| |
| |||||||
Log-Analyse und Auswertung: OTL scan auf BKA trojanerWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
16.02.2018, 13:33
| #15 |
 |  OTL scan auf BKA trojaner Dies backuptool, von c: nehme ich an, kann man das auf eine saubere festplatte machen wo noch 110 gb Frei sind? Muss ich also damit rechnen, dass das BKa alle meine passwoerter dich ich sehr oft ändere, weiss? welcher registry eintrag war das genau? Danke Code:
ATTFilter Fix result of Farbar Recovery Scan Tool (x64) Version: 12.02.2018
Ran by Administrator (16-02-2018 13:21:32) Run:4
Running from C:\Users\Administrator\Desktop
Loaded Profiles: Administrator (Available Profiles: juergen2 & Administrator)
Boot Mode: Normal
==============================================
fixlist content:
*****************
AppInit_DLLs-x32: hplun.dll => No File
FF NewTabOverride: Mozilla\Firefox\Profiles\iv2ha52p.default-1508386149418 -> Disabled: _j5Members_@ext.ask.com
S4 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.667\McCHSvc.exe" [X]
S4 TrueKey; "C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe" [X]
S4 TrueKeyScheduler; "C:\Program Files\TrueKey\McTkSchedulerService.exe" [X]
S3 TrueKeyServiceHelper; "C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe" [X]
C:\Program Files\TrueKey
U3 aswbdisk; no ImagePath
S1 bcbus; system32\DRIVERS\bcbus.sys [X]
S3 X6va037; \??\C:\Windows\SysWOW64\Drivers\X6va037 [X]
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X]
Task: {21022CE6-BFE7-40E7-AAFA-15A6CC72356B} - System32\Tasks\{E140102B-F244-4775-9758-5FA77AFD8886} => C:\Windows\system32\pcalua.exe -a "C:\Users\juergen2\Downloads\chromeinstall-8u77 (1).exe" -d C:\Users\juergen2\Downloads
Task: {213D38E2-E0E5-4EFB-88BC-AC61BF33552B} - System32\Tasks\{849B1E16-7952-40E5-887E-DAAD93154E62} => C:\Windows\system32\pcalua.exe -a D:\backupMaxtor80gb\data\putty.exe -d D:\backupMaxtor80gb\data
Task: {22DA9795-90BD-4731-AB6A-BD01A662D2F9} - System32\Tasks\{9C6CF1E7-9264-4314-BC30-F7778072B17B} => C:\Windows\system32\pcalua.exe -a D:\backupMaxtor80gb\data\wlsetup3528-all.exe -d d:\backupMaxtor80gb\data\
Task: {3B11371B-11AB-415E-8185-32A4F05C4B0F} - System32\Tasks\{471AF2D6-FC39-423E-8A09-1CE6E304D7BB} => C:\Windows\system32\pcalua.exe -a C:\camel\SilkroadOnlineGlobal_Official_v1_486.exe -d c:\camel\
Task: {4ADE3327-7150-4BB8-87C3-76601FC67879} - System32\Tasks\{FD09F9C6-B58A-406E-8536-F1B82AF22BBE} => C:\Windows\system32\pcalua.exe -a D:\backupMaxtor80gb\data\i2pinstall_0.9.30_windows.exe -d D:\backupMaxtor80gb\data
Task: {A6D9A0B3-82A7-4937-910D-C86CC1F2F571} - System32\Tasks\{C61837B8-EABF-4B5E-B96E-3C6EC1BD2343} => C:\Windows\system32\pcalua.exe -a C:\datas\jxpiinstall(4).exe -d C:\datas
Task: {DAC363AC-634F-4411-8C93-334B4E476B58} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe
C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware
EmptyTemp:
*****************
"hplun.dll" => Value data not found.
"FF NewTabOverride: Mozilla\Firefox\Profiles\iv2ha52p.default-1508386149418 -> Disabled: _j5Members_@ext.ask.com" => not found
InstallerService => service not found.
McComponentHostService => service not found.
TrueKey => service not found.
TrueKeyScheduler => service not found.
TrueKeyServiceHelper => service not found.
"C:\Program Files\TrueKey" => not found
aswbdisk => service not found.
bcbus => service not found.
X6va037 => service not found.
ZAM => service not found.
ZAM_Guard => service not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21022CE6-BFE7-40E7-AAFA-15A6CC72356B} => key not found
"C:\Windows\System32\Tasks\{E140102B-F244-4775-9758-5FA77AFD8886}" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E140102B-F244-4775-9758-5FA77AFD8886} => key not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{213D38E2-E0E5-4EFB-88BC-AC61BF33552B} => key not found
"C:\Windows\System32\Tasks\{849B1E16-7952-40E5-887E-DAAD93154E62}" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{849B1E16-7952-40E5-887E-DAAD93154E62} => key not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{22DA9795-90BD-4731-AB6A-BD01A662D2F9} => key not found
"C:\Windows\System32\Tasks\{9C6CF1E7-9264-4314-BC30-F7778072B17B}" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9C6CF1E7-9264-4314-BC30-F7778072B17B} => key not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B11371B-11AB-415E-8185-32A4F05C4B0F} => key not found
"C:\Windows\System32\Tasks\{471AF2D6-FC39-423E-8A09-1CE6E304D7BB}" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{471AF2D6-FC39-423E-8A09-1CE6E304D7BB} => key not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4ADE3327-7150-4BB8-87C3-76601FC67879} => key not found
"C:\Windows\System32\Tasks\{FD09F9C6-B58A-406E-8536-F1B82AF22BBE}" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FD09F9C6-B58A-406E-8536-F1B82AF22BBE} => key not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6D9A0B3-82A7-4937-910D-C86CC1F2F571} => key not found
"C:\Windows\System32\Tasks\{C61837B8-EABF-4B5E-B96E-3C6EC1BD2343}" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C61837B8-EABF-4B5E-B96E-3C6EC1BD2343} => key not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DAC363AC-634F-4411-8C93-334B4E476B58} => key not found
"C:\Windows\System32\Tasks\McAfee Remediation (Prepare)" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee Remediation (Prepare) => key not found
"C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10733576 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 145068 B
Edge => 0 B
Chrome => 0 B
Firefox => 413244038 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 5986 B
juergen2 => 75828929 B
Administrator => 445349 B
RecycleBin => 0 B
EmptyTemp: => 477.2 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:21:53 ====
|
| Themen zu OTL scan auf BKA trojaner |
| administrator, adobe, bho, canon, cdrom, defender, error, explorer, explorer.exe, firefox, format, google, malwarebytes, microsoft, mozilla, opera, realtek, registry, scan, security, software, system32, trojaner, usb, windows, winlogon |
Baum-Darstellung