Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   verschieden Agent.z 1-3 (https://www.trojaner-board.de/1743-verschieden-agent-z-1-3-a.html)

Crachos 18.06.2004 10:11
Hi leute

habe ein echtes Problem und ich hoffe bei euch Hilfe zu finden. Ich weis es gibt bestimmt spezielle Foren aber da ich schon soviel bei euch in erfahrung gebracht habe, probs ich mal hier:

AntiVir bringt ständig trojaner meldungen, die sofort nach dem löschen wieder auftauchen!

C:\WINDOWS\SYSTEM32\ATLMB32.DLL
Ist trojanisches PFerd TR/DLdr.Agent.Z.2

C\WINDOWS\D3AR32.DLL
.. ... TR/Dldr.Wintrim.BE

C:\WINDOWS\WINSQ.EXE
Ist trojanisches PFerd TR/DLdr.Agent.Z.3

C:\WINDOWS\MSMQ32.EXE
Ist trojanisches PFerd TR/DLdr.Agent.Z.1

und dies geht die ganze Zeit so,

ich brauche echt eure HILFE!!!


danke schonmal

greatz crachos

trucker 20.02.2005 20:18
selbiges Problem habe ich auch ... bitte um Hilfe in diesem Fall

Cidre 20.02.2005 21:11
@ trucker

Deine Informationen bezüglich deinem Problem sind geradezu erdrückend.

Sofortmassnahmen:

1. Lade und scanne mit eScan AntiVirus im abgesicherten Modus wie beschrieben.
Poste anschliessend die Virus Log Information von eScan AntiVirus:
Öffne die mwav.log im Ordner C:\bases -> Bearbeiten -> Suchen -> infected oder tagged eingeben -> Weitersuchen -> Treffer markieren/kopieren und ins Forum übertragen.

2. Erstelle mit HiJackThis ein Log-File und poste es hier rein.
Persönliche Informationen, wie Benutzername und dergleichen, bitte unkenntlich machen.

trucker 21.02.2005 14:19
Logfile of HijackThis v1.99.0
Scan saved at 15:06:17, on 12.02.2005
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v5.50 (5.50.4134.0100)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\PROGRAMME\NORTON ANTIVIRUS\NAVAPW32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\SSDPSRV.EXE
C:\PROGRAMME\TREND PC-CILLIN 98\IOMON98.EXE
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAMME\TREND PC-CILLIN 98\WEBTRAP.EXE
C:\PROGRAMME\PESTPATROL\PPMEMCHECK.EXE
C:\PROGRAMME\PESTPATROL\COOKIEPATROL.EXE
C:\WINDOWS\SYSTEM\RESTORE\STMGR.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAMME\AVPERSONAL\AVGCTRL.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\TEMP\TD_0001.DIR\HIJACKTHIS.EXE

R3 - Default URLSearchHook is missing
O2 - BHO: . - {D34F08C5-4F18-477c-86CB-1A9BEECFE37B} - C:\WINDOWS\ANWENDUNGSDATEN\IENU\IENU32.DLL (file missing)
O2 - BHO: SearchHookObject Class - {FD9BC004-8331-4457-B830-4759FF704C22} - C:\WINDOWS\ANWENDUNGSDATEN\IENU\MSIESH.DLL (file missing)
O2 - BHO: ShowSearch module - {E2DDF680-9905-4dee-8C64-0A5DE7FE133C} - C:\WINDOWS\ANWENDUNGSDATEN\IENU\NETES32.DLL (file missing)
O2 - BHO: (no name) - {D300DE12-22B8-F3F1-C6A5-DE86BE2CDD82} - (no file)
O2 - BHO: (no name) - {A5F02AA1-E33B-02E2-EE38-6C66F5363B53} - (no file)
O2 - BHO: (no name) - {7FF53652-4DA9-7C18-869B-8B90C486CE63} - (no file)
O2 - BHO: (no name) - {A2B1267B-5C6C-69E0-FD2A-064905B770C4} - (no file)
O2 - BHO: (no name) - {353AC488-9C2F-FDF6-52B3-F83DC8A24FF6} - (no file)
O2 - BHO: (no name) - {710089CF-87C3-763F-C8F6-5A0DBFD3AEC3} - (no file)
O2 - BHO: Class - {8493A483-16CC-BFFB-01C2-8A19F289DA22} - C:\WINDOWS\SYSTEM\ATLTI32.DLL (file missing)
O2 - BHO: Class - {E2D8233B-EB51-4A42-F2AA-063A02152A72} - C:\WINDOWS\WINAH.DLL (file missing)
O2 - BHO: Class - {05570C13-5D01-B853-7FC4-C7B4095AAF53} - C:\WINDOWS\IPVB.DLL (file missing)
O2 - BHO: Class - {AC4ED960-D2A8-75F3-8172-095A3DF83C66} - C:\WINDOWS\NTYY.DLL (file missing)
O2 - BHO: Class - {122E729E-BD50-EAC0-DD49-BAA0B1D3482E} - C:\WINDOWS\SYSTEM\SDKCV32.DLL (file missing)
O2 - BHO: Class - {33A52CAA-E6B2-6BF5-6851-6B2529CEB91F} - C:\WINDOWS\ATLLD.DLL (file missing)
O2 - BHO: Class - {8E933ABB-42C4-50B3-C2F8-EFF15E8A53AE} - C:\WINDOWS\D3SN.DLL (file missing)
O2 - BHO: Class - {DEB3E405-36CF-A0E4-CADE-C5D1C4344CBB} - C:\WINDOWS\SYSTEM\IPFO.DLL (file missing)
O2 - BHO: Class - {E5E97D84-8232-4028-772E-900336814320} - C:\WINDOWS\MSEA.DLL (file missing)
O2 - BHO: Class - {5E299E38-4A5E-77A8-49AB-520615EA0FEC} - C:\WINDOWS\SYSTEM\WINUE.DLL (file missing)
O2 - BHO: Class - {26286E09-CF52-4BFA-ACBF-184990967DFA} - C:\WINDOWS\APILD.DLL (file missing)
O2 - BHO: Class - {1955F601-A77E-3BCC-43F2-4A72ABCF011B} - C:\WINDOWS\SYSTEM\JAVAAG32.DLL (file missing)
O2 - BHO: Class - {A6C8C7E4-5AF5-6511-646E-3D4BD4A94CC0} - C:\WINDOWS\SYSTEM\JAVACK32.DLL (file missing)
O2 - BHO: Class - {A178C8EE-CDB1-EE34-6193-4875937FBC1A} - C:\WINDOWS\SYSTEM\CRDA32.DLL (file missing)
O2 - BHO: Class - {C1745D33-2FE1-E747-76A7-B64C8A2C8771} - C:\WINDOWS\SYSTEM\SDKYS.DLL (file missing)
O2 - BHO: Class - {516516D3-F9E5-0345-2CAF-37109CEAE92B} - C:\WINDOWS\SYSTEM\CRVS.DLL (file missing)
O2 - BHO: Class - {08417124-EB7B-ADD7-0926-7957FC92605E} - C:\WINDOWS\SYSTEM\MFCBH.DLL (file missing)
O2 - BHO: Class - {7E118BD3-544A-455F-07DD-AACFDEAC5940} - C:\WINDOWS\ADDDD.DLL (file missing)
O2 - BHO: Class - {BC866979-4FC7-8956-2B63-286817663144} - C:\WINDOWS\JAVAYH.DLL (file missing)
O2 - BHO: Class - {B032D9E3-E95C-CE96-D10F-1BCD1F3EA21C} - C:\WINDOWS\SYSTEM\MFCXF.DLL (file missing)
O2 - BHO: Class - {63205DF7-E69F-C6A7-B29B-5EAE5A02155F} - C:\WINDOWS\SYSTEM\NETSY32.DLL (file missing)
O2 - BHO: Class - {4ABF050C-DD0D-52FF-DD7A-B315E8F9B10E} - C:\WINDOWS\D3QF.DLL (file missing)
O2 - BHO: Class - {818D5402-EC38-381F-E43F-AEB912656767} - C:\WINDOWS\APPIB.DLL (file missing)
O2 - BHO: Class - {081758B8-1464-68B8-A672-5A257F23165E} - C:\WINDOWS\SYSTEM\MFCIR.DLL (file missing)
O2 - BHO: Class - {B38F3F46-7C47-B30B-205C-7BCF318D5592} - C:\WINDOWS\MSGK32.DLL (file missing)
O2 - BHO: Class - {ED84816E-5429-8228-920A-51428735C169} - C:\WINDOWS\SYSTEM\D3DO.DLL (file missing)
O2 - BHO: Class - {2D9CC334-5E88-A367-8037-97DA2F9B1C74} - C:\WINDOWS\SYSTEM\SYSZV.DLL (file missing)
O2 - BHO: Class - {65FF53C3-38C9-0FBD-D77F-2A799677C2CA} - C:\WINDOWS\SYSTEM\ATLJT32.DLL (file missing)
O2 - BHO: Class - {A8D3DED7-7071-7D7A-EDA5-B13F1BEFDF43} - C:\WINDOWS\SYSTEM\ADDDV32.DLL (file missing)
O2 - BHO: Class - {63D8E7C3-8227-3E71-D229-292FC69E5C73} - C:\WINDOWS\JAVARE32.DLL (file missing)
O2 - BHO: Class - {A3F6EAB7-CF4A-4D4B-5E73-005AAC061BA6} - C:\WINDOWS\SYSTEM\D3TZ32.DLL (file missing)
O2 - BHO: Class - {58830E34-9CF1-3592-F8DE-BB002A896ED1} - C:\WINDOWS\ATLYG32.DLL (file missing)
O2 - BHO: Class - {F53EC50C-1736-5E28-E668-CFFB2AA3AE8D} - C:\WINDOWS\MFCIX32.DLL (file missing)
O2 - BHO: Class - {0CEAAE91-589A-F53F-5681-3899D9FFB034} - C:\WINDOWS\JAVAWO32.DLL (file missing)
O2 - BHO: Class - {0D521E90-FF76-3FC3-E866-905A28B2CF30} - C:\WINDOWS\APILN.DLL (file missing)
O2 - BHO: Class - {C5E5AAF1-E338-ED8E-4D57-DC8FB2DE04CB} - C:\WINDOWS\NETBP32.DLL (file missing)
O2 - BHO: Class - {BA932E2E-ABEE-0FD9-FC97-B61A0E38A426} - C:\WINDOWS\SYSTEM\ADDDQ32.DLL (file missing)
O2 - BHO: Class - {DDF6B14C-567D-8D1E-21D4-2CACE1295ABB} - C:\WINDOWS\SYSVF32.DLL (file missing)
O2 - BHO: Class - {F2AD2848-8172-9288-2631-44FB35F261F5} - C:\WINDOWS\SDKHK.DLL (file missing)
O2 - BHO: Class - {A013F86E-52B5-8D07-3F4C-C462AEAE9290} - C:\WINDOWS\APIKU32.DLL (file missing)
O2 - BHO: Class - {0F736AA4-EFFC-284B-A7FB-D0FEDAA50E67} - C:\WINDOWS\SYSTEM\MSFU.DLL (file missing)
O2 - BHO: Class - {FB1FF3C6-0115-2FD6-315D-8C97AEC3A3E5} - C:\WINDOWS\APPRY.DLL (file missing)
O2 - BHO: Class - {44CE9ED6-6E2E-D4BF-75E4-9B77C07B8762} - C:\WINDOWS\ADDML32.DLL (file missing)
O2 - BHO: Class - {C8F8C148-CD33-97CE-B53A-C94F9A7417EF} - C:\WINDOWS\SYSTEM\WINCE32.DLL (file missing)
O2 - BHO: Class - {4FD5405E-0C06-B7B6-1BDA-2E2D18C8E9EF} - C:\WINDOWS\IEBH.DLL (file missing)
O2 - BHO: Class - {4A870590-DC86-05E8-ADFB-057D485E3435} - C:\WINDOWS\SYSTEM\WINUP32.DLL (file missing)
O2 - BHO: Class - {1D05561B-DD9B-F49D-6A11-B07C2D63FF20} - C:\WINDOWS\NETBF32.DLL (file missing)
O2 - BHO: Class - {D3F3F49B-2E17-EFA4-9322-5BAD292ADF51} - C:\WINDOWS\SYSTEM\JAVAVL32.DLL (file missing)
O2 - BHO: Class - {E5E5B820-DA76-22FD-8822-57E0957A73BA} - C:\WINDOWS\SYSTEM\IPPC.DLL (file missing)
O2 - BHO: Class - {210B1BD7-4004-124F-4EAA-9E058F7941C2} - C:\WINDOWS\SYSTEM\SDKVD.DLL (file missing)
O2 - BHO: Class - {4821F0A9-6325-2CAF-5670-EDC8BD318C5D} - C:\WINDOWS\ATLZP32.DLL (file missing)
O2 - BHO: Class - {6A0B324E-4D4C-2571-964B-0D492A800DD7} - C:\WINDOWS\SYSTEM\SDKCX32.DLL (file missing)
O2 - BHO: Class - {3643E8BC-9D97-5ADE-54D4-D62AAF848290} - C:\WINDOWS\SYSTEM\D3YK.DLL (file missing)
O2 - BHO: Class - {E41F76F5-9126-211A-3E67-C7067AADC960} - C:\WINDOWS\SYSTEM\MFCYA.DLL (file missing)
O2 - BHO: Class - {58737FC5-1A18-683E-BAAF-4B2289A95A0C} - C:\WINDOWS\ADDXB.DLL (file missing)
O2 - BHO: Class - {165E2A96-F6EF-8EAA-AA3B-BCF19E677FD4} - C:\WINDOWS\MSSL.DLL (file missing)
O2 - BHO: Class - {175D11C9-CFFB-0532-BABB-0A803A22C910} - C:\WINDOWS\NTSZ.DLL (file missing)
O2 - BHO: Class - {C396632C-CE59-3C44-1A3A-55FEDF99E0C3} - C:\WINDOWS\SYSTEM\NTFC32.DLL (file missing)
O2 - BHO: Class - {18258B9E-88ED-8C83-9EDA-41739325D27A} - C:\WINDOWS\SYSTEM\D3JT32.DLL (file missing)
O2 - BHO: Class - {6F7A1931-0B32-2588-F2B7-067994EC0E42} - C:\WINDOWS\SYSTEM\MFCNN.DLL (file missing)
O2 - BHO: Class - {87869FFC-4490-570A-CD4E-AA7595A2FB41} - C:\WINDOWS\NTUU32.DLL (file missing)
O2 - BHO: Class - {455F474F-574E-C406-1699-5DC9F701D2B7} - C:\WINDOWS\SYSTEM\SDKFO32.DLL (file missing)
O2 - BHO: Class - {BB573669-1EAE-28A5-123E-D46A4B318258} - C:\WINDOWS\SYSTEM\APIOQ32.DLL (file missing)
O2 - BHO: Class - {9404FFB4-AA7A-A757-2FB5-29D6F452E365} - C:\WINDOWS\JAVANL.DLL (file missing)
O2 - BHO: Class - {0AD37655-21EC-E320-283F-C3427B7AB062} - C:\WINDOWS\SYSTEM\D3XS.DLL (file missing)
O2 - BHO: Class - {A8BBF771-33DE-0AC6-85E9-6A991390374D} - C:\WINDOWS\SYSTEM\ADDBU32.DLL (file missing)
O2 - BHO: Class - {B24A429E-7368-121E-B252-F6BCF6DF767D} - C:\WINDOWS\SYSTEM\WINNJ.DLL (file missing)
O2 - BHO: Class - {4C57E717-CFF7-3593-E15F-0DB069077A96} - C:\WINDOWS\CRWO.DLL (file missing)
O2 - BHO: Class - {95BB3438-0B60-B4FB-A68F-174D498229E8} - C:\WINDOWS\ADDID.DLL (file missing)
O2 - BHO: Class - {0E426D19-A0E1-57CF-5D1D-AB6BFC7313C7} - C:\WINDOWS\SYSNR.DLL (file missing)
O2 - BHO: Class - {69AE91F3-D01C-5A46-D800-3C6A772FC742} - C:\WINDOWS\SYSFC.DLL (file missing)
O2 - BHO: Class - {113BE42A-C895-EE13-202B-5CFF395A2F8E} - C:\WINDOWS\SYSTEM\MSSS.DLL (file missing)
O2 - BHO: Class - {378AE8EE-0426-C141-F3C8-F6BD25766BFA} - C:\WINDOWS\IEGH.DLL (file missing)
O2 - BHO: Class - {AC42468C-9CB6-CB86-AAE9-C2E350B02E5D} - C:\WINDOWS\SYSTEM\MSDW32.DLL (file missing)
O2 - BHO: Class - {A3A23120-7EE4-B1BE-8BCD-755877155DD7} - C:\WINDOWS\APPXA32.DLL (file missing)
O2 - BHO: Class - {3E7C9118-A24D-5F3F-9D8E-9A8C5A264CC5} - C:\WINDOWS\SYSTEM\MSCR32.DLL (file missing)
O2 - BHO: Class - {3D11949D-122A-F736-FC9E-B1C992E35B78} - C:\WINDOWS\SYSTEM\IPUO.DLL (file missing)
O2 - BHO: Class - {36546570-6D49-72A6-1919-2E175930B795} - C:\WINDOWS\SYSTEM\WINUJ32.DLL (file missing)
O2 - BHO: Class - {90F69D82-3A48-80D8-7F30-6513D26011A1} - C:\WINDOWS\SYSTEM\IPQR.DLL (file missing)
O2 - BHO: Class - {3DEE10F2-58B4-0207-424F-6C4274A2E21F} - C:\WINDOWS\SYSTEM\IEIJ32.DLL (file missing)
O2 - BHO: Class - {74D26490-9E7F-905B-3BAA-08765509E086} - C:\WINDOWS\ATLPF32.DLL (file missing)
O2 - BHO: Class - {8E94E12D-82FB-A5DD-B787-5B86D538F6BF} - C:\WINDOWS\NETRD32.DLL (file missing)
O2 - BHO: Class - {2345C8ED-802B-A5E6-4EE8-68E9D4825903} - C:\WINDOWS\IEGT.DLL (file missing)
O2 - BHO: Class - {3C3A0C5F-FB00-E5A0-7145-2CE37995D2AC} - C:\WINDOWS\SYSTEM\APIUW.DLL (file missing)
O2 - BHO: Class - {D8DE16A0-C4FA-9CC4-B56B-C69BB6EB6D58} - C:\WINDOWS\SYSTEM\MSRB.DLL (file missing)
O2 - BHO: Class - {153D10FB-F24E-58A4-1F55-99D6BD7AC8CA} - C:\WINDOWS\D3AU32.DLL (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy\SDHelper.dll (file missing)
O3 - Toolbar: @msdxmLC.dll,-1@1031,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRAMME\PESTPATROL\PPMemCheck.exe


hier ist meine Log-file

vielen dank schon mal


Alle Zeitangaben in WEZ +1. Es ist jetzt 08:27 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131