Hi,


Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

• WICHTIG: Speichere Combofix auf deinem Desktop.
• Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
• Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
• Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
• Wenn Combofix fertig ist, wird es ein Logfile erstellen.
• Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.

Code: Alles auswählenAufklappen

ATTFilter

ComboFix 14-01-04.03 - Sven 04.01.2014   2:00.1.8 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.16331.14410 [GMT 1:00]
ausgeführt von:: c:\users\Sven\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Updated* {179979E8-273D-D14E-0543-2861940E4886}
FW: Kaspersky Internet Security *Disabled* {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
SP: Kaspersky Internet Security *Disabled/Updated* {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Sven\AppData\Roaming\Microsoft\svhost.exe
G:\install.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-12-04 bis 2014-01-04  ))))))))))))))))))))))))))))))
.
.
2014-01-04 01:04 . 2014-01-04 01:04	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-01-04 00:29 . 2014-01-04 00:29	--------	d-----w-	C:\Crash
2014-01-04 00:24 . 2013-04-23 15:03	435712	----a-w-	c:\users\Sven\AppData\Roaming\Microsoft\IE10\svhost.exe
2014-01-03 23:50 . 2013-12-04 03:28	10315576	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{25F6C262-D594-49C4-B1F3-FF8CF712ED16}\mpengine.dll
2014-01-03 23:26 . 2014-01-03 23:26	--------	d-----w-	C:\FRST
2014-01-03 21:45 . 2014-01-03 21:45	--------	d-----w-	c:\users\Sven\AppData\Local\SCE
2013-12-23 15:11 . 2014-01-03 21:58	--------	d-----w-	C:\AdwCleaner
2013-12-21 18:14 . 2013-12-22 09:33	--------	d-----w-	c:\users\Sven\AppData\Local\Ubisoft Game Launcher
2013-12-21 18:13 . 2013-12-21 18:13	--------	d-----w-	c:\program files (x86)\Ubisoft
2013-12-18 18:31 . 2013-12-05 08:42	39200	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2013-12-18 18:31 . 2013-12-05 08:42	32544	----a-w-	c:\windows\SysWow64\nvaudcap32v.dll
2013-12-14 10:28 . 2013-05-10 05:56	12625920	----a-w-	c:\windows\system32\wmploc.DLL
2013-12-14 10:28 . 2013-05-10 04:56	12625408	----a-w-	c:\windows\SysWow64\wmploc.DLL
2013-12-14 10:28 . 2013-05-10 04:30	167424	----a-w-	c:\program files\Windows Media Player\wmplayer.exe
2013-12-14 10:28 . 2013-05-10 03:48	164864	----a-w-	c:\program files (x86)\Windows Media Player\wmplayer.exe
2013-12-14 10:28 . 2013-05-10 05:56	14631424	----a-w-	c:\windows\system32\wmp.dll
2013-12-14 10:24 . 2013-11-23 18:26	417792	----a-w-	c:\windows\SysWow64\WMPhoto.dll
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-04 00:55 . 2013-09-13 14:25	587776	----a-w-	c:\users\Sven\AppData\Roaming\Microsoft\IE10\7z.exe
2014-01-02 20:57 . 2013-09-11 08:44	214392	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2014-01-02 20:47 . 2013-09-11 08:44	214392	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2013-12-21 18:13 . 2013-09-11 08:44	76888	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2013-12-20 16:34 . 2013-06-06 15:38	178272	----a-w-	c:\windows\system32\drivers\kneps.sys
2013-12-20 16:34 . 2013-09-26 17:28	620640	----a-w-	c:\windows\system32\drivers\klif.sys
2013-12-14 10:57 . 2013-09-10 18:26	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-14 10:57 . 2013-09-10 18:26	692616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-14 10:25 . 2013-09-11 09:29	90708896	----a-w-	c:\windows\system32\MRT.exe
2013-12-10 02:13 . 2013-10-29 19:17	982232	----a-w-	c:\windows\SysWow64\nvspcap.dll
2013-12-10 02:13 . 2013-10-29 19:17	1100248	----a-w-	c:\windows\system32\nvspcap64.dll
2013-12-05 08:42 . 2013-10-22 08:34	35104	----a-w-	c:\windows\system32\nvaudcap64v.dll
2013-11-26 11:25 . 2010-11-21 03:27	267936	------w-	c:\windows\system32\MpSigStub.exe
2013-11-25 20:09 . 2013-09-10 16:03	18960	----a-w-	c:\windows\system32\drivers\LNonPnP.sys
2013-11-23 19:26 . 2013-12-04 11:01	61216	----a-w-	c:\windows\system32\OpenCL.dll
2013-11-23 19:26 . 2013-12-04 11:01	53024	----a-w-	c:\windows\SysWow64\OpenCL.dll
2013-11-23 19:26 . 2013-12-04 11:00	18293096	----a-w-	c:\windows\system32\nvwgf2umx.dll
2013-11-23 19:26 . 2013-12-04 11:00	15218504	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2013-11-23 19:26 . 2013-12-04 11:00	1436528	----a-w-	c:\windows\system32\nvumdshimx.dll
2013-11-23 19:26 . 2013-11-27 18:39	1884448	----a-w-	c:\windows\system32\nvdispco6433193.dll
2013-11-23 19:26 . 2013-11-27 18:39	1511712	----a-w-	c:\windows\system32\nvdispgenco6433193.dll
2013-11-23 19:26 . 2013-09-10 15:37	2697248	----a-w-	c:\windows\SysWow64\nvapi.dll
2013-11-23 19:26 . 2013-09-10 12:40	3069608	----a-w-	c:\windows\system32\nvapi64.dll
2013-11-23 17:42 . 2013-12-04 11:01	6674208	----a-w-	c:\windows\system32\nvcpl.dll
2013-11-23 17:42 . 2013-12-04 11:01	3490080	----a-w-	c:\windows\system32\nvsvc64.dll
2013-11-23 17:42 . 2013-12-04 11:01	922912	----a-w-	c:\windows\system32\nvvsvc.exe
2013-11-23 17:42 . 2013-12-04 11:01	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-11-23 17:42 . 2013-12-04 11:01	2559776	----a-w-	c:\windows\system32\nvsvcr.dll
2013-11-23 17:42 . 2013-12-04 11:01	219424	----a-w-	c:\windows\system32\nvmctray.dll
2013-11-23 11:18 . 2013-11-23 11:18	590112	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-11-22 16:28 . 2013-12-04 11:01	3498475	----a-w-	c:\windows\system32\nvcoproc.bin
2013-11-16 19:49 . 2013-11-16 19:49	940032	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-16 19:49 . 2013-11-16 19:49	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-11-16 19:49 . 2013-11-16 19:49	942592	----a-w-	c:\windows\system32\jsIntl.dll
2013-11-16 19:49 . 2013-11-16 19:49	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-11-16 19:49 . 2013-11-16 19:49	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2013-11-16 19:49 . 2013-11-16 19:49	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2013-11-16 19:49 . 2013-11-16 19:49	81408	----a-w-	c:\windows\system32\icardie.dll
2013-11-16 19:49 . 2013-11-16 19:49	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-11-16 19:49 . 2013-11-16 19:49	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-16 19:49 . 2013-11-16 19:49	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-16 19:49 . 2013-11-16 19:49	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2013-11-16 19:49 . 2013-11-16 19:49	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-11-16 19:49 . 2013-11-16 19:49	61952	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2013-11-16 19:49 . 2013-11-16 19:49	61952	----a-w-	c:\windows\SysWow64\iesetup.dll
2013-11-16 19:49 . 2013-11-16 19:49	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2013-11-16 19:49 . 2013-11-16 19:49	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-11-16 19:49 . 2013-11-16 19:49	51200	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2013-11-16 19:49 . 2013-11-16 19:49	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-11-16 19:49 . 2013-11-16 19:49	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-11-16 19:49 . 2013-11-16 19:49	454656	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-11-16 19:49 . 2013-11-16 19:49	453120	----a-w-	c:\windows\system32\dxtmsft.dll
2013-11-16 19:49 . 2013-11-16 19:49	413696	----a-w-	c:\windows\system32\html.iec
2013-11-16 19:49 . 2013-11-16 19:49	40448	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-16 19:49 . 2013-11-16 19:49	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-11-16 19:49 . 2013-11-16 19:49	34816	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-16 19:49 . 2013-11-16 19:49	337408	----a-w-	c:\windows\SysWow64\html.iec
2013-11-16 19:49 . 2013-11-16 19:49	296960	----a-w-	c:\windows\system32\dxtrans.dll
2013-11-16 19:49 . 2013-11-16 19:49	247808	----a-w-	c:\windows\system32\msls31.dll
2013-11-16 19:49 . 2013-11-16 19:49	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-11-16 19:49 . 2013-11-16 19:49	235008	----a-w-	c:\windows\system32\elshyph.dll
2013-11-16 19:49 . 2013-11-16 19:49	195584	----a-w-	c:\windows\system32\msrating.dll
2013-11-16 19:49 . 2013-11-16 19:49	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2013-11-16 19:49 . 2013-11-16 19:49	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-11-16 19:49 . 2013-11-16 19:49	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2013-11-16 19:49 . 2013-11-16 19:49	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2013-11-16 19:49 . 2013-11-16 19:49	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2013-11-16 19:49 . 2013-11-16 19:49	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-11-16 19:49 . 2013-11-16 19:49	112128	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-11-16 19:49 . 2013-11-16 19:49	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-11-16 19:49 . 2013-11-16 19:49	105984	----a-w-	c:\windows\system32\iesysprep.dll
2013-11-16 19:49 . 2013-11-16 19:49	1051136	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-11-16 19:49 . 2013-11-16 19:49	84992	----a-w-	c:\windows\system32\mshtmled.dll
2013-11-16 19:49 . 2013-11-16 19:49	83968	----a-w-	c:\windows\system32\MshtmlDac.dll
2013-11-16 19:49 . 2013-11-16 19:49	774144	----a-w-	c:\windows\system32\jscript.dll
2013-11-16 19:49 . 2013-11-16 19:49	626176	----a-w-	c:\windows\system32\msfeeds.dll
2013-11-16 19:49 . 2013-11-16 19:49	62464	----a-w-	c:\windows\system32\pngfilt.dll
2013-11-16 19:49 . 2013-11-16 19:49	548352	----a-w-	c:\windows\system32\vbscript.dll
2013-11-16 19:49 . 2013-11-16 19:49	48128	----a-w-	c:\windows\system32\imgutil.dll
2013-11-16 19:49 . 2013-11-16 19:49	30208	----a-w-	c:\windows\system32\licmgr10.dll
2013-11-16 19:49 . 2013-11-16 19:49	263376	----a-w-	c:\windows\system32\iedkcs32.dll
2013-11-16 19:49 . 2013-11-16 19:49	243200	----a-w-	c:\windows\system32\webcheck.dll
2013-11-16 19:49 . 2013-11-16 19:49	235520	----a-w-	c:\windows\system32\url.dll
2013-11-16 19:49 . 2013-11-16 19:49	167424	----a-w-	c:\windows\system32\iexpress.exe
2013-11-16 19:49 . 2013-11-16 19:49	147968	----a-w-	c:\windows\system32\occache.dll
2013-11-16 19:49 . 2013-11-16 19:49	143872	----a-w-	c:\windows\system32\wextract.exe
2013-11-16 19:49 . 2013-11-16 19:49	13824	----a-w-	c:\windows\system32\mshta.exe
2013-11-16 19:49 . 2013-11-16 19:49	135680	----a-w-	c:\windows\system32\iepeers.dll
2013-11-16 19:49 . 2013-11-16 19:49	1228800	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-11-16 19:49 . 2013-11-16 19:49	101376	----a-w-	c:\windows\system32\inseng.dll
2013-11-14 21:09 . 2013-09-11 09:04	290184	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2013-11-14 11:56 . 2013-11-19 21:25	1511712	----a-w-	c:\windows\system32\nvdispgenco6433182.dll
2013-11-14 11:56 . 2013-11-19 21:25	1884448	----a-w-	c:\windows\system32\nvdispco6433182.dll
2013-11-11 20:06 . 2013-05-06 07:22	458336	----a-w-	c:\windows\system32\drivers\kl1.sys
2013-10-23 10:30 . 2013-11-15 17:16	1884448	----a-w-	c:\windows\system32\nvdispco6433165.dll
2013-10-23 10:30 . 2013-11-15 17:16	1511712	----a-w-	c:\windows\system32\nvdispgenco6433165.dll
2013-10-16 00:48 . 2013-10-22 08:34	1884448	----a-w-	c:\windows\system32\nvdispco6433158.dll
2013-10-16 00:48 . 2013-10-22 08:34	1511712	----a-w-	c:\windows\system32\nvdispgenco6433158.dll
2013-10-14 17:00 . 2013-11-16 19:52	28368	----a-w-	c:\windows\system32\IEUDINIT.EXE
2013-10-12 02:30 . 2013-11-12 20:28	830464	----a-w-	c:\windows\system32\nshwfp.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VSA"="c:\users\Sven\AppData\Roaming\Microsoft\VSA\9.0\VSA.exe" [2013-05-07 1751552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-02-29 56088]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-10-01 152392]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Speedport W 101 WLAN Manager.lnk - c:\program files (x86)\Speedport W 101 Stick WLAN Manager\Speedport W 101 Stick.exe [2013-9-10 7102464]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMScheduler;MBAMScheduler;g:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;g:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;g:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;g:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R3 AiCharger;AiCharger;SysWow64\drivers\AiCharger.sys;SysWow64\drivers\AiCharger.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.20);c:\windows\system32\DRIVERS\RtTeam620.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam620.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 ZDCNDIS6a64;ZDCNDIS Protocol Driver;c:\windows\system32\ZDCNDIS6a64.sys;c:\windows\SYSNATIVE\ZDCNDIS6a64.sys [x]
R3 ZY202_VS;Deutsche Telekom 802.11g 1211 Driver;c:\windows\system32\DRIVERS\WlanGZG.sys;c:\windows\SYSNATIVE\DRIVERS\WlanGZG.sys [x]
R4 klflt;klflt;c:\windows\system32\DRIVERS\klflt.sys;c:\windows\SYSNATIVE\DRIVERS\klflt.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
S1 klpd;klpd;c:\windows\system32\DRIVERS\klpd.sys;c:\windows\SYSNATIVE\DRIVERS\klpd.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 athrusb;Atheros Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrxusb.sys;c:\windows\SYSNATIVE\DRIVERS\athrxusb.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-05 18:28	1210320	----a-w-	c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-01-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-10 10:57]
.
2014-01-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-09-10 16:15]
.
2014-01-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-09-10 16:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-10-29 6843024]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-08 1028384]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-12-10 1100248]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-12-10 2279712]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.dell.com
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.2.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-BattlEye for A2 - g:\program files (x86)\Steam\steamapps\common\Arma 2BattlEye\UnInstallBE.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-01-04  02:05:35
ComboFix-quarantined-files.txt  2014-01-04 01:05
.
Vor Suchlauf: 13 Verzeichnis(se), 429.853.519.872 Bytes frei
Nach Suchlauf: 16 Verzeichnis(se), 430.449.790.976 Bytes frei
.
- - End Of File - - E683F7000B24655AD328363F50750B66