| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Fehler: HTML/Infected.WebPage.Gen und Anti-Spyware Scanner.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
03.02.2010, 16:29
| #3 |
| |  Fehler: HTML/Infected.WebPage.Gen und Anti-Spyware Scanner. Nachtrag zu meinem Beitrag
__________________Combofix.txt ComboFix 10-02-02.08 - ulbon 03.02.2010 15:51:10.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3036.1941 [GMT 1:00] ausgeführt von:: c:\users\ulbon\Downloads\ComboFix.exe SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9} SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . c:\$recycle.bin\S-1-5-21-2831989352-2858393065-946018899-500 C:\LOG.TXT c:\program files\temp c:\users\ulbon\AppData\Roaming\020000006fbe028b741C.manifest c:\users\ulbon\AppData\Roaming\020000006fbe028b741O.manifest c:\users\ulbon\AppData\Roaming\020000006fbe028b741P.manifest c:\users\ulbon\AppData\Roaming\020000006fbe028b741S.manifest c:\users\ulbon\AppData\Roaming\SystemProc . ((((((((((((((((((((((( Dateien erstellt von 2010-01-03 bis 2010-02-03 )))))))))))))))))))))))))))))) . 2010-02-03 14:57 . 2010-02-03 14:57 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-02-03 06:19 . 2010-02-03 06:20 -------- d-----w- C:\rsit 2010-02-03 06:19 . 2010-02-03 06:20 -------- d-----w- c:\program files\trend micro 2010-02-02 21:41 . 2010-02-02 21:41 -------- d-----w- c:\users\ulbon\AppData\Roaming\InstallShield 2010-02-02 20:59 . 2010-02-02 20:59 -------- d-----w- c:\program files\Windows Portable Devices 2010-02-02 20:56 . 2009-10-01 01:02 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe 2010-02-02 20:56 . 2009-10-01 01:02 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll 2010-02-02 20:56 . 2009-10-01 01:01 81920 ----a-w- c:\windows\system32\wpdbusenum.dll 2010-02-02 20:56 . 2009-10-01 01:01 60928 ----a-w- c:\windows\system32\PortableDeviceConnectApi.dll 2010-02-02 20:56 . 2009-10-01 01:02 2537472 ----a-w- c:\windows\system32\wpdshext.dll 2010-02-02 20:56 . 2009-10-01 01:02 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll 2010-02-02 20:56 . 2009-10-01 01:02 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll 2010-02-02 20:56 . 2009-10-01 01:01 546816 ----a-w- c:\windows\system32\wpd_ci.dll 2010-02-02 20:56 . 2009-10-01 01:01 160256 ----a-w- c:\windows\system32\PortableDeviceTypes.dll 2010-02-02 20:56 . 2009-10-01 01:01 350208 ----a-w- c:\windows\system32\WPDSp.dll 2010-02-02 20:56 . 2009-10-01 01:01 196608 ----a-w- c:\windows\system32\PortableDeviceWMDRM.dll 2010-02-02 20:56 . 2009-10-01 01:01 100864 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll 2010-02-02 20:55 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll 2010-02-02 20:55 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll 2010-02-02 20:55 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll 2010-02-02 18:28 . 2010-02-02 18:28 -------- d-----w- c:\users\ulbon\AppData\Roaming\Malwarebytes 2010-02-02 18:28 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-02-02 18:28 . 2010-02-02 18:28 -------- d-----w- c:\programdata\Malwarebytes 2010-02-02 18:28 . 2010-02-02 20:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-02-02 18:28 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-02-02 15:07 . 2010-02-02 15:10 -------- d-----w- c:\windows\system32\ca-ES 2010-02-02 15:07 . 2010-02-02 15:10 -------- d-----w- c:\windows\system32\eu-ES 2010-02-02 15:07 . 2010-02-02 15:10 -------- d-----w- c:\windows\system32\vi-VN 2010-02-02 14:41 . 2009-07-28 15:33 55656 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2010-02-02 14:41 . 2009-03-30 09:33 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys 2010-02-02 14:41 . 2010-02-02 14:41 -------- d-----w- c:\programdata\Avira 2010-02-02 14:41 . 2010-02-02 14:41 -------- d-----w- c:\program files\Avira 2010-02-02 14:35 . 2010-02-02 14:35 -------- d-----w- c:\users\ulbon\AppData\Local\Mozilla 2010-02-02 09:53 . 2010-02-02 09:53 -------- d-----w- c:\program files\CCleaner 2010-02-01 10:01 . 2010-02-01 10:01 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-5\Markup.dll 2010-02-01 10:01 . 2010-02-01 10:01 1273592 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-5\SpotlightResources.dll 2010-01-29 19:11 . 2010-02-02 14:40 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2010-01-29 19:11 . 2010-01-29 19:11 -------- d-----w- c:\program files\Spybot - Search & Destroy 2010-01-29 18:42 . 2010-01-29 18:42 -------- d-----w- c:\program files\Common Files\Scanner 2010-01-13 05:03 . 2009-10-19 13:38 156672 ----a-w- c:\windows\system32\t2embed.dll 2010-01-13 05:03 . 2009-10-19 13:35 72704 ----a-w- c:\windows\system32\fontsub.dll 2010-01-12 21:09 . 2010-01-12 21:09 -------- d-----w- c:\users\ulbon\AppData\Local\Apple Computer 2010-01-12 21:04 . 2010-01-12 21:04 -------- d-----w- c:\program files\Common Files\Apple 2010-01-12 21:04 . 2010-01-12 21:04 -------- d-----w- c:\users\ulbon\AppData\Local\Apple 2010-01-12 21:04 . 2010-01-12 21:04 -------- d-----w- c:\program files\Apple Software Update 2010-01-12 21:04 . 2010-01-12 21:04 -------- d-----w- c:\programdata\Apple 2010-01-11 15:42 . 2010-01-11 15:42 -------- d-sh--w- c:\windows\system32\%APPDATA% 2010-01-11 15:41 . 2010-01-11 15:41 484976 ----a-w- c:\programdata\Google\Google Toolbar\Update\gtb99A3.tmp.exe 2010-01-06 22:56 . 2010-01-06 22:56 1239816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-4\SpotlightResources.dll . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-02-03 14:43 . 2008-01-21 07:15 618442 ----a-w- c:\windows\system32\perfh007.dat 2010-02-03 14:43 . 2008-01-21 07:15 122842 ----a-w- c:\windows\system32\perfc007.dat 2010-02-03 14:33 . 2009-09-01 11:11 -------- d-----w- c:\users\ulbon\AppData\Roaming\Skype 2010-02-03 09:04 . 2009-09-01 11:13 -------- d-----w- c:\users\ulbon\AppData\Roaming\skypePM 2010-02-02 20:59 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat 2010-02-02 20:58 . 2010-02-02 20:58 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf 2010-02-02 15:15 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar 2010-02-02 15:15 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail 2010-02-02 15:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar 2010-02-02 15:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration 2010-02-02 15:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal 2010-02-02 15:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery 2010-02-02 15:12 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender 2010-01-29 17:56 . 2009-12-07 21:55 -------- d-----w- c:\program files\Ask.com 2010-01-14 22:12 . 2009-09-01 15:38 1273592 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2010-01-14 10:12 . 2009-10-03 17:54 181120 ------w- c:\windows\system32\MpSigStub.exe 2010-01-12 08:36 . 2009-09-25 17:25 -------- d-----w- c:\program files\Java 2010-01-02 06:38 . 2010-01-22 22:58 916480 ----a-w- c:\windows\system32\wininet.dll 2010-01-02 06:32 . 2010-01-22 22:58 71680 ----a-w- c:\windows\system32\iesetup.dll 2010-01-02 06:32 . 2010-01-22 22:58 109056 ----a-w- c:\windows\system32\iesysprep.dll 2010-01-02 04:57 . 2010-01-22 22:58 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2009-12-24 23:31 . 2009-06-09 09:27 -------- d-----w- c:\program files\Google 2009-12-10 16:10 . 2009-06-09 09:35 -------- d-----w- c:\programdata\Microsoft Help 2009-11-09 12:31 . 2009-12-10 16:10 24064 ----a-w- c:\windows\system32\nshhttp.dll 2009-11-09 12:30 . 2009-12-10 16:10 30720 ----a-w- c:\windows\system32\httpapi.dll 2009-11-09 10:36 . 2009-12-10 16:10 411648 ----a-w- c:\windows\system32\drivers\http.sys . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-07-03 135680] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-03-30 7289376] "KeNotify"="c:\program files\TOSHIBA\Utilities\KeNotify.exe" [2009-01-13 34088] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-21 61440] "TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2009-03-06 468320] "HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2009-03-09 55160] "NDSTray.exe"="c:\program files\TOSHIBA\ConfigFree\NDSTray.exe" [2009-05-12 299008] "cfFncEnabler.exe"="c:\program files\TOSHIBA\ConfigFree\cfFncEnabler.exe" [2009-03-24 16384] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-03-30 1833504] "ToshibaServiceStation"="c:\program files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" [2009-04-01 1283384] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "TOSHIBA Online Product Information"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2009-03-16 6158240] c:\users\ulbon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote Inhaltsverzeichnis.onetoc2 [2009-9-25 3656] TRDCReminder.lnk - c:\program files\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-2-24 391072] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~3\GoogleDesktopNetwork3.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\00TCrdMain] 2009-03-23 09:50 729088 ----a-w- c:\program files\TOSHIBA\FlashCards\TCrdMain.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartFaceVWatcher] 2009-03-24 17:33 163840 ----a-w- c:\program files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Teco] 2009-04-24 09:40 1323008 ----a-w- c:\program files\TOSHIBA\TECO\TEco.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toshiba TEMPRO] 2009-03-23 12:30 1045904 ----a-w- c:\program files\Toshiba TEMPRO\TemproTray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToshibaServiceStation] 2009-04-01 16:11 1283384 ----a-w- c:\program files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPCHWMsg] 2009-04-15 15:04 570736 ----a-w- c:\program files\TOSHIBA\TPHM\TPCHWMsg.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] 2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "VistaSp2"=hex(b):86,a8,7b,e7,1b,a4,ca,01 R2 AMD External Events Utility;AMD External Events Utility;c:\windows\System32\atiesrxx.exe [16.07.2009 09:24 176128] R2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [02.02.2010 15:41 108289] R2 camsvc;TOSHIBA Web Camera Service;c:\program files\TOSHIBA\TOSHIBA Web Camera Application\TWebCameraSrv.exe [16.07.2009 09:50 20544] R2 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [10.03.2009 17:51 46448] R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [29.01.2010 20:11 1153368] R2 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files\Toshiba TEMPRO\TemproSvc.exe [23.03.2009 13:30 116104] R2 TMachInfo;TMachInfo;c:\program files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [16.07.2009 09:47 62776] R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe [24.04.2009 10:40 176128] R2 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [17.03.2009 10:49 73728] R2 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [15.04.2009 16:03 656752] R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\System32\drivers\TVALZFL.sys [20.03.2009 22:29 12920] R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\System32\drivers\ewusbfake.sys [01.10.2009 11:26 103040] R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [17.11.2008 06:40 3668480] R3 PGEffect;Pangu effect driver;c:\windows\System32\drivers\PGEffect.sys [16.07.2009 09:50 22272] S2 gupdate1ca2af493b10123;Google Update Service (gupdate1ca2af493b10123);c:\program files\Google\Update\GoogleUpdate.exe [01.09.2009 12:08 133104] S3 FontCache;Windows-Dienst für Schriftartencache;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21.01.2008 03:23 21504] S3 GoogleDesktopManager-110309-193829;Google Desktop Manager 5.9.911.3589;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [09.06.2009 10:27 30192] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhalt des "geplante Tasks" Ordners 2010-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-09-01 11:08] 2010-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-09-01 11:08] . . ------- Zusätzlicher Suchlauf ------- . uStart Page = hxxp://www.google.de/ mStart Page = hxxp://de.yahoo.com uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 IE: {{76577871-04EC-495E-A12B-91F7C3600AFA} - eBay: Neue und gebrauchte Elektronikartikel, Autos, Kleidung, Sammlerstücke, Sportartikel und mehr ? alles zu günstigen Preisen IE: {{8A918C1D-E123-4E36-B562-5C1519E434CE} - Amazon.de: Günstige Preise bei Elektronik & Foto, DVD, Musik, Bücher, Games, Spielzeug & mehr TCP: {98BB9B0A-D6F5-477D-924B-E66191CC1590} = 217.52.47.130 4.2.2.2 FF - ProfilePath - c:\users\ulbon\AppData\Roaming\Mozilla\Firefox\Profiles\ybrrcr5v.default\ FF - prefs.js: browser.startup.homepage - Google FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll FF - plugin: c:\program files\Picasa2\npPicasa2.dll FF - plugin: c:\program files\Picasa2\npPicasa3.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ . - - - - Entfernte verwaiste Registrierungseinträge - - - - BHO-{0125E737-D9B0-4457-B8C7-79E5E2CAFCBd} - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) SafeBoot-mcmscsvc SafeBoot-MCODS ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-02-03 15:57 Windows 6.0.6002 Service Pack 2 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostarteinträge... Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** . --------------------- Gesperrte Registrierungsschluessel --------------------- [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Zeit der Fertigstellung: 2010-02-03 15:59:23 ComboFix-quarantined-files.txt 2010-02-03 14:59 Vor Suchlauf: 7 Verzeichnis(se), 109.315.047.424 Bytes frei Nach Suchlauf: 11 Verzeichnis(se), 109.249.314.816 Bytes frei - - End Of File - - 2C633E2AB7EF01F08ADCDFF36803B885 |
| Themen zu Fehler: HTML/Infected.WebPage.Gen und Anti-Spyware Scanner. |
| .com, 1.exe, antivir, antivir guard, ausgehen, avgntflt.sys, browser, components, computer, control center, converter, desktop, device driver, diagnostics, diner dash, ebay, error, excel, flash player, fontcache, gservice, gupdate, hdaudio.sys, hkus\s-1-5-18, home, home premium, install.exe, logfile, logon.exe, msiexec.exe, notepad.exe, office 2007, officejet, plug-in, problem, programdata, registrierungsschlüssel, safer networking, saver, scan, senden, software, spyware, start menu, starten, super, svchost.exe, system, toolbars, trojan.dropper, trojan.tracur, unbekanntes programm, usb 2.0, usbvideo.sys, viren, virus, vista 32, vista 32 bit, windows, wscript.exe |
Baum-Darstellung