Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
SpyHunter entfernen

SpyHunter entfernen


Log-Analyse und Auswertung: SpyHunter entfernen

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 25.05.2013, 11:25   #5
Sara_R
 
SpyHunter entfernen - Standard

SpyHunter entfernen


Hallo Ryder,

vielen Dank für Deine Antwort! Ich glaube, es hat geklappt ! Anbei übersende ich Dir das Log. Ich wünsche Dir ein schönes Wochenende!

Schöne Grüße,
Sara


Code:
ATTFilter
ComboFix 13-05-25.02 - Finn 25.05.2013  20:11:52.3.2 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.4091.2519 [GMT 10:00]
ausgeführt von:: c:\users\Finn\Desktop\ComboFix.exe
Benutzte Befehlsschalter :: c:\users\Finn\Desktop\CFScript.txt
AV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2013 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Enigma Software Group
c:\program files\Enigma Software Group\SpyHunter\gas.dat
c:\program files\Enigma Software Group\SpyHunter\Log\SpyHunter4_20130524_011912.log
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-04-25 bis 2013-05-25  ))))))))))))))))))))))))))))))
.
.
2013-05-25 10:17 . 2013-05-25 10:17	--------	d-----w-	c:\users\TEMP\AppData\Local\temp
2013-05-25 10:17 . 2013-05-25 10:17	--------	d-----w-	c:\users\TEMP.Finn-Sara-PC\AppData\Local\temp
2013-05-25 10:17 . 2013-05-25 10:17	--------	d-----w-	c:\users\Sara\AppData\Local\temp
2013-05-25 10:17 . 2013-05-25 10:17	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-05-25 10:17 . 2013-05-25 10:17	--------	d-----w-	c:\users\Administrator\AppData\Local\temp
2013-05-24 23:44 . 2013-05-13 06:37	9460464	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{05474252-4075-4D77-A6C4-66D59B65AB84}\mpengine.dll
2013-05-23 13:21 . 2013-05-23 13:21	--------	d-----w-	c:\users\Sara\Tracing
2013-05-23 12:58 . 2013-05-23 12:58	--------	d-----w-	c:\program files (x86)\VS Revo Group
2013-05-23 05:59 . 2013-05-23 15:27	--------	d-----w-	c:\windows\BCD5545077AC4347B24F654B1189F8D4.TMP
2013-05-23 05:59 . 2013-05-23 05:59	--------	d-----w-	c:\program files (x86)\Common Files\Wise Installation Wizard
2013-05-23 05:47 . 2013-05-23 05:47	--------	d-----w-	c:\users\Sara\AppData\Roaming\AVG2013
2013-05-23 05:47 . 2013-05-23 05:47	--------	d-----w-	c:\users\Sara\AppData\Local\Avg2013
2013-05-23 05:46 . 2013-05-23 05:46	--------	d-----w-	c:\users\Finn\AppData\Roaming\AVG2013
2013-05-23 05:40 . 2013-05-23 05:45	--------	d-----w-	c:\programdata\AVG2013
2013-05-23 05:40 . 2013-05-23 05:40	--------	d-----w-	C:\$AVG
2013-05-23 05:39 . 2013-05-23 05:39	--------	d-----w-	c:\program files (x86)\AVG
2013-05-23 05:05 . 2013-05-23 05:05	--------	d-----w-	c:\users\Finn\AppData\Local\ElevatedDiagnostics
2013-05-23 04:47 . 2013-05-23 06:12	--------	d-----w-	c:\users\Finn\AppData\Local\Avg2013
2013-05-16 00:20 . 2013-04-10 06:01	265064	----a-w-	c:\windows\system32\drivers\dxgmms1.sys
2013-05-13 03:42 . 2013-05-15 03:13	--------	d-----w-	C:\FINN SOLLICITATIE BROUWERIJ
2013-05-09 01:26 . 2013-05-09 01:26	--------	d-----w-	c:\windows\SysWow64\jmdp
2013-05-09 01:26 . 2013-05-09 01:26	--------	d-----w-	c:\windows\SysWow64\ARFC
2013-05-06 04:55 . 2013-05-24 08:07	--------	d-----w-	C:\SARA SOLLICITATIES BELGIE
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-23 05:43 . 2013-03-15 02:27	45856	----a-w-	c:\windows\system32\drivers\avgtpx64.sys
2013-05-17 01:33 . 2010-02-14 08:46	75016696	----a-w-	c:\windows\system32\MRT.exe
2013-05-01 16:06 . 2010-01-06 08:02	278800	------w-	c:\windows\system32\MpSigStub.exe
2013-04-29 02:07 . 2013-02-27 11:23	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-29 02:07 . 2013-02-27 11:23	691592	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-04-13 05:49 . 2013-05-16 00:20	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-16 00:20	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-16 00:20	308736	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-16 00:20	111104	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-16 00:20	474624	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-16 00:20	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 07:28	1656680	----a-w-	c:\windows\system32\drivers\ntfs.sys
2013-04-07 08:54 . 2013-03-04 03:15	1455408	----a-w-	c:\windows\system32\dmwu.exe
2013-04-07 08:53 . 2013-03-04 03:15	33792	----a-w-	c:\windows\system32\ImHttpComm.dll
2013-04-02 16:49 . 2013-04-02 16:49	226304	----a-w-	c:\windows\system32\elshyph.dll
2013-04-02 16:49 . 2013-04-02 16:49	185344	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-04-02 16:49 . 2013-04-02 16:49	1054720	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-04-02 16:49 . 2013-04-02 16:49	158720	----a-w-	c:\windows\SysWow64\msls31.dll
2013-04-02 16:49 . 2013-04-02 16:49	719360	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-04-02 16:49 . 2013-04-02 16:49	523264	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-04-02 16:49 . 2013-04-02 16:49	150528	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-04-02 16:49 . 2013-04-02 16:49	138752	----a-w-	c:\windows\SysWow64\wextract.exe
2013-04-02 16:49 . 2013-04-02 16:49	38400	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-04-02 16:49 . 2013-04-02 16:49	137216	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-04-02 16:49 . 2013-04-02 16:49	12800	----a-w-	c:\windows\SysWow64\mshta.exe
2013-04-02 16:49 . 2013-04-02 16:49	73728	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-04-02 16:49 . 2013-04-02 16:49	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-04-02 16:49 . 2013-04-02 16:49	110592	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-04-02 16:49 . 2013-04-02 16:49	61952	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-04-02 16:49 . 2013-04-02 16:49	361984	----a-w-	c:\windows\SysWow64\html.iec
2013-04-02 16:49 . 2013-04-02 16:49	23040	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-04-02 16:49 . 2013-04-02 16:49	1441280	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2013-04-02 16:49 . 2013-04-02 16:49	452096	----a-w-	c:\windows\system32\dxtmsft.dll
2013-04-02 16:49 . 2013-04-02 16:49	441856	----a-w-	c:\windows\system32\html.iec
2013-04-02 16:49 . 2013-04-02 16:49	281600	----a-w-	c:\windows\system32\dxtrans.dll
2013-04-02 16:49 . 2013-04-02 16:49	216064	----a-w-	c:\windows\system32\msls31.dll
2013-04-02 16:49 . 2013-04-02 16:49	197120	----a-w-	c:\windows\system32\msrating.dll
2013-04-02 16:49 . 2013-04-02 16:49	1400416	----a-w-	c:\windows\system32\ieapfltr.dat
2013-04-02 16:49 . 2013-04-02 16:49	905728	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-04-02 16:49 . 2013-04-02 16:49	81408	----a-w-	c:\windows\system32\icardie.dll
2013-04-02 16:49 . 2013-04-02 16:49	762368	----a-w-	c:\windows\system32\ieapfltr.dll
2013-04-02 16:49 . 2013-04-02 16:49	270848	----a-w-	c:\windows\system32\iedkcs32.dll
2013-04-02 16:49 . 2013-04-02 16:49	235008	----a-w-	c:\windows\system32\url.dll
2013-04-02 16:49 . 2013-04-02 16:49	1509376	----a-w-	c:\windows\system32\inetcpl.cpl
2013-04-02 16:49 . 2013-04-02 16:49	97280	----a-w-	c:\windows\system32\mshtmled.dll
2013-04-02 16:49 . 2013-04-02 16:49	599552	----a-w-	c:\windows\system32\vbscript.dll
2013-04-02 16:49 . 2013-04-02 16:49	27648	----a-w-	c:\windows\system32\licmgr10.dll
2013-04-02 16:49 . 2013-04-02 16:49	247296	----a-w-	c:\windows\system32\webcheck.dll
2013-04-02 16:49 . 2013-04-02 16:49	167424	----a-w-	c:\windows\system32\iexpress.exe
2013-04-02 16:49 . 2013-04-02 16:49	144896	----a-w-	c:\windows\system32\wextract.exe
2013-04-02 16:49 . 2013-04-02 16:49	102912	----a-w-	c:\windows\system32\inseng.dll
2013-04-02 16:49 . 2013-04-02 16:49	62976	----a-w-	c:\windows\system32\pngfilt.dll
2013-04-02 16:49 . 2013-04-02 16:49	51200	----a-w-	c:\windows\system32\imgutil.dll
2013-04-02 16:49 . 2013-04-02 16:49	173568	----a-w-	c:\windows\system32\ieUnatt.exe
2013-04-02 16:49 . 2013-04-02 16:49	149504	----a-w-	c:\windows\system32\occache.dll
2013-04-02 16:49 . 2013-04-02 16:49	13824	----a-w-	c:\windows\system32\mshta.exe
2013-04-02 16:49 . 2013-04-02 16:49	136192	----a-w-	c:\windows\system32\iepeers.dll
2013-04-02 16:49 . 2013-04-02 16:49	92160	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-04-02 16:49 . 2013-04-02 16:49	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-04-02 16:49 . 2013-04-02 16:49	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-04-02 16:49 . 2013-04-02 16:49	135680	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-04-02 16:49 . 2013-04-02 16:49	12800	----a-w-	c:\windows\system32\msfeedssync.exe
2013-04-02 16:49 . 2013-04-02 16:49	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-03-28 16:53 . 2013-03-28 16:53	246072	----a-w-	c:\windows\system32\drivers\avgidsdrivera.sys
2013-03-20 17:08 . 2013-03-20 17:08	240952	----a-w-	c:\windows\system32\drivers\avgtdia.sys
2013-03-19 06:04 . 2013-04-10 10:20	5550424	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 10:20	43520	----a-w-	c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 10:20	3968856	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 10:20	3913560	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 10:20	6656	----a-w-	c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 10:20	112640	----a-w-	c:\windows\system32\smss.exe
2013-02-28 08:35 . 2013-03-06 00:45	287840	----a-w-	c:\windows\system32\aswBoot.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-08-07 09:18	120104	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-04-19 18678376]
"MyTomTomSA.exe"="c:\program files (x86)\MyTomTom 3\MyTomTomSA.exe" [2012-05-18 434168]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-08-22 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-12-19 41208]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2009-08-21 261888]
"EgisTecLiveUpdate"="c:\program files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" [2009-08-04 199464]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-02 98304]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-08-27 1194504]
"ArcadeDeluxeAgent"="c:\program files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2009-10-06 419112]
"PlayMovie"="c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-10-05 181480]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"AppleSyncNotifier"="c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-12-14 47904]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-03-07 421160]
"TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe" [2011-11-12 273528]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-04-28 4408368]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0\0sdnclean64.exe
.
R2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe [2013-04-10 1428472]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2013-05-13 4937264]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 br3gmdm;BandLuxe 3.5G HSDPA Adapter - USB;c:\windows\system32\DRIVERS\br3gmdm.sys [2008-12-23 119296]
R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-06-05 216064]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-02-18 51712]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-24 1255736]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2013-02-07 71480]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2013-02-07 311096]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2013-02-07 116536]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2013-02-07 45880]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2013-03-28 246072]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2013-02-07 206136]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2013-03-20 240952]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2013-05-23 45856]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};Power Control [2009/11/08 09:11];c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl [2009-08-04 20:45 146928]
S2 AAV UpdateService;AAV UpdateService;c:\program files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [2008-10-24 128296]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-07-02 203264]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-04-17 283136]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2009-08-05 844320]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-07 311592]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 vToolbarUpdater15.2.0;vToolbarUpdater15.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [2013-05-23 1015984]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2009-06-20 317480]
S3 NETw1v64;Intel(R) Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\NETw1v64.sys [2009-07-20 7058432]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2012-06-26 46176]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-05-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-02-05 17:29]
.
2013-05-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1807420242-1250012798-1650058606-1001Core.job
- c:\users\Finn\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-27 22:00]
.
2013-05-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1807420242-1250012798-1650058606-1001UA.job
- c:\users\Finn\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-27 22:00]
.
2013-05-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1807420242-1250012798-1650058606-1003Core.job
- c:\users\Sara\AppData\Local\Google\Update\GoogleUpdate.exe [2010-06-19 22:00]
.
2013-05-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1807420242-1250012798-1650058606-1003UA.job
- c:\users\Sara\AppData\Local\Google\Update\GoogleUpdate.exe [2010-06-19 22:00]
.
2013-05-25 c:\windows\Tasks\Qwarcpewl.job
- c:\windows\system32\rundll32.exe [2009-07-13 01:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-08-07 09:19	137512	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-04-16 06:10	776144	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-04-16 06:10	776144	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-04-16 06:10	776144	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-04-16 06:10	776144	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"mwlDaemon"="c:\program files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe" [2009-08-07 349480]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-08-06 8060960]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"PLFSetI"="c:\windows\PLFSetI.exe" [2008-07-29 200704]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2009-08-05 828960]
"IntelliType Pro"="c:\program files\Microsoft Device Center\itype.exe" [2012-06-26 1464928]
"IntelliPoint"="c:\program files\Microsoft Device Center\ipoint.exe" [2012-06-26 2004584]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.de/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1 192.168.0.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-05-25  20:19:44
ComboFix-quarantined-files.txt  2013-05-25 10:19
ComboFix2.txt  2013-05-25 02:05
.
Vor Suchlauf: 19 Verzeichnis(se), 196.502.700.032 Bytes frei
Nach Suchlauf: 20 Verzeichnis(se), 196.435.910.656 Bytes frei
.
- - End Of File - - CDC45C87C0739A2F62CFC76CE3C25645


 

Themen zu SpyHunter entfernen
aufforderungen, computer, entfernen, funde, geister, infiziert, installer, java/exploit.agent.nvx, java/exploit.cve-2013-2423.l, malwarebytes, meldung, plötzlich, problem, programme, registrierung, remover, revo uninstaller, spyhunter entfernen, systemsteuerung, trojan, umgehen, versucht, wurm


« Laptop wird langsamer beim programm start und im internet | PC Performer (Log-Files) »


Ähnliche Themen: SpyHunter entfernen


  1. SpyHunter 4 entfernen
    Log-Analyse und Auswertung - 31.07.2015 (3)
  2. SpyHunter entfernen
    Log-Analyse und Auswertung - 02.05.2015 (11)
  3. Spyhunter 4 entfernen - Mal wieder
    Plagegeister aller Art und deren Bekämpfung - 18.02.2015 (3)
  4. Spyhunter entfernen
    Plagegeister aller Art und deren Bekämpfung - 13.09.2014 (15)
  5. Spyhunter 4 entfernen
    Plagegeister aller Art und deren Bekämpfung - 25.03.2014 (17)
  6. Spyhunter Entfernen
    Plagegeister aller Art und deren Bekämpfung - 25.03.2014 (12)
  7. Spyhunter 4 auf Windows 7 entfernen
    Log-Analyse und Auswertung - 19.02.2014 (2)
  8. Spyhunter selbst entfernen
    Plagegeister aller Art und deren Bekämpfung - 01.02.2014 (23)
  9. Spyhunter entfernen
    Plagegeister aller Art und deren Bekämpfung - 19.11.2013 (25)
  10. QV06 und Spyhunter 4 entfernen
    Plagegeister aller Art und deren Bekämpfung - 31.10.2013 (15)
  11. Window 7: spyhunter 4 entfernen
    Log-Analyse und Auswertung - 24.10.2013 (19)
  12. Spyhunter entfernen
    Log-Analyse und Auswertung - 21.10.2013 (14)
  13. SpyHunter entfernen
    Log-Analyse und Auswertung - 22.06.2013 (7)
  14. SpyHunter 4-Reste entfernen
    Log-Analyse und Auswertung - 26.05.2013 (44)
  15. Snap.do und SpyHunter entfernen
    Log-Analyse und Auswertung - 20.04.2013 (37)
  16. spyhunter 4 entfernen
    Plagegeister aller Art und deren Bekämpfung - 03.02.2013 (32)
  17. Brauche Hilfe zum entfernen von SpyHunter
    Plagegeister aller Art und deren Bekämpfung - 30.11.2008 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema SpyHunter entfernen - Hallo Ryder, vielen Dank für Deine Antwort! Ich glaube, es hat geklappt ! Anbei übersende ich Dir das Log. Ich wünsche Dir ein schönes Wochenende! Schöne Grüße, Sara Code: Alles - SpyHunter entfernen...
Archiv
Du betrachtest: SpyHunter entfernen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19