Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Startseite firefox ändern

Startseite firefox ändern


Plagegeister aller Art und deren Bekämpfung: Startseite firefox ändern

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.11.2013, 12:13   #1
HalloKnallo
 
Startseite firefox ändern - Standard

Startseite firefox ändern


Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Denise on 11.11.2013 at 11:54:03,88
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2375547224-3117472764-2524716017-1000\Software\sweetim



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted the following from C:\Users\Denise\AppData\Roaming\mozilla\firefox\profiles\v9203k4h.default\prefs.js

user_pref("extensions.bootstrappedAddons", "{\"{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}\":{\"version\":\"2.4\",\"type\":\"extension\",\"descriptor\":\"C:\\\\Users\\\\Denise\\\\A
Emptied folder: C:\Users\Denise\AppData\Roaming\mozilla\firefox\profiles\v9203k4h.default\minidumps [29 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11.11.2013 at 12:02:01,22
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Wozu brauchst du die Logs? ist doch jetzt alles tip top oder nicht?


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-10-2013 01
Ran by Denise (administrator) on DENISE-PC on 11-11-2013 12:05:21
Running from C:\Users\Denise\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\PLFSetI.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Ulead Systems\Ulead Photo Express 3.0 SE\CalCheck.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(dotPDN LLC) C:\Program Files\Paint.NET\PaintDotNet.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Ulead Systems\Ulead Photo Express 3.0 SE\Ipe30.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\swriter.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.bin
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [520760 2010-03-04] (Conexant Systems, Inc.)
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324608 2010-06-10] (Alcor Micro Corp.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2107176 2010-03-11] (Synaptics Incorporated)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [206208 2012-10-26] ()
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKCU\...\Run: [msnmsgr] - "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
HKCU\...\Run: [AVG-Secure-Search-Update_0913b] - C:\Users\Denise\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid 977aca48117247d0b0e0b1a22f572bec-2b4debe75bcfa617642082eaa41e7a45b53d1c3d --CMPID 0913b
MountPoints2: {b84ec679-1f60-11e2-9a4c-806e6f6e6963} - D:\amplayer.exe autorun.dat
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-08-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411952 2013-09-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.youtube.com/?hl=de&gl=DE
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 62.109.121.2 62.109.121.1 192.168.123.254

FireFox:
========
FF ProfilePath: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\v9203k4h.default
FF Homepage: hxxp://www.youtube.com/?hl=de&gl=DE
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Roomy Bookmarks Toolbar - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\v9203k4h.default\Extensions\ALone-live@ya.ru
FF Extension: DownloadHelper - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\v9203k4h.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: amznUWL2 - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\v9203k4h.default\Extensions\amznUWL2@amazon.com.xpi
FF Extension: firefox - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\v9203k4h.default\Extensions\firefox@ghostery.com.xpi
FF Extension: No Name - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\v9203k4h.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: Adblock Plus - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\v9203k4h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-17] (NTI, Inc.)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-30] (Acer Incorporated)

==================== Drivers (Whitelisted) ====================

R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-09-05] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-11 12:02 - 2013-11-11 12:02 - 00001252 _____ C:\Users\Denise\Desktop\JRT.txt
2013-11-11 11:54 - 2013-11-11 11:54 - 00000000 ____D C:\Windows\ERUNT
2013-11-11 11:52 - 2013-11-11 11:52 - 01034531 _____ (Thisisu) C:\Users\Denise\Desktop\JRT.exe
2013-11-10 17:02 - 2013-11-10 17:37 - 00000000 ____D C:\AdwCleaner
2013-11-10 16:58 - 2013-11-10 16:58 - 01073258 _____ C:\Users\Denise\Desktop\adw311cleaner.exe
2013-11-10 16:54 - 2013-11-10 17:26 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-07 01:18 - 2013-11-07 01:18 - 00000000 ____D C:\Users\Denise\Desktop\Outlook
2013-11-02 20:07 - 2013-11-02 20:07 - 00000000 ____D C:\Users\Denise\AppData\Roaming\OpenOffice
2013-11-02 20:05 - 2013-11-02 20:05 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2013-11-02 18:39 - 2013-11-02 18:45 - 206348443 _____ C:\Users\Denise\Desktop\Schnäppchen Urlaub Türkei.mp4
2013-10-30 14:49 - 2013-10-30 14:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-28 17:30 - 2011-07-07 20:20 - 1361281024 _____ C:\Users\Denise\Desktop\xf-jackass35.avi
2013-10-27 16:57 - 2013-11-10 16:54 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-10-27 16:57 - 2013-11-10 16:48 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-10-27 16:57 - 2013-10-27 16:57 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-27 16:56 - 2013-11-10 17:26 - 00000000 ____D C:\Users\Denise\Desktop\mbar
2013-10-27 15:48 - 2013-10-27 15:48 - 00000000 ____D C:\FRST
2013-10-27 15:47 - 2013-10-27 15:47 - 01956160 _____ (Farbar) C:\Users\Denise\Desktop\FRST64.exe
2013-10-24 15:29 - 2013-10-24 15:31 - 169963780 _____ C:\Users\Denise\Desktop\Die Tricks der Pharmaindustrie.mp4
2013-10-20 23:38 - 2013-10-23 16:24 - 00000000 ____D C:\Users\Denise\Desktop\Staffel 24
2013-10-12 09:53 - 2013-09-17 22:58 - 00000000 ____D C:\Users\Denise\Desktop\Mathias Tretter - Staatsfeind Nr.11-(2009)
2013-10-12 09:52 - 2013-10-10 10:02 - 00000000 ____D C:\Users\Denise\Desktop\Dieter Nuhr - Das Geheimnis des perfekten Tages

==================== One Month Modified Files and Folders =======

2013-11-11 12:02 - 2013-11-11 12:02 - 00001252 _____ C:\Users\Denise\Desktop\JRT.txt
2013-11-11 11:54 - 2013-11-11 11:54 - 00000000 ____D C:\Windows\ERUNT
2013-11-11 11:52 - 2013-11-11 11:52 - 01034531 _____ (Thisisu) C:\Users\Denise\Desktop\JRT.exe
2013-11-11 11:38 - 2012-12-08 22:36 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-11 11:09 - 2012-10-27 13:49 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-11 10:38 - 2012-12-08 22:36 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-11 09:38 - 2012-10-26 14:15 - 00000000 ____D C:\ProgramData\MFAData
2013-11-11 03:00 - 2012-10-26 12:34 - 01667451 _____ C:\Windows\WindowsUpdate.log
2013-11-10 20:52 - 2012-03-12 14:54 - 00000000 ____D C:\Users\Denise\Desktop\D
2013-11-10 17:47 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-10 17:47 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-10 17:44 - 2012-10-26 22:26 - 00654400 _____ C:\Windows\system32\perfh007.dat
2013-11-10 17:44 - 2012-10-26 22:26 - 00130240 _____ C:\Windows\system32\perfc007.dat
2013-11-10 17:44 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-10 17:42 - 2012-10-26 20:46 - 00000000 ____D C:\Users\Denise\AppData\Local\Paint.NET
2013-11-10 17:42 - 2012-10-26 20:45 - 00000575 _____ C:\Windows\ULEAD32.INI
2013-11-10 17:40 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-10 17:40 - 2009-07-14 05:51 - 00052733 _____ C:\Windows\setupact.log
2013-11-10 17:37 - 2013-11-10 17:02 - 00000000 ____D C:\AdwCleaner
2013-11-10 17:26 - 2013-11-10 16:54 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-10 17:26 - 2013-10-27 16:56 - 00000000 ____D C:\Users\Denise\Desktop\mbar
2013-11-10 16:58 - 2013-11-10 16:58 - 01073258 _____ C:\Users\Denise\Desktop\adw311cleaner.exe
2013-11-10 16:54 - 2013-10-27 16:57 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-11-10 16:48 - 2013-10-27 16:57 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-11-10 02:57 - 2012-10-26 20:51 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Audacity
2013-11-08 00:24 - 2012-10-26 14:34 - 00000000 ____D C:\Users\Denise\AppData\Roaming\vlc
2013-11-07 22:52 - 2013-09-26 18:40 - 00000000 ____D C:\Users\Denise\Desktop\Präastronautik
2013-11-07 12:12 - 2013-02-26 12:53 - 00000000 ____D C:\Users\Denise\Desktop\Die Macht der Stimme
2013-11-07 11:48 - 2009-07-14 05:45 - 00370840 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-07 11:47 - 2012-10-26 13:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-07 01:18 - 2013-11-07 01:18 - 00000000 ____D C:\Users\Denise\Desktop\Outlook
2013-11-04 01:51 - 2012-10-26 13:37 - 00087008 _____ C:\Users\Denise\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-02 20:07 - 2013-11-02 20:07 - 00000000 ____D C:\Users\Denise\AppData\Roaming\OpenOffice
2013-11-02 20:05 - 2013-11-02 20:05 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2013-11-02 19:54 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-02 18:45 - 2013-11-02 18:39 - 206348443 _____ C:\Users\Denise\Desktop\Schnäppchen Urlaub Türkei.mp4
2013-11-02 04:15 - 2012-11-11 22:07 - 00000000 ____D C:\Users\Denise\AppData\Roaming\dvdcss
2013-10-31 22:19 - 2012-10-27 23:48 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Skype
2013-10-30 14:49 - 2013-10-30 14:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-27 17:29 - 2012-10-26 12:31 - 00020946 _____ C:\Windows\PFRO.log
2013-10-27 17:01 - 2012-11-08 17:15 - 00000000 ____D C:\Users\Denise\Documents\Calibre Library
2013-10-27 16:57 - 2013-10-27 16:57 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-27 15:48 - 2013-10-27 15:48 - 00000000 ____D C:\FRST
2013-10-27 15:47 - 2013-10-27 15:47 - 01956160 _____ (Farbar) C:\Users\Denise\Desktop\FRST64.exe
2013-10-24 15:31 - 2013-10-24 15:29 - 169963780 _____ C:\Users\Denise\Desktop\Die Tricks der Pharmaindustrie.mp4
2013-10-23 16:24 - 2013-10-20 23:38 - 00000000 ____D C:\Users\Denise\Desktop\Staffel 24
2013-10-15 16:01 - 2013-09-04 21:48 - 00000000 ____D C:\Users\Denise\AppData\Roaming\TS3Client

Some content of TEMP:
====================
C:\Users\Denise\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\Denise\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Denise\AppData\Local\Temp\IminentSetup-1-.exe
C:\Users\Denise\AppData\Local\Temp\installhelper.dll
C:\Users\Denise\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\Denise\AppData\Local\Temp\Lame_v3.99.3_for_Windows.exe
C:\Users\Denise\AppData\Local\Temp\MSNE091.exe
C:\Users\Denise\AppData\Local\Temp\MybabylonTB.exe
C:\Users\Denise\AppData\Local\Temp\propsys.dll
C:\Users\Denise\AppData\Local\Temp\Quarantine.exe
C:\Users\Denise\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Denise\AppData\Local\Temp\SRAssetsHelper.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-10 19:00

==================== End Of Log ============================
--- --- ---

--- --- ---

Antwort

Themen zu Startseite firefox ändern
antivir, button, firefox, hartnäckige, hola search, neuen, neuer, search, seite, starseite, startseite, startseite firefox, systems, tab, ändern, öffnet


« Weisser Bildschirm Bundespolizei OTLPE 1. Schritt vollzogen | Postbank Banking Trojaner + Logfiles »


Ähnliche Themen: Startseite firefox ändern


  1. ändern der startseite verhindern?
    Plagegeister aller Art und deren Bekämpfung - 18.05.2014 (5)
  2. Startseite bei Firefox lässt sich nicht ändern.
    Log-Analyse und Auswertung - 16.04.2014 (27)
  3. nationzoom startseite bei firefox lässt sich nicht ändern
    Log-Analyse und Auswertung - 21.01.2014 (1)
  4. Firefox Startseite http://www.searchnu.com/406 lässt sich nicht mehr ändern!
    Log-Analyse und Auswertung - 29.11.2012 (13)
  5. Startseite im IE 8 lässt sich nicht ändern
    Plagegeister aller Art und deren Bekämpfung - 03.08.2010 (10)
  6. Wie kann ich die ie startseite ändern
    Plagegeister aller Art und deren Bekämpfung - 28.12.2005 (3)
  7. Startseite läßt sich nicht mehr ändern !
    Plagegeister aller Art und deren Bekämpfung - 11.09.2005 (2)
  8. Ie Explorer Startseite Lässt Sich Nicht ändern
    Plagegeister aller Art und deren Bekämpfung - 05.09.2005 (7)
  9. Startseite vom IE lässt sich nicht ändern
    Plagegeister aller Art und deren Bekämpfung - 18.08.2005 (6)
  10. startseite lässt sich nicht mehr ändern :(
    Log-Analyse und Auswertung - 03.06.2005 (4)
  11. about:blank läßt sich nichtmehr auf Startseite ändern
    Log-Analyse und Auswertung - 26.05.2005 (4)
  12. IE-Startseite lässt sich nicht ändern
    Log-Analyse und Auswertung - 22.01.2005 (6)
  13. Startseite lässt sich nicht ändern
    Log-Analyse und Auswertung - 13.01.2005 (1)
  14. Kann Startseite im IE nicht ändern.
    Log-Analyse und Auswertung - 20.11.2004 (2)
  15. Startseite lässt sich nicht ändern
    Log-Analyse und Auswertung - 31.08.2004 (30)
  16. startseite ändern geht nicht!
    Plagegeister aller Art und deren Bekämpfung - 01.03.2004 (3)
  17. startseite von IE 6 lässt sich nicht ändern
    Plagegeister aller Art und deren Bekämpfung - 14.02.2004 (9)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Startseite firefox ändern - Code: Alles auswählen Aufklappen ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.0.8 (11.05.2013:1) OS: Windows 7 Home Premium x64 Ran by Denise on 11.11.2013 at 11:54:03,88 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ - Startseite firefox ändern...
Archiv
Du betrachtest: Startseite firefox ändern auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131