Code:
Alles auswählen Aufklappen ATTFilter
ComboFix 12-09-10.04 - aYpStyle 11.09.2012 0:24.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.2046.1595 [GMT 2:00]
ausgeführt von:: f:\downloadz\Antivirushilfe\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\INSTALL.LOG
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-08-10 bis 2012-09-10 ))))))))))))))))))))))))))))))
.
.
2012-09-10 21:29 . 2012-09-10 21:29 -------- d-----w- C:\TDSSKiller_Quarantine
2012-08-22 14:21 . 2012-08-22 14:21 -------- d-----w- c:\users\aYpStyle\AppData\Local\DDMSettings
2012-08-22 13:10 . 2012-09-07 14:00 -------- d-----w- c:\users\aYpStyle\AppData\Roaming\DivX
2012-08-22 13:10 . 2012-08-22 13:10 -------- d-----w- c:\program files\Common Files\DivX Shared
2012-08-22 13:07 . 2012-08-22 13:11 -------- d-----w- c:\program files\DivX
2012-08-22 12:00 . 2012-08-22 13:11 -------- d-----w- c:\programdata\DivX
2012-08-22 09:21 . 2012-08-22 09:21 -------- d-----w- c:\program files\searchplugins
2012-08-22 09:21 . 2012-08-22 09:21 -------- d-----w- c:\program files\defaults
2012-08-22 09:21 . 2012-08-22 09:21 -------- d-----w- c:\program files\components
2012-08-22 09:21 . 2012-06-14 22:17 2042848 ----a-w- c:\program files\mozjs.dll
2012-08-22 07:16 . 2012-08-22 07:16 -------- d-----w- c:\program files\ESET
2012-08-22 07:11 . 2012-08-22 13:40 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-08-22 06:40 . 2012-08-22 06:40 -------- d-----w- c:\users\aYpStyle\AppData\Roaming\Malwarebytes
2012-08-22 06:40 . 2012-08-22 06:40 -------- d-----w- c:\programdata\Malwarebytes
2012-08-22 06:40 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-10 21:31 . 2009-07-13 23:11 259072 ----a-w- c:\windows\system32\services.exe
2012-08-07 07:28 . 2012-08-07 07:28 476976 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-08-07 07:28 . 2012-04-12 11:56 472880 ----a-w- c:\windows\system32\deployJava1.dll
2012-07-08 10:32 . 2012-04-12 11:54 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-08 10:32 . 2012-04-12 11:54 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-14 22:19 . 2012-04-12 11:32 15757792 ----a-w- c:\program files\xul.dll
2012-06-14 22:18 . 2012-04-12 11:32 19424 ----a-w- c:\program files\xpcom.dll
2012-06-14 22:18 . 2012-04-12 11:32 265184 ----a-w- c:\program files\updater.exe
2012-06-14 22:18 . 2012-04-12 11:32 145376 ----a-w- c:\program files\ssl3.dll
2012-06-14 22:18 . 2012-04-12 11:32 155104 ----a-w- c:\program files\softokn3.dll
2012-06-14 22:18 . 2012-04-12 11:32 91104 ----a-w- c:\program files\smime3.dll
2012-06-14 22:18 . 2012-04-12 11:32 16864 ----a-w- c:\program files\plugin-container.exe
2012-06-14 22:18 . 2012-04-12 11:32 20960 ----a-w- c:\program files\plds4.dll
2012-06-14 22:18 . 2012-04-12 11:32 21472 ----a-w- c:\program files\plc4.dll
2012-06-14 22:18 . 2012-04-12 11:32 92640 ----a-w- c:\program files\nssutil3.dll
2012-06-14 22:18 . 2012-04-12 11:32 95712 ----a-w- c:\program files\nssdbm3.dll
2012-06-14 22:18 . 2012-04-12 11:32 358368 ----a-w- c:\program files\nssckbi.dll
2012-06-14 22:18 . 2012-04-12 11:32 637920 ----a-w- c:\program files\nss3.dll
2012-06-14 22:17 . 2012-04-12 11:32 170464 ----a-w- c:\program files\nspr4.dll
2012-06-14 22:17 . 2012-04-12 11:32 829920 ----a-w- c:\program files\mozsqlite3.dll
2012-06-14 22:17 . 2012-04-12 11:32 43488 ----a-w- c:\program files\mozglue.dll
2012-06-14 22:17 . 2012-04-12 11:32 16352 ----a-w- c:\program files\mozalloc.dll
2012-06-14 22:17 . 2012-06-17 08:08 157608 ----a-w- c:\program files\maintenanceservice_installer.exe
2012-06-14 22:17 . 2012-06-17 08:08 113120 ----a-w- c:\program files\maintenanceservice.exe
2012-06-14 22:17 . 2012-04-12 11:32 418784 ----a-w- c:\program files\libGLESv2.dll
2012-06-14 22:17 . 2012-04-12 11:32 79840 ----a-w- c:\program files\libEGL.dll
2012-06-14 22:17 . 2012-04-12 11:32 624608 ----a-w- c:\program files\gkmedias.dll
2012-06-14 22:17 . 2012-04-12 11:32 258528 ----a-w- c:\program files\freebl3.dll
2012-06-14 22:17 . 2012-04-12 11:32 913888 ----a-w- c:\program files\firefox.exe
2012-06-14 22:17 . 2012-04-12 11:32 117728 ----a-w- c:\program files\crashreporter.exe
2012-06-14 22:17 . 2012-04-12 11:32 18912 ----a-w- c:\program files\AccessibleMarshal.dll
2012-06-14 22:16 . 2012-04-12 11:32 2106216 ----a-w- c:\program files\D3DCompiler_43.dll
2012-06-14 22:16 . 2012-04-12 11:32 1998168 ----a-w- c:\program files\d3dx9_43.dll
2012-06-14 22:16 . 2012-06-17 08:08 770384 ----a-w- c:\program files\msvcr100.dll
2012-06-14 22:16 . 2012-06-17 08:08 421200 ----a-w- c:\program files\msvcp100.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify"="c:\users\aYpStyle\AppData\Roaming\Spotify\spotify.exe" [2012-08-21 5576408]
"Spotify Web Helper"="c:\users\aYpStyle\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-08-21 1193176]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
2012-08-21 18:54 1193176 ----a-w- c:\users\aYpStyle\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
.
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
.
------- Zusätzlicher Suchlauf -------
.
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\aYpStyle\AppData\Roaming\Mozilla\Firefox\Profiles\2jmqqn5z.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-95121349.sys
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\atieclxx.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\windows\System32\rundll32.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-09-11 00:32:52 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-09-10 22:32
.
Vor Suchlauf: 7 Verzeichnis(se), 53.708.873.728 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 53.441.724.416 Bytes frei
.
- - End Of File - - FEEBBA99A02EA4B9E076246543BD3689
10.09.2012, 23:34
Baum-Darstellung