| |
| |||||||
Log-Analyse und Auswertung: http://www_getwindowinfo/Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
31.07.2013, 20:34
| #11 |
| |  http://www_getwindowinfo/ fixlog: Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-07-2013 03
Ran by Tina at 2013-07-31 21:22:00 Run:1
Running from C:\Users\Tina\Downloads
Boot Mode: Normal
==============================================
HKLM\Software\Classes\CLSID\{750fdf10-2a26-11d1-a3ea-080036587f03}\InprocServer32\\Default => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{41564952-412D-5637-00A7-7A786E7484D7} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{41564952-412D-5637-00A7-7A786E7484D7} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{41564952-412D-5637-00A7-7A786E7484D7} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key not found.
HKCU\Software\Mozilla\Firefox\Extensions\\lyrix@lyrixeeker.co => Value not found.
C:\Program Files (x86)\LyriXeeker\125.xpi not found.
CHR DefaultSearchURL: (Web) - hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=397e10ce-ac89-4746-87f7-23fb71657fae&searchtype=ds&p={searchTerms}&fr=linkury-tb ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSuggestURL: (Web) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\odnofacmifkjndflfmmplhckcbfjckhj => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\odnofacmifkjndflfmmplhckcbfjckhj => Key not found.
"C:\Program Files (x86)\LyriXeeker\125.crx" => File/Directory not found.
C:\Windows\Tasks\DigitalSite.job => Moved successfully.
C:\Windows\System32\Tasks\DigitalSite => Moved successfully.
"C:\Users\Tina\AppData\Roaming\DigitalSite" directory move:
C:\Users\Tina\AppData\Roaming\DigitalSite\UpdateProc\config.dat => Moved successfully.
C:\Users\Tina\AppData\Roaming\DigitalSite\UpdateProc\prod.dat => Moved successfully.
C:\Users\Tina\AppData\Roaming\DigitalSite\UpdateProc\UpdateTask.exe => Moved successfully.
Could not move "C:\Users\Tina\AppData\Roaming\DigitalSite" directory. => Scheduled to move on reboot.
"C:\Program Files (x86)\LyriXeeker" => File/Directory not found.
C:\SoftwareUpdater => Moved successfully.
"C:\Users\Tina\AppData\Roaming\Windows Net Data" directory move:
C:\Users\Tina\AppData\Roaming\Windows Net Data\id.dat => Moved successfully.
C:\Users\Tina\AppData\Roaming\Windows Net Data\net.exe => Moved successfully.
C:\Users\Tina\AppData\Roaming\Windows Net Data\uninstaller.exe => Moved successfully.
Could not move "C:\Users\Tina\AppData\Roaming\Windows Net Data" directory. => Scheduled to move on reboot.
"C:\Windows\System32\Tasks\LyricXeeker Update" => File/Directory not found.
=========== Result of Scheduled Files to move ===========
"C:\Users\Tina\AppData\Roaming\DigitalSite" => Directory could not move.
C:\Users\Tina\AppData\Roaming\Windows Net Data => Moved successfully.
==== End of Fixlog ====
junkware remover Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.2.9 (07.30.2013:1)
OS: Windows 7 Home Premium x64
Ran by Tina on 31.07.2013 at 21:25:15,67
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\apnstub_rasmancs
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 31.07.2013 at 21:29:33,38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 hab viiiiiiiiiiiiiiiiiiiiiiielen dank!IE ist weg und öffnet sich nicht mehr ungefragt kannst du mir noch ne neue antivirussoftware empfehlen damit sowas nicht mehr passiert? mein bruder will mir kaspersky aufschwatzen, taugt das was`? |
| Themen zu http://www_getwindowinfo/ |
| adobe, adw-cleaner, antivir, avg, avira, combofix, defender, desktop, google, home, homepage, http://www_getwindowinfo/, internet, internet browser, internet explorer, langsam, malware, performance, problem, prozesse, realtek, registrierungsdatenbank, rundll, scan, security, software, updates, usb, windows |
Baum-Darstellung