Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Viren und Trojaner auf meinem Rechner gefunden

Viren und Trojaner auf meinem Rechner gefunden


Log-Analyse und Auswertung: Viren und Trojaner auf meinem Rechner gefunden

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 09.02.2015, 19:44   #1
KSC
 
Viren und Trojaner auf meinem Rechner gefunden - Standard

Viren und Trojaner auf meinem Rechner gefunden


Hallo,
ich habe bei meinem letzten Scan mit Malwarebytes 40 viren, etc. gefunden. Nun weiß ich nicht, ob der Rechner wirklich sauber ist. Könnt ihr mir evt. helfen?
Hier das first log file:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-02-2015
Ran by Felix (administrator) on FELIXROMER-PC on 09-02-2015 19:36:08
Running from C:\Users\Felix\Downloads
Loaded Profiles: Felix &  (Available profiles: Felix & Felix User)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [126712 2015-01-19] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-886538907-2542849958-1218320087-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-886538907-2542849958-1218320087-1000\...\MountPoints2: {fc59e447-8eaf-11e4-ada1-806e6f6e6963} - D:\Autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-886538907-2542849958-1218320087-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com
HKU\S-1-5-21-886538907-2542849958-1218320087-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
HKU\S-1-5-21-886538907-2542849958-1218320087-1003-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com
HKU\S-1-5-21-886538907-2542849958-1218320087-1003-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\3lib01eg.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\3lib01eg.default\searchplugins\avira-safesearch.xml
FF Extension: Avira Browser Safety - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\3lib01eg.default\Extensions\abs@avira.com [2014-12-28]
FF Extension: Avira SafeSearch - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\3lib01eg.default\Extensions\safesearch@avira.com [2014-12-28]
FF Extension: WOT - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\3lib01eg.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-12-29]
FF Extension: Adblock Plus - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\3lib01eg.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-28]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-01-27]
FF HKU\S-1-5-21-886538907-2542849958-1218320087-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
FF HKU\S-1-5-21-886538907-2542849958-1218320087-1003-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - No Path
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [182520 2015-01-19] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [98160 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-11-24] (Avira Operations GmbH & Co. KG)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2015-02-09] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-11-21] (Malwarebytes Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2014-11-24] (Avira GmbH)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-09 19:36 - 2015-02-09 19:36 - 00009496 _____ () C:\Users\Felix\Downloads\FRST.txt
2015-02-09 19:35 - 2015-02-09 19:36 - 00000000 ____D () C:\FRST
2015-02-09 19:35 - 2015-02-09 19:35 - 01124352 _____ (Farbar) C:\Users\Felix\Downloads\FRST.exe
2015-02-09 19:33 - 2015-02-09 19:33 - 00000472 _____ () C:\Users\Felix\Downloads\defogger_disable.log
2015-02-09 19:33 - 2015-02-09 19:33 - 00000000 _____ () C:\Users\Felix\defogger_reenable
2015-02-09 19:30 - 2015-02-09 19:30 - 00050477 _____ () C:\Users\Felix\Downloads\Defogger.exe
2015-02-09 19:20 - 2015-02-09 19:20 - 00050477 _____ () C:\Users\Felix User\Downloads\Defogger.exe
2015-02-04 20:24 - 2015-02-09 19:26 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-04 20:23 - 2015-02-04 20:23 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-02-04 20:23 - 2015-02-04 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-02-04 20:23 - 2015-02-04 20:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-04 20:23 - 2015-02-04 20:23 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2015-02-04 20:23 - 2014-11-21 06:14 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-04 20:23 - 2014-11-21 06:14 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-02-04 20:23 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-02-04 20:19 - 2015-02-04 20:20 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Felix User\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-29 15:54 - 2015-01-29 15:54 - 00000000 __SHD () C:\Users\Felix User\AppData\Local\EmieUserList
2015-01-29 15:54 - 2015-01-29 15:54 - 00000000 __SHD () C:\Users\Felix User\AppData\Local\EmieSiteList
2015-01-29 15:54 - 2015-01-29 15:54 - 00000000 __SHD () C:\Users\Felix User\AppData\Local\EmieBrowserModeList
2015-01-29 15:47 - 2015-02-09 19:16 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-28 16:19 - 2015-01-28 16:19 - 00159144 _____ (Microsoft Corporation) C:\Users\Felix User\Downloads\WindowsActivationUpdate.exe
2015-01-27 20:58 - 2015-01-27 20:58 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-21 17:08 - 2015-01-21 17:08 - 00002271 _____ () C:\Users\Felix\Desktop\Wikipedia.lnk
2015-01-21 17:08 - 2015-01-21 17:08 - 00002271 _____ () C:\Users\Felix\Desktop\Facebook.lnk
2015-01-21 17:08 - 2015-01-21 17:08 - 00002265 _____ () C:\Users\Felix\Desktop\Youtube.lnk
2015-01-21 17:08 - 2015-01-21 17:08 - 00002265 _____ () C:\Users\Felix\Desktop\Hotmail.lnk
2015-01-21 17:08 - 2015-01-21 17:08 - 00002261 _____ () C:\Users\Felix\Desktop\Search.lnk
2015-01-21 17:08 - 2015-01-21 17:08 - 00002259 _____ () C:\Users\Felix\Desktop\Amazon.lnk
2015-01-21 17:08 - 2015-01-21 17:08 - 00002221 _____ () C:\Users\Felix\Desktop\BoBrowser.lnk
2015-01-21 17:00 - 2015-02-09 19:27 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\Skype
2015-01-21 17:00 - 2015-01-21 17:00 - 00000000 ____D () C:\Users\Felix\AppData\Local\Skype
2015-01-21 16:42 - 2015-01-21 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-01-21 16:42 - 2015-01-21 16:42 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-01-21 16:41 - 2015-01-21 16:41 - 02862548 _____ () C:\Users\Felix\Desktop\javalauncher.zip
2015-01-21 16:41 - 2015-01-21 16:41 - 00321308 _____ ( ) C:\Users\Felix\Desktop\VOPackage.exe
2015-01-21 16:19 - 2015-01-21 16:19 - 00002333 _____ () C:\Users\Felix\Desktop\Minecraft ModLoader - CHIP Downloader.lnk
2015-01-21 16:19 - 2015-01-21 16:19 - 00000000 ____D () C:\Users\Felix User\AppData\Local\WinZip
2015-01-21 16:18 - 2015-01-21 17:07 - 00000000 ____D () C:\ProgramData\WinZip
2015-01-20 19:20 - 2015-01-20 19:21 - 00000000 ____D () C:\Users\Felix User\Schule
2015-01-15 18:12 - 2015-01-16 17:13 - 00007612 _____ () C:\Users\Felix\AppData\Local\Resmon.ResmonCfg
2015-01-14 19:24 - 2015-02-07 21:22 - 00000000 ____D () C:\Users\Felix User\AppData\Roaming\Skype
2015-01-14 19:24 - 2015-01-16 17:02 - 00002687 _____ () C:\Users\Public\Desktop\Skype.lnk
2015-01-14 19:24 - 2015-01-16 17:02 - 00000000 ____D () C:\ProgramData\Skype
2015-01-14 19:24 - 2015-01-16 17:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-01-14 19:24 - 2015-01-14 19:25 - 00000000 ___RD () C:\Program Files\Skype
2015-01-14 19:24 - 2015-01-14 19:24 - 00000000 ____D () C:\Users\Felix User\AppData\Local\Skype
2015-01-14 19:24 - 2015-01-14 19:24 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-01-14 19:22 - 2015-01-14 19:22 - 01548384 _____ (Skype Technologies S.A.) C:\Users\Felix User\Downloads\SkypeSetup.exe
2015-01-14 19:15 - 2015-01-14 19:15 - 00000000 ____D () C:\Users\Felix User\AppData\Roaming\java
2015-01-14 19:14 - 2015-02-08 19:38 - 00000000 ____D () C:\Users\Felix User\AppData\Roaming\.minecraft
2015-01-14 18:40 - 2015-01-14 18:40 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\java
2015-01-14 18:40 - 2015-01-14 18:40 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\.minecraft
2015-01-14 18:39 - 2015-01-14 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2015-01-14 18:39 - 2015-01-14 18:39 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2015-01-14 18:34 - 2015-01-30 16:25 - 00000000 ____D () C:\Program Files\Minecraft
2015-01-14 18:34 - 2015-01-14 18:34 - 00000931 _____ () C:\Users\Public\Desktop\Minecraft.lnk
2015-01-14 18:34 - 2015-01-14 18:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-01-14 18:32 - 2015-01-14 18:32 - 02318336 _____ () C:\Users\Felix\Downloads\MinecraftInstaller.msi
2015-01-14 18:30 - 2014-12-19 03:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 18:30 - 2014-12-19 02:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 18:30 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-01-14 18:30 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 18:30 - 2014-12-11 18:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 18:30 - 2014-12-06 04:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 18:21 - 2015-01-14 18:21 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\Macromedia
2015-01-14 18:21 - 2015-01-14 18:21 - 00000000 ____D () C:\Users\Felix\AppData\Local\Macromedia
2015-01-13 17:17 - 2015-01-13 17:17 - 00000000 ____D () C:\Users\Felix User\AppData\Roaming\Macromedia
2015-01-13 17:17 - 2015-01-13 17:17 - 00000000 ____D () C:\Users\Felix User\AppData\Local\Macromedia
2015-01-13 17:14 - 2015-02-05 19:16 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-01-13 17:14 - 2015-02-05 19:16 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-01-13 17:14 - 2015-01-14 18:39 - 00002012 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2015-01-13 17:14 - 2015-01-14 18:39 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2015-01-13 17:14 - 2015-01-13 17:14 - 00000000 ____D () C:\Windows\system32\Macromed
2015-01-13 17:14 - 2015-01-13 17:14 - 00000000 ____D () C:\ProgramData\McAfee
2015-01-13 17:13 - 2015-01-13 17:14 - 00000000 ____D () C:\Users\Felix\AppData\Local\Adobe
2015-01-13 17:11 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-09 19:33 - 2014-12-28 18:05 - 00000000 ____D () C:\Users\Felix
2015-02-09 19:29 - 2014-12-28 17:42 - 01214052 _____ () C:\Windows\WindowsUpdate.log
2015-02-09 19:27 - 2014-12-28 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-02-09 19:27 - 2014-12-28 18:48 - 00000000 ____D () C:\Program Files\Avira
2015-02-09 19:27 - 2014-12-28 18:47 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-09 19:10 - 2009-07-14 05:34 - 00026496 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-09 19:10 - 2009-07-14 05:34 - 00026496 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-09 18:45 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-09 18:45 - 2009-07-14 05:39 - 00033183 _____ () C:\Windows\setupact.log
2015-02-04 21:05 - 2010-11-20 22:48 - 00357824 _____ () C:\Windows\PFRO.log
2015-02-04 21:05 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\schemas
2015-01-31 13:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-29 15:31 - 2014-12-28 18:45 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-01-21 16:40 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2015-01-15 18:38 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET

==================== Files in the root of some directories =======

2015-01-15 18:12 - 2015-01-16 17:13 - 0007612 _____ () C:\Users\Felix\AppData\Local\Resmon.ResmonCfg

Some content of TEMP:
====================
C:\Users\Felix\AppData\Local\Temp\avgnt.exe
C:\Users\Felix\AppData\Local\Temp\pcspeedup.exe
C:\Users\Felix\AppData\Local\Temp\SoftonicAssistant_v0-1-6.exe
C:\Users\Felix User\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-05 20:40

==================== End Of Log ============================
und hier das addition file:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-02-2015
Ran by Felix at 2015-02-09 19:36:59
Running from C:\Users\Felix\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Avira (HKLM\...\{bd538030-07d4-4999-a525-7fafa2483f56}) (Version: 1.1.30.21727 - Avira Operations & Co. KG)
Avira (Version: 1.1.30.21727 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Minecraft (HKLM\...\{63227E62-F417-497E-9060-22B3A9A52D7A}) (Version: 1.0.1.0 - Mojang)
Mozilla Firefox 35.0.1 (x86 de) (HKLM\...\Mozilla Firefox 35.0.1 (x86 de)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Stronghold 2 (HKLM\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.1000 - Firefly Studios)
Stronghold Crusader Extreme (HKLM\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.20.0000 - Firefly Studios)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-886538907-2542849958-1218320087-1000_Classes\CLSID\{19041B6B-8F97-4669-BA21-C17572737ED2}\localserver32 -> "C:\Users\Felix\AppData\Local\BoBrowser\Application\36.0.1985.136\delegate_execute.exe" No File

==================== Restore Points  =========================

21-01-2015 16:16:50 WinZip 19.0 wird installiert
21-01-2015 17:06:06 WinZip 19.0 wird entfernt
28-01-2015 16:21:20 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {911071FE-3DFA-4F00-A663-796B74D3BC09} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05] (Adobe Systems Incorporated)
Task: {CC43FF25-7FAC-4E36-AEE7-FF9DC9570483} - \Run_Bobby_Browser No Task File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) ==============

2015-01-27 20:58 - 2015-01-27 20:58 - 03925104 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Registry Areas =====================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-886538907-2542849958-1218320087-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-886538907-2542849958-1218320087-1003-{637FE20B-9A5B-4F51-B1BE-D10045625B40}-0\Control Panel\Desktop\\Wallpaper -> 

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-886538907-2542849958-1218320087-500 - Administrator - Disabled)
Felix (S-1-5-21-886538907-2542849958-1218320087-1000 - Administrator - Enabled) => C:\Users\Felix
Felix User (S-1-5-21-886538907-2542849958-1218320087-1003 - Limited - Enabled) => C:\Users\Felix User
Gast (S-1-5-21-886538907-2542849958-1218320087-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-886538907-2542849958-1218320087-1002 - Limited - Enabled)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/09/2015 07:26:35 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.ComponentModel.Win32Exception (0x80004005): Key (Users\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall) could not be opened Error: 87, Hive: Users, Key: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
   at Avira.OE.WinCore.Utility.RegistryValueWatcher.CheckResultAndThrowWin32Exception(Int32 result, String message)
   at Avira.OE.WinCore.Utility.RegistryValueWatcher.OpenRegKey()
   at Avira.OE.WinCore.Utility.RegistryValueWatcher.Start()
   at Avira.OE.ServiceHost.AppInfoRepositoryFactory.CreateRegistryAppInfoRepository(RegistryHive registryHive, String registryPath, RegistryView registryView)
   at Avira.OE.ServiceHost.DesktopApplications.UpdateUserAppInfoRepository(String userSid)
   at Avira.OE.ServiceHost.DesktopApplications.UpdateOnNewUserSid(String userSid)
   at Avira.OE.ServiceHost.DesktopApplications.OnSessionChange(Int32 sessionId, SessionChangeReason reason)
   at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(SessionChangeDescription changeDescription)
   at System.Ser...

Error: (02/09/2015 06:58:24 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Fehler beim Erwerb der Endbenutzerlizenz. hr=0xC004C008
SKU-ID=5e017a8a-f3f9-4167-b1bd-ba3e236a4d8f

Error: (02/09/2015 06:58:24 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Lizenzerwerb-Fehlerdetails. 
hr=0xC004C008

Error: (02/09/2015 06:46:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/08/2015 07:35:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/07/2015 08:17:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/07/2015 04:07:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/06/2015 07:34:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/05/2015 08:42:38 PM) (Source: Software Protection Platform Service) (EventID: 8208) (User: )
Description: Fehler bei der Erfassung des authentischen Tickets (hr=0xC004C533) für die Vorlagen-ID 66c92734-d682-4d71-983e-d6ec3f16059f.

Error: (02/05/2015 08:42:38 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Lizenzerwerb-Fehlerdetails. 
hr=0xC004C533


System errors:
=============
Error: (02/07/2015 08:20:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Microsoft .NET Framework NGEN v4.0.30319_X86 erreicht.

Error: (02/07/2015 08:16:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira Service Host erreicht.

Error: (02/07/2015 04:49:35 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{69652555-3008-4389-B23E-3378DA3AD995}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (02/07/2015 04:34:18 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "ROMER-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{69652555-3008-4389-B23E-3378DA3AD-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (02/07/2015 04:08:33 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005

Error: (02/07/2015 04:06:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira Service Host erreicht.

Error: (02/06/2015 07:33:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira Service Host erreicht.

Error: (02/04/2015 09:06:15 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira Service Host erreicht.

Error: (02/02/2015 02:06:14 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{69652555-3008-4389-B23E-3378DA3AD995}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (01/30/2015 08:30:00 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{69652555-3008-4389-B23E-3378DA3AD995}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.


Microsoft Office Sessions:
=========================
Error: (02/09/2015 07:26:35 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Failed to process session change. System.ComponentModel.Win32Exception (0x80004005): Key (Users\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall) could not be opened Error: 87, Hive: Users, Key: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
   at Avira.OE.WinCore.Utility.RegistryValueWatcher.CheckResultAndThrowWin32Exception(Int32 result, String message)
   at Avira.OE.WinCore.Utility.RegistryValueWatcher.OpenRegKey()
   at Avira.OE.WinCore.Utility.RegistryValueWatcher.Start()
   at Avira.OE.ServiceHost.AppInfoRepositoryFactory.CreateRegistryAppInfoRepository(RegistryHive registryHive, String registryPath, RegistryView registryView)
   at Avira.OE.ServiceHost.DesktopApplications.UpdateUserAppInfoRepository(String userSid)
   at Avira.OE.ServiceHost.DesktopApplications.UpdateOnNewUserSid(String userSid)
   at Avira.OE.ServiceHost.DesktopApplications.OnSessionChange(Int32 sessionId, SessionChangeReason reason)
   at Avira.OE.ServiceHost.ServiceHost.OnSessionChange(SessionChangeDescription changeDescription)
   at System.Ser...

Error: (02/09/2015 06:58:24 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: hr=0xC004C0085e017a8a-f3f9-4167-b1bd-ba3e236a4d8f

Error: (02/09/2015 06:58:24 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: hr=0xC004C00800010001(0x00000000, 18:58:23:772 - hxxp://go.microsoft.com/fwlink/?LinkID=88341)
00020001(0x00000000, 18:58:23:772)
00030001(0x00000000, 18:58:23:772 - hxxp://go.microsoft.com)
00030002(0x00000000, 18:58:23:772 - 1)
00020005(0x00000000, 18:58:23:772 - 0)
0002000C(0x00000000, 18:58:23:944 - 302)
0002000E(0x00000000, 18:58:23:944 - https://activation.sls.microsoft.com/sllicensing/SLLicense.asmx)
00020001(0x00000000, 18:58:23:944)
00030001(0x00000000, 18:58:23:944 - https://activation.sls.microsoft.com)
00030002(0x00000000, 18:58:23:944 - 1)
00020005(0x00000000, 18:58:23:944 - 0)
0002000C(0x00000000, 18:58:24:427 - 500)
00010002(0x8004FC01, 18:58:24:427 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="hxxp://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="hxxp://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="hxxp://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C008</HRESULT><Messages><Message>113 (Activation) - [PA Maximum unlock exceeded.  ---&gt; Maximum unlock exceeded]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
00010003(0x8004FC01, 18:58:24:458)

Error: (02/09/2015 06:46:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/08/2015 07:35:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/07/2015 08:17:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/07/2015 04:07:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/06/2015 07:34:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/05/2015 08:42:38 PM) (Source: Software Protection Platform Service) (EventID: 8208) (User: )
Description: hr=0xC004C53366c92734-d682-4d71-983e-d6ec3f16059f

Error: (02/05/2015 08:42:38 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: hr=0xC004C53300010001(0x00000000, 20:42:37:734 - hxxp://go.microsoft.com/fwlink/?LinkId=151642)
00020001(0x00000000, 20:42:37:734)
00030001(0x00000000, 20:42:37:734 - hxxp://go.microsoft.com)
00030002(0x00000000, 20:42:37:734 - 1)
00020005(0x00000000, 20:42:37:734 - 0)
0002000C(0x00000000, 20:42:37:937 - 302)
0002000E(0x00000000, 20:42:37:937 - https://validation.sls.microsoft.com/SLWGA/slwga.asmx)
00020001(0x00000000, 20:42:37:937)
00030001(0x00000000, 20:42:37:937 - https://validation.sls.microsoft.com)
00030002(0x00000000, 20:42:37:937 - 1)
00020005(0x00000000, 20:42:37:937 - 0)
0002000C(0x00000000, 20:42:38:389 - 500)
00010002(0x8004FC01, 20:42:38:389 - <?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="hxxp://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="hxxp://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="hxxp://www.w3.org/2001/XMLSchema"><soap:Body><soap:Fault><faultcode>soap:Server</faultcode><faultstring>SoapException</faultstring><detail><HRESULT>0xC004C533</HRESULT><Messages><Message>1006 (Validation) - [VGA: Invalid license state - notification reason unknown.  ---&gt; Invalid license state - notification reason unknown]</Message></Messages></detail></soap:Fault></soap:Body></soap:Envelope>)
00010003(0x8004FC01, 20:42:38:389)


==================== Memory info =========================== 

Processor: Genuine Intel(R) CPU T2300 @ 1.66GHz
Percentage of memory in use: 59%
Total physical RAM: 2038.12 MB
Available physical RAM: 827.01 MB
Total Pagefile: 4076.24 MB
Available Pagefile: 2371.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1908.25 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.53 GB) (Free:40.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 74.5 GB) (Disk ID: A4E6D282)
Partition 1: (Active) - (Size=74.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================
LG und danke schon mal im voraus
KSC

 

Themen zu Viren und Trojaner auf meinem Rechner gefunden
adware, antivir, antivirus, avira, browser, computer, cpu, desktop, failed, fehler, firefox, flash player, home, log file, mozilla, registry, scan, security, services.exe, software, svchost.exe, system, trojaner, viren, viren bekämpfen, windows


« Windows 7: Häufig "Keine Rückmeldung" beim starten von Anwendungen | Commerzbank sagt mein PC ist mit einem Trojaner verseucht »


Ähnliche Themen: Viren und Trojaner auf meinem Rechner gefunden


  1. detect hat Xtreme Rat auf meinem Rechner gefunden
    Plagegeister aller Art und deren Bekämpfung - 22.11.2014 (13)
  2. Viren auf meinem Rechner nach vollständiger Formatierung?
    Log-Analyse und Auswertung - 19.02.2014 (8)
  3. AviraScan hat jede menge Viren gefunden und in Quarantäne geschoben! Rechner jetzt clean???
    Plagegeister aller Art und deren Bekämpfung - 02.12.2013 (3)
  4. Win32.Downloader.gen auf meinem Rechner gefunden...
    Plagegeister aller Art und deren Bekämpfung - 17.07.2013 (17)
  5. Habe ich Viren oder Trojaner auf meinem PC?
    Plagegeister aller Art und deren Bekämpfung - 04.06.2013 (53)
  6. Habe " bprotector for windows " als Programm auf meinem Rechner gefunden - ist das ein Virus?
    Plagegeister aller Art und deren Bekämpfung - 05.02.2013 (19)
  7. Viren auf Rechner gefunden
    Log-Analyse und Auswertung - 05.01.2013 (34)
  8. ich habe meherer trojaner/viren auf meinem Pc gefunden
    Log-Analyse und Auswertung - 02.10.2012 (1)
  9. Blabbers auf meinem Rechner gefunden, wie entferne ich den richtig?
    Log-Analyse und Auswertung - 27.09.2012 (1)
  10. Von meinem Rechner gehen wohl E-Mails mit Schadlinks ab - ein Viren-/Trojanerproblem?
    Plagegeister aller Art und deren Bekämpfung - 16.02.2012 (35)
  11. Viren-Problem -- Security Defender hat sich auf meinem Rechner breit gemacht
    Plagegeister aller Art und deren Bekämpfung - 06.01.2012 (1)
  12. XP REchner: kann nicht erkennen, ob ich immer noch Trojaner auf meinem Rechner habe
    Plagegeister aller Art und deren Bekämpfung - 13.09.2011 (43)
  13. nach malware scan 139 viren gefunden auf meinen rechner was soll ich tun
    Plagegeister aller Art und deren Bekämpfung - 11.06.2011 (1)
  14. Hacker schreibt auf meinem Pc mit mir! 8 Viren (z.B. DR/Zwangi.Cp) gefunden!
    Plagegeister aller Art und deren Bekämpfung - 01.05.2010 (32)
  15. Log Überprüfen bitte ! Ich mein ich hab Viren auf meinem Rechner ! Bitte
    Log-Analyse und Auswertung - 13.10.2009 (6)
  16. Hilfe! Unbekanntes Textdokument auf meinem Rechner gefunden!
    Plagegeister aller Art und deren Bekämpfung - 28.11.2006 (12)
  17. Trojaner und Viren Party auf meinem Rechner - HILFE
    Log-Analyse und Auswertung - 07.08.2005 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Viren und Trojaner auf meinem Rechner gefunden - Hallo, ich habe bei meinem letzten Scan mit Malwarebytes 40 viren, etc. gefunden. Nun weiß ich nicht, ob der Rechner wirklich sauber ist. Könnt ihr mir evt. helfen? Hier das - Viren und Trojaner auf meinem Rechner gefunden...
Archiv
Du betrachtest: Viren und Trojaner auf meinem Rechner gefunden auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55