| |
| |||||||
Log-Analyse und Auswertung: Bundespolizei Trojaner - auch abgesicherter Modus nicht funktionsfähigWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
28.10.2013, 21:21
| #11 |
 |  Bundespolizei Trojaner - auch abgesicherter Modus nicht funktionsfähig Hallo Schrauber Dieser Scan wollte gar nicht mehr enden:-) Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=123cc54d323a2049ba01ad1c5d383fb5
# engine=15578
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-24 06:34:35
# local_time=2013-10-24 08:34:35 (+0100, Mitteleuropäische Sommerzeit)
# country="Switzerland"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5122 16777214 66 88 553407 145410253 0 0
# compatibility_mode=5893 16776574 100 94 7995885 134226325 0 0
# scanned=115321
# found=0
# cleaned=0
# scan_time=79449
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=123cc54d323a2049ba01ad1c5d383fb5
# engine=15610
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-28 07:59:40
# local_time=2013-10-28 08:59:40 (+0100, Mitteleuropäische Zeit)
# country="Switzerland"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5122 16777214 66 88 947312 145804158 0 0
# compatibility_mode=5893 16776574 100 94 8389790 134620230 0 0
# scanned=444531
# found=11
# cleaned=0
# scan_time=48195
sh=877276AA6E4AA1CFD19134846D4A9B74C87C413E ft=1 fh=fb6537039a7520eb vn="a variant of Win32/Reveton.W trojan" ac=I fn="C:\ProgramData\4ajhbod.fki"
sh=877276AA6E4AA1CFD19134846D4A9B74C87C413E ft=1 fh=fb6537039a7520eb vn="a variant of Win32/Reveton.W trojan" ac=I fn="C:\Users\All Users\4ajhbod.fki"
sh=7DEDD2B6F6BB4249BF02EA4DB80A1F8925550071 ft=0 fh=0000000000000000 vn="Win32/LockScreen.AXJ trojan" ac=I fn="C:\Users\user\AppData\Local\Temp\index.html"
sh=0955A3A5465381C41719AA6C1A3027A0AE343143 ft=0 fh=0000000000000000 vn="Win32/Adware.Yontoo application" ac=I fn="C:\Users\user\AppData\Local\Temp\YontooFFClient.xpi"
sh=ED03AD164DE87942BCB227C5CB3A26B6BEC6EBCB ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\user\AppData\Local\Temp\YontooLayers.crx"
sh=48CB2EBFF1265B8A0FF062B028687819E7E293FB ft=1 fh=fdf0030b74fb0e4c vn="Win32/Adware.Yontoo application" ac=I fn="C:\Users\user\AppData\Local\Temp\YontooSetup-Silent.exe"
sh=559385770C7E0FA0D7C3038B4AE4F7303DC8C62E ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.PXV trojan" ac=I fn="C:\Users\user\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\25670ea1-21caf1d8"
sh=98A119FF92325AB5C305588BE2EFAD02CC9EB85E ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\user\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\254d59a2-36cbf805"
sh=B53F7C18F4A85E3107BB550FE81AC01665333874 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\user\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\258e912e-222ea53f"
sh=A569FEDD58A777CE31284D7391894EE0FC8AD058 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.CVE-2012-1723.FD trojan" ac=I fn="C:\Users\user\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\2ae61234-6dfaa4c0"
sh=6A4F558B7157DE07CAC08311D842C26754AC38BD ft=1 fh=639c288a0bd481d5 vn="multiple threats" ac=I fn="C:\Users\user\Documents\Desktop Alex\Video_Audio\PageRage-SilentInstaller.exe"
Gruss Alex dies ging dafür fix: Code:
ATTFilter Results of screen317's Security Check version 0.99.74 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Windows Security Center service is not running! This report may not be accurate! WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 comfortlink DIRECT NET Java (TM) Java 7 Update 9 Java version out of Date! Adobe Flash Player 11.9.900.117 Adobe Reader 10.1.5 Adobe Reader out of Date! Mozilla Firefox 16.0.1 Firefox out of Date! Google Chrome 30.0.1599.101 Google Chrome 30.0.1599.69 ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` |
| Themen zu Bundespolizei Trojaner - auch abgesicherter Modus nicht funktionsfähig |
| abgesicherten, adware.installbrain, adware.yontoo, anweisung, appdata, explorer.exe, fixlist.txt, pup.dealply, pup.optional.dealply, pup.optional.dealply.a, pup.optional.installbrain.a, pup.optional.installcore.a, pup.optional.sweetim, pup.optional.sweetim.a, pup.optional.sweetpacks, pup.optional.tarma.a, rechner, roaming, runter, thema, trojan.fakems, trojan.ransom.ed, trojaner, windows, winlogon, zugriff |
Baum-Darstellung