| |
| |||||||
Log-Analyse und Auswertung: Windows 7: Delta Search VirusWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
22.09.2013, 13:21
| #1 |
 |  Windows 7: Delta Search Virus Hallo Aneri, anbei meine Logfiles. Die unerwünschten Werbungen in meinem Browser sind übrigens noch nicht weg. ADwCleaner Code:
ATTFilter # AdwCleaner v3.004 - Bericht erstellt am 22/09/2013 um 14:08:52
# Updated 15/09/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Toklar - TOKLAR-PC
# Gestartet von : C:\Users\Toklar\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16686
-\\ Google Chrome v29.0.1547.76
[ Datei : C:\Users\Toklar\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [4349 octets] - [15/09/2013 16:22:52]
AdwCleaner[R1].txt - [916 octets] - [15/09/2013 21:01:49]
AdwCleaner[R2].txt - [1151 octets] - [22/09/2013 14:07:59]
AdwCleaner[S0].txt - [3746 octets] - [15/09/2013 16:25:14]
AdwCleaner[S1].txt - [976 octets] - [15/09/2013 21:03:47]
AdwCleaner[S2].txt - [1073 octets] - [22/09/2013 14:08:52]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1133 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.2 (09.22.2013:1)
OS: Windows 7 Home Premium x64
Ran by Toklar on 22.09.2013 at 14:14:29,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220422182256}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550455185556}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660466186656}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440444184456}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220422182256}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550455185556}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660466186656}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440444184456}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550455185556}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660466186656}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440444184456}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550455185556}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660466186656}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440444184456}
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Toklar\appdata\local\{074F5C52-F681-4BC1-B76E-49204181BEBF}
Successfully deleted: [Empty Folder] C:\Users\Toklar\appdata\local\{2AF85054-AB8C-485E-B6D9-8925BCF82935}
Successfully deleted: [Empty Folder] C:\Users\Toklar\appdata\local\{4C1A321C-25A2-4C7F-9FA4-6B7728D87A3A}
Successfully deleted: [Empty Folder] C:\Users\Toklar\appdata\local\{60D0792D-62C6-41EB-99E5-EA7FAB8DE556}
Successfully deleted: [Empty Folder] C:\Users\Toklar\appdata\local\{7388B9FF-69F5-45CC-8266-8395CDA89E6A}
Successfully deleted: [Empty Folder] C:\Users\Toklar\appdata\local\{9C51A5C8-407B-44EB-B54F-5E1D6D0E426B}
Successfully deleted: [Empty Folder] C:\Users\Toklar\appdata\local\{D7FAC4B9-2ED2-461D-88DD-E92E3045824F}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 22.09.2013 at 14:17:41,68
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
22.09.2013, 15:16
| #2 |
| /// Malwareteam   | Windows 7: Delta Search Virus Hi der letzte Schritt fehlt noch , das neue FRST Logfile
__________________ reiche mir das nach, dann entfernen wir die Reste manuell.
__________________ |
|
| Themen zu Windows 7: Delta Search Virus |
| adw-cleaner, bonjour, browser, desktop, einstellungen, epupdater, farbar, farbar recovery scan tool, flash player, google, home, icreinstall, installation, kaspersky, mozilla, mp3, object, plug-in, problem, programm, realtek, registry, rootkit, rundll, scan, services.exe, software, spark, spotify web helper, system, usb, virus, windows |
Hybrid-Darstellung
