Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Bluescreen durch smit fraud, einen tag später wieder bluescreen

Bluescreen durch smit fraud, einen tag später wieder bluescreen


Log-Analyse und Auswertung: Bluescreen durch smit fraud, einen tag später wieder bluescreen

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 04.02.2008, 14:53   #1
A'Xe
 
Bluescreen durch smit fraud, einen tag später wieder bluescreen - Standard

Bluescreen durch smit fraud, einen tag später wieder bluescreen


Hi,
habe/hatte mit den Smitfraud trojander zugezogen, hatte ihn mit Kaspersky entdeckt. Hatte ihn mit Kaspersky entfernen lassen, system lief auch normal weiter. Am nächsten tag schalte ich meinen PC wieder ein und beim booten kommt ein Bluescreen "Der systemprozess Windows Logon Process wurde unerwartet beendet". Danh bin ich der Anleitung im Forum gefolgt und habe ihn so entfernt.

Alles so weit so gut, restart und konnte wieder in den normalen modus.

Und heute starte ich meinen PC erneut, wiedermals bluescreen, eScan meinte 35 Viren (log unten). Adaware und Spybot finden nichts.

Ich werde glecih versuchen nochmal normal zu booten und ein HijackThis log nachzureichen..

Escan log (auschnitte welche das wort "vorgenommen" enthielten, habe die wörter z.T. abgekürzt damit der thread net zu lang wird, hoffe das is ok)

Zitat:
27:58 Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\p3p\history\gator.com !!!
28:03 Object "gain.gator Spyware/Adware" in Dateisystem gefunden!

28:03 Offending Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\p3p\history\gator.com !!!
28:03 Object "gain.gator Spyware/Adware" in Dateisystem gefunden!

28:05 Off. file found: C:\DOKUME~1\Bene\LOKALE~1\Temp\cmdlineext02.dll
28:05 sys dound inf. with whenu.savenow Spyware/Adware (cmdlineext02.dll)!

28:05 Off. file found: C:\DOKUME~1\Bene\LOKALE~1\Temp\war3_install.exe
28:05 sys dound inf. with whenu.savenow Spyware/Adware (war3_install.exe)!

28:08 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\downloads\pbsetup.exe
28:08 sys dound inf. with system soap pro Spyware/Adware (pbsetup.exe)!

28:10 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\smitrem\process.exe
28:10 sys dound inf. with trojan-downloader.bat.ftp.ab Trojan-Downloader (process.exe)!

28:10 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\smitrem\pv.exe
28:10 sys dound inf. with drivecleaner2006 Corrupted Adware/Spyware (pv.exe)!

28:10 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\smitrem\swreg.exe
28:10 sys dound inf. with trojan-downloader.bat.ftp.ab Trojan-Downloader (swreg.exe)!

28:10 Off. file found: C:\Dokumente und Einstellungen\Bene\Favoriten\error cleaner.url
28:10 sys dound inf. with winfixer/errorsafe Adware (error cleaner.url)!

28:10 Off. file found: C:\Dokumente und Einstellungen\Bene\Favoriten\privacy protector.url
28:10 sys dound inf. with privacyprotector Corrupted Adware/Spyware (privacy protector.url)!

28:10 Off. file found: C:\Dokumente und Einstellungen\Bene\Favoriten\spyware&malware protection.url
28:10 sys dound inf. with privacyprotector Corrupted Adware/Spyware (spyware&malware protection.url)!

28:12 Off. file found: C:\Dokumente und Einstellungen\Bene\Lokale Einstellungen\temp\cmdlineext02.dll
28:12 sys dound inf. with whenu.savenow Spyware/Adware (cmdlineext02.dll)!

28:12 Off. file found: C:\Dokumente und Einstellungen\Bene\Lokale Einstellungen\temp\war3_install.exe
28:12 sys dound inf. with whenu.savenow Spyware/Adware (war3_install.exe)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/forceactivedesktopon
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/forceactivedesktopon)!

28:16 Off. Reg. Ent. found: hkey_local_machine\software\microsoft\windows\currentversion\internet settings\zonemap\domains\net-nucleus.com
28:16 sys dound inf. with mirar Spyware/Adware (hkey_local_machine\software\microsoft\windows\currentversion\internet settings\zonemap\domains\net-nucleus.com)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/classicshell
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/classicshell)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispcpl
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispcpl)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noviewcontextmenu
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noviewcontextmenu)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispscrsavpage
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispscrsavpage)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispbackgroundpage
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispbackgroundpage)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispsettingspage
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispsettingspage)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/novisualstylechoice
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/novisualstylechoice)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nosizechoice
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nosizechoice)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nocolorchoice
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nocolorchoice)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nosavesettings
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nosavesettings)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nocomponents
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nocomponents)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noeditingcomponents
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noeditingcomponents)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nodeletingcomponents
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nodeletingcomponents)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noaddingcomponents
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noaddingcomponents)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noclosedragdropbands
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noclosedragdropbands)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nohtmlwallpaper
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nohtmlwallpaper)!

28:16 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nochangingwallpaper
28:16 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nochangingwallpaper)!

28:17 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nothemestab
28:17 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nothemestab)!

28:17 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noactivedesktop
28:17 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noactivedesktop)!

28:18 Checking MountPoints2 Registry Key...
28:18 Checking CLSID Reference Entries...
28:18 Entry "HKCR\AccClientDocMgr.Illustrator.3" verw. Obj. "{542D1218-CD17-AE53-B1C8-5F6159482C77}".

28:18 Entry "HKCR\Adobe.Illustrator.dwg" verw. Obj. "{C0ED15F0-61BB-11d3-B6CA-00C04F6A0D06}".

28:18 Entry "HKCR\Adobe.Illustrator.dxf" verw. Obj. "{C0ED15F0-61BB-11d3-B6CA-00C04F6A0D06}".

28:18 Entry "HKCR\Adobe.Illustrator.pict" verw. Obj. "{C0ED15F0-61BB-11d3-B6CA-00C04F6A0D06}".

28:18 Entry "HKCR\ComPlusMetaData.MsCorHost" verw. Obj. "{727CDF4F-3BA0-11D3-8738-00C04F79ED0D}".

28:18 Entry "HKCR\ComPlusMetaData.MsCorHost.2" verw. Obj. "{727CDF4F-3BA0-11D3-8738-00C04F79ED0D}".

28:18 Entry "HKCR\NBShell.NBShellHook.3" verw. Obj. "{EB4D3CFE-E2AA-4C6E-B2FE-2A749F95D208}".

28:18 Entry "HKCR\NMUIEngin0.NMUIResourceLoaderHarddisk" verw. Obj. "{b35354ff-7e4a-46a4-bf69-4d92c3d7787b1}".

28:19 Entry "HKCR\SPhoneParser.FoundSkypeNumber" verw. Obj. "{E40A96CC-4A5B-47F4-9957-87CDED1DFF45}".

28:19 Entry "HKCR\SPhoneParser.FoundSkypeNumber.1" verw. Obj. "{E40A96CC-4A5B-47F4-9957-87CDED1DFF45}".

28:19 Entry "HKCR\SymWriter.pdb" verw. Obj. "{520DC67A-752E-11D3-8D56-00C04F680B2B}".

28:19 Entry "HKCR\vmappsdk.MksCompatCtl.9" verw. Obj. "{7DABFF61-6A84-4E64-908D-C662E2C4102A}".

28:19 Checking Module Usage Entries...
28:19 Checking User Trusted External App Entries...
28:19 Entry "HKCU\Software\Netscape\Netscape Navigator\User Trusted External Applications" verw. Obj. "".

28:19 Checking Shared DLL Entries...
28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\system32\pxwma.dll".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\system32\pxinsi64.exe".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\system32\pxcpyi64.exe".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.Windows.Forms.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.EnterpriseServices.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Microsoft.JScript.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Microsoft.Vsa.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.Drawing.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\mscoree.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\mscorlib.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.tlb".

28:21 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Microsoft.Vsa.Vb.CodeDOMProcessor.tlb".

28:23 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDlls" verw. Obj. "C:\Programme\Gemeinsame Dateien\Nero\Shared\NL3\NeroPatentActivation.exe".

28:23 Checking Installer Entries...
28:39 Checking Shared Tools Entries...
28:39 Checking File Extension Entries...
28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".4100218".

28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".aa".

28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".ab".

28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".ac".

28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".badongo".

28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".cfg".

28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".corrupt".

28:39 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".cry".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".info".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".lay".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".mdf".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".mds".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".mpq".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".sft".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".veg".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".w3m".

28:40 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".w3x".

28:40 Checking Application Cache Entries...
28:40 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" verw. Obj. "xfriend 2.5 2.5".

28:40 Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" verw. Obj. "{0B486E5E-EFA5-4C05-831A-1B3A1047DF96}".

33:21 Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\p3p\history\gator.com !!!
33:21 Object "gain.gator Spyware/Adware" in Dateisystem gefunden!

33:21 Offending Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\p3p\history\gator.com !!!
33:21 Object "gain.gator Spyware/Adware" in Dateisystem gefunden!

33:24 Off. file found: C:\DOKUME~1\Bene\LOKALE~1\Temp\cmdlineext02.dll
33:24 sys dound inf. with whenu.savenow Spyware/Adware (cmdlineext02.dll)!

33:24 Off. file found: C:\DOKUME~1\Bene\LOKALE~1\Temp\war3_install.exe
33:24 sys dound inf. with whenu.savenow Spyware/Adware (war3_install.exe)!

33:24 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\downloads\pbsetup.exe
33:24 sys dound inf. with system soap pro Spyware/Adware (pbsetup.exe)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\smitrem\process.exe
33:25 sys dound inf. with trojan-downloader.bat.ftp.ab Trojan-Downloader (process.exe)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\smitrem\pv.exe
33:25 sys dound inf. with drivecleaner2006 Corrupted Adware/Spyware (pv.exe)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Desktop\smitrem\swreg.exe
33:25 sys dound inf. with trojan-downloader.bat.ftp.ab Trojan-Downloader (swreg.exe)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Favoriten\error cleaner.url
33:25 sys dound inf. with winfixer/errorsafe Adware (error cleaner.url)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Favoriten\privacy protector.url
33:25 sys dound inf. with privacyprotector Corrupted Adware/Spyware (privacy protector.url)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Favoriten\spyware&malware protection.url
33:25 sys dound inf. with privacyprotector Corrupted Adware/Spyware (spyware&malware protection.url)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Lokale Einstellungen\temp\cmdlineext02.dll
33:25 sys dound inf. with whenu.savenow Spyware/Adware (cmdlineext02.dll)!

33:25 Off. file found: C:\Dokumente und Einstellungen\Bene\Lokale Einstellungen\temp\war3_install.exe
33:25 sys dound inf. with whenu.savenow Spyware/Adware (war3_install.exe)!

33:25 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/forceactivedesktopon
33:25 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/forceactivedesktopon)!

33:25 Off. Reg. Ent. found: hkey_local_machine\software\microsoft\windows\currentversion\internet settings\zonemap\domains\net-nucleus.com
33:25 sys dound inf. with mirar Spyware/Adware (hkey_local_machine\software\microsoft\windows\currentversion\internet settings\zonemap\domains\net-nucleus.com)!

33:25 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/classicshell
33:25 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/classicshell)!

33:25 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispcpl
33:25 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispcpl)!

33:25 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noviewcontextmenu
33:25 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noviewcontextmenu)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispscrsavpage
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispscrsavpage)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispbackgroundpage
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispbackgroundpage)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispsettingspage
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nodispsettingspage)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/novisualstylechoice
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/novisualstylechoice)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nosizechoice
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nosizechoice)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\system/nocolorchoice
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\system/nocolorchoice)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nosavesettings
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nosavesettings)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nocomponents
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nocomponents)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noeditingcomponents
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noeditingcomponents)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nodeletingcomponents
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nodeletingcomponents)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noaddingcomponents
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noaddingcomponents)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noclosedragdropbands
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/noclosedragdropbands)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nohtmlwallpaper
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nohtmlwallpaper)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nochangingwallpaper
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\activedesktop/nochangingwallpaper)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nothemestab
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/nothemestab)!

33:26 Off. Reg. Ent. found: hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noactivedesktop
33:26 Sys. f. inf. with backdoor (ircbot) trojans Spyware/Adware (hkey_current_user\software\microsoft\windows\currentversion\policies\explorer/noactivedesktop)!

33:33 Checking MountPoints2 Registry Key...
33:33 Checking CLSID Reference Entries...
33:34 Entry "HKCR\Adobe.Illustrator.dwg" verw. Obj. "{C0ED15F0-61BB-11d3-B6CA-00C04F6A0D06}".

33:34 Entry "HKCR\Adobe.Illustrator.dxf" verw. Obj. "{C0ED15F0-61BB-11d3-B6CA-00C04F6A0D06}".

33:34 Entry "HKCR\Adobe.Illustrator.pict" verw. Obj. "{C0ED15F0-61BB-11d3-B6CA-00C04F6A0D06}".
33:37 Entry "HKCU\Software\Netscape\Netscape Navigator\User Trusted External Applications" verw. Obj. "".

33:37 Checking Shared DLL Entries...
33:38 Checking Installer Entries...
33:44 Checking Shared Tools Entries...
33:44 Checking File Extension Entries...
33:44 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".mdf".

33:44 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".mds".

33:44 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".mpq".

33:44 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".w3m".

33:44 Entry "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" verw. Obj. ".w3x".


39:14 Datei C:\Dokumente und Einstellungen\Bene\Anwendungsdaten\Thunderbird\Profiles\aemvo1sg.default\Mail\Local Folders\Trash//[From Pansy <Pansy@netspeedway.com>][Date Thu, 10 Aug 2006 20:28:21 +0300]/UNNAMED//[From drone1563@wargamer-project.de][Date Thu, 10 Aug 2... infiziert von "Trojan-Downloader.Win32.Agent.bmr" Virus. Aktion vorgenommen: Keine Aktion vorgenommen.

 

Themen zu Bluescreen durch smit fraud, einen tag später wieder bluescreen
backdoor, bluescree, bluescreen, booten, dateisystem, desktop, einstellungen, entfernen, error, escan, file, fraud, hijack, hijackthis, hijackthis log, infiziert, internet, kaspersky, malware, microsoft, object, programme, registry, smitfraud, software, system, systemprozess, viren, windows, wörter, zu lang


« 3 Schädliche Sachen, viele Verbingungen | Google-Einträge werden auf falsche Seiten entführt »


Ähnliche Themen: Bluescreen durch smit fraud, einen tag später wieder bluescreen


  1. Bluescreen mit einen ERROR
    Alles rund um Windows - 22.03.2016 (13)
  2. Bluescreen jagt Bluescreen beim Hochfahren
    Alles rund um Windows - 25.08.2015 (1)
  3. Windows Bluescreen durch IRQL_NOT_LESS_OR_EQUAL
    Alles rund um Windows - 09.08.2015 (3)
  4. Windows Bluescreen x00000116 durch dxgkrnl.sys
    Alles rund um Windows - 28.04.2015 (8)
  5. Bluescreen Problem-Anleitung für Bluescreen nicht anwenbar bei Bildschirm Freeze
    Alles rund um Windows - 04.04.2015 (18)
  6. Windows 7 zeigt öfters einen Bluescreen
    Alles rund um Windows - 23.05.2014 (5)
  7. immer wieder bluescreen
    Netzwerk und Hardware - 08.01.2014 (1)
  8. Fehler bei Start von Programmen, später Absturz mit Bluescreen
    Log-Analyse und Auswertung - 28.11.2013 (7)
  9. Habe einen Bluescreen
    Log-Analyse und Auswertung - 12.07.2013 (1)
  10. Bluescreen durch Virus/Trojaner verursacht?
    Plagegeister aller Art und deren Bekämpfung - 15.02.2013 (3)
  11. Bekomme Manchmal einen Bluescreen weiß aber nicht warum
    Alles rund um Windows - 31.12.2012 (8)
  12. bluescreen-fehlermeldung durch trojaner verursacht?
    Plagegeister aller Art und deren Bekämpfung - 02.02.2012 (3)
  13. Bluescreen durch Flashplayer; Malwarefund durch MBAM
    Plagegeister aller Art und deren Bekämpfung - 19.01.2012 (11)
  14. Bluescreen BCCode: 3b durch Grafikkartentreiber
    Netzwerk und Hardware - 13.12.2011 (5)
  15. Von Webseite eingefangen TR/ATRAPS.Gen2, später Bluescreen->Scan: Fund: JAVA/Agent.FK
    Log-Analyse und Auswertung - 23.03.2011 (6)
  16. Bluescreen nach Bootvorgang, abgesicherter Modus --> Bluescreen
    Alles rund um Windows - 02.09.2010 (7)
  17. BlueScreen durch AntiVir
    Antiviren-, Firewall- und andere Schutzprogramme - 25.03.2009 (24)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Bluescreen durch smit fraud, einen tag später wieder bluescreen - Hi, habe/hatte mit den Smitfraud trojander zugezogen, hatte ihn mit Kaspersky entdeckt. Hatte ihn mit Kaspersky entfernen lassen, system lief auch normal weiter. Am nächsten tag schalte ich meinen PC - Bluescreen durch smit fraud, einen tag später wieder bluescreen...
Archiv
Du betrachtest: Bluescreen durch smit fraud, einen tag später wieder bluescreen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131