Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
svchost.exe

svchost.exe


Plagegeister aller Art und deren Bekämpfung: svchost.exe

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 28.05.2012, 18:19   #1
Lukas1997
 
svchost.exe - Standard

svchost.exe


Also, ich habe folgendes Problem:
Seit kurzem blockt Bitdefender immer einen Prozess namens svchost.exe.
Es ist aber NICHT die svchost.exe in system32, sondern die Datei liegt unter meinem Benutzerkonto in AppData\Roaming\Microsoft.
Allerdings kann ich die Datei nicht mit dem Windows-Explorer finden und Bitdefender findet auch bei einem Systemscan nichts verdächtiges.
Ich habe auch schon Programme wie Spybot S&D ausprobiert, aber die finden auch nichts.
Was soll ich tun?

Ich habe noch etwas vergessen, irgendein Programm deaktiviert ständig den Scan von Bitdefender.
Und hier ist noch der Logfile:

BitDefender Log File

Product : Bitdefender Internet Security 2012
Scanning task : Vollständiger System-Scan
Log date : Dienstag, 29. Mai 2012 09:29:45
Log path : C:\ProgramData\Bitdefender\Desktop\Profiles\Logs\dcf483c4-26d0-4e6f-ba28-6a53a00adae1\1338275457_1_02.xml

Scan Paths:
Path : C:\

[-]Scan Results
[-]Resolved issues:Object Path Threat Name Final Status
Cookie: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Cookies\8QS8ZOE5.txt Cookie.DoubleClick Deleted

[-]Objects that were not scanned:Object Path Reason Final Status
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/page0.html Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar1.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/page2.html Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar3.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar4.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar5.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/title.png Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar6.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar7.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/options.js Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/Babylon.dat Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar8.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/BExternal.dll Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar9.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/bab091.norecovericon.dat Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/globe.png Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar10.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\Users\Lukas\Downloads\AntiVirus2012Download.rar=>AntiVirus2012Download=>AntiVirus2012.rar=>AntiVirus2012.exe Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar11.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/Setup-latest-30b.zpb Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar12.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/toolBar.jpg Password-protected Not scanned (file was password-protected)
File: C:\Program Files (x86)\InstallShield Installation Information\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}\SupportFiles.7z=>PowerDVD12.ico Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\WinAgentadb.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/Setup.exe Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/SetupStrings.dat Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/page3Lrg.css Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/bab033.tbinst.dat Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar3.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar4.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar5.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/page3.html Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar6.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/Setup-tbmntr903.zpb Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar7.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/blueStar.png Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar8.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/Chrome_tb.zpb Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar9.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/sqlite3.dll Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar1.zip=>Users/Lukas/AppData/Roaming/Babylon/log_file.txt Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/sign Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/setup.js Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar10.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar11.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar12.zip=>sbRecovery.ini Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/page2.css Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/page3.css Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\WinAgentadb.zip=>sbRecovery.reg Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/progress.png Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/pBar.gif Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/eula.html Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/HtmlScreens/page2Lrg.css Password-protected Not scanned (file was password-protected)
File: C:\ProgramData\Spybot - Search & Destroy\Recovery\BabylonToolbar2.zip=>Users/Lukas/AppData/Local/Babylon/Setup/IECookieLow.dll Password-protected Not scanned (file was password-protected)

[-]Detailed Scan Summary
[-]Basic
Scanned items : 293799
Infected items : 1
Suspicious items : 0 (no suspected items have been detected)
Resolved items : 1
Unresolved items : 0 (no issues remained unresolved)

[-]Advanced
Scan time : 0: 17: 40
Files per second : 277
Skipped items : 390853
Password-protected items : 56
Overcompressed items : 0
Scanned archives : 7
Input-output errors : 0
Scanned boot sectors : 4
Scanned processes : 4551
Infected processes : 0
Scanned registry keys : 2010
Infected registry keys : 0
Scanned cookies : 163
Infected cookies : 1

[-]Scan Options
[-]Target Threat Types:
Scan for viruses : Yes
Scan for adware : Yes
Scan for spyware : Yes
Scan for applications : Yes
Scan for dialers : Yes
Scan for rootkits : Yes
Scan for keyloggers : Yes

[-]Target Selection Options:
Scan registry keys : Yes
Scan cookies : Yes
Scan boot sectors : Yes
Scan memory processes : Yes
Scan archives : Yes
Scan runtime packers : Yes
Scan emails : Yes
Scan all files : Yes
Heuristic Scan : Yes
Scanned extensions : none configured
Excluded extensions : none configured

[-]Target Processing:
Default primary action for infected objects : Disinfect
Default secondary action for infected objects : Move to Quarantine
Default primary action for suspicious objects : Move to Quarantine
Default secondary action for suspicious objects : None
Default action for hidden objects : Disinfect
Default action for password-protected objects : Log as not scanned

[-]Scan engines summary
Number of virus signatures : 7245322

 

Themen zu svchost.exe
.exe, appdata, ausprobiert, babylontoolbar, benutzerkonto, bitdefender, block, blockt, datei, defender, folge, folgendes, kurzem, namens, nichts, problem, programme, prozess, roaming, spybot, svchost.exe, system, system32, systemscan, windows-explorer


« ATRAPS.Gen2 | Entschlüsselungstrojaner von Flirt-fever »


Ähnliche Themen: svchost.exe


  1. svchost.exe ( Svchost Prozess Analyser)
    Log-Analyse und Auswertung - 23.09.2011 (7)
  2. 10x svchost.exe
    Log-Analyse und Auswertung - 13.04.2011 (1)
  3. svchost Virus ! C:\Benutzer\Windows\Install\svchost.exe - WORM/Rebhip.A.318
    Plagegeister aller Art und deren Bekämpfung - 20.01.2011 (1)
  4. svchost.bat? Was ist das?
    Plagegeister aller Art und deren Bekämpfung - 19.01.2011 (43)
  5. svchost.exe
    Log-Analyse und Auswertung - 07.12.2010 (1)
  6. svchost.exe 100%
    Plagegeister aller Art und deren Bekämpfung - 15.09.2010 (13)
  7. Svchost.exe
    Plagegeister aller Art und deren Bekämpfung - 30.06.2010 (2)
  8. TR/Crypt.ZPACK.Gen in C:\Temp\bcot.tmp\svchost.exe , C:\Temp\qmub.tmp\svchost.exe usw
    Plagegeister aller Art und deren Bekämpfung - 12.04.2010 (1)
  9. Svchost.exe
    Log-Analyse und Auswertung - 25.02.2009 (3)
  10. Svchost.exe ca 20 mal
    Alles rund um Windows - 05.01.2008 (2)
  11. svchost.exe
    Plagegeister aller Art und deren Bekämpfung - 26.12.2007 (3)
  12. svchost
    Log-Analyse und Auswertung - 14.12.2007 (8)
  13. svchost.exe
    Mülltonne - 21.10.2007 (1)
  14. Svchost.exe
    Log-Analyse und Auswertung - 25.09.2007 (11)
  15. svchost.exe??
    Plagegeister aller Art und deren Bekämpfung - 22.12.2005 (3)
  16. 5 svchost.exe!?
    Log-Analyse und Auswertung - 03.04.2005 (5)
  17. svchost.exe
    Log-Analyse und Auswertung - 27.02.2005 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema svchost.exe - Also, ich habe folgendes Problem: Seit kurzem blockt Bitdefender immer einen Prozess namens svchost.exe. Es ist aber NICHT die svchost.exe in system32, sondern die Datei liegt unter meinem Benutzerkonto in - svchost.exe...
Archiv
Du betrachtest: svchost.exe auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27