Zurück   Trojaner-Board > Archiv - Kein Posten möglich > Mülltonne
trojaner

trojaner


Mülltonne: trojaner

Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne...

 
Alt 17.08.2007, 16:22   #1
WOWA
 
trojaner - Standard

trojaner


Ich bekomme die ganze zeit ne meldung das iein trojaner bei mir ist aber ich kriege ihn mit kaspersky iwie nicht gelöscht habe mal eine log gemacht mit hjack this...hoffe ihr könnt mir helfen.

Logfile of HijackThis v1.99.1
Scan saved at 17:20:30, on 17.08.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.2180)

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\system32\spoolsv.exe
F:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
F:\WINDOWS\system32\oodag.exe
F:\WINDOWS\system32\slserv.exe
f:\opt\MBCASE\WIS\TBCD\tbmux32.exe
F:\WINDOWS\system32\vmnat.exe
F:\WINDOWS\system32\vmnetdhcp.exe
F:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Programme\Microsoft ActiveSync\wcescomm.exe
F:\PROGRA~1\MI3AA1~1\rapimgr.exe
F:\Programme\ICQ6\ICQ.exe
F:\Programme\MSN Messenger\msnmsgr.exe
F:\Programme\Winamp\winamp.exe
F:\Programme\Mozilla Firefox\firefox.exe
F:\Dokumente und Einstellungen\Wowa\Desktop\1_99_1.exe
F:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.arcor.de
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.arcor.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.arcor.de
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.arcor.de
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.arcor.de
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Arcor AG & Co. KG
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O1 - Hosts: 195.122.131.15 rs14vsnl.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14cg.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14cg2.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14gc.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14tg.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14tl.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14tl2.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14l32.rapidshare.com
O1 - Hosts: 195.122.131.15 rs14l33.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15vsnl.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15cg.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15cg2.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15gc.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15tg.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15tl.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15tl2.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15l32.rapidshare.com
O1 - Hosts: 195.122.131.16 rs15l33.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16vsnl.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16cg.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16cg2.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16gc.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16tg.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16tl.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16tl2.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16l32.rapidshare.com
O1 - Hosts: 195.122.131.17 rs16l33.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17vsnl.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17cg.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17cg2.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17gc.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17tg.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17tl.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17tl2.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17l32.rapidshare.com
O1 - Hosts: 195.122.131.18 rs17l33.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18vsnl.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18cg.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18cg2.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18gc.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18tg.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18tl.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18tl2.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18l32.rapidshare.com
O1 - Hosts: 195.122.131.19 rs18l33.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149vsnl.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149cg.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149cg2.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149gc.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149tg.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149tl.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149tl2.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149l32.rapidshare.com
O1 - Hosts: 195.122.131.150 rs149l33.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150vsnl.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150cg.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150cg2.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150gc.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150tg.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150tl.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150tl2.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150l32.rapidshare.com
O1 - Hosts: 195.122.131.151 rs150l33.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151vsnl.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151cg.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151cg2.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151gc.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151tg.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151tl.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151tl2.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151l32.rapidshare.com
O1 - Hosts: 195.122.131.152 rs151l33.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152vsnl.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152cg.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152cg2.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152gc.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152tg.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152tl.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152tl2.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152l32.rapidshare.com
O1 - Hosts: 195.122.131.153 rs152l33.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153vsnl.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153cg.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153cg2.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153gc.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153tg.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153tl.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153tl2.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153l32.rapidshare.com
O1 - Hosts: 195.122.131.154 rs153l33.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154vsnl.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154cg.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154cg2.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154gc.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154tg.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154tl.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154tl2.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154l32.rapidshare.com
O1 - Hosts: 195.122.131.155 rs154l33.rapidshare.com
O1 - Hosts: 195.122.131.156 rs155vsnl.rapidshare.com
O1 - Hosts: 195.122.131.156 rs155cg.rapidshare.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Programme\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - F:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Programme\Java\jre1.5.0_12\bin\ssv.dll
O2 - BHO: (no name) - {A804DDB4-D78F-4997-8F68-CB5DAAD640ED} - F:\WINDOWS\system32\awvvw.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - F:\Programme\Dealio\kb106\Dealio.dll (file missing)
O4 - HKLM\..\Run: [SoundMan] -SOUNDMAN.EXE
O4 - HKLM\..\Run: [Alcmtr] -ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] -F:\Programme\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [System Files Updater] -F:\WINDOWS\FlyakiteOSX\Tools\System Files Updater.exe /S
O4 - HKLM\..\Run: [AVP] "F:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6515] command /c del "F:\WINDOWS\system32\awvvw.dll_tobedeleted"
O4 - HKLM\..\RunOnce: [SpybotDeletingC8166] cmd /c del "F:\WINDOWS\system32\awvvw.dll_tobedeleted"
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "F:\Programme\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [DAEMON Tools] -"F:\Programme\DAEMON Tools\daemon.exe" -lang 1033
O4 - Startup: TA_Start.lnk = F:\Dokumente und Einstellungen\Wowa\Lokale Einstellungen\Temp\bundle.exe
O8 - Extra context menu item: Hinzufügen zu Kaspersky Anti-Banner - F:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://F:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Programme\Java\jre1.5.0_12\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Programme\Java\jre1.5.0_12\bin\ssv.dll
O9 - Extra button: Statistik für Web-Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - F:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Mobilen Favoriten erstellen... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - F:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - F:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - F:\Programme\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Programme\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: f:\programme\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - F:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - F:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - F:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - F:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - F:\PROGRA~1\GEMEIN~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - AppInit_DLLs: F:\PROGRA~1\KASPER~1\KASPER~2.0\adialhk.dll
O20 - Winlogon Notify: awvvw - F:\WINDOWS\system32\awvvw.dll
O20 - Winlogon Notify: byxuvvu - F:\WINDOWS\
O20 - Winlogon Notify: klogon - F:\WINDOWS\system32\klogon.dll
O20 - Winlogon Notify: MCPClient - F:\PROGRA~1\GEMEIN~1\Stardock\mcpstub.dll
O20 - Winlogon Notify: WgaLogon - F:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - F:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AccSys WiFi Component (accsvc) - Unknown owner - -F:\Programme\Gemeinsame Dateien\AccSys\accsvc.exe (file missing)
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - F:\Programme\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing)
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Unknown owner - -F:\Programme\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Unknown owner - -"F:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - -"F:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe (file missing)
O23 - Service: konfig - Unknown owner - f:\opt\MBCASE\pm\bin\mcp (file missing)
O23 - Service: license - Unknown owner - f:\opt\MBCASE\pm\bin\mcp (file missing)
O23 - Service: mcp - Unknown owner - f:\opt\MBCASE\pm\bin\mcp (file missing)
O23 - Service: Microsoft Office Groove Audit Service - Unknown owner - -"F:\Programme\Microsoft Office\Office12\GrooveAuditService.exe (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - F:\WINDOWS\system32\oodag.exe
O23 - Service: Microsoft Office Diagnostics Service (odserv) - Unknown owner - -"F:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE (file missing)
O23 - Service: Office Source Engine (ose) - Unknown owner - -"F:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE (file missing)
O23 - Service: SmartLinkService (SLService) - - F:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - -F:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing)
O23 - Service: TransBaseService - TransAction Software, D 81737 Munich - f:\opt\MBCASE\WIS\TBCD\tbmux32.exe
O23 - Service: VMware Agent Service (ufad-ws60) - Unknown owner - -"F:\Programme\VMware\VMware Workstation\vmware-ufad.exe" -d "F:\Programme\VMware\VMware Workstation\\" -s ufad-p2v.xml (file missing)
O23 - Service: Messenger USN Journal Reader-Service für freigegebene Ordner (usnjsvc) - Unknown owner - -"F:\Programme\MSN Messenger\usnsvc.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - Unknown owner - -F:\Programme\VMware\VMware Workstation\vmware-authd.exe (file missing)
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - F:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - Unknown owner - -"F:\Programme\Gemeinsame Dateien\VMware\VMware Virtual Image Editing\vmount2.exe (file missing)
O23 - Service: VMware NAT Service - VMware, Inc. - F:\WINDOWS\system32\vmnat.exe
O23 - Service: Windows Media Player-Netzwerkfreigabedienst (WMPNetworkSvc) - Unknown owner - -"F:\Programme\Windows Media Player\WMPNetwk.exe (file missing)

 

Themen zu trojaner
adobe, appinit_dlls, bho, bonjour, browser, dealio, desktop, diagnostics, einstellungen, explorer, firefox, hijack, hijackthis, internet, internet explorer, internet security, kaspersky, log, mozilla, mozilla firefox, ordner, programme, security, senden, software, system, temp, trojane, trojaner, unknown file in winsock lsp, windows, windows xp


« TR/Cleaner.A ??? | gamania b <--- krieg ich nicht runter --->hilfe »


Zum Thema trojaner - Ich bekomme die ganze zeit ne meldung das iein trojaner bei mir ist aber ich kriege ihn mit kaspersky iwie nicht gelöscht habe mal eine log gemacht mit hjack this...hoffe - trojaner...
Archiv
Du betrachtest: trojaner auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131