Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   ccSvcHst.exe 99% auslastung .. bitte auswerten (https://www.trojaner-board.de/36707-ccsvchst-exe-99-auslastung-bitte-auswerten.html)

iceY 01.03.2007 00:43
ccSvcHst.exe 99% auslastung .. bitte auswerten
 
hi meine cpu auslastung is andauernd bei 99% der ccSvcHst.exe task wird bei mir mit 99% angegeben. hab ein wenig rumgeschaut im inet und herausgefunden dass sich es vlt um ein trojaner handelt. heute mittag hat mein norton des weiteren noch 12mal den gleichen virus entfernt "W32.Jeefo" und seit gestern mittag hab ich praktisch das problem dass meine cpu auslastung auf 99% ist.

hier mein logfile vlt. werdet ihr daraus schlau und könnt mir helfen :)

Logfile of HijackThis v1.99.1
Scan saved at 00:34:57, on 01.03.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe
D:\Programme\Gemeinsame Dateien\Symantec Shared\AppCore\AppSvc32.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\ATKKBService.exe
D:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
D:\Programme\Nero\Nero 7\InCD\InCDsrv.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\Explorer.EXE
D:\Programme\ASUS\Ai Booster\OverClk.exe
D:\Programme\InterVideo\Common\Bin\WinCinemaMgr.exe
D:\Programme\Java\jre1.5.0_03\bin\jusched.exe
D:\Programme\Logitech\G-series Software\LGDCore.exe
D:\Programme\Logitech\G-series Software\LCDMon.exe
D:\Programme\CyberLink\PowerDVD\PDVDServ.exe
D:\Programme\Logitech\G-series Software\Applets\LCDMedia.exe
D:\Programme\Logitech\G-series Software\Applets\LCDClock.exe
D:\Programme\Logitech\G-series Software\Applets\LCDPop3\LCDPOP3.exe
D:\WINDOWS\system32\RUNDLL32.EXE
D:\Programme\Logitech\G-series Software\Applets\LCDCountdown\LCDCountdown.exe
D:\Dokumente und Einstellungen\kiNg kOol iceY\Desktop\G15NetSpeed-0[1].0.6\G15NetSpeed\G15NetSpeed.exe
D:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
D:\WINDOWS\system32\RunDll32.exe
D:\Programme\Nero\Nero 7\InCD\InCD.exe
D:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe
D:\Programme\MSN Messenger\MsnMsgr.Exe
D:\programme\steam\steam.exe
D:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe
D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexStoreSvr.exe
D:\Programme\SysTool\SysTool.exe
D:\Programme\Xfire\xfire.exe
D:\WINDOWS\System32\svchost.exe
D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe
D:\Programme\MSN Messenger\usnsvc.exe
D:\Programme\ICQLite\ICQLite.exe
D:\PROGRA~1\NORTON~1\navw32.exe
D:\PROGRA~1\Mozilla Firefox\firefox.exe
D:\Programme\Winamp\Winamp.exe
D:\Dokumente und Einstellungen\kiNg kOol iceY\Desktop\hijackthis_199\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [Launch Ai Booster] "D:\Programme\ASUS\Ai Booster\OverClk.exe"
O4 - HKLM\..\Run: [WINCINEMAMGR] D:\Programme\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - HKLM\..\Run: [GameFace Messenger] D:\Programme\GameFace Messenger\GameFace.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Programme\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [Launch LGDCore] "D:\Programme\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Launch LCDMon] "D:\Programme\Logitech\G-series Software\LCDMon.exe"
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [RemoteControl] D:\Programme\CyberLink\PowerDVD\PDVDServ.exe
O4 - HKLM\..\Run: [NeroFilterCheck] D:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ccApp] "D:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "D:\Programme\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [CmPCIaudio] RunDll32 CMICNFG3.CPL,CMICtrlWnd
O4 - HKLM\..\Run: [DAEMON Tools] "D:\Programme\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [InCD] D:\Programme\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [Mp3CityForSafe] D:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SkipGreatMp3City\16 64.exe
O4 - HKLM\..\RunServices: [Windows Update] D:\WINDOWS\scvhost.exe
O4 - HKLM\..\RunServices: [msconfig] D:\WINDOWS\scvhost.exe
O4 - HKLM\..\RunServices: [icq lite] D:\WINDOWS\scvhost.exe
O4 - HKLM\..\RunServices: [Update Checker] D:\WINDOWS\scvhost.exe
O4 - HKLM\..\RunServices: [AntiVir] D:\WINDOWS\scvhost.exe
O4 - HKLM\..\RunServices: [] D:\WINDOWS\scvhost.exe
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ASUS SmartDoctor] C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start
O4 - HKCU\..\Run: [MsnMsgr] "D:\Programme\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Steam] "d:\programme\steam\steam.exe" -silent
O4 - HKCU\..\Run: [LDM] D:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\RunOnce: [ICQ Lite] D:\Programme\ICQLite\ICQLite.exe -trayboot
O4 - Startup: SysTool.lnk = D:\Programme\SysTool\SysTool.exe
O4 - Startup: Xfire.lnk = D:\Programme\Xfire\xfire.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = D:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = D:\Programme\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Programme\Messenger\msmsgs.exe
O18 - Protocol: bw+0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {A03575F1-C99F-47C7-928F-BC0C7828D4B3} - D:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Unknown owner - D:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - D:\WINDOWS\ATKKBService.exe
O23 - Service: Automatisches LiveUpdate - Scheduler - Symantec Corporation - D:\Programme\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - D:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - D:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - D:\Programme\Gemeinsame Dateien\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - D:\Programme\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Symantec IS Kennwortprüfung (ISPwdSvc) - Symantec Corporation - D:\Programme\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - D:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - D:\Programme\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - D:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Symantec Core LC - Symantec Corporation - D:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - D:\Programme\Gemeinsame Dateien\Symantec Shared\AppCore\AppSvc32.exe

Cleriker 01.03.2007 13:41
Hi,

nicht nur dein genannter ist dein Problem.
Zitat:
O4 - HKLM\..\RunServices: [Windows Update] D:\WINDOWS\scvhost.exe
Du hast diesen Backdoorwurm auf deinem System.
Zusätzlich ist der Swizzor auch zu erkennen.

Setze dein System nach unten gegeben Link neu auf und
ändere alle Passwörter bevor du online gehst.

mfg Cleriker


Alle Zeitangaben in WEZ +1. Es ist jetzt 23:39 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19