Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Hijackauswertung

Hijackauswertung


Log-Analyse und Auswertung: Hijackauswertung

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 31.01.2005, 15:43   #1
roja54
 
Hijackauswertung - Standard

Hijackauswertung


Bitte um Hijack Auswertung

Logfile of HijackThis v1.99.0
Scan saved at 15:39:51, on 31.01.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Java\j2re1.4.2_04\bin\jusched.exe
C:\Programme\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\sstray.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\Programme\Archive\archive.exe
C:\WINDOWS\qfxvbhlb.exe
C:\Programme\ISTsvc\istsvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\netdde.exe
C:\Programme\MA311 PCI Adapter Configuration Utility\wlanutil.exe
C:\Programme\Norton Internet Security\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Internet Explorer\iexplore.exe
D:\Downloads\Hijack\hijackthis\HijackThis.exe
C:\Programme\Messenger\msmsgs.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.utanet.at
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.utanet.at
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ebay.at
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ebay.at
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O4 - HKLM\..\Run: [Corel Graphics Suite 1117] C:\Programme\Corel\Corel Graphics 11\Register\registration.exe /title="Corel Graphics Suite 11" /date=021205 serial=DR11CRD-0012082-DGW
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Programme\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Programme\Alcatel\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [RemoteControl] "C:\Programme\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r
O4 - HKLM\..\Run: [ccApp] C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
O4 - HKLM\..\Run: [Archive] C:\Programme\Archive\archive.exe
O4 - HKLM\..\Run: [kHeOCGXb5] C:\WINDOWS\qfxvbhlb.exe
O4 - HKLM\..\Run: [IST Service] C:\Programme\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [-
] C:\WINDOWS\qfxvbhlb.exe
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - Global Startup: Configuration Utility.lnk = C:\Programme\MA311 PCI Adapter Configuration Utility\wlanutil.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.2_04\bin\npjpi142_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\j2re1.4.2_04\bin\npjpi142_04.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Programme\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {27527D31-447B-11D5-A46E-0001023B4289} (CoGSManager Class) - http://gamingzone.ubisoft.com/dev/packages/GSManager.cab
O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} (CR64Loader Object) - http://www.miniclip.com/platypus/miniclipGameLoader.dll
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EPUWALControl_v1-0-3-17.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20040428/qtinstall.info.apple.com/saba/de/win/QuickTimeInstaller.exe
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{7730D399-B9B2-4F28-B378-0BAACC7C6E39}: NameServer = 195.96.0.4,195.70.224.45
O23 - Service: Ati HotKey Poller - Unknown - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: Norton AntiVirus Auto-Protect-Dienst - Symantec Corporation - C:\Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NVIDIA Display Driver Service - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programme\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service - Symantec Corporation - C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe

Alt 31.01.2005, 17:42   #2
HerrKautz
 
Hijackauswertung - Standard

Hijackauswertung


Hallo,

mach bitte einen escan im abgesicherten Modus geh dazu nach Anelitung vor: http://www.trojaner-board.de/42731-escan-anleitung.html

Download von escan: http://www.mwti.net/antivirus/free_utilities.asp

Teile uns dann das Ergebnis des eScan mit: welche Viren wurden auf Deinem Rechner gefunden: "öffne die mwav.log -> Bearbeiten -> Suchen -> infected eingeben -> Weitersuchen -> Treffer markieren/kopieren und ins Forum übertragen." (Zitat Cidre)

Gruss
__________________
Alt 02.02.2005, 10:09   #3
roja54
 
Hijackauswertung - Standard

Hijackauswertung


eScan hat zahlreiche Einträge gefunden.Wie kann ich die Plagegeister entfernen.
NAV 2004 findet beim Scan keine Viren.

Danke roja54

File C:\Programme\Archive\archive.exe infected by "Trojan-Downloader.Win32.Small.agn" Virus. Action Taken: No Action Taken.
File C:\Programme\ISTsvc\istsvc.exe infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.
File C:\Programme\ISTsvc\istsvc.exe infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\3BHK6X.exe infected by "Trojan-Downloader.Win32.IstBar.gn" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\pony41.exe infected by "Trojan-Downloader.Win32.Small.agn" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\temp.fr5D11\istsvc.exe infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~13.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~15.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~17.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~17.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~19.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~19.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~25.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~25.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~8.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~8.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~A.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~A.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~C0.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~C0.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~C5.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~C5.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~CA.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~CA.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~CE.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~CE.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~D.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~D.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~D4.exe
File C:\DOKUME~1\user\LOKALE~1\Temp\~D4.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~E4.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\Temp\~F.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\89ABCDEF\38de12476f0e691cf127f74c103038c1[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\G1K3CN4R\protect[1].htm infected by "Trojan-Downloader.JS.IstBar.d" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\ITGJUH65\818b23d18ff0527ee22e4452e5f2804c[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\OPAJGXEJ\a570a077[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\URQBQ5A7\3fd2e9aa97ea23e8e3d06873ede6e03d[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken: No Action Taken.
File C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\W56N0963\istsvc[1].exe infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.
File C:\Programme\Archive\archive.exe infected by "Trojan-Downloader.Win32.Small.agn" Virus. Action Taken: No Action Taken.
File C:\WINDOWS\qfxvbhlb.exe infected by "Trojan-Downloader.Win32.IstBar.go" Virus. Action Taken
File C:\Programme\ISTsvc\istsvc.exe infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-6b9fccb8-364995e5.class infected by "Trojan.Java.ClassLoader.Dummy.d" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\jar\javainstaller.jar-3cc46f89-21f7bf31.zip infected by "Trojan-Downloader.Java.OpenStream.u" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv160.jar-121c520f-66f45d25.zip infected by "TrojanDownloader.Java.OpenStream.c" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\3BHK6X.exe infected by "Trojan-Downloader.Win32.IstBar.gn" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\pony41.exe infected by "Trojan-Downloader.Win32.Small.agn" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\temp.fr5D11\istsvc.exe infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~13.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~15.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~17.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~19.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~25.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~8.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~A.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~C0.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~C5.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~CA.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~CE.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~D.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~D4.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~E4.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temp\~F.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.
File C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temporary Internet Files\Content.IE5\URQBQ5A7\3fd2e9aa97ea23e8e3d06873ede6e03d[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken: No Action Taken.
File C:\laufwerk\Eigene Dateien\Briefe\Outlook Express\Robert Janisch\Mail\Gelöschte Objekte.mbx infected by "not-a-virus:AdWare.Gator.3124" Virus. Action Taken: No Action Taken.

File C:\System Volume Information\_restore{A4A3D34E-0FD2-4C1C-8024-DE9A510B5DBF}\RP4\A0003361.exe infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.
File C:\WINDOWS\Downloaded Program Files\miniclipGameLoader.dll infected by "TrojanDownloader.Win32.Agent.de" Virus. Action Taken: No Action Taken.
__________________
Alt 02.02.2005, 15:43   #4
HerrKautz
 
Hijackauswertung - Standard

Hijackauswertung


Hi,

also ich würde gerne das ganze Log mal sehen.

(Teile uns dann das Ergebnis des eScan mit: welche Viren wurden auf Deinem Rechner gefunden: "öffne die mwav.log -> Bearbeiten -> Suchen -> infected eingeben -> Weitersuchen -> Treffer markieren/kopieren und ins Forum übertragen." (Zitat Cidre) )

Du solltest dich aber seelisch und moralisch schonmal darauf einstellen,dein System neu zu machen ich sehe nämlich keinen Sinn darin,es zu retten!

http://www.trojaner-board.de/showthread.php?t=12154

Norton ist mit einer der schlechtesten Scanner...

Gehst du über DSL ins Netz,wenn nein sichere schonmal die ganzen Dailer auf Diskette,damit du ggf. was in der Hand hast!

Alt 02.02.2005, 20:17   #5
roja54
 
Hijackauswertung - Standard

Hijackauswertung


Mon Jan 31 19:47:07 2005 => File C:\Programme\Archive\archive.exe infected by "Trojan-
Downloader.Win32.Small.agn" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:47:07 2005 => File C:\Programme\ISTsvc\istsvc.exe infected by "Trojan-
Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:47:24 2005 => File C:\Programme\ISTsvc\istsvc.exe infected by "Trojan-
Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:52:13 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\3BHK6X.exe
infected by "Trojan-Downloader.Win32.IstBar.gn" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:20 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\pony41.exe
infected by "Trojan-Downloader.Win32.Small.agn" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:24 2005 => File
C:\DOKUME~1\user\LOKALE~1\Temp\temp.fr5D11\istsvc.exe infected by "Trojan-
Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:31 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~13.exe infected
by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:31 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~15.exe infected
by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:31 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~17.exe
Mon Jan 31 19:54:31 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~17.exe infected
by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:31 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~19.exe
Mon Jan 31 19:54:31 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~19.exe infected
by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:31 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~25.exe
Mon Jan 31 19:54:32 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~25.exe infected
by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:32 2005 => Scanning File C:\DOKUME~1\user\LOKALE~1\Temp\~8.exe
Mon Jan 31 19:54:32 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~8.exe infected
by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:32 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~A.exe
Mon Jan 31 19:54:32 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~A.exe infected
by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:32 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~C0.exe
Mon Jan 31 19:54:32 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~C0.exe
infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:32 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~C5.exe
Mon Jan 31 19:54:33 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~C5.exe
infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:33 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~CA.exe
Mon Jan 31 19:54:33 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~CA.exe
infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:33 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~CE.exe
Mon Jan 31 19:54:33 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~CE.exe
infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:33 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~D.exe
Mon Jan 31 19:54:34 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~D.exe infected
by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:34 2005 => Scanning File
C:\DOKUME~1\user\LOKALE~1\Temp\~D4.exe
Mon Jan 31 19:54:34 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~D4.exe
infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:34 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~E4.exe infected
by "not-a-virus:Porn-Dialer.Win32.Generic" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:54:34 2005 => File C:\DOKUME~1\user\LOKALE~1\Temp\~F.exe infected
by "Trojan.Win32.StartPage.ow" Virus. Action Taken: No Action Taken.

Mon Jan 31 19:57:00 2005 => File
C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\89ABCDEF\38de12476f0e691c
f127f74c103038c1[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken:
No Action Taken.

Mon Jan 31 20:02:01 2005 => File
C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\G1K3CN4R\protect[1].htm
infected by "Trojan-Downloader.JS.IstBar.d" Virus. Action Taken: No Action Taken.

Mon Jan 31 20:03:20 2005 => File
C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\ITGJUH65\818b23d18ff0527ee
22e4452e5f2804c[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken:
No Action Taken.

Mon Jan 31 20:07:45 2005 => File
C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\OPAJGXEJ\a570a077[1].js
infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken: No Action Taken.
Mon Jan 31 20:09:06 2005 => File
C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\URQBQ5A7\3fd2e9aa97ea23e8
e3d06873ede6e03d[1].js infected by "Trojan-Downloader.JS.Small.af" Virus. Action Taken:
No Action Taken.

Mon Jan 31 20:10:56 2005 => File
C:\DOKUME~1\user\LOKALE~1\TEMPOR~1\Content.IE5\W56N0963\istsvc[1].exe
infected by "Trojan-Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.

Mon Jan 31 20:24:41 2005 => File C:\Programme\Archive\archive.exe infected by "Trojan-
Downloader.Win32.Small.agn" Virus. Action Taken: No Action Taken.

Mon Jan 31 20:24:41 2005 => File C:\WINDOWS\qfxvbhlb.exe infected by "Trojan-
Downloader.Win32.IstBar.go" Virus. Action Taken

Mon Jan 31 20:24:41 2005 => File C:\Programme\ISTsvc\istsvc.exe infected by "Trojan-
Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.

Mon Jan 31 20:38:08 2005 => File C:\Dokumente und
Einstellungen\user\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.cl
ass-6b9fccb8-364995e5.class infected by "Trojan.Java.ClassLoader.Dummy.d" Virus. Action
Taken: No Action Taken.

Mon Jan 31 20:38:46 2005 => File C:\Dokumente und
Einstellungen\user\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\jar\javainstalle
r.jar-3cc46f89-21f7bf31.zip infected by "Trojan-Downloader.Java.OpenStream.u" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:38:47 2005 => File C:\Dokumente und
Einstellungen\user\Anwendungsdaten\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv1
60.jar-121c520f-66f45d25.zip infected by "TrojanDownloader.Java.OpenStream.c" Virus.
Action Taken: No Action Taken.


Alt 02.02.2005, 20:19   #6
roja54
 
Hijackauswertung - Standard

Hijackauswertung


Mon Jan 31 20:42:32 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\3BHK6X.exe infected by "Trojan-Downloader.Win32.IstBar.gn" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:33 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\pony41.exe infected by "Trojan-Downloader.Win32.Small.agn" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:38 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\temp.fr5D11\istsvc.exe infected by "Trojan-
Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~13.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~15.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken:
No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~17.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~19.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken:
No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~25.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~8.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~A.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken:
No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~C0.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~C5.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~CA.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~CE.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:43 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~D.exe infected by "not-a-virus:Porn-Dialer.Win32.ALifeDialer" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:44 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~D4.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 20:44:44 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~E4.exe infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.
Mon Jan 31 20:44:44 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temp\~F.exe infected by "Trojan.Win32.StartPage.ow" Virus. Action Taken:
No Action Taken.

Mon Jan 31 20:49:09 2005 => File C:\Dokumente und Einstellungen\user\Lokale
Einstellungen\Temporary Internet
Files\Content.IE5\URQBQ5A7\3fd2e9aa97ea23e8e3d06873ede6e03d[1].js infected by
"Trojan-Downloader.JS.Small.af" Virus. Action Taken: No Action Taken.

Mon Jan 31 20:50:18 2005 => File C:\laufwerk\Eigene Dateien\Briefe\Outlook
Express\Robert Janisch\Mail\Gelöschte Objekte.mbx infected by "not-a-
virus:AdWare.Gator.3124" Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:48 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\048178B2.class infected by "Trojan.Java.ClassLoader.d" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:48 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\061636E9 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\0D3920C8 infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\0D3D4AC5 infected by "not-a-virus:Porn-Dialer.Win32.Generic"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\0D4074C1 infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\0D431EBE infected by "TrojanDownloader.Win32.Small.op" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\0D4748BA infected by "not-a-virus:Porn-Dialer.Win32.Generic"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\0D4A72B6 infected by "not-a-virus:Porn-Dialer.Win32.Generic"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\1168658C infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\146F090C infected by "Trojan-Downloader.JS.IstBar.b" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\15BF657D infected by "Trojan-Downloader.Win32.IstBar.gen" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:49 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\1CF8218B infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\1DDD041C infected by "Trojan-Downloader.JS.IstBar.b" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\23B6282B infected by "Worm.Win32.Lovesan.a" Virus. Action Taken:
No Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\253578B1 infected by "Worm.P2P.SdDrop.e" Virus. Action Taken: No
Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\25F42844 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\26A21A71.class infected by "Exploit.Java.Bytverify" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\26E65C1C.htm infected by "Exploit.HTML.Mht" Virus. Action Taken:
No Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\2996783A infected by "I-Worm.NetSky.aa" Virus. Action Taken: No
Action Taken.

Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\2A357C9A infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Alt 02.02.2005, 20:20   #7
roja54
 
Hijackauswertung - Standard

Hijackauswertung


Mon Jan 31 21:20:50 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\2AAD67F5.dat infected by "Worm.P2P.SpyBot.dv" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\2D7528E5.dat infected by "Win32.HLLP.Hantaner.a" Virus. Action
Taken: No Action Taken.
Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\30975E7F.zip infected by
"TrojanDownloader.Java.OpenConnection.b" Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\31EB5A4A infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\32637E85.zip infected by "TrojanDownloader.Java.OpenConnection.b"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\36E922D8 infected by "Trojan-Downloader.JS.IstBar.b" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\41D628E7 infected by "TrojanDownloader.Java.OpenStream.c" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\4BA0078D infected by "not-a-virus:Porn-Dialer.Win32.Generic"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\4BC25451 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\4C083CC7 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:51 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\4DA97332.htm infected by "Exploit.HTML.Mht" Virus. Action Taken:
No Action Taken.

Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\4DAD1D2E.class infected by "Trojan.Java.ClassLoader.h" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\4F643662.dll infected by "TrojanDownloader.Win32.Small.se" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\525E14A7 infected by "TrojanDownloader.Win32.IstBar.er" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\52623EA3 infected by "Trojan-Downloader.Win32.IstBar.go" Virus.
Action Taken: No Action Taken.
Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\526568A0 infected by "Trojan-Downloader.Win32.IstBar.gm" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\526C3C98 infected by "Trojan-Downloader.JS.IstBar.b" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\5730438B infected by "not-a-virus:Porn-Dialer.Win32.Generic" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:52 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\632E00DD infected by "Trojan.Java.Femad" Virus. Action Taken: No
Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\6BBD0643 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\6CBF7696.class infected by "Trojan.Java.Femad" Virus. Action Taken:
No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\6D397378.zip infected by
"TrojanDownloader.Java.OpenConnection.b" Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\73372204 infected by "Trojan-Downloader.Win32.IstBar.gen" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\75067004 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\76F77194.dat infected by "P2P-Worm.Win32.Tibick.d" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\77181570.dat infected by "P2P-Worm.Win32.Tibick.d" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\788E3EB6.html infected by "TrojanDownloader.JS.Small.d" Virus.
Action Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\789512AF.class infected by "Exploit.Java.Bytverify" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\789C58C7 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:53 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\78D459D8.htm infected by "Exploit.HTML.Mht" Virus. Action Taken:
No Action Taken.

Mon Jan 31 21:20:54 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\792F7B23.dat infected by "P2P-Worm.Win32.Tibick.d" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:20:54 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\7F2E20B3 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:54 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\7F324AB0 infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:54 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\7F4F448F infected by "not-a-virus:Porn-Dialer.Win32.Intexdial"
Virus. Action Taken: No Action Taken.

Mon Jan 31 21:20:54 2005 => File C:\Programme\Norton Internet Security\Norton
AntiVirus\Quarantine\7F526E8C infected by "Trojan-Downloader.JS.IstBar.b" Virus. Action
Taken: No Action Taken.

Mon Jan 31 21:47:24 2005 => File C:\System Volume Information\_restore{A4A3D34E-
0FD2-4C1C-8024-DE9A510B5DBF}\RP4\A0003361.exe infected by "Trojan-
Downloader.Win32.IstBar.gm" Virus. Action Taken: No Action Taken.

Mon Jan 31 21:53:25 2005 => File C:\WINDOWS\Downloaded Program
Files\miniclipGameLoader.dll infected by "TrojanDownloader.Win32.Agent.de" Virus.
Action Taken: No Action Taken.


Habe DSL
Danke

Alt 02.02.2005, 20:26   #8
cacatoa
 
Hijackauswertung - Standard

Hijackauswertung


Hi,
mach doch bitte mal den Quarantäne-Ordner von Norton leer!!
Dann Systemwiederherstellung ausschalten, Rechner ausschalten, dann Rechner Anschalten, Systemwiederherstellung an.
Dann lade dir clearprog runter, mache alle Häkchen bei IE und Windows und clicke auf Löschen, wenn fertig auf beenden.
Dann mach einen neuen eScan. Mal schauen was noch übrig ist.
__________________
Der Mensch sollte eine Hundeseele haben

Alt 02.02.2005, 20:27   #9
chaosman
 
Hijackauswertung - Standard

Hijackauswertung


@roja54

bei dieser sammlung würde ich formatieren.
speichere die dialer auf diskette, wenn du nicht per reines DSL unterwegs bist.
mache format C
hier eine hilfestellung
http://www.trojaner-board.de/showpos...28&postcount=2

sry
chaosman
__________________
Bonus vir semper tiro

Antwort

Themen zu Hijackauswertung
adapter, adobe, alcatel, antivirus, bho, cyberlink, dateien, diagnostics, drivers, excel, explorer, hijack, hijackthis, hotkey, internet, internet explorer, internet security, microsoft, monitor, nvcpl.dll, nvidia, object, programme, rundll, security, settings manager, software, solution, sun java, symantec, system, tcpip, usb, windows, windows messenger, windows xp


« Hilfe, Trojaner Start Page!!! | Bitte Logfile auswerten! »


Ähnliche Themen: Hijackauswertung


  1. cpu auslastung immer 100%, bitte um hijackauswertung
    Log-Analyse und Auswertung - 22.09.2009 (1)
  2. 2x IEXPLORE Problem: bitte um Hijackauswertung
    Log-Analyse und Auswertung - 27.03.2007 (1)
  3. Hijackauswertung bitte
    Log-Analyse und Auswertung - 01.06.2005 (7)
  4. Hijackauswertung bitte
    Log-Analyse und Auswertung - 05.02.2005 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Hijackauswertung - Bitte um Hijack Auswertung Logfile of HijackThis v1.99.0 Scan saved at 15:39:51, on 31.01.2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe - Hijackauswertung...
Archiv
Du betrachtest: Hijackauswertung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54