Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Interpol Trojaner Windows 7 64 Bit , Schweiz

Interpol Trojaner Windows 7 64 Bit , Schweiz


Log-Analyse und Auswertung: Interpol Trojaner Windows 7 64 Bit , Schweiz

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 05.02.2014, 09:35   #1
faro8074
 
Interpol Trojaner Windows 7 64 Bit , Schweiz - Standard

Interpol Trojaner Windows 7 64 Bit , Schweiz


Hallo

Auch mich hat es mit dem Interpol Trojaner erwischt. Nach eingehendem studieren eures Forums, habe ich den Scan mit frst64.exe durchgeführt und die txt-File angehängt. Ich bin neu und mit Foren noch nicht wirklich vertraut und hoffe natürlich auf eure Hilfe. Ich bin mir auch nicht ganz sicher ob ich alles richtig gemacht habe, danke aber schon jetz für eure Hilfe.

Gruss
faro8074

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-02-2014
Ran by SYSTEM on MININT-1IL79S4 on 05-02-2014 09:05:52
Running from D:\
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11776104 2011-02-11] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [CDAServer] - C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [456704 2012-02-20] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [38112 2012-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-04-30] (Intel Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [LWS] - C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [165208 2010-05-07] (Logitech Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2552856 2014-02-04] ()
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\FARO\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKU\FARO\...\Run: [AdobeBridge] - [X]
HKU\FARO\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20684656 2013-07-25] (Skype Technologies S.A.)
HKU\FARO\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKU\FARO\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-15] (Apple Inc.)
HKU\FARO\...\Run: [AnyDVD] - C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [93096 2014-01-06] (SlySoft, Inc.)
HKU\UpdatusUser\...\Run: [AVG-Secure-Search-Update_JUNE2013_TB] - C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe [1266712 2013-06-03] (AVG Secure Search)
HKU\UpdatusUser\...\Run: [AVG-Secure-Search-Update_JUNE2013_HP] - C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_HP.exe [1266712 2013-06-08] (AVG Secure Search)
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [245872 2013-02-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [201576 2013-02-25] (NVIDIA Corporation)
Startup: C:\Users\FARO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\4ll2zjlf.lnk
ShortcutTarget: 4ll2zjlf.lnk -> C:\ProgramData\fljz2ll4.cpp (Microsoft Corporation)
Startup: C:\Users\FARO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 hasplms; C:\windows\system32\hasplms.exe [4412872 2012-08-22] (SafeNet Inc.)
S2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
S2 Samsung Network Fax Server; C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [237056 2012-04-26] (Samsung Electronics Co., Ltd.)
S2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248704 2012-10-22] ()
S2 vToolbarUpdater17.3.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [1771544 2014-01-09] (AVG Secure Search)
S2 Winmgmt; C:\ProgramData\4ll2zjlf.zvv [332520 2014-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [57088 2012-06-15] (SafeNet Inc.)
S3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [296576 2012-06-15] (SafeNet Inc.)
S3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [138152 2013-11-26] (SlySoft, Inc.)
S3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [138152 2013-11-26] (SlySoft, Inc.)
S1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
S1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [46368 2013-11-10] (AVG Technologies)
S1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140121.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
S1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-21] (Symantec Corporation)
S1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140204.001\IDSvia64.sys [521944 2014-01-21] (Symantec Corporation)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 lvsels64; C:\Windows\System32\DRIVERS\lvsels64.sys [68064 2010-05-14] (Logitech Inc.)
S3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140204.018\ENG64.SYS [126040 2014-01-30] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140204.018\EX64.SYS [2099288 2014-01-30] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
S1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-09-10] (Symantec Corporation)
S3 stdriver; C:\Windows\System32\DRIVERS\stdriverx64.sys [32536 2013-03-24] ()
S0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-09-10] (Symantec Corporation)
S0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
S3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-10-24] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-09-27] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-04 23:54 - 2014-02-04 23:54 - 00000000 ____D () C:\Users\FARO\AppData\Local\NPE
2014-02-04 23:12 - 2014-02-05 09:05 - 00000000 ____D () C:\FRST
2014-02-04 03:38 - 2014-02-04 03:38 - 00332520 ____T (Microsoft Corporation) C:\ProgramData\4ll2zjlf.zvv
2014-02-03 22:53 - 2014-02-05 08:23 - 95027928 ____T () C:\ProgramData\4ll2zjlf.fee
2014-02-03 22:53 - 2014-02-03 22:53 - 00176017 _____ (Microsoft Corporation) C:\ProgramData\fljz2ll4.cpp
2014-01-15 08:48 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2014-01-15 08:48 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2014-01-15 08:48 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2014-01-15 08:48 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2014-01-15 08:48 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2014-01-15 08:48 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2014-01-15 08:48 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2014-01-15 08:48 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2014-01-15 08:48 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2014-01-13 23:15 - 2014-01-29 11:00 - 00000000 ____D () C:\Program Files\timeEdition 1.1.6
2014-01-13 23:15 - 2014-01-13 23:16 - 00000000 ____D () C:\Users\FARO\Downloads\timeEdition1.1.6-win
2014-01-13 23:14 - 2014-02-03 16:48 - 00015274 _____ () C:\Users\FARO\AppData\Roaming\com.living-e.timeEdition.plist
2014-01-13 23:14 - 2014-02-03 16:48 - 00000000 ____D () C:\Users\FARO\AppData\Roaming\timeEdition
2014-01-13 23:13 - 2014-01-13 23:13 - 05545073 _____ () C:\Users\FARO\Downloads\timeEdition1.1.6-win.zip
2014-01-13 11:22 - 2014-01-13 11:27 - 00060416 _____ () C:\Users\FARO\Desktop\Abs.planung bis 27.4.14.xls
2014-01-08 09:04 - 2014-01-08 09:04 - 10582632 _____ () C:\Users\FARO\Downloads\SetupAnyDVD7400.exe

==================== One Month Modified Files and Folders =======

2014-02-05 09:05 - 2014-02-04 23:12 - 00000000 ____D () C:\FRST
2014-02-05 08:23 - 2014-02-03 22:53 - 95027928 ____T () C:\ProgramData\4ll2zjlf.fee
2014-02-05 08:23 - 2013-06-08 15:27 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
2014-02-05 08:23 - 2013-06-03 12:36 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2014-02-05 08:23 - 2012-02-06 19:44 - 00000000 ____D () C:\Windows\SysWOW64\logishrd
2014-02-05 08:23 - 2012-02-06 19:44 - 00000000 ____D () C:\Windows\System32\logishrd
2014-02-05 08:23 - 2012-01-03 19:12 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-05 08:23 - 2011-11-19 08:43 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-05 08:23 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-05 08:23 - 2009-07-14 05:51 - 00109907 _____ () C:\Windows\setupact.log
2014-02-05 08:00 - 2010-11-21 04:47 - 00322760 _____ () C:\Windows\PFRO.log
2014-02-05 04:24 - 2012-01-03 18:32 - 01727187 _____ () C:\Windows\WindowsUpdate.log
2014-02-05 02:32 - 2012-01-05 12:37 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-02-05 01:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-05 00:24 - 2013-10-05 17:20 - 00000000 ____D () C:\Users\FARO\Documents\Outlook-Dateien
2014-02-05 00:14 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-05 00:14 - 2009-07-14 05:45 - 00016976 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-05 00:11 - 2013-10-05 18:55 - 00000000 ____D () C:\Users\FARO\AppData\Local\69EC7338-12BD-4083-9B3A-A97B834425C1.aplzod
2014-02-04 23:54 - 2014-02-04 23:54 - 00000000 ____D () C:\Users\FARO\AppData\Local\NPE
2014-02-04 19:20 - 2013-02-22 11:45 - 00000000 ____D () C:\Users\FARO\AppData\Local\CUSTPDF Writer
2014-02-04 12:37 - 2013-10-25 13:53 - 00000000 ____D () C:\Users\FARO\AppData\Roaming\vlc
2014-02-04 11:38 - 2012-10-16 11:18 - 00000000 ____D () C:\Program Files (x86)\AVG Secure Search
2014-02-04 10:32 - 2012-08-16 16:16 - 00000121 _____ () C:\Users\Public\LMDebug.log
2014-02-04 03:38 - 2014-02-04 03:38 - 00332520 ____T (Microsoft Corporation) C:\ProgramData\4ll2zjlf.zvv
2014-02-03 22:53 - 2014-02-03 22:53 - 00176017 _____ (Microsoft Corporation) C:\ProgramData\fljz2ll4.cpp
2014-02-03 22:47 - 2012-11-15 17:43 - 00000000 ____D () C:\Users\FARO\AppData\Roaming\VidCoder
2014-02-03 22:46 - 2013-10-24 10:20 - 00000000 ____D () C:\Users\FARO\Documents\0_komprimierte Filme
2014-02-03 16:48 - 2014-01-13 23:14 - 00015274 _____ () C:\Users\FARO\AppData\Roaming\com.living-e.timeEdition.plist
2014-02-03 16:48 - 2014-01-13 23:14 - 00000000 ____D () C:\Users\FARO\AppData\Roaming\timeEdition
2014-02-03 11:25 - 2012-03-06 16:07 - 00000000 ____D () C:\Users\FARO\AppData\Local\CrashDumps
2014-02-03 09:27 - 2013-12-02 09:52 - 00000287 _____ () C:\Users\FARO\AppData\Local\VersionChecker_19.xml
2014-02-03 09:27 - 2013-12-02 09:52 - 00000026 _____ () C:\Users\FARO\AppData\Local\tmp_nuc_url.dat
2014-01-29 11:00 - 2014-01-13 23:15 - 00000000 ____D () C:\Program Files\timeEdition 1.1.6
2014-01-23 09:48 - 2013-02-07 13:26 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-01-23 08:18 - 2012-02-06 18:30 - 00000000 ____D () C:\Users\FARO\AppData\Roaming\Skype
2014-01-22 19:07 - 2013-09-16 17:54 - 00002656 _____ () C:\Users\FARO\Desktop\Syno_UsersGuide_NAServer_deu - Verknüpfung.lnk
2014-01-16 08:57 - 2009-07-14 05:45 - 05054784 _____ () C:\Windows\System32\FNTCACHE.DAT
2014-01-15 18:47 - 2013-08-31 19:55 - 00000000 ____D () C:\Windows\System32\MRT
2014-01-15 18:46 - 2011-11-19 08:57 - 86054176 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2014-01-13 23:16 - 2014-01-13 23:15 - 00000000 ____D () C:\Users\FARO\Downloads\timeEdition1.1.6-win
2014-01-13 23:13 - 2014-01-13 23:13 - 05545073 _____ () C:\Users\FARO\Downloads\timeEdition1.1.6-win.zip
2014-01-13 11:34 - 2013-12-22 10:38 - 00000878 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-01-13 11:27 - 2014-01-13 11:22 - 00060416 _____ () C:\Users\FARO\Desktop\Abs.planung bis 27.4.14.xls
2014-01-09 17:07 - 2013-01-13 17:54 - 00000000 ____D () C:\Users\FARO\AppData\Roaming\FileZilla
2014-01-09 12:22 - 2013-06-26 18:57 - 00003730 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2014-01-09 08:56 - 2010-11-21 07:50 - 00707706 _____ () C:\Windows\System32\perfh007.dat
2014-01-09 08:56 - 2010-11-21 07:50 - 00153192 _____ () C:\Windows\System32\perfc007.dat
2014-01-09 08:56 - 2009-07-14 06:13 - 01643558 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-01-08 09:05 - 2013-11-10 10:29 - 00001108 _____ () C:\Users\Public\Desktop\AnyDVD.lnk
2014-01-08 09:04 - 2014-01-08 09:04 - 10582632 _____ () C:\Users\FARO\Downloads\SetupAnyDVD7400.exe

Files to move or delete:
====================
C:\ProgramData\4ll2zjlf.fee
C:\ProgramData\4ll2zjlf.zvv


==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2014-01-15 18:46:12
Restore point made on: 2014-01-19 19:00:15
Restore point made on: 2014-01-26 19:00:14
Restore point made on: 2014-02-02 19:00:15
Restore point made on: 2014-02-04 23:51:57
Restore point made on: 2014-02-05 00:01:32

==================== Memory info =========================== 

Percentage of memory in use: 10%
Total physical RAM: 8109.12 MB
Available physical RAM: 7243.41 MB
Total Pagefile: 8107.27 MB
Available Pagefile: 7242.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.87 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:1838.11 GB) (Free:1635.27 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: () (Removable) (Total:1.89 GB) (Free:1.89 GB) FAT
Drive e: (Recovery) (Fixed) (Total:24.41 GB) (Free:10.88 GB) NTFS
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System) (Fixed) (Total:0.49 GB) (Free:0.44 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 492CEBF7)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=24 GB) - (Type=27)
Partition 3: (Not Active) - (Size=-225365196800) - (Type=07 NTFS)

========================================================
Disk: 5 (MBR Code: Windows XP) (Size: 2 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=2 GB) - (Type=06)


LastRegBack: 2014-02-05 01:25

==================== End Of Log ============================

 

Themen zu Interpol Trojaner Windows 7 64 Bit , Schweiz
association, avg, download, explorer, explorer.exe, foren, home, java/exploit.agent.pop, lws.exe, microsoft, mozilla, nvidia, pdf, registry, scan, secure, secure search, service.exe, sperrbildschirm windows 7, spyhunter, spyhunter entfernen, svchost.exe, synology, system, trojan.fakems, trojaner, vtoolbarupdater, windows xp, winlogon.exe


« Adware-Fund unter Win7 (Lollipop?) | Lookinglink lässt sich nicht deinstallieren »


Ähnliche Themen: Interpol Trojaner Windows 7 64 Bit , Schweiz


  1. Windows 8.1: Interpol Trojaner
    Plagegeister aller Art und deren Bekämpfung - 06.02.2015 (12)
  2. Interpol Trojaner Windows 7
    Plagegeister aller Art und deren Bekämpfung - 12.11.2014 (28)
  3. Interpol-Virus (BKA Trojaner Schweiz)
    Log-Analyse und Auswertung - 02.04.2014 (5)
  4. Interpol Trojaner Windows 7
    Log-Analyse und Auswertung - 10.01.2014 (31)
  5. Windows 7: Interpol Trojaner
    Plagegeister aller Art und deren Bekämpfung - 07.01.2014 (23)
  6. Windows Vista: Interpol Trojaner
    Log-Analyse und Auswertung - 04.01.2014 (11)
  7. GVU/Interpol Trojaner Windows 7
    Log-Analyse und Auswertung - 24.11.2013 (3)
  8. Windows 7: Bka-Interpol-Trojaner mit Sperrschirm
    Plagegeister aller Art und deren Bekämpfung - 09.11.2013 (5)
  9. Windows 7 Interpol Trojaner
    Log-Analyse und Auswertung - 18.10.2013 (13)
  10. Problem Interpol Trojaner Windows XP Pro
    Log-Analyse und Auswertung - 13.10.2013 (9)
  11. Interpol Trojaner, Windows 7
    Log-Analyse und Auswertung - 13.10.2013 (3)
  12. Windows XP Interpol Trojaner
    Log-Analyse und Auswertung - 06.10.2013 (1)
  13. Windows 7: Interpol Trojaner mit Bildschirmsperre
    Log-Analyse und Auswertung - 04.10.2013 (3)
  14. GVU/Interpol Trojaner auf Windows 7 64Bit
    Plagegeister aller Art und deren Bekämpfung - 22.09.2013 (13)
  15. Polizei Trojaner Schweiz
    Log-Analyse und Auswertung - 20.05.2013 (9)
  16. ukash virus - bundestrojaner - schweiz - windows xp
    Plagegeister aller Art und deren Bekämpfung - 03.12.2012 (15)
  17. Bundespolizei Trojaner Schweiz
    Plagegeister aller Art und deren Bekämpfung - 30.08.2012 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Interpol Trojaner Windows 7 64 Bit , Schweiz - Hallo Auch mich hat es mit dem Interpol Trojaner erwischt. Nach eingehendem studieren eures Forums, habe ich den Scan mit frst64.exe durchgeführt und die txt-File angehängt. Ich bin neu und - Interpol Trojaner Windows 7 64 Bit , Schweiz...
Archiv
Du betrachtest: Interpol Trojaner Windows 7 64 Bit , Schweiz auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19