|
Rechnung mit MS DOS-Anhang geöffnet - Virus? Hey... meine Tante hat eine Rechnung bekommen, in der ein MS-Dos Anhang drin war und ich habe versucht diesen zu öffnen, was natürlich nicht funktioniert hat. Habe jetzt mal gegooglet und gesehen, dass das ein Virus sein kann. Sichtbar ist an meinen PC nichts passiert, sodass ich gerade angefangen habe Avira über meinen PC laufen zu lassen, was aber noch nichts gefunden hat. Irgendwie hab ich jetzt ziemlich Angst um meinen PC. Kann mir jemand helfen? |
Hi, Systemscan mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)
|
FRST: FRST Logfile: FRST Logfile: Code: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-06-2013 01--- --- --- Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16-06-2013 01 Ran by Vanessa at 2013-06-17 22:10:16 Run: Running from C:\Users\Vanessa\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Update for Microsoft Office 2007 (KB2508958) Acer Crystal Eye webcam Ver:1.1.81.402 (Version: 1.1.81.402) Acer ePower Management (Version: 4.05.3002) Acer eRecovery Management (Version: 4.05.3002) Acer GameZone Console (Version: 5.1.0.2) Acer Registration (Version: 1.02.3004) Acer ScreenSaver (Version: 1.0.3.0303) Acer Updater (Version: 1.01.3014) Acer VCM (Version: 4.05.3000) Acrobat.com (Version: 1.6.65) Adobe AIR (Version: 1.5.0.7220) Adobe Flash Player 10 ActiveX (Version: 10.0.22.87) Adobe Flash Player 11 Plugin (Version: 11.7.700.224) Adobe Reader 9.5.5 MUI (Version: 9.5.5) Alice Greenfingers Amazonia Apple Application Support (Version: 2.3.2) Apple Mobile Device Support (Version: 6.0.1.3) Apple Software Update (Version: 2.1.3.127) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.10) Avira Free Antivirus (Version: 13.0.0.3640) Bonjour (Version: 3.0.0.10) Chicken Invaders 2 Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000) Dairy Dash dm-Fotowelt Dream Day First Home ElsterFormular (Version: 13.4.0.10136) eSobi v2 (Version: 2.0.4.000274) Farm Frenzy 2 Free M4a to MP3 Converter 7.0 Free YouTube to MP3 Converter version 3.11.32.918 (Version: 3.11.32.918) Google Chrome (Version: 27.0.1453.110) Google Update Helper (Version: 1.3.21.145) Granny In Paradise Heroes of Hellas Identity Card (Version: 1.00.3001) iDump (Freeware) Build:31 Intel(R) Graphics Media Accelerator Driver (Version: 8.15.10.1930) Intel® Matrix Storage Manager iTunes (Version: 10.7.0.21) Java(TM) 6 Update 39 (Version: 6.0.390) Junk Mail filter update (Version: 14.0.8117.416) KODAK Share-Tastenanwendung (Version: 4.03.0000.0000) Launch Manager (Version: 2.1.03.w7) Merriam Websters Spell Jam Messenger Plus! 5 (Version: 5.11.0.760) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6012.5000) Microsoft Choice Guard (Version: 2.0.48.0) Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000) Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (Version: 14.0.5130.5003) Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000) Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Language Pack 2007 - German/Deutsch (Version: 12.0.6612.1000) Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1) Microsoft Office O MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000) Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000) Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office PowerPoint Viewer 2007 (German) (Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000) Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000) Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000) Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000) Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014) Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000) Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) Microsoft Office SharePoint Designer MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Suite Activation Assistant (Version: 2.9) Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000) Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office X MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Works (Version: 9.7.0621) Mozilla Firefox 20.0.1 (x86 de) (Version: 20.0.1) Mozilla Maintenance Service (Version: 20.0.1) Mozilla Thunderbird 10.0.2 (x86 de) (Version: 10.0.2) MSVCRT (Version: 14.0.1468.721) MyWinLocker (Version: 3.1.72.0) Norton Online Backup (Version: 1.2.0.36) OpenOffice.org 3.3 (Version: 3.3.9567) PhotoFiltre Pokémon Trading Card Game Online (Version: 1.0.0) QuickTime (Version: 7.73.80.64) Realtek High Definition Audio Driver (Version: 6.0.1.5888) Realtek USB 2.0 Card Reader (Version: 6.1.7100.30094) Skype™ 6.5 (Version: 6.5.158) Star Defender 4 Synaptics Pointing Device Driver (Version: 13.2.2.0) Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Update für Microsoft Office Excel 2007 Help (KB963678) Update für Microsoft Office Outlook 2007 Help (KB963677) Update für Microsoft Office Powerpoint 2007 Help (KB963669) Update für Microsoft Office Word 2007 Help (KB963665) Welcome Center (Version: 1.00.3004) Windows Live Anmelde-Assistent (Version: 5.000.818.5) Windows Live Call (Version: 14.0.8117.0416) Windows Live Communications Platform (Version: 14.0.8117.416) Windows Live Essentials (Version: 14.0.8117.0416) Windows Live Essentials (Version: 14.0.8117.416) Windows Live Fotogalerie (Version: 14.0.8117.416) Windows Live Mail (Version: 14.0.8117.0416) Windows Live Messenger (Version: 14.0.8117.0416) Windows Live Sync (Version: 14.0.8117.416) Windows Live Writer (Version: 14.0.8117.0416) Windows Live-Uploadtool (Version: 14.0.8014.1029) Windows-Treiberpaket - Eastman Kodak KODAK Digital Camera (01/29/2010 1.4.1.0) (Version: 01/29/2010 1.4.1.0) WinRAR 4.01 (32-Bit) (Version: 4.01.0) ==================== Restore Points ========================= 14-05-2013 09:31:43 Windows Update 17-05-2013 21:00:38 Windows Update 18-05-2013 22:55:58 Windows Update 19-05-2013 22:47:11 Windows Update 20-05-2013 21:37:07 Windows Update 24-05-2013 19:42:10 Windows Update 30-05-2013 19:45:48 Windows Update 03-06-2013 05:11:38 Windows Update 10-06-2013 18:13:25 Windows Update 14-06-2013 20:25:58 Windows Update 14-06-2013 21:43:35 Windows Update ==================== Scheduled Tasks (whitelisted) ============= Task: {0FE45701-9E78-4B43-BC08-8AA4EF73C75A} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer) Task: {11243634-390E-425B-A0D3-5ADD7C92B4AC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-11] (Adobe Systems Incorporated) Task: {2FEBAC37-5CAE-4EBF-9CD5-7CB3F70E6CA7} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation) Task: {36C55BDD-05D7-4C3F-B0D5-B6A3DB83FB81} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-17] (Google Inc.) Task: {5DEFDA88-BEC8-4AA0-BA0E-D729B2A1E503} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3108363083-3130797053-2280114062-1000UA => C:\Users\Vanessa\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-22] (Google Inc.) Task: {6EA2801A-DB6A-4112-9330-7B81C882DE12} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3108363083-3130797053-2280114062-1000Core => C:\Users\Vanessa\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-22] (Google Inc.) Task: {AF263A5B-1FA5-4E70-A270-BE9DBE513FA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-08-17] (Google Inc.) Task: {B24941CF-4C78-4684-B805-918E17F2296E} - System32\Tasks\{50DA2DF6-9F2A-4E94-ABE8-81DB27E81C1F} => C:\Program Files\Skype\Phone\Skype.exe [2013-06-03] (Skype Technologies S.A.) Task: {D8CDF8D3-66B1-4F04-94B2-B0E73C49610F} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3108363083-3130797053-2280114062-1000 Task: {E1D2E2CE-1C38-4D65-9091-16EFD8EC619C} - System32\Tasks\{10EF5062-FADE-4238-95E4-4EA61663B88F}-Kodak Share Button App Camera detect => C:\Program Files\Kodak\KODAK Share Button App\Listener.exe [2012-06-26] (Eastman Kodak Company) Task: {E8164C0D-216C-4B6B-9EB8-31BF958B8014} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo => C:\Windows\system32\gatherNetworkInfo.vbs [2009-06-10] () Task: {EB807086-75FA-4075-99FD-9BA69FD45F53} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {EF069F2C-DE70-481F-9D9A-EC73C7FFAE27} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {FCFCBF5A-1D2A-4174-8744-CEF4CF66B17E} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2009-07-14] (Microsoft Corporation) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/14/2013 10:08:29 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 82061190 Error: (06/14/2013 10:08:29 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 82061190 Error: (06/14/2013 10:08:29 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (06/14/2013 10:08:27 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 82060082 Error: (06/14/2013 10:08:27 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 82060082 Error: (06/14/2013 10:08:27 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (06/14/2013 10:08:26 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 82058569 Error: (06/14/2013 10:08:26 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 82058569 Error: (06/14/2013 10:08:26 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (06/14/2013 10:08:25 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 82057274 System errors: ============= Error: (06/17/2013 09:09:55 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: cdrom Error: (06/17/2013 08:03:50 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: cdrom Error: (06/17/2013 07:20:13 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst Windows Update konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden. Error: (06/17/2013 07:11:00 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: cdrom |
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
|
Combofix Logfile: Code: ComboFix 13-06-18.02 - Vanessa 18.06.2013 20:46:22.1.2 - x86A36C5E4F47E84449FF07ED3517B43A31 |
Combofix-Skript
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
|
Ich war nicht ganz sicher, ob ich das alles machen soll und dann posten oder erst alles einzeln machen und die Sachen einzeln posten^^° Vielen Dank für deine Hilfe :) Combofix Logfile: Code: ComboFix 13-06-18.02 - Vanessa 19.06.2013 16:17:26.2.2 - x86A36C5E4F47E84449FF07ED3517B43A31 |
Alles machen, dann alles zusammen posten :) |
Okay, dann hier alles =) Combofix Logfile: Code: ComboFix 13-06-18.02 - Vanessa 19.06.2013 16:17:26.2.2 - x86AdwCleaner Logfile: Code: # AdwCleaner v2.303 - Datei am 19/06/2013 um 16:49:45 erstellt~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 4.9.4 (05.06.2013:1) OS: Windows 7 Starter x86 Ran by Vanessa on 19.06.2013 at 17:04:00,48 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim ~~~ Files ~~~ Folders ~~~ FireFox Emptied folder: C:\Users\Vanessa\AppData\Roaming\mozilla\firefox\profiles\31oqbr3c.default-1359836064962\minidumps [6 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 19.06.2013 at 17:08:07,85 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Was hab ich da jetzt eigentlich alles gemacht? :D Ist es arg schlimm? |
Wir sind fast durch :) ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST Log. Noch Probleme? :) |
Danke :) Hoffe, das ist alles richtig so^^° ESETSmartInstaller@High as downloader log: all ok esets_scanner_update returned -1 esets_gle=12 ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=58b6e7fa4c7f4d49aacab815adb8b9f7 # engine=14117 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2013-06-20 04:14:53 # local_time=2013-06-20 06:14:53 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1033 # osver=6.1.7600 NT # compatibility_mode=5893 16776573 100 94 75303 123376084 0 0 # scanned=165902 # found=2 # cleaned=0 # scan_time=9830 sh=CC0FA171E296FA23E03DDE84F7C36D9D18676F4B ft=1 fh=c71c0011cf03f3bb vn="a variant of Win32/Kryptik.BDWD trojan" ac=I fn="C:\Qoobox\Quarantine\C\Users\Vanessa\AppData\Roaming\Aarvavarlu\rizrzsbjkxv.exe.vir" sh=5903B49DE433C7E794E5E53A31C85B8845272A55 ft=0 fh=0000000000000000 vn="Win32/Trustezeb.C trojan" ac=I fn="C:\Users\Vanessa\Downloads\Mahnung Kerstin Lindemann vom 17.06.2013 Inkasso QVC Shop GmbH.zip" Results of screen317's Security Check version 0.99.64 Windows 7 x86 (UAC is enabled) Out of date service pack!! Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Java(TM) 6 Update 39 Java version out of Date! Adobe Flash Player 10 Flash Player out of Date! Adobe Flash Player 11.7.700.224 Adobe Reader 9 Adobe Reader out of Date! Mozilla Firefox 20.0.1 Firefox out of Date! Mozilla Thunderbird 10.0.2 Thunderbird out of Date! Google Chrome 27.0.1453.110 Google Chrome 27.0.1453.94 ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: Code: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-06-2013 01--- --- --- Ich weiß leider nicht, wie ich das in einen Scrollkasten kriege... Sorry ._." |
Zitat:
Alle rot markierte Software, imkl. Windows ansich, aus dem Log von Securitycheck bitte umgehend updaten! Noch Probleme? :) |
Und wenn ich das runter hab und alle Sachen geupdatet habe (ich update immer, wenn mir das Programm ein Update anbietet und die machen das nicht... Wie update ich?^^°) dann ist mein PC wieder Keimfrei? Und Windows will sich auch nicht updaten... Zitat:
|
Schaun mer mal :) Downloade dir bitte  Farbar Service Scanner
Poste bitte den Inhalt hier. |
Farbar Service Scanner Version: 16-06-2013 Ran by Vanessa (administrator) on 21-06-2013 at 21:58:59 Running from "C:\Users\Vanessa\Desktop" Windows 7 Starter (X86) Boot Mode: Normal **************************************************************** Internet Services: ============ Connection Status: ============== Localhost is accessible. LAN connected. Google IP is accessible. Google.com is accessible. Attempt to access Yahoo.com returned error: Yahoo.com is offline Windows Firewall: ============= Firewall Disabled Policy: ================== System Restore: ============ System Restore Disabled Policy: ======================== Action Center: ============ Windows Update: ============ Windows Autoupdate Disabled Policy: ============================ Windows Defender: ============== WinDefend Service is not running. Checking service configuration: The start type of WinDefend service is set to Demand. The default start type is Auto. The ImagePath of WinDefend service is OK. The ServiceDll of WinDefend service is OK. Windows Defender Disabled Policy: ========================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender] "DisableAntiSpyware"=DWORD:1 Other Services: ============== File Check: ======== C:\Windows\system32\nsisvc.dll => MD5 is legit C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit C:\Windows\system32\dhcpcore.dll => MD5 is legit C:\Windows\system32\Drivers\afd.sys => MD5 is legit C:\Windows\system32\Drivers\tdx.sys => MD5 is legit C:\Windows\system32\Drivers\tcpip.sys [2013-02-14 18:33] - [2013-01-04 06:55] - 1287528 ____A (Microsoft Corporation) BBCEAEFF1FD72A026F827CBB2F4AA8AD C:\Windows\system32\dnsrslvr.dll => MD5 is legit C:\Windows\system32\mpssvc.dll => MD5 is legit C:\Windows\system32\bfe.dll => MD5 is legit C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit C:\Windows\system32\SDRSVC.dll => MD5 is legit C:\Windows\system32\vssvc.exe => MD5 is legit C:\Windows\system32\wscsvc.dll [2011-08-17 15:49] - [2010-12-21 07:38] - 0073728 ____A (Microsoft Corporation) A661A76333057B383A06E65F0073222F C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit C:\Windows\system32\wuaueng.dll => MD5 is legit C:\Windows\system32\qmgr.dll => MD5 is legit C:\Windows\system32\es.dll => MD5 is legit C:\Windows\system32\cryptsvc.dll [2012-10-10 23:06] - [2012-06-02 06:45] - 0139264 ____A (Microsoft Corporation) F2FDE6C8DBAAD44CC58D1E07E4AF4EED C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit C:\Windows\system32\ipnathlp.dll => MD5 is legit C:\Windows\system32\iphlpsvc.dll => MD5 is legit C:\Windows\system32\svchost.exe => MD5 is legit C:\Windows\system32\rpcss.dll => MD5 is legit **** End of log **** Bin ich denn jetzt eigentlich wieder virenfrei oder hab ich noch was? Du bist auf jeden Fall schon mal mein Held :) |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 08:37 Uhr. |
Copyright ©2000-2025, Trojaner-Board
WARNUNG für die MITLESER: 
