| |
| |||||||
Log-Analyse und Auswertung: GVU 2.07 auf Windows 7 64 BitWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
07.08.2012, 13:26
| #16 |
| /// Helfer-Team  |  GVU 2.07 auf Windows 7 64 Bit Im letzten? Ja, dein System ist weder sauber noch abgesichert. Die Deinstallationsroutinen gibt es am Schluss. |
|
07.08.2012, 18:38
| #17 |
 | GVU 2.07 auf Windows 7 64 Bit Es hat alles so geklappt wie Du es beschrieben hast, hier die
__________________Logfiles: Code:
ATTFilter 2012-08-07 17:00:56 . 2012-08-07 17:00:56 80 ----a-w- C:\Qoobox\Quarantine\Registry_backups\HKLM-Run-SynTPEnh.reg.dat
2012-08-07 16:53:11 . 2012-08-07 16:53:11 153 ----a-w- C:\Qoobox\Quarantine\Registry_backups\Wow6432Node-HKCU-Run-KiesHelper.reg.dat
2012-08-07 16:43:32 . 2012-08-07 16:43:32 1,545,016 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\78bc80c8\00cf9436_af32cd01\DefaultTheme.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 33,592 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\26735453\00809d4f_af32cd01\Skype.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 114,488 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\84fa94a6\00727648_af32cd01\LenovoSolutionCenter.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 113,976 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\251c0004\00809d4f_af32cd01\Wikipedia.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 14,136 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\4a766f0b\00e07729_af32cd01\DisplayBrightnessApi.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 88,888 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\69593782\005ef94f_24c0cc01\KeyboardLightApi.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 40,760 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\739e91f5\00480133_af32cd01\ScreenRotate.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 63,288 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\76000c66\00263b4d_af32cd01\MessageCenterPlus.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 8,704 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\77c866c9\00e169d7_ea00cd01\SugarSync.SimpleTapAddons.FileManager.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 88,888 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\7900ff59\00b08a3c_af32cd01\SimpleTapAppStoreAddon.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 27,448 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\8f423f74\00b34628_af32cd01\CoreAudioApi.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 253,752 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\a56956f7\00ebe244_af32cd01\LenovoMusic.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 18,232 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\bf29edbf\003ada2b_af32cd01\WirelessApi.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 69,944 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\e2fb8c95\0083593b_af32cd01\PriceGrabber.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 318,264 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\ed27e201\00ccd84a_af32cd01\LenovoTV.dll.vir
2012-08-07 16:43:32 . 2012-08-07 16:43:32 82,744 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\f870cc59\00536c4e_af32cd01\MSOffice.dll.vir
2012-08-07 16:14:03 . 2012-08-07 16:14:03 11,882 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2012-08-07 16:09:02 . 2012-08-07 16:09:02 51 ----a-w- C:\Qoobox\Quarantine\catchme.log
2012-08-02 07:20:40 . 2012-08-02 07:20:40 115,137 ----a-w- C:\Qoobox\Quarantine\C\Users\*****\AppData\Local\Temp\26b4a1dd-e07b-48af-be4e-9642b273284b\CliSecureRT.dll.vir
2012-02-09 07:21:51 . 2012-08-06 11:43:21 72 ----a-w- C:\Qoobox\Quarantine\C\ProgramData\SYS\zyyusb.ini.vir
2011-12-20 20:24:44 . 2010-06-30 09:29:28 7,680 ----a-w- C:\Qoobox\Quarantine\C\root\wpfdot.exe.vir
Code:
ATTFilter ComboFix 12-08-07.02 - ***** 07.08.2012 18:10:13.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.3979.1980 [GMT 2:00]
ausgeführt von:: c:\users\*****\Desktop\ComboFix.exe
AV: McAfee VirusScan Enterprise *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: McAfee VirusScan Enterprise Antispyware Module *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Roaming
c:\programdata\sys
c:\programdata\sys\zyyusb.ini
C:\root
c:\root\wpfdot.exe
c:\users\*****\4.0
c:\users\*****\AppData\Local\Temp\26b4a1dd-e07b-48af-be4e-9642b273284b\CliSecureRT.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\251c0004\00809d4f_af32cd01\Wikipedia.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\26735453\00809d4f_af32cd01\Skype.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\4a766f0b\00e07729_af32cd01\DisplayBrightnessApi.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\69593782\005ef94f_24c0cc01\KeyboardLightApi.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\739e91f5\00480133_af32cd01\ScreenRotate.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\76000c66\00263b4d_af32cd01\MessageCenterPlus.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\77c866c9\00e169d7_ea00cd01\SugarSync.SimpleTapAddons.FileManager.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\78bc80c8\00cf9436_af32cd01\DefaultTheme.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\7900ff59\00b08a3c_af32cd01\SimpleTapAppStoreAddon.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\84fa94a6\00727648_af32cd01\LenovoSolutionCenter.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\8f423f74\00b34628_af32cd01\CoreAudioApi.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\a56956f7\00ebe244_af32cd01\LenovoMusic.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\bf29edbf\003ada2b_af32cd01\WirelessApi.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\e2fb8c95\0083593b_af32cd01\PriceGrabber.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\ed27e201\00ccd84a_af32cd01\LenovoTV.dll
c:\users\*****\AppData\Local\Temp\SimpleTap\assembly\dl3\f870cc59\00536c4e_af32cd01\MSOffice.dll
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-07-07 bis 2012-08-07 ))))))))))))))))))))))))))))))
.
.
2012-08-07 16:33 . 2012-08-07 16:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-07 14:22 . 2012-08-07 14:22 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2012-08-07 05:52 . 2012-06-29 10:04 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C70DAD88-0CAD-4217-91A6-33FC146FDE0D}\mpengine.dll
2012-08-06 06:28 . 2012-08-06 06:26 476976 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-08-06 06:26 . 2012-08-06 06:26 -------- d-----w- c:\program files (x86)\Java
2012-08-04 12:30 . 2012-08-04 12:30 -------- d-----w- c:\program files (x86)\ESET
2012-08-03 09:06 . 2012-08-03 09:06 -------- d-----w- C:\DRIVERS
2012-08-03 06:18 . 2012-08-03 06:18 -------- d-----w- c:\programdata\ftw
2012-08-03 06:18 . 2012-08-03 06:18 -------- d-----w- C:\archive_db
2012-08-03 06:18 . 2012-08-03 06:18 -------- d-----w- c:\programdata\backup
2012-08-03 06:11 . 2012-08-03 06:11 -------- d-----w- c:\programdata\explauncher
2012-08-03 06:11 . 2012-08-03 06:11 -------- d-----w- c:\programdata\launcher
2012-08-02 17:51 . 2012-08-03 13:02 -------- d-----w- c:\program files (x86)\Emsisoft Anti-Malware
2012-08-02 10:55 . 2012-08-02 10:55 -------- d-----w- c:\users\*****\AppData\Roaming\Ulead Systems
2012-08-02 10:40 . 2012-08-02 10:40 -------- d-----w- c:\program files (x86)\Paragon Software
2012-08-02 07:12 . 2012-08-02 07:12 -------- d-----w- C:\_OTL
2012-08-01 14:49 . 2012-03-20 03:01 2871808 ----a-w- c:\windows\explorer.exe
2012-08-01 13:28 . 2012-08-01 13:28 -------- d-----w- c:\programdata\Kaspersky Lab
2012-08-01 13:15 . 2012-08-01 13:15 -------- d-----w- c:\users\*****\AppData\Roaming\Malwarebytes
2012-08-01 13:15 . 2012-08-01 13:15 -------- d-----w- c:\programdata\Malwarebytes
2012-08-01 13:15 . 2012-07-03 11:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-01 13:15 . 2012-08-01 13:15 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-08-01 12:39 . 2012-08-01 12:39 -------- d-----w- c:\users\Gast
2012-07-31 10:27 . 2012-08-03 08:49 -------- d-----w- c:\users\*****\AppData\Local\Windows Live
2012-07-29 17:36 . 2012-07-29 17:36 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-29 17:36 . 2012-07-29 17:36 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-07-27 08:16 . 2012-07-27 08:16 -------- d-----w- c:\users\*****\AppData\Roaming\NVIDIA
2012-07-27 06:53 . 2012-08-07 10:59 -------- d-----w- c:\users\UpdatusUser
2012-07-27 06:34 . 2012-01-17 12:46 31040 ----a-w- c:\windows\system32\nvhdap64.dll
2012-07-27 06:34 . 2012-01-17 12:45 188224 ----a-w- c:\windows\system32\drivers\nvhda64v.sys
2012-07-27 06:34 . 2012-01-17 12:45 1451840 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2012-07-26 14:30 . 2012-07-26 14:28 189424 ----a-w- c:\windows\system32\javaw.exe
2012-07-26 14:30 . 2012-07-26 14:28 188912 ----a-w- c:\windows\system32\java.exe
2012-07-26 14:28 . 2012-07-26 14:28 -------- d-----w- c:\program files\Java
2012-07-23 10:48 . 2012-02-03 01:07 99520 ----a-w- c:\windows\system32\NicInstC.dll
2012-07-23 10:48 . 2012-03-15 18:57 514736 ----a-w- c:\windows\system32\drivers\e1c62x64.sys
2012-07-23 10:48 . 2012-02-17 00:52 72360 ----a-w- c:\windows\system32\e1cmsg.dll
2012-07-23 10:45 . 2012-07-23 10:45 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2012-07-23 07:35 . 2012-07-23 07:35 -------- d-----w- c:\program files\Common Files\SPBA
2012-07-23 07:18 . 2012-04-08 22:18 429328 ----a-w- c:\windows\system32\drivers\SynTP.sys
2012-07-23 07:18 . 2012-04-08 22:18 113936 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2012-07-23 07:18 . 2012-04-08 22:18 249104 ----a-w- c:\windows\SysWow64\SynCtrl.dll
2012-07-23 07:18 . 2012-04-08 22:18 307984 ----a-w- c:\windows\system32\SynCtrl.dll
2012-07-23 07:18 . 2011-09-14 16:11 1048576 ----a-w- c:\windows\system32\syndata.bin
2012-07-23 07:13 . 2012-05-30 11:42 569152 ----a-w- c:\windows\system32\drivers\iaStor.sys
2012-07-21 14:04 . 2012-01-14 04:41 68864 ----a-w- c:\windows\system32\drivers\stream.sys
2012-07-21 13:44 . 2012-07-27 06:26 -------- d-----w- C:\NVIDIA
2012-07-21 13:43 . 2011-07-08 06:21 1452648 ----a-w- c:\windows\system32\nvhdagenco6420102.dll
2012-07-21 13:43 . 2012-05-31 20:18 7745896 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-07-21 13:43 . 2012-03-05 04:09 328000 ----a-w- c:\windows\SysWow64\nvoptimusmft.dll
2012-07-21 13:43 . 2012-03-05 04:09 368448 ----a-w- c:\windows\system32\nvoptimusmft.dll
2012-07-21 13:42 . 2012-03-05 04:09 1683264 ----a-w- c:\windows\system32\nvdispco6420155.dll
2012-07-21 13:42 . 2012-03-05 04:09 1454400 ----a-w- c:\windows\system32\nvgenco6420103.dll
2012-07-21 13:42 . 2012-05-31 20:18 15039848 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-07-21 13:42 . 2012-05-31 20:18 68968 ----a-w- c:\windows\system32\OpenCL.dll
2012-07-21 13:42 . 2012-05-31 20:18 61288 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-07-21 13:36 . 2012-07-21 13:36 53248 ----a-r- c:\users\*****\AppData\Roaming\Microsoft\Installer\{0369F866-2CE0-4EB9-B426-88FA122C6E82}\ARPPRODUCTICON.exe
2012-07-21 13:35 . 2012-07-21 13:35 53248 ----a-r- c:\users\*****\AppData\Roaming\Microsoft\Installer\{6E6E7725-C7BC-4C39-8B3F-14B67331A120}\ARPPRODUCTICON.exe
2012-07-21 13:29 . 2012-07-21 13:29 -------- d-----w- c:\users\Public\Lenovo
2012-07-20 11:36 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-07-16 09:00 . 2012-06-12 03:08 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-07-16 08:47 . 2012-06-02 08:25 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-07-15 16:14 . 2012-06-06 06:06 2004480 ----a-w- c:\windows\system32\msxml6.dll
2012-07-15 16:13 . 2012-06-06 06:05 1499136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2012-07-15 16:13 . 2012-06-06 05:05 1019904 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2012-07-15 16:13 . 2012-06-06 06:05 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2012-07-15 16:13 . 2012-06-06 06:05 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2012-07-15 16:13 . 2012-06-06 06:05 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2012-07-15 16:13 . 2012-06-06 05:03 805376 ----a-w- c:\windows\SysWow64\cdosys.dll
2012-07-15 16:13 . 2012-06-06 05:05 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2012-07-15 16:13 . 2012-06-06 06:05 61440 ----a-w- c:\program files\Common Files\System\ado\msador15.dll
2012-07-15 16:13 . 2012-06-06 05:05 57344 ----a-w- c:\program files (x86)\Common Files\System\ado\msador15.dll
2012-07-15 16:13 . 2012-06-06 05:05 143360 ----a-w- c:\program files (x86)\Common Files\System\ado\msjro.dll
2012-07-15 16:13 . 2012-06-06 05:05 212992 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2012-07-15 16:13 . 2012-06-06 06:02 1133568 ----a-w- c:\windows\system32\cdosys.dll
2012-07-15 16:13 . 2012-06-06 05:05 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-06 06:26 . 2012-03-29 20:40 472880 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-07-16 08:50 . 2012-02-15 07:43 59701280 ----a-w- c:\windows\system32\MRT.exe
2012-06-21 13:30 . 2012-06-21 13:30 122368 ----a-w- c:\windows\system32\TpShEvUI.exe
2012-06-21 13:29 . 2012-06-21 13:29 260608 ----a-w- c:\windows\system32\TpShCPL.cpl
2012-06-21 13:29 . 2012-06-21 13:29 478208 ----a-w- c:\windows\system32\TpShCPL.dll
2012-06-21 13:29 . 2012-06-21 13:29 222720 ----a-w- c:\windows\system32\TpShocks.exe
2012-06-19 06:33 . 2012-06-19 06:37 118520 ------w- c:\windows\SysWow64\pxinsi64.exe
2012-06-19 06:33 . 2012-06-19 06:37 116472 ------w- c:\windows\SysWow64\pxcpyi64.exe
2012-06-19 06:33 . 2012-06-19 06:37 129784 ------w- c:\windows\SysWow64\pxafs.dll
2012-06-07 15:35 . 2012-06-07 15:35 10744 ----a-w- c:\windows\SysWow64\vpncategories.dll
2012-06-07 15:35 . 2012-06-07 15:35 33272 ----a-w- c:\windows\SysWow64\vpnevents.dll
2012-06-07 15:25 . 2012-06-07 15:25 27048 ----a-w- c:\windows\system32\drivers\vpnva64.sys
2012-06-07 15:24 . 2011-01-11 12:53 107432 ----a-r- c:\windows\system32\drivers\acsock64.sys
2012-06-02 22:19 . 2012-06-21 06:09 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-21 06:09 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-21 06:09 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-21 06:09 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-21 06:09 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-21 06:09 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-21 06:09 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-21 06:09 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:15 . 2012-06-21 06:09 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-05-31 20:18 . 2011-12-20 20:32 9752936 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-05-31 20:18 . 2011-12-20 20:32 963944 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-05-31 20:18 . 2011-12-20 20:32 813928 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2012-05-31 20:18 . 2011-12-20 20:32 2688360 ----a-w- c:\windows\system32\nvapi64.dll
2012-05-31 20:18 . 2011-12-20 20:32 260968 ----a-w- c:\windows\system32\nvinitx.dll
2012-05-31 20:18 . 2011-12-20 20:32 2327400 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-05-31 20:18 . 2011-12-20 20:32 215400 ----a-w- c:\windows\SysWow64\nvinit.dll
2012-05-31 18:31 . 2011-05-25 18:58 3106152 ----a-w- c:\windows\system32\nvsvc64.dll
2012-05-31 18:30 . 2011-05-25 18:58 6105960 ----a-w- c:\windows\system32\nvcpl.dll
2012-05-31 18:30 . 2011-05-25 18:58 2641323 ----a-w- c:\windows\system32\nvcoproc.bin
2012-05-31 18:30 . 2011-05-25 18:59 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-05-31 18:30 . 2011-05-25 18:59 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-05-31 18:30 . 2011-05-25 18:59 55656 ----a-w- c:\windows\system32\nv3dappshextr.dll
2012-05-31 18:30 . 2011-05-25 18:59 2561896 ----a-w- c:\windows\system32\nvsvcr.dll
2012-05-31 18:30 . 2011-05-25 18:59 890216 ----a-w- c:\windows\system32\nvvsvc.exe
2012-05-31 18:30 . 2011-05-25 18:59 851816 ----a-w- c:\windows\system32\nv3dappshext.dll
2012-05-31 18:30 . 2011-05-25 18:59 427880 ----a-w- c:\windows\SysWow64\oemdspif.dll
2012-05-31 10:27 . 2012-05-31 10:27 418152 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-05-31 10:25 . 2010-11-21 03:27 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-05-29 07:38 . 2011-12-23 19:58 330240 ----a-w- c:\windows\MASetupCaller.dll
2012-05-22 13:47 . 2012-06-06 18:37 405176 ----a-w- c:\windows\SysWow64\Newtonsoft.Json.Net20.dll
2012-05-17 05:24 . 2010-12-23 11:47 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2012-05-17 05:24 . 2010-12-23 11:47 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2012-05-16 04:32 . 2011-12-20 20:34 2693728 ------w- c:\windows\PWMBTHLV.EXE
2012-05-16 04:32 . 2011-12-20 20:34 29512 ----a-w- c:\windows\system32\drivers\DZHDD64.SYS
2012-05-16 04:32 . 2011-12-20 20:34 2806880 ----a-w- c:\windows\system32\PWMCP64V.cpl
2012-05-16 04:32 . 2011-12-20 20:34 19784 ----a-w- c:\windows\system32\drivers\TPPWR64V.SYS
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LTT"="c:\program files\PC-Doctor\EnableToolbarW32.exe" [2011-06-27 23120]
"KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-06-08 21432]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2008-10-30 55808]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2011-01-17 112152]
"Lenovo Registration"="c:\program files (x86)\Lenovo Registration\LenovoReg.exe" [2011-07-13 4351712]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"McAfeeUpdaterUI"="c:\program files (x86)\McAfee\Common Framework\udaterui.exe" [2009-09-25 136512]
"AutoProfileRepair"="c:\program files (x86)\Oracle\Outlook Connector\profilerepair.exe" [2010-10-05 73728]
"ShStatEXE"="c:\program files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" [2011-01-12 215360]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-06-08 3521464]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2012-05-17 296056]
"Cisco AnyConnect Secure Mobility Agent for Windows"="c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" [2012-06-07 522744]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2012-05-16 5941344]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\ThinkPad\Bluetooth Software\BTTray.exe [2011-10-17 1213216]
Digital Line Detect.lnk - c:\program files (x86)\Digital Line Detect\DLG.exe [2011-12-20 50688]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HyperW7Svc;HyperW7 Service;c:\program files\Lenovo\RapidBoot\HyperW7Svc64.exe [2011-07-08 144232]
R3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys [2012-06-07 107432]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2011-12-08 36328]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [2011-10-17 437288]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2011-10-17 39976]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-02-24 99384]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 DozeSvc;Lenovo Doze Mode Service;c:\program files (x86)\ThinkPad\Utilities\DZSVC64.EXE [2012-05-16 320576]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [2012-04-19 35256]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-04-20 100904]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-01-17 188224]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-05-16 1662560]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-05-16 1665120]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-12-08 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-12-08 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-12-08 177640]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2011-12-08 146920]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-02-24 203320]
R3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudobex.sys [2012-02-24 203320]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [2012-03-11 1255736]
R3 WSDPrintDevice;WSD-Druckunterstützung durch UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040]
R3 WSDScan;WSD-Scanunterstützung durch UMB;c:\windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]
R4 MSSQLServerADHelper100;SQL Server Hilfsdienst für Active Directory;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-21 61976]
R4 RsFx0105;RsFx0105 Driver;c:\windows\system32\DRIVERS\RsFx0105.sys [2011-09-22 311144]
R4 SQLAgent$SQLEXPRESS;SQL Server-Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2011-09-22 431464]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 DzHDD64;DzHDD64;c:\windows\System32\DRIVERS\DzHDD64.sys [2012-05-16 29512]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-04-20 283744]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-05-31 29032]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys [2011-12-28 25416]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiifx64.sys [2010-09-07 15472]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys [2012-05-31 249192]
S1 PHCORE;PHCORE;c:\program files\Lenovo\RapidBoot\PHCORE64.SYS [2011-07-08 32104]
S1 Uim_VIM;UIM Virtual Image Plugin;c:\windows\system32\Drivers\uim_vimx64.sys [2011-11-17 352816]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe [2010-12-16 198784]
S2 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files (x86)\Firebird\Firebird_2_5\bin\fb_inet_server.exe [2011-10-03 3756032]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [2012-03-12 190120]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-23 212944]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [2011-05-31 41320]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-05-31 59240]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-04-20 158832]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-31 2458984]
S2 ocautoupds;Oracle Connector-Dienst für automatische Updates;c:\program files (x86)\Oracle\Outlook Connector\ocautoupds.exe [2010-10-05 75152]
S2 risdxc;risdxc;c:\windows\system32\DRIVERS\risdxc64.sys [2011-05-25 101888]
S2 SAService;Conexant SmartAudio service;c:\windows\system32\SAsrv.exe [x]
S2 smihlp2;SMI Helper Driver (smihlp2);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [2011-05-30 13128]
S2 SROSVC;Screen Reading Optimizer Service Program;c:\program files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [2012-03-05 446800]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-31 382312]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
S2 TPHKSVC;Anzeige am Bildschirm;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2011-07-12 142696]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S2 vpnagent;Cisco AnyConnect Secure Mobility Agent;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [2012-06-07 478712]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [2012-02-26 2669840]
S3 5U877;USB Video Device;c:\windows\system32\DRIVERS\5U877.sys [2011-03-04 166016]
S3 CAXHWAZL;CAXHWAZL;c:\windows\system32\DRIVERS\CAXHWAZL.sys [2009-06-30 292864]
S3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C;c:\windows\system32\DRIVERS\e1c62x64.sys [2012-03-15 514736]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [2012-04-19 25528]
S3 LenovoRd;LenovoRd;c:\windows\system32\Drivers\LenovoRd.sys [2009-05-11 118016]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 NETwNs64;___ Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 7 64-Bit;c:\windows\system32\DRIVERS\Netwsw00.sys [2012-02-20 11471872]
S3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\DRIVERS\Tvti2c.sys [2011-05-30 40248]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [2012-04-19 42392]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - mfeavfk01
.
Inhalt des "geplante Tasks" Ordners
.
2012-08-07 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-06-27 15:06]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TpShocks"="TpShocks.exe" [2012-06-21 222720]
"ForteConfig"="c:\program files\Conexant\ForteConfig\fmapp.exe" [2010-10-26 49056]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2011-03-14 316032]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2011-05-31 40808]
"ALCKRESI.EXE"="c:\program files\Lenovo\AutoLock\ALCKRESI.EXE" [2011-05-25 281960]
"AcWin7Hlpr"="c:\program files (x86)\Lenovo\Access Connections\AcTBenabler.exe" [2011-10-20 33344]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-13 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-13 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-10-13 416024]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2012-05-31 1694016]
"combofix"="c:\combofix\CF7389.3XE" [2010-11-21 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.****.de/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Free YouTube Download - c:\users\*****\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\users\*****\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie.htm
FF - ProfilePath - c:\users\*****\AppData\Roaming\Mozilla\Firefox\Profiles\81muj1q5.default\
FF - prefs.js: browser.startup.homepage - hxxp://****.de/
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-KiesHelper - c:\program files (x86)\Samsung\Kies\KiesHelper.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
c:\program files (x86)\McAfee\Common Framework\FrameworkService.exe
c:\program files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\program files (x86)\McAfee\VirusScan Enterprise\mfeann.exe
c:\program files (x86)\McAfee\Common Framework\naPrdMgr.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\windows\SysWOW64\SAsrv.exe
c:\program files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\program files (x86)\Lenovo\Access Connections\AcSvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Lenovo\System Update\SUService.exe
c:\program files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe
c:\progra~1\Lenovo\Zoom\TPSCREX.EXE
c:\progra~1\Lenovo\HOTKEY\TPONSCR.EXE
c:\program files (x86)\Lenovo\Access Connections\AcDeskBandHlpr.exe
c:\program files\Lenovo\SimpleTap\SimpleTap.exe
c:\program files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe
c:\program files\lenovo\lenovo solution center\lsc.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-08-07 19:02:34 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-08-07 17:02
.
Vor Suchlauf: 22 Verzeichnis(se), 392.735.789.056 Bytes frei
Nach Suchlauf: 27 Verzeichnis(se), 392.524.312.576 Bytes frei
.
- - End Of File - - 707DBA1E291C948638E8A33233084800
|
|
07.08.2012, 18:42
| #18 |
| /// Helfer-Team | GVU 2.07 auf Windows 7 64 Bit Java aktualisieren
__________________Dein Java ist nicht mehr aktuell. Älter Versionen enthalten Sicherheitslücken, die von Malware missbraucht werden können.
Dann so einstellen: http://www.trojaner-board.de/105213-...tellungen.html
__________________ |
|
08.08.2012, 07:57
| #19 |
| | GVU 2.07 auf Windows 7 64 Bit Ok, Java ist nun auch aktuell und alte Versionen sind deinstalliert. Bio Ich habe noch das folgende Problem: McAfee VirusScan Enterprise + AntiSpyware Enterprise 8.8 zeigt sehr oft "bestehendes Problem" an. Wenn ich die Konsole öffne, dann ist der On-Access Scanner disabled. Ich starte dann wieder manuell. Hast Du da eine Idee. |
|
08.08.2012, 14:37
| #20 |
| /// Helfer-Team | GVU 2.07 auf Windows 7 64 Bit Deinstallieren und durch Microsoft Security Essentials - Kostenloser Virenschutz für Windows ersetzen. Sehr gut!  damit bist Du sauber und entlassen!  Combofix deinstallieren Bitte vor der folgenden Aktion wieder temporär Antivirus-Programm, evtl. vorhandenes Skript-Blocking (Norton) und Anti-Malware Programme deaktivieren. Start => Ausführen => dort reinschreiben ComboFix /Uninstall => Enter drücken Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert, damit auch daraus die Schädlinge verschwinden. Es wird ein neuer Systemwiederherstellungspunkt erstellt. Gleichzeitig setzt Combofix die Zeiteinstellungen wieder auf die Ursprungseinstellungen, und setzt die Systemeinstellungen wieder so zurück, dass Dateierweiterungen und Systemdateien versteckt sind, was Du bei Bedarf im Explorer unter Extras => Ordneroptionen aber wieder ändern bzw. Deinen persönlichen Vorlieben entsprechend anpassen kannst. adwCleaner entfernen
Tool-Bereinigung mit OTL Wir werden nun die CleanUp!-Funktion von OTL nutzen, um die meisten Programme, die wir zur Bereinigung installiert haben, wieder von Deinem System zu löschen.
Zurücksetzen der Sicherheitszonen Lasse die Sicherheitszonen wieder zurücksetzen, da diese manipuliert wurden um den Browser für weitere Angriffe zu öffnen. Gehe dabei so vor: http://www.trojaner-board.de/111805-...ecksetzen.html Aufräumen mit CCleaner Lasse mit CCleaner (Download) (Anleitung) Fehler in der
Lektuere zum abarbeiten: http://www.trojaner-board.de/90880-d...tallation.html http://www.trojaner-board.de/105213-...tellungen.html PluginCheck http://www.trojaner-board.de/96344-a...-rechners.html Secunia Online Software Inspector http://www.trojaner-board.de/71715-k...iendungen.html http://www.trojaner-board.de/83238-a...sschalten.html PC wird immer langsamer - was tun? |
|
08.08.2012, 15:15
| #21 |
| | GVU 2.07 auf Windows 7 64 Bit Vielen herzlichen Dank für Deine tagelangen Bemühungen t'john, eine abschließende Frage bitte noch. Ich habe jetzt einfach blind nach Deiner Anleitung alles durchgearbeitet. Ich möchte aber gerne auch das ganze verstehen und Logfiles auswerten können. Es ist mir klar, dass da jede Menge Erfahrung dahintersteckt. Kannst Du mir bitte Quellen nennen, bei denen man die dazugehörigen Informationen in diesem Bereich erarbeiten kann. Oder was würdest Du einem Einsteiger empfehlen, der sich in diesen Bereich einarbeiten möchte. Vielen Dank und Gruß Bio |
|
08.08.2012, 15:27
| #22 |
| /// Helfer-Team | GVU 2.07 auf Windows 7 64 Bit Schau mal hier: http://www.trojaner-board.de/88896-a...ner-board.html Aber zurzeit ist Annahmestopp. |
|
| Themen zu GVU 2.07 auf Windows 7 64 Bit |
| 2.0.7, 7-zip, avira, bho, converter, entfernen, error, excel, fehler, festplatte, flash player, google, install.exe, kaspersky, lenovo, monitor.exe, mozilla, mp3, nvidia update, nvpciflt.sys, plug-in, popup, problem, programm, pwmtr64v.dll, registry, saving, scan, security, software, svchost.exe, system, trojaner, usb, visual studio, windows, windows 7 64 bit |
Linear-Darstellung
