Iexplore.exe automatisch im Taskmanger

Jan_Tenner

Äh...weiß nicht ob ich das jetzt richtig gemacht habe...aber das kam dabei raus :

Antivirus Version letzte aktualisierung Ergebnis
AhnLab-V3 2008.11.24.3 2008.11.25 -
AntiVir 7.9.0.35 2008.11.25 TR/Agent.AKRG.2
Authentium 5.1.0.4 2008.11.25 -
Avast 4.8.1281.0 2008.11.24 Win32:Trojan-gen {Other}
AVG 8.0.0.199 2008.11.25 Dropper.Generic.ACMW
BitDefender 7.2 2008.11.25 Trojan.Agent.AKRG
CAT-QuickHeal 10.00 2008.11.25 -
ClamAV 0.94.1 2008.11.25 -
DrWeb 4.44.0.09170 2008.11.25 Trojan.Inject.3730
eSafe 7.0.17.0 2008.11.25 -
eTrust-Vet 31.6.6227 2008.11.25 -
Ewido 4.0 2008.11.25 -
F-Prot 4.4.4.56 2008.11.24 -
F-Secure 8.0.14332.0 2008.11.25 -
Fortinet 3.117.0.0 2008.11.25 PossibleThreat
GData 19 2008.11.25 Trojan.Agent.AKRG
Ikarus T3.1.1.45.0 2008.11.25 VirTool.Win32.Injector.b
K7AntiVirus 7.10.532 2008.11.24 -
Kaspersky 7.0.0.125 2008.11.25 -
McAfee 5444 2008.11.24 -
McAfee+Artemis 5444 2008.11.24 Generic!Artemis
Microsoft 1.4104 2008.11.25 VirTool:Win32/CeeInject.gen!J
NOD32 3638 2008.11.25 a variant of Win32/Injector.DV
Norman 5.80.02 2008.11.25 W32/Smalltroj.IFMS
Panda 9.0.0.4 2008.11.25 -
PCTools 4.4.2.0 2008.11.25 -
Prevx1 V2 2008.11.25 -
Rising 21.05.12.00 2008.11.25 -
SecureWeb-Gateway 6.7.6 2008.11.25 Trojan.Agent.AKRG.2
Sophos 4.35.0 2008.11.25 -
Sunbelt 3.1.1823.2 2008.11.22 -
Symantec 10 2008.11.25 W32.Spybot.Worm
TheHacker 6.3.1.1.162 2008.11.25 Trojan/Agent.ahqw
TrendMicro 8.700.0.1004 2008.11.25 -
VBA32 3.12.8.9 2008.11.24 Trojan.Inject.3730
ViRobot 2008.11.25.1485 2008.11.25 -
VirusBuster 4.5.11.0 2008.11.24 -
weitere Informationen
File size: 191538 bytes
MD5...: 431d84d2101d4bfa1390a8b8640a64ca
SHA1..: 7078269f9d53409be8bf831fe7700a030bbdf77b
SHA256: 90729d5fcf5401f00ba230c05ad61446a29ebacb219e1dca6dc0a89f58100d15
SHA512: 51e8e387dec66225b51baecb0359e44b390bacec25bc01270d5f3d2d9335fb7f
fbd0526d5f5188a82735ed4a57136f29d7a5416b4cc07285fa4af34480ea2de6

ssdeep: 3072:aUzJd/bxakbwThIk8Xryl3rP+eZrCow02rb2sgflgXtTpsC4lLAtNDDA1:7
z/bxaSwTuBrypWIeowjbcfmtpsC4lsa

PEiD..: Armadillo v1.71
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x40369a
timedatestamp.....: 0x48e00ec6 (Sun Sep 28 23:09:58 2008)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x2820 0x2a00 5.80 1799b70835121780ebdafbffc12c5966
.rdata 0x4000 0x470 0x600 3.89 b7db2f1dfe549fe7311d49360b010080
.data 0x5000 0x4b0 0x600 4.58 8c80f474ed4d4810e20311f316fc2190
.rsrc 0x6000 0x10 0x200 0.00 bf619eac0cdf3f68d496ea9344137e8b

( 4 imports )
> KERNEL32.dll: GetProcAddress, GetModuleHandleA, GetLastError, SetLastError, CloseHandle, FreeLibrary, GetFileSize, CreateFileA, Sleep, ExitProcess, GetStartupInfoA, LoadLibraryA, GlobalFree, GlobalAlloc, ReadFile, GetModuleFileNameA
> USER32.dll: FindWindowA
> ADVAPI32.dll: RegOpenKeyA, RegCloseKey, GetUserNameA, RegQueryValueExA
> MSVCRT.dll: _acmdln, _except_handler3, memset, strlen, strcat, strcpy, free, realloc, _exit, _XcptFilter, exit, strcmp, __getmainargs, _initterm, __setusermatherr, _adjust_fdiv, __p__commode, __p__fmode, __set_app_type, _controlfp

( 0 exports )

CWSandbox info: http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=431d84d2101d4bfa1390a8b8640a64ca