ComboFix 12-09-20.02 - User 20.09.2012  23:35:45.1.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.49.1031.18.1982.1120 [GMT 2:00]
ausgeführt von:: c:\users\User\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Windows
c:\programdata\windows\dsdd.dat
c:\programdata\Windows\nudr.dat
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_usnjsvc
.
.
(((((((((((((((((((((((   Dateien erstellt von 2012-08-20 bis 2012-09-20  ))))))))))))))))))))))))))))))
.
.
2012-09-20 17:51 . 2012-09-20 19:48	--------	d---a-w-	C:\Kaspersky Rescue Disk 10.0
2012-09-19 19:58 . 2012-09-19 19:58	--------	d-----w-	c:\program files\ESET
2012-09-19 19:34 . 2012-09-19 19:34	--------	d-----w-	c:\program files\GreenVantage LLC
2012-09-19 18:20 . 2012-09-19 18:20	--------	d-----w-	c:\program files\CCleaner
2012-09-19 17:51 . 2012-09-19 17:51	--------	d---a-w-	C:\.Trash-999
2012-09-19 17:14 . 2012-08-27 23:50	7022536	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{CF7BF0AA-8340-423F-ABAC-8990C9A7D811}\mpengine.dll
2012-09-19 17:10 . 2012-09-20 18:43	--------	d-----w-	c:\users\User\AppData\Roaming\QuickScan
2012-09-19 04:58 . 2012-03-01 14:46	219648	----a-w-	c:\windows\system32\d3d10_1core.dll
2012-09-19 04:58 . 2012-02-29 14:08	1172480	----a-w-	c:\windows\system32\d3d10warp.dll
2012-09-19 04:58 . 2012-02-29 13:41	1069056	----a-w-	c:\windows\system32\DWrite.dll
2012-09-19 04:58 . 2012-03-01 14:46	160768	----a-w-	c:\windows\system32\d3d10_1.dll
2012-09-19 04:58 . 2012-02-29 13:44	683008	----a-w-	c:\windows\system32\d2d1.dll
2012-09-18 16:06 . 2009-07-14 17:45	38480	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2012-09-18 16:06 . 2009-07-14 17:45	445008	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2012-09-18 15:59 . 2012-09-18 15:59	--------	d-----w-	c:\program files\Windows Portable Devices
2012-09-18 13:40 . 2009-09-25 02:04	321024	----a-w-	c:\windows\system32\PhotoMetadataHandler.dll
2012-09-18 13:40 . 2009-09-25 01:33	195584	----a-w-	c:\windows\system32\dxdiagn.dll
2012-09-18 13:40 . 2009-09-25 01:32	252928	----a-w-	c:\windows\system32\dxdiag.exe
2012-09-18 13:40 . 2009-09-25 01:31	519680	----a-w-	c:\windows\system32\d3d11.dll
2012-09-18 13:39 . 2009-10-01 01:02	31232	----a-w-	c:\windows\system32\BthMtpContextHandler.dll
2012-09-18 13:39 . 2009-10-01 01:01	60928	----a-w-	c:\windows\system32\PortableDeviceConnectApi.dll
2012-09-18 13:39 . 2009-10-01 01:01	160256	----a-w-	c:\windows\system32\PortableDeviceTypes.dll
2012-09-18 13:39 . 2009-10-01 01:02	334848	----a-w-	c:\windows\system32\PortableDeviceApi.dll
2012-09-18 13:39 . 2009-10-01 01:01	196608	----a-w-	c:\windows\system32\PortableDeviceWMDRM.dll
2012-09-18 13:39 . 2009-10-01 01:01	100864	----a-w-	c:\windows\system32\PortableDeviceClassExtension.dll
2012-09-18 13:39 . 2009-10-01 01:01	227840	----a-w-	c:\windows\system32\drivers\UMDF\WpdFs.dll
2012-09-18 13:34 . 2012-02-29 15:09	157696	----a-w-	c:\windows\system32\imagehlp.dll
2012-09-18 13:34 . 2012-02-29 13:32	12800	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2012-09-18 13:27 . 2012-09-18 13:27	--------	d-----w-	c:\users\Default\AppData\Roaming\hpqLog
2012-09-18 13:26 . 2009-04-29 05:46	15872	----a-w-	c:\windows\system32\drivers\HpqKbFiltr.sys
2012-09-18 13:26 . 2006-11-02 04:09	1419232	----a-w-	c:\windows\system32\drivers\wdfcoinstaller01005.dll
2012-09-18 13:26 . 2012-09-18 13:26	--------	d-----w-	c:\windows\QLB
2012-09-18 13:18 . 2011-02-22 13:33	797696	----a-w-	c:\windows\system32\FntCache.dll
2012-09-18 13:18 . 2011-01-20 16:08	189952	----a-w-	c:\windows\system32\d3d10core.dll
2012-09-18 13:18 . 2011-01-20 16:08	1029120	----a-w-	c:\windows\system32\d3d10.dll
2012-09-18 13:18 . 2011-01-20 14:11	486400	----a-w-	c:\windows\system32\d3d10level9.dll
2012-09-18 13:18 . 2011-01-20 14:25	847360	----a-w-	c:\windows\system32\OpcServices.dll
2012-09-18 13:18 . 2012-06-05 16:47	708608	----a-w-	c:\program files\Common Files\System\ado\msado15.dll
2012-09-18 13:16 . 2011-10-25 15:58	1314816	----a-w-	c:\windows\system32\quartz.dll
2012-09-18 13:03 . 2012-06-04 15:26	440704	----a-w-	c:\windows\system32\drivers\ksecdd.sys
2012-09-18 13:03 . 2012-06-02 00:04	278528	----a-w-	c:\windows\system32\schannel.dll
2012-09-18 13:03 . 2012-06-02 00:03	204288	----a-w-	c:\windows\system32\ncrypt.dll
2012-09-18 13:03 . 2011-11-16 16:23	72704	----a-w-	c:\windows\system32\secur32.dll
2012-09-18 13:03 . 2011-11-16 16:21	1259008	----a-w-	c:\windows\system32\lsasrv.dll
2012-09-18 13:03 . 2011-11-16 14:12	9728	----a-w-	c:\windows\system32\lsass.exe
2012-09-18 13:00 . 2010-05-04 19:13	231424	----a-w-	c:\windows\system32\msshsq.dll
2012-09-18 06:44 . 2012-09-18 06:45	--------	d-----w-	c:\users\User\AppData\Roaming\Roxio
2012-09-18 04:13 . 2009-10-09 21:56	41472	----a-w-	c:\windows\system32\pwrshplugin.dll
2012-09-18 04:12 . 2010-10-12 15:53	33280	----a-w-	c:\program files\Windows Mail\wabfind.dll
2012-09-18 04:12 . 2010-10-12 13:41	66048	----a-w-	c:\program files\Windows Mail\wabmig.exe
2012-09-18 04:12 . 2010-10-12 13:41	515584	----a-w-	c:\program files\Windows Mail\wab.exe
2012-09-18 04:12 . 2010-08-26 16:37	157184	----a-w-	c:\windows\system32\t2embed.dll
2012-09-18 04:12 . 2011-03-02 15:44	86528	----a-w-	c:\windows\system32\dnsrslvr.dll
2012-09-18 04:12 . 2009-05-04 09:59	25088	----a-w-	c:\windows\system32\dnscacheugc.exe
2012-09-18 04:12 . 2011-02-18 14:03	305152	----a-w-	c:\windows\system32\drivers\srv.sys
2012-09-18 04:10 . 2011-02-22 13:23	69632	----a-w-	c:\windows\system32\drivers\bowser.sys
2012-09-18 04:10 . 2010-06-28 17:00	1316864	----a-w-	c:\windows\system32\ole32.dll
2012-09-18 04:10 . 2010-06-28 14:54	339968	----a-w-	c:\program files\Windows NT\Accessories\wordpad.exe
2012-09-18 04:10 . 2010-01-29 15:40	1616384	----a-w-	c:\program files\Windows Mail\msoe.dll
2012-09-18 04:10 . 2011-04-29 13:25	146432	----a-w-	c:\windows\system32\drivers\srv2.sys
2012-09-18 04:10 . 2011-04-29 13:25	102400	----a-w-	c:\windows\system32\drivers\srvnet.sys
2012-09-18 04:10 . 2010-05-27 20:08	81920	----a-w-	c:\windows\system32\iccvid.dll
2012-09-18 04:10 . 2010-12-29 18:28	322560	----a-w-	c:\windows\system32\sbe.dll
2012-09-18 04:10 . 2010-12-29 18:28	153088	----a-w-	c:\windows\system32\sbeio.dll
2012-09-18 04:10 . 2010-12-29 18:26	177664	----a-w-	c:\windows\system32\mpg2splt.ax
2012-09-18 04:10 . 2010-08-17 14:11	128000	----a-w-	c:\windows\system32\spoolsv.exe
2012-09-18 04:04 . 2010-08-31 15:46	954752	----a-w-	c:\windows\system32\mfc40.dll
2012-09-18 04:04 . 2010-08-31 15:46	954288	----a-w-	c:\windows\system32\mfc40u.dll
2012-09-18 04:04 . 2010-08-26 16:34	1696256	----a-w-	c:\windows\system32\gameux.dll
2012-09-18 04:04 . 2011-03-03 15:40	28672	----a-w-	c:\windows\system32\Apphlpdm.dll
2012-09-18 04:04 . 2011-03-03 13:35	4240384	----a-w-	c:\windows\system32\GameUXLegacyGDFs.dll
2012-09-18 04:04 . 2010-11-04 18:55	352768	----a-w-	c:\windows\system32\taskschd.dll
2012-09-18 04:04 . 2010-11-04 18:55	601600	----a-w-	c:\windows\system32\schedsvc.dll
2012-09-18 04:04 . 2010-11-04 18:55	270336	----a-w-	c:\windows\system32\taskcomp.dll
2012-09-18 04:04 . 2010-11-04 16:34	171520	----a-w-	c:\windows\system32\taskeng.exe
2012-09-18 04:04 . 2010-06-17 18:08	10926592	----a-w-	c:\program files\Movie Maker\MOVIEMK.dll
2012-09-18 04:04 . 2010-06-17 16:16	150016	----a-w-	c:\program files\Movie Maker\MOVIEMK.exe
2012-09-18 04:03 . 2010-04-05 17:01	67072	----a-w-	c:\windows\system32\asycfilt.dll
2012-09-18 04:03 . 2010-04-05 17:02	317952	----a-w-	c:\windows\system32\MP4SDECD.DLL
2012-09-18 04:03 . 2010-06-18 17:31	36864	----a-w-	c:\windows\system32\rtutils.dll
2012-09-18 04:03 . 2011-05-02 17:16	739328	----a-w-	c:\windows\system32\inetcomm.dll
2012-09-18 04:02 . 2011-05-02 17:19	766464	----a-w-	c:\program files\Common Files\Microsoft Shared\vgx\VGX.dll
2012-09-18 04:01 . 2010-10-18 13:37	81920	----a-w-	c:\windows\system32\consent.exe
2012-09-18 03:59 . 2010-12-17 15:45	2067968	----a-w-	c:\windows\system32\mstscax.dll
2012-09-18 03:59 . 2010-12-17 13:54	677888	----a-w-	c:\windows\system32\mstsc.exe
2012-09-18 02:11 . 2012-09-18 02:12	--------	d-----w-	c:\windows\system32\ca-ES
2012-09-18 02:11 . 2012-09-18 02:12	--------	d-----w-	c:\windows\system32\eu-ES
2012-09-18 02:06 . 2012-09-18 02:06	--------	d-----w-	c:\windows\system32\SPReview
2012-09-18 01:48 . 2009-04-10 21:28	928768	----a-w-	c:\windows\system32\scavenge.dll
2012-09-18 01:48 . 2009-04-10 21:27	57856	----a-w-	c:\windows\system32\compcln.exe
2012-09-18 01:48 . 2009-04-10 21:28	324608	----a-w-	c:\windows\system32\sdohlp.dll
2012-09-18 01:48 . 2009-04-10 21:28	87552	----a-w-	c:\windows\system32\SearchFilterHost.exe
2012-09-18 01:48 . 2009-04-10 21:28	441344	----a-w-	c:\windows\system32\SearchIndexer.exe
2012-09-18 01:48 . 2009-04-10 21:28	185344	----a-w-	c:\windows\system32\SearchProtocolHost.exe
2012-09-18 01:48 . 2009-04-10 19:19	89088	----a-w-	c:\windows\system32\drivers\sdbus.sys
2012-09-18 01:46 . 2009-04-10 21:28	950784	----a-w-	c:\windows\system32\gpedit.dll
2012-09-18 01:45 . 2009-04-10 21:28	2012160	----a-w-	c:\windows\system32\milcore.dll
2012-09-18 01:35 . 2011-04-21 14:57	78336	----a-w-	c:\windows\system32\ieencode.dll
2012-09-18 01:35 . 2010-12-14 14:49	1169408	----a-w-	c:\windows\system32\sdclt.exe
2012-09-18 01:30 . 2012-09-18 01:30	--------	d-----w-	c:\windows\system32\EventProviders
2012-09-18 01:19 . 2009-11-08 08:55	99176	----a-w-	c:\windows\system32\PresentationHostProxy.dll
2012-09-18 01:19 . 2009-11-08 08:55	49472	----a-w-	c:\windows\system32\netfxperf.dll
2012-09-18 01:19 . 2009-11-08 08:55	297808	----a-w-	c:\windows\system32\mscoree.dll
2012-09-18 01:19 . 2009-11-08 08:55	295264	----a-w-	c:\windows\system32\PresentationHost.exe
2012-09-18 01:19 . 2009-11-08 08:55	1130824	----a-w-	c:\windows\system32\dfshim.dll
2012-09-18 01:15 . 2010-08-31 15:44	531968	----a-w-	c:\windows\system32\comctl32.dll
2012-09-17 23:48 . 2012-09-17 23:48	--------	d-----w-	C:\PerfLogs
2012-09-17 23:01 . 2008-01-18 21:33	193024	----a-w-	c:\windows\system32\recdisc.exe
2012-09-17 23:01 . 2008-01-18 21:36	6656	----a-w-	c:\windows\system32\sdspres.dll
2012-09-17 23:00 . 2008-01-18 21:36	28160	----a-w-	c:\windows\system32\sxproxy.dll
2012-09-17 22:58 . 2008-01-18 21:36	81408	----a-w-	c:\program files\Windows Mail\oeimport.dll
2012-09-17 22:57 . 2008-01-18 21:36	43520	----a-w-	c:\windows\system32\rshx32.dll
2012-09-17 22:56 . 2008-01-18 21:34	36352	----a-w-	c:\windows\system32\imgutil.dll
2012-09-17 22:55 . 2008-01-18 21:42	52792	----a-w-	c:\windows\system32\drivers\volmgr.sys
2012-09-17 22:55 . 2008-01-18 21:36	135168	----a-w-	c:\windows\system32\wbem\viewprov.dll
2012-09-17 22:55 . 2008-01-18 21:36	453120	----a-w-	c:\program files\Movie Maker\VideoMediaHandler.dll
2012-09-17 22:55 . 2008-01-18 19:53	73216	----a-w-	c:\windows\system32\drivers\usbccgp.sys
2012-09-17 22:55 . 2008-01-18 19:52	110080	----a-w-	c:\windows\system32\drivers\videoprt.sys
2012-09-17 22:55 . 2008-01-18 19:52	25088	----a-w-	c:\windows\system32\drivers\vga.sys
2012-09-17 22:55 . 2008-01-18 21:36	160768	----a-w-	c:\windows\system32\wbem\vdswmi.dll
2012-09-17 22:55 . 2008-01-18 20:01	23552	----a-w-	c:\windows\system32\drivers\tssecsrv.sys
2012-09-17 22:55 . 2008-01-18 19:53	34816	----a-w-	c:\windows\system32\drivers\umbus.sys
2012-09-17 22:55 . 2008-01-18 19:53	7680	----a-w-	c:\windows\system32\drivers\umpass.sys
2012-09-17 22:41 . 2012-09-18 00:19	--------	d-----w-	C:\AV-Scanner Logs
2012-09-17 21:56 . 2012-09-17 21:56	--------	d-----w-	c:\users\User\DoctorWeb
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-17 23:33 . 2006-11-02 10:32	101888	----a-w-	c:\windows\system32\ifxcardm.dll
2012-09-17 23:33 . 2006-11-02 10:32	82432	----a-w-	c:\windows\system32\axaltocm.dll
2012-07-04 14:02 . 2012-09-18 13:27	2047488	----a-w-	c:\windows\system32\win32k.sys
2012-06-27 15:59 . 2012-09-18 13:16	834048	----a-w-	c:\windows\system32\wininet.dll
2012-09-06 01:26 . 2012-09-17 18:33	266720	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-10 1233920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-10-14 2299176]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2007-04-24 176128]
"NapsterShell"="c:\program files\Napster\napster.exe" [2007-01-13 323216]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-03-12 50696]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776]
"WAWifiMessage"="c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2007-01-11 317128]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 1603152]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-07-18 348664]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-11-24 323640]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-06-24 13601312]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-06-24 92704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableLockWorkstation"= 1 (0x1)
"DisableChangePassword"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ctfmon.lnk]
path=c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.lnk
backup=c:\windows\pss\ctfmon.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^iope0.9842755603149494.exe.lnk]
path=c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iope0.9842755603149494.exe.lnk
backup=c:\windows\pss\iope0.9842755603149494.exe.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^scandisk.lnk]
path=c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\scandisk.lnk
backup=c:\windows\pss\scandisk.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	FontCache
.
Inhalt des "geplante Tasks" Ordners
.
2012-09-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-30 20:34]
.
2012-09-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-08-30 20:34]
.
2012-02-22 c:\windows\Tasks\HPCeeScheduleForUser.job
- c:\program files\Hewlett-Packard\SDP\Ceement\HPCEE.exe [2008-01-08 22:23]
.
2012-09-19 c:\windows\Tasks\User_Feed_Synchronization-{4844AD3D-1224-4231-8659-B6C9679B6702}.job
- c:\windows\system32\msfeedssync.exe [2012-09-17 21:33]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=DE_DE&c=73&bd=Pavilion&pf=laptop
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\qq7rz2ti.default\
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - about:blank
FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=BT3&o=14979&locale=de_DE&apn_uid=19095B03-C8C3-4455-99F2-AFBEDF8650EE&apn_ptnrs=J7&apn_sauid=D9845B73-97D7-4AFD-B78C-9AF6301C003D&apn_dtid=&q=
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - (no file)
MSConfigStartUp-4E3E0230AEBB4E96 - c:\recycle.bin\Recycle.Bin.exe
MSConfigStartUp-ctfmon - c:\progra~2\etuasoqwerim.dat
MSConfigStartUp-NvCplDaemonTool - c:\users\User\ukload4F.dll
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-09-20 23:50
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
Scanne versteckte Dateien... 
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\rundll32.exe
c:\program files\Avira\AntiVir Desktop\sched.exe
c:\program files\Avira\AntiVir Desktop\avmailc.exe
c:\program files\Avira\AntiVir Desktop\AVWEBGRD.EXE
c:\program files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
c:\windows\system32\ezNTSvc.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\progra~1\mcafee\SITEAD~1\mcsacore.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\HP\QuickPlay\Kernel\TV\CLSched.exe
c:\windows\system32\conime.exe
c:\windows\System32\rundll32.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
c:\program files\Hewlett-Packard\Shared\hpqToaster.exe
c:\program files\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-09-20  23:56:36 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2012-09-20 21:56
.
Vor Suchlauf: 10 Verzeichnis(se), 102.732.292.096 Bytes frei
Nach Suchlauf: 16 Verzeichnis(se), 102.500.802.560 Bytes frei
.
- - End Of File - - 53D85BB5F517D0C1D3C857B463E4F884