| |
| |||||||
Log-Analyse und Auswertung: Bitte um eine Auswertung TR/StartpageWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
05.02.2005, 17:21
| #1 |
| |  Bitte um eine Auswertung TR/Startpage Hier meine HijackThis Auswertung Logfile of HijackThis v1.99.0 Scan saved at 17:07:40, on 05.02.05 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\MSTASK.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\WINDOWS\EXPLORER.EXE C:\PROGRAMME\T-DSL SPEEDMANAGER\SPEEDMGR.EXE C:\WINDOWS\TASKMON.EXE C:\WINDOWS\SYSTEM\SYSTRAY.EXE C:\PROGRAMME\AVPERSONAL\AVGCTRL.EXE C:\WINDOWS\SYSTEM\STIMON.EXE C:\WINDOWS\SYSTEM\WMIEXE.EXE C:\PROGRAMME\T-DSL SPEEDMANAGER\TSMSVC.EXE C:\WINDOWS\SYSTEM\RNAAPP.EXE C:\WINDOWS\SYSTEM\TAPISRV.EXE C:\PROGRAMME\WINZIP\WINZIP32.EXE C:\WINDOWS\TEMP\HIJACKTHIS.EXE O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O4 - HKLM\..\Run: [T-DSL SpeedMgr] "C:\PROGRAMME\T-DSL SPEEDMANAGER\SPEEDMGR.EXE" O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe O4 - HKLM\..\Run: [SystemTray] SysTray.Exe O4 - HKLM\..\Run: [AVGCtrl] C:\PROGRAMME\AVPERSONAL\AVGCTRL.EXE /min O4 - HKLM\..\Run: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\SYSTEM\mstask.exe O4 - HKCU\..\Run: [WashAndGo - Cleanup of old Backupfiles] C:\Programme\Purgatio Pro\checker.exe /check Hier meine MWAV Auswertung: Sat Feb 05 16:06:24 2005 => File C:\WINDOWS\TEMP\backups\backup-20050201-193104-363.dll infected by "not-a-virus:AdWare.PurityScan.ak" Virus. Action Taken: No Action Taken. Sat Feb 05 16:26:12 2005 => File C:\WINDOWS\TEMP\backups\backup-20050201-193104-363.dll infected by "not-a-virus:AdWare.PurityScan.ak" Virus. Action Taken: No Action Taken. Sat Feb 05 16:33:19 2005 => File C:\WINDOWS\Anwendungsdaten\setm.exe infected by "not-a-virus:AdWare.PurityScan.v" Virus. Action Taken: No Action Taken. Sat Feb 05 16:39:43 2005 => File C:\WINDOWS\Downloaded Program Files\rundlg32.exe infected by "not-a-virus:AdWare.ToolBar.SBSoft.e" Virus. Action Taken: No Action Taken. Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC24\ABF_LL possibly infected and removed by background antivirus package! Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC24\ABF_LL infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken. Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC24\T_REN possibly infected and removed by background antivirus package! Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC24\T_REN infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken. Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC24\T_RE possibly infected and removed by background antivirus package! Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC24\T_RE infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken. Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC25\N_HM possibly infected and removed by background antivirus package! Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC25\N_HM infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken. Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC22\GL_HB possibly infected and removed by background antivirus package! Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC22\GL_HB infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken. Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC2\K_HLIN possibly infected and removed by background antivirus package! Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC2\K_HLIN infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken. Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC2\ABF_LL possibly infected and removed by background antivirus package! Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC2\ABF_LL infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken. Sat Feb 05 16:47:37 2005 => Scanning Folder: C:\Programme\AVPersonal\INFECTED\*.* Sat Feb 05 16:57:02 2005 => File C:\program files\Windows AdService\WinAdMaster.dll infected by "not-a-virus:AdWare.WinAD.d" Virus. Action Taken: No Action Taken. Sat Feb 05 16:57:03 2005 => File C:\program files\Windows AdService\WinAdServ.exe infected by "not-a-virus:AdWare.WinAD.b" Virus. Action Taken: No Action Taken. |
|
05.02.2005, 17:23
| #2 |
  | Bitte um eine Auswertung TR/Startpage Sinnvoll sind die Logfiles nur, wenn sie vollständig sind. Das trifft auf beide von Dir nicht zu.
__________________cacatoa
__________________ |
|
| Themen zu Bitte um eine Auswertung TR/Startpage |
| antivirus, auswertung, bho, explorer, hijack, hijackthis, infected, interne, internet, internet explorer, kernel, m.exe, not-a-virus, programme, purgatio, recycled, registry, rundll, rundll32.exe, scanning, services, spybot, system, temp, windows, windows\temp, winzip |
Linear-Darstellung
