Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen!

Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen!


Log-Analyse und Auswertung: Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen!

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 13.05.2014, 19:08   #1
ito
 
Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen! - Standard

Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen!


... verstehe

Code:
ATTFilter
ComboFix 14-05-13.01 - Benito 13.05.2014  19:50:29.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.49.1031.18.8174.3573 [GMT 2:00]
ausgeführt von:: c:\users\Benito\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1384835606.bdinstall.bin
c:\programdata\1385551167.bdinstall.bin
c:\programdata\1385551441.bdinstall.bin
c:\programdata\1388487424.12388.bin
c:\programdata\1388487424.40612.bin
c:\programdata\1388487424.53768.bin
c:\programdata\1388533439.bdinstall.bin
c:\programdata\1388533807.bdinstall.bin
c:\programdata\1391794359.bdinstall.bin
c:\programdata\1391794574.bdinstall.bin
c:\programdata\1391964202.6392.bin
c:\programdata\1391964202.6436.bin
c:\programdata\1391964202.6440.bin
c:\programdata\1391964202.6604.bin
c:\programdata\1391965097.5488.bin
c:\programdata\1391965097.bdinstall.bin
c:\programdata\1391965252.bdinstall.bin
c:\programdata\Local Settings\Temp
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\auth.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\burnlib.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\dsp_sps.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\enc_fhgaac.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\enc_flac.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\enc_lame.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\enc_vorbis.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\enc_wav.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\enc_wma.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_classicart.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_crasher.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_ff.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_find_on_disk.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_hotkeys.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_jumpex.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_jumpex_original.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_ml.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_nopro.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_orgler.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_play_remove.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_skinmanager.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_timerestore.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_tray.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\gen_undo.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_avi.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_cdda.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_dshow.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_flac.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_flv.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_linein.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_midi.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_mkv.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_mod.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_mp3.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_mp4.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_nsv.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_swf.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_vorbis.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_wav.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_wave.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_wm.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\in_wv.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_addons.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_autotag.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_bookmarks.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_devices.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_disc.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_downloads.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_enqplay.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_history.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_impex.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_local.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_nowplaying.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_online.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_orb.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_playlists.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_plg.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_pmp.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_rg.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_transcode.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ml_wire.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\ombrowser.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\out_disk.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\out_ds.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\out_wave.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\playlist.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\pmp_activesync.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\pmp_android.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\pmp_ipod.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\pmp_njb.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\pmp_p4s.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\pmp_usb.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\pmp_wifi.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\tagz.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\vis_avs.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\vis_milk2.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\vis_nsfs.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\winamp.lng
c:\users\Benito\AppData\Local\Temp\WLZ745F.tmp\winampa.lng
c:\users\Benito\AppData\Roaming\KW
c:\users\Benito\AppData\Roaming\KW\update.ini
c:\users\Benito\AppData\Roaming\Roaming
c:\users\Benito\AppData\Roaming\Roaming\HoldemManager\config\FTPRushTables.xml
c:\users\Benito\AppData\Roaming\Roaming\HoldemManager\Importing\Work Folder\Thumbs.db
c:\windows\AutoRun.ini
c:\windows\wininit.ini
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-04-13 bis 2014-05-13  ))))))))))))))))))))))))))))))
.
.
2014-05-13 17:55 . 2014-05-13 17:55	--------	d-----w-	c:\users\postgres\AppData\Local\temp
2014-05-13 03:34 . 2014-03-26 17:01	254240	----a-w-	c:\windows\system32\drivers\VBoxDrv.sys
2014-05-13 03:34 . 2014-03-26 17:00	128288	----a-w-	c:\windows\system32\drivers\VBoxUSBMon.sys
2014-05-11 14:53 . 2014-05-11 14:55	--------	d-----w-	C:\FRST
2014-05-11 14:36 . 2014-05-11 14:40	--------	d-----w-	c:\users\Benito\AppData\Roaming\JonDo
2014-05-11 14:33 . 2014-05-11 14:33	--------	d-----w-	c:\program files (x86)\JonDo
2014-05-11 13:27 . 2014-05-11 13:27	--------	d-----w-	c:\users\Benito\AppData\Roaming\Wireshark
2014-05-11 13:01 . 2014-05-11 13:01	--------	d-----w-	c:\program files (x86)\WinPcap
2014-05-11 12:59 . 2014-05-11 13:01	--------	d-----w-	c:\program files\Wireshark
2014-05-11 12:41 . 2010-08-30 06:34	536576	----a-w-	c:\windows\SysWow64\sqlite3.dll
2014-05-11 12:41 . 2014-05-11 12:47	--------	d-----w-	C:\AdwCleaner
2014-05-10 23:08 . 2014-05-10 23:08	--------	d-----w-	c:\users\Benito\AppData\Roaming\Apowersoft
2014-05-10 23:08 . 2014-04-09 19:05	31920	----a-w-	c:\windows\system32\drivers\Apowersoft_AudioDevice.sys
2014-05-08 06:36 . 2014-05-08 06:36	--------	d-----w-	c:\program files\TAP-Windows
2014-05-08 06:36 . 2014-05-08 06:36	--------	d-----w-	c:\program files\OpenVPN
2014-05-05 01:02 . 2014-05-05 01:02	--------	d-----w-	c:\users\Benito\AppData\Roaming\Apple Computer
2014-05-01 13:16 . 2014-05-01 13:16	--------	d-----w-	c:\program files (x86)\MultiBit-0.5.18
2014-04-29 11:21 . 2014-04-29 11:21	--------	d-----w-	c:\users\Benito\AppData\Local\Apple Computer
2014-04-29 10:55 . 2014-04-29 10:55	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2014-04-29 10:55 . 2014-04-29 10:55	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2014-04-29 10:55 . 2014-04-29 10:55	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2014-04-29 10:55 . 2014-04-29 10:55	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2014-04-29 10:55 . 2014-04-29 10:55	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2014-04-29 10:55 . 2014-04-29 10:55	--------	d-----w-	c:\programdata\Apple Computer
2014-04-29 10:55 . 2014-04-29 10:55	--------	d-----w-	c:\program files (x86)\Common Files\Apple
2014-04-29 10:55 . 2014-04-29 10:55	--------	d-----w-	c:\users\Benito\AppData\Local\Apple
2014-04-29 10:55 . 2014-04-29 10:55	--------	d-----w-	c:\programdata\Apple
2014-04-29 10:55 . 2014-04-29 10:55	--------	d-----w-	c:\program files (x86)\Apple Software Update
2014-04-29 10:39 . 2014-04-29 10:39	--------	d-----w-	c:\windows\de
2014-04-29 10:38 . 2014-04-29 10:38	--------	d-----w-	c:\program files (x86)\Microsoft SQL Server Compact Edition
2014-04-29 10:37 . 2014-04-29 10:37	537432	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\11b8d5031cf639705\DXSETUP.exe
2014-04-29 10:37 . 2014-04-29 10:37	1801048	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\11b8d5031cf639705\dsetup32.dll
2014-04-29 10:37 . 2014-04-29 10:37	89944	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\11b8d5031cf639705\DSETUP.dll
2014-04-29 10:37 . 2014-04-29 10:37	94040	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\1059b50f1cf639704\DSETUP.dll
2014-04-29 10:37 . 2014-04-29 10:37	525656	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\1059b50f1cf639704\DXSETUP.exe
2014-04-29 10:37 . 2014-04-29 10:37	1691480	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\1059b50f1cf639704\dsetup32.dll
2014-04-29 10:37 . 2014-04-29 10:37	89944	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\fa41df81cf639702\DSETUP.dll
2014-04-29 10:37 . 2014-04-29 10:37	537432	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\fa41df81cf639702\DXSETUP.exe
2014-04-29 10:37 . 2014-04-29 10:37	1801048	----a-w-	c:\program files (x86)\Common Files\Windows Live\.cache\fa41df81cf639702\dsetup32.dll
2014-04-23 02:27 . 2014-04-23 02:27	--------	d-----w-	c:\program files (x86)\X-Rite
2014-04-23 02:27 . 2007-02-08 11:48	51600	----a-w-	c:\windows\system32\drivers\i1_x64.sys
2014-04-23 02:27 . 2005-12-13 22:53	7808	----a-w-	c:\windows\system32\drivers\i1display_x64.sys
2014-04-23 02:17 . 2007-02-08 11:48	51600	----a-w-	c:\windows\system32\drivers\i1iO2_x64.sys
2014-04-23 02:17 . 2006-05-18 14:13	7808	----a-w-	c:\windows\system32\drivers\SeqCal.sys
2014-04-23 02:17 . 2006-05-18 14:13	47104	----a-w-	c:\windows\system32\drivers\EyeOneX64.sys
2014-04-23 02:16 . 2014-04-23 02:16	--------	d-----w-	c:\program files (x86)\GretagMacbeth
2014-04-17 12:15 . 2014-04-17 12:15	--------	d-sh--w-	c:\windows\ftpcache
2014-04-14 16:57 . 2014-04-14 16:57	--------	d-----w-	c:\users\Benito\AppData\Roaming\DropboxMaster
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-09 01:48 . 2012-11-09 21:48	70832	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-09 01:48 . 2012-11-09 21:48	692400	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-04-29 10:38 . 2011-03-28 17:36	23264	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-04-14 18:13 . 2013-09-29 15:57	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-10 07:42 . 2012-02-29 23:56	90655440	----a-w-	c:\windows\system32\MRT.exe
2014-03-31 19:41 . 2014-03-31 19:41	58568	----a-w-	c:\windows\SysWow64\sirenacm.dll
2014-03-31 19:34 . 2014-03-31 19:34	322248	----a-w-	c:\windows\WLXPGSS.SCR
2014-03-31 07:35 . 2012-02-29 23:13	270496	------w-	c:\windows\system32\MpSigStub.exe
2014-03-26 17:00 . 2014-03-26 17:00	156448	----a-w-	c:\windows\system32\drivers\VBoxNetFlt.sys
2014-03-26 17:00 . 2014-03-26 17:00	141600	----a-w-	c:\windows\system32\drivers\VBoxNetAdp.sys
2014-03-26 16:58 . 2014-03-26 16:58	204064	----a-w-	c:\windows\system32\VBoxNetFltNobj.dll
2014-03-17 08:16 . 2014-05-13 17:57	10521840	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{16A9530C-EA8E-4783-B316-2FADA9E18E45}\mpengine.dll
2014-03-17 08:16 . 2014-05-13 17:56	10521840	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{ECBEF26C-5FAD-4308-95CB-E1FAFD4E225B}\mpengine.dll
2014-03-06 10:21 . 2014-04-10 07:49	23549440	----a-w-	c:\windows\system32\mshtml.dll
2014-03-06 09:32 . 2014-04-10 07:49	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2014-03-06 09:31 . 2014-04-10 07:49	4096	----a-w-	c:\windows\system32\ieetwcollectorres.dll
2014-03-06 08:59 . 2014-04-10 07:49	66048	----a-w-	c:\windows\system32\iesetup.dll
2014-03-06 08:57 . 2014-04-10 07:49	548352	----a-w-	c:\windows\system32\vbscript.dll
2014-03-06 08:57 . 2014-04-10 07:49	48640	----a-w-	c:\windows\system32\ieetwproxystub.dll
2014-03-06 08:53 . 2014-04-10 07:49	2767360	----a-w-	c:\windows\system32\iertutil.dll
2014-03-06 08:40 . 2014-04-10 07:49	51200	----a-w-	c:\windows\system32\jsproxy.dll
2014-03-06 08:39 . 2014-04-10 07:49	33792	----a-w-	c:\windows\system32\iernonce.dll
2014-03-06 08:32 . 2014-04-10 07:49	574976	----a-w-	c:\windows\system32\ieui.dll
2014-03-06 08:32 . 2014-04-10 07:49	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2014-03-06 08:29 . 2014-04-10 07:49	139264	----a-w-	c:\windows\system32\ieUnatt.exe
2014-03-06 08:29 . 2014-04-10 07:49	111616	----a-w-	c:\windows\system32\ieetwcollector.exe
2014-03-06 08:28 . 2014-04-10 07:49	752640	----a-w-	c:\windows\system32\jscript9diag.dll
2014-03-06 08:15 . 2014-04-10 07:49	940032	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2014-03-06 08:11 . 2014-04-10 07:49	5784064	----a-w-	c:\windows\system32\jscript9.dll
2014-03-06 08:09 . 2014-04-10 07:49	453120	----a-w-	c:\windows\system32\dxtmsft.dll
2014-03-06 08:03 . 2014-04-10 07:49	586240	----a-w-	c:\windows\system32\ie4uinit.exe
2014-03-06 08:02 . 2014-04-10 07:49	61952	----a-w-	c:\windows\SysWow64\iesetup.dll
2014-03-06 08:02 . 2014-04-10 07:49	455168	----a-w-	c:\windows\SysWow64\vbscript.dll
2014-03-06 08:01 . 2014-04-10 07:49	51200	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2014-03-06 07:56 . 2014-04-10 07:49	38400	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2014-03-06 07:48 . 2014-04-10 07:49	195584	----a-w-	c:\windows\system32\msrating.dll
2014-03-06 07:46 . 2014-04-10 07:49	4254720	----a-w-	c:\windows\SysWow64\jscript9.dll
2014-03-06 07:42 . 2014-04-10 07:49	296960	----a-w-	c:\windows\system32\dxtrans.dll
2014-03-06 07:38 . 2014-04-10 07:49	112128	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2014-03-06 07:36 . 2014-04-10 07:49	592896	----a-w-	c:\windows\SysWow64\jscript9diag.dll
2014-03-06 07:21 . 2014-04-10 07:49	628736	----a-w-	c:\windows\system32\msfeeds.dll
2014-03-06 07:13 . 2014-04-10 07:49	32256	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2014-03-06 07:11 . 2014-04-10 07:49	2043904	----a-w-	c:\windows\system32\inetcpl.cpl
2014-03-06 06:53 . 2014-04-10 07:49	13551104	----a-w-	c:\windows\system32\ieframe.dll
2014-03-06 06:40 . 2014-04-10 07:49	1967104	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2014-03-06 06:22 . 2014-04-10 07:49	2260480	----a-w-	c:\windows\system32\wininet.dll
2014-03-06 05:58 . 2014-04-10 07:49	1400832	----a-w-	c:\windows\system32\urlmon.dll
2014-03-06 05:50 . 2014-04-10 07:49	846336	----a-w-	c:\windows\system32\ieapfltr.dll
2014-03-06 05:41 . 2014-04-10 07:49	1789440	----a-w-	c:\windows\SysWow64\wininet.dll
2014-03-04 09:44 . 2014-04-10 07:42	362496	----a-w-	c:\windows\system32\wow64win.dll
2014-03-04 09:44 . 2014-04-10 07:42	243712	----a-w-	c:\windows\system32\wow64.dll
2014-03-04 09:44 . 2014-04-10 07:42	13312	----a-w-	c:\windows\system32\wow64cpu.dll
2014-03-04 09:44 . 2014-04-10 07:42	16384	----a-w-	c:\windows\system32\ntvdm64.dll
2014-03-04 09:44 . 2014-04-10 07:42	1163264	----a-w-	c:\windows\system32\kernel32.dll
2014-03-04 09:17 . 2014-04-10 07:42	14336	----a-w-	c:\windows\SysWow64\ntvdm64.dll
2014-03-04 09:17 . 2014-04-10 07:42	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2014-03-04 09:16 . 2014-04-10 07:42	25600	----a-w-	c:\windows\SysWow64\setup16.exe
2014-03-04 09:16 . 2014-04-10 07:42	5120	----a-w-	c:\windows\SysWow64\wow32.dll
2014-03-04 08:09 . 2014-04-10 07:42	7680	----a-w-	c:\windows\SysWow64\instnm.exe
2014-03-04 08:09 . 2014-04-10 07:42	2048	----a-w-	c:\windows\SysWow64\user.exe
2014-02-13 12:46 . 2014-02-13 12:46	354656	----a-w-	c:\windows\SysWow64\DivXControlPanelApplet.cpl
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\Benito\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\Benito\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\Benito\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Viber"="c:\users\Benito\AppData\Local\Viber\Viber.exe" [2013-07-31 912904]
"MouseServer"="c:\program files (x86)\MouseServer\MouseServer.exe" [2013-08-26 244736]
"RocketDock"="c:\program files (x86)\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20922016]
"NetDrive"="c:\program files\NetDrive\netdrive.exe" [2014-05-08 3620864]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2013-04-25 1075296]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2013-12-18 41336]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2013-12-18 840568]
"RoccatKonePure"="c:\program files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE" [2013-06-10 561152]
"V0770Mon.exe"="c:\windows\V0770Mon.exe" [2012-06-01 32884]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2014-02-14 450560]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-02-20 689744]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2014-01-10 1861968]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
c:\users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Benito\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-4-18 33604728]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
JonDo.lnk - c:\program files (x86)\JonDo\JonDo.exe -m -s [2013-8-29 99192]
Logo Calibration Loader.lnk - c:\program files (x86)\GretagMacbeth\i1\Eye-One Match 3\CalibrationLoader\CalibrationLoader.exe [2014-4-23 708608]
ProfileReminder.lnk - c:\program files (x86)\GretagMacbeth\i1\Eye-One Match 3\ProfileReminder.exe [2014-4-23 954368]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage-Technologie;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R2 PDIHWCTL;PDIHWCTL;c:\windows\system32\drivers\pdihwctl.sys;c:\windows\SYSNATIVE\drivers\pdihwctl.sys [x]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R2 UPDATESRV;Bitdefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender\updatesrv.exe;c:\program files\Bitdefender\Bitdefender\updatesrv.exe [x]
R3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys;c:\windows\SYSNATIVE\drivers\Apowersoft_AudioDevice.sys [x]
R3 avmeject;AVM Eject;c:\windows\system32\drivers\avmeject.sys;c:\windows\SYSNATIVE\drivers\avmeject.sys [x]
R3 bdfwfpf_pc;bdfwfpf_pc;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [x]
R3 DFX11_1;DFX Audio Enhancer 11.1;c:\windows\system32\drivers\dfx11_1x64.sys;c:\windows\SYSNATIVE\drivers\dfx11_1x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EyeOneDisplay;EyeOneDisplay;c:\windows\system32\Drivers\i1display_x64.sys;c:\windows\SYSNATIVE\Drivers\i1display_x64.sys [x]
R3 fwlanusb4;FRITZ!WLAN N/G;c:\windows\system32\DRIVERS\fwlanusb4.sys;c:\windows\SYSNATIVE\DRIVERS\fwlanusb4.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys;c:\windows\SYSNATIVE\DRIVERS\lvpopf64.sys [x]
R3 LVUVC64;Logitech QuickCam Pro 5000(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 ndfs;ndfs;c:\program files\NetDrive\ndfs.sys;c:\program files\NetDrive\ndfs.sys [x]
R3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssudserd.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys;c:\windows\SYSNATIVE\Drivers\VBoxUSB.sys [x]
R4 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]
S0 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys;c:\windows\SYSNATIVE\DRIVERS\gzflt.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 ndsvc;NetDrive Service;c:\program files\NetDrive\ndsvc.exe;c:\program files\NetDrive\ndsvc.exe [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
S2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4;c:\program files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe runservice -N postgresql-8.4 -D C:/Program Files (x86)/PostgreSQL/8.4/data -w;c:\program files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe runservice -N postgresql-8.4 -D C:/Program Files (x86)/PostgreSQL/8.4/data -w [x]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys;c:\windows\SYSNATIVE\drivers\LVUSBS64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 V0770Vid;Live! Cam Sync HD VF0770 Driver;c:\windows\system32\DRIVERS\V0770Vid.sys;c:\windows\SYSNATIVE\DRIVERS\V0770Vid.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-29 20:57	1078088	----a-w-	c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-05-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-09 01:48]
.
2014-05-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4015719053-3797219543-3078460475-1000Core.job
- c:\users\Benito\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-25 00:11]
.
2014-05-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4015719053-3797219543-3078460475-1000UA.job
- c:\users\Benito\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-25 00:11]
.
2014-05-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-21 01:59]
.
2014-05-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-21 01:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-08-30 08:01	3358064	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-08-30 08:01	3358064	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-08-30 08:01	3358064	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Benito\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Benito\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Benito\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Benito\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2011-12-07 5889816]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-06-13 472984]
"XMouseButtonControl"="c:\program files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe" [2013-10-06 1171088]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-11-04 7204568]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = www.google.com
mStart Page = www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
mDefault_Page_URL = www.google.com
mDefault_Search_URL = www.google.com
uInternet Settings,ProxyOverride = <local>
IE: {{07BA1DA9-F501-4796-8728-74D1B91A6CD5} - c:\program files (x86)\PokerStars.EU\PokerStarsUpdate.exe
IE: {{C4046502-6524-4d87-896C-878F57D1FF07} - c:\program files (x86)\PokerStars.IT\PokerStarsUpdate.exe
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{DE0522D4-BC58-40A7-A50A-6E2DA008BA92}: NameServer = 208.67.222.222,208.67.220.220
FF - ProfilePath - c:\users\Benito\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.enabled - false
FF - prefs.js: network.proxy.ftp - 127.0.0.1
FF - prefs.js: network.proxy.ftp_port - 4001
FF - prefs.js: network.proxy.gopher - 127.0.0.1
FF - prefs.js: network.proxy.gopher_port - 4001
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 4001
FF - prefs.js: network.proxy.socks - 127.0.0.1
FF - prefs.js: network.proxy.socks_port - 4001
FF - prefs.js: network.proxy.ssl - 127.0.0.1
FF - prefs.js: network.proxy.ssl_port - 4001
FF - prefs.js: network.proxy.type - 1
.
.
------- Dateityp-Verknüpfung -------
.
inifile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1
JSEFile=c:\windows\SysWow64\WScript.exe "%1" %*
txtfile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{7e111a5c-3d11-4f56-9463-5310c3c69025} - (no file)
URLSearchHooks-{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run-Driver Genius - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Explorer_Run-43061 - c:\progra~3\LOCALS~1\Temp\msvrmv.cmd
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
ShellIconOverlayIdentifiers-{152C96EB-288E-4EDC-B7C6-D21F8250ADF3} - (no file)
ShellIconOverlayIdentifiers-{342DAA0B-D796-460D-8566-901E08A1CCAD} - (no file)
ShellIconOverlayIdentifiers-{57595DAE-1AE1-4D97-A49E-67CBB53B52DF} - (no file)
ShellIconOverlayIdentifiers-{33816773-98AE-4723-ADE0-EBE54C8B5A67} - (no file)
AddRemove-Driver Genius Professional Edition_is1 - c:\program files (x86)\Driver-Soft\DriverGenius\unins000.exe
AddRemove-PokerStars.it - c:\program files (x86)\PokerStars.IT\PokerStarsUninstall.exe
AddRemove-Titan Poker - c:\poker\Titan Poker\TitanPSetupUninstall1386726359841_da094e_de.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\postgresql-8.4]
"ImagePath"="\"c:\program files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe\" runservice -N \"postgresql-8.4\" -D \"C:/Program Files (x86)/PostgreSQL/8.4/data\" -w"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-4015719053-3797219543-3078460475-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-4015719053-3797219543-3078460475-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\RNG*]
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
   bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\DbgagD\1*]
"value"="?\06\04\07\09\06\10t"
.
[HKEY_LOCAL_MACHINE\SYSTEM\BDSandBox\Benito\machine\SOFTWARE\Microsoft\Cryptography\RNG*]
@="!shallow!"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\JonDo\JonDo.exe
c:\program files (x86)\Java\jre7\bin\javaw.exe
c:\users\Benito\AppData\Roaming\Dropbox\bin\Dropbox.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-05-13  19:58:25 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-05-13 17:58
.
Vor Suchlauf: 16 Verzeichnis(se), 51.798.765.568 Bytes frei
Nach Suchlauf: 22 Verzeichnis(se), 54.889.758.720 Bytes frei
.
- - End Of File - - B9C5217A515A334F68BAD9B90DDBD0E9
A36C5E4F47E84449FF07ED3517B43A31

Antwort

Themen zu Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen!
bitte um hilfe, gelöscht, hilfe, löschen, malwarebytes, mehrmals, neustart, nicht löschen, sache, troja, trojan.agent, versuch, versucht, windows, windows 7


« PC läuft sehr langsam, Firefox schließt automatisch, Manche Seiten blockiert | Windows 7, 64 bit, Trojaner über Email geöffnet »


Ähnliche Themen: Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen!


  1. Windows 7: Malwarebytes Anti-Malware findet Trojan.Agent.RC und setzt SkyDriveSetup.exe in Quarantäne
    Log-Analyse und Auswertung - 12.06.2015 (17)
  2. Avira findet seit Tagen db29.exe, In Quarantäne verschieben funktioniert nicht, Programm lässt sich nicht löschen
    Log-Analyse und Auswertung - 20.02.2015 (12)
  3. Laptop ruckelt nur noch, Iminent lässt sich nicht löschen und Radio schaltet sich alleine an und aus und lässt sich ebenfalls nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 27.06.2014 (3)
  4. Mbam findet PUP.InstallBrain, PC hängt und Incredibar lässt sich nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 09.01.2013 (10)
  5. Malwarebytes findet "Trojan.Agent" - dieser ist aber nach löschen jedesmal wieder da
    Plagegeister aller Art und deren Bekämpfung - 01.01.2013 (14)
  6. TR/ATRAPS.Gen2 gefunden; Backdoor Agent lässt sich nicht löschen; mediashifting.com öffnet sich
    Plagegeister aller Art und deren Bekämpfung - 23.01.2012 (29)
  7. TrojWare.Win32.Trojan.Agent.Gen@1 in temp/upd.exe gefunden! Lässt sich nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 08.12.2011 (16)
  8. Kaspersky 2012 Sec. Findet Trojaner lässt sich aber nicht löschen.
    Plagegeister aller Art und deren Bekämpfung - 23.09.2011 (14)
  9. Trojaner "TR/PSW.Papras.AB" gefunden, lässt sich jedoch nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 03.08.2010 (13)
  10. avast!-Virenscanner zeigt Virus/Wurm an - dieser lässt sich allerdings nicht löschen!
    Plagegeister aller Art und deren Bekämpfung - 17.02.2010 (1)
  11. ~DF7690.TMP lässt sich nicht löschen, malwarebytes findet adware.NetPumper
    Plagegeister aller Art und deren Bekämpfung - 06.02.2009 (0)
  12. Tronjanier: TR/Spy.Agent.hvs ......lässt sich nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 05.01.2009 (0)
  13. TR/agent.avfm lässt sich nicht löschen...
    Mülltonne - 16.12.2008 (0)
  14. win32.agent.pz lässt sich nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 20.10.2007 (18)
  15. Agent.ay lässt sich nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 17.05.2006 (1)
  16. Tr/Agent.BI lässt sich nicht löschen
    Log-Analyse und Auswertung - 17.05.2005 (7)
  17. Norton findet Bedrohung...lässt sich aber nicht löschen-> bitte um Hilfe!!!
    Plagegeister aller Art und deren Bekämpfung - 19.04.2005 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen! - ... verstehe Code: Alles auswählen Aufklappen ATTFilter ComboFix 14-05-13.01 - Benito 13.05.2014 19:50:29.1.4 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1031.18.8174.3573 [GMT 2:00] ausgeführt von:: c:\users\Benito\Desktop\ComboFix.exe AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859} - Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen!...
Archiv
Du betrachtest: Windows 7: Malwarebytes findet Trojan.Agent, jedoch lässt sich dieser nicht löschen! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131