| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 8: Problem beim Starten von C:\ Problem Files (x86)\HomeTab\TBUpdater.dllWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
27.02.2015, 10:51
| #9 |
| |  Windows 8: Problem beim Starten von C:\ Problem Files (x86)\HomeTab\TBUpdater.dll Hallo Schrauber, Hier schon mal der Fixlog.txt Danach mache ich jetzt noch den DelFix und werde dann deine anderen Anweisungen ausführen. Vielen tausend Dank!!! Gerne werde ich dich dann nachher bewerten und ich sag dir dann auch bescheid, wenn ich komplett fertig bin. Gruß, Elfira Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-02-2015 01
Ran by Steffi at 2015-02-27 09:35:05 Run:1
Running from C:\FRST\Logs
Loaded Profiles: Steffi & (Available profiles: Steffi)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\CleanSchedule.exe
C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\Cloud_Backup_Setup.exe
C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\Cloud_Backup_Setup_Intl.exe
C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\RCPUninstall.exe
C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\RegCleanPro.exe
C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\systweakasp.exe
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\abadlpnchipkpeikchblnfiicfdoabei.crx.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead2d5b1ceb02e2.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead2d5b1ceb02e264.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead64.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf52.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf5264.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf52ba5935df36ef.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf52ba5935df36ef64.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BrowserAdapter.exe.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BrowserAdapter64.exe.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\AdvanceElite.PurBrowse64.exe.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\tmpA632.tmp.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.BOAS.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.BrowserAdapter.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.CompatibilityChecker.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.ExpExt.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.FFUpdate.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.GCUpdate.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.PurBrowse.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.Repmon.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\sppsm.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\spusm.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srbs.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srbu.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srptc.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srut.dll.vir
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\DaemonProcess.exe.vir
C:\AdwCleaner\Quarantine\C\WINDOWS\System32\roboot64.exe.vir
C:\Users\Steffi\AppData\Local\Google\Chrome\User Data\Default\Extensions\abadlpnchipkpeikchblnfiicfdoabei\1.0.1_0\background.js
C:\Users\Steffi\AppData\Local\Google\Chrome\User Data\Default\Extensions\abadlpnchipkpeikchblnfiicfdoabei\1.0.1_0\content.js
C:\Users\Steffi\Downloads\adblock-plus.exe
C:\Users\Steffi\Downloads\adblock-plus_setup.exe
C:\Users\Steffi\Downloads\dia-setup-0.97.2-Downloader.exe
C:\Users\Steffi\Downloads\FileOpenerSetup.exe
C:\Users\Steffi\Downloads\vlc-2.0.8-win32.exe
E:\STEFFI-PC\Backup Set 2013-01-27 190000\Backup Files 2013-06-16 190000\Backup files 1.zip
E:\STEFFI-PC\Backup Set 2013-01-27 190000\Backup Files 2013-06-16 190000\Backup files 3.zip
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HomePage: Default -> hxxp://search.conduit.com/?gd=&ctid=CT3323737&octid=EB_ORIGINAL_CTID&ISID=&SearchSource=55&CUI=&UM=5&UP=SP9E79B9D3-C825-44DA-95DB-700CB166DDD4&SSPV=
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?gd=&ctid=CT3323737&octid=EB_ORIGINAL_CTID&ISID=&SearchSource=55&CUI=&UM=5&UP=SP9E79B9D3-C825-44DA-95DB-700CB166DDD4&SSPV="
S2 speedbrowser; "C:\ProgramData\speedbrowser\speedbrowserService.exe" [X]
Emptytemp:
*****************
"C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\CleanSchedule.exe" => File/Directory not found.
"C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\Cloud_Backup_Setup.exe" => File/Directory not found.
"C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\Cloud_Backup_Setup_Intl.exe" => File/Directory not found.
"C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\RCPUninstall.exe" => File/Directory not found.
"C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\RegCleanPro.exe" => File/Directory not found.
"C:\$Recycle.Bin\S-1-5-21-984009953-2054991388-573099890-1001\$RI95H1U\systweakasp.exe" => File/Directory not found.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\abadlpnchipkpeikchblnfiicfdoabei.crx.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead2d5b1ceb02e2.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead2d5b1ceb02e264.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\6b89253f709740c79ead64.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf52.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf5264.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf52ba5935df36ef.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\94d62e354b43494cbf52ba5935df36ef64.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BrowserAdapter.exe.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BrowserAdapter64.exe.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\AdvanceElite.PurBrowse64.exe.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\tmpA632.tmp.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.BOAS.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.BrowserAdapter.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.CompatibilityChecker.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.ExpExt.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.FFUpdate.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.GCUpdate.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.PurBrowse.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\AdvanceElite\bin\plugins\AdvanceElite.Repmon.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\sppsm.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\spusm.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srbs.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srbu.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srptc.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\LPT\srut.dll.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\DaemonProcess.exe.vir => Moved successfully.
C:\AdwCleaner\Quarantine\C\WINDOWS\System32\roboot64.exe.vir => Moved successfully.
C:\Users\Steffi\AppData\Local\Google\Chrome\User Data\Default\Extensions\abadlpnchipkpeikchblnfiicfdoabei\1.0.1_0\background.js => Moved successfully.
C:\Users\Steffi\AppData\Local\Google\Chrome\User Data\Default\Extensions\abadlpnchipkpeikchblnfiicfdoabei\1.0.1_0\content.js => Moved successfully.
C:\Users\Steffi\Downloads\adblock-plus.exe => Moved successfully.
C:\Users\Steffi\Downloads\adblock-plus_setup.exe => Moved successfully.
C:\Users\Steffi\Downloads\dia-setup-0.97.2-Downloader.exe => Moved successfully.
C:\Users\Steffi\Downloads\FileOpenerSetup.exe => Moved successfully.
C:\Users\Steffi\Downloads\vlc-2.0.8-win32.exe => Moved successfully.
"E:\STEFFI-PC\Backup Set 2013-01-27 190000\Backup Files 2013-06-16 190000\Backup files 1.zip" => File/Directory not found.
"E:\STEFFI-PC\Backup Set 2013-01-27 190000\Backup Files 2013-06-16 190000\Backup files 3.zip" => File/Directory not found.
C:\WINDOWS\system32\GroupPolicy\Machine => Moved successfully.
C:\WINDOWS\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
Chrome HomePage deleted successfully.
Chrome StartupUrls deleted successfully.
speedbrowser => Service deleted successfully.
EmptyTemp: => Removed 701.6 MB temporary data.
The system needed a reboot.
==== End of Fixlog 09:36:21 ====
Vielen Dank, Gruß, Elfira |
| Themen zu Windows 8: Problem beim Starten von C:\ Problem Files (x86)\HomeTab\TBUpdater.dll |
| beim starten, msil/advancedsystemprotector.d, msil/browsefox.g, msil/browsefox.h, msil/browsefox.l, msil/browsefox.n, msil/toolbar.linkury.f, msil/toolbar.linkury.g, msil/toolbar.linkury.i, msil/toolbar.linkury.m.gen, problem beim starten von c:, wenig ahnung, win32/browsefox.ac, win32/browsefox.m, win32/browsefox.n, win32/browsefox.q, win32/mobogenie.a, win32/mypcbackup.a, win32/systweak.k, win32/systweak.o, win64/browsefox.a, win64/browsefox.ci, win64/browsefox.ck, win64/browsefox.co, win64/systweak.a, windows 8 |
Baum-Darstellung