| Seuchenwirt | 06.01.2017 10:55 |
Hier die Ergebnisse der Scans:
MBAM: Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 05.01.2017 19:47, SYSTEM, AMD-GARDEROBE, Protection, Malware Protection, Starting,
Protection, 05.01.2017 19:47, SYSTEM, AMD-GARDEROBE, Protection, Malware Protection, Started,
Protection, 05.01.2017 19:47, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Starting,
Protection, 05.01.2017 19:47, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Started,
Update, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Manual, Rootkit Database, 2016.2.8.1, 2016.11.20.1,
Update, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Manual, Remediation Database, 2016.2.12.1, 2016.12.16.1,
Update, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Manual, IP Database, 2016.2.8.1, 2017.1.5.1,
Update, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Manual, Domain Database, 2016.2.16.8, 2017.1.5.5,
Update, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Manual, Malware Database, 2016.2.16.6, 2017.1.5.6,
Protection, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Protection, Refresh, Starting,
Protection, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Stopping,
Protection, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Stopped,
Protection, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Protection, Refresh, Success,
Protection, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Starting,
Protection, 05.01.2017 19:48, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Started,
Scan, 05.01.2017 20:15, SYSTEM, AMD-GARDEROBE, Scheduler, Start: 05.01.2017 19:48, Dauer: 15 Min. 7 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 22 Nicht-Malware-Erkennungen,
Protection, 05.01.2017 20:18, SYSTEM, AMD-GARDEROBE, Protection, Malware Protection, Starting,
Protection, 05.01.2017 20:18, SYSTEM, AMD-GARDEROBE, Protection, Malware Protection, Started,
Protection, 05.01.2017 20:18, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Starting,
Protection, 05.01.2017 20:20, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Started,
Protection, 05.01.2017 20:40, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Stopping,
Protection, 05.01.2017 20:40, SYSTEM, AMD-GARDEROBE, Protection, Malicious Website Protection, Stopped,
Protection, 05.01.2017 20:40, SYSTEM, AMD-GARDEROBE, Protection, Malware Protection, Stopping,
Protection, 05.01.2017 20:40, SYSTEM, AMD-GARDEROBE, Protection, Malware Protection, Stopped,
(end)
Dann ESET: Code:
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=432c824fce61a14ab2982fbab9070916
# engine=21188
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-11-21 04:30:35
# local_time=2014-11-21 05:30:35 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Desktop'
# compatibility_mode=1810 16777213 100 100 32959 30698596 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 214587 168174085 0 0
# scanned=3083
# found=27
# cleaned=0
# scan_time=28091
sh=24E53D464BDD4CF5F95F624BD15AE3E84DC500CF ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AN evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-02-23 190000\Backup Files 2014-03-30 190000\Backup files 2.zip"
sh=31525C3F559F7F863670C39EC53FBA4341302E3F ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-02-23 190000\Backup Files 2014-04-28 164502\Backup files 2.zip"
sh=253AA14EAA23F89F398E62016D03FC3B3DC9C778 ft=0 fh=0000000000000000 vn="Win32/Toolbar.SearchSuite evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-11 190134\Backup Files 2014-05-11 190134\Backup files 10.zip"
sh=6AD865F19BDECF1DF197387A9173E4468E15BADA ft=0 fh=0000000000000000 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-11 190134\Backup Files 2014-05-11 190134\Backup files 6.zip"
sh=4BEC293771019F199A1CC9DF2789B0F3B4BA8DEF ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-11 190134\Backup Files 2014-05-11 190134\Backup files 7.zip"
sh=C3ED38AF7E287C8DFF898DCD07BF85BFB33EC9DE ft=0 fh=0000000000000000 vn="Variante von Win32/iLivid.A evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-11 190134\Backup Files 2014-05-11 190134\Backup files 8.zip"
sh=37312391B1896E90E3984A46A0508812F3255354 ft=0 fh=0000000000000000 vn="Win32/Somoto.E evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-11 190134\Backup Files 2014-05-11 190134\Backup files 9.zip"
sh=CED038F95CFB42128C2617A84B76D8851C5AAAFE ft=0 fh=0000000000000000 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-11 190134\Backup Files 2014-05-18 190000\Backup files 1.zip"
sh=55DEE4696CECDDBFF427521EA1A2075A0817DDF5 ft=0 fh=0000000000000000 vn="Variante von Win32/iLivid.A evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-05-25 190000\Backup files 10.zip"
sh=07F312386A813B419BA1E06D49ED703632CFD6BF ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-05-25 190000\Backup files 11.zip"
sh=C58E82DE60F1EF28B09944DF209B575CD1154840 ft=0 fh=0000000000000000 vn="Win32/Somoto.E evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-05-25 190000\Backup files 12.zip"
sh=D0E2AF05A8A1CCECE921BC5B1A85EA4E99C99130 ft=0 fh=0000000000000000 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-05-25 190000\Backup files 8.zip"
sh=1B3359B15E5B9F83BD5DE236206922142E947787 ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-05-25 190000\Backup files 9.zip"
sh=EB79DBF7C3F5D6C465814BE1DA4069CCF114915C ft=0 fh=0000000000000000 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-06-22 190000\Backup files 6.zip"
sh=F46EDAE8676CDAE6B51C6CA1BF07008D3C3A87DD ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AN evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-06-29 190000\Backup files 3.zip"
sh=60627DBA4F874095BB1BA5B55D7060859914D37D ft=0 fh=0000000000000000 vn="Variante von MSIL/AdvancedSystemProtector.F evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-05-25 190000\Backup Files 2014-07-20 190000\Backup files 1.zip"
sh=11A0B4D28572DCB00FB6E0F306090E842349E72F ft=0 fh=0000000000000000 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-08-10 190000\Backup Files 2014-08-10 190000\Backup files 10.zip"
sh=DCFE48EBA91BFF9683CA15B52719EA02B3F8EB23 ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-08-10 190000\Backup Files 2014-08-10 190000\Backup files 11.zip"
sh=F9C7871B35E0102A4B730445DF0CBBA6058081FA ft=0 fh=0000000000000000 vn="Variante von Win32/iLivid.A evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-08-10 190000\Backup Files 2014-08-10 190000\Backup files 12.zip"
sh=EE6778E630E5888A7BE5AC5F6FC30088443A846A ft=0 fh=0000000000000000 vn="Win32/Somoto.E evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-08-10 190000\Backup Files 2014-08-10 190000\Backup files 13.zip"
sh=B8E29931C5307AA03ED522318A3E9AB5EAB8D197 ft=0 fh=0000000000000000 vn="Win32/Toolbar.SearchSuite evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-08-10 190000\Backup Files 2014-08-10 190000\Backup files 14.zip"
sh=FBD1FD7BAF013B0D16F609A4E56D2885797C12EE ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AN evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-08-10 190000\Backup Files 2014-08-31 190002\Backup files 3.zip"
sh=69BCD88B2F92A3D32C1A243F751EFD97A56B4512 ft=0 fh=0000000000000000 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-10-05 195219\Backup Files 2014-10-05 195219\Backup files 10.zip"
sh=55F654869568042843692518AEB55427A85E4054 ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-10-05 195219\Backup Files 2014-10-05 195219\Backup files 11.zip"
sh=823FB2A9272CBDF17E48446D0981CC0131663C8C ft=0 fh=0000000000000000 vn="Win32/Somoto.E evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-10-05 195219\Backup Files 2014-10-05 195219\Backup files 13.zip"
sh=4BADC5A743ED84A5B27656723213505AB6F3B93A ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AN evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-10-05 195219\Backup Files 2014-10-05 195219\Backup files 14.zip"
sh=66369DC02270D4E491AF3BD0EE0B79E584F222CC ft=0 fh=0000000000000000 vn="Win32/Somoto.E evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2014-10-05 195219\Backup Files 2014-10-05 195219\Backup files 15.zip"
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=432c824fce61a14ab2982fbab9070916
# engine=22383
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2015-02-09 06:54:11
# local_time=2015-02-09 07:54:11 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Desktop'
# compatibility_mode=1810 16777213 100 100 9499 37662412 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 9477 175137901 0 0
# scanned=95
# found=4
# cleaned=0
# scan_time=1099
sh=351CBAFA76A28A6B7BDB7E0725E82D7146845B75 ft=0 fh=0000000000000000 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2015-01-04 190001\Backup Files 2015-01-04 190001\Backup files 10.zip"
sh=9B67FF24EB6317EB191204C1B9891390CC42813C ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2015-01-04 190001\Backup Files 2015-01-04 190001\Backup files 11.zip"
sh=EFA6D66E548D07E94D273B847BEA56E091B8E81E ft=0 fh=0000000000000000 vn="Win32/OpenCandy potenziell unsichere Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2015-01-04 190001\Backup Files 2015-01-04 190001\Backup files 12.zip"
sh=8D9A15622C79B9219CBCB0EB5F76B809A3CA8FB0 ft=0 fh=0000000000000000 vn="Win32/Somoto.E evtl. unerwünschte Anwendung" ac=I fn="B:\AMD-GARDEROBE\Backup Set 2015-01-04 190001\Backup Files 2015-01-04 190001\Backup files 13.zip"
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=432c824fce61a14ab2982fbab9070916
# end=init
# utc_time=2017-01-05 07:47:11
# local_time=2017-01-05 08:47:11 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 31970
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=432c824fce61a14ab2982fbab9070916
# end=updated
# utc_time=2017-01-05 07:52:00
# local_time=2017-01-05 08:52:00 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=432c824fce61a14ab2982fbab9070916
# engine=31970
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2017-01-05 10:08:29
# local_time=2017-01-05 11:08:29 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 8809 235283959 0 0
# scanned=452670
# found=18
# cleaned=0
# scan_time=8187
sh=97BCCD25561F44E9B13F05F6EEF083C9CE9BA529 ft=1 fh=641f1fb3d2e699c4 vn="Win32/Toolbar.Conduit.Y eventuell unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir"
sh=5FB95D21BE8CF2753FD8A42398ADD26E2B21409F ft=1 fh=0f2c5f177050d203 vn="Variante von Win32/Toolbar.Conduit.AR eventuell unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\Conduit\Multi\CT3306061\UninstallerUI.exe.vir"
sh=A91EE8EFA54F295CB7E1ADCCBF0C2BED47BD8213 ft=0 fh=0000000000000000 vn="Variante von Win32/Kryptik.FMFW Trojaner" ac=I fn="C:\FRST\Stephan Ficker 27.12.2016.zi_p"
sh=E0C5E31B4A4DAA88C64BB4CA1E304C4D70481F1F ft=1 fh=626d7421e12db363 vn="Variante von Win32/CNETInstaller.B eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\cbsidlm-cbsi145-Free_M4a_to_MP3_Converter-BP-187723.exe"
sh=19876B0C21073CE7AC4725124851FC36B7EA7301 ft=1 fh=31b372839de59c7b vn="Variante von Win32/CNETInstaller.B eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\cbsidlm-cbsi188-Free_M4a_to_MP3_Converter-BP-187723(1).exe"
sh=8BE2A3B1089041217E99CD56F544029F0A1184A6 ft=1 fh=a17893ce4c9ed723 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\Driver Booster Free - CHIP-Installer.exe"
sh=563E1B707747F87BD96829B81E92CA1EE04E83FD ft=1 fh=421b349ff9c9cc9b vn="Win32/InstallMonetizer.AF eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\freeocr422.exe"
sh=E07FFCC7E76B1E7964FEDF7EC559BF85A3B33BA9 ft=1 fh=057019e78d5fe1d9 vn="Variante von Win32/WinloadSDA.J eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\Heiz--und-Nebenkosten-fr-Excel-Setup.exe"
sh=8FBF434DA449027E12EE6CDACB2D869A57CB0680 ft=1 fh=df455c78aaf37049 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\MediathekView - CHIP-Installer.exe"
sh=946AE49D5D4E1B2D15ADC5966CD1F414CD85CA95 ft=1 fh=a2d6247a1df30bd8 vn="Win32/Toolbar.SearchSuite eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\Setup_FreeConverter.exe"
sh=EA288C64A849919A963DAA88AE64FEC181A77286 ft=1 fh=bc7de951c8c1c341 vn="Variante von Win32/Systweak.U eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\supereasy_registry_cleaner_1.0.0_7987.exe"
sh=DD511F6A3DBA0FF3EF64ED81BA65ED44F248469D ft=1 fh=9e7700ce9d6b6d0d vn="Variante von Win32/Systweak.U eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\supereasy_registry_cleaner_1.0.0_sm.exe"
sh=46E9BC01A260889D98837F506C158A882E60176F ft=1 fh=b80f837dc84ff2af vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\Tor Browser Paket - CHIP-Installer.exe"
sh=39EECA3247742A18C94DA2AA8EBC100E48D96EDB ft=1 fh=7f3c6980beee49cd vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\Universal ADB Treiber - CHIP-Installer.exe"
sh=B0D9B2E2D5AA8FB62C313A0240BA9A1FE29EED16 ft=1 fh=8ba09cc305a6966a vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\Virtual CloneDrive - CHIP-Installer.exe"
sh=C85413E142C82D761B28363AF80C207971861E30 ft=1 fh=2d801a48325c5aeb vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Alle\Downloads\WakeOnLan WOL - CHIP-Installer.exe"
sh=5EE5BB3F57FDF9DAED61ECBD6AA59D9FA713CC88 ft=1 fh=cb40d758a54528d5 vn="Variante von Win32/UniBlue.F eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Fast Alle\Downloads\driverscanner.exe"
sh=B9F2E8480B1D157992F803D3B86F2D793922680D ft=1 fh=f904a7a4a8abfbee vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Windows\System32\config\systemprofile\AppData\Local\DMR\Malwarebytes Anti Rootkit - CHIP-Installer.exe"
Und SecurityCheck: Code:
Results of screen317's Security Check version 1.009
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Java 8 Update 101
Java version 32-bit out of Date!
Adobe Flash Player 23.0.0.207
Mozilla Firefox (50.1.0)
Mozilla Thunderbird (45.5.1)
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````
Danke und schönen Tag! |
Malwarebytes Anti-Malware 
SecurityCheck und: