Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
"Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"

"Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"


Log-Analyse und Auswertung: "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 08.02.2012, 13:24   #14
Tinson912
 
"Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" - Standard

"Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"


So nach einem Reboot:
Code:
ATTFilter
 All processes killed
========== OTL ==========
No active process named Program Files was found!
Service ICQ Service stopped successfully!
Service ICQ Service deleted successfully!
C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-21-300128274-3922132889-478135804-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-21-300128274-3922132889-478135804-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-300128274-3922132889-478135804-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}\ deleted successfully.
C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll moved successfully.
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.3&q=" removed from browser.search.defaulturl
Prefs.js: "chr-greentree_ff&type=685749&ilc=12" removed from browser.search.param.yahoo-fr
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: "hxxp://www.google.de/" removed from browser.startup.homepage
Prefs.js: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.3&q=" removed from keyword.URL
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com\searchplugins folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com\defaults\preferences folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com\defaults folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com\chrome\temp folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com\chrome\skin folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com\chrome\content folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com\chrome folder moved successfully.
C:\Users\Tinson\AppData\Roaming\mozilla\Firefox\Profiles\up7qbn9d.default\extensions\toolbar@ask.com folder moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-1.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-10.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-11.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-12.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-13.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-2.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-3.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-4.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-5.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-6.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-7.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-8.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin-9.xml moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin.gif moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin.src moved successfully.
C:\Users\Tinson\AppData\Roaming\Mozilla\Firefox\Profiles\up7qbn9d.default\searchplugins\icqplugin.xml moved successfully.
C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\WTXPCOM\components folder moved successfully.
C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\WTXPCOM folder moved successfully.
C:\PROGRAM FILES (X86)\IOBIT TOOLBAR\FF\chrome\skin folder moved successfully.
C:\PROGRAM FILES (X86)\IOBIT TOOLBAR\FF\chrome\locale\EN-US folder moved successfully.
C:\PROGRAM FILES (X86)\IOBIT TOOLBAR\FF\chrome\locale folder moved successfully.
C:\PROGRAM FILES (X86)\IOBIT TOOLBAR\FF\chrome\content folder moved successfully.
C:\PROGRAM FILES (X86)\IOBIT TOOLBAR\FF\chrome folder moved successfully.
C:\PROGRAM FILES (X86)\IOBIT TOOLBAR\FF folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}\ not found.
File C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}\ not found.
File C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64182481-4F71-486b-A045-B233BD0DA8FC}\ deleted successfully.
C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll moved successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}\ not found.
File C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}\ deleted successfully.
C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9}\ deleted successfully.
C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-300128274-3922132889-478135804-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3cb4c019-d64c-11e0-9660-14feb5a17980}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3cb4c019-d64c-11e0-9660-14feb5a17980}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3cb4c019-d64c-11e0-9660-14feb5a17980}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3cb4c019-d64c-11e0-9660-14feb5a17980}\ not found.
File E:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3cb4c021-d64c-11e0-9660-14feb5a17980}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3cb4c021-d64c-11e0-9660-14feb5a17980}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3cb4c021-d64c-11e0-9660-14feb5a17980}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3cb4c021-d64c-11e0-9660-14feb5a17980}\ not found.
File E:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{514525bd-d651-11e0-9f6d-14feb5a17980}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{514525bd-d651-11e0-9f6d-14feb5a17980}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{514525bd-d651-11e0-9f6d-14feb5a17980}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{514525bd-d651-11e0-9f6d-14feb5a17980}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{65829f77-d64d-11e0-9ffd-14feb5a17980}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{65829f77-d64d-11e0-9ffd-14feb5a17980}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{65829f77-d64d-11e0-9ffd-14feb5a17980}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{65829f77-d64d-11e0-9ffd-14feb5a17980}\ not found.
File E:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{94c54c6c-f813-11e0-b183-14feb5a17980}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{94c54c6c-f813-11e0-b183-14feb5a17980}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{94c54c6c-f813-11e0-b183-14feb5a17980}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{94c54c6c-f813-11e0-b183-14feb5a17980}\ not found.
File E:\LaunchU3.exe -a not found.
========== FILES ==========
C:\Program Files (x86)\ICQ6Toolbar folder moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56475 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Public
 
User: Tinson
->Temp folder emptied: 22665958 bytes
->Temporary Internet Files folder emptied: 7262714 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 272757279 bytes
->Google Chrome cache emptied: 8452894 bytes
->Flash cache emptied: 59084 bytes
 
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1047516 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67832 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 759 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 298,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.31.0 log created on 02082012_130536

Files\Folders moved on Reboot...
C:\Users\Tinson\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Tinson\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IKM5A15M\api[1].htm moved successfully.
C:\Users\Tinson\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY8C4KYR\background-banner-middle-v9a[1].jpg moved successfully.
C:\Users\Tinson\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY8C4KYR\background-banner-right-v9a[1].jpg moved successfully.
C:\Users\Tinson\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY8C4KYR\background_banner_green_50_v9a[1].jpg moved successfully.
C:\Users\Tinson\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2BFC05ZD\background_button_green_full[1].png moved successfully.
C:\Users\Tinson\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\12QR9AM2\api[1].htm moved successfully.

Registry entries deleted on Reboot...

 

Themen zu "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"
.com, achtung!, antivirus, autorun, avast antivirus, bho, bildschirm, desktop, document, error, firefox, geld, helper, home, iobit, kaspersky, logfile, malware, nvpciflt.sys, nvstor.sys, object, pando media booster, plug-in, programm, realtek, registry, required, rundll, scan, schwarzer bildschirm, secunia psi, senden, software, super, trojaner/virus, usb, webcheck, windows


« Windows gesperrt - Herunterladen und Bezahlen 50 € - Kapersky ...etc. Version | GEMA_ Virus nix geht mehr »


Ähnliche Themen: "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"


  1. Trojaner-Befall: "Achtung - Ihr Windows wurde aus Sicherheitsgründen gesperrt.."
    Log-Analyse und Auswertung - 26.03.2012 (9)
  2. Trojaner, "Achtung Ihr Windows wurde aus Sicherheitsgründen gesperrt"
    Log-Analyse und Auswertung - 14.03.2012 (5)
  3. "Achtung! Aus Sicherheitsgründen wurde Windows System blockiert"
    Plagegeister aller Art und deren Bekämpfung - 15.02.2012 (8)
  4. "Achtung! Aus Sicherheitsgründen wurde Windows System blockiert"
    Log-Analyse und Auswertung - 14.02.2012 (1)
  5. "Achtung! Windows wurde aus Sicherheitsgründen gesperrt..."
    Plagegeister aller Art und deren Bekämpfung - 10.02.2012 (18)
  6. "Achtung: Aus Sicherheitsgründen wurde ihr Windowssystem gesperrt."
    Log-Analyse und Auswertung - 09.02.2012 (2)
  7. Ein weiteres "Achtung aus Sicherheitsgründen wurde ihr Windows gespeert" Opfer
    Log-Analyse und Auswertung - 08.02.2012 (4)
  8. [2x] Ein weiteres "Achtung aus Sicherheitsgründen wurde ihr Windows gespeert" Opfer
    Mülltonne - 07.02.2012 (1)
  9. "Achtung - Aus Sicherheitsgründen wurde Windows blockiert" OTL LOG bereits vorhanden
    Plagegeister aller Art und deren Bekämpfung - 26.01.2012 (17)
  10. Meldung: "Achtung! Aus Sicherheitsgründen wurde ihr Windowssystem gesperrt"
    Log-Analyse und Auswertung - 24.01.2012 (40)
  11. "Achtung! Aus Sicherheitsgründen wurde ihr Windowssystem gesperrt"-Meldung blockiert Benutzerkonto
    Log-Analyse und Auswertung - 16.01.2012 (9)
  12. "Achtung! Aus Sicherheitsgründen wurde ihr Windowssystem gesperrt!"
    Log-Analyse und Auswertung - 05.01.2012 (22)
  13. Virus/Trojaner "Achtung! Windows wurde aus Sicherheitsgründen gesperrt"
    Log-Analyse und Auswertung - 29.12.2011 (13)
  14. "Achtung! Aus Sicherheitsgründen wurde ihr System gesperrt"
    Log-Analyse und Auswertung - 29.12.2011 (3)
  15. "Achtung! Aus Sicherheitsgründen wurde ihr Windowssystem gesperrt!"
    Log-Analyse und Auswertung - 28.12.2011 (11)
  16. "Achtung! Aus Sicherheitsgründen wurde ihr Windowssystem gesperrt!" OTL-Analyse
    Log-Analyse und Auswertung - 28.12.2011 (1)
  17. "Achtung! Aus Sicherheitsgründen wurde ihr Windowssystem gesperrt"-Meldung blockiert Benutzerkonto
    Plagegeister aller Art und deren Bekämpfung - 18.12.2011 (9)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" - So nach einem Reboot: Code: Alles auswählen Aufklappen ATTFilter All processes killed ========== OTL ========== No active process named Program Files was found! Service ICQ Service stopped successfully! Service ICQ - "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen"...
Archiv
Du betrachtest: "Achtung! Windows wurde aus Sicherheitsgründen gesperrt... 50 € überweisen" auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19