| |
| |||||||
Log-Analyse und Auswertung: antivirus 2009Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
31.03.2009, 20:59
| #1 |
| |  antivirus 2009 Hallo, könnte sich einer von euch mal diesen "bericht" anschauen? auf dem benutzten Laptop erscheint immer wieder : "security Alert your Computer is infected" oder so ähnlich danach öffnet sich immer ein Fenster von Antivirus 2009 auf dem es so aussihet, als wenn ein Virenscanner laufen würde. Dankeschön schonmal Malwarebytes' Anti-Malware 1.35 Database version: 1904 Windows 5.1.2600 Service Pack 2 31/03/2009 19:19:05 mbam-log-2009-03-31 (19-19-05).txt Scan type: Full Scan (C:\|D:\|F:\|) Objects scanned: 110386 Time elapsed: 1 hour(s), 6 minute(s), 0 second(s) Memory Processes Infected: 1 Memory Modules Infected: 0 Registry Keys Infected: 4 Registry Values Infected: 1 Registry Data Items Infected: 2 Folders Infected: 1 Files Infected: 7 Memory Processes Infected: C:\WINDOWS\msa.exe (Trojan.FakeAlert) -> Unloaded process successfully. Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{037c7b8a-151a-49e6-baed-cc05fcb50328} (Trojan.BHO) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Cognac (Rogue.Multiple) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\CrucialSoft Ltd (Rogue.MSantispyware2009) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\coldware (Trojan.FakeAlert) -> Quarantined and deleted successfully. Registry Data Items Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: c:\windows\system32\userinit.exe -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: system32\userinit.exe -> Quarantined and deleted successfully. Folders Infected: C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd (Rogue.Multiple) -> Quarantined and deleted successfully. Files Infected: C:\Documents and Settings\***\Local Settings\Temporary Internet Files\Content.IE5\08GGAXXD\srm_free_setup_nf[1].exe (Rogue.SpywareRemover) -> Quarantined and deleted successfully. C:\Documents and Settings\***\Local Settings\Temporary Internet Files\Content.IE5\NXCVZ848\MalwareDefender2009[1].exe (Rogue.MalwareDefender) -> Quarantined and deleted successfully. C:\Documents and Settings\***\Local Settings\Temporary Internet Files\Content.IE5\W0LJWKTS\srm_free_setup_nf[1].exe (Rogue.SpywareRemover) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{DD990753-454D-43F2-BBC3-CDE167A85CF9}\RP212\A0026925.cpl (Rogue.XPAntivirus) -> Quarantined and deleted successfully. C:\WINDOWS\msa.exe (Trojan.FakeAlert) -> Delete on reboot. C:\WINDOWS\Tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job (Trojan.FakeAlert) -> Delete on reboot. C:\WINDOWS\system32\msxml71.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully. |
|
01.04.2009, 18:38
| #2 |
| /// AVZ-Toolkit Guru   | antivirus 2009 Halli hallo.
__________________Lasse die Anti-Malware Funde entfernen. Scanne den Rechner danach mit SUPERAntiSpyware und poste den Bericht. Systemanalyse
__________________ |
|
| Themen zu antivirus 2009 |
| .dll, alert, antivirus, antivirus 2009, computer, content.ie5, detected, free, immer wieder, infected, internet, laptop, malwaredefender, microsoft, rogue.multiple, scan, security, security alert, setup, software, system, system volume information, system32, trojan.agent, userinit, userinit.exe, winlogon, your computer is infected, öffnet |
Linear-Darstellung
