Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme

Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme


Log-Analyse und Auswertung: Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 24.08.2013, 10:52   #3
thomas0788
 
Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme - Standard

Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme


Hi.
Danke für die schnelle Antwort.


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-08-2013 01
Ran by SYSTEM on 24-08-2013 11:45:23
Running from H:\
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7968800 2009-07-10] (Realtek Semiconductor)
HKLM\...\Run: [TPHOTKEY] - C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe [68976 2009-03-13] (Lenovo Group Limited)
HKLM\...\Run: [LENOVO.TPFNF6R] - C:\Program Files\Lenovo\HOTKEY\TPFNF6R.exe [62752 2009-08-19] (Lenovo Group Limited)
HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-06] (Intel Corporation)
HKLM\...\Run: [TpShocks] - C:\Windows\system32\TpShocks.exe [380704 2009-07-08] (Lenovo.)
HKLM\...\Run: [AcWin7Hlpr] - C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [x]
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1888552 2009-11-24] (Synaptics Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2010-06-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [976832 2010-06-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-05-25] (Nullsoft, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunesHelper.exe [421160 2010-12-13] (Apple Inc.)
HKLM-x32\...\Run: [PDFPrint] - C:\Program Files (x86)\PDF24\pdf24.exe [160840 2012-02-09] (Geek Software GmbH)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [345144 2013-08-08] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1558480 2013-07-26] (APN)
HKU\Default\...\RunOnce: [wlstart] - C:\Program Files (x86)\Windows Live\Installer\wlstart.exe [786760 2009-08-19] (Microsoft Corporation)
HKU\Default\...\RunOnce: [] -  [x]
HKU\Default\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe [159744 2009-03-24] ()
HKU\Default User\...\RunOnce: [wlstart] - C:\Program Files (x86)\Windows Live\Installer\wlstart.exe [786760 2009-08-19] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [] -  [x]
HKU\Default User\...\RunOnce: [Lenovoautoqdrive] - C:\PROGRA~2\Common~1\Lenovo\Lenovo~1\LenovoAutorunreg.exe [159744 2009-03-24] ()
HKU\Sabine\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [15026056 2011-01-26] (Skype Technologies S.A.)
HKU\Sabine\...\Run: [Browser Infrastructure Helper] - C:\Users\Sabine\AppData\Local\Smartbar\Application\Linkury.exe [20248 2013-06-05] (Smartbar)
HKU\Sabine\...\RunOnce: [8EFC2E9560F765AC00008EFB9FA06C57] - C:\ProgramData\8EFC2E9560F765AC00008EFB9FA06C57\8EFC2E9560F765AC00008EFB9FA06C57.exe [411136 2013-08-20] ()

==================== Services (Whitelisted) =================

S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-08] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-08] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [589368 2013-08-08] (Avira Operations GmbH & Co. KG)
S2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [168400 2013-07-26] (APN LLC.)
S2 MSSQL$MSSMLBIZ; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29263712 2008-11-24] (Microsoft Corporation)
S2 NMSAccess; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [71096 2010-03-04] ()
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2401632 2012-11-29] (TuneUp Software)
S2 RoxLiveShare10; "C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe" [x]

==================== Drivers (Whitelisted) ====================

S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-08-08] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-08-08] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-08-08] (Avira Operations GmbH & Co. KG)
S3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2009-11-12] ()
S3 PCDSRVC{127174DC-C366ED8B-06000000}_0; \??\c:\program files\pc-doctor\pcdsrvc_x64.pkms [x]
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-22 12:28 - 2013-08-22 12:28 - 00000917 _____ C:\Users\Sabine\Desktop\gmer.log
2013-08-22 12:17 - 2013-08-22 12:17 - 00030337 _____ C:\Users\Sabine\Desktop\FRST.txt
2013-08-22 12:17 - 2013-08-22 12:17 - 00016179 _____ C:\Users\Sabine\Desktop\Addition.txt
2013-08-22 12:10 - 2013-08-22 12:10 - 00000000 ____D C:\FRST
2013-08-22 12:09 - 2013-08-22 12:09 - 00000474 _____ C:\Users\Sabine\Desktop\defogger_disable.log
2013-08-22 12:09 - 2013-08-22 12:09 - 00000000 _____ C:\Users\Sabine\defogger_reenable
2013-08-22 12:01 - 2013-08-22 11:57 - 00377856 _____ C:\Users\Sabine\Desktop\1ki7fe1b.exe
2013-08-22 11:53 - 2013-08-22 11:49 - 00050477 _____ C:\Users\Sabine\Desktop\Defogger.exe
2013-08-22 11:53 - 2013-08-21 11:24 - 01576476 _____ (Farbar) C:\Users\Sabine\Desktop\FRST64.exe
2013-08-20 09:33 - 2013-07-25 21:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-08-20 09:33 - 2013-07-25 21:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-08-20 09:33 - 2013-07-25 21:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-08-20 09:33 - 2013-07-25 21:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-08-20 09:33 - 2013-07-25 21:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-08-20 09:33 - 2013-07-25 19:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-08-20 09:33 - 2013-07-25 19:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-20 09:33 - 2013-07-25 19:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-20 09:33 - 2013-07-25 19:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-20 09:33 - 2013-07-25 19:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-20 09:33 - 2013-07-25 19:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-20 09:33 - 2013-07-25 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-20 09:33 - 2013-07-25 18:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-08-20 09:33 - 2013-07-25 17:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-20 09:32 - 2013-07-25 21:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-08-20 09:32 - 2013-07-25 21:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-08-20 09:32 - 2013-07-25 21:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-08-20 09:32 - 2013-07-25 21:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-08-20 09:32 - 2013-07-25 21:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-08-20 09:32 - 2013-07-25 21:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-08-20 09:32 - 2013-07-25 21:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-08-20 09:32 - 2013-07-25 21:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-08-20 09:32 - 2013-07-25 21:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-08-20 09:32 - 2013-07-25 19:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-20 09:32 - 2013-07-25 19:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-20 09:32 - 2013-07-25 19:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-20 09:32 - 2013-07-25 19:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-20 09:32 - 2013-07-25 19:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-20 09:32 - 2013-07-25 19:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-20 09:32 - 2013-07-25 19:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-20 09:32 - 2013-07-25 19:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-20 09:28 - 2013-08-20 09:35 - 00000000 ____D C:\ProgramData\8EFC2E9560F765AC00008EFB9FA06C57
2013-08-20 09:02 - 2013-08-20 09:08 - 00000000 ____D C:\Windows\System32\MRT
2013-08-16 07:58 - 2013-07-05 22:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-08-16 07:55 - 2013-07-08 21:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2013-08-16 07:55 - 2013-07-08 21:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-08-16 07:55 - 2013-07-08 21:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-08-16 07:55 - 2013-07-08 21:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-08-16 07:55 - 2013-07-08 20:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-16 07:55 - 2013-07-08 20:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-16 07:55 - 2013-07-08 20:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-16 07:55 - 2013-07-08 20:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-16 07:53 - 2013-07-18 17:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\tzres.dll
2013-08-16 07:53 - 2013-07-18 17:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-16 07:52 - 2013-07-25 01:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2013-08-16 07:52 - 2013-07-25 00:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-16 07:52 - 2013-07-08 21:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
2013-08-16 07:52 - 2013-07-08 20:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-16 07:52 - 2013-06-14 20:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tssecsrv.sys
2013-08-16 07:39 - 2013-08-16 07:39 - 00000240 _____ C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013.job
2013-08-08 11:04 - 2013-08-08 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira
2013-08-08 11:01 - 2013-08-08 11:01 - 00083672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-08-08 11:00 - 2013-08-15 04:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-08 11:00 - 2013-08-08 11:06 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-08 11:00 - 2013-08-08 11:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-08 11:00 - 2013-08-08 11:06 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-08 11:00 - 2013-08-08 11:00 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-08-08 11:00 - 2013-08-08 11:00 - 00000000 ____D C:\ProgramData\APN
2013-08-08 11:00 - 2013-08-08 11:00 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-08-08 10:59 - 2013-08-08 10:59 - 00000000 ____D C:\Windows\System32\Macromed
2013-08-08 10:58 - 2013-08-08 10:58 - 00002005 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-08-08 10:58 - 2013-08-08 10:58 - 00000000 ____D C:\ProgramData\Avira
2013-08-08 10:58 - 2013-08-08 10:58 - 00000000 ____D C:\Program Files (x86)\Avira
2013-08-08 10:58 - 2013-08-08 10:43 - 00130016 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys
2013-08-08 10:58 - 2013-08-08 10:43 - 00100712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys
2013-08-08 10:58 - 2013-08-08 10:43 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys
2013-07-28 09:28 - 2013-07-28 09:28 - 00000118 _____ C:\Windows\System32\MRT.INI

==================== One Month Modified Files and Folders =======

2013-08-24 01:36 - 2009-07-13 20:51 - 00082339 _____ C:\Windows\setupact.log
2013-08-24 01:06 - 2010-03-25 23:15 - 01853429 _____ C:\Windows\WindowsUpdate.log
2013-08-23 23:05 - 2009-07-13 20:45 - 00015568 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-23 23:05 - 2009-07-13 20:45 - 00015568 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-23 23:02 - 2010-03-26 08:07 - 00711370 _____ C:\Windows\System32\perfh007.dat
2013-08-23 23:02 - 2010-03-26 08:07 - 00153766 _____ C:\Windows\System32\perfc007.dat
2013-08-23 23:02 - 2009-07-13 21:13 - 01646182 _____ C:\Windows\System32\PerfStringBackup.INI
2013-08-22 12:28 - 2013-08-22 12:28 - 00000917 _____ C:\Users\Sabine\Desktop\gmer.log
2013-08-22 12:17 - 2013-08-22 12:17 - 00030337 _____ C:\Users\Sabine\Desktop\FRST.txt
2013-08-22 12:17 - 2013-08-22 12:17 - 00016179 _____ C:\Users\Sabine\Desktop\Addition.txt
2013-08-22 12:10 - 2013-08-22 12:10 - 00000000 ____D C:\FRST
2013-08-22 12:09 - 2013-08-22 12:09 - 00000474 _____ C:\Users\Sabine\Desktop\defogger_disable.log
2013-08-22 12:09 - 2013-08-22 12:09 - 00000000 _____ C:\Users\Sabine\defogger_reenable
2013-08-22 12:09 - 2010-07-15 15:13 - 00000000 ____D C:\users\Sabine
2013-08-22 11:57 - 2013-08-22 12:01 - 00377856 _____ C:\Users\Sabine\Desktop\1ki7fe1b.exe
2013-08-22 11:49 - 2013-08-22 11:53 - 00050477 _____ C:\Users\Sabine\Desktop\Defogger.exe
2013-08-21 11:24 - 2013-08-22 11:53 - 01576476 _____ (Farbar) C:\Users\Sabine\Desktop\FRST64.exe
2013-08-21 06:37 - 2010-09-02 08:55 - 00000000 ___RD C:\Users\Sabine\Dateien
2013-08-21 02:02 - 2010-08-31 10:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Skype
2013-08-20 09:35 - 2013-08-20 09:28 - 00000000 ____D C:\ProgramData\8EFC2E9560F765AC00008EFB9FA06C57
2013-08-20 09:08 - 2013-08-20 09:02 - 00000000 ____D C:\Windows\System32\MRT
2013-08-20 09:01 - 2010-09-02 07:04 - 78161360 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-08-20 08:56 - 2010-08-31 10:22 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\skypePM
2013-08-16 07:39 - 2013-08-16 07:39 - 00000240 _____ C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013.job
2013-08-16 07:28 - 2010-07-18 06:04 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Obliq
2013-08-16 07:11 - 2010-07-15 15:10 - 00042718 _____ C:\Windows\PFRO.log
2013-08-16 07:11 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-15 04:40 - 2013-08-08 11:00 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-08 11:06 - 2013-08-08 11:00 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-08 11:06 - 2013-08-08 11:00 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-08 11:06 - 2013-08-08 11:00 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-08 11:04 - 2013-08-08 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira
2013-08-08 11:01 - 2013-08-08 11:01 - 00083672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-08-08 11:00 - 2013-08-08 11:00 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-08-08 11:00 - 2013-08-08 11:00 - 00000000 ____D C:\ProgramData\APN
2013-08-08 11:00 - 2013-08-08 11:00 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-08-08 10:59 - 2013-08-08 10:59 - 00000000 ____D C:\Windows\System32\Macromed
2013-08-08 10:58 - 2013-08-08 10:58 - 00002005 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-08-08 10:58 - 2013-08-08 10:58 - 00000000 ____D C:\ProgramData\Avira
2013-08-08 10:58 - 2013-08-08 10:58 - 00000000 ____D C:\Program Files (x86)\Avira
2013-08-08 10:43 - 2013-08-08 10:58 - 00130016 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys
2013-08-08 10:43 - 2013-08-08 10:58 - 00100712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys
2013-08-08 10:43 - 2013-08-08 10:58 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys
2013-08-05 07:41 - 2010-10-24 05:19 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help
2013-07-28 09:57 - 2009-07-13 20:45 - 00418592 _____ C:\Windows\System32\FNTCACHE.DAT
2013-07-28 09:54 - 2009-07-13 23:45 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-28 09:54 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-28 09:54 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-28 09:28 - 2013-07-28 09:28 - 00000118 _____ C:\Windows\System32\MRT.INI
2013-07-25 21:13 - 2013-08-20 09:33 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-07-25 21:13 - 2013-08-20 09:32 - 02241024 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-07-25 21:13 - 2013-08-20 09:32 - 01365504 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-07-25 21:12 - 2013-08-20 09:33 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-07-25 21:12 - 2013-08-20 09:33 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-07-25 21:12 - 2013-08-20 09:33 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-07-25 21:12 - 2013-08-20 09:33 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-07-25 21:12 - 2013-08-20 09:32 - 19239424 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-07-25 21:12 - 2013-08-20 09:32 - 15405056 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-07-25 21:12 - 2013-08-20 09:32 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-07-25 21:12 - 2013-08-20 09:32 - 02647040 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-07-25 21:12 - 2013-08-20 09:32 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-07-25 21:12 - 2013-08-20 09:32 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-07-25 21:12 - 2013-08-20 09:32 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-07-25 19:35 - 2013-08-20 09:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-07-25 19:13 - 2013-08-20 09:32 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-25 19:13 - 2013-08-20 09:32 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-25 19:12 - 2013-08-20 09:33 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-25 19:12 - 2013-08-20 09:33 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-25 19:12 - 2013-08-20 09:33 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-25 19:12 - 2013-08-20 09:33 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-25 19:12 - 2013-08-20 09:32 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-25 19:12 - 2013-08-20 09:32 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-25 19:12 - 2013-08-20 09:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-25 19:12 - 2013-08-20 09:32 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-25 19:12 - 2013-08-20 09:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-25 19:11 - 2013-08-20 09:33 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-25 19:11 - 2013-08-20 09:32 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-25 18:49 - 2013-08-20 09:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-25 18:39 - 2013-08-20 09:33 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-25 17:59 - 2013-08-20 09:33 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-25 01:25 - 2013-08-16 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2013-07-25 00:57 - 2013-08-16 07:52 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL

==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2013-07-16 07:34:18
Restore point made on: 2013-07-24 06:37:02
Restore point made on: 2013-07-28 09:21:23
Restore point made on: 2013-07-30 08:51:52
Restore point made on: 2013-08-06 23:47:34
Restore point made on: 2013-08-16 07:25:30
Restore point made on: 2013-08-16 07:29:14
Restore point made on: 2013-08-16 08:19:06
Restore point made on: 2013-08-16 09:28:18
Restore point made on: 2013-08-20 09:00:28
Restore point made on: 2013-08-20 09:39:35
Restore point made on: 2013-08-20 10:31:31

==================== Memory info =========================== 

Percentage of memory in use: 31%
Total physical RAM: 1912.86 MB
Available physical RAM: 1315.92 MB
Total Pagefile: 1912.86 MB
Available Pagefile: 1313.73 MB
Total Virtual: 8192 MB
Available Virtual: 8191.87 MB

==================== Drives ================================

Drive c: (Windows7_OS) (Fixed) (Total:132.33 GB) (Free:81.63 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Daten) (Fixed) (Total:89.62 GB) (Free:57.17 GB) NTFS
Drive f: (Lenovo_Recovery) (Fixed) (Total:9.77 GB) (Free:2.37 GB) NTFS
Drive h: (THOMAS 32GB) (Removable) (Total:29.43 GB) (Free:29.43 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (SYSTEM_DRV) (Fixed) (Total:1.17 GB) (Free:0.48 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 233 GB) (Disk ID: EB9B6D0B)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=132 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=90 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=10 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 29 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=29 GB) - (Type=0C)


LastRegBack: 2013-08-13 01:28

==================== End Of Log ============================
--- --- ---
__________________
 

Themen zu Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme
antivirus, avira, avira searchfree toolbar, bildschirm, blockiert, browser, cdburnerxp, converter, error, excel, farbar, farbar recovery scan tool, fehler, festplatte, flash player, helper, home, homepage, installation, mozilla, msiinstaller, newtab, pirates, plug-in, programm, realtek, registry, richtlinie, scan, security, smartbar, software, svchost.exe, system, system care, windows, wsearch


« Weisses Display mit cursor | Windows 7 - SoftwareUpdater.UI.exe »


Ähnliche Themen: Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme


  1. Windows 7: System Care Antivirus
    Log-Analyse und Auswertung - 28.08.2013 (15)
  2. Windows 7: System Care Antivirus Befall
    Log-Analyse und Auswertung - 23.08.2013 (20)
  3. Laptop / Windows Vista Home 32bit/ System Care Antivirus Befall
    Log-Analyse und Auswertung - 20.08.2013 (13)
  4. System Care Antivirus manuell gelöscht. Vermutlich noch Backdoor oder andere Reste übrig.
    Log-Analyse und Auswertung - 13.08.2013 (6)
  5. System Care Antivirus entfernen, Windows 7
    Plagegeister aller Art und deren Bekämpfung - 29.07.2013 (14)
  6. System Care Antivirus auf PC
    Plagegeister aller Art und deren Bekämpfung - 20.07.2013 (10)
  7. System Care Antivirus
    Log-Analyse und Auswertung - 25.06.2013 (33)
  8. System Care Antivirus
    Log-Analyse und Auswertung - 23.06.2013 (9)
  9. System Care Antivirus - Windows Vista infiziert - Wie entfernen?
    Log-Analyse und Auswertung - 09.06.2013 (11)
  10. System Care Antivirus blockiert diverse Programme
    Plagegeister aller Art und deren Bekämpfung - 06.06.2013 (17)
  11. System Care Antivirus auf Laptop -Windows 7- endgültig entfernen!
    Log-Analyse und Auswertung - 26.05.2013 (17)
  12. System Care Antivirus bei Windows XP
    Plagegeister aller Art und deren Bekämpfung - 24.05.2013 (25)
  13. System Care Antivirus Befall auf Windows XP
    Log-Analyse und Auswertung - 23.05.2013 (7)
  14. Windows 7 - Befall von System care antivirus
    Plagegeister aller Art und deren Bekämpfung - 14.05.2013 (35)
  15. System Care Antivirus - Windows 7
    Plagegeister aller Art und deren Bekämpfung - 09.05.2013 (2)
  16. Windows 7 von System Care Antivirus befallen
    Plagegeister aller Art und deren Bekämpfung - 02.05.2013 (7)
  17. System Care Antivirus auf Windows XP
    Plagegeister aller Art und deren Bekämpfung - 30.04.2013 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme - Hi. Danke für die schnelle Antwort. FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-08-2013 01 Ran by SYSTEM on 24-08-2013 - Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme...
Archiv
Du betrachtest: Windows 7: System Care Antivirus 3.7.33 blockiert andere Programme auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132