| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista]Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
28.01.2013, 15:02
| #31 |
 | ![TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] - Standard](images/icons/icon1.gif){kind=icon} TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hi Cosinus, ok, mach ich, vielen Dank! Und dann werd ich mir noch eine neue Live-CD erstellen - die erste hatte ich von dem Rechner erstellt, der das Virenproblem hatte (oder hat).  (Ich hatte mich an die Anleitung Daten sichern mit Parted Magic gehalten, da steht das nicht so explizit - im Gegensatz zu dem Link in Deiner Signatur, wo steht, dass man das unbedingt von einem sauberen Rechner aus machen sollte.)lg, me. |
|
28.01.2013, 15:31
| #32 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista]Zitat:
 ) injiziert 
__________________ |
|
03.02.2013, 18:28
| #33 |
| | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hi Cosinus,
__________________ok, vielen Dank (vielleicht bin ich auch schon etwas paranoid).  Apropos paranoid:  Ich mache gerade eine Datensicherung mit Parted Magic. Und wo ich schon einmal dabei bin, habe ich die gerade gesicherten Daten auf dem Stick mit dem enthaltenen Virenscanner überprüft. Er meldet folgende Funde:- NokiaAll.exe -> PUA.Win32.Packer.BorlandPascal-1 - NokotoSolutions.exe -> PUA.Win32.Packer.BorlandCpp-7 - Rechnung.pdf -> PUA.Script.PDF.EmbeddedJS-1 - Katalog.pdf -> Heuristisc.Encrypted.PDF - ausfüllbares Formular 1.pdf -> PUA.Script.PDF.EmbeddedJS-1 - ausfüllbares Formular 2.pdf -> PUA.Script.PDF.EmbeddedJS-1 Kannst Du mir sagen, was das zu bedeuten hat? Löschen? Quarantäne? lg, me. |
|
03.02.2013, 22:50
| #34 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Log dazu bitte komplett posten
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.02.2013, 23:58
| #35 |
| | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hallo Cosinus, wo finde ich bei dem Virus Scanner (ClamTk) die Log-Datei? Oder ist das die History? Aber da wird jede einzelne gescannte Datei aufgeführt, auch die ohne Funde, das dürfte wohl zu lang sein. lg, me. Hallo Cosinus, laut meiner Suche scheint das tatsächlich die Log-Datei zu sein. Ich poste mal nur die Funde aus der History, sonst wird das zuviel. Nachdem es auf dem Stick Funde gab, hab ich auch gleich die C- & D-Platte gescannt.Stick (auf den ich gerade Daten gesichert hatte): Code:
ATTFilter Found 6 possible threats (3158 files scanned).
/media/sdc1/Fotos/.../NokiaAll.exe PUA.Win32.Packer.BorlandPascal-1
/media/sdc1/Fotos/.../NokotoSolutions.exe PUA.Win32.Packer.BorlandCpp-7
/media/sdc1/Daten/.../Rechnung.PDF PUA.Script.PDF.EmbeddedJS-1
/media/sdc1/Daten/.../Katalog.pdf Heuristics.Encrypted.PDF
/media/sdc1/Daten/.../Formular 1.pdf PUA.Script.PDF.EmbeddedJS-1
/media/sdc1/Daten/.../Formular 2.pdf PUA.Script.PDF.EmbeddedJS-1
Code:
ATTFilter Found 393 possible threats (127043 files scanned).
/media/OS/.../drivers/R226903/ISSetup.dll PUA.Packed.PECompact-1
/media/OS/.../drivers/R226903/WDM/CTAPO32.dll PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Download/casio/German/Appl/MyBoxInstaller/SETUP/instmsia.exe PUA.Win32.Packer.Armadillo-59
/media/OS/Program Files/Microsoft Office/.../1031/VBAFPW10.CHM PUA.HTML.Infected.WebPage
/media/OS/Program Files/Microsoft Office/.../1033/OCLTINT.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../OLKFSTUB.DLL PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Microsoft Office/.../EXCEL.EXE PUA.Win32.Packer.Expressor-26
/media/OS/Program Files/Microsoft Office/.../GRAPH.EXE PUA.Win32.Packer.Expressor-26
/media/OS/Program Files/Microsoft Office/.../MSOSVFBR.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../MSQRY32.EXE PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../MSTORDB.EXE PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../MULTIMGR.DLL PUA.Win32.Packer.ProtectSharewar-1
/media/OS/Program Files/Microsoft Office/.../VS Runtime/msvcr70.dll PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Download/casio/German/Appl/MyBoxInstaller/SETUP/instmsiw.exe PUA.Win32.Packer.Armadillo-59
/media/OS/Program Files/Microsoft Office/.../Xlators/FL21WIN.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../Xlators/HG30DOS.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../Xlators/PP4X322.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../SOA.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../OWSSUPP.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../PNGSETUP.EX_ PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Microsoft Office/.../POWERPNT.EXE PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../PRTF9.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft Office/.../PTXT9.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Microsoft SQL Server Compact Edition/v3.5/sqlceme35.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Download/casio/German/Appl/MyBoxInstaller/SETUP/OPTION/Function/Function.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Microsoft Works/custsat.dll PUA.Win32.Packer.Msvcpp
/media/OS/Program Files/Microsoft Works/WkCalRem.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Microsoft Works/lnchtour.exe PUA.Win32.Packer.Upx-28
/media/OS/Program Files/Microsoft Works/MSWorks.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Mozilla Thunderbird/nspr4.dll PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/Core/DriveControl/Sonic/Drivers/pxhpinst.exe PUA.Win32.Packer.SiliconRealmsIn-1
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/Core/Spec/AVCHD/BDCore/meiAc3Enc.ax PUA.Win32.Packer.HardlockDongle-1
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/Core/Spec/Uploader/UploadWrap.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/Ltkrn15u.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/meiAc3Enc.ax PUA.Win32.Packer.HardlockDongle-1
/media/OS/Download/casio/German/Appl/StartViewer.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/mme1al2c.dll PUA.Win32.Packer.HardlockDongle-1
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/mme2spc.dll PUA.Win32.Packer.HardlockDongle-1
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/mme2vc.dll PUA.Win32.Packer.HardlockDongle-1
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/mse2vc.dll PUA.Win32.Packer.HardlockDongle-1
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/SceneCutEditor.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Panasonic/HD Writer AE 3.0/StillsPlayer.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Panasonic/PHOTOfunSTUDIO 6.0/Core/Spec/Uploader/UploadWrap.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Panasonic/PHOTOfunSTUDIO 6.0/Ltkrn15u.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Panasonic/PHOTOfunSTUDIO 6.0/PFSTools/Panorama/PhQtvr.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Panasonic/PHOTOfunSTUDIO 6.0/PFSTools/Panorama/PhStitch.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Download/casio/German/Start.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Panasonic/PHOTOfunSTUDIO 6.0/SceneCutEditor.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/PDFCreator/GS9.05/gs9.05/Bin/gsdll32.dll PUA.Win32.Packer.Psadobefont
/media/OS/Program Files/PDFCreator/PDFCreatorRestart.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/PDFCreator/unins000.exe PUA.Win32.Packer.Vip
/media/OS/Program Files/QuickTime/PictureViewer.exe PUA.Packed.Armadillo-1
/media/OS/Program Files/QuickTime/QTSystem/QuickTimeUpdateHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Realtek/Audio/HDA/AERTSrv.exe PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Program Files/Roxio/VideoCore 9/ImageSource.ax PUA.Win32.Packer.Armadillo-92
/media/OS/Program Files/Skype/Updater/Updater.exe PUA.Win32.Packer.Upx-26
/media/OS/Program Files/VLC/plugins/codec/libavcodec_plugin.dll PUA.Win32.Packer.InterplaysMveFi
/media/OS/Download/casio/German/Vendor/MBStart.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/VLC/plugins/demux/libmod_plugin.dll PUA.Win32.Packer.AsylumMusicFile
/media/OS/Program Files/VLC/plugins/demux/libvoc_plugin.dll PUA.Win32.Packer.CreativeAudioFi
/media/OS/Program Files/VLC/uninstall.exe PUA.Win32.Packer.Upx-57
/media/OS/Program Files/Watermark Image/unins000.exe PUA.Win32.Packer.Vip
/media/OS/Program Files/HP/HP LaserJet/Setup.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/InstallShield Installation Information/{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}/ISSetup.dll PUA.Win32.Packer.Upx-57
/media/OS/Program Files/InstallShield Installation Information/{5678B15A-504C-4A79-8554-05488A206E41}/ISSetup.dll PUA.Packed.PECompact-1
/media/OS/Program Files/InstallShield Installation Information/{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}/ISSetup.dll PUA.Win32.Packer.Upx-57
/media/OS/Program Files/InstallShield Installation Information/{B62A8A6F-5E48-4336-BF13-1632D5921872}/ISSetup.dll PUA.Packed.PECompact-1
/media/OS/Program Files/IrfanView/iv_uninstall.exe PUA.Win32.Packer.Upx-53
/media/OS/Download/casio/German/Vendor/OriginalData/HAMigration/HAMigration.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/IrfanView/i_view32.exe PUA.Win32.Packer.Upx-53
/media/OS/Program Files/IrfanView/Languages/Deutsch.dll PUA.Win32.Packer.Upx-53
/media/OS/Program Files/IrfanView/Plugins/Ansi2Unicode.dll PUA.Win32.Packer.Upx-53
/media/OS/Program Files/IrfanView/Plugins/Effects.dll PUA.Win32.Packer.Upx-57
/media/OS/Program Files/IrfanView/Plugins/Icons.dll PUA.Win32.Packer.Upx-57
/media/OS/Program Files/IrfanView/Plugins/Paint.dll PUA.Win32.Packer.Upx-57
/media/OS/Program Files/IrfanView/Plugins/Slideshow.exe PUA.Win32.Packer.Upx-28
/media/OS/Program Files/IrfanView/Plugins/Video.dll PUA.Win32.Packer.Upx-53
/media/OS/Program Files/JAM Software/TreeSize Free/TreeSizeFree.DE PUA.Win32.Packer.Pequake-3
/media/OS/Program Files/JAM Software/TreeSize Free/TreeSizeFree.exe PUA.Win32.Packer.Upx-28
/media/OS/Download/casio/German/Vendor/OriginalData/HAMigration/qtmc.dll PUA.Win32.Packer.Asprotect-2
/media/OS/Program Files/MAGIX/Common/Database/addoninstall.exe PUA.Win32.Packer.GlbsInstallStub
/media/OS/Program Files/MAGIX/Common/Database/bin/FBINTL2.dll PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Program Files/MAGIX/Common/Database/intl/fbintl2.dll PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Program Files/Malwarebytes' Anti-Malware/unins000.exe PUA.Win32.Packer.Vip
/media/OS/ProgramData/Adobe/Reader/9.4/ARM/25636/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.4/ARM/25636/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.4/ARM/25636/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/10754/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/10754/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/10754/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Download/casio/German/Vendor/UnInstStart.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/10795/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/10795/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/10795/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/12815/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/12815/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/12815/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/14226/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/14226/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/14226/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/14721/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Download/Google_Updater.exe PUA.Packed.PECompact-1
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/14721/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/14721/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/19203/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/19203/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/19203/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/20079/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/20079/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/20079/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/26402/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/26402/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Download/antivir_workstation_winu_de_h.exe PUA.Win32.Packer.RarSfx
/media/OS/Download/PartitionMagic7/ENPartitionMagic701.exe PUA.Win32.Packer.BorlandCpp-7
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/26402/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/27697/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/27697/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/27697/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/27835/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/27835/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/27835/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/28576/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/28576/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/28576/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Download/PartitionMagic7/vfdfolders.exe PUA.Win32.Packer.Winzip
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/5134/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/5134/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/5134/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/6642/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/6642/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/6642/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/8191/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/8191/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/8191/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/9903/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Download/Thunderbird Setup 3.1.exe PUA.Win32.Packer.Upx-28
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/9903/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Reader/9.5/ARM/9903/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Adobe/Setup/{AC76BA86-7AD7-1031-7B44-A95000000001}/AcroRead.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/ProgramData/Apple/Installer Cache/AppleApplicationSupport 1.3.2/AppleApplicationSupport.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/ProgramData/Apple/Installer Cache/AppleApplicationSupport 2.0.1/AppleApplicationSupport.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/ProgramData/Apple/Installer Cache/AppleApplicationSupport 2.1.5/AppleApplicationSupport.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/ProgramData/Avira/AntiVir Desktop/TEMP/SELFUPDATE/update.exe PUA.Win32.Packer.SetupExeSection
/media/OS/ProgramData/Microsoft/Windows Defender/Definition Updates/Backup/mpengine.dll PUA.Win32.Packer.Lzexe
/media/OS/ProgramData/Microsoft/Windows Defender/Definition Updates/Default/MpEngine.dll PUA.Win32.Packer.Lzexe
/media/OS/ProgramData/Microsoft/Windows Defender/Definition Updates/{28F26288-9851-482B-AE03-1F580349B5BC}/mpengine.dll PUA.Win32.Packer.Lzexe
/media/OS/Drivers/video/R177883/igfxcpl.cpl PUA.Win32.Packer.ArmadilloMinimumProtection
/media/OS/ProgramData/Skype/{EA17F4FC-FDBF-4CF8-A529-2D983132D053}/Skype.msi PUA.Win32.Packer.Upx-26
/media/OS/totalcmd/CABRK.DLL PUA.Win32.Packer.WatcomCCpp-1
/media/OS/totalcmd/FRERES32.DLL PUA.Win32.Packer.BorlandDelphi-2
/media/OS/totalcmd/TOTALCMD.EXE PUA.Win32.Packer.Upx-28
/media/OS/totalcmd/UNRAR.DLL PUA.Win32.Packer.BorlandCpp-9
/media/OS/Users/.../AppData/LocalLow/Sun/Java/AU/au.cab PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/assembly/NativeImages_v2.0.50727_32/mcupdate/405b5ffd76ec16c2eeb956127e15e997/mcupdate.ni.exe PUA.Win32.Packer.Starforce-1
/media/OS/Windows/assembly/NativeImages_v2.0.50727_32/mcupdate/c50a02ddb36e03278e2d2b9923696d8b/mcupdate.ni.exe PUA.Win32.Packer.Starforce-1
/media/OS/Windows/assembly/NativeImages_v2.0.50727_32/System.ServiceProce#/56e40fa3c6d2f2a4200ee4e11fce57e7/System.ServiceProcess.ni.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/assembly/NativeImages_v2.0.50727_32/System.ServiceProce#/6525d5b1a3b2cbea3301959a47b353c2/System.ServiceProcess.ni.dll PUA.Win32.Packer.Starforce-1
/media/OS/Program Files/ACD Systems/ACDSee Pro/2.0/ACDSeePro2.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/assembly/NativeImages_v2.0.50727_32/SMDiagnostics/949339bed597380b8fb6dd2dc97d8006/SMDiagnostics.ni.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/assembly/NativeImages_v2.0.50727_32/SMDiagnostics/bb8af3cf69f1337efda4e810b6751b89/SMDiagnostics.ni.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/assembly/NativeImages_v4.0.30319_32/System.Data.Entity/52588e18078ea592ce9cc2399b624a15/System.Data.Entity.ni.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/Downloaded Installations/{BBDA860C-E4CC-4246-93D2-7E1E7698BB91}/NETGEAR WG111v3 wireless USB 2.0 adapter.msi PUA.Win32.Packer.MsVisualCpp-2
/media/OS/Windows/Microsoft.NET/Framework/v2.0.50727/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Microsoft.NET/Framework/v3.5/Microsoft .NET Framework 3.5 SP1/vs_setup.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/System32/accesor.dll Win.Trojan.Fakesmoke-52
/media/OS/Windows/System32/PSHED.DLL PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/System32/debug.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/System32/diskcopy.dll PUA.Win32.Packer.Exepack
/media/OS/Program Files/ACD Systems/ACDSee Pro/2.0/ACDSeeQVPro2.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/System32/drivers/mskssrv.sys PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/System32/drivers/nsiproxy.sys PUA.Win32.Packer.Pequake-3
/media/OS/Windows/System32/exe2bin.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/System32/fastopen.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/System32/DriverStore/FileRepository/avmisdnc.inf_7202c3cf/avmenum.dll PUA.Win32.Packer.Msvcpp
/media/OS/Windows/System32/DriverStore/FileRepository/hdadell.inf_fca8d40c/AERTSrv.exe PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Windows/System32/DriverStore/FileRepository/hdadell.inf_fca8d40c/MBAPO32.dll PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/System32/DriverStore/FileRepository/netvgx86.inf_911bce59/getnd6.sys PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Windows/System32/DriverStore/FileRepository/prnhp001.inf_2ade4966/I386/HPZ6RLHN.DLL PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/System32/DriverStore/FileRepository/prnhp001.inf_5641fa75/I386/HPZ6RLHN.DLL PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Program Files/ACD Systems/ACDSee Pro/2.0/ACDSeeSR.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/System32/DriverStore/FileRepository/s3glhx.inf_0ba08724/S3GUModeDX32.dll PUA.Win32.Packer.Expressor-20
/media/OS/Windows/System32/DriverStore/FileRepository/s3glhx.inf_d59aaf0f/S3GUModeDX32.dll PUA.Win32.Packer.Expressor-20
/media/OS/Windows/System32/DriverStore/FileRepository/igdlh.inf_feb3cd23/igfxcpl.cpl PUA.Win32.Packer.ArmadilloMinimumProtection
/media/OS/Windows/System32/KBDLT2.DLL PUA.Win32.Packer.Starforce-1
/media/OS/Windows/System32/igfxcpl.cpl PUA.Win32.Packer.ArmadilloMinimumProtection
/media/OS/Windows/System32/MBAPO32.dll PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/System32/logon.scr PUA.Win32.Packer.Starforce-1
/media/OS/Windows/System32/mem.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/System32/msvcr100.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/System32/NlsData0013.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/ACD Systems/ACDSee Pro/2.0/SoundLib.dll PUA.Win32.Packer.CreativeAudioFi
/media/OS/Windows/System32/nlsfunc.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/System32/NlsLexicons0001.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/System32/NlsLexicons000a.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/System32/PCDLIB32.DLL PUA.Win32.Packer.BorlandDelphi-2
/media/OS/Windows/System32/pxhpinst.exe PUA.Win32.Packer.SiliconRealmsIn-1
/media/OS/Windows/System32/share.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/System32/spool/drivers/w32x86/3/PS5UI.DLL PUA.Win32.Packer.Msvcpp
/media/OS/Windows/System32/spool/drivers/w32x86/3/PSCRIPT5.DLL PUA.Win32.Packer.Msvcpp
/media/OS/Windows/System32/wtsapi32.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/System32/DLLRES32.dll PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Program Files/Adobe/Reader 9.0/Reader/plug_ins/Annotations/Stamps/DEU/Dynamic.pdf PUA.Script.PDF.EmbeddedJavaScript
/media/OS/Windows/System32/edit.com PUA.Win32.Packer.Exepack
/media/OS/Windows/System32/edlin.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_mem.exe_e5748c01 PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_share.exe_bbb4488d PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_debug.exe_bdafe3af PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_edit.com_fc89ce91 PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_edlin.exe_420aa87c PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_exe2bin.exe_584b170f PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_fastopen.exe_34b8aa0e PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-pshed_31bf3856ad364e35_6.0.6002.18005_none_5dde5c5c2a365a60_pshed.dll_f6ac239e PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Program Files/Adobe/Reader 9.0/Reader/plug_ins/Annotations/Stamps/ENU/Dynamic.pdf PUA.Script.PDF.EmbeddedJavaScript
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8_nlsfunc.exe_68d576d3 PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-kernelstreamingsupport_31bf3856ad364e35_6.0.6001.18000_none_61f4bb21dabbb034_mskssrv.sys_10d1b7c8 PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-t..services-publicapis_31bf3856ad364e35_6.0.6001.18000_none_c730eb5dc6553c1b_wtsapi32.dll_470d4d41 PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/Backup/x86_microsoft-windows-usermodensi_31bf3856ad364e35_6.0.6001.18000_none_726222dfc773e0a2_nsiproxy.sys_ebb6a83d PUA.Win32.Packer.Pequake-3
/media/OS/Windows/winsxs/Manifests/x86_microsoft-windows-mediaplayer-drm_31bf3856ad364e35_6.0.6000.16386_none_6bf75946c7e1dd75.manifest PUA.Script.ActiveX_BID43345
/media/OS/Windows/winsxs/Manifests/x86_microsoft-windows-mediaplayer-drm_31bf3856ad364e35_6.0.6001.18000_none_6e2e1b42c4ccee49.manifest PUA.Script.ActiveX_BID43345
/media/OS/Windows/winsxs/Manifests/x86_microsoft-windows-mediaplayer-drm_31bf3856ad364e35_6.0.6002.18005_none_7019944ec1eeb995.manifest PUA.Script.ActiveX_BID43345
/media/OS/Windows/winsxs/x86_microsoft-windows-diskcopy_31bf3856ad364e35_6.0.6000.16386_none_657a42b499c975fa/diskcopy.dll PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-i..l-keyboard-00020427_31bf3856ad364e35_6.0.6000.16386_none_2df0e7e54ab93194/KBDLT2.DLL PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-logon_31bf3856ad364e35_6.0.6001.18000_none_58fb5219c92c4735/logon.scr PUA.Win32.Packer.Starforce-1
/media/OS/Download/casio/German/Appl/HAViewer/HAViewer.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Avira/AntiVir Desktop/aerdl.dll PUA.Win32.Packer.Aspack-40
/media/OS/Windows/winsxs/x86_microsoft-windows-m..server-provider-dll_31bf3856ad364e35_6.0.6002.18005_none_66e4aed5831b0254/sqloledb.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-ntdll_31bf3856ad364e35_6.0.6001.18538_none_58be7a4bfc3ebc64/ntdll.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_microsoft-windows-ntdll_31bf3856ad364e35_6.0.6001.22777_none_591bd903157dafc2/ntdll.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_microsoft-windows-ntdll_31bf3856ad364e35_6.0.6002.18005_none_5ac2574df94f7762/ntdll.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_microsoft-windows-ntdll_31bf3856ad364e35_6.0.6002.22505_none_5b4bfbb1126d0bc8/ntdll.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/debug.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/edit.com PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/edlin.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/exe2bin.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/fastopen.exe PUA.Win32.Packer.Exepack
/media/OS/Program Files/Avira/AntiVir Desktop/apnstub.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/mem.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/nlsfunc.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6001.18000_none_fe0d791a728dd79c/share.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/debug.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/edit.com PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/edlin.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/exe2bin.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/fastopen.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/mem.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/nlsfunc.exe PUA.Win32.Packer.Exepack
/media/OS/Program Files/Avira/AntiVir Desktop/apntoolbarinstaller.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_microsoft-windows-ntvdm-system32_31bf3856ad364e35_6.0.6002.18005_none_fff8f2266fafa2e8/share.exe PUA.Win32.Packer.Exepack
/media/OS/Windows/winsxs/x86_microsoft-windows-pshed_31bf3856ad364e35_6.0.6002.18005_none_5dde5c5c2a365a60/PSHED.DLL PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/winsxs/x86_microsoft-windows-pshed_31bf3856ad364e35_6.0.6001.18000_none_5bf2e3502d148f14/PSHED.DLL PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/winsxs/x86_microsoft-windows-s..entication-usermode_31bf3856ad364e35_6.0.6001.18000_none_3a21c33374546c1e/authz.dll Win.Trojan.Agent-121982
/media/OS/Windows/winsxs/x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64/xmllite.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_microsoft-windows-t..services-publicapis_31bf3856ad364e35_6.0.6001.18000_none_c730eb5dc6553c1b/wtsapi32.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-usermodensi_31bf3856ad364e35_6.0.6001.18000_none_726222dfc773e0a2/nsiproxy.sys PUA.Win32.Packer.Pequake-3
/media/OS/Windows/winsxs/x86_microsoft-windows-xmllite_31bf3856ad364e35_6.0.6001.18000_none_893b7e92a34e8e37/xmllite.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6000.16386_none_887bbb9454368959/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6000.16720_none_887641f8543b58cd/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/avadmin.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6000.20883_none_71ae589c6ddd9dc0/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6001.18000_none_88503d50548e3225/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6001.18111_none_885126ae548d656e/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6001.22230_none_7185974a6e32de81/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_882bc28c54dfc639/dfdll.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netvgx86.inf_31bf3856ad364e35_6.0.6001.18000_none_644cd6f3df223fbb/getnd6.sys PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Windows/winsxs/x86_prnhp001.inf_31bf3856ad364e35_6.0.6001.18000_none_d2d06b9620b04c9a/I386/HPZ6RLHN.DLL PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/winsxs/x86_s3glhx.inf_31bf3856ad364e35_6.0.6001.18000_none_20bf6ebf7bc775ea/S3GUModeDX32.dll PUA.Win32.Packer.Expressor-20
/media/OS/Windows/winsxs/x86_security-malware-windows-defender_31bf3856ad364e35_6.0.6001.18000_none_57bcb0ca582f18c5/MpEngine.dll PUA.Win32.Packer.Lzexe
/media/OS/Windows/winsxs/x86_security-malware-windows-defender_31bf3856ad364e35_6.0.6002.18005_none_59a829d65550e411/MpEngine.dll PUA.Win32.Packer.Lzexe
/media/OS/Program Files/Avira/AntiVir Desktop/avcenter.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_netfx-_vc_assembly_linker_dll_b03f5f7f11d50a3a_6.0.6001.18000_none_38fbf091eb90678c/alink.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692/tcpip.sys PUA.Win32.Packer.Pseudosigner-35
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6000.16710_none_9be9c78e2d9d5d54/NlsLexicons0001.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6000.16710_none_9be9c78e2d9d5d54/NlsLexicons000a.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6000.16710_none_9be9c78e2d9d5d54/NlsData0013.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6000.20867_none_9c4456c346dd3a34/NlsLexicons0001.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6000.20867_none_9c4456c346dd3a34/NlsLexicons000a.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6000.20867_none_9c4456c346dd3a34/NlsData0013.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.18000_none_9ddad43a2abbd52d/NlsLexicons0001.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.18000_none_9ddad43a2abbd52d/NlsLexicons0007.dll PUA.Win32.Packer.Starforce-1
/media/OS/Program Files/Avira/AntiVir Desktop/avconfig.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.18000_none_9ddad43a2abbd52d/NlsLexicons000a.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.18000_none_9ddad43a2abbd52d/NlsData0013.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.18098_none_9d81873e2afd9b5e/NlsData0013.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.18098_none_9d81873e2afd9b5e/NlsLexicons0001.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.18098_none_9d81873e2afd9b5e/NlsLexicons000a.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.22211_none_9e5aa34943e0a766/NlsLexicons0001.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.22211_none_9e5aa34943e0a766/NlsLexicons000a.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6001.22211_none_9e5aa34943e0a766/NlsData0013.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6002.18005_none_9fc64d4627dda079/NlsData0013.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6002.18005_none_9fc64d4627dda079/NlsLexicons0001.dll PUA.Win32.Packer.Starforce-1
/media/OS/Program Files/Avira/AntiVir Desktop/avguard.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/winsxs/x86_microsoft-windows-naturallanguage6_31bf3856ad364e35_6.0.6002.18005_none_9fc64d4627dda079/NlsLexicons000a.dll PUA.Win32.Packer.Starforce-1
/media/OS/Windows/winsxs/x86_microsoft-windows-smbserver-common_31bf3856ad364e35_6.0.6000.16977_none_01ab47d21332f233/srvnet.sys PUA.Win32.Packer.Pequake-3
/media/OS/Windows/winsxs/x86_microsoft-windows-smbserver-common_31bf3856ad364e35_6.0.6000.21179_none_0236bd532c4ef7ed/srvnet.sys PUA.Win32.Packer.Pequake-3
/media/OS/Windows/winsxs/x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9848.0_none_b7e811287b298060/msxml4.dll PUA.Win32.Packer.MsVisualCpp-2
/media/OS/Windows/winsxs/x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9870.0_none_b7e00e6c7b30b69b/msxml4.dll PUA.Win32.Packer.MsVisualCpp-2
/media/OS/Windows/winsxs/x86_microsoft-windows-kernelstreamingsupport_31bf3856ad364e35_6.0.6001.18000_none_61f4bb21dabbb034/mskssrv.sys PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Windows/{665DADBF-390D-4C50-98A6-88C7B2690B3E}/Speedport W 102 Stick.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/$PatchCache$/Managed/68AB67CA7DA71301B7449A0500000010/9.5.0/adobearmhelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/$PatchCache$/Managed/DDA39468D428E8B4DB27C8D5DC5CA217/4.20.9870/msxml4.dll.246EB7AD_459A_4FA8_83D1_41A46D7634B7 PUA.Win32.Packer.MsVisualCpp-2
/media/OS/Windows/Installer/1cc00.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Program Files/Avira/AntiVir Desktop/avnotify.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/250fdc.msi PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Windows/Installer/{4AAC95F4-A30E-4EE5-A086-6F79581D0D70}/ACDSeeDesktopShortcu_F99F74B4972B4B06B8936B3B0DB0128B.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/{4AAC95F4-A30E-4EE5-A086-6F79581D0D70}/ACDSeePMShortcut_F99F74B4972B4B06B8936B3B0DB0128B.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/{4AAC95F4-A30E-4EE5-A086-6F79581D0D70}/ACDSeeShowroomShor_89621A33AFFC45029C8C9D5A4EA9D15A.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/{4AAC95F4-A30E-4EE5-A086-6F79581D0D70}/ARPPRODUCTICON.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/{4AAC95F4-A30E-4EE5-A086-6F79581D0D70}/DevDetectPMShortcut_ECE0113B23D04DD889E6D2F026CABF03.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/78491.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/78496.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/7849b.msi PUA.Win32.Packer.Upx-57
/media/OS/Windows/Installer/888ab.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Program Files/Avira/AntiVir Desktop/avrestart.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/8e932.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/9c610.msi PUA.Win32.Packer.NspackDotnetNor-1
/media/OS/Windows/Installer/9f40dc0.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/a2466.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/b0fdd.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/b7d7d.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/413a5c.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/4ac5b.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/5213d2.msi PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Windows/Installer/5d993.msi PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/avscan.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Windows/Installer/78470.msi PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Windows/Installer/edcdc.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Windows/Installer/f5e50.msi PUA.Win32.Packer.MsVisualCpp-3
/media/OS/Download/casio/German/Appl/HAViewer/MvIF.dll PUA.Win32.Packer.BorlandCpp-9
/media/OS/Program Files/Avira/AntiVir Desktop/avwebgrd.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/avwebloader.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/avwsc.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/fact.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/FAILSAFE/aerdl.dll PUA.Win32.Packer.Aspack-40
/media/OS/Program Files/Avira/AntiVir Desktop/licmgr.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/setup.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/update.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Avira/AntiVir Desktop/wsctool.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Download/casio/German/Appl/HAViewer/qtmc.dll PUA.Win32.Packer.Asprotect-2
/media/OS/Program Files/Common Files/Adobe/ARM/1.0/AcrobatUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Common Files/Adobe/ARM/1.0/AdobeARMHelper.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Common Files/Adobe/ARM/1.0/ReaderUpdater.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Common Files/DVDVideoSoft/bin/msvcr100.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Program Files/Common Files/DVDVideoSoft/FreeStudioManager.exe PUA.Win32.Packer.Upx-28
/media/OS/Program Files/Common Files/DVDVideoSoft/lib/avformat-54.dll PUA.Win32.Packer.InterplaysMveFi
/media/OS/Download/casio/German/Appl/HAViewer/SlideShowApp.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Common Files/DVDVideoSoft/lib/libmp3lame.dll PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Common Files/DVDVideoSoft/lib/msvcr100.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Program Files/Common Files/DVDVideoSoft/lib/xmllite.dll PUA.Win32.Packer.Pseudosigner-35
/media/OS/Program Files/Common Files/DVDVideoSoft/Uninstall.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Common Files/microsoft shared/Proof/1031/MSGR3EN.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Proof/1031/MSGR3GE.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Proof/1033/MSGR3EN.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Proof/1033/MSGR3GE.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Proof/1036/MSGR3FR.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Proof/CHAPI3T1.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Download/casio/German/Appl/MyBoxInstaller/HASetCtrl.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Common Files/microsoft shared/Proof/CTAPI3T2.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Proof/MSSPELL3.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Smart Tag/FNAME.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Smart Tag/FPERSON.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Smart Tag/IETAG.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Smart Tag/MOFL.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/TextConv/WPFT632.CNV PUA.Win32.Packer.BorlandDelphiKo
/media/OS/Program Files/Common Files/microsoft shared/Web Components/10/OWC10.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Web Server Extensions/50/bin/FP5AREG.DLL PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Web Server Extensions/50/bin/OWSRMADM.EXE PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Download/casio/German/Appl/MyBoxInstaller/MBStart.exe PUA.Win32.Packer.BorlandCpp-8
/media/OS/Program Files/Common Files/microsoft shared/Web Server Extensions/50/isapi/FPCOUNT.EXE PUA.Win32.Packer.PrivateExeProte-15
/media/OS/Program Files/Common Files/microsoft shared/Works Shared/1031/MSGR3EN.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Works Shared/1031/MSGR3GE.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Works Shared/1033/msgr3en.dll PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/microsoft shared/Works Shared/1033/MSGR3GE.DLL PUA.Win32.Packer.Pseudosigner-95
/media/OS/Program Files/Common Files/PX Storage Engine/pxhpinst.exe PUA.Win32.Packer.SiliconRealmsIn-1
/media/OS/Program Files/Common Files/System/Ole DB/sqloledb.dll PUA.Win32.Packer.Starforce-1
/media/OS/Program Files/Dell Support Center/pcdlauncher.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/Dell Support Center/sessionchecker.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/DVD Shrink DE/DVD Shrink 3.2 DE.exe PUA.Win32.Packer.Y0dasCrypterMod
/media/OS/Download/casio/German/Appl/MyBoxInstaller/qtmc.dll PUA.Win32.Packer.Asprotect-2
/media/OS/Program Files/DVD Shrink DE/unins000.exe PUA.Win32.Packer.Vip
/media/OS/Program Files/EASEUS/EASEUS Partition Master 9.1.1 Home Edition/bin/gdiplus.dll PUA.Win32.Packer.MsVisualCpp-2
/media/OS/Program Files/EASEUS/EASEUS Partition Master 9.1.1 Home Edition/bin/Main.exe PUA.Win32.Packer.SetupExeSection
/media/OS/Program Files/EASEUS/EASEUS Partition Master 9.1.1 Home Edition/unins000.exe PUA.Win32.Packer.Vip
/media/OS/Program Files/Foxit Software/Foxit Reader/Foxit Reader.exe PUA.Win32.Packer.Psadobefont
/media/OS/Program Files/Foxit Software/Foxit Reader/Shell Extensions/FoxitPDFInfo.dll PUA.Win32.Packer.Psadobefont
/media/OS/Program Files/Foxit Software/Foxit Reader/Start/js/jquery.tabs.js PUA.Script.Packed-2
/media/OS/Program Files/Winamp/libsndfile.dll PUA.Win32.Packer.CreativeAudioFi
/media/OS/Program Files/Winamp/Plugins/in_mod.dll PUA.Win32.Packer.XmMusicFile
/media/OS/Program Files/Microsoft Office/.../1031/HTMLREF.CHM PUA.CVE_2011_3397
Code:
ATTFilter Found 26 possible threats (13770 files scanned).
/media/sda2/Daten/.../Rechnung.PDF PUA.Script.PDF.EmbeddedJS-1
/media/sda2/Daten/.../Katalog.pdf Heuristics.Encrypted.PDF
/media/sda2/Windows/System32/drivers/nsiproxy.sys PUA.Win32.Packer.Pequake-3
/media/sda2/Windows/System32/DriverStore/FileRepository/netvgx86.inf_6d1cd4de/getnd6.sys PUA.Win32.Packer.NspackDotnetNor-1
/media/sda2/Windows/winsxs/Backup/x86_microsoft-windows-kernelstreamingsupport_31bf3856ad364e35_6.0.6001.18000_none_61f4bb21dabbb034_mskssrv.sys_10d1b7c8 PUA.Win32.Packer.BorlandDelphiKo
/media/sda2/Windows/winsxs/Backup/x86_microsoft-windows-usermodensi_31bf3856ad364e35_6.0.6001.18000_none_726222dfc773e0a2_nsiproxy.sys_ebb6a83d PUA.Win32.Packer.Pequake-3
/media/sda2/Windows/winsxs/Backup/x86_microsoft-windows-t..services-publicapis_31bf3856ad364e35_6.0.6001.18000_none_c730eb5dc6553c1b_wtsapi32.dll_470d4d41 PUA.Win32.Packer.Starforce-1
/media/sda2/Windows/winsxs/Backup/x86_microsoft-windows-xmllite_31bf3856ad364e35_6.0.6001.18000_none_893b7e92a34e8e37_xmllite.dll_ce078c31 PUA.Win32.Packer.Pseudosigner-35
/media/sda2/Windows/winsxs/Backup/x86_microsoft-windows-pshed_31bf3856ad364e35_6.0.6001.18000_none_5bf2e3502d148f14_pshed.dll_f6ac239e PUA.Win32.Packer.BorlandDelphiKo
/media/sda2/Windows/winsxs/Backup/x86_microsoft-windows-s..entication-usermode_31bf3856ad364e35_6.0.6001.18000_none_3a21c33374546c1e_authz.dll_c0d80602 Win.Trojan.Agent-121982
/media/sda2/Windows/winsxs/x86_microsoft-windows-i..l-keyboard-00020427_31bf3856ad364e35_6.0.6001.18000_none_3027a9e147a44268/KBDLT2.DLL PUA.Win32.Packer.Starforce-1
/media/sda2/Windows/winsxs/x86_microsoft-windows-kernelstreamingsupport_31bf3856ad364e35_6.0.6001.18000_none_61f4bb21dabbb034/mskssrv.sys PUA.Win32.Packer.BorlandDelphiKo
/media/sda2/Daten/.../Formular 1.pdf PUA.Script.PDF.EmbeddedJS-1
/media/sda2/Windows/winsxs/x86_microsoft-windows-pshed_31bf3856ad364e35_6.0.6001.18000_none_5bf2e3502d148f14/PSHED.DLL PUA.Win32.Packer.BorlandDelphiKo
/media/sda2/Windows/winsxs/x86_microsoft-windows-s..entication-usermode_31bf3856ad364e35_6.0.6001.18000_none_3a21c33374546c1e/authz.dll Win.Trojan.Agent-121982
/media/sda2/Windows/winsxs/x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_095f6148c74a7a64/xmllite.dll PUA.Win32.Packer.Pseudosigner-35
/media/sda2/Windows/winsxs/x86_microsoft-windows-t..services-publicapis_31bf3856ad364e35_6.0.6001.18000_none_c730eb5dc6553c1b/wtsapi32.dll PUA.Win32.Packer.Starforce-1
/media/sda2/Windows/winsxs/x86_microsoft-windows-usermodensi_31bf3856ad364e35_6.0.6001.18000_none_726222dfc773e0a2/nsiproxy.sys PUA.Win32.Packer.Pequake-3
/media/sda2/Windows/winsxs/x86_microsoft-windows-xmllite_31bf3856ad364e35_6.0.6001.18000_none_893b7e92a34e8e37/xmllite.dll PUA.Win32.Packer.Pseudosigner-35
/media/sda2/Daten/.../Formular 2.pdf PUA.Script.PDF.EmbeddedJS-1
/media/sda2/Windows/System32/authz.dll Win.Trojan.Agent-121982
/media/sda2/Windows/System32/KBDLT2.DLL PUA.Win32.Packer.Starforce-1
/media/sda2/Windows/System32/PSHED.DLL PUA.Win32.Packer.BorlandDelphiKo
/media/sda2/Windows/System32/wtsapi32.dll PUA.Win32.Packer.Starforce-1
/media/sda2/Windows/System32/xmllite.dll PUA.Win32.Packer.Pseudosigner-35
/media/sda2/Windows/System32/drivers/mskssrv.sys PUA.Win32.Packer.BorlandDelphiKo
 Also ich würd dann die restlichen Daten mithilfe des Live-Systems sichern (ohne die 6 fraglichen oben, die hab ich bereits gelöscht) und dann neuaufsetzen, richtig? lg, me. |
|
04.02.2013, 10:44
| #36 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Was machen EXE-Dateien in einem Foto-Ordner?  Löschen! Aus welcher Quelle stammen die PDF-Datein?
__________________ --> TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] |
|
04.02.2013, 14:24
| #37 |
| | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hallo Cosinus, gute Frage, ich hab den Rechner familienintern geerbt.  Sind gelöscht.Eine der PDF-Dateien (die mit dem Heuristics.Encrypted) ist von einem Blog, da könnte natürlich derjenige evtl. auch ein Virenproblem gehabt haben können. Die anderen drei müssten sichere Quellen sein (Handy & Bank). Da ich sichergehen wollte und keine der vier Dateien lebenswichtig ist, habe ich die aber lieber auch gelöscht. Ach so, und noch eine Frage: Ich würd dann mithilfe von Parted Magic die C- & D-Platte erst formatieren (wg. der Schädlinge) und anschließend neu aufteilen wollen (war eh komisch aufgeteilt) - muss ich da irgendwas besonderes beachten, damit hinterher das Neuaufsetzen mit der Windows Reinstallation DVD problemlos klappt? Ich hab das alles noch nie gemacht. lg, me. Geändert von help me (04.02.2013 um 14:53 Uhr) |
|
04.02.2013, 15:18
| #38 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Werte die PDF-Dateien mal bei virustotal.com aus oder hast sie schon gelöscht? Über Linux musst du nur die Daten sichern. Wenn alles gesichert ist, kannst du die Partitionen der internen Platte "abschießen" und im Windows-Setup neu erstellen
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.02.2013, 15:34
| #39 |
| | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hallo Cosinus, sorry, ich hab sie schon gelöscht, weil ich dachte, weg ist weg (Anfängerdenken vermutlich *g*). Ok, also die Partitionen mach ich dann mit Windows - FAT32 oder NTFS? Oder macht der das automatisch "richtig"? Und wenn ich die Platten "abschieße" - überschreibt der dann auch gleich den Bootsektor bzw. dieses MBR? Ich möchte wirklich sichergehen, dass ich alles richtig mache und nichts mehr überleben kann.  lg, me. |
|
04.02.2013, 15:56
| #40 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Bei Windows immer NTFS nehmen!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.02.2013, 15:59
| #41 |
| | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hi Cosinus, vielen, vielen Dank für Deine Geduld und die Antworten auf meine vielen Fragen!  Ich geh dann mal neuaufsetzen. lg, me. |
|
09.02.2013, 14:50
| #42 |
| | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hallo Cosinus, so, ich hab den Rechner nun neu aufgesetzt (Vista), SP 2 installiert (SP 1 war auf der Installationsdisc dabei) und die neuesten Windows & Office Updates per WSUS Offline Update eingespielt, die ich zuvor mithilfe meines Netbooks heruntergeladen hatte. Jetzt hätte ich noch 2 Fragen: - Ist es unter Vista sinnvoller, nur die jeweiligen Unterordner (Eigene Dokumente etc.) auf die Daten-Partition zu verschieben oder gleich den ganzen Benutzer (das scheint aber eine kompliziertere Angelegenheit mit entsprechenden Fehlerrisiken zu sein)? Ich hab schon viel gegoogelt & auch die ein oder andere Anleitung gefunden, aber ich möchte mir mein neues System ungern gleich wieder zerschießen. Die Daten wären dann ja auf der anderen Partition und die paar Programmeinstellungen (Word vielleicht) könnte man auch per Hand sichern, oder?- Falls mein Netbook nun doch auch ein Problem haben sollte (siehe mein neuer Thread "GMER findet "hidden rootkit activity" - falls Du rein zufällig mal hineinschauen magst  ), muss ich dann auch hier beim PC wieder von vorne anfangen, da ich ja das WSUS Offline Update & auch alle anderen Programme damit gespeichert & rüber gezogen habe? Das dauert grad alles ewig, weil ich vor jedem Schritt erstmal nach Anleitungen google und bloß nichts falsch machen möchte. lg, me. |
|
11.02.2013, 08:48
| #43 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista]Zitat:
Es wird eigentlich bei jedem OS angeraten, Daten und System zu trennen Ignorier einfach die vordefinierten Ordner erstell dir eigene auf der Datenpartition oder du machst es so: Tipparchiv - Eigene Dateien auf eine separate Partition verschieben - WinTotal.de Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
11.02.2013, 10:36
| #44 |
| | TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] Hi Cosinus, sorry, vielleicht hab ich mich nicht so gut ausgedrückt. Ich meinte damit, dass es ab Vista komplizierter geworden zu sein scheint, die eig. Dateien zu verschieben. Meine von mir selbst angelegten Dateien speichere ich ohnehin auf der Datenpartition, aber mir ging es um die vordefinierten Ordner, in denen so ziemlich jedes Programm meine Einstellungen speichert. In der von Dir verlinkten Anleitung (danke für den Link!) werden nur die 11 Haupt-Unterordner (Bilder, Dokumente etc.) verschoben, ich denke, das werde ich auch so machen. In einer 2. Variante kann man das komplette Benutzerprofil verschieben, muss aber über den Admin gehen, div. Kommandozeilenbefehle ausführen und per mklink einen Verweis erstellen - dann hätte man auch den Application-Data-Ordner verschoben, wo ja auch eine Reihe von Dateien landen. Meine Frage war also gewissermaßen, ob die 1. Variante ausreicht. Den Hinweis für alle Hilfesuchenden hab ich beachtet! (Nur leider hat sich noch kein Helfer der Sache angenommen.) lg, me. [edit] Danke, dass Du Dich drüben meines Problems annimmst! |
|
| Themen zu TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista] |
| antivir, application/pdf:, autorun, avira, backdoor, bds/zeroaccess.gen, bho, converter, excel, firefox, flash player, install.exe, malware, netgear, ntdll.dll, programm, realtek, recycle.bin, security, software, super, system, total commander, tr/buzus.hlmnubac, tr/rogue.kdz.4040.1, tr/sirefef.p.1075, trojan.0access, usb |
![TR/Sirefef.P, TR/Rogue.kdz, TR/Buzus & BDS/ZeroAccess.Gen gefunden - Anfänger! [Vista]](iconimages/plagegeister-aller-art-deren-bekaempfung/tr-sirefef-p-tr-rogue-kdz-tr-buzus-bds-zeroaccess-gen-gefunden-anfaenger-vista_ltr.gif)
Linear-Darstellung
