Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
GVU entsperren

GVU entsperren


Log-Analyse und Auswertung: GVU entsperren

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 08.07.2013, 13:55   #1
Jan76
 
GVU entsperren - Standard

GVU entsperren


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-07-2013
Ran by SYSTEM on 08-07-2013 14:04:21
Running from F:\
Windows Vista (TM) Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 7
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] RtHDVCpl.exe [x]
HKLM\...\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-19] (Synaptics, Inc.)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [37232 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [620152 2006-10-22] (Adobe Systems Inc.)
HKLM\...\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe" [317280 2008-04-03] (Sony Corporation)
HKLM\...\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe [24576 2009-05-20] (Sony Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [PinnacleDriverCheck] C:\Windows\system32\PSDrvCheck.exe [406016 2003-09-19] ()
HKLM\...\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\PPE.EXE [49152 2004-02-03] (Pinnacle Systems GmbH)
HKLM\...\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min [281768 2011-01-03] (Avira GmbH)
HKLM\...\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [47392 2010-03-16] (Apple Inc.)
HKLM\...\Run: [Skytel] Skytel.exe [x]
HKLM\...\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup [13556256 2008-11-05] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit [92704 2008-11-05] (NVIDIA Corporation)
HKLM\...\Run: [Microsoft Default Manager] "C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume [288080 2009-07-17] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" [x]
HKLM\...\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-01-12] (Hewlett-Packard)
HKLM\...\Run: [] [x]
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-11-01] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [141600 2009-10-28] (Apple Inc.)
HKLM\...\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-05-23] (Samsung Electronics Co., Ltd.)
Winlogon\Notify\VESWinlogon: VESWinlogon.dll (Sony Corporation)
HKU\Default\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [x]
HKU\Default User\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [x]
HKU\Susanne\...\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe" [x]
HKU\Susanne\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [ 2008-01-21] (Microsoft Corporation)
HKU\Susanne\...\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background [x]
HKU\Susanne\...\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload [ 2013-05-23] (Samsung)
HKU\Susanne\...\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup [x]
HKU\Susanne\...\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [ 2013-05-23] (Samsung)
HKU\Susanne\...\Winlogon: [Shell] explorer.exe,C:\Users\Susanne\AppData\Roaming\skype.dat <==== ATTENTION
Startup: C:\ProgramData\Start Menu\Programs\Startup\Adobe Acrobat - Schnellstart.lnk
ShortcutTarget: Adobe Acrobat - Schnellstart.lnk -> C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
Startup: C:\ProgramData\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Susanne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> (No File)

========================== Services (Whitelisted) =================

S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360 2011-04-27] (Avira GmbH)
S2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480 2011-06-30] (Avira GmbH)
S2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [229376 2010-05-08] ()
S2 IB Updater; C:\Program Files\IB Updater\ExtensionUpdaterService.exe [188760 2013-01-29] ()
S2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1156400 2013-04-07] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
S2 NMSAccess; C:\Program Files\StudioLine Photo Basic\NMSAccess32.exe [71096 2010-05-06] ()
S2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
S3 SOHCImp; C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe [103712 2008-10-21] (Sony Corporation)
S3 SOHDms; C:\Program Files\Sony\VAIO Media plus\SOHDms.exe [353568 2008-10-21] (Sony Corporation)
S3 SOHDs; C:\Program Files\Sony\VAIO Media plus\SOHDs.exe [62752 2008-10-21] (Sony Corporation)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [77824 2008-05-20] (Sony Corporation)
S2 Stuffit Archive Name Service; C:\Program Files\Smith Micro\StuffIt 2009\ArcNameService.exe [199000 2008-12-19] (Smith Micro Software, Inc.)
S2 uCamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2008-09-08] (Sony Corporation)
S2 VCFw; C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [446464 2008-09-11] (Sony Corporation)
S2 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [369952 2008-10-01] (Sony Corporation)
S3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [279848 2008-09-08] (Sony Corporation)
S2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [192512 2008-09-08] (Sony Corporation)

==================== Drivers (Whitelisted) ====================

S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [17920 2008-04-24] (ArcSoft, Inc.)
S1 avgio; C:\Program Files\Avira\AntiVir Desktop\avgio.sys [11608 2009-02-13] (Avira GmbH)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [66616 2011-06-30] (Avira GmbH)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [138192 2011-06-30] (Avira GmbH)
S1 PCLEPCI; C:\Windows\system32\Drivers\PCLEPCI.SYS [14564 2003-08-18] (Pinnacle Systems GmbH)
S1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2009-05-11] (Avira GmbH)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-08 14:03 - 2013-07-08 14:03 - 00000000 ____D C:\FRST
2013-07-08 12:18 - 2013-07-08 12:51 - 00000004 ____A C:\Users\Susanne\AppData\Roaming\skype.ini
2013-07-05 20:43 - 2013-07-05 20:44 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-06-27 21:40 - 2013-06-27 21:40 - 00163536 ____A () C:\Users\Susanne\Downloads\Belphebe_downloader_by_SchriftartenFontsde.exe
2013-06-27 21:38 - 2013-06-27 21:38 - 00163392 ____A () C:\Users\Susanne\Downloads\Aljo_downloader_by_SchriftartenFontsde.exe
2013-06-22 23:04 - 2013-06-22 23:04 - 00170011 ____A C:\Users\Susanne\Desktop\Unbenannt 1.ai
2013-06-22 12:08 - 2013-06-22 12:08 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-06-22 12:08 - 2013-06-22 12:08 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-06-22 12:06 - 2013-06-22 12:08 - 00000652 ____A C:\Windows\setupact.log
2013-06-22 12:06 - 2013-06-22 12:06 - 00000000 ____A C:\Windows\setuperr.log
2013-06-22 11:08 - 2013-06-22 11:08 - 00001783 ____A C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-06-22 11:08 - 2013-06-22 11:08 - 00001773 ____A C:\Users\Public\Desktop\Samsung Kies.lnk
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Susanne\Documents\samsung
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Susanne\AppData\Roaming\Samsung
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Susanne\AppData\Local\Samsung
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-06-22 11:06 - 2013-05-02 05:23 - 00153672 ____A (MCCI Corporation) C:\Windows\System32\Drivers\ssadmdm.sys
2013-06-22 11:06 - 2013-05-02 05:23 - 00136904 ____A (MCCI Corporation) C:\Windows\System32\Drivers\ssadbus.sys
2013-06-22 11:06 - 2013-05-02 05:23 - 00017864 ____A (MCCI Corporation) C:\Windows\System32\Drivers\ssadmdfl.sys
2013-06-22 11:06 - 2013-05-02 05:23 - 00015560 ____A (MCCI Corporation) C:\Windows\System32\Drivers\ssadcmnt.sys
2013-06-22 11:06 - 2013-05-02 05:23 - 00015560 ____A (MCCI Corporation) C:\Windows\System32\Drivers\ssadcm.sys
2013-06-22 11:06 - 2013-05-02 05:23 - 00015304 ____A (MCCI Corporation) C:\Windows\System32\Drivers\ssadwhnt.sys
2013-06-22 11:06 - 2013-05-02 05:23 - 00015304 ____A (MCCI Corporation) C:\Windows\System32\Drivers\ssadwh.sys
2013-06-22 11:03 - 2013-06-22 11:03 - 00000000 ____D C:\Program Files\MyFree Codec
2013-06-22 11:02 - 2013-05-22 19:33 - 04659712 ____A (Dmitry Streblechenko) C:\Windows\System32\Redemption.dll
2013-06-22 11:01 - 2013-05-22 19:43 - 00821824 ____A (Devguru Co., Ltd.) C:\Windows\System32\dgderapi.dll
2013-06-22 11:01 - 2013-05-22 19:43 - 00020032 ____A (Devguru Co., Ltd) C:\Windows\System32\Drivers\dgderdrv.sys
2013-06-22 11:00 - 2013-06-22 11:04 - 00000000 ____D C:\ProgramData\Samsung
2013-06-22 10:42 - 2013-06-22 10:42 - 69438144 ____A (Samsung Electronics Co., Ltd. ) C:\Users\Susanne\Downloads\KiesSetup.exe
2013-06-22 09:47 - 2013-06-22 09:47 - 01049682 ____A C:\Users\Susanne\Downloads\fwd.zip
2013-06-12 19:10 - 2013-05-16 12:12 - 01176576 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-12 19:10 - 2013-05-16 12:12 - 00834048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 19:10 - 2013-05-16 12:12 - 00106496 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-12 19:10 - 2013-05-16 12:10 - 03624448 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-12 19:10 - 2013-05-16 12:10 - 00671232 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2013-06-12 19:10 - 2013-05-16 12:10 - 00498688 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 19:10 - 2013-05-16 12:10 - 00479744 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-12 19:10 - 2013-05-16 12:10 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-12 19:10 - 2013-05-16 12:09 - 06118400 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-12 19:10 - 2013-05-16 12:09 - 00380928 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-06-12 19:10 - 2013-05-16 12:09 - 00270336 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-12 19:10 - 2013-05-16 12:09 - 00193024 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-06-12 19:10 - 2013-05-16 12:09 - 00180736 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-12 19:10 - 2013-05-16 10:29 - 00389632 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-06-12 19:10 - 2013-05-16 10:03 - 01383424 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-12 19:10 - 2013-05-08 05:37 - 00905576 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 19:10 - 2013-05-02 05:04 - 00443904 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 19:10 - 2013-05-02 05:03 - 00037376 ____A (Microsoft Corporation) C:\Windows\System32\printcom.dll
2013-06-12 19:10 - 2013-04-24 05:00 - 00985600 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 19:10 - 2013-04-24 05:00 - 00133120 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 19:10 - 2013-04-24 05:00 - 00098304 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 19:10 - 2013-04-24 05:00 - 00041984 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 19:10 - 2013-04-24 02:46 - 00812544 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 19:09 - 2013-05-02 23:03 - 03603832 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2013-06-12 19:09 - 2013-05-02 23:03 - 03551096 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-06-12 19:09 - 2013-04-17 13:30 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll

==================== One Month Modified Files and Folders ========

2013-07-08 14:03 - 2013-07-08 14:03 - 00000000 ____D C:\FRST
2013-07-08 12:51 - 2013-07-08 12:18 - 00000004 ____A C:\Users\Susanne\AppData\Roaming\skype.ini
2013-07-08 12:46 - 2013-01-03 22:45 - 00000000 ___RD C:\Users\Susanne\Dropbox
2013-07-08 12:46 - 2013-01-03 22:24 - 00000000 ____D C:\Users\Susanne\AppData\Roaming\Dropbox
2013-07-08 12:45 - 2006-11-02 13:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-08 12:45 - 2006-11-02 13:47 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-08 12:44 - 2011-08-28 18:59 - 00001096 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-08 12:44 - 2008-11-18 16:56 - 00089545 ____A C:\ProgramData\nvModes.001
2013-07-08 12:43 - 2008-11-18 16:53 - 00089545 ____A C:\ProgramData\nvModes.dat
2013-07-08 12:43 - 2006-11-02 14:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-08 12:20 - 2012-05-08 13:48 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-08 12:19 - 2009-05-20 13:09 - 01514008 ____A C:\Windows\WindowsUpdate.log
2013-07-08 12:06 - 2008-01-21 08:16 - 01459222 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-05 21:07 - 2008-11-18 16:15 - 00003204 ____A C:\Windows\bthservsdp.dat
2013-07-05 21:07 - 2006-11-02 14:01 - 00032562 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-05 20:55 - 2012-06-07 22:00 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-05 20:44 - 2013-07-05 20:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-05 20:42 - 2011-08-28 18:59 - 00001100 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-27 22:33 - 2008-01-21 03:47 - 00500482 ____A C:\Windows\PFRO.log
2013-06-27 21:40 - 2013-06-27 21:40 - 00163536 ____A () C:\Users\Susanne\Downloads\Belphebe_downloader_by_SchriftartenFontsde.exe
2013-06-27 21:38 - 2013-06-27 21:38 - 00163392 ____A () C:\Users\Susanne\Downloads\Aljo_downloader_by_SchriftartenFontsde.exe
2013-06-22 23:04 - 2013-06-22 23:04 - 00170011 ____A C:\Users\Susanne\Desktop\Unbenannt 1.ai
2013-06-22 12:08 - 2013-06-22 12:08 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2013-06-22 12:08 - 2013-06-22 12:08 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-06-22 12:08 - 2013-06-22 12:06 - 00000652 ____A C:\Windows\setupact.log
2013-06-22 12:06 - 2013-06-22 12:06 - 00000000 ____A C:\Windows\setuperr.log
2013-06-22 11:10 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-06-22 11:08 - 2013-06-22 11:08 - 00001783 ____A C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-06-22 11:08 - 2013-06-22 11:08 - 00001773 ____A C:\Users\Public\Desktop\Samsung Kies.lnk
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Susanne\Documents\samsung
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Susanne\AppData\Roaming\Samsung
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Susanne\AppData\Local\Samsung
2013-06-22 11:08 - 2013-06-22 11:08 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-06-22 11:07 - 2009-06-20 15:27 - 00000000 ____D C:\users\Susanne
2013-06-22 11:05 - 2010-04-17 15:22 - 00000000 ____D C:\Program Files\Samsung
2013-06-22 11:04 - 2013-06-22 11:00 - 00000000 ____D C:\ProgramData\Samsung
2013-06-22 11:03 - 2013-06-22 11:03 - 00000000 ____D C:\Program Files\MyFree Codec
2013-06-22 11:01 - 2008-11-18 16:54 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-06-22 10:45 - 2010-11-20 12:05 - 00000000 ____D C:\Users\Susanne\AppData\Local\Downloaded Installations
2013-06-22 10:42 - 2013-06-22 10:42 - 69438144 ____A (Samsung Electronics Co., Ltd. ) C:\Users\Susanne\Downloads\KiesSetup.exe
2013-06-22 10:38 - 2013-01-03 22:45 - 00000925 ____A C:\Users\Susanne\Desktop\Dropbox.lnk
2013-06-22 10:09 - 2009-12-29 22:23 - 00000000 ____D C:\Users\Susanne\AppData\Local\smith micro
2013-06-22 09:57 - 2009-06-20 17:45 - 00000000 ____D C:\Users\Susanne\AppData\Roaming\Skype
2013-06-22 09:47 - 2013-06-22 09:47 - 01049682 ____A C:\Users\Susanne\Downloads\fwd.zip
2013-06-20 23:04 - 2013-01-20 22:12 - 00000000 ____D C:\Users\Susanne\Desktop\Mail
2013-06-20 22:59 - 2009-06-20 15:27 - 00000000 ____D C:\Users\Susanne\Documents\Bluetooth-Exchange-Ordner
2013-06-20 22:31 - 2013-05-28 22:57 - 00000000 ____D C:\Users\Susanne\Desktop\druck
2013-06-20 21:57 - 2013-05-28 22:17 - 00000000 ____D C:\Users\Susanne\Desktop\bilder zoe
2013-06-18 20:58 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-06-18 20:33 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\System32\de-DE
2013-06-18 20:05 - 2006-11-02 11:24 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2013-06-12 18:56 - 2012-06-07 22:00 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-12 18:56 - 2011-05-26 20:45 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl

Files to move or delete:
====================
C:\Users\Susanne\AppData\Roaming\skype.dat
C:\Users\Susanne\AppData\Roaming\skype.ini
C:\ProgramData\nvModes.dat

==================== Known DLLs (Whitelisted) ============


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2013-05-24 20:32:26
Restore point made on: 2013-05-28 20:07:27
Restore point made on: 2013-06-04 20:19:26
Restore point made on: 2013-06-09 21:50:59
Restore point made on: 2013-06-18 20:00:39
Restore point made on: 2013-06-22 09:24:05
Restore point made on: 2013-06-22 10:59:03
Restore point made on: 2013-06-25 20:59:27
Restore point made on: 2013-07-03 19:35:32

==================== Memory info ===========================

Percentage of memory in use: 11%
Total physical RAM: 4092.05 MB
Available physical RAM: 3631.59 MB
Total Pagefile: 3847.48 MB
Available Pagefile: 3696.11 MB
Total Virtual: 2047.88 MB
Available Virtual: 1963.01 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:287.07 GB) (Free:62.21 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Recovery) (Fixed) (Total:11.02 GB) (Free:0.83 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: () (Removable) (Total:1.95 GB) (Free:0.09 GB) FAT
Drive x: (Boot) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298 GB) (Disk ID: 82D0E485)
Partition 1: (Not Active) - (Size=11 GB) - (Type=27)
Partition 2: (Active) - (Size=287 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 2 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=2 GB) - (Type=06)


LastRegBack: 2013-07-08 12:28

==================== End Of Log ============================

 

Themen zu GVU entsperren
adobe, antivir, association, avg, avira, defender, desktop, dll, downloader, explorer, farbar, farbar recovery scan tool, flash player, frst.txt, home, installation, log, mozilla, nvidia, registry, rundll, samsung kies, scan, security, services.exe, software, svchost.exe, system, vista, winlogon.exe


« Aus Sicherheitsgründen wurde ihr Windowssystem blockiert. 50€-Zahlung | Regelmäßige Timeouts - Wireshark-Log »


Ähnliche Themen: GVU entsperren


  1. Offenen von Werbeseiten bei Entsperren von Nexus 5
    Plagegeister aller Art und deren Bekämpfung - 06.10.2014 (3)
  2. AKM Virus entfernen - Zahlung von 100,00 Euro zum entsperren
    Plagegeister aller Art und deren Bekämpfung - 13.01.2014 (21)
  3. Vielen Dank an Schrauber für das Entsperren meines PC
    Lob, Kritik und Wünsche - 07.07.2013 (1)
  4. GVU Trojaner, entsperren/entfernen mit Farbar-Programm
    Plagegeister aller Art und deren Bekämpfung - 01.07.2013 (21)
  5. Ihr Computer wurde gesterrt - Entsperren Sie mit Ukash
    Log-Analyse und Auswertung - 06.12.2012 (35)
  6. Bundespolizei - Ihr Computer wurde gesperrt - Entsperren Sie mit Ukash
    Plagegeister aller Art und deren Bekämpfung - 06.10.2012 (10)
  7. Bundespolizei Ihr Computer wurde gesterrt - Entsperren Sie mit Ukash
    Plagegeister aller Art und deren Bekämpfung - 01.10.2012 (36)
  8. Ihr Computer wurde gesterrt - Entsperren Sie mit Ukash
    Plagegeister aller Art und deren Bekämpfung - 06.09.2012 (17)
  9. Apple und Google entsperren Smartphones für Strafverfolger
    Nachrichten - 04.04.2012 (0)
  10. Bundespolizei Trojaner, 100 Euro zum entsperren
    Plagegeister aller Art und deren Bekämpfung - 31.03.2012 (5)
  11. Windows Gesperrt 50 Euro bezahlen zum Entsperren
    Log-Analyse und Auswertung - 10.03.2012 (1)
  12. BKA Virus, soll 100Euro bezahlen um Pc zu entsperren..
    Plagegeister aller Art und deren Bekämpfung - 23.02.2012 (1)
  13. Gesperrtes Windows, Zahle 50 € zum entsperren
    Log-Analyse und Auswertung - 07.02.2012 (4)
  14. Windows blockiert 50 Euro zum entsperren
    Log-Analyse und Auswertung - 06.02.2012 (3)
  15. [2x] Windows blockiert 50 Euro zum entsperren
    Mülltonne - 06.02.2012 (1)
  16. Windows blokiert zahle 50€ um es zu entsperren
    Log-Analyse und Auswertung - 03.01.2012 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema GVU entsperren - Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-07-2013 Ran by SYSTEM on 08-07-2013 14:04:21 Running from F:\ Windows Vista (TM) Home Premium Service Pack 1 (X86) OS - GVU entsperren...
Archiv
Du betrachtest: GVU entsperren auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131