Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7 - Home 64bit - Computer total verseucht

Windows 7 - Home 64bit - Computer total verseucht


Log-Analyse und Auswertung: Windows 7 - Home 64bit - Computer total verseucht

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 23.07.2014, 16:34   #4
Escor
 
Windows 7 - Home 64bit - Computer total verseucht - Standard

Windows 7 - Home 64bit - Computer total verseucht


zunächst mal besten dank für die schnelle Hilfe.



Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-07-2014 01
Ran by SYSTEM at 2014-07-23 17:15:50 Run:1
Running from J:\
Boot Mode: Recovery
==============================================

Content of fixlist:
*****************
start
HKLM Group Policy restriction on software: C:\Program Files\Microsoft Security Client <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Malwarebytes' Anti-Malware <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Spyware Terminator <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Common Files\Symantec Shared <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Avira <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Microsoft Security Client <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\McAfee <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Spyware Terminator <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Malwarebytes <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Avira <====== ATTENTION
HKU\Reinhard\...\Run: [AbvaSquz] => regsvr32.exe "C:\ProgramData\AbvaSquz.dat"
HKU\Reinhard\...\Run: [UmahMiri] => regsvr32.exe "C:\ProgramData\UmahMiri.dat"
HKU\Reinhard\...\Run: [OrexFuyu] => regsvr32.exe "C:\ProgramData\OrexFuyu.dat"
HKU\Reinhard\...\Run: [AbziRequ] => regsvr32.exe "C:\ProgramData\AbziRequ\AbziRequ.dat"
HKU\Reinhard\...\Run: [OjimIxos] => regsvr32.exe "C:\ProgramData\OjimIxos\OjimIxos.dat"
HKU\Reinhard\...\Run: [UcipCojy] => regsvr32.exe "C:\ProgramData\UcipCojy\UcipCojy.dat"
HKU\Reinhard\...\Run: [EtfaqDexle] => regsvr32.exe "C:\ProgramData\EtfaqDexle\EtfaqDexle.dat"
HKU\Reinhard\...\Run: [UjzirAhobf] => regsvr32.exe "C:\ProgramData\UjzirAhobf\UjzirAhobf.dat"
HKU\Reinhard\...\Run: [AxugAyaff] => regsvr32.exe "C:\ProgramData\AxugAyaff\AxugAyaff.dat" 
C:\ProgramData\AbvaSquz.dat
C:\ProgramData\UmahMiri.dat
C:\ProgramData\OrexFuyu.dat
C:\ProgramData\AbziRequ
C:\ProgramData\OjimIxos
C:\ProgramData\UcipCojy
C:\ProgramData\EtfaqDexle
C:\ProgramData\UjzirAhobf
C:\ProgramData\AxugAyaff
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\aranna.exe ()
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\aranna.exe ()
Startup: C:\Users\Reinhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\explorer.lnk
ShortcutTarget: explorer.lnk -> C:\ProgramData\08B831C8C5C95390B72EFDBE2D83C48A\9fl8eek.cpp ()
S2 Winmgmt; C:\ProgramData\08B831C8C5C95390B72EFDBE2D83C48A\kee8lf9.dot [333556 2014-05-24] (Microsoft Corporation)
C:\ProgramData\08B831C8C5C95390B72EFDBE2D83C48A
C:\Users\Reinhard\Downloads\gggggggggggggggggggggggggggggggggggg.exe
C:\Users\Reinhard\Downloads\setup.exe
C:\ProgramData\69C67EF23B9CD73186992916CB237AD7
C:\Program Files (x86)\Google\Desktop\Install
C:\ProgramData\ozouei.dat
C:\ProgramData\vjrbeqv.dat
C:\ProgramData\vqnwam.dat
end

*****************

HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\AbvaSquz => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\UmahMiri => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\OrexFuyu => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\AbziRequ => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\OjimIxos => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\UcipCojy => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\EtfaqDexle => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\UjzirAhobf => value deleted successfully.
HKU\Reinhard\Software\Microsoft\Windows\CurrentVersion\Run\\AxugAyaff => value deleted successfully.
C:\ProgramData\AbvaSquz.dat => Moved successfully.
C:\ProgramData\UmahMiri.dat => Moved successfully.
C:\ProgramData\OrexFuyu.dat => Moved successfully.
C:\ProgramData\AbziRequ => Moved successfully.
C:\ProgramData\OjimIxos => Moved successfully.
C:\ProgramData\UcipCojy => Moved successfully.
C:\ProgramData\EtfaqDexle => Moved successfully.
C:\ProgramData\UjzirAhobf => Moved successfully.
C:\ProgramData\AxugAyaff => Moved successfully.
C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\aranna.exe => Moved successfully.
C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\aranna.exe not found.
C:\Users\Reinhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\explorer.lnk => Moved successfully.
C:\ProgramData\08B831C8C5C95390B72EFDBE2D83C48A\9fl8eek.cpp => Moved successfully.
Winmgmt => Service restored successfully.
C:\ProgramData\08B831C8C5C95390B72EFDBE2D83C48A => Moved successfully.
C:\Users\Reinhard\Downloads\gggggggggggggggggggggggggggggggggggg.exe => Moved successfully.
C:\Users\Reinhard\Downloads\setup.exe => Moved successfully.
C:\ProgramData\69C67EF23B9CD73186992916CB237AD7 => Moved successfully.
C:\Program Files (x86)\Google\Desktop\Install => Moved successfully.
C:\ProgramData\ozouei.dat => Moved successfully.
C:\ProgramData\vjrbeqv.dat => Moved successfully.
C:\ProgramData\vqnwam.dat => Moved successfully.

==== End of Fixlog ====
Ps: starten geht ohne weiteres.

Deinstallstion von so tollen programmen wie:
Winzipper und v9 funktioniert leider weiterhin nicht.
Geändert von Escor (23.07.2014 um 17:21 Uhr) Grund: Nachtrag

 

Themen zu Windows 7 - Home 64bit - Computer total verseucht
adobe, antivir, askbar, avg, avira, computer, desktop, google, hijack, hijackthis, home, kaputt, realtek, registry, rundll, scan, security, services.exe, software, spyware, svchost.exe, symantec, system, temp, usb, windows


« Telekom Fake Rechnung geöffnet! | Windows Vista: Avira Gruppenrichtlinien-Block; Fehlermeldung beim Booten »


Ähnliche Themen: Windows 7 - Home 64bit - Computer total verseucht


  1. Windows 7 Home Premium 64bit: diverse Virenfunde
    Log-Analyse und Auswertung - 19.03.2015 (19)
  2. Windows 7 home 64bit: Schädlingsbefall durch Techgile Virus. Werbung in Browser.
    Log-Analyse und Auswertung - 25.02.2015 (11)
  3. Windows 7 Home 64Bit: Virusfund nach Öffnen einer Dateianlage und Dienst atiedxx.exe läuft
    Log-Analyse und Auswertung - 18.02.2015 (24)
  4. Windows 7 64Bit home Premium sehr langsam
    Log-Analyse und Auswertung - 26.10.2014 (11)
  5. Windows 7 Home Premium 64Bit, Internet langsam bzw Downloads
    Alles rund um Windows - 04.01.2014 (1)
  6. Windows 7 (64bit): Paypal Phishingmail -Link angeklickt - Rechner verseucht?
    Log-Analyse und Auswertung - 08.12.2013 (9)
  7. GVU Trojaner auf meinem System / Windows 7 Home Premium 64bit
    Log-Analyse und Auswertung - 30.10.2012 (1)
  8. BKA Trojaner - Windows 7 Home Premium 64bit
    Plagegeister aller Art und deren Bekämpfung - 12.08.2012 (17)
  9. PC total verseucht?
    Log-Analyse und Auswertung - 17.10.2011 (3)
  10. Bluescreen Windows 7 Home 64bit
    Alles rund um Windows - 04.08.2011 (21)
  11. Windows 7 Home 64bit Windows Installer Problem
    Alles rund um Windows - 27.07.2011 (11)
  12. Total verseucht?
    Mülltonne - 13.10.2008 (0)
  13. PC total verseucht??
    Plagegeister aller Art und deren Bekämpfung - 20.06.2008 (43)
  14. Computer total verseucht, Bitte um Auswertung der Logfile
    Log-Analyse und Auswertung - 29.07.2007 (10)
  15. Computer total verseucht, bitte helfen
    Log-Analyse und Auswertung - 22.07.2007 (6)
  16. Total Verseucht
    Mülltonne - 11.01.2007 (4)
  17. PC total verseucht?
    Log-Analyse und Auswertung - 20.03.2005 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7 - Home 64bit - Computer total verseucht - zunächst mal besten dank für die schnelle Hilfe. Code: Alles auswählen Aufklappen ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-07-2014 01 Ran by SYSTEM - Windows 7 - Home 64bit - Computer total verseucht...
Archiv
Du betrachtest: Windows 7 - Home 64bit - Computer total verseucht auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55