begonnen: Halle, 19.02.2005       zur Website » www.PC-Notarzt.net «
Prozesse und Programme
 
 Prozess- / Dateiname  gefunden unter  Warnung  Quelle  
Datala-1 Trayap-1 ok   Nokia PC-Suite http://www.fritzenkoetter.de/forums/showthread.php?t=101055  
CtrlVol.exe !   Acer: VolumeMeter?    
smss.exe !  

C:\%WinDIR%\msagent\system\smss.exe 		MS: Windows NT Session Manager

Worm/Sober.L

H+BEDV: AntiVir
Virenlexikon		  
      Ahead Software: InCD systray application    
CSRSS.EXE     MS: Client Server Runtime Process    
SERVICES.EXE     MS: Services Control Manager    
lsasss.exe !   W32.Sasser.F.Worm (variant)    
LSASS.EXE     ok (MS: Local Security Authority Subsystem / Anmeldedienst / Netlogon / PolicyAgent)    
SERVIC~1.EXE     ok (F-Secure BackWeb -BackWeb Client - 7681197)    
AGRSMMSG.exe     ok (SoftModem Messaging Applet)    
igfxtray.exe     ok (Intel: igfxTray Module)    
hkcmd.exe     ok (Intel Hot Key Command Module)    
NclTray.exe     ok (Nokia Connection Manager - Nokia PC Suite)    
ToADiMon.exee     ok (T-Online Verbindungsassistent)    
LaunchAp.exe     ok (Acer)    
wuauclt.exe     ok (Windows Update Automatic Client )    
msmsgs.exe     ok (Windows Messenger    
SynTPEnh.exe   WXPh SP2 (Notebook "Amilo M74") ok (Synaptics TouchPad Enhancements ) http://www.reger24.de/ 050221 10497
2_mslagent[1].dll ! W2k, Sp3 (Temporary Internet Files) Trojaner: TR/Dldr.Wintrim.AE H+BEDV: AntiVir 050218 10434
1617016@teleteam[1].cab: installer.inf,
~EroticAccess.exe,
~EroticAccess.ini 		! W2k, Sp3 (Temporary Internet Files) Archivheader defekt
Dialer		 H+BEDV: AntiVir
what-is-spyware.net 		050218 10434
EGCOMSERVICE_1047[1].cab: EGCOMSERVICE_1047.dll, ~eglivecam_1028.dll, ~EGCOMSERVICE.inf: ? W2k, Sp3 (Temporary Internet Files) Archivheader defekt H+BEDV: AntiVir 050218 10434
dtc32.dll ! W2k, Sp3 (C:\Winnt\system32\*.*) Trojaner: TR/Downldr.Wintr.AH H+BEDV: AntiVir 050218 10434
EGCOMSERVICE2.dll ! W2k, Sp3 (C:\Winnt\system32\*.*) Dialer: DIAL/300793 H+BEDV: AntiVir 050218 10434
fc[1].cab:Starter.class ? W2k, Sp3 (Temporary Internet Files) verdächtiger Code: Heuristic/Java.Downloader H+BEDV: AntiVir 050218 10434
msklive.dll ! W2k, Sp3 (C:\Winnt\system32\*.*) Trojaner: TR/Spy.Mslagent.A H+BEDV: AntiVir 050218 10434
EGCOMLIB2.dll
EGCOMLIB_1034.dll 		! W2k, Sp3 (C:\Winnt\system32\*.*,
Temporary Internet Files) 		TR/Dialer.AW,
TR/Dialer.ED 		H+BEDV: AntiVir 050218 10434
nethv32.dll ! W2k, Sp3 (C:\Winnt\system32\*.*) Virus: W32/WinTrim.V.DLL H+BEDV: AntiVir 050218 10434
x_x,x,x,x_mslagent.dll,
mslagent.exe 		! W2k, Sp3 (C:\Winnt\mslagent\*.*, C:\Winnt\system32\*.*) Trojaner: Tr/Dldr.Wintri.BC.6,
~.AC, ~.AD.1,~.BC.5, ~.BN.3, ~.BN.1, ~.BC.2, ~.BN.2,
Tr/Dldr.Wintrim.U.3, ~.AF ~.BU,
Backdoor: BDS/Magicon.B, ~.B.1		 H+BEDV: AntiVir 050218 10434
mobsync.exe ok
W2000, Sp3
 ok (MS, IE) http://www.reger24.de/
050218 10434
mscorsvw.exe ok WXP ok, ".Net 2.0" www.hijackfree.de 070306 10532(F)

Siehe auch Windows-Prozesse.html
Prozesseextern.htm

aktualisiert: 06.03.07
 
Mit freundlichen Grüßen
 
Horst Dieter Göllnitz - Ihr PC-Notarzt
EDV-Beratung und Service
Senefelderstraße 15, 06114 Halle (Saale)
mobil: 0177 / 5 23 04 55, tel: 0345 / 5 23 04 55, fax: 0345 / 525 095 63
pc-notarzt.halle@pc-notarzt.nethttp://www.pc-notarzt.net
Sparda Bank Berlin Zw. Halle BLZ:120 965 97 Kto: 583 9009
Steuernummer: 111/224/02977,  USt-IdNr.: DE186828484