Code:
ComboFix 13-08-25.01 - Naomi 26.08.2013 20:37:45.1.4 - x64
Microsoft Windows 8 6.2.9200.0.1252.49.1031.18.4047.1726 [GMT 2:00]
ausgeführt von:: c:\users\Naomi\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\logs
c:\users\Naomi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
c:\users\Naomi\AppData\Local\Temp\_MEI31282\_ctypes.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\_elementtree.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\_hashlib.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\_multiprocessing.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\_socket.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\_ssl.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\msvcp100.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\msvcr100.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\pyexpat.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\pysqlite2._sqlite.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\python27.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\pythoncom27.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\PyWinTypes27.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\select.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\unicodedata.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32api.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32com.shell.shell.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32crypt.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32event.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32file.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32inet.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32pdh.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32process.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32profile.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32security.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\win32ts.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\windows._cacheinvalidation.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wx._controls_.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wx._core_.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wx._gdi_.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wx._html2.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wx._misc_.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wx._windows_.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wx._wizard.pyd
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wxbase294u_net_vc90.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wxbase294u_vc90.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wxmsw294u_adv_vc90.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wxmsw294u_core_vc90.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wxmsw294u_html_vc90.dll
c:\users\Naomi\AppData\Local\Temp\_MEI31282\wxmsw294u_webview_vc90.dll
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_WsysSvc
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-07-26 bis 2013-08-26 ))))))))))))))))))))))))))))))
.
.
2013-08-26 18:43 . 2013-08-26 18:43 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-08-26 13:04 . 2013-08-26 13:04 -------- d-----w- C:\FRST
2013-08-26 11:06 . 2013-08-26 11:06 -------- d-----w- c:\windows\LastGood.Tmp
2013-08-26 11:02 . 2013-08-26 11:02 -------- d-----w- c:\program files (x86)\MyFree Codec
2013-08-26 11:00 . 2013-06-14 17:57 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll
2013-08-26 11:00 . 2013-06-14 17:56 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll
2013-08-26 10:59 . 2013-08-26 11:02 -------- d-----w- c:\program files (x86)\Samsung
2013-08-26 10:59 . 2013-08-26 10:59 -------- d-----w- c:\programdata\Samsung
2013-08-26 10:12 . 2013-08-26 10:12 -------- d-----w- c:\program files (x86)\LyriXeeker
2013-08-26 05:35 . 2013-08-26 06:13 -------- d-----w- c:\windows\8AE3CFB678B24F55A7BE618FCFF43A03.TMP
2013-08-25 20:10 . 2013-08-25 20:10 -------- d-----w- c:\users\Naomi\AppData\Roaming\Opera Software
2013-08-25 20:10 . 2013-08-25 20:10 -------- d-----w- c:\users\Naomi\AppData\Local\Opera Software
2013-08-25 20:10 . 2013-08-25 20:10 -------- d-----w- c:\program files (x86)\Opera
2013-08-25 19:58 . 2013-08-25 19:58 972712 ----a-w- c:\windows\system32\deployJava1.dll
2013-08-25 19:58 . 2013-08-25 19:58 312232 ----a-w- c:\windows\system32\javaws.exe
2013-08-25 19:58 . 2013-08-25 19:58 1093032 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-08-25 19:58 . 2013-08-25 19:58 189352 ----a-w- c:\windows\system32\javaw.exe
2013-08-25 19:58 . 2013-08-25 19:58 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-08-25 19:58 . 2013-08-25 19:58 188840 ----a-w- c:\windows\system32\java.exe
2013-08-25 19:58 . 2013-08-25 19:58 -------- d-----w- c:\program files\Java
2013-08-24 20:31 . 2013-08-24 20:31 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-08-24 20:31 . 2013-08-24 20:31 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-08-24 20:31 . 2013-08-24 20:31 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-08-24 20:31 . 2013-08-24 20:31 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-24 20:31 . 2013-08-24 20:31 -------- d-----w- c:\program files (x86)\Java
2013-08-20 15:24 . 2013-08-20 15:24 -------- d-----w- c:\program files\iPod
2013-08-20 15:24 . 2013-08-20 15:25 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-08-20 15:24 . 2013-08-20 15:25 -------- d-----w- c:\program files\iTunes
2013-08-20 15:24 . 2013-08-20 15:25 -------- d-----w- c:\program files (x86)\iTunes
2013-08-20 15:20 . 2013-08-20 15:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2013-08-20 15:20 . 2013-08-20 15:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2013-08-20 15:20 . 2013-08-20 15:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2013-08-20 15:20 . 2013-08-20 15:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2013-08-20 15:20 . 2013-08-20 15:20 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2013-08-20 15:20 . 2013-08-20 15:20 -------- d-----w- c:\program files (x86)\QuickTime
2013-08-20 14:37 . 2013-08-20 14:37 240304 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10214.bin
2013-08-20 05:02 . 2013-08-20 05:02 204568 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
2013-08-20 05:02 . 2013-08-20 05:02 103576 ----a-w- c:\windows\system32\drivers\ssudbus.sys
2013-08-15 18:32 . 2013-08-15 18:35 -------- d-----w- c:\windows\system32\MRT
2013-08-15 07:57 . 2012-12-10 09:04 81920 ----a-w- c:\windows\eSellerateControl350.dll
2013-08-15 07:57 . 2012-12-10 09:04 356352 ----a-w- c:\windows\eSellerateEngine.dll
2013-08-15 07:57 . 2009-07-23 16:32 274432 ----a-w- c:\windows\SysWow64\ssleay32.dll
2013-08-15 07:57 . 2009-07-23 16:32 1122304 ----a-w- c:\windows\SysWow64\libeay32.dll
2013-08-14 10:43 . 2013-05-23 23:02 1314816 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-14 10:43 . 2013-05-23 22:25 694272 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2013-08-14 10:43 . 2013-07-09 06:07 2233168 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-14 10:41 . 2013-07-13 06:18 337408 ----a-w- c:\windows\system32\wintrust.dll
2013-08-14 10:41 . 2013-07-13 06:16 68096 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-14 10:41 . 2013-07-13 06:16 1889280 ----a-w- c:\windows\system32\crypt32.dll
2013-08-14 10:41 . 2013-07-13 06:15 98304 ----a-w- c:\windows\system32\apprepsync.dll
2013-08-14 10:41 . 2013-07-13 06:15 124416 ----a-w- c:\windows\system32\apprepapi.dll
2013-08-14 10:41 . 2013-07-13 04:24 261120 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-08-14 10:41 . 2013-07-13 04:23 1568256 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-08-14 10:41 . 2013-07-13 04:23 87040 ----a-w- c:\windows\SysWow64\apprepapi.dll
2013-08-14 10:41 . 2013-07-13 04:23 74240 ----a-w- c:\windows\SysWow64\apprepsync.dll
2013-08-13 16:58 . 2013-08-13 16:58 -------- d-----w- c:\users\ADMINI~1
2013-08-13 16:56 . 2013-07-01 23:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{42B9FC0E-02BD-4AEC-AEA4-F5BA35EE24C5}\mpengine.dll
2013-08-13 16:56 . 2013-05-02 15:29 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-08-12 19:17 . 2013-08-21 20:26 -------- d-----w- c:\users\Naomi\AppData\Roaming\dvdcss
2013-08-12 19:17 . 2013-08-22 21:16 -------- d-----w- c:\users\Naomi\AppData\Roaming\vlc
2013-08-12 19:16 . 2013-08-12 19:16 -------- d-----w- c:\program files (x86)\VideoLAN
2013-08-12 18:39 . 2013-08-13 16:37 411 ----a-w- c:\windows\DeleteOnReboot.bat
2013-08-12 17:54 . 2013-08-12 17:54 -------- d-----w- c:\program files\Enigma Software Group
2013-08-12 17:54 . 2013-08-12 17:54 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-08-12 17:36 . 2013-08-12 17:36 -------- d-----w- c:\users\Naomi\AppData\Roaming\337 Wallpaper
2013-08-12 17:21 . 2013-08-26 19:11 -------- d-----w- c:\program files (x86)\Omiga Plus
2013-08-12 17:21 . 2013-08-26 19:11 -------- d-----w- c:\program files (x86)\WinZipper
2013-08-12 17:21 . 2013-08-19 16:19 -------- d-----w- c:\users\Naomi\AppData\Roaming\WinZipper
2013-08-12 17:20 . 2013-08-26 12:56 -------- d-----w- c:\programdata\eSafe
2013-08-12 16:54 . 2013-08-12 16:54 -------- d-----w- c:\program files (x86)\FLV Player
2013-08-12 16:42 . 2013-08-12 16:42 -------- d-----w- c:\windows\SysWow64\searchplugins
2013-08-12 16:42 . 2013-08-12 16:42 -------- d-----w- c:\windows\SysWow64\Extensions
2013-07-30 11:20 . 2013-07-30 11:20 -------- d-----w- c:\programdata\EA Core
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-15 18:32 . 2013-06-01 19:46 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-06-27 22:04 . 2013-06-02 10:26 78200 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-27 22:04 . 2013-06-02 10:26 693112 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-27 13:36 . 2013-06-01 06:18 83672 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-06-16 22:41 . 2013-07-16 18:56 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-06-14 17:56 . 2013-06-14 17:56 90112 ----a-w- c:\windows\MAMCityDownload.ocx
2013-06-14 17:56 . 2013-06-14 17:56 330240 ----a-w- c:\windows\MASetupCaller.dll
2013-06-14 17:56 . 2013-06-14 17:56 30568 ----a-w- c:\windows\MusiccityDownload.exe
2013-06-14 17:56 . 2013-06-14 17:56 974848 ----a-w- c:\windows\SysWow64\cis-2.4.dll
2013-06-14 17:56 . 2013-06-14 17:56 81920 ----a-w- c:\windows\SysWow64\issacapi_bs-2.3.dll
2013-06-14 17:56 . 2013-06-14 17:56 65536 ----a-w- c:\windows\SysWow64\issacapi_pe-2.3.dll
2013-06-14 17:56 . 2013-06-14 17:56 57344 ----a-w- c:\windows\SysWow64\MTXSYNCICON.dll
2013-06-14 17:56 . 2013-06-14 17:56 57344 ----a-w- c:\windows\SysWow64\MK_Lyric.dll
2013-06-14 17:56 . 2013-06-14 17:56 57344 ----a-w- c:\windows\SysWow64\issacapi_se-2.3.dll
2013-06-14 17:56 . 2013-06-14 17:56 569344 ----a-w- c:\windows\SysWow64\muzdecode.ax
2013-06-14 17:56 . 2013-06-14 17:56 491520 ----a-w- c:\windows\SysWow64\muzapp.dll
2013-06-14 17:56 . 2013-06-14 17:56 49152 ----a-w- c:\windows\SysWow64\MaJGUILib.dll
2013-06-14 17:56 . 2013-06-14 17:56 45320 ----a-w- c:\windows\SysWow64\MAMACExtract.dll
2013-06-14 17:56 . 2013-06-14 17:56 45056 ----a-w- c:\windows\SysWow64\MaXMLProto.dll
2013-06-14 17:56 . 2013-06-14 17:56 45056 ----a-w- c:\windows\SysWow64\MACXMLProto.dll
2013-06-14 17:56 . 2013-06-14 17:56 40960 ----a-w- c:\windows\SysWow64\MTTELECHIP.dll
2013-06-14 17:56 . 2013-06-14 17:56 352256 ----a-w- c:\windows\SysWow64\MSLUR71.dll
2013-06-14 17:56 . 2013-06-14 17:56 258048 ----a-w- c:\windows\SysWow64\muzoggsp.ax
2013-06-14 17:56 . 2013-06-14 17:56 245760 ----a-w- c:\windows\SysWow64\MSCLib.dll
2013-06-14 17:56 . 2013-06-14 17:56 24576 ----a-w- c:\windows\SysWow64\MASetupCleaner.exe
2013-06-14 17:56 . 2013-06-14 17:56 200704 ----a-w- c:\windows\SysWow64\muzwmts.dll
2013-06-14 17:56 . 2013-06-14 17:56 172032 ----a-w- c:\windows\SysWow64\muzapp.exe
2013-06-14 17:56 . 2013-06-14 17:56 155648 ----a-w- c:\windows\SysWow64\MSFLib.dll
2013-06-14 17:56 . 2013-06-14 17:56 143360 ----a-w- c:\windows\SysWow64\3DAudio.ax
2013-06-14 17:56 . 2013-06-14 17:56 135168 ----a-w- c:\windows\SysWow64\muzaf1.dll
2013-06-14 17:56 . 2013-06-14 17:56 131072 ----a-w- c:\windows\SysWow64\muzmpgsp.ax
2013-06-14 17:56 . 2013-06-14 17:56 122880 ----a-w- c:\windows\SysWow64\muzeffect.ax
2013-06-14 17:56 . 2013-06-14 17:56 118784 ----a-w- c:\windows\SysWow64\MaDRM.dll
2013-06-14 17:56 . 2013-06-14 17:56 110592 ----a-w- c:\windows\SysWow64\muzmp4sp.ax
2013-06-07 11:58 . 2013-06-07 11:58 57344 ----a-r- c:\users\Naomi\AppData\Roaming\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe
2013-06-07 11:57 . 2013-06-07 11:57 106496 ----a-w- c:\windows\SysWow64\ATL71.DLL
2013-06-04 07:15 . 2013-06-04 07:15 708168 ----a-w- c:\windows\system32\WinUSBCoInstaller.dll
2013-06-04 07:15 . 2013-06-04 07:15 1490656 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2013-06-01 11:54 . 2013-07-16 18:56 194816 ----a-w- c:\windows\system32\drivers\sdbus.sys
2013-06-01 11:54 . 2013-07-16 18:56 125184 ----a-w- c:\windows\system32\drivers\dumpsd.sys
2013-06-01 11:34 . 2013-07-16 18:56 2391280 ----a-w- c:\windows\explorer.exe
2013-06-01 11:29 . 2013-07-16 18:56 213248 ----a-w- c:\windows\system32\drivers\UCX01000.SYS
2013-06-01 11:29 . 2013-07-16 18:56 337152 ----a-w- c:\windows\system32\drivers\USBXHCI.SYS
2013-06-01 11:26 . 2013-07-16 18:56 327936 ----a-w- c:\windows\system32\drivers\volsnap.sys
2013-06-01 11:26 . 2013-07-16 18:56 6987008 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-06-01 10:24 . 2013-07-16 18:56 2106176 ----a-w- c:\windows\SysWow64\explorer.exe
2013-06-01 09:25 . 2013-07-16 18:56 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-06-01 09:25 . 2013-07-16 18:56 67584 ----a-w- c:\windows\SysWow64\samlib.dll
2013-06-01 09:25 . 2013-07-10 11:52 496640 ----a-w- c:\windows\SysWow64\qedit.dll
2013-06-01 09:24 . 2013-07-16 18:56 493056 ----a-w- c:\windows\SysWow64\mscms.dll
2013-06-01 09:24 . 2013-07-16 18:56 1453568 ----a-w- c:\windows\SysWow64\mfcore.dll
2013-06-01 09:24 . 2013-07-16 18:56 850944 ----a-w- c:\windows\SysWow64\mfasfsrcsnk.dll
2013-06-01 09:23 . 2013-07-16 18:56 1842176 ----a-w- c:\windows\SysWow64\dwmcore.dll
2013-06-01 09:23 . 2013-07-16 18:56 680960 ----a-w- c:\windows\system32\vds.exe
2013-06-01 09:22 . 2013-07-16 18:56 80896 ----a-w- c:\windows\system32\MbaeParserTask.exe
2013-06-01 09:22 . 2013-07-16 18:56 523264 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-06-01 09:22 . 2013-07-16 18:56 446976 ----a-w- c:\windows\system32\wwansvc.dll
2013-06-01 09:22 . 2013-07-16 18:56 190976 ----a-w- c:\windows\system32\vdsutil.dll
2013-06-01 09:21 . 2013-07-16 18:56 729600 ----a-w- c:\windows\system32\samsrv.dll
2013-06-01 09:21 . 2013-07-16 18:56 106496 ----a-w- c:\windows\system32\samlib.dll
2013-06-01 09:21 . 2013-07-10 11:52 595968 ----a-w- c:\windows\system32\qedit.dll
2013-06-01 09:20 . 2013-07-16 18:56 583168 ----a-w- c:\windows\system32\mscms.dll
2013-06-01 09:20 . 2013-07-16 18:56 1527808 ----a-w- c:\windows\system32\mfcore.dll
2013-06-01 09:20 . 2013-07-16 18:56 1048576 ----a-w- c:\windows\system32\mfasfsrcsnk.dll
2013-06-01 09:20 . 2013-07-16 18:56 2219520 ----a-w- c:\windows\system32\dwmcore.dll
2013-06-01 09:19 . 2013-07-16 18:56 207872 ----a-w- c:\windows\system32\DeviceSetupManager.dll
2013-06-01 09:19 . 2013-07-16 18:56 785408 ----a-w- c:\windows\system32\audiosrv.dll
2013-06-01 03:08 . 2013-07-16 18:56 37632 ----a-w- c:\windows\system32\drivers\BthAvrcpTg.sys
2013-05-31 21:02 . 2013-05-31 21:02 53248 ----a-r- c:\users\Naomi\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2013-05-31 18:23 . 2013-05-31 18:23 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-05-31 18:23 . 2013-05-31 18:23 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-05-31 18:13 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-30 23:24 . 2013-06-15 08:09 1257472 ----a-w- c:\windows\system32\kernel32.dll
2013-05-30 23:14 . 2013-07-10 11:52 4036096 ----a-w- c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{1a11f87e-70b8-4f0b-8f08-90a8c6ff8c18}]
2013-08-26 00:33 145408 ----a-w- c:\program files (x86)\LyriXeeker\130.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-21 17:09 220632 ----a-w- c:\users\Naomi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-21 17:09 220632 ----a-w- c:\users\Naomi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-21 17:09 220632 ----a-w- c:\users\Naomi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-06-27 20097696]
"Facebook Update"="c:\users\Naomi\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2013-06-25 138096]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2013-05-29 449248]
"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-07-15 1564016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Intel AppUp(R) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-12-18 156000]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-08 642216]
"TPUReg"="c:\program files (x86)\TOSHIBA\Password Utility\TosPU.exe" [2012-12-05 7152640]
"LWS"="c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2012-09-12 204136]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-06-27 345144]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-10-28 49208]
"Nikon Message Center 2"="c:\program files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe" [2010-05-25 619008]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"PDFPrint"="c:\program files (x86)\PDF24\pdf24.exe" [2013-06-10 162856]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-08-16 152392]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-07-15 311152]
.
c:\users\Naomi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk - c:\windows\system32\RunDll32.exe "c:\program files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN04R13JQV05HW;CONNECTION=USB;MONITOR=1; [2012-7-26 51712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R0 mfeelamk;McAfee Inc. mfeelamk;c:\windows\system32\drivers\mfeelamk.sys;c:\windows\SYSNATIVE\drivers\mfeelamk.sys [x]
R1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys;c:\windows\SYSNATIVE\drivers\cfwids.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 LVUVC64;@oem25.inf,%PID_0825_DD%(UVC);Logitech HD Webcam C270(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys;c:\windows\SYSNATIVE\drivers\mfefirek.sys [x]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys;c:\windows\SYSNATIVE\drivers\mferkdet.sys [x]
R3 RTL8192Ce;Treiber für Realtek Wireless LAN 802.11n PCI-E NIC;c:\windows\system32\DRIVERS\rtwlane.sys;c:\windows\SYSNATIVE\DRIVERS\rtwlane.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TemproMonitoringService;TEMPRO Service;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x]
R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys;c:\windows\SYSNATIVE\drivers\mfewfpk.sys [x]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\System32\drivers\tos_sps64.sys;c:\windows\SYSNATIVE\drivers\tos_sps64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 GFNEXSrv;GFNEX Service;c:\program files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe;c:\program files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe;c:\windows\SYSNATIVE\mfevtps.exe [x]
S2 omigaplussvc;Omiga plus service;c:\program files (x86)\Omiga Plus\omigaplusSvc.exe;c:\program files (x86)\Omiga Plus\omigaplusSvc.exe [x]
S2 PEGAGFN;PEGAGFN;c:\program files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys;c:\program files (x86)\TOSHIBA\Password Utility\PEGAGFN.sys [x]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [x]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\Teco\TecoService.exe;c:\program files\TOSHIBA\Teco\TecoService.exe [x]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [x]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 winzipersvc;WinZiper service;c:\program files (x86)\WinZipper\winzipersvc.exe;c:\program files (x86)\WinZipper\winzipersvc.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW86.sys;c:\windows\SYSNATIVE\drivers\AtihdW86.sys [x]
S3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 RtkBtFilter;Realtek Bluetooth Filter Driver;c:\windows\system32\DRIVERS\RtkBtfilter.sys;c:\windows\SYSNATIVE\DRIVERS\RtkBtfilter.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;c:\windows\system32\DRIVERS\rtwlane.sys;c:\windows\SYSNATIVE\DRIVERS\rtwlane.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 TMachInfo;TMachInfo;c:\program files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-08-21 19:36 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-08-26 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2821126440-816702598-971368894-1001Core.job
- c:\users\Naomi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-25 18:22]
.
2013-08-26 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2821126440-816702598-971368894-1001UA.job
- c:\users\Naomi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-06-25 18:22]
.
2013-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 18:21]
.
2013-08-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-31 18:21]
.
2013-08-26 c:\windows\Tasks\LyricXeeker Update.job
- c:\program files (x86)\LyriXeeker\LyriXupdate.exe [2013-08-26 00:33]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-21 17:09 244696 ----a-w- c:\users\Naomi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-21 17:09 244696 ----a-w- c:\users\Naomi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-21 17:09 244696 ----a-w- c:\users\Naomi\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-06-27 14:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-06-27 14:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-06-27 14:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-06-27 14:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-06-27 14:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-06-27 14:11 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-11-29 13261456]
"TODDMain"="c:\program files (x86)\TOSHIBA\System Setting\TODDMain.exe" [2012-08-04 213136]
"TecoResident"="c:\program files\TOSHIBA\Teco\TecoResident.exe" [2012-08-14 169896]
"SRS Premium Sound HD"="c:\program files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" [2012-10-22 2172816]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mDefault_Page_URL = hxxp://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&from=newgdp&uid=TOSHIBAXMQ01ABD075_23JFC6LDTXX23JFC6LDT&ts=1377271636
mStart Page = hxxp://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&from=newgdp&uid=TOSHIBAXMQ01ABD075_23JFC6LDTXX23JFC6LDT&ts=1377271636
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=DE&userid=8b2b0b61-7e0c-166c-8ddc-07f20f4a74d0&searchtype=ds&q={searchTerms}&installDate=12/08/2013
TCP: DhcpNameServer = 192.168.2.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{21ad10b5-73e2-4539-a896-6b5aee7da930} - c:\program files (x86)\LyricsContainer\126.dll
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe
Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-Locked - (no file)
HKLM-Run-TCrdMain - c:\program files (x86)\TOSHIBA\Hotkey\TCrdMain_Win8.exe
HKLM-Run-TosWaitSrv - c:\program files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe
AddRemove-DSite - c:\users\Naomi\AppData\Roaming\DSite\UpdateProc\UpdateTask.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-08-26 21:23:08 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2013-08-26 19:23
.
Vor Suchlauf: 12 Verzeichnis(se), 645.211.406.336 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 646.549.340.160 Bytes frei
.
- - End Of File - - EE050DAFAF924C7F1B9D03E45AAEA417 |