Hijack / Trojaner in Firefox - Werbe-Websites werden aufgerufen

Necroid31 · 23.04.2014, 20:05

Hi again, Antivir hat bei einem der vielen Programme heute nachmittag die Registry geblockt, ich meine aber, dass es nicht FRST war...

Was sagst du denn zu der "NSIS/StartPage.CC trojan" die ESET findet?

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-04-2014
Ran by Stefan at 2014-04-23 20:59:16 Run:2
Running from C:\Users\Stefan\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
C:\Users\Stefan\Downloads\vlc-2.1.4-win64.exe
C:\Windows\SysWOW64\licmgr10P.dll
C:\Windows\System32\licmgr10P.dll
end
*****************

C:\Users\Stefan\Downloads\vlc-2.1.4-win64.exe => Moved successfully.
"C:\Windows\SysWOW64\licmgr10P.dll" => File/Directory not found.
"C:\Windows\System32\licmgr10P.dll" => File/Directory not found.

==== End of Fixlog ====

Farbar Service Scanner Version: 25-02-2014
Ran by Stefan (administrator) on 23-04-2014 at 21:03:51
Running from "C:\Users\Stefan\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Disabled. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

Hijack / Trojaner in Firefox - Werbe-Websites werden aufgerufen

Log-Analyse und Auswertung: Hijack / Trojaner in Firefox - Werbe-Websites werden aufgerufen

Hijack / Trojaner in Firefox - Werbe-Websites werden aufgerufen

Ähnliche Themen: Hijack / Trojaner in Firefox - Werbe-Websites werden aufgerufen