Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Browser mocaflix Problem

Browser mocaflix Problem


Plagegeister aller Art und deren Bekämpfung: Browser mocaflix Problem

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 07.06.2013, 17:06   #1
smeenk
/// Malwareteam / Visitor
 
Browser mocaflix Problem - Standard

Browser mocaflix Problem


Versuch mal ob Zoek.exe im abgesicherten Modus starten will:
Windows richtig im abgesicherten Modus starten

Alt 08.06.2013, 15:30   #2
kryschtel
 
Browser mocaflix Problem - Standard

Browser mocaflix Problem


Zitat:
Zitat von smeenk Beitrag anzeigen
Versuch mal ob Zoek.exe im abgesicherten Modus starten will:
Windows richtig im abgesicherten Modus starten
Vielen Dank.
Hat sogar funktioniert über den abgesicherten Modus.

Hier der Log

Code:
ATTFilter
Zoek.exe Version 4.0.0.2 Updated 31-May-2013
Tool run by **** on 08.06.2013 at 16:11:27,85.
Microsoft® Windows Vista™ Home Premium  6.0.6002 Service Pack 2 x64
Running in: Safe Mode MINIMAL No Internet Access Detected

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3029538542-3273361527-2256941593-1000\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC8} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3029538542-3273361527-2256941593-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BrowserDefendert deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BrowserDefendert deleted successfully

==== Deleting Files \ Folders ======================

"C:\Users\****\Downloads\SoftonicDownloader_fuer_league-of-legends.exe" deleted
"C:\Users\Public\sdelevURL.tmp" deleted
"C:\Users\****\AppData\Local\qs.dll" deleted
"C:\Users\****\AppData\Local\qs64.dll" deleted
"C:\ProgramData\BrowserDefender" deleted
"C:\ProgramData\Babylon" deleted
"C:\Windows\SysWow64\AI_RecycleBin" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2013-06-06 18:22:54	D4F27E63A5F4B088F95646D0B3383A5D	489695611	----a-w-	C:\Windows\MEMORY.DMP
2013-06-05 07:12:47	5B56983A4125AC01D6C8AF401AD1FA61	499	----a-w-	C:\Windows\DeleteOnReboot.bat
====== C:\Users\****\AppData\Local\Temp ====
====== C:\Windows\SysWOW64 =====
2013-06-04 14:05:06	E7329CCB11C05D4600E4641BD0328E41	285184	----a-w-	C:\Windows\SysWOW64\MagUIEngine.dll
2013-06-04 14:05:06	DCE2A54207DC9F6228E26948513ECD12	92672	----a-w-	C:\Windows\SysWOW64\MagUIInter.dll
2013-06-04 14:05:06	A6549E3D8196829311BCA50DA7C2699B	490496	----a-w-	C:\Windows\SysWOW64\madFlac.ax
2013-06-04 14:05:06	98148D461E446D7CD1E70B916CA61B31	55808	----a-w-	C:\Windows\SysWOW64\MagPCMac.dll
2013-06-04 14:05:06	95110AC93E5EBDC5D9DC7694A4BCA953	536652	----a-w-	C:\Windows\SysWOW64\ASAudioHD.ax
2013-06-04 14:05:06	75D4D135424071A7EFFC767CCDA518C8	35328	----a-w-	C:\Windows\SysWOW64\MagCore.dll
2013-06-04 14:05:06	644AA3ADE7742079533DCDE2ABF153E2	917504	----a-w-	C:\Windows\SysWOW64\dtsdecoderdll.dll
2013-06-04 14:05:06	5C3739F97D09CAF8ABCC0A1F14C82A49	258048	----a-w-	C:\Windows\SysWOW64\libFLAC.dll
2013-06-04 14:05:06	16E030AA1AFA8E1BE20D269703674AAD	106496	----a-w-	C:\Windows\SysWOW64\checkactivate.dll
2013-06-04 14:05:05	F47300353C2AE5A34986008E03E0E2E4	439808	----a-w-	C:\Windows\SysWOW64\RealMediaSplitter.ax
2013-06-04 14:05:05	C82070D55D0B25E87185C874518D71DB	417792	----a-w-	C:\Windows\SysWOW64\FLVSplitter.ax
2013-06-04 14:05:05	7029A7634C8DFA8EE619E79B1B9A378F	70656	----a-w-	C:\Windows\SysWOW64\yv12vfw.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
2013-06-05 14:03:06	0BB97D43299910CBFBA59C461B99B910	25928	----a-w-	C:\Windows\Sysnative\drivers\mbam.sys
2013-05-15 13:40:57	F3932288EEECD776FF1F9F653AD878F3	901496	----a-w-	C:\Windows\Sysnative\drivers\dxgkrnl.sys
====== C:\Windows\Tasks ======
2013-06-05 07:13:33	A6542F65D2B0EB834B01914CCF83769E	3350	----a-w-	C:\Windows\Sysnative\Tasks\BrowserDefendert
2013-06-04 14:09:55	BF4EB96C4E11F6B8DF0F2E7FAD5B7B52	3314	----a-w-	C:\Windows\Sysnative\Tasks\EPUpdater
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\Program Files (x86) =====
======= C: =====
2013-06-05 16:27:13	F2448347298CDDA4B93AD7CE1E3C6E7D	1507	----a-w-	C:\AdwCleaner[S3].txt
2013-06-05 16:26:28	750658EA7AF3DAD3F8B073247FB3FF7E	1439	----a-w-	C:\AdwCleaner[R3].txt
2013-06-05 13:51:40	2BD8C522942E1FBE0A5C14B58FACCE50	1909	----a-w-	C:\AdwCleaner[S2].txt
2013-06-05 13:49:00	16806DE46A2BFF4E32CCEB52E5128084	1882	----a-w-	C:\AdwCleaner[R2].txt
2013-06-05 07:12:43	DC90B864B72441ED690F73F5E6A8174E	5904	----a-w-	C:\AdwCleaner[S1].txt
2013-06-05 07:11:42	B4E0D5CE220FD5D98DC7D27B922854FF	5999	----a-w-	C:\AdwCleaner[R1].txt
====== C:\Users\****\AppData\Roaming ======
2013-06-04 14:10:17	--------	d-----w-	C:\users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
2013-06-02 08:59:13	2F3A74C8194D25CA18D1107F8234817D	680	----a-w-	C:\users\****\AppData\Local\d3d9caps.dat
2013-05-24 19:21:18	5EBE7814853BB1260B298C30B5C95C6B	11390	----a-w-	C:\users\****\AppData\Local\dd_vcredistUI32B3.txt
2013-05-24 19:21:18	4109CD26325B0682DB362ABF60FE18A1	420828	----a-w-	C:\users\****\AppData\Local\dd_vcredistMSI32B3.txt
2013-05-23 17:12:04	--------	d-----w-	C:\users\****\AppData\Roaming\Screaming Bee
2013-05-18 17:59:27	--------	d-----w-	C:\users\****\AppData\Roaming\Awesomium
2013-05-18 17:56:40	--------	d-----w-	C:\users\****\AppData\Local\Aeria Games
2013-05-18 17:47:52	--------	d-----w-	C:\users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
2013-05-18 17:36:59	--------	d-----w-	C:\users\****\AppData\Roaming\Aeria Games & Entertainment
2013-05-13 14:24:07	--------	d-----w-	C:\users\****\AppData\Roaming\BoL
====== C:\Users\**** ======
2013-06-07 15:08:53	178A34E5554DCE485E1262DDF027960C	2237968	----a-w-	C:\Users\****\Desktop\tdsskiller.exe
2013-06-06 17:17:33	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\****\Downloads\OTL.exe
2013-06-06 17:16:40	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\****\defogger_reenable
2013-06-06 17:16:03	9146F21288AB749C4C729343F5F285A1	50477	----a-w-	C:\Users\****\Downloads\Defogger.exe
2013-06-05 19:40:16	B36B2E3CA24D80973C59BFBDA1C4800B	4378864	----a-w-	C:\Users\****\Downloads\ccsetup402.exe
2013-06-05 16:26:14	0A90C8A3F94564E7EAF541981EAFA52A	632031	----a-w-	C:\Users\****\Downloads\adwcleaner.exe
2013-06-05 14:02:16	683FDD3D773C58B262DC07CD0C6CE938	10285040	----a-w-	C:\Users\****\Downloads\mbam-setup-1.75.0.1300.exe
2013-06-05 13:40:43	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defender Pro Quick Scanner
2013-06-05 13:39:40	12855F36C976B5EBD06FAA6D4BC994B0	7633040	----a-w-	C:\Users\****\Downloads\dp_ultimate.exe
2013-06-05 07:11:35	0A90C8A3F94564E7EAF541981EAFA52A	632031	----a-w-	C:\Users\****\Downloads\adwcleaner_2.3.0.1.exe
2013-06-04 14:07:05	30193EACB70C18974A80AB600FAE9519	23995416	----a-w-	C:\Users\****\Downloads\FreeAVIVideoConverter.exe
2013-05-31 02:11:08	EB5D7B007B6022EE555C0DD9FD71263E	22201982	----a-w-	C:\Users\****\Downloads\LeagueOfLegendsBaseEUW.exe
2013-05-31 02:10:43	9EB4B4ACC7751748D0259A07EF0FFD1A	3496296	----a-w-	C:\Users\****\Downloads\LeagueofLegends (1).exe
2013-05-31 01:56:23	A86B844E50C726D034FFC782486D87AB	3461416	----a-w-	C:\Users\****\Downloads\LeagueofLegends.exe
2013-05-29 04:23:04	2CD120F390018F334F3729FCC986E908	1582608	----a-w-	C:\Users\****\Downloads\LOLReplay-0.8.2.1.exe
2013-05-23 17:10:18	--------	d-----w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Bee
2013-05-18 17:56:12	--------	d-----w-	C:\ProgramData\Aeria Games

====== C: exe-files ==
2013-06-07 15:08:53	178A34E5554DCE485E1262DDF027960C	2237968	----a-w-	C:\Users\****\Desktop\tdsskiller.exe
2013-06-06 17:17:33	4ADCFEE16EE9978F06157634669D36FB	602112	----a-w-	C:\Users\****\Downloads\OTL.exe
2013-06-06 17:16:03	9146F21288AB749C4C729343F5F285A1	50477	----a-w-	C:\Users\****\Downloads\Defogger.exe
2013-06-06 12:05:09	1EA998DE136184740B292FB9DCDD49AC	746848	----a-w-	C:\Users\****\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\27.0.1453.110\27.0.1453.110_27.0.1453.94_chrome_updater.exe
2013-06-05 19:40:16	B36B2E3CA24D80973C59BFBDA1C4800B	4378864	----a-w-	C:\Users\****\Downloads\ccsetup402.exe
2013-06-05 16:26:14	0A90C8A3F94564E7EAF541981EAFA52A	632031	----a-w-	C:\Users\****\Downloads\adwcleaner.exe
2013-06-05 14:02:16	683FDD3D773C58B262DC07CD0C6CE938	10285040	----a-w-	C:\Users\****\Downloads\mbam-setup-1.75.0.1300.exe
2013-06-05 13:39:40	12855F36C976B5EBD06FAA6D4BC994B0	7633040	----a-w-	C:\Users\****\Downloads\dp_ultimate.exe
2013-06-05 07:11:35	0A90C8A3F94564E7EAF541981EAFA52A	632031	----a-w-	C:\Users\****\Downloads\adwcleaner_2.3.0.1.exe
2013-06-04 14:07:05	30193EACB70C18974A80AB600FAE9519	23995416	----a-w-	C:\Users\****\Downloads\FreeAVIVideoConverter.exe
2013-06-02 08:59:09	9CFDA928481B9D7D40A38F8E52FC2D69	24126312	----a-w-	C:\Users\****\Documents\LOLReplay\data\3.7.0.328\League Of Legends.exe
=== C: other files ==
2013-06-07 11:32:21	0CE162B71D2398B46F4E8CC4DDD64CBB	870680	----a-w-	C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\8zu5s3ea.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
2013-06-05 19:44:02	959FB591C9702648D3AB9265201DE83F	118	----a-w-	C:\Users\****\AppData\Local\Temp\kll.bat
2013-06-05 19:42:42	D41D8CD98F00B204E9800998ECF8427E	0	----a-w-	C:\Users\****\AppData\Local\Temp\{2CB20AC3-CEA1-401F-86E8-844AEC5347B8}.bat
2013-06-05 14:03:06	0BB97D43299910CBFBA59C461B99B910	25928	----a-w-	C:\Windows\System32\drivers\mbam.sys
2013-06-05 07:12:47	5B56983A4125AC01D6C8AF401AD1FA61	499	----a-w-	C:\Windows\DeleteOnReboot.bat

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Picasa Media Detector"="C:\Program Files (x86)\Picasa2\PicasaMediaDetector.exe"
"fsc-reg"="c:\fsc-reg\fscreg.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-3029538542-3273361527-2256941593-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Akamai NetSession Interface"="C:\Users\****\AppData\Local\Akamai\netsession_win.exe"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Picasa Media Detector"="C:\Program Files (x86)\Picasa2\PicasaMediaDetector.exe"
"fsc-reg"="c:\fsc-reg\fscreg.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"
"Akamai NetSession Interface"="C:\Users\****\AppData\Local\Akamai\netsession_win.exe"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"=""
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Samsung\\Kies\\External\\FirmwareUpdate\\KiesPDLR.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Aeria Ignite]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Aeria Ignite"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Aeria Games\\Ignite\\aeriaignite.exe\" silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AutoStartNPSAgent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AutoStartNPSAgent"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Samsung\\Samsung New PC Studio\\NPSAgent.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DS3 Tool]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DS3 Tool"
"hkey"="HKCU"
"command"="C:\\Users\\****\\Downloads\\DS3_Tool.exe -mini"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EnergySettings]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="EnergySettings"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Fujitsu Siemens Computers\\Energy Settings\\EnergySettings.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EPSON SX110 Series]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="EPSON SX110 Series"
"hkey"="HKCU"
"command"="C:\\Windows\\system32\\spool\\DRIVERS\\x64\\3\\E_IATIFBE.EXE /FU \"C:\\Windows\\TEMP\\E_S2664.tmp\" /EF \"HKCU\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EPSON SX110 Series (Kopie 1)]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="EPSON SX110 Series (Kopie 1)"
"hkey"="HKCU"
"command"="C:\\Windows\\system32\\spool\\DRIVERS\\x64\\3\\E_IATIFBE.EXE /FU \"C:\\Windows\\TEMP\\E_S46B0.tmp\" /EF \"HKCU\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google EULA Launcher]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Google EULA Launcher"
"hkey"="HKLM"
"command"="c:\\Program Files\\Google\\Google EULA\\GoogleEULALauncher.exe IE PA"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Google Update"
"hkey"="HKCU"
"command"="\"C:\\Users\\****\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\icq]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="icq"
"hkey"="HKCU"
"command"="C:\\Users\\****\\AppData\\Roaming\\ICQM\\icq.exe -CU"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Pando Media Booster]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Pando Media Booster"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Pando Networks\\Media Booster\\PMB.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickScanner]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickScanner"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Defender Pro Quick Scanner\\quickscan.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify"
"hkey"="HKCU"
"command"="\"C:\\Users\\****\\AppData\\Roaming\\Spotify\\Spotify.exe\" /uri spotify:autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spotify Web Helper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Spotify Web Helper"
"hkey"="HKCU"
"command"="\"C:\\Users\\****\\AppData\\Roaming\\Spotify\\Data\\SpotifyWebHelper.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Steam"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Steam\\steam.exe\" -silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UIExec]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UIExec"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\1&1 Surf-Stick\\UIExec.exe\""


==== Startup Folders ======================

2013-05-29 04:23:20	1838	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [15.05.2013 16:57]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3029538542-3273361527-2256941593-1000Core.job --a------ C:\Users\****\AppData\Local\Google\Update\GoogleUpdate.exe [03.02.2013 17:44]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3029538542-3273361527-2256941593-1000UA.job --a------ C:\Users\****\AppData\Local\Google\Update\GoogleUpdate.exe [03.02.2013 17:44]

==== Firefox Extensions ======================

ProfilePath: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\8zu5s3ea.default
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\8zu5s3ea.default
3D928B3FE97C403A33F803B3D1A260C9	- C:\Users\****\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll -	Google Update
7ABE33792F2787D599B6963E71B9E8CD	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll -	Shockwave Flash
ADC539F67D3198679F480974EE203678	- C:\Windows\SysWOW64\npDeployJava1.dll -	Java Deployment Toolkit 7.0.210.11
CF25FDD7CA6BC88442A58F74DBB6CFA6	- C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll -	Shockwave for Director / Shockwave for Director
AB87EEFFD18F2BAAFC274E7075EA6C67	- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll -	Windows Presentation Foundation / Windows Presentation Foundation
DFCAB29E8FD38F95650CC1E203E8D318	- C:\Windows\SysWOW64\npmproxy.dll -	Microsoft® Windows® Operating System


==== Chrome Look ======================

YouTube - **** - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
AdBlock - **** - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
ProxMate - Improve your Internet - **** - Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{483830EE-A4CD-4b71-B0A3-3D82E62A6909} Unknown  Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3029538542-3273361527-2256941593-1000\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\****\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\users\****\AppData\Local\Mozilla\Firefox\Profiles\8zu5s3ea.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\users\****\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\****\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\****\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on 08.06.2013 at 16:21:35,02 ======================
Was ich zum momentanen Zeitpunkt sagen kann:
Die Mocaflix Seiten werden beim Start des Browser nicht mehr geöffnet/gestartet und die BrowserDefender.exe Meldung kommt auch nicht mehr : )
__________________
Antwort

Themen zu Browser mocaflix Problem
adblock, adware.agent, akamai, backdoor.hupigon, browserdefendert, cyberghost, entfernen, flash player, hacktool.injector, homepage, internet browser, league of legends, malware.packer.as, msvcrt, nicht möglich, openvpn, phishing, pricepeep, programm, realtek, registrierungsdatenbank, software, teamspeak


« keine Symbole mehr auf dem Bildschirm | Polizeivirus Österreich »


Ähnliche Themen: Browser mocaflix Problem


  1. Problem mit Browser und PC
    Plagegeister aller Art und deren Bekämpfung - 13.09.2015 (8)
  2. Malware / Browser Problem
    Plagegeister aller Art und deren Bekämpfung - 30.04.2015 (24)
  3. Habe Problem mit jeden Browser
    Plagegeister aller Art und deren Bekämpfung - 02.11.2014 (5)
  4. Problem mit Browser
    Alles rund um Windows - 31.01.2014 (5)
  5. mocaflix.com entfernen
    Anleitungen, FAQs & Links - 24.10.2013 (2)
  6. langsames Internet, LyricsPal, Websearch.Mocaflix
    Plagegeister aller Art und deren Bekämpfung - 25.07.2013 (19)
  7. Chrome|Firefox lädt keine Seiten (websearch.mocaflix.com)
    Log-Analyse und Auswertung - 11.04.2013 (9)
  8. SweetIM & Websearch.mocaflix ...
    Plagegeister aller Art und deren Bekämpfung - 20.01.2013 (9)
  9. Browser Problem (IE, Opera, Firefox)
    Log-Analyse und Auswertung - 08.03.2012 (6)
  10. p95.com I-net Browser problem
    Log-Analyse und Auswertung - 20.01.2012 (26)
  11. Problem mit Browser
    Plagegeister aller Art und deren Bekämpfung - 17.04.2009 (1)
  12. Internet Browser Problem.
    Log-Analyse und Auswertung - 25.12.2008 (6)
  13. problem mit firefox browser
    Mülltonne - 24.12.2008 (0)
  14. Problem mit Browser / HJT Log-File checken
    Mülltonne - 01.07.2008 (2)
  15. HiJackThis / Browser Problem
    Plagegeister aller Art und deren Bekämpfung - 28.06.2008 (5)
  16. Problem mit Browser
    Log-Analyse und Auswertung - 05.03.2008 (0)
  17. Problem: Browser Hijacking
    Log-Analyse und Auswertung - 18.08.2004 (23)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Browser mocaflix Problem - Versuch mal ob Zoek.exe im abgesicherten Modus starten will: Windows richtig im abgesicherten Modus starten - Browser mocaflix Problem...
Archiv
Du betrachtest: Browser mocaflix Problem auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19