Do Searches

cosinus · 03.01.2014, 11:49

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

C:\Program Files\Enigma Software Group
C:\Users\Paddy\AppData\Roaming\skype.ini
C:\ProgramData\dsgsdgdsgdsgw.pad
Task: {7A0DCBA2-4B53-41EE-8BEE-233EAA3AD3F7} - System32\Tasks\0 => Iexplore.exe  <==== ATTENTION
Task: {9A27192B-8DF2-4FE9-8457-B55DC3A80C5C} - System32\Tasks\RegCure Pro => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe
Task: {1571E95F-BF4E-49BD-B23F-51767AFBA9A1} - System32\Tasks\Test TimeTrigger => C:\Users\Paddy\AppData\Local\Temp\Runner.exe <==== ATTENTION
Task: {37622F7A-26A1-4533-8E6A-20F7D6794924} - System32\Tasks\4679 => Wscript.exe C:\Users\Paddy\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Sakurako137 · 03.01.2014, 16:00

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 02-01-2014 01
Ran by Paddy at 2014-01-03 15:59:23 Run:1
Running from C:\Users\Paddy\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
C:\Program Files\Enigma Software Group
C:\Users\Paddy\AppData\Roaming\skype.ini
C:\ProgramData\dsgsdgdsgdsgw.pad
Task: {7A0DCBA2-4B53-41EE-8BEE-233EAA3AD3F7} - System32\Tasks\0 => Iexplore.exe  <==== ATTENTION
Task: {9A27192B-8DF2-4FE9-8457-B55DC3A80C5C} - System32\Tasks\RegCure Pro => C:\Program Files\ParetoLogic\RegCure Pro\RegCurePro.exe
Task: {1571E95F-BF4E-49BD-B23F-51767AFBA9A1} - System32\Tasks\Test TimeTrigger => C:\Users\Paddy\AppData\Local\Temp\Runner.exe <==== ATTENTION
Task: {37622F7A-26A1-4533-8E6A-20F7D6794924} - System32\Tasks\4679 => Wscript.exe C:\Users\Paddy\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
         
*****************

C:\Program Files\Enigma Software Group => Moved successfully.
C:\Users\Paddy\AppData\Roaming\skype.ini => Moved successfully.
C:\ProgramData\dsgsdgdsgdsgw.pad => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7A0DCBA2-4B53-41EE-8BEE-233EAA3AD3F7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A0DCBA2-4B53-41EE-8BEE-233EAA3AD3F7} => Key deleted successfully.
C:\Windows\System32\Tasks\0 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9A27192B-8DF2-4FE9-8457-B55DC3A80C5C} => Key not found.
C:\Windows\System32\Tasks\RegCure Pro not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegCure Pro => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1571E95F-BF4E-49BD-B23F-51767AFBA9A1} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1571E95F-BF4E-49BD-B23F-51767AFBA9A1} => Key deleted successfully.
C:\Windows\System32\Tasks\Test TimeTrigger => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Test TimeTrigger => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37622F7A-26A1-4533-8E6A-20F7D6794924} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37622F7A-26A1-4533-8E6A-20F7D6794924} => Key deleted successfully.
C:\Windows\System32\Tasks\4679 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\4679 => Key deleted successfully.

==== End of Fixlog ====

Do Searches

Plagegeister aller Art und deren Bekämpfung: Do Searches

Do Searches

Do Searches

Ähnliche Themen: Do Searches