| |
| |||||||
Log-Analyse und Auswertung: TrojanerWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
04.07.2006, 05:35
| #1 |
| |  Trojaner Hallo, auch bei mir hat sich dieser Trojaner eingeschlichen. Ich habe ihn nun gelöscht, aber reicht das??? Vielen Dank schon mal für die Hilfe!!!! Logfile of HijackThis v1.99.1 Scan saved at 06:16:36, on 04.07.2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\csrss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\Explorer.EXE D:\WINDOWS\system32\spoolsv.exe D:\WINDOWS\SOUNDMAN.EXE D:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe D:\Programme\Medion\PowerCinema\My_TV\Agent.exe D:\Programme\Logitech\Video\LogiTray.exe D:\PROGRA~1\0900WA~1\WARN0190.EXE D:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe D:\Programme\AntiVir PersonalEdition Classic\avgnt.exe D:\Programme\Microsoft AntiSpyware\gcasServ.exe D:\Programme\Java\jre1.5.0_06\bin\jusched.exe D:\WINDOWS\System32\ctfmon.exe D:\ScanPanel\ScnPanel.exe D:\WINDOWS\System32\LVComS.exe D:\Programme\Microsoft AntiSpyware\gcasDtServ.exe d:\progra~1\0900wa~1\w0svc.exe D:\WINDOWS\System32\alg.exe D:\Programme\AntiVir PersonalEdition Classic\sched.exe D:\Programme\AntiVir PersonalEdition Classic\avguard.exe D:\WINDOWS\System32\nvsvc32.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\System32\wdfmgr.exe D:\WINDOWS\system32\fxssvc.exe D:\WINDOWS\System32\wuauclt.exe D:\WINDOWS\SoftwareDistribution\Download\S-1-5-18\953a9cb86706ade89c5e0f457bab54e9\update\update.exe D:\Programme\ArcorOnline\Arcor.exe D:\Programme\Internet Explorer\iexplore.exe D:\Programme\AntiVir PersonalEdition Classic\avcenter.exe D:\Dokumente und Einstellungen\Anja\Lokale Einstellungen\Temporary Internet Files\Content.IE5\9JFF5P8E\HijackThis[1].exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.arcor.de R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.msn.de/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {35E78239-811E-4c3f-B37D-F339AC16C2C0} - D:\PROGRA~1\Comet\bin\autosearch.dll (file missing) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Programme\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - d:\programme\google\googletoolbar2.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\programme\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar mit Pop-Up-Blocker - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Microsoft Works Update Detection] D:\Programme\Gemeinsame Dateien\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [Agent] D:\Programme\Medion\PowerCinema\My_TV\Agent.exe O4 - HKLM\..\Run: [NeroCheck] D:\WINDOWS\System32\NeroCheck.exe O4 - HKLM\..\Run: [LogitechVideoRepair] D:\Programme\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] D:\Programme\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [0190 Warner] D:\PROGRA~1\0900WA~1\WARN0190.EXE O4 - HKLM\..\Run: [TkBellExe] "D:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [avgnt] "D:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [gcasServ] "D:\Programme\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Programme\Java\jre1.5.0_06\bin\jusched.exe O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [SpyEmergency] "D:\Programme\Spy Emergency\SpyEmergency.exe" O4 - HKCU\..\Run: [msnmsgr] "D:\Programme\MSN Messenger\msnmsgr.exe" /background O4 - Global Startup: Adobe Reader - Schnellstart.lnk = D:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Microsoft Office.lnk = D:\Programme\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: ScanPanel.lnk = D:\ScanPanel\ScnPanel.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Programme\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Programme\Messenger\MSMSGS.EXE O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=48835 O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by106fd.bay106.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/111f2d48f00466cf1506/netzip/RdxIE601_de.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1136732081982 O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by106fd.bay106.hotmail.msn.com/activex/HMAtchmt.ocx O17 - HKLM\System\CCS\Services\Tcpip\..\{8854D534-1289-4F99-A187-112081D4F15A}: NameServer = 195.50.140.252 195.50.140.114 O17 - HKLM\System\CCS\Services\Tcpip\..\{D0F92F49-BCDE-4E12-9B83-701CFE07B6DF}: NameServer = 192.168.120.252,192.168.120.253 O18 - Protocol: bw+0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw+0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw-0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw-0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw00 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw00s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw10 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw10s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw20 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw20s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw30 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw30s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw40 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw40s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw50 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw50s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw60 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw60s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw70 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw70s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw80 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw80s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw90 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bw90s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwa0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwa0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwb0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwb0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwc0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwc0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwd0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwd0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwe0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwe0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwf0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwf0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwg0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwg0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwh0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwh0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwi0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwi0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwj0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwj0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwk0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwk0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwl0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwl0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwm0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwm0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwn0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwn0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwo0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwo0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwp0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwp0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwq0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwq0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwr0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwr0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bws0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bws0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwt0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwt0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwu0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwu0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwv0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwv0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bww0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bww0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwx0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwx0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwy0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwy0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwz0 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: bwz0s - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O18 - Protocol: offline-8876480 - {2A4F9420-5656-4D12-A5B8-2924EEEB4327} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing) O23 - Service: 0190/0900 Warner Überwachungsdienst (0190_0900_Warner_MonitorService) - Mirko Böer - d:\progra~1\0900wa~1\w0svc.exe O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - D:\Programme\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - D:\Programme\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - D:\Programme\Gemeinsame Dateien\AVM\de_serv.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe |
|
04.07.2006, 07:05
| #2 | |||||
 | Trojaner Guten Morgen,
__________________du hast die NUB gelesen? Zitat:
Wo hat sich der Trojaner eingeschlichen? Wie heißt Dein netter Besucher? In der Regel reicht es nicht, ihn zu löschen. Damit hast du zwar den grund der Infektion entfernt aber nicht die "Nachwehen". Zitat:
Dein System ist veraltet. Völlig ungepatcht. Sicherheitslücken in Hülle und Fülle. Da kann sich einschleichen was will ohne das du es merkst! Lasse mal bitte folgende Datei bei Jotti und Virustotal ( siehe SIG ) auswerten und poste das Ergebnis. Muss nichts böses sein, nur bin ich mir nicht ganz sicher da es unterschiedliche Aussagen über die Dati gibt! Zitat:
Sollte ne Umleitung sein oder ist Dir die IP bekannt? Zitat:
Folgendes kann alles gefixt werden. Zitat:
Besorge Dir mal nen Clear Programm, und Putze mal Deine Platte. Warum heißt die eigentlich D:???? Sonst kann ich nichts schlimmes erkennen. Dies muss nichts heißen. Besorge Dir mal zur Sicherheit eScan, zu finden hier im Bord. Lese die Anleitung genau durch und Handel danach! Aber wie gesagt, wenn du den Trojaner gelöscht hast, wirst du ihn nicht finden aber die Auswirkungen sind wahrscheinlich vorhanden. Also, Name und Pfad des Trojaners bitte! Gruß Mellosun
__________________ |
|
| Themen zu Trojaner |
| adobe, adobe reader, antispyware, antivir, avg, avira, bho, content.ie5, desktop, einstellungen, explorer, google, helper, hijack, hijackthis, hilfe!!, hilfe!!!, internet, internet explorer, nvidia, pdf, pop-up-blocker, programme, rundll, s-1-5-18, system, trojane, trojaner, windows, windows xp, yahoo |
Linear-Darstellung
