| |
| |||||||
Log-Analyse und Auswertung: 50% CPU usage wenn idle...Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
13.12.2016, 20:18
| #6 |
 |  50% CPU usage wenn idle... ah, jetzt  also hier noch mal von oktober. Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 20.10.2014 Scan Time: 15:45 Logfile: 20.10.2014.txt Administrator: Yes Version: 2.00.3.1025 Malware Database: v2014.09.19.05 Rootkit Database: v2014.09.18.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: m Scan Type: Threat Scan Result: Completed Objects Scanned: 368441 Time Elapsed: 10 min, 26 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 2 PUP.BitCoinMiner, C:\Temporary\ieutil.exe, 24716, Delete-on-Reboot, [661b3bb45c1f86b0b6ccb23da35ed030] Trojan.Agent.MNR, C:\Temporary\iehighutil.exe, 18064, Delete-on-Reboot, [11705d927506e55139bba5b755af817f] Modules: 0 (No malicious items detected) Registry Keys: 1 Trojan.BtcMiner.TS, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Time, Quarantined, [6c155e914b30d3630e0db9a64fb553ad], Registry Values: 3 Trojan.Kryptik, HKU\S-1-5-21-896307261-3574068607-3140626432-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|{DB49928F-3F27-5CE5-C191-37ECBFB20947}, C:\Users\Teng\AppData\Roaming\Ivyl\onaq.exe, Quarantined, [86fb826d700bfb3b6f9dbd399769ed13] Hijack.Shell.Gen, HKU\S-1-5-21-896307261-3574068607-3140626432-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|shell, C:\Users\Teng\AppData\Roaming\EelguyPf\f1YRdTk.exe,explorer.exe, Quarantined, [4f3227c8e29988ae0e9a7762bc47aa56] Trojan.Agent.MNR, HKU\S-1-5-21-896307261-3574068607-3140626432-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|iehighutil, "C:\Temporary\iehighutil.exe", Quarantined, [11705d927506e55139bba5b755af817f] Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 23 PUP.BitCoinMiner, C:\Temporary\ieutil.exe, Quarantined, [661b3bb45c1f86b0b6ccb23da35ed030], Trojan.Kryptik, C:\Users\Teng\AppData\Roaming\Ivyl\onaq.exe, Quarantined, [86fb826d700bfb3b6f9dbd399769ed13], Trojan.VBKrypt, C:\Users\Teng\AppData\Roaming\Imge\noce.exe, Quarantined, [6f122ec16d0edd59e0c1fcbcbb45de22], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\Time-svc.exe, Quarantined, [6c155e914b30d3630e0db9a64fb553ad], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\WindowsTime.exe, Quarantined, [6c15618eb0cb241243d956093dc7b947], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\TimeServer.exe, Quarantined, [d5acdf102952ec4aee2f77e8659f4ab6], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\c5ba51c8822b2ebb730d18f8bab93d8a.elf, Quarantined, [9fe2bf30a3d8221461bdb1ae7391946c], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\d4ce4f36e508153bf25ab6a8dcde7f0d.elf, Quarantined, [a6db3fb0c1baef476faf2d329e6639c7], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.core.multiarray.pyd, Quarantined, [532ee50ae09bd16572add78846be6d93], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.core.scalarmath.pyd, Quarantined, [99e8fef16e0d58defb24cb94a95b37c9], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.core.umath.pyd, Quarantined, [99e8bc332f4ce55124fb5609897b7a86], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.core._dotblas.pyd, Quarantined, [dfa28d62e299f44296895c033fc58f71], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.fft.fftpack_lite.pyd, Quarantined, [98e933bcc0bb40f6d44be9761fe5b848], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.lib._compiled_base.pyd, Quarantined, [ceb324cb18632b0b72ad8cd3f41028d8], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.linalg.lapack_lite.pyd, Quarantined, [453c12ddb7c4e254e73807585aaa10f0], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\numpy.random.mtrand.pyd, Quarantined, [ccb508e794e7ac8a46d93629b2527b85], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\pyopencl._cl.pyd, Quarantined, [2e53e50a3e3df2441f00d48b7a8a8d73], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\select.pyd, Quarantined, [473a707f0d6e2a0c1a05e47b30d455ab], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\_ctypes.pyd, Quarantined, [2c5542ad5f1c9f971b04114e976da25e], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\_hashlib.pyd, Quarantined, [513019d66813bb7b8e91abb4d430c33d], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\_socket.pyd, Quarantined, [f78a757a4f2c0f271d024619a75dfb05], Trojan.BtcMiner.TS, C:\ProgramData\Microsoft\Windows\Time\library.zip, Quarantined, [463b6788ef8cef475cc40b543aca5fa1], Trojan.Agent.MNR, C:\Temporary\iehighutil.exe, Delete-on-Reboot, [11705d927506e55139bba5b755af817f], Physical Sectors: 0 (No malicious items detected) (end) Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 04.12.2016 Scan Time: 20:04 Logfile: 04.12.2016.txt Administrator: No Version: 2.2.1.1043 Malware Database: v2016.12.04.08 Rootkit Database: v2016.11.20.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: Teng Scan Type: Threat Scan Result: Completed Objects Scanned: 235540 Time Elapsed: 8 min, 22 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 0 (No malicious items detected) Physical Sectors: 0 (No malicious items detected) (end) |
| Themen zu 50% CPU usage wenn idle... |
| 50% cpu, angeblich, coin-miner, cpu, gefunde, gelöscht, glaube, hilfe, hilfe!, malwarebytes, nicht, nicht mehr, wirklich |
Baum-Darstellung