| |
| |||||||
Log-Analyse und Auswertung: Habe Virus Protector auf dem RechnerWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
30.04.2010, 20:13
| #16 |
 |  Habe Virus Protector auf dem Rechner anbei nun das Dokument: ========== OTL ========== HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\\NameServer| /E : value set successfully! Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:aOnBmaiwY.dll deleted successfully. File C:\WINDOWS\System32\aOnBmaiwY.dll not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\WINDOWS\system32\ay3tkyu71.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\System:kdllm.exe deleted successfully. File C:\WINDOWS\System32\kdllm.exe not found. File move failed. X:\AUTORUN.INF scheduled to be moved on reboot. File C:\WINDOWS\System32\drivers\YxBnF.dll not found. File C:\WINDOWS\System32\yTrTlgA.dll not found. File C:\WINDOWS\System32\WOjWqhuL.dll not found. File C:\WINDOWS\WhqiaNWB.exe not found. File C:\WINDOWS\System32\ufvahQ.exe not found. File C:\WINDOWS\System32\uAqmXUTv.exe not found. File C:\WINDOWS\System32\tFpQhVLCf.exe not found. File C:\WINDOWS\System32\tFljJPc.exe not found. File C:\WINDOWS\System32\SYgrvEoa.dll not found. File C:\WINDOWS\pRKFc.exe not found. File C:\WINDOWS\System32\osXSCnlx.dll not found. File C:\WINDOWS\System32\OmIRfJ.exe not found. File C:\WINDOWS\System32\mikiWJSuQ.exe not found. File C:\WINDOWS\System32\mIbNm.dll not found. File C:\WINDOWS\System32\drivers\llIOpwF.dll not found. File C:\WINDOWS\JxQdRUBS.exe not found. File C:\WINDOWS\JRiCkkeW.dll not found. File C:\WINDOWS\iVqsp.exe not found. File C:\WINDOWS\ifLrGlB.exe not found. File C:\WINDOWS\System32\drivers\ieFvWRtmg.exe not found. File C:\WINDOWS\System32\HpQrk.dll not found. File C:\WINDOWS\System32\drivers\gwwNEra.exe not found. File C:\WINDOWS\GTGaOHCR.exe not found. File C:\WINDOWS\System32\gphmWFFsQ.exe not found. File C:\WINDOWS\FtNAHqt.dll not found. File C:\WINDOWS\System32\drivers\fdOAo.dll not found. File C:\WINDOWS\System32\drivers\DrDUyGIn.dll not found. File C:\WINDOWS\System32\drivers\clEtSKlF.exe not found. File C:\WINDOWS\BeROgSUT.exe not found. File C:\WINDOWS\System32\drivers\beChndcs.dll not found. File C:\WINDOWS\System32\AwMvocA.dll not found. File C:\WINDOWS\System32\aOnBmaiwY.dll not found. File C:\WINDOWS\System32\ay3tkyu71.exe not found. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== ========== COMMANDS ========== C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: All Users User: Anja ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes Total Files Cleaned = 0.00 mb OTLPE by OldTimer - Version 3.1.38.0 log created on 04302010_223853 Files\Folders moved on Reboot... File move failed. X:\AUTORUN.INF scheduled to be moved on reboot. File\Folder C:\Dokumente und Einstellungen\Anja\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5\U90U9UM3\&special=rectangle&adsize=310x120¶ms[1].styles=hp_promobox_html%2Chp_promobox_img&pageview=ng_outer&pageview=vi_first_time&tile=006929158576928718012345678910 not found! File\Folder C:\Dokumente und Einstellungen\Anja\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5\U90U9UM3\email&site=freemail&category=content&special=top&adsize=468x60&content=webde&pageview=ng_outer&adsize=728x90&pageview=logge din&pageview=no_tprof&pg=w&pa=40&pp=D__58095&pn=3B[1] not found! File\Folder C:\Dokumente und Einstellungen\Anja\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5\U90U9UM3\Type=click&FlightID=214656&AdID=442176&TargetID=62147&RawValues=SECTIONID%2Ccontent%2CUSERIDRAW%2Cd948ca97-28204-1238013793-3&Redirect=;ord=WoKann,beNvjIhbbwpww[2] not found! File\Folder C:\Dokumente und Einstellungen\Anja\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5\NNRJC4O4\section=content&site=freemail&category=content&special=top&adsize=468x60&content=webde&pageview=ng_outer&adsize=728x90&page view=loggedin&pageview=no_tprof&pg=w&pa=40&pp=D__5[1] not found! File\Folder C:\Dokumente und Einstellungen\Anja\Lokale Einstellungen\Temp\Temporary Internet Files\Content.IE5\NNRJC4O4\Type=click&FlightID=205254&AdID=426499&TargetID=59132&RawValues=SECTIONID%2Ccontent%2CUSERIDRAW%2Cd948ca97-28204-1238013793-3&Redirect=;ord=bpcitwk,beNvjIxbbwqby[2] not found! Registry entries deleted on Reboot... |
|
01.05.2010, 21:06
| #17 |
| /// Helfer-Team  | Habe Virus Protector auf dem Rechner Hi,
__________________Malwarebytes dürfte schon noch ein paar Sachen finden. Ich habe mit dem OTLPE-Fix hauptsächlich dafür gesorgt, dass du wieder auf den Desktop kommst.
__________________ |
|
Linear-Darstellung
