| |
| |||||||
Log-Analyse und Auswertung: Windows 10 läuft zäh und Konflikte mit VPNWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
10.08.2021, 11:08
| #16 |
 |  Windows 10 läuft zäh und Konflikte mit VPN Die letzten 3 logs Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-08-09.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-10-2021
# Duration: 00:00:16
# OS: Windows 10 Pro
# Scanned: 32001
# Detected: 27
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.AdvancedSystemCare C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
PUP.Optional.AdvancedSystemCare C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
PUP.Optional.DownloadSponsor C:\Users\System_X\AppData\Local\Temp\DMR
PUP.Optional.Spywatch C:\Users\System_X\AppData\Roaming\Spywatch
PUP.Optional.WebCompanion C:\Program Files (x86)\Lavasoft\Web Companion
PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion
PUP.Optional.WebCompanion C:\ProgramData\Lavasoft\Web Companion
PUP.Optional.WebCompanion C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
PUP.Optional.WebCompanion C:\Users\System_X\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG
PUP.Optional.WebCompanion C:\Users\System_X\AppData\Roaming\Lavasoft\Web Companion
***** [ Files ] *****
PUP.Optional.MyFirefoxSearch C:\Users\System_X\AppData\Roaming\Mozilla\Firefox\Profiles\w6ywzn9z.default-release\searchplugins\My Firefox Search.xml
PUP.Optional.Spywatch C:\Users\System_X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spywatch.lnk
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{c1d43dce-0a1b-4cb2-a7e7-40d69127878f}|DisplayIcon
PUP.Adware.Heuristic HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{c1d43dce-0a1b-4cb2-a7e7-40d69127878f}|DisplayName
PUP.Optional.AdvancedSystemCare HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
PUP.Optional.AdvancedSystemCare HKLM\Software\Wow6432Node\IOBIT\ASC
PUP.Optional.AdvancedSystemCare HKLM\Software\Wow6432Node\IObit\RealTimeProtector
PUP.Optional.WebCompanion HKCU\SOFTWARE\Mozilla\NativeMessagingHosts\com.webcompanion.native
PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion HKLM\Software\Wow6432Node\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WebCompanion HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
Adware.StartPage My Firefox Search
Adware.StartPage https://myfiresearch.com/homepage?hp=1&bitmask=9996&pId=CO150101D&iDate=2021-05-08 09:52:15&bName=
PUP.Optional.MyFirefoxSearch My Firefox Search
PUP.Optional.MyFirefoxSearch https://myfiresearch.com/homepage?hp=1&bitmask=9996&pId=CO150101D&iDate=2021-05-08 09:52:15&bName=
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [4071 octets] - [09/08/2021 22:32:28]
AdwCleaner[S01].txt - [4132 octets] - [09/08/2021 22:34:02]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-08-09.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-10-2021
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 27
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\Lavasoft\Web Companion
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted C:\Users\System_X\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG
Deleted C:\Users\System_X\AppData\Local\Temp\DMR
Deleted C:\Users\System_X\AppData\Roaming\Lavasoft\Web Companion
Deleted C:\Users\System_X\AppData\Roaming\Spywatch
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
Deleted C:\Users\System_X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spywatch.lnk
Deleted C:\Users\System_X\AppData\Roaming\Mozilla\Firefox\Profiles\w6ywzn9z.default-release\searchplugins\My Firefox Search.xml
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\Mozilla\NativeMessagingHosts\com.webcompanion.native
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{c1d43dce-0a1b-4cb2-a7e7-40d69127878f}|DisplayIcon
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{c1d43dce-0a1b-4cb2-a7e7-40d69127878f}|DisplayName
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Deleted My Firefox Search
Deleted My Firefox Search
Deleted https://myfiresearch.com/homepage?hp=1&bitmask=9996&pId=CO150101D&iDate=2021-05-08 09:52:15&bName=
Deleted https://myfiresearch.com/homepage?hp=1&bitmask=9996&pId=CO150101D&iDate=2021-05-08 09:52:15&bName=
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4071 octets] - [09/08/2021 22:32:28]
AdwCleaner[S01].txt - [4132 octets] - [09/08/2021 22:34:02]
AdwCleaner[S02].txt - [4193 octets] - [10/08/2021 11:46:51]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########
Code:
ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-08-09.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-10-2021
# Duration: 00:00:09
# OS: Windows 10 Pro
# Scanned: 32003
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [4071 octets] - [09/08/2021 22:32:28]
AdwCleaner[S01].txt - [4132 octets] - [09/08/2021 22:34:02]
AdwCleaner[S02].txt - [4193 octets] - [10/08/2021 11:46:51]
AdwCleaner[C02].txt - [3889 octets] - [10/08/2021 11:47:55]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########
Geändert von juergen007 (10.08.2021 um 11:16 Uhr) |
| Themen zu Windows 10 läuft zäh und Konflikte mit VPN |
| .dll, administrator, cookie, dateien, defender, desktop, firefox, google, homepage, html, micro, microsoft, mozilla, openvpn, opera, prozesse, registry, router, scan, security, software, system, system32, temp, treiber, windows |
Baum-Darstellung