Home » Spyware & Browser Hijacker Support Forum » spyware strike entfernen hä? » Themenansicht

spyware strike entfernen hä?
#0
29.01.2006, 20:47
silas
...neu hier

Beiträge: 3
#1 oh man....hab zwar die hilfe gelesen aber ich kapiers trozdem nicht!
habs jetzt mal so verstanden...hab den hijackthis runtergeladen und gescannt...das kam dabei raus!

Logfile of HijackThis v1.99.1
Scan saved at 20:29:15, on 29.01.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Logitech\Bluetooth\LBTSERV.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
C:\Programme\FRITZ!DSL\IGDCTRL.EXE
C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Programme\Logitech\Easy Synchronization\servicestub.exe
C:\Programme\Logitech\Easy Synchronization\LogitechEasySync.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\mssearchnet.exe
C:\WINDOWS\system32\nvctrl.exe
C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLDial.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\Dit.exe
C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb07.exe
C:\WINDOWS\System32\hphmon04.exe
C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
C:\Programme\SlySoft\CloneCD\CloneCDTray.exe
C:\Programme\Real\RealPlayer\RealPlay.exe
C:\Programme\Home Cinema\PowerCinema\PCMService.exe
C:\Programme\Logitech\SetPoint\LBTWiz.exe
C:\Programme\Logitech\Easy Synchronization\LogitechEasySync.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\QuickTime\qttask.exe
C:\progra~1\yahoo!\YCentral\YahooCentral.exe
C:\Programme\ICQLite\ICQLite.exe
C:\Programme\TopDesk Trial\topdesk.exe
C:\Programme\iPod\bin\iPodService.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Programme\RK Launcher\RKLauncher.exe
C:\WINDOWS\FlyakiteOSX\Software\Alt+Q Hotkey.exe
C:\WINDOWS\System32\HPHipm11.exe
C:\Programme\SearchSpy\SearchSpyMenu.exe
C:\Programme\WinRoll\winroll.exe
C:\Programme\YzShadow\YzShadow.exe
C:\Programme\AOL 9.0\aoltray.exe
C:\Programme\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Programme\Logitech\SetPoint\SetPoint.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Programme\Yahoo!\WidgetEngine\YahooWidgetEngine.exe
C:\Programme\Gemeinsame Dateien\Logitech\KHAL\KHALMNPR.EXE
C:\Programme\Yahoo!\WidgetEngine\YahooWidgetEngine.exe
C:\Programme\Yahoo!\WidgetEngine\YahooWidgetEngine.exe
C:\Programme\Yahoo!\WidgetEngine\YahooWidgetEngine.exe
C:\Programme\Yahoo!\Messenger\ymsgr_tray.exe
C:\Programme\Yahoo!\WidgetEngine\YahooWidgetEngine.exe
C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
C:\Programme\AntiVir PersonalEdition Classic\sched.exe
C:\Programme\AntiVir PersonalEdition Classic\avcenter.exe
C:\Programme\AntiVir PersonalEdition Classic\avscan.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\Trillian\trillian.exe
C:\Programme\SpywareStrike\spywarestrike.exe
C:\Programme\SpywareStrike\spywarestrike.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programme\WinRAR\WinRAR.exe
C:\DOKUME~1\Felix\LOKALE~1\Temp\Rar$EX00.125\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/wdgt3/*http://www.yahoo.com/ext/search/search.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/wdgt3/*http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://de.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/wdgt3/*http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/wdgt3/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/wdgt3/*http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://de.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/wdgt3/*http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer bereitgestellt von AOL
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Programme\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing)
O2 - BHO: HomepageBHO - {4da4616d-7e6e-4fd9-a2d5-b6c535733e22} - C:\WINDOWS\system32\hpF171.tmp
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQToolbar\toolbaru.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [AOLDialer] C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Dit] Dit.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\System32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Programme\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Programme\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [RealTray] C:\Programme\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [PCMService] "C:\Programme\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech BT Wizard] LBTWiz.exe -silent
O4 - HKLM\..\Run: [Easy Synchronization] C:\Programme\Logitech\Easy Synchronization\LogitechEasySync.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [YCentral] c:\progra~1\yahoo!\YCentral\YahooCentral.exe
O4 - HKLM\..\Run: [ICQ Lite] C:\Programme\ICQLite\ICQLite.exe -minimize
O4 - HKLM\..\Run: [System Files Updater] C:\WINDOWS\FlyakiteOSX\System Files Updater.exe /S
O4 - HKLM\..\Run: [TopDesk] C:\Programme\TopDesk Trial\topdesk.exe
O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\RunOnce: [Easy Synchronization] C:\Programme\Logitech\Easy Synchronization\LogitechEasySync.exe --ports
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Programme\ICQLite\ICQLite.exe -trayboot
O4 - Startup: MyWebSearch Email Plugin.lnk = C:\Programme\MyWebSearch\bar\2.bin\MWSOEMON.EXE
O4 - Startup: Yahoo! Widget Engine.lnk = C:\Programme\Yahoo!\WidgetEngine\YahooWidgetEngine.exe
O4 - Global Startup: Adobe Reader - Schnellstart.lnk = C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: AOL 9.0 Tray-Symbol.lnk = C:\Programme\AOL 9.0\aoltray.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Programme\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Programme\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Programme\MyWebSearch\bar\2.bin\MWSOEMON.EXE
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZCfox000
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesde.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesde.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.aol.de/e60/
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Programme\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.aol.de/computercheckup/qdiagcc.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O18 - Protocol: bw+0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {5AACF0C0-5090-4720-86DA-14CE7A7BE9D9} - C:\Programme\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: LBTWlgn - c:\programme\gemeinsame dateien\logitech\bluetooth\LBTWlgn.dll
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\Programme\Gemeinsame Dateien\AOL\ACS\AOLAcsd.exe
O23 - Service: AVM IGD CTRL Service - AVM Berlin - C:\Programme\FRITZ!DSL\IGDCTRL.EXE
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Programme\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\Programme\Gemeinsame Dateien\AVM\de_serv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech Inc. - C:\Programme\Gemeinsame Dateien\Logitech\Bluetooth\LBTSERV.EXE
O23 - Service: Logitech Easy Synchronization - Unknown owner - C:\Programme\Logitech\Easy Synchronization\servicestub.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\System32\HPHipm11.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

wär cool von euch wenn ihr mir auch helfen könnt!
Seitenanfang Seitenende
29.01.2006, 23:44
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#2 silas

da ist ziemlich viel muell drauf... mehr als der SpyAxe...
ich schau mal nach ;)

stelle den CleanUp genauso ein, wie hier angegeben:
http://virus-protect.org/cleanup.html

Kopiere diese 4 Textdateien. Sie sind nach Datum geordnet. (kopiere nur die letzten 3 Monate ab)
http://virus-protect.org/datfindbat.html
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
30.01.2006, 16:32
silas
...neu hier

Themenstarter

Beiträge: 3
#3 30.01.2006 16:10 5.120 msvol.tlb
30.01.2006 16:10 5.132 ncompat.tlb
30.01.2006 16:10 10.235 hpE3BF.tmp
30.01.2006 16:10 21.513 ldDFF6.tmp
29.01.2006 19:09 102.400 replmap.dll
29.01.2006 19:09 15.372 nvctrl.exe
29.01.2006 19:09 4.286 ot.ico
29.01.2006 19:09 4.286 ts.ico
29.01.2006 19:09 9.188 mssearchnet.exe
29.01.2006 19:02 13.885 mscornet.exe
29.01.2006 18:07 2.206 wpa.dbl
26.01.2006 17:02 215.752 FNTCACHE.DAT
26.01.2006 16:59 2.128.384 osxboot.exe
26.01.2006 16:55 219.648 uxtheme.dll
22.01.2006 09:27 383.254 perfh009.dat
22.01.2006 09:27 53.608 perfc009.dat
22.01.2006 09:27 394.500 perfh007.dat
22.01.2006 09:27 64.598 perfc007.dat
22.01.2006 09:27 906.552 PerfStringBackup.INI
19.01.2006 16:07 90 spupdwxp.log
18.01.2006 13:05 57.344 avsda.dll
09.01.2006 14:16 7.006 jupdate-1.5.0_06-b05.log
04.01.2006 19:46 2.836.320 MRT.exe
29.12.2005 03:54 280.064 gdi32.dll
08.12.2005 13:56 65.536 QuickTimeVR.qtx
08.12.2005 13:56 49.152 QuickTime.qts
01.12.2005 04:31 3.146.752 shdocvw.dll
24.11.2005 00:58 1.159.168 browseui.dll
24.11.2005 00:58 3.525.632 mshtml.dll
23.11.2005 02:47 86.016 KemWnd.dll
23.11.2005 02:47 258.113 BtCoreIf(2)(2).dll
23.11.2005 02:47 90.112 KemUtil.dll
23.11.2005 02:47 143.360 kemutb.dll
23.11.2005 02:47 258.113 BtCoreIf.dll
23.11.2005 02:47 65.536 KemXML.dll
10.11.2005 13:03 262.246 javaws.exe
10.11.2005 13:03 188.529 jpicpl32.cpl
10.11.2005 11:27 49.250 javaw.exe
10.11.2005 11:27 49.248 java.exe
06.11.2005 17:56 28.672 f3PSSavr.scr
05.11.2005 04:16 616.960 urlmon.dll
05.11.2005 04:16 1.056.256 danim.dll
02.11.2005 16:45 5.618 jupdate-1.5.0_05-b05.log


Verzeichnis von C:\DOKUME~1\Felix\LOKALE~1\Temp

30.01.2006 16:20 4 FAPF.tmp
30.01.2006 16:20 408 jusched.log
30.01.2006 16:10 16.384 ~DFC84E.tmp
30.01.2006 16:10 512 ~DFC284.tmp
30.01.2006 16:10 16.384 ~DFC0DC.tmp
30.01.2006 16:10 31.784 SSLanguage.ini
30.01.2006 16:10 4.760 HPH3.tmp
29.01.2006 22:37 45.864 ffd3_appcompat.txt
29.01.2006 22:08 2.620.442 sa17.exe
29.01.2006 21:47 0 qb812.tmp
29.01.2006 21:45 0 am111.tmp
29.01.2006 21:37 0 aecF.tmp
29.01.2006 21:28 16.384 ~DFC618.tmp
29.01.2006 21:28 16.384 ~DF4C80.tmp
29.01.2006 21:27 4.760 HPH2.tmp
24.01.2006 01:29 125 3FCA41B8.TMP
02.01.2006 08:26 24.613 IadHide5.dll
17 Datei(en) 2.798.808 Bytes
0 Verzeichnis(se), 81.678.393.344 Bytes frei


30.01.2006 16:08 0 0.log
30.01.2006 16:07 1.894.811 WindowsUpdate.log
30.01.2006 16:07 2.048 bootstat.dat
29.01.2006 22:37 32.412 SchedLgU.Txt
29.01.2006 19:02 44 wplog2.txt
29.01.2006 18:43 706 win.ini
26.01.2006 17:00 11.833 RestoreFlyakiteOSX.txt
25.01.2006 16:38 335.502 setupapi.log
24.01.2006 22:44 216 wiadebug.log
24.01.2006 20:25 50 wiaservc.log
22.01.2006 21:52 310.203 wmsetup.log
21.01.2006 16:40 1.374 imsins.log
21.01.2006 16:40 141.006 tsoc.log
21.01.2006 16:40 17.993 ocmsn.log
21.01.2006 16:40 54.119 iis6.log
21.01.2006 16:40 77.184 ntdtcsetup.log
21.01.2006 16:40 127.838 comsetup.log
21.01.2006 16:40 28.880 KB899587.log
21.01.2006 16:40 176.907 ocgen.log
21.01.2006 16:40 18.161 msgsocm.log
21.01.2006 16:40 350.821 FaxSetup.log
21.01.2006 16:40 12.759 updspapi.log
21.01.2006 16:40 1.374 imsins.BAK
21.01.2006 16:40 27.999 KB896422.log
21.01.2006 16:40 27.798 KB885835.log
21.01.2006 16:39 26.798 KB885836.log
21.01.2006 16:39 27.625 KB885250.log
21.01.2006 16:39 27.690 KB901017.log
21.01.2006 16:39 28.012 KB899591.log
21.01.2006 16:39 28.201 KB896424.log
21.01.2006 16:39 28.129 KB893756.log
21.01.2006 16:39 25.485 KB896423.log
21.01.2006 16:39 25.851 KB873339.log
21.01.2006 16:39 25.920 KB888113.log
21.01.2006 16:39 26.462 KB887742.log
21.01.2006 16:39 29.374 KB887472.log
21.01.2006 16:39 26.877 KB896358.log
21.01.2006 16:38 21.287 KB910437.log
21.01.2006 16:38 29.286 KB905915.log
21.01.2006 16:38 23.330 KB891781.log
21.01.2006 16:38 28.542 KB902400.log
21.01.2006 16:38 20.504 KB890046.log
21.01.2006 16:38 19.895 KB893066.log
21.01.2006 16:38 20.239 KB905414.log
21.01.2006 16:38 19.172 KB901214.log
21.01.2006 16:37 18.559 KB888302.log
21.01.2006 16:37 20.258 KB900725.log
21.01.2006 16:37 18.022 KB912919.log
21.01.2006 16:37 12.304 KB886185.log
21.01.2006 16:37 17.209 KB904706.log
21.01.2006 16:37 17.828 KB905749.log
21.01.2006 16:37 16.616 KB896428.log
21.01.2006 16:37 17.242 KB894391.log
21.01.2006 16:37 15.016 KB908519.log
21.01.2006 16:37 17.249 KB890859.log
20.01.2006 18:58 9.921 KB893803v2.log
20.01.2006 18:57 6.910 KB898461.log
20.01.2006 16:45 2.200 OEWABLog.txt
19.01.2006 16:14 836.390 setuplog.txt
19.01.2006 16:08 29.128 spupdsvc.log
19.01.2006 16:08 360 DtcInstall.log
19.01.2006 16:08 316.640 WMSysPr9.prx
19.01.2006 15:52 443.965 svcpack.log
19.01.2006 15:49 200 cmsetacl.log
19.01.2006 15:48 1.330 sessmgr.setup.log
18.01.2006 22:01 28.248 xpsp1hfm.log
18.01.2006 22:01 45.740 KB828741.log
18.01.2006 22:01 31.935 KB834707-IE6SP1-20040929.091901.log
18.01.2006 22:01 36.515 KB835732.log
18.01.2006 22:01 2.595.166 setupapi.log.1.old
18.01.2006 22:00 31.058 KB833407.log
18.01.2006 22:00 26.823 Q329834.log
18.01.2006 22:00 39.979 KB823559.log
18.01.2006 21:59 24.984 Q329048.log
18.01.2006 21:59 34.937 Q810577.log
18.01.2006 21:58 30.488 Q810833.log
18.01.2006 21:57 26.820 Q811630.log
18.01.2006 21:56 25.476 Q329441.log
18.01.2006 21:55 25.196 Q817606.log
18.01.2006 21:54 20.874 Q329170.log
18.01.2006 21:51 5.501 Q329115.log
18.01.2006 21:51 3.718 Q329390.log
18.01.2006 21:51 2.146 Q323255.log
12.01.2006 16:03 121 GEARInstall.log
09.01.2006 14:39 11.256 KB842773.log
09.01.2006 14:38 196.050 setupact.log
02.01.2006 13:02 107.132 UninstallFirefox.exe
02.01.2006 13:02 7.978 mozver.dat
02.01.2006 08:26 179 LDM.log
02.01.2006 08:26 118.784 bwUnin-7.2.0.137-8876480SL.exe
02.01.2006 08:25 173 ot.log
02.01.2006 08:14 86 KE.log
02.01.2006 08:09 386 Q816650.log
24.12.2005 22:42 90 ML.log
23.12.2005 21:08 2.038 ModemLog_Creatix V.9X DSP Data Fax Modem.txt
19.12.2005 15:12 0 muveeapp.INI
12.12.2005 13:36 460 nsw.log
12.12.2005 12:54 248 accessdll.log
06.12.2005 22:37 131.815 DirectX.log
21.11.2005 15:28 2.359.350 Firefox Wallpaper.bmp
05.11.2005 11:58 400 ODBC.INI
03.11.2005 13:58 28.160 KHALMNPR.Exe
15.10.2005 11:21 574 eReg.dat
13.10.2005 17:57 100.482 UninstallThunderbird.exe
06.10.2005 21:19 1.442 COM+.log
03.10.2005 17:39 34 hpfsched.ini
03.10.2005 14:35 2.299.788 setupapi.log.0.old
02.10.2005 22:47 32 Wininit.ini
02.10.2005 08:01 231 system.ini
01.10.2005 20:36 22.090 Windows Update.log
01.10.2005 19:20 571 chipset.log
01.10.2005 19:19 308 KB825116.log
01.10.2005 19:13 92 CMISETUP.INI
01.10.2005 19:13 26 CMCDPLAY.INI
01.10.2005 18:50 0 Sti_Trace.log
01.10.2005 18:48 1.348 regopt.log
01.10.2005 18:47 0 setuperr.log
01.10.2005 18:07 725 aolback.exe.lnk
01.10.2005 18:07 11.434 Active Setup Log.txt
01.10.2005 18:05 335 nsreg.dat
01.10.2005 17:58 8.192 REGLOCS.OLD
01.10.2005 17:56 0 control.ini
01.10.2005 17:56 299.552 WMSysPrx.prx
01.10.2005 17:56 4.161 ODBCINST.INI
01.10.2005 17:55 749 WindowsShell.Manifest
01.10.2005 17:53 37 vbaddin.ini
01.10.2005 17:53 36 vb.ini

30.01.2006 16:32 0 sys.txt
30.01.2006 16:31 8.879 system.txt
30.01.2006 16:31 1.069 systemtemp.txt
30.01.2006 16:31 96.190 system32.txt
30.01.2006 16:07 805.306.368 pagefile.sys
27.01.2006 14:42 561 hpfr5550.xml
27.01.2006 14:42 17.164 hph7350.log
26.01.2006 16:59 231 boot.ini
19.01.2006 15:40 47.564 NTDETECT.COM
19.01.2006 15:40 251.184 ntldr
02.01.2006 08:25 220.991 patch.log
19.12.2005 15:32 882.044 Standard.wav
28.11.2005 17:52 0 FileIn.Cns
28.11.2005 17:52 0 FileOut.Cns
07.10.2005 05:16 161.862 MsblIco.Exe
01.10.2005 17:56 0 MSDOS.SYS
01.10.2005 17:56 0 IO.SYS
01.10.2005 17:56 0 CONFIG.SYS
01.10.2005 17:56 0 AUTOEXEC.BAT
18.08.2001 13:00 4.952 bootfont.bin
20 Datei(en) 806.999.059 Bytes
0 Verzeichnis(se), 81.678.372.864 Bytes frei
Seitenanfang Seitenende
30.01.2006, 16:50
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#4 öffne das HijackThis -- Button "scan" -- vor die Malware-Einträge Häkchen setzen -- Button "Fix checked" -- PC neustarten

R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Programme\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing)

O2 - BHO: HomepageBHO - {4da4616d-7e6e-4fd9-a2d5-b6c535733e22} - C:\WINDOWS\system32\hpF171.tmp

O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - Startup: MyWebSearch Email Plugin.lnk = C:\Programme\MyWebSearch\bar\2.bin\MWSOEMON.EXE
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Programme\MyWebSearch\bar\2.bin\MWSOEMON.EXE
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZCfox000

PC neustarten

---------------------------------------------------------------------------

deinstalliere:
MyWebSearch

loeschen:
C:\Programme\MyWebSearch

---------------------------------------------------------------

Download Registry Search by Bobbi Flekman
http://www.bleepingcomputer.com/files/regsearch.php
und doppelklicken, um zu starten. in: "Enter search strings" (reinschreiben oder reinkopieren)

SpywareStrike

in edit und klicke "Ok".
Notepad wird sich oeffnen -- kopiere den Text ab und poste ihn

-----------------------------------------------------------------

http://virus-protect.org/artikel/bfu/spyaxebfu.html
arbeite das ab, wenn es fertig ist, kopiere noch mal die 4 Logs von datfindbat, dann kuemmere ich mich um die restlichen Viren ;)

(loesche manuell, was ich in den temporaeren Dateien rot gekennzeichnet habe...es gehoert zum Spyware Strike))
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
30.01.2006, 18:40
silas
...neu hier

Themenstarter

Beiträge: 3
#5 REGEDIT4

; Registry Search by Bobbi Flekman © 2005
; Version: 1.0.2.4

; Results at 30.01.2006 18:11:15 for strings:
; 'spywarestrike'
; Strings excluded from search:
; 'spywarestrike'
; Search in:
; Registry Keys Registry Values Registry Data
; HKEY_LOCAL_MACHINE HKEY_USERS


; End Of The Log...


hier der eintrag des notpads!

ähm wenn ich des teil my web search über das software teil deinstalliren will, kommt ein fenster das meint das es den angegebenen pfad nicht findet! und wie soll ich die teile aus den temp. datein löschen?
Seitenanfang Seitenende
30.01.2006, 19:16
Sabina
Ehrenmitglied
Avatar Sabina

Beiträge: 29434
#6 arbeite erst mal die bfu und alles weitere ab
http://virus-protect.org/artikel/bfu/spyaxebfu.html

.... wenn das erledigt ist,

scanne mit Counterspy
Klicke: "Run a Spyware Scan Now"
- nach dem Scan muss man sich entscheiden für:
*Ignore
*Remove
*Quarantaine
wähle immer Remove und starte den PC neu

dann kopiere hier das neue Log vom HijackThis + die 4 Textdateien von datfindbat
__________
MfG Sabina

rund um die PC-Sicherheit
Seitenanfang Seitenende
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!

Folgende Themen könnten Dich auch interessieren:
Seite(n): 1