for A2 - c:\program files (x86)\Bohemia Interactive\ArmA 2BattlEye\UnInstallBE.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3258117989-2826955832-4061626021-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3258117989-2826955832-4061626021-1000\Software\SecuROM\License information*]
"datasecu"=hex:df,43,8a,39,26,67,e0,6d,f1,bb,c1,6e,b0,c2,cf,52,8b,e6,9f,1f,a7,
7e,d3,45,a8,82,1b,3d,d0,d1,69,a8,54,76,2d,c8,2b,a4,6c,17,73,d4,2f,ca,a6,51,\
"rkeysecu"=hex:12,23,f4,26,8f,86,77,d5,1b,5d,c8,9f,c5,85,20,69
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-11-04 22:18:39 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-11-04 21:18
.
Vor Suchlauf: 12 Verzeichnis(se), 182.522.601.472 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 182.259.892.224 Bytes frei
.
- - End Of File - - 8126DAA95E5F92A42FEC132CC630CDE2
--- --- --- |
