Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.
Gestern Virenprobleme, heute schmirrt Firefox ständig ab.
Juhu, es hat endlich geklappt. Hier nun das Log von ESET:
Code:
ATTFilter
ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=8.00.7600.16385 (win7_rtm.090713-1255)
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-02-13 03:53:14
# local_time=2012-02-13 04:53:14 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7600 NT
# compatibility_mode=1797 16775166 100 94 169312 865277169 241937 0
# compatibility_mode=4096 16777215 100 0 0 0 0 0
# compatibility_mode=5893 16776574 66 94 1362947 80757213 0 0
# compatibility_mode=8192 67108863 100 0 405443 405443 0 0
# compatibility_mode=9217 16777214 0 43 51400967 569245262 0 0
# scanned=780074
# found=21
# cleaned=0
# scan_time=21032
C:\Program Files (x86)\RegInOut\engine.dll a variant of Win32/Adware.AntiMalwarePro.AD application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\igelab.exe a variant of Win32/Kryptik.AAAN trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Nibiru\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\6f28a5a2-7fd6730b Java/Exploit.CVE-2011-3544.K trojan (unable to clean) 00000000000000000000000000000000 I
C:\Users\Nibiru\AppData\Roaming\CBE3848236A0C3487C5C29E4A02D7619\enemies-names.txt Win32/Adware.AntimalwareDoctor.AE.Gen application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Nibiru\AppData\Roaming\OpenCandy\DA2A1EA9104E4DB982E96EDBE4AFA91B\LinkuryInstaller.msi Win32/Toolbar.Linkury application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Nibiru\Downloads\reginout_setup.exe a variant of Win32/Adware.AntiMalwarePro.AD application (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\user32.dll Win32/Patched.NBG trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0OJBPZLD\d6246c5c[1].htm HTML/Iframe.B.Gen virus (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\f6ae9b-5fc47e48 a variant of Java/Exploit.CVE-2011-3544.AM trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\2b0be924-411d2e62 Java/Exploit.CVE-2011-3544.AK trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\1a46a204-47e6c2b5 a variant of Win32/Injector.NZA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\SysWOW64\user32.dll Win32/Patched.NBG trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0OJBPZLD\d6246c5c[1].htm HTML/Iframe.B.Gen virus (unable to clean) 00000000000000000000000000000000 I
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\f6ae9b-5fc47e48 a variant of Java/Exploit.CVE-2011-3544.AM trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\2b0be924-411d2e62 Java/Exploit.CVE-2011-3544.AK trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\1a46a204-47e6c2b5 a variant of Win32/Injector.NZA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\temp\0.04673988846399446.exe a variant of Win32/Injector.NZA trojan (unable to clean) 00000000000000000000000000000000 I
C:\Windows\temp\jar_cache8920142154163096970.tmp probably a variant of Java/TrojanDownloader.OpenStream.NCI trojan (unable to clean) 00000000000000000000000000000000 I
D:\Games\LEGO.Star.Wars.III.The.Clone.Wars-SKIDROW\sr-lsw3c.iso a variant of Win32/Packed.VMProtect.AAA trojan (unable to clean) 00000000000000000000000000000000 I
D:\Games\Two Worlds II\rld-tww2.iso probably a variant of Win32/Obfuscated.CNYLSSL trojan (unable to clean) 00000000000000000000000000000000 I
${Memory} Win32/Patched.NBG trojan 00000000000000000000000000000000 I
Themen zu Gestern Virenprobleme, heute schmirrt Firefox ständig ab.
Zum Thema Gestern Virenprobleme, heute schmirrt Firefox ständig ab. - Juhu, es hat endlich geklappt. Hier nun das Log von ESET:
Code:
Alles auswählen Aufklappen ATTFilter
ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK
# - Gestern Virenprobleme, heute schmirrt Firefox ständig ab....
13.02.2012, 17:00
Baum-Darstellung