Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Bitte um eine Auswertung TR/Startpage (https://www.trojaner-board.de/13328-bitte-um-auswertung-tr-startpage.html)

kaejen 05.02.2005 17:21
Bitte um eine Auswertung TR/Startpage
 
Hier meine HijackThis Auswertung

Logfile of HijackThis v1.99.0
Scan saved at 17:07:40, on 05.02.05
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAMME\T-DSL SPEEDMANAGER\SPEEDMGR.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAMME\AVPERSONAL\AVGCTRL.EXE
C:\WINDOWS\SYSTEM\STIMON.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAMME\T-DSL SPEEDMANAGER\TSMSVC.EXE
C:\WINDOWS\SYSTEM\RNAAPP.EXE
C:\WINDOWS\SYSTEM\TAPISRV.EXE
C:\PROGRAMME\WINZIP\WINZIP32.EXE
C:\WINDOWS\TEMP\HIJACKTHIS.EXE

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [T-DSL SpeedMgr] "C:\PROGRAMME\T-DSL SPEEDMANAGER\SPEEDMGR.EXE"
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [AVGCtrl] C:\PROGRAMME\AVPERSONAL\AVGCTRL.EXE /min
O4 - HKLM\..\Run: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\SYSTEM\mstask.exe
O4 - HKCU\..\Run: [WashAndGo - Cleanup of old Backupfiles] C:\Programme\Purgatio Pro\checker.exe /check



Hier meine MWAV Auswertung:


Sat Feb 05 16:06:24 2005 => File C:\WINDOWS\TEMP\backups\backup-20050201-193104-363.dll infected by "not-a-virus:AdWare.PurityScan.ak" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:26:12 2005 => File C:\WINDOWS\TEMP\backups\backup-20050201-193104-363.dll infected by "not-a-virus:AdWare.PurityScan.ak" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:33:19 2005 => File C:\WINDOWS\Anwendungsdaten\setm.exe infected by "not-a-virus:AdWare.PurityScan.v" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:39:43 2005 => File C:\WINDOWS\Downloaded Program Files\rundlg32.exe infected by "not-a-virus:AdWare.ToolBar.SBSoft.e" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC24\ABF_LL possibly infected and removed by background antivirus package!

Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC24\ABF_LL infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC24\T_REN possibly infected and removed by background antivirus package!

Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC24\T_REN infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC24\T_RE possibly infected and removed by background antivirus package!

Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC24\T_RE infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC25\N_HM possibly infected and removed by background antivirus package!

Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC25\N_HM infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC22\GL_HB possibly infected and removed by background antivirus package!

Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC22\GL_HB infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC2\K_HLIN possibly infected and removed by background antivirus package!

Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC2\K_HLIN infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:41:06 2005 => C:\RECYCLED\DC2\ABF_LL possibly infected and removed by background antivirus package!

Sat Feb 05 16:41:06 2005 => File C:\RECYCLED\DC2\ABF_LL infected by "BkCln.Unknown" Virus. Action Taken: No Action Taken.


Sat Feb 05 16:47:37 2005 => Scanning Folder: C:\Programme\AVPersonal\INFECTED\*.*

Sat Feb 05 16:57:02 2005 => File C:\program files\Windows AdService\WinAdMaster.dll infected by "not-a-virus:AdWare.WinAD.d" Virus. Action Taken: No Action Taken.

Sat Feb 05 16:57:03 2005 => File C:\program files\Windows AdService\WinAdServ.exe infected by "not-a-virus:AdWare.WinAD.b" Virus. Action Taken: No Action Taken.

cacatoa 05.02.2005 17:23
Sinnvoll sind die Logfiles nur, wenn sie vollständig sind. Das trifft auf beide von Dir nicht zu.
cacatoa


Alle Zeitangaben in WEZ +1. Es ist jetzt 18:44 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131