| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: 50€ AbzockeWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
20.12.2011, 19:00
| #5 |
 |  50€ Abzocke Zu 1. habe es deinstalliert Zu 2. habe es deinstalliert Zu 3. habe Java aktualisiert Zu 4. habe Adobe Reader aktualisiert Zu 5. habe das System gereinigt Zu 6. Code:
ATTFilter All processes killed
========== OTL ==========
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\META-INF folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\preferences folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\chrome folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\searchplugin folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\META-INF folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\lib folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\defaults folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\components folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\chrome folder moved successfully.
C:\Users\Nabil\AppData\Roaming\mozilla\Firefox\Profiles\maltu0vr.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f} folder moved successfully.
File C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll not found.
File C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll not found.
File C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll not found.
File C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll not found.
File C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll not found.
File C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Nabil
->Temp folder emptied: 960064 bytes
->Temporary Internet Files folder emptied: 2851218 bytes
->Java cache emptied: 87947947 bytes
->FireFox cache emptied: 78581335 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 470 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 162,00 mb
OTL by OldTimer - Version 3.2.31.0 log created on 12192011_210357
Files\Folders moved on Reboot...
C:\Users\Nabil\AppData\Local\Temp\ehmsas.txt moved successfully.
Registry entries deleted on Reboot...
Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 12/19/2011 at 10:56 PM
Application Version : 5.0.1142
Core Rules Database Version : 8067
Trace Rules Database Version: 5879
Scan type : Complete Scan
Total Scan Time : 01:38:03
Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 1 (Build 6.00.6001)
UAC On - Administrator
Memory items scanned : 737
Memory threats detected : 0
Registry items scanned : 38071
Registry threats detected : 0
File items scanned : 74256
File threats detected : 5
Trojan.Agent/Gen-Bancos
C:\PROGRAM FILES\CHEAT ENGINE561\DXHOOK.DLL
C:\PROGRAM FILES\CHEAT ENGINE561\PLUGINS\DEBUGEVENTLOG\DEBUGEVENTLOG.DLL
C:\PROGRAM FILES\CHEAT ENGINE561\PLUGINS\EXAMPLE-DELPHI\EXAMPLEPLUGIN.DLL
Adware.Tracking Cookie
.doubleclick.net [ C:\USERS\NABIL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MALTU0VR.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\NABIL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MALTU0VR.DEFAULT\COOKIES.SQLITE ]
Also Probleme seh ich keine. Auch das mit der 50€-Masche kommt nicht mehr. Jetzt hätte ich noch ne Frage zum Defender. Soll der jetzt die ganze Zeit deaktiviert bleiben? |
| Themen zu 50€ Abzocke |
| abzocke, erschein, erscheint, fenster, inter, interne, internet, minute, minuten, schwarzes, windowssystem |
Baum-Darstellung