| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Antivir-Fund: (1) lpl.exe auf USB-Stick = WORM/Autorun.bqls (2) Prozess: ApplicationUpdater.exeWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
17.02.2011, 21:10
| #1 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Antivir-Fund: (1) lpl.exe auf USB-Stick = WORM/Autorun.bqls (2) Prozess: ApplicationUpdater.exe Ja mach das. Probier dann im Anschluss noch mal den Vollscan. Vorher Signaturen mit Malwarebytes wieder aktualisieren, die updaten mehrmals am Tag.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
18.02.2011, 07:24
| #2 |
 | Antivir-Fund: (1) lpl.exe auf USB-Stick = WORM/Autorun.bqls (2) Prozess: ApplicationUpdater.exe MBAM - Full Scan (Objekte sind entfernt):
__________________HTML-Code: Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5791
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512
18.02.2011 07:20:30
mbam-log-2011-02-18 (07-20-25).txt
Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|I:\|J:\|)
Objects scanned: 437060
Time elapsed: 54 minute(s), 57 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
e:\01_rechner\01_programme\04_system\removewga12.exe (PUP.RemoveWGA) -> No action taken.
f:\system volume information\_restore{c5f54cbe-6298-4bbf-9d75-416f5224a1aa}\RP1\A0001037.exe (RiskWare.Tool.CK) -> No action taken. Geändert von El Toco (18.02.2011 um 08:06 Uhr) |
|
18.02.2011, 08:34
| #3 |
| | Antivir-Fund: (1) lpl.exe auf USB-Stick = WORM/Autorun.bqls (2) Prozess: ApplicationUpdater.exe Entfernungs-Doku:
__________________HTML-Code: Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 5791
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512
18.02.2011 07:20:35
mbam-log-2011-02-18 (07-20-35).txt
Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|I:\|J:\|)
Objects scanned: 437060
Time elapsed: 54 minute(s), 57 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
e:\01_rechner\01_programme\04_system\removewga12.exe (PUP.RemoveWGA) -> Quarantined and deleted successfully.
f:\system volume information\_restore{c5f54cbe-6298-4bbf-9d75-416f5224a1aa}\RP1\A0001037.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully. HTML-Code: Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 5791 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 18.02.2011 08:31:49 mbam-log-2011-02-18 (08-31-49).txt Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|I:\|J:\|) Objects scanned: 439456 Time elapsed: 1 hour(s), 9 minute(s), 8 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) |
|
| Themen zu Antivir-Fund: (1) lpl.exe auf USB-Stick = WORM/Autorun.bqls (2) Prozess: ApplicationUpdater.exe |
| 0x00000001, 0xc0000001, abschalten, adware.widgitoolbar, anleitung, anti-malware, avgntflt.sys, browser, canon, datei, detected, explorer, folge, folgende, helper, infected, internet browser, location, log-file, microsoft, modus, nicht sicher, oldtimer, opera.exe, otl.exe, pdfforge, pdfforge toolbar, plug-in, problem, programme, prozess, quarantäne, saver, sched.exe, service, shell32.dll, software, spigot, startet, system restore, updater.exe, version, vlc media player, woche |
Hybrid-Darstellung
