![]() |
|
Log-Analyse und Auswertung: Internet Security Tool entfernt - alles wieder ok?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
![]() | #3 |
| ![]() Internet Security Tool entfernt - alles wieder ok? Hallo,
__________________danke für Deine Antwort. Hier das Logfile: All processes killed ========== OTL ========== Prefs.js: "SweetIM Search" removed from browser.search.defaultenginename Prefs.js: "hxxp://search.sweetim.com/search.asp?src=2&q=" removed from browser.search.defaulturl Prefs.js: "ICQ Search" removed from sweetim.toolbar.previous.browser.search.defaultenginename Prefs.js: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.3&q=" removed from sweetim.toolbar.previous.keyword.URL Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully. C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll moved successfully. 64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. File C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. File C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll not found. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully! Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cae0fdf-8a54-11df-871e-404e57434401}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cae0fdf-8a54-11df-871e-404e57434401}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cae0fdf-8a54-11df-871e-404e57434401}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cae0fdf-8a54-11df-871e-404e57434401}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7e5d17b7-866c-11df-876e-404e57434401}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7e5d17b7-866c-11df-876e-404e57434401}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7e5d17b7-866c-11df-876e-404e57434401}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7e5d17b7-866c-11df-876e-404e57434401}\ not found. File E:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7e5d17ca-866c-11df-876e-404e57434401}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7e5d17ca-866c-11df-876e-404e57434401}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7e5d17ca-866c-11df-876e-404e57434401}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7e5d17ca-866c-11df-876e-404e57434401}\ not found. File E:\AutoRun.exe not found. C:\Users\Kunde\AppData\Roaming\.# folder moved successfully. ========== COMMANDS ========== C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Kunde ->Temp folder emptied: 132738 bytes ->Temporary Internet Files folder emptied: 589144 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 40509169 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 456 bytes User: Mo ->Temp folder emptied: 71090 bytes ->Temporary Internet Files folder emptied: 105219 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 45979865 bytes ->Flash cache emptied: 456 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 4256 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 4547476397 bytes Total Files Cleaned = 4.420,00 mb OTL by OldTimer - Version 3.2.17.3 log created on 11252010_075027 Files\Folders moved on Reboot... C:\Users\Kunde\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. Registry entries deleted on Reboot... |
Themen zu Internet Security Tool entfernt - alles wieder ok? |
64-bit, adblock, administratorrechte, alternate, andere, anhang, anweisung, c:\windows\system32\rundll32.exe, ccleaner, ccsetup, eingefangen, einzige, entfernt, firefox.exe, gen, großes, home premium, i-net, iastor.sys, ieframe.dll, install.exe, interne, internet, kunde, launch, load.exe, location, media center, microsoft office word, nicht mehr, office 2007, oldtimer, otl logfile, otl-scan, otl.exe, picasa, plug-in, prima, probleme, programdata, richtlinie, sache, sachen, saver, schei, search, searchplugins, secunia psi, security, security update, seite, shell32.dll, shortcut, suche, sweetim, syswow64, tool, tools, trojaner-board, unterwegs, usb 2.0, usbaapl64, webcheck, wintrust.dll |