Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

HHHHHHHHHHHeeeeeeeeeeellllllppppppp please!


  • Please log in to reply

#1
JessicaWeier

JessicaWeier

    New Member

  • Member
  • Pip
  • 1 posts
:whistling: :blink:
Hy
Avast showed yesterday following files are infacted:

Notepad.exe C:Windows/system32
notepad.exe C:Windows/system32/dllcache
and
set79.tmp C: Windows/System32

all with Win32:Qqpass-dy trj

AVG found nothing

Avira AntiVir found 3 things which i have no clue about:

C.Windows/Temp/_avast4_/unp177154732 and unp45656056.tmp
with HTML/Exploit.Mhtml

C:/Document/AVScan-20061026-210-454-286804AE
with DR/PSW.Cain.E.1

C:Documents and settings/.../ca_setup.exe
Signiture of the dropper DR/PSW.cain.E.1

here is
Logfile of HijackThis v1.99.1
Scan saved at 5:31:10, on 10/27/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5700.0006)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Alwil Software\Avast4\aswUpdSv.exe
C:\Programme\Alwil Software\Avast4\ashServ.exe
C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Programme\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Java\jre1.5.0_08\bin\jusched.exe
C:\Programme\Alwil Software\Avast4\ashMaiSv.exe
C:\Programme\Alwil Software\Avast4\ashWebSv.exe
C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Programme\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
C:\Programme\QuickTime\qttask.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\Ahead\InCD\InCD.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Ahead\Ahead\data\Xtras\mssysmgr.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\Ulead Systems\Ulead Photo Express 3.0 SE\CalCheck.exe
C:\Programme\Linksys\Wireless-G Notebook Adapter\Gcc.exe
C:\Programme\Linksys\Wireless-G Notebook Adapter\OdHost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
C:\Programme\AntiVir PersonalEdition Classic\sched.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Programme\Grisoft\AVG Free\avgcc.exe
C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\Temporäres Verzeichnis 1 für hijackthis_199.zip\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....cid={SUB_CLCID}
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_08\bin\ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [StopSignSsTsMon] Rundll32.exe "C:\Programme\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus
O4 - HKLM\..\Run: [RegistryMechanic] C:\Programme\Registry Mechanic\RegMech.exe /S
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Programme\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Programme\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [ares ultra] "C:\Programme\Ares Ultra\Ares Ultra.exe" -h
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Ahead\Ahead\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - Global Startup: Ulead Photo Express 3.0 SE Calendar Checker.lnk = C:\Programme\Ulead Systems\Ulead Photo Express 3.0 SE\CalCheck.exe
O4 - Global Startup: Wireless-G Notebook Adapter.lnk = C:\Programme\Linksys\Wireless-G Notebook Adapter\Gcc.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1159923220171
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AntiVir PersonalEdition Classic Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Programme\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Programme\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Programme\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Programme\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Programme\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Programme\Ahead\InCD\InCDsrv.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Programme\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe


as well as of
Spyware Doctor Activity Report
Generated on 10/27/2006 8:58:21
Spyware Doctor Homepage PC Tools Homepage Technical Support
Scans (basic information only):
Scan Results:
scan start: 10/27/2006 9:03:14
scan stop: 10/27/2006 9:23:11
scanned items: 103481
found items: 131
found and ignored: 0
tools used: General Scanner, Process Scanner, LSP Scanner, Startup Scanner, Registry Scanner, Hosts Scanner, Browser Scanner, Browser Activity Scanner, Disk Scanner, ActiveX Scanner

Infection Name Location Risk
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\6-transparenteszaehlpixel[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\817-grey[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\FL_QFM_Titanium_300x250_v1[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\Generic_250x250[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\MotifExternalScript_01_01[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\Q3_dish_160x600[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\Q3_dish_160x600[2].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\2EI88HN3\Q3_dish_160x600[3].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7OQSX0UR\10424801-2[1].htm High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7OQSX0UR\10435954-2[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7OQSX0UR\1x1[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7OQSX0UR\AF_468x60_15k[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7OQSX0UR\CAC5KD8J.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7OQSX0UR\CAEBENEL.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\7OQSX0UR\flashwrite_1_2[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\3-default[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\53-default[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\CA10M1LN.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\CA8LE3GN.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\CA984ZTD.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\CAE3GD2J.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\CAMIZB50.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\CAS92R47.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\B5NI9YNW\dartRichMedia_1_03[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\07_bugs_120x60[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\07_cmp_bobbleheads_728x90[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\12-invisible[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\1-boost_bpp_660x240[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\1-boost_ppp_120x60[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\300x250_de_VAIO[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\80-1x1_PIX[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\flashwrite_1_2[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\Generic_250x250[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\mo_grundrauschen_kw42_kaffeeautomat_grundrauschen_300x250_vfinal[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\LJSZZEX7\PID_135836_TCB_6023_POL_1000x250[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\PEAF39XZ\CA6NSL05.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\PEAF39XZ\CAC5Y78H.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\PEAF39XZ\CAEXCJ0N.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\PEAF39XZ\CAG14D4V.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\PEAF39XZ\CAOT69ZK.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\PEAF39XZ\CAXC8JXP.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\PEAF39XZ\DartRichMedia_1_03[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\06TA_728x90_Backup[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\07_cmp_bobbleheads_180x150[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\250x250_homeownersbu[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\Alamo_Disney_160x600[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\flashwrite_1_2[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\Generic_250x250[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\globalTemplate_16_03[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\TP6T5UDA\PID_135836_TCB_6023_POL_1000x250_Parent[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\UFWFF7IQ\117-1x1[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\UFWFF7IQ\18-easyBoat_468x60[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\UFWFF7IQ\817-grey[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\UFWFF7IQ\CA4DUFSH.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\UFWFF7IQ\CACVBRAK.swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\UFWFF7IQ\dartRichMedia_1_03[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\UFWFF7IQ\DR_468x60[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\06TA_300x250_Backup[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\07_bugs_120x60[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\1-boost_ppp_120x60[1].gif High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\1-bpp_300x250a[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\250x250_homeownersr2[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\728x90_TC_adren_6_20[1].swf High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\DartRichMedia_1_03[1].js High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\PID_135836_1000x250[1].jpg High
Known Bad Sites C:\Dokumente und Einstellungen\Jessica Weier\Lokale Einstellungen\Temporary Internet Files\Content.IE5\WVRQENC1\Q3_dish_160x600[1].swf High
Common Components Unrelated C:\WINDOWS\system32\SVKP.sys Medium
Known Bad Sites cookies.txt - Line #534 High
Known Bad Sites cookies.txt - Line #630 High
Known Bad Sites cookies.txt - Line #631 High
Known Bad Sites cookies.txt - Line #632 High
Known Bad Sites cookies.txt - Line #633 High
Known Bad Sites cookies.txt - Line #634 High
Known Bad Sites cookies.txt - Line #635 High
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP## Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP##DisplayName Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP##ErrorControl Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP##ImagePath Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP##Start Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP##Type Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Enum Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Enum## Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Enum##0 Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Enum##Count Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Enum##NextInstance Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Security Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Security## Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet001\Services\SVKP\Security##Security Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP## Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP##DisplayName Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP##ErrorControl Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP##ImagePath Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP##Start Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP##Type Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP\Security Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP\Security## Medium
Common Components Unrelated HKLM\SYSTEM\ControlSet002\Services\SVKP\Security##Security Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP## Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP##NextInstance Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000 Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000## Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000##Capabilities Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000##Class Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000##ClassGUID Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000##ConfigFlags Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000##DeviceDesc Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000##Legacy Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000##Service Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000\Control Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000\Control## Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000\Control##ActiveService Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000\LogConf Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVKP\0000\LogConf## Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP## Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP##DisplayName Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP##ErrorControl Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP##ImagePath Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP##Start Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP##Type Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Enum Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Enum## Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Enum##0 Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Enum##Count Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Enum##NextInstance Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Security Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Security## Medium
Common Components Unrelated HKLM\SYSTEM\CurrentControlSet\Services\SVKP\Security##Security Medium


Other Sections:

Who can help me?

And can I turn my Laptop of, i am afraid he want restart because yesterday when avast found the infacted files Microsoft told me that there has been made changes in files duo to virus, so that i need to put the renew cd inside. But i wanted first to ask here if someone can help me please...
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP