Combofix Logfile: Code:
ComboFix 12-06-09.01 - Luisa 09.06.2012 19:06:35.4.2 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.49.1031.18.2038.1257 [GMT 2:00]
ausgeführt von:: c:\users\Luisa\Desktop\ComboFix.exe
AV: BitDefender Antivirus *Disabled/Outdated* {982ADE23-275B-0766-37C5-DE01A484098E}
FW: BitDefender Firewall *Disabled* {A0115F06-6D34-063E-1C9A-77345A574EF5}
SP: BitDefender Antispyware *Disabled/Outdated* {234B3FC7-0161-08E8-0D75-E573DF034333}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-05-09 bis 2012-06-09 ))))))))))))))))))))))))))))))
.
.
2012-06-09 17:12 . 2012-06-09 17:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-24 00:51 . 2012-05-29 20:52 -------- d-----w- C:\FRST
2012-05-19 23:04 . 2012-05-19 23:04 -------- d-----w- c:\programdata\Malwarebytes
2012-05-19 23:04 . 2012-05-20 00:14 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-05-19 20:38 . 2012-05-19 20:38 -------- d-----w- c:\programdata\dc0d0000-285f-421f-58ff-3e3acd773491
2012-05-19 20:31 . 2012-05-19 20:31 -------- d-----w- c:\users\Luisa\AppData\Roaming\QuickScan
2012-05-19 20:30 . 2012-05-19 20:43 -------- d-----w- c:\programdata\BitDefender
2012-05-19 20:27 . 2012-05-19 20:44 155455 ----a-w- c:\programdata\bdinstall.bin
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-22 22:08 . 2012-03-10 12:15 0 --sha-w- c:\windows\system32\dds_log_ad13.cmd
.
.
((((((((((((((((((((((((((((( SnapShot@2012-05-24_21.54.47 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-05-24 21:46 . 2012-05-25 22:18 83016 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-10-14 05:16 . 2012-06-09 17:15 28628 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-06-09 17:15 39396 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-11-01 17:11 . 2012-06-09 17:15 10580 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2020745923-3351992433-2440261903-1000_UserData.bin
- 2011-03-18 21:29 . 2012-05-19 23:07 67584 c:\windows\system32\LogFiles\Srt\bootstat.dat
+ 2011-03-18 21:29 . 2012-06-09 14:54 67584 c:\windows\system32\LogFiles\Srt\bootstat.dat
+ 2011-01-13 02:18 . 2012-06-02 15:06 6242 c:\windows\system32\wdi\ERCQueuedResolutions.dat
- 2012-05-24 21:54 . 2012-05-24 21:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-06-09 17:13 . 2012-06-09 17:13 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-05-24 21:54 . 2012-05-24 21:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-06-09 17:13 . 2012-06-09 17:13 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-07-14 02:36 . 2012-05-24 11:53 616008 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-06-09 17:08 616008 c:\windows\system32\perfh009.dat
+ 2009-07-14 17:58 . 2012-06-09 17:08 654166 c:\windows\system32\perfh007.dat
- 2009-07-14 17:58 . 2012-05-24 11:53 654166 c:\windows\system32\perfh007.dat
+ 2009-07-14 02:36 . 2012-06-09 17:08 106388 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-05-24 11:53 106388 c:\windows\system32\perfc009.dat
- 2009-07-14 17:58 . 2012-05-24 11:53 130006 c:\windows\system32\perfc007.dat
+ 2009-07-14 17:58 . 2012-06-09 17:08 130006 c:\windows\system32\perfc007.dat
- 2009-07-14 05:38 . 2012-05-20 00:14 262144 c:\windows\system32\config\systemprofile\ntuser.dat
+ 2009-07-14 05:38 . 2012-05-29 20:52 262144 c:\windows\system32\config\systemprofile\ntuser.dat
- 2009-07-14 05:01 . 2012-05-24 21:53 274392 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-06-09 17:12 274392 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-05-11 01:18 . 2012-06-09 02:04 1115636 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2020745923-3351992433-2440261903-1000-12288.dat
- 2011-05-11 01:18 . 2012-05-24 21:53 1115636 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2020745923-3351992433-2440261903-1000-12288.dat
- 2009-07-14 02:34 . 2012-04-05 06:13 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2009-07-14 02:34 . 2012-06-09 17:42 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HideSCAHealth"= 1 (0x1)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 pcouffin;Uiusys;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 Arrakis3;BitDefender Arrakis Server;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2009-10-19 278224]
R3 BDFM;BDFM;c:\windows\system32\DRIVERS\bdfm.sys [x]
R3 cmnsusbser;Mobile Connector USB Device for Legacy Serial Communication LCT2053s;c:\windows\system32\DRIVERS\cmnsusbser.sys [x]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\DRIVERS\massfilter.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 zghsmdm;ZTE General Handset USB Modem Proprietary;c:\windows\system32\DRIVERS\zghsmdm.sys [x]
R3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\DRIVERS\ZTEusbnet.sys [x]
R3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\DRIVERS\ZTEusbvoice.sys [x]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\windows\system32\DRIVERS\BdfNdisf6.sys [x]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-11-01 89680]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2010\bdvedisk.sys [2010-01-19 103944]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 UI Assistant Service;UI Assistant Service;c:\program files (x86)\T-Mobile Internet Manager 03\AssistantServices.exe [2009-03-30 241664]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-04-20 9216]
S2 WTGService;WTGService;c:\program files (x86)\XSManager\WTGService.exe [2010-04-12 329168]
S2 XS Stick Service;XS Stick Service;c:\windows\service4g.exe [2010-04-30 145064]
S3 CAXHWAZL;CAXHWAZL;c:\windows\system32\DRIVERS\CAXHWAZL.sys [x]
S3 RTL8023x64;Realtek 10/100-Netzwerkkartenfamilie-NDIS-x64-Treiber;c:\windows\system32\DRIVERS\Rtnic64.sys [x]
.
.
NETSVCS BENÖTIGT REPARATUR - Derzeitig vorhandene Einträge:
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
.
.
Inhalt des "geplante Tasks" Ordners
.
2012-05-30 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2020745923-3351992433-2440261903-1000Core.job
- c:\users\Luisa\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-10 16:07]
.
2012-06-09 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2020745923-3351992433-2440261903-1000UA.job
- c:\users\Luisa\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-10 16:07]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BDAgent"="c:\program files\BitDefender\BitDefender 2010\bdagent.exe" [2011-05-15 1699152]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 385560]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 363544]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-10-25 241664]
.
NETSVCS BENÖTIGT REPARATUR - Derzeitig vorhandene Einträge:
AeLookupSvc
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
IKEEXT
AudioSrv
FastUserSwitchingCompatibility
Ias
Irmon
Nla
Ntmssvc
NWCWorkstation
Nwsapagent
Rasauto
Rasman
Remoteaccess
SENS
Sharedaccess
SRService
Tapisrv
Wmi
WmdmPmSp
ATWPKT2
atfsd
ctaud2k
umpusbxp
pcouffin
pktfilter
axsnmsvc
p1110vid
rslinx
oracleoradb10g_home1isql*plus
nmwcdcm
LVRS
NTSIM
proxyhostservice
NICSer_WPC54G
wintabservice
wampmysqld
sonicwall_netextender
cltnetcnservice
service1
tnbrlds
adobeactivefilemonitor4.0
omsad
transcode360
icraplus
DfwWebAgent
CTMFLT
Ncrc710
lbrtfdc
atitunep
nvlddmkm
rt2500
atikmdag
vxsvc
symantecantibotfilter
TCtrlIO
sscdmdfl
driverhardwarev2
hidgame
cvslock
ofcservice
tunnelguardservice
adihdaudaddservice
procexp90
VirtualCam
Wpsnuio
fsaua
mfcom
mf
rtl8187Se
automate5
EpmShd
PolarUSB
admjoy
SenFiltService
wscsvc
zebrmdfl
Ld51ocnucsnp
k56
icdsptsv
btwaudio
v2imount
freesshdservice
bt3cusb
elnkfwppservice
ZSMC211
Rawwan
elosystemservice
lxdm_device
se44nd5
LUsbFilt
ipsraidn
Si3132
sfhlp02
pdlnslea
tng-dtmg
acedrv07
rppkt
iviregmgr
ccevtmgr
ASFWHide
ql10wnt
se27nd5
dktknsrv
evteng
AF15BDA
stac97
sdbus
websenseusagemonitor
license
MA8032U
vncdrv
Airgo
U81xmdm
scarddrv
pctavsvc
flashcomadmin
tosrfhid
slservice
service
nmservice
lanusb
nic1394
roxliveshare9
z800mdm
epsonbidirectionalagent
rt73
proxyhostmirrordisplay
iAimFP6
avgcoresvc
sandboxu
cicsclient
profos
cwcwdm
pcctlcom
mskservice
lcs
avgascln
db2licd
smapint
SNC
mssql$microsoftsmlbiz
tsdhd
asc
elservice
ipodsrv
racsvc
oracleorahome92tnslistener
siskp
Cam5603C
iaimfp3
pserve
portio
dladresn
NETGEAR_MA111
cwcspud
PQNTDrv
adpu160m
zebrceb
ql1280
dlcf_device
tomcatcws3
AVRec
a8djusb
gusvc
S7oppilx
vetmonnt
aswrdr
clientservice
avgclean
nscirda
USBCCID
SrvcEKIOMngr
FINEPIX_PCC
speedfan
ixiaendpoint
HFACSVC
anbmservice
ilicensesvc
se2Bunic
mcafeeframework
SRS_SSCFilter
regsrvc
mi-raysat_3dsMax2008_32
https-admserv61
mferkdk
SprintRcAppSvc
sfman
webupdate
toside
CX23880
smbios
dmisrv
statusagent
dpc_srv_webcast
dm1service
sifilter
WLAN_USB
bthpan
kpfwsvc
wacomkey
VHidMinidrv
mctskshd.exe
AsuhfivrO
purendis
pdlnemap
epson_pm_rpcv4_01
tos_sps32
mbr
lgsnd_filter
itchfltr
incdrm
atalk
szkg
iolo_srv
MREMP50a64
WmFilter
CdaC15BA
changer
tfsndres
Mtlstrm
FVNETusb
s616bus
retrolauncher
nwcworkstation
midisyn
FireTDI
oraclexeclragent
enxpsvc
mcmispupdmgr
atimpab
AR5523
l8042pr2
cpucoolserver
networkx
CXTUNE
richvideo
svchost
apphostsvc
rnadirectory
PGPsdkDriver
cebdaldr
citrixwmiservice
dnserver32
sony_ssm.sys
db2jds
qmofiltr
Mvc25U870_VID_1262&PID_25FD
idrivert
aalogger
nsm1mdfl
avgio
hamachi
ISAMSvc
nimcdlbk
psimsvc
lvusbsta
A88xXBar
lxcr_device
pelmouse
scramby
nvax
vmkbd2
lxbs_device
RMSvc
SNPSTD3
Si3132r5
ss_mdfl
pdlnatcm
ceepwrsvc
eectrl
taphss
SlWdmSup
trlokom_rmhsvc
hpn
iaimtv2
vsbus
StarOpen
SbieDrv
SunkFilt39
iaimfp1
BCMTPM
UDFReadr
dwusbdnt
asmagent
RESMGR
whoisd32
msloop
n3900
dvd43llh
tosrfcom
videX32
se59mgmt
pca
savscan
navapel
USBAAPL
susbser
hsvcmod
ersvc
sysaudio
epfwtdi
BUFADPT
awservice
vhidmini
grmnusb
lhidusb
maxbackserviceint
USIUDF
symlcbrd
lvpr2mon
cercsr6
rmedia
hibernation
lxcccustomerconnect
HSXHWBS2
vpcbus
PcdrNt
hcwPVRP2
Subsonic
stllssvr
symevent
DniVad
rxfilter
psdistributionagent
amon
MXOFX
zpsc
SrvcSSIOMngr
igniteservice.exe
sr
hclinetd
se44mdm
vnxservice
msdv
st330service
sonytvc
epson_pm_rpcv2_01
vwkernel
W700mdm
pcampr5
USB28xxOEM
PdiPorts
gameenum
win32sl
sfcure01
PCASp50
mpe
sysmonlog
avp
msmframework
purgeieservice
A88xEnc
thkeys
cxpt_service
ups
wg3n
aswlsvc
Stltrk2k
pdlndtdl
db2remotecmd
adiusbaw
cidaemon
MA_CMIDI
wltwo51b
wmp54gssvc
cportclm
psdvdisk
SQLBrowser
SE26bus
FTDIBUS
zumbus
e1express
z800mdfl
lpds
parvdm
rollbackclientservice
snpstd2
qbcfmonitorservice
wuolservice
T6963C
dbustrcm
sbpci
NWSIPX32
dlapoolm
smartlinkservice
deltafw
captureservice
WINUSB
oracleorahome90agent
ISODrive
apache2
ASMMAP
dcstor32
pilogsrv
cpqarray
mqdmbus
CT20XUT.DLL
SrvcEPIOMngr
FiltUSBEMPIA
btwrchid
govsrv
USBModem
STV672
oracleorahome811cmadmin
w810mdfl
anio
vstor2-ws60
slip
tfsnifs
MSFWHLPR
DLH5X
PSSdk23
vmsprog
pivotmou
simbad
nim32
StickyMesger
RMCAST
DeviceScanner
RadProbe
spcsutilityservice
ARCSOFTVIRTUALCAPTURE
wg6n
slabbus
ALABULK
NeroMediaHomeService.4
NWSAP
se27unic
vvdsvc
razerusb
ntuneservice
msfwsvc
timounter
SE26mdfl
s117obex
pdlnctdl
srtspx
ppmoucls
pcnet
tiumfwl
persfw
npkcmsvc
ino_flpy
aeclienthostservice
elnkupdateservice
WinFl32
SE27obex
perc2
w800mgmt
crauto
cachemgr
siside
VAIOMediaPlatform-MusicServer-HTTP
RAPIProtocol
actser
procexp100
vulfntrs
websenseclientdeployservice
s217mgmt
TVALG
ADSMService
pdreli
commserver
pmj151la
lxcj_device
pxfhserd
Dfs
pdlnatdl
sandradatasrv
clnt_clientman
s217nd5
plscsi
fix
elbycdfl
ZDCNDIS5
antivirscheduler
SE2Emdfl
digitizer
iwebmsg
usbser
ql2100
risdptsk
MSW_USB
snareiis
wg111nd5
AR5416
CX88AUD
bb-run
ovmsmaccessmanager
SymIM
konfig
AX88772
pdlnacom
ql1080
irmon
sbservice
ufad-ws60
vzupsvc
wmdmpmsp
kservice
mcstrm
fgdxbus
rupsd
lxrsii1s
srvdpi
qbposdbservices
mksvirmonsvc
hpconfig
mssql$sony_mediamgr
ATMsrvc
UlSata
thotkey
cpqalert
rkhdrv31
DCamUSBGrandTek
Tb2RCAssist
ps2
symappcore
X4HSX32
RDID1027
isapisearch
tmcomm
qcdonner
caili
TryAndDecideService
moufiltr
dmboot
Alpham2
mnsframework
MtxDma0
s7oppitx
lwwlicenseservice
euq_monitor
windrvNT
vaiomediaplatform-integratedserver-upnp
DMUSBUSBDCam
nhcDriverDevice
acrotray
usbcm
nwdls
mcontrol
googledesktopmanager
pdlnepkt
fireport
tapvpn
tvichw32
wm
ofcpfwsvc
SecureStorageService
hsfhwbs2
ntsvcmgr
vet-rec
regdefend
s217mdfl
snoopfree
uphclean
QPSched
oracleformsserver-forms60server-oraform
lemsgt
arrayssl_vpn_service3,0,1,9
vmnetadapter
tcsd_win32.exe
btwhid
aamqdispatcher
ntsyslog
IntelC51
avfilter
EL90X
shdserv
ICAM5USB
wap3gx
ssrtln
vproeventmonitor
dxdebug
slapd-config52
ProcObsrv
SaiClass
mfehidk
JiaoCap
RivaTuner32
sis315
mnmdd
NWFILTER
mcshield
btwdins
WD_FireWire_HID
wwnetdde
nimcdldu
ativraxx
se58unic
tosrfbnp
SaiNtHid
mod7700
irda
WMIService
usbaudio
usbmate
lxcz_device
eabusb
thinkpadmodemservice
usbatapi2000
btnhnd
vci
winpppoverethernet
sprtsvc_dellsupportcenter
se2Cunic
NetTcpActivator
dlcj_device
client32
DcLps
ptserial
VIAPFD
fsma
se59nd5
nimxdfk
hpqcxs08
acedrv05
ASNDIS5
dladresm
cdr4_xp
ELmou
cwafadmincontroller
c34nb4c5
AlKernel
tapeware
vsapint
meiudf
elaunidr
tmmbd
FontCache3.0.0.0.
rimsptsk
lxrsge10s
ssfs0509
lxcc_device
WINIO
qbreminderflash
DSXUSB
LVVI500A
cfsvcs
zpnodecollector
GoogleDesktopManager-010708-104812
belmonitorservice
HabuFltr
LMS
winproxy
lexbces
CTERFXFX.DLL
TBPanel
mpservice
DynDNS_Updater_Service
el90xbc
EPSON_EB_RPCV4_01
mclserviceatl
CE3
NTACCESS
om518p
OneCareMP
wanminiportservice
giveio
SE27mdfl
qkbfiltr
pop3d32
Wuser32
wps
getPlusHelper
cdr4_2k
ntmssvc
pml
pdengine
DMICall
ini910u
kraidsvc
ATIBTXBAR
phnxvcdservice
rdsessmgr
ICAM3NT5
SerTVOutCtlr
wfxsvc
iftpsvc
TestHandler
quickbooksdb
ati2mpaa
PTDCBus
LRMINIPORT
enxpsvr
digisptiservice
s716nd5
LoopBeMidi1
MASPINT
pmshellsrv
U3sHlpDr
se59bus
zntport
pfc
bcserver
LVPrcMon
Sntnlusb
snpstd
pgsql-8.0
a016mdfl
NuidFltr
tphdexlgsvc
UCTblHid
bobo
sglfb
iksyssec
kbstuff
lfsfilt
afs2k
pdcomp
inort
dot4usb
Udfreadr_xp
mwsejcap
W55U01
BVRPMPR5
pvservice
OEM02Vfx
sit_flt
se2Eunic
ftrtsvc
rvsinst
backupexecnamingservice
mqdmmdm
stcagent
elnkservice
SWUMX51
RIOUNIV
sonywbms
ELmon
bgmainsvc
tmesrv3
catchme
mssqlserverolapservice
AtiPcie
tlntsvr
Ndisipo
M2500
issuser
ROB_V
GBDevice
hsfhwazl
vsmon
adobeactivefilemonitor5.0
SE2Bmdfl
fetnd5bv
sfdrv01
mqdmmdfl
JL2005C
datasvr2
avipbb
dnwhodisp
meraksmtp
relational
licenseservice
se2Cnd5
sentinel
rfcomm
vncmirror
stylexphelper
ctdvda2k
ithsgt
rpskt
sddmi2
pwisvc
RVIEG01
senfilt
MobilityService
atirage3
AcronisOSSReinstallSvc
tmtdi
oracleorahome811cman
ndasscsi
w810mdm
oracledbconsoleorcl
ma763004
acmservice
W8335XP
inotask
mediaviewer
usnjsvc
nm
mpfirewl
XTrapD12
wpsdrvnt
qbposdbextservices
nchssvad
avg7core
sysmgmthp
Gernuwa
windowblinds
sysdown
s3savagenb
dot4ufd
aswtdi
thpsrv
rsvchost
atiavpci
ftpds
nmap
msvad_simple
s616mdfl
toscosrv
CXAVXBAR
shuttleengine
lxdj_device
ShockMgr
jukebox3
HPSLPSVC
cdrbsvsd
forcewarewebinterface
egathdrv
VAIOMediaPlatform-MusicServer-UPnP
lp6nds35
webrootspysweeperservice
rimvserport
smartwiservice
cdmservice
lvpopflt
Exportit
nuvaud2
sp_rssrv
mksupdateint
imagedrv
cnxtdiag
snoopfreesvc
vcomm
SE2Bmdm
pdlndlpb
mfetdik
ppa3
ELkbd
NTIDrvr
dot4print
WmaCDriverV32
gdrv
tosrfusb
eamon
mks_scan
diskperf
slpmonx
dlaudf_m
pavatscheduler
XilinxPC4Driver
usbsermpt
usb20l
MRV6X32P
CX88ENC
SI3112
EACSys
mstdfrgs
wintrust
alcaudsl
lxbt_device
nipxirmu
ccs
s125mdm
cfosspeeds
ASLDRService
ssm_mdm
idebusdr
backupexecnotificationserver
icollectservice
TPwSav
riomsc
SE27mdm
scsk4
nvcap
awecho
w550mgmt
g400
nfmservice
pgfilter
dlacdbhm
Slntamr
naimagent32
tm_cfw
USA49W2KP
SlNtHal
hap16v2k
cics.region2
PCISys
superproserver
proxyserverservice
hSONYPVh
pdlndqll
Usb20Scan
Alpham1
pdrframe
tfsndrct
rslinxng
wwsecsvc
arhidfltr
smbusp
DCFS2K
wanatw
db2ntsecserver
a016obex
SRTSPL
cmdagent
tsp
fsdfwd
vclone
smservaz
roxupnpserver
HssTrayService
starwindserviceae
aliadwdm
SbcpHid
int15.sys
idechndr
merakpop3
SE2Ebus
us30service
abnetmon
gv3
vetfddnt
ATNT40K
lvckap
ASInsHelp
rampartsvc
webdriveservice
usbsermptxp
sym_u3
ssidrv
dlaudfam
pinnaclemarvinusb
VRFIL
rt61
fsbwsys
lxdmCATSCustConnectService
ZY202_XP
odysseyIM4
mnmsrvc
ar5211
aw_host
pxfhbus
sdhelper
btdriver
Appn
ipssvc
fastuserswitchingcompatibility
nv
websenselogserver
pavdrv
WmHidLo
avg7rsw
F700iob
pxfhmdfl
bcoreusb
StkAMini
sonypvs1
fasttx2k
tphkdrv
ultra
StMp3Rec
lxrjd31s
rt2870
CTDevice_Srv
macformatservice
cqmgserv
se58mdm
smwdm
dntus26
symids
avidsdmservice
bdfdll
se2Dunic
Epfwndis
iaimtv3
SiSRaid
blueletaudio
dptrackerd
nvnetbus
ami0nt
harmony
uscbs108
Intel_MIPMNMP
ufdsvc
iviaspi
transarcafsdaemon
mcmscsvc
VC4CB104
mfebopk
{95808DC4-FA4A-4c74-92FE-5B863F82066B}
ncupdatesvc
CTMMOUNT
zpcache
SE27bus
atinrvxx
oracleorahometnslistener
useraccess7
w800bus
Hotkey
SWNC8U20
oraclemtsrecoveryservice
netmnt
pdlnecfg
backupexecdevicemediaservice
perc2hib
TcUsb
z800bus
raysatxsi5_0server
rpcnet
{a7447300-8075-4b0d-83f1-3d75c8ebc623}
nvnforce
PPPoEWin
mcsysmon
bthidenum
vpn5000service
w810mgmt
HssDrv
SymIMMP
s116unic
MxlW2k
k750obex
se59unic
mssql$pinnaclesys
BlueSoleilCS
dirms_defragmentation
tbhsd
vaiomediaplatform-mobile-gateway
s217unic
USBDeviceService
NAL
issm
spmgr
spbbcsvc
SIODRV
winvnc4
ARSVC
avcgbfl
SE2Eobex
mclogmanagerservice
alertservice
aexnsclienttransport
tavsvc
tgsrvc_smartagent
DM9102
caisafe
WBHWDOCT
USR1806V
zpcollector
rtl8185
PAC7302
flutilssvc
kpf4
ac97intc
ipahelper.exe
webfilter
opcenum
id2scaps
mssqlserver
sandrathesrv
slabser
BCM43XV
nwlnkfwd
ntlmssp
DcPTP
lvcomser
s716mdm
UBHelper
se2Dnd5
vcsw
elotouchscreen
adsexpb
venturi2
xcomm
vvoice
cq_mem
DellAMBrokerService
SE26mdm
trioservice
L8042mou
CTEDSPFX.DLL
mldserv
cpqnicmgmt
MSSQL$MSSMLBIZ
ZuneWlanCfgSvc
mvserver
mcdbus
AlteraByteBlaster
se44mdfl
tdcmdpst
wacomvhid
atdisk
sqlserveragent
MTsensor
bocdrive
incdfs
iAimFP7
se58bus
swmidi
VAIOMediaPlatform-PhotoServer-HTTP
wencrservice
DcFpoint
MTC0001_ESB
houdiniserver
LPCFilter
ser2pl
ctxcpusched
PTproct
X10UIF
ssisvr32
tb2launch
Memctl
w200mdm
eaps2kbd
BRGSp50
wlluc48b
PTDCMdm
splitter
ntgrip
NICM
ntpr_nic_service2
sleepy
prevxagent
wdm_au8820
wlidsvc
IASJet
ATKFUSService
logmein
msmpsvc
a016mdm
anydvd
wzcsvc
upsentry_smart
HSX_DP
toshidpt
zebrsce
DCamUSBSQTECH
PGPwded
ctprxy2k
ctsfm2k
acdservice
iolodmv
sit_mdm
freebsd
regmanserv
ntsecure
pdlnsx25
alerter
orbmediaservice
RR2IOMod
VRADFIL
sonypvu1
ccalib8
BrScnUsb
wusb54gv2svc
CVPND
ec2007service
AGV
areschatserver
jobserver_report
TMKEmu
owstimer
olapserver
JRAID
StreamDispatcher
SE2Cmgmt
hddsvc
p1131vid
se45nd5
nwlnkipx
InterBaseServer
cdralw2k
TPM
wacommousefilter
magictuneengine
tpkmpsvc
PXRDDriver
tdsmapi
SQTECH905C
NtMtlFax
sgectl
usb_rndisx
sonicstagemonitoring
wlsetupsvc
emproxy
vmauthdservice
TOSHIBASoftModem
mcods
WavxDMgr
tones
aha154x
SMTPSVC
dlbt_device
mwsarcpkt
aolservice
LCcfltr
EU3_USB
epsonbidirectionalservice
odysseyIM3
RIOXDRV
AKSIFDH
sansaservice
RTL8169
vzcdbsvc
bt3cser
nimcrpcsu
DELL_A02
sisperf
StkScan
Spsmqvsm
lirsgt
pduip6000dmemcrdmgr
v124
snapman380
ehstart
avg7rsxp
mssql$sqlexpress
db2das00
mcpromgr
zenos1
smcservice
SaiNtSub
SfCtlCom
autostore
edspport
HIDSwvd
WGX
InterBaseGuardian
openvpnservice
sfilter
FETNDISB
palmusbd
symtdi
ghaio
tdimsys
se26unic
kmixer
rpcapd
ikfileflt
iAimTV5
PID_08A0
CamAv
SED133x
iaimfp4
SaiH040B
IFP700
lxcg_device
epfw
SE2Bbus
NxFsMon
viaagp1
mxserver
emAudio
ssdiagn
nsm1serd
vusbbus
SunkFilt
cachemanxp
mcupdmgr.exe
2wirepcp
issimon
dnsexit
TNaviSrv
arp1394
Uim_IM
dlbx_device
nimcdfxk
umxfwhlp
vmount2
Sk9920nt
cygserver
FileDisk
USBVCD
MaVctrl
eSettingsService
penrendezvous
s125obex
xpadminserver
rnadiagreceiver
epsonstatusagent2
regspy
NetMsmqActivator
ziptoa
ngdbserv
atkkeyboardservice
SimpTcp
lvuvc
omci
zebrmdmc
elagopro
tmxpflt
VX1000
dlcc_device
aec
syntp
SWMX00
MagicTune
NPPTNT
veteboot
appdrv
tmlisten
npfmntor
fcprintservice
roxliveshare
firelm01
audstub
avsvcmonitor
screadspool
cdfsvc
imonitor
zmxpzip
filechecker
wdmaud
s716mdfl
TPECioCtl
tmactmon
inport
ccdecode
xfilt
mi-raysat_3dsmax8
utilman
ulcdrhlp
filemon701
server
klblmain
FTSER2K
sprtsvc_ddoctorv2
MSFWDrv
comhost
oracleorahomedatagatherer
dcfssvc
vpcnets2
procmon10
prtg4service
omniinet
lxda_device
advantage
cwafnotesservice
nicconfigsvc
ndiscm
zd1211u(zydas)
streamip
rca
backupexecalertserver
WacomVKHid
imap4d32
sfng32
DNE
ptilink
rp32service
SilverLink
alcan5wn
websensewfreportserver
carboncopy32
SE2Dbus
CrystalSysInfo
se44obex
YahooAUService
pctoolsfirewallplus
trcboot
emitray
tsmservice
W700obex
cmuda3
s116mgmt
dac2w2k
cwafreportscheduler
NxNetMon
netwg311
wmp54gsvc
uhcd
smartscaps
pid_0928
ql1240
CTEDSPIO.DLL
rpaservice
SQLAgent$MICROSOFTSMLBIZ
CiscoVpnInstallService
lxce_device
dsNcAdpt
dlcq_device
wg5n
quickhealfirewall
mcafeeantispyware
tabletservice
ovt519
tfsnudfa
DKbFltr
sqlagent$sony_mediamgr
CTSBLFX.DLL
avhook
sscdserd
xpagentserver
tvicport
symdns
wlluc48
tvtnetwk
rwbackupsrv
tvs
iteatapi
useraccess
se44mgmt
vstor2
imaservice
icepack
swmsflt
cpqdmi
AtiHdmiService
MobilePreInstallerService
XFX_program
JiaoIO
atimtag
VRcore
MXOPSWD
rtport
hwdatacard
traprcvr
winss
utscsi
tosrfec
aclient
bcftdi
oracle_load_balancer_60_client-forms6ip14
tpsrv
cmudau
VSP1284D
nalntservice
papycpu2
ATIBTCAP
radiosvr
DumaNT
WinVd32
sit_prt
gs30s
Si3114r5
pcidump
genregistrar
dvd-ram_service
dmio
uisp
pwd_2K
snapman
w300bus
stirusb
SaiNtBus
IOSLINK
WmUsbHid
hap17v2k
ssm_mdfl
hcf_msft
GMSIPCI
ageresoftmodem
avsinc
trackcam4
vmnetdhcp
zpjobq
ibmpmdrv
F700iat
psasrv
TIEHDUSB
rtl8023
w550mdfl
ooclevercacheagent
ccpwdsvc
WaveFDE
ntcharge
ozoneinstallerservice
iisadmin
symantecantibotdriver
VrAcFil
contentindex
NVENET
cisvc
yukonwxp
rrrspy
IPSECSHM
s125mdfl
UimBus
Wbutton
SE2Dmdm
nvsmu
Ndismeetro
mbmiodrvr
defragfs
vxd
IBMTPCHK
cwbrxd
mgactrl
klif
cavasm
NMSAccessU
GENERICDRV
backupclientsvc
tandpl
pnrouter
jaguar
navex15
swwd
oracleorahomemanagementserver
ipsec
digictrl
bhmonitorservice
ATIVTUTW
ONSIO
dlcg_device
niorbk
openldap-slapd
pdagent
nmwcdcj
mysqlinventime
MA8032M
hsxhwazl
se59mdm
mail2ec
se58nd5
advservice
EAWDMFD
wltrysvc
z800mgmt
sptisrv
GTF32BUS
rt2500usb
unrealircd
pgpsdkservice
PCDCODEC
SQLAgent$LG_LP2
NWUSBPort
GoToAssist
VCIDRV
se44bus
w550mdm
ovsecurityserver
WSIMD
update
Anydlc
papyjoy
abp480n5
servicelayer
stunnel
odclientservice
atierecord
olcamsrv
pelusblf
z525obex
upsmonservice
belgium_id_card_service
pmsveh
GoBack2K
AVCamUSB20
w22n51
snac
arkbcfltr
mysql
RimSerPort
ABVPN2K
b57w2k
liveupdate
SQLAgent$MICROSOFTBCM
amusbprt
sonicatheaterinstallerservice
a8djavs
FET5X86V
sisidex
eeyeevnt
fah@c:+fah+fah-service+fah502-console.exe
USBMN1X1
UpdateCenterService
FVXSCSI
starwindservice
s116obex
regmon701
ichaud
penclass
akshhl
minilog
SiRemFil
smrt
nvstor32
cwafadminmonitor
vaiomediaplatform-integratedserver-appserver
KR3NPXP
Maplom
bdfsdrv
digirefresh
symantecantibotshim
hpqwmiex
adsservice
qconsvc
rupsmon
iSMBIOS
dpti2o
DivisCTP
WmXlCore
proxyhostdriver
bmwebcfg
SE27mgmt
mediamaxxlservice
messenger
bufserv
dklogger
adobeversioncue
bcm4sbxp
WcesComm
avupdsvc
automate6
SiSGbeXP
roxupnprenderer
Cam5603D
EPOWER
BCMModem
cpqfcalm
pdlndoem
vaiomediaplatform-musicserver-appserver
MQAC
ibmcicstransactiongateway
Ktp
mcproxy
GV600_4
idisw2km
acsvc
AmeLanPc
pav_service
k750mgmt
lvsrvlauncher
tdrpman
rootmodem
mohfilt
stylexpservice
truecrypt
EpmPsd
VX3000
NWDHCP
acprfmgrsvc
csctl50
KS0108
centennialiptransferagent
avgtdi
pcradminserver
beatjamupnpmusicserver
dot4
ipinip
epstnt01
sysaidagent
MS1000
emupia
astcc
gemserv
hf30service
isdrv120
CBN
procexp111
eventclientmultiplexer
obvious
w800mdm
foldersize
tvtfilter
Blfp
KR10N
HpqRemHid
w200mgmt
qfcoresvc
dbmang
mdm
irsir
ctxcpuusync
yediex
pdscheduler
backupexecrpcservice
s117unic
protexislicensing
Cardex
remoterecord
backuplauncher
ELacpi
cqcpu
s716bus
wmp54gv4svc
se2Bnd5
lvhidsvc
pinger
nvport
pageserver
wkscfgsrv
AppnApi
pav_security
pmem
autocomplete
ati2mtaa
incdpass
crystalaps
sfrem01
Machnm32
mi-raysat_3dsmax9_32
BASFND
coste
clsched
delldmi
wmccdsls
erecoveryservice
agentsrv
k750mdm
Mtlmnt5
LVCap138
adminserver
savrtpel
WUSB54GPV4SRV
gearsecurity
megamonitorsrv
se58obex
soma
hdthermal
xusb21
BcmSqlStartupSvc
Sunkfiltp
rapapp
wpdusb
ireike
scdemu
noipducservice
netsvc
httpfilter
twdns
sympxsvc
hpzius12
SE2Cobex
w29n51
tunmp
aswupdsv
SMNDIS5
msftesql
sthda
vpnva
btwusb
EACSvrMngr
pdfcreatormessages
fsssvc
SWNC8U51
ss_mdm
MaRdPnp
aracpi
motmodem
mfesmfk
SRTSP
artdhcp
PDExchange
ikhfile
avcgbdr
cvintdrv
EMSCR
CTAudSvcService
s116mdfl
iPassPeriodicUpdateApp
steamdvr
serialkeys
application
dcsloader
pnkbstrk
SiS7018
ni_nic
ma_cmidi_installerservice
WaveEnrollmentService
nsm1bus
mscsptisrv
artourservice
iaimfp0
dmprimer
ZSMC303
sbhooksvc
webrootenterpriseupdateservice
pxfhmdm
bc_ip_f
Nmea
MREMPR5
tnidriver
btnetfilter
UPATC
websensecommunicationagent
personalsecuredriveservice
kl1
se26nd5
z525mgmt
npapimon
U81xmgmt
Wtcls2k
datunidr
pgpserv
drvnddm
ispwdsvc
wdelmgr20
pcx1unic
tng-dts
pavfnsvr
OVT511Plus
TUWinStylerThemeSvc
dac960nt
rbfilter
zunenetworksvc
tosrfbd
PAR1284
Cap7134
AMDPCI
z800obex
amdk7
oracle%oracle_home_service%clientcache80
vwlogger
V0070VID
ipassconnectengine
cpqvcagent
plsremotesvc
c-dillacdac11ba
nmwcd
awlegacy
Pnp680r
ms_mpu401
inspect
LHidFilt
PCDRSRVC
ifp800
GTPTSER
pciSd
es1371
SABSVC
dsncservice
SWUMX20
wcontrol
pdlnsv25
cpqrcmc
se59obex
atchksrv
viaudio
BootScreen
mcvsrte
streamloadservice
LHidKe
ctac32k
BRCMDECO
USRpdA
W8100PCI
orbpvr
ser2plms
SANDRA
symndis
dlaifs_m
rtm
{834170a7-af3b-4d34-a757-e05eb29ee96d}
ctljystk
symproxysvc
PD0620VID
imonnt
CoachUsb
lmimaint
s116mdm
wmi
Eplpdx02
aswmon2
a016bus
NwSapAgent
agnfilt
regservice
IBM_LLC2
nfsds
winpowermanager
cobbmservice
websenseuserservice
si3114r
vpcusb
fssfltr
SE2Cbus
bdss
PGPdisk
ghoststartservice
atixsaudio
armoucfltr
O2SCBUS
aic78xx
CA561
ARPolicy
viaagp
videoacceleratorengine
raidmsvr
SE2Cmdfl
ATSWPDRV
tfsncofs
cpsvc
USB_NDIS_51
sndsrvc
iaantmon
EIO_XP
CVPNDRVA
icam4usb
vcdsecs
bc_filter
oraclewebassistant
toddsrv
ivscheduler
pae_1394
mindrepair
lvtuner
PSI_SVC_2
pcandis5
tng-doba
NWHOST
vmparport
ESDCR
eloggersvc6
oracle_load_balancer_60_client-forms6i
cpqarry2
passthru
DVDVRRdr_xp
VCAM
spupdsvc
prfldsvc
dnetc
rp_fws
SiS300i
SetupSys
DSDrv4
yukonwlh
msftpsvc
LEX_AS_NIC_SERVICE_YNOS
atksgt
emu10k1
picturetaker
avgntflt
axskbus
UWProSys
filterservice
mfeapfk
LMouKE
btaudio
igateway
smservauth
cpuz132
cccredmgr
ZDPNDIS5
SWNC5E00
antivirservice
MRESP50
P17xfi
bwsvc
eskerlicensecontrol
GT890x
DevUpper
tme3srv
F700imd
nipsvc
C-Dilla
sysplant
RushTopDevice
backupexecagentaccelerator
s616unic
RTSTOR
siswlsvc
KMW_SYS
MRESP50a64
hcwPP2
lvprcsrv
NVR0Dev
iap
RTLE8023xp
haspnt
tfsnpool
lvmvdrv
WNIPROT5
LVBulk
s24eventmonitor
SeaPort
ScanUSBEMPIA
defwatch
websensecamserver
teefer2
lhidflt2
MREMP50
cxlpt
iwebcal
sr_service
SECYPUSB
bgsvcgen
ss_bus
s24trans
dwmrcs
epoxusdm
mirrorv3
AsIO
guardian2
NITaggerService
roxwatch
fa_scheduler
oracleservicelocalora
usbbus
revudfservice
oracleorahome92pagingserver
vmnetuserif
ANC
blueletscoaudio
atmeltpm
TMHIDSRV
dlpwd
{85ccb53b-23d8-4e73-b1b7-9ddb71827d9b}
twotrack
basic2
npkcusb
c-dillasrv
RSAFAL
uiusys
Tablet2k
NEOFLTR_600_13319
NETMDUSB
RTL8023xp
paamsrv
vzfw
aspi32
acnusvc
enodpl
wceusbsh
backupexecagentbrowser
ctusfsyn
LUsbKbd
sit_bus
U81xmdfl
rtl8029
usprserv
E1000
SE2Bobex
VNUSB
cics.region1
trufos
pwkntmon
FreshIO
ccsetmgr
MailService
cxusb
cimnotify
nscservice
AEADIFilters
SGIR
usnsvc
tsscoreservice
SMCB000
USA49W
prosync1
PhilCam8116_XP
icm10blk
SndTDriverV32
ntiopnp
lxcf_device
slave
CTEXFIFX.DLL
SDdriver
WmBEnum
websenserealtimeanalyzer
OEM02Afx
NCPro
FETNDIS
AIRPLUS
USB_RNDIS
VC6SecS
MaxtorFrontPanel1
kodakccs
TClass2k
CAMFLT
BLKWGU(Belkin)
omnidrv
Cam5607
vulfnths
netdetect
authsyssvc
bdpredir
gbpoll
PBADRV
alcxwdm
hpci
wandrv
vmusb
IntelC53
HpqKbFiltr
cm102u32
NWADI
remotelyanywhere
3compxe
KMW_USB
pdlncbas
avc
TPPWRIF
wmccds
nvenetfd
AEAudioService
aexnsclient
XBCD
dashsvc
CTEAPSFX.DLL
tpkd
ypcservice
Cinemsup
symredrv
Intels51
nabtsfec
servicemgr
entech
p17xfilt
us30sys
symmpi
dmusic
TermService
wuauserv
BITS
ShellHWDetection
LogonHours
PCAudit
helpsvc
uploadmgr
iphlpsvc
seclogon
AppInfo
msiscsi
MMCSS
winmgmt
SessionEnv
browser
EapHost
schedule
hkmsvc
wercplsupport
ProfSvc
Themes
BDESVC
AppMgmt
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
.
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.de/
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Free YouTube to Mp3 Converter - c:\users\Luisa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Luisa\AppData\Roaming\Mozilla\Firefox\Profiles\161hpcsf.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - Google
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=
FF - prefs.js: network.proxy.http -
FF - prefs.js: network.proxy.http_port -
FF - prefs.js: network.proxy.type -
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-{cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - (no file)
Toolbar-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
.
.
"ServiceDll"="%systemroot%\system32\W700mdfl.dll"
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\services\fah@c:+fah+fah-service+fah502-console.exe]
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{381FFDE8-2394-4F90-B10D-FC6124A40F8C}"=hex:51,66,7a,6c,4c,1d,38,12,86,fe,0c,
3c,a6,6d,fe,0a,ce,1b,bf,21,21,fa,4b,98
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:6c,28,b2,06,26,fe,cc,01
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet006\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\windows\starter4g.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-06-09 19:29:35 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-06-09 17:29
.
Vor Suchlauf: 10 Verzeichnis(se), 98.715.168.768 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 98.512.445.440 Bytes frei
.
- - End Of File - - 68A8A225A20F2C8F6502113EE3018B7B
--- --- --- |
