Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
noch einer mit TR kazy.mekml.1

noch einer mit TR kazy.mekml.1


Plagegeister aller Art und deren Bekämpfung: noch einer mit TR kazy.mekml.1

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 25.04.2011, 11:52   #1
yksi
 
noch einer mit TR kazy.mekml.1 - Standard

noch einer mit TR kazy.mekml.1


Irgendwie hat es mich erwischt.
Also wenn ich das richtig sehe, erst einmal die logfiles posten.OTL EXTRAS Logfile:
Code:
ATTFilter
OTL Extras logfile created on: 25.04.2011 12:36:09 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\eschlauer\Desktop
Windows Vista Business Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 223,23 Gb Total Space | 162,90 Gb Free Space | 72,98% Space Free | Partition Type: NTFS
Drive E: | 1,55 Gb Total Space | 1,32 Gb Free Space | 84,80% Space Free | Partition Type: NTFS
Drive F: | 8,10 Gb Total Space | 0,98 Gb Free Space | 12,07% Space Free | Partition Type: NTFS
 
Computer Name: ESCHLAUER-PC | User Name: eschlauer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
.pif [@ = piffile] -- "%1" %*"
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*"
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== System Restore Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0
"DisableConfig" = 0
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0D84C843-34BA-4033-87D8-87D7CA80AA4E}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe | 
"{149FD433-6700-4538-8ED3-AA6D1AF2F6E3}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe | 
"TCP Query User{8AD7DA49-23F7-4990-9CE3-6A82D94F0C3E}C:\windows\system32\wfs.exe" = protocol=6 | dir=in | app=c:\windows\system32\wfs.exe | 
"UDP Query User{4E23AA7B-6B26-46D5-9598-BFF166C4554F}C:\windows\system32\wfs.exe" = protocol=17 | dir=in | app=c:\windows\system32\wfs.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0394CDC8-FABD-4ED8-B104-03393876DFDF}" = Roxio Creator Tools
"{03CB09C1-55D7-83B0-0EB1-683E1BDE05CB}" = ATI Catalyst Install Manager
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = HP Integrated Module with Bluetooth wireless technology 6.0.1.4900
"{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu
"{0658A67B-18B6-D8C5-F347-0723A3D49D90}" = CCC Help Thai
"{07629207-FAA0-4F1A-8092-BF5085BE511F}" = Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch)
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA}" = Uniblue RegistryBooster
"{0D397393-9B50-4C52-84D5-77E344289F87}" = Roxio Creator Data
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2414" = CanoScan LiDE 110 Scanner Driver
"{125466F7-F130-7676-7FC8-09E02B8AFCBA}" = CCC Help Chinese Traditional
"{149D0611-01A1-7682-35E1-BF37621105CC}" = Catalyst Control Center Localization Spanish
"{175B4D06-17F8-E806-D526-F6E772E2E574}" = Catalyst Control Center Localization Chinese Traditional
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant
"{24F612F0-4063-5496-15B6-6C3C7397D028}" = CCC Help Danish
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 24
"{286A59C2-6EC2-5A73-C38E-351EA0D4443C}" = Catalyst Control Center Localization Japanese
"{2A34A9B2-ADBE-937A-0237-76E9E9A88408}" = Catalyst Control Center Localization Korean
"{2ADAD758-CB3C-869D-A889-876BDD55A994}" = Catalyst Control Center Graphics Full New
"{2DB165DC-DDB4-403F-B985-19F3EC7D0357}" = HP ProtectTools Security Manager
"{2DFB5485-A3EF-4298-9280-4AF80C9F4BE9}" = Microsoft SQL Server VSS Writer
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}" = Roxio MyDVD Basic v9
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.40 B2
"{35C7F48D-436F-5AEC-6585-18AF4F9A762C}" = CCC Help English
"{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}" = Roxio Activation Module
"{3736A285-6F18-4EF3-A58F-AEE7A4A51038}" = GFAhnen
"{3912A629-0020-0005-3131-2FBA74D4DF0A}" = InterVideo WinDVD
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D316DBC-FF83-ECBA-D066-8023603E0337}" = Skins
"{3F45DBF1-9171-E96E-1BF2-4A6D66F36460}" = CCC Help Spanish
"{3F682A6D-EDA5-A9A1-1DE8-378A81D8651F}" = ccc-core-static
"{3F93B2BA-18EC-462B-9ACD-396599353EE1}" = Catalyst Control Center - Branding
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = ST Wiederherstellungs- & Sicherungsprogramme
"{41977E38-C671-4383-96F2-D2C83A815EB4}" = Vista Default Settings
"{495E877B-E945-C917-C509-8EC652567C24}" = CCC Help Korean
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51409C09-D9D1-4B41-0D1E-9D5213162A02}" = Catalyst Control Center Localization Danish
"{51C8F850-4218-4C7F-AB21-AD54241106ED}" = HP User Guides 0085
"{521F72F4-FFE4-4959-AA88-EED06125211F}" = HP Notebook Accessories Product Tour
"{53EEBE37-B94D-4991-CF2E-5C6E388DC4A9}" = Catalyst Control Center Localization German
"{547DCEC7-DD2A-47E9-82C7-5CF1EAB526DA}" = Microsoft SQL Server Native Client
"{54D02DFD-E826-5F32-959C-4252AB05294E}" = CCC Help Hungarian
"{55B52830-024A-443E-AF61-61E1E71AFA1B}" = Device Access Manager for HP ProtectTools
"{584B0895-8EF3-4175-8E80-1B68BFA04636}" = HP Help and Support
"{5D97A4A7-C274-4B63-86D9-07A33435F505}" = InterVideo DVD Check
"{5E51F990-5D2C-3EA2-EDDD-703039439F65}" = Catalyst Control Center Graphics Full Existing
"{5EAA39F2-3FD5-930C-658E-2C5720A6166F}" = Catalyst Control Center Localization Italian
"{619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
"{66F6DF0D-7F3F-B5AA-DD6A-0924B887C0A9}" = CCC Help Italian
"{69333A04-5134-40A5-A055-9166A7AA1EC8}" = 
"{6CA81819-55C3-DB66-4F4C-B54D206FB7F7}" = Catalyst Control Center Core Implementation
"{6D3DB611-D5E8-4E4B-8952-0D3F549F9CC6}" = HP Active Support Library 32 bit components
"{70CEFEBA-F757-4DBE-8A21-027C326137CE}" = Application Installer 4.00.B14
"{74939CB7-3F52-7F4E-D116-1875CFA3009A}" = CCC Help Finnish
"{7CF1A316-C578-355E-E308-952C728BC54E}" = Catalyst Control Center Localization Dutch
"{7FA29A93-E5E5-A944-1132-F27255C691F2}" = Catalyst Control Center Localization Swedish
"{7FF87B93-8C2A-A165-CE49-08A36461DF6A}" = Catalyst Control Center Localization Chinese Standard
"{83FFCFC7-88C6-41C6-8752-958A45325C82}" = Roxio Creator Audio
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Sonic CinePlayer Decoder Pack
"{8E147C3C-4468-FD71-E9D7-6B141535EE05}" = CCC Help Swedish
"{90110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD
"{931EF30A-F52E-4B52-8BDD-85E82CEFFD02}" = GFAhnen
"{9496B562-31E0-D913-8CCF-539453AA9125}" = Catalyst Control Center Graphics Previews Vista
"{972B5110-33E9-919B-B83A-53B20E49EB14}" = ccc-utility
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9DA6563D-6F76-4FDA-CEDA-2950611DB60A}" = CCC Help Russian
"{A1C1E32C-6B3A-2753-7D2A-06DAEEC26F7C}" = CCC Help Portuguese
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A667A020-E7BF-34F5-D4C5-30EADD8F64A6}" = Catalyst Control Center Localization Portuguese
"{A914D313-94A0-2118-0F25-92AEBAE6A56E}" = CCC Help Czech
"{AB5E289E-76BF-4251-9F3F-9B763F681AE0}" = HP Customer Experience Enhancements
"{AC76BA86-7AD7-1031-7B44-A90000000001}" = Adobe Reader 9 - Deutsch
"{AF4F3163-522A-6083-ADBB-7FC173D04E7F}" = CCC Help Dutch
"{B3FDE623-E866-0C93-3A15-5DD368191CD5}" = Catalyst Control Center Localization Polish
"{B7ADC67A-CD8D-571F-F6A4-5361094C49A8}" = Catalyst Control Center Localization Greek
"{B832C182-EC1B-A97C-8B27-27F63CB3D716}" = Catalyst Control Center Localization Czech
"{B909E373-F4B3-623E-FCBA-01E570095918}" = CCC Help Chinese Standard
"{BA43F3C0-41CA-7CD1-1BB9-735090D19C50}" = CCC Help Norwegian
"{BBE5C83E-4DC5-494F-8A23-3AAE242E94C2}" = HP Easy Setup - Frontend
"{BC35397E-6A05-4E93-8418-1BA7CD2B7AAB}" = BIOS Configuration for HP ProtectTools
"{C121A9F8-D348-8F90-2A43-01F6A00EA3DC}" = CCC Help Polish
"{C811B7DB-85D5-634C-1BDB-11D9990EB982}" = CCC Help Japanese
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator Basic v9
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}" = HP Wireless Assistant
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}" = HP Active Support Library
"{D19C4B0D-CBB3-C050-3CE2-BDF061AB9AD8}" = Catalyst Control Center Graphics Light
"{D2AC6018-9433-C6A5-6887-BC5462B181D1}" = Catalyst Control Center Localization Thai
"{D3FECD68-016D-49BE-907D-D6DCE5E6A897}" = CCC Help Turkish
"{D98B6344-98EC-4196-9D61-DB0E8420C7C8}" = ESU for Microsoft Vista
"{D9B4D7EE-481C-4C36-86AB-A8F7417725FF}" = LightScribe 1.6.43.1
"{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}" = LiveUpdate Notice (Symantec Corporation)
"{DF4BDCDF-A088-8165-9EF6-E9DF7BF45A6E}" = Catalyst Control Center Localization Russian
"{DFF9B46D-84FE-8785-5133-E463169844AF}" = Catalyst Control Center Localization Finnish
"{E78BFA60-5393-4C38-82AB-E8019E464EB4}" = Microsoft .NET Framework 1.1 German Language Pack
"{EAA8096E-7A9F-8CBC-4583-58F75AD21617}" = CCC Help Greek
"{EBCA1E17-9648-64BC-6AF4-09289E6D8108}" = Catalyst Control Center Localization Hungarian
"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support
"{EE8F81B9-068C-7BE6-6DC8-59BA731B63CD}" = CCC Help German
"{EF152879-0F9F-F465-F27C-644C9A22353C}" = CCC Help French
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F18DB86D-BC16-4E01-BCCE-63F62B931D82}" = InterVideo Register Manager
"{F5C63795-2708-4D15-BF18-5ABBFF7DFFC8}" = iTunes
"{F64FFAE8-9851-4E1F-AE2B-8CD970B0754C}" = Catalyst Control Center Localization Turkish
"{F6AB31ED-8BA2-AB0D-03BE-B77980C8313D}" = Catalyst Control Center Localization French
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FC1D40E7-1F08-01B1-E218-CC691FD7065F}" = Catalyst Control Center Localization Norwegian
"{FE57DE70-95DE-4B64-9266-84DA811053DB}" = HP Update
"7-Zip" = 7-Zip 9.16 beta
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AOL Toolbar" = AOL Toolbar 5.0
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Broadcom 802.11b Network Adapter" = Broadcom 802.11 Wireless LAN Adapter
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonSolutionMenuEX" = Canon Solution Menu EX
"IrfanView" = IrfanView (remove only)
"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Mozilla Firefox 4.0 (x86 de)" = Mozilla Firefox 4.0 (x86 de)
"MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
"PDF Complete" = PDF Complete
"PROSet" = Intel(R) PRO Network Connections Drivers
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Uniblue RegistryBooster" = Uniblue RegistryBooster
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CD-ROM Pharmazeutische Zeitung 2008" = CD-ROM Pharmazeutische Zeitung 2008
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 20.07.2010 05:22:08 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 20.07.2010 05:22:08 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 20.07.2010 06:59:04 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 20.07.2010 06:59:04 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 21.07.2010 03:01:06 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 21.07.2010 03:01:06 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 22.07.2010 02:58:46 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 22.07.2010 02:58:46 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 22.07.2010 03:28:32 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
Error - 22.07.2010 05:28:33 | Computer Name = eschlauer-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083
Description = 
 
[ System Events ]
Error - 21.04.2011 07:11:51 | Computer Name = eschlauer-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 21.04.2011 08:07:14 | Computer Name = eschlauer-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 21.04.2011 08:56:35 | Computer Name = eschlauer-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 21.04.2011 09:11:12 | Computer Name = eschlauer-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 21.04.2011 11:55:53 | Computer Name = eschlauer-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 24.04.2011 15:04:00 | Computer Name = eschlauer-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 24.04.2011 15:07:52 | Computer Name = eschlauer-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 24.04.2011 15:18:11 | Computer Name = eschlauer-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 24.04.2011 16:38:22 | Computer Name = eschlauer-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 24.04.2011 16:54:43 | Computer Name = eschlauer-PC | Source = DCOM | ID = 10010
Description = 
 
 
< End of report >
--- --- ---
 

Themen zu noch einer mit TR kazy.mekml.1
32 bit, 7-zip, adapter, adobe, adobe flash player, avira, bios, cd-rom, dll, error, explorer, explorer.exe, flash player, format, install.exe, launch, location, logfiles, microsoft, mozilla, notebook, oldtimer, pdf, registry, rundll, saver, scan, security, shell32.dll, shortcut, software, tcp, udp, vista


« Online Konto gesperrt (Samstag 23.23 Uhr) | Immer wieder Trojaner gefunden, u.a. hiddenext/crypted »


Ähnliche Themen: noch einer mit TR kazy.mekml.1


  1. noch ein 'TR/Kazy.mekml.1' [trojan]
    Log-Analyse und Auswertung - 24.05.2011 (38)
  2. Und noch ein TR/kazy.mekml.1
    Log-Analyse und Auswertung - 18.05.2011 (31)
  3. TR/Kazy.mekml.1 ; 'TR/FakeSysdef.A.621 ; 'TR/Kazy.22847'..
    Log-Analyse und Auswertung - 15.05.2011 (33)
  4. TR/Kazy.mekml.1 aus einer email eingefangen, obwohl Antivir nix festgestellt hat
    Log-Analyse und Auswertung - 13.05.2011 (32)
  5. TR/kazy.mekml.1
    Log-Analyse und Auswertung - 06.05.2011 (5)
  6. Tr/kazy.mekml.1
    Log-Analyse und Auswertung - 03.05.2011 (13)
  7. TR/Kazy.mekml.1!Ich brauche bitte DRINGEND HILFE,denn meine Hausarbeit(noch nicht fertig) ist weg:(
    Log-Analyse und Auswertung - 02.05.2011 (14)
  8. TR/Kazy.mekml.1 ist nach OTL noch was zu tun?
    Plagegeister aller Art und deren Bekämpfung - 01.05.2011 (5)
  9. TR/Kazy.mekml.1 - OTL Fix?
    Log-Analyse und Auswertung - 01.05.2011 (17)
  10. Virus TR/Kazy.mekml.1 und noch einer
    Plagegeister aller Art und deren Bekämpfung - 30.04.2011 (33)
  11. TR/Kazy.mekml.1
    Log-Analyse und Auswertung - 28.04.2011 (1)
  12. Trojaner TR/kazy.mekml.1 nach Anweisung entfernt aber trotzdem noch Probleme!
    Log-Analyse und Auswertung - 28.04.2011 (2)
  13. und noch einer: Trojaner TR/kazy.mekml.1
    Log-Analyse und Auswertung - 27.04.2011 (6)
  14. noch jemand mit TR/Kazy/mekml.1(Anleitung von Coverflow)
    Plagegeister aller Art und deren Bekämpfung - 26.04.2011 (1)
  15. TR/Kazy.mekml.1
    Log-Analyse und Auswertung - 26.04.2011 (3)
  16. Osterei: TR/Kazy.mekml.1 und TR/Kazy.20364
    Log-Analyse und Auswertung - 25.04.2011 (1)
  17. TR/Kazy.mekml.1
    Plagegeister aller Art und deren Bekämpfung - 22.04.2011 (11)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema noch einer mit TR kazy.mekml.1 - Irgendwie hat es mich erwischt. Also wenn ich das richtig sehe, erst einmal die logfiles posten.OTL EXTRAS Logfile: Code: Alles auswählen Aufklappen ATTFilter OTL Extras logfile created on: 25.04.2011 12:36:09 - noch einer mit TR kazy.mekml.1...
Archiv
Du betrachtest: noch einer mit TR kazy.mekml.1 auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131