Code:
Alles auswählen Aufklappen ATTFilter
ComboFix 12-02-10.01 - Guiseppe 10.02.2012 18:04:03.1.2 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.4093.2461 [GMT 1:00]
ausgeführt von:: c:\users\Guiseppe\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-01-10 bis 2012-02-10 ))))))))))))))))))))))))))))))
.
.
2012-02-10 17:10 . 2012-02-10 17:12 -------- d-----w- c:\users\Guiseppe\AppData\Local\temp
2012-02-10 17:10 . 2012-02-10 17:10 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-02-10 17:10 . 2012-02-10 17:10 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-08 05:46 . 2012-02-08 05:46 -------- d-----w- C:\_OTL
2012-02-05 16:02 . 2012-02-05 16:02 -------- d-----w- c:\users\Guiseppe\AppData\Roaming\Malwarebytes
2012-02-05 16:01 . 2012-02-05 16:01 -------- d-----w- c:\programdata\Malwarebytes
2012-02-05 16:01 . 2012-02-05 16:01 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-02-05 16:01 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-04 19:52 . 2011-12-14 11:23 34624 ----a-w- c:\windows\system32\TURegOpt.exe
2012-02-04 19:52 . 2011-12-14 11:23 25920 ----a-w- c:\windows\system32\authuitu.dll
2012-02-04 19:52 . 2011-12-14 11:23 21312 ----a-w- c:\windows\SysWow64\authuitu.dll
2012-02-04 19:52 . 2012-02-04 19:52 -------- d-----w- c:\users\Guiseppe\AppData\Roaming\TuneUp Software
2012-02-04 19:52 . 2012-02-04 19:52 -------- d-----w- c:\program files (x86)\TuneUp Utilities 2012
2012-02-04 19:51 . 2012-02-04 19:52 -------- d-----w- c:\programdata\TuneUp Software
2012-02-04 19:41 . 2012-02-04 19:41 -------- d-----w- c:\programdata\boost_interprocess
2012-02-03 15:18 . 2011-12-08 12:28 311296 ----a-w- c:\windows\SysWow64\TubeFinder.exe
2012-02-03 15:18 . 2011-09-28 08:18 9728 ----a-w- c:\windows\SysWow64\PCCLPFR.DLL
2012-02-03 15:18 . 2011-09-28 08:18 84512 ----a-w- c:\windows\SysWow64\PICCLP32.OCX
2012-02-03 15:18 . 2011-09-28 08:18 364544 ----a-w- c:\windows\SysWow64\PropertyGrid.ocx
2012-02-03 15:18 . 2011-09-28 08:18 32768 ----a-w- c:\windows\SysWow64\CMDLGFR.DLL
2012-02-03 15:18 . 2011-09-28 08:18 24576 ----a-w- c:\windows\SysWow64\ControlSubX.ocx
2012-02-03 15:18 . 2011-09-28 08:18 152848 ----a-w- c:\windows\SysWow64\COMDLG32.OCX
2012-02-03 15:18 . 2011-09-28 08:18 141312 ----a-w- c:\windows\SysWow64\MSCMCFR.DLL
2012-02-03 15:18 . 2011-09-28 08:18 119568 ----a-w- c:\windows\SysWow64\VB6FR.DLL
2012-02-03 15:18 . 2011-09-28 08:18 101888 ----a-w- c:\windows\SysWow64\VB6STKIT.DLL
2012-02-03 15:18 . 2012-02-03 15:35 -------- d-----w- c:\program files (x86)\Free FLV Converter
2012-02-03 15:18 . 2012-02-03 15:25 -------- d-----w- c:\users\Guiseppe\AppData\Roaming\FreeFLVConverter
2012-01-31 05:40 . 2011-11-17 06:53 515968 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-31 05:40 . 2011-11-16 16:43 442368 ----a-w- c:\windows\system32\winhttp.dll
2012-01-31 05:40 . 2011-11-16 16:42 94720 ----a-w- c:\windows\system32\secur32.dll
2012-01-31 05:40 . 2011-11-16 16:42 347136 ----a-w- c:\windows\system32\schannel.dll
2012-01-31 05:40 . 2011-11-16 16:41 1689600 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-31 05:40 . 2011-11-16 16:24 77312 ----a-w- c:\windows\SysWow64\secur32.dll
2012-01-31 05:40 . 2011-11-16 16:23 377344 ----a-w- c:\windows\SysWow64\winhttp.dll
2012-01-31 05:40 . 2011-11-16 16:23 278528 ----a-w- c:\windows\SysWow64\schannel.dll
2012-01-31 05:40 . 2011-11-16 14:34 11264 ----a-w- c:\windows\system32\lsass.exe
2012-01-23 05:23 . 2012-01-23 05:23 -------- d-----w- c:\programdata\WindowsSearch
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-10 17:12 . 2011-06-24 07:11 24072 ----a-w- c:\windows\gdrv.sys
2011-12-30 10:22 . 2011-06-24 15:21 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-25 16:25 . 2012-01-11 09:27 451072 ----a-w- c:\windows\system32\winsrv.dll
2011-11-23 13:57 . 2011-12-16 18:51 2764800 ----a-w- c:\windows\system32\win32k.sys
2011-11-18 20:55 . 2012-01-11 09:27 1585152 ----a-w- c:\windows\system32\ntdll.dll
2011-11-18 20:55 . 2012-01-11 09:27 1167984 ----a-w- c:\windows\SysWow64\ntdll.dll
2011-11-18 18:07 . 2012-01-11 09:27 76800 ----a-w- c:\windows\system32\packager.dll
2011-11-18 17:47 . 2012-01-11 09:27 66560 ----a-w- c:\windows\SysWow64\packager.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1555968]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-01-02 1242448]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Samsung PanelMgr"="c:\windows\Samsung\PanelMgr\SSMMgr.exe" [2008-08-08 524288]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-04-21 281768]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
.
c:\users\Guiseppe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
.
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2012-02-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2302328129-1709802029-363408948-1000Core.job
- c:\users\Guiseppe\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-23 14:58]
.
2012-02-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2302328129-1709802029-363408948-1000UA.job
- c:\users\Guiseppe\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-23 14:58]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page =
mLocal Page = %SystemRoot%\system32\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Free YouTube Download - c:\users\Guiseppe\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - c:\users\Guiseppe\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.178.1
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-Windows Defender - c:\program files (x86)\Windows Defender\MSASCui.exe
AddRemove-Activation Assistant for the 2007 Microsoft Office suites - c:\programdata\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2302328129-1709802029-363408948-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:81,f9,a2,ac,d2,64,cf,39,08,b3,1b,cc,ee,9a,b1,7a,be,05,62,6f,19,2f,b2,
81,b8,c9,42,76,17,03,73,4b,8e,a4,87,c2,5a,e4,f4,52,f2,1a,0a,06,62,35,aa,58,\
"??"=hex:41,e0,42,8c,cf,55,c7,95,2b,14,4d,f8,66,7b,0c,1b
.
[HKEY_USERS\S-1-5-21-2302328129-1709802029-363408948-1000\Software\SecuROM\License information*]
"datasecu"=hex:36,57,73,44,09,e3,50,88,98,21,77,16,cc,d5,26,82,72,56,92,7e,51,
c7,ec,cd,21,6b,4d,a0,76,d1,33,68,f3,97,4e,9e,bb,49,13,cb,30,c6,29,5c,cf,67,\
"rkeysecu"=hex:7a,b5,f1,e6,be,fc,1d,9b,2d,46,bd,7f,73,da,0d,ad
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
c:\program files (x86)\Avira\AntiVir Desktop\sched.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\GIGABYTE\EnergySaver\GSvr.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.bin
c:\program files (x86)\Windows Media Player\wmplayer.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-02-10 18:16:47 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-02-10 17:16
.
Vor Suchlauf: 15 Verzeichnis(se), 473.200.189.440 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 473.553.625.088 Bytes frei
.
- - End Of File - - 334FCB10AC9705C9998F86DF3D9525B3
Im IE ist jetzt kein searchqu als Startseite mehr...
10.02.2012, 18:20
Hybrid-Darstellung
