| |
| |||||||
Log-Analyse und Auswertung: GVU-TrojanerWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
03.10.2012, 08:57
| #16 |
 |  GVU-Trojaner ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=8368d9fb647599499e727c701fc444f0 # end=stopped # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2012-10-02 12:20:14 # local_time=2012-10-02 02:20:14 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5121 16777213 100 75 492441 3336183 0 0 # compatibility_mode=5893 16776574 100 94 36875379 100809819 0 0 # compatibility_mode=8192 67108863 100 0 102 102 0 0 # scanned=2078 # found=0 # cleaned=0 # scan_time=445 ESETSmartInstaller@High as downloader log: all ok esets_scanner_update returned -1 esets_gle=53251 # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=8368d9fb647599499e727c701fc444f0 # end=stopped # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2012-10-02 12:29:57 # local_time=2012-10-02 02:29:57 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5121 16777213 100 75 492948 3336690 0 0 # compatibility_mode=5893 16776574 100 94 36875886 100810326 0 0 # compatibility_mode=8192 67108863 100 0 609 609 0 0 # scanned=2078 # found=0 # cleaned=0 # scan_time=521 ESETSmartInstaller@High as downloader log: all ok esets_scanner_update returned -1 esets_gle=53251 # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=8368d9fb647599499e727c701fc444f0 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2012-10-03 05:35:36 # local_time=2012-10-03 07:35:36 (+0100, Mitteleuropäische Sommerzeit) # country="Germany" # lang=1033 # osver=5.1.2600 NT Service Pack 2 # compatibility_mode=5121 16777213 100 75 493520 3337262 0 0 # compatibility_mode=5893 16776574 100 94 36876458 100810898 0 0 # compatibility_mode=8192 67108863 100 0 1181 1181 0 0 # scanned=213360 # found=20 # cleaned=20 # scan_time=61487 C:\Program Files (x86)\PDFCreator\Toolbar\pdfforge Toolbar-4_4_0_setup.exe Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\Users\fam.hotz\AppData\Local\Temp\{C41A7FB7-3377-4AB2-82A5-B476C13685A4}\pdfforgeToolbar.msi a variant of Win32/Toolbar.Widgi application (deleted - quarantined) 00000000000000000000000000000000 C C:\Users\fam.hotz\Downloads\PDFCreator-1_2_2_setup.exe Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\Windows\Installer\1269fbbd.msi a variant of Win32/Toolbar.Widgi application (deleted - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.10 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.11 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.12 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.13 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.14 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.15 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.16 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.17 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.5 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.6 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.7 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.8 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\Common Files\Spigot\WTXPCOM\components\WidgiToolbarFF.dll.9 a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\_OTL\MovedFiles\09272012_151556\C_Program Files (x86)\pdfforge Toolbar\IE\6.3\pdfforgeToolbarIE.dll a variant of Win32/Toolbar.Widgi application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C |
| Themen zu GVU-Trojaner |
| administrator, aktion, anti-malware, appdata, autostart, dateien, e-mail, exploit.drop.2, explorer, index, kaspersky, limited.com/facebook, log-datei, lsass.exe, mcafee, microsoft, origin, pdfforge toolbar, plug-in, quarantäne, rechner, roaming, search the web, service, situation, startup, temp, test, trojan.delf, trojaner, unlocker, update, version, wgsdgsdgdsgsd.exe, windows |
Baum-Darstellung