Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Angst-Trojaner auf dem System (https://www.trojaner-board.de/17024-angst-trojaner-system.html)

Haui45 25.04.2005 17:23
Führe doch bitte mal den Scan mit eScan durch, damit wir wissen, was sich so auf dem System befindet.

Boogy01 25.04.2005 18:05
So, hier mal mein e-scan Ergebnis.

Habe nur die "infected" Zeilen einegfügt.
Sieht böse aus, was ?



Mon Apr 25 17:58:38 2005 => File C:\WINDOWS\SYSTEM\WER8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:38 2005 => File C:\WINDOWS\SYSTEM\SPM8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.


Mon Apr 25 17:58:47 2005 => System found infected with Alexa Spyware/Adware ({c95fe080-8f5d-11d2-a20b-00aa003c157a})! Action taken: No Action Taken.
Mon Apr 25 17:58:47 2005 => File System Found infected by "Alexa Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:47 2005 => System found infected with Gator Spyware/Adware ({21FFB6C0-0DA1-11D5-A9D5-00500413153C})! Action taken: No Action Taken.
Mon Apr 25 17:58:47 2005 => File System Found infected by "Gator Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:48 2005 => System found infected with gator.com Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:58:48 2005 => File System Found infected by "gator.com Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:48 2005 => Offending value found in HKCU\Software\WebSiteViewer !!!
Mon Apr 25 17:58:48 2005 => System found infected with WebSiteViewer Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:58:48 2005 => File System Found infected by "WebSiteViewer Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:48 2005 => Offending value found in HKCU\Software\morpheus !!!
Mon Apr 25 17:58:48 2005 => System found infected with morpheus Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:58:48 2005 => File System Found infected by "morpheus Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:38 2005 => File System Found infected by "Alexa Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:38 2005 => System found infected with Gator Spyware/Adware ({21FFB6C0-0DA1-11D5-A9D5-00500413153C})! Action taken: No Action Taken.
Mon Apr 25 17:59:38 2005 => File System Found infected by "Gator Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKLM\Software\gator.com !!!
Mon Apr 25 17:59:39 2005 => System found infected with gator.com Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "gator.com Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKLM\Software\gatortest !!!
Mon Apr 25 17:59:39 2005 => System found infected with gatortest Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "gatortest Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKCU\Software\WebSiteViewer !!!
Mon Apr 25 17:59:39 2005 => System found infected with WebSiteViewer Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "WebSiteViewer Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKCU\Software\morpheus !!!
Mon Apr 25 17:59:39 2005 => System found infected with morpheus Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "morpheus Spyware/Adware" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:38:06 2005 => File C:\WINDOWS\SYSTEM\WER8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:38:22 2005 => File C:\WINDOWS\SYSTEM\WER8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:22 2005 => {CF021F40-3E14-23A5-CBA2-7173706D8274} = C:\WINDOWS\SYSTEM\SPM8274.DLL
Mon Apr 25 18:38:22 2005 => Scanning File C:\WINDOWS\SYSTEM\SPM8274.DLL
Mon Apr 25 18:38:22 2005 => File C:\WINDOWS\SYSTEM\SPM8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => System found infected with Alexa Spyware/Adware ({c95fe080-8f5d-11d2-a20b-00aa003c157a})! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "Alexa Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => System found infected with Gator Spyware/Adware ({21FFB6C0-0DA1-11D5-A9D5-00500413153C})! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "Gator Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => Offending value found in HKLM\Software\gator.com !!!
Mon Apr 25 18:38:30 2005 => System found infected with gator.com Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "gator.com Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => Offending value found in HKLM\Software\gatortest !!!
Mon Apr 25 18:38:30 2005 => System found infected with gatortest Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "gatortest Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:31 2005 => Offending value found in HKCU\Software\WebSiteViewer !!!
Mon Apr 25 18:38:31 2005 => System found infected with WebSiteViewer Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:31 2005 => File System Found infected by "WebSiteViewer Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:31 2005 => Offending value found in HKCU\Software\morpheus !!!
Mon Apr 25 18:38:31 2005 => System found infected with morpheus Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:31 2005 => File System Found infected by "morpheus Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:42:35 2005 => File C:\WINDOWS\SYSTEM\srpcsrv32.dll infected by "Trojan-Downloader.Win32.Adload.g" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:42:35 2005 => Scanning File C:\WINDOWS\SYSTEM\wldr.dll
Mon Apr 25 18:42:35 2005 => File C:\WINDOWS\SYSTEM\wldr.dll infected by "Trojan-Downloader.Win32.Agent.le" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:45:24 2005 => File c:\windows\TEMP\puf21hz4.php infected by "Trojan.Win32.Delf.bj" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:45:29 2005 => File c:\windows\TEMP\wldr.dll infected by "Trojan-Downloader.Win32.Agent.kf" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:05 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[1] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken

Mon Apr 25 18:46:06 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[2] infected by "Trojan-Dropper.Win32.Small.oy" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:06 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[3] infected by "Trojan-Dropper.Win32.Agent.ii" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:07 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[4] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:08 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[1] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:08 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[2]
Mon Apr 25 18:46:09 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[2] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:09 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[1].exe
Mon Apr 25 18:46:10 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[1].exe infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:10 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[3]
Mon Apr 25 18:46:11 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[3] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:11 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[5]
Mon Apr 25 18:46:11 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[5] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:11 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[4]
Mon Apr 25 18:46:12 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[4] infected by "Trojan-Dropper.Win32.Agent.ii" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:12 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[6]
Mon Apr 25 18:46:12 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[6] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:12 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[7]
Mon Apr 25 18:46:13 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[7] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:13 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[8]
Mon Apr 25 18:46:13 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[8] infected by "Trojan-Dropper.Win32.Agent.ii" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:13 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[2].exe [**]
Mon Apr 25 18:46:13 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[9]
Mon Apr 25 18:46:14 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[9] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:14 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[10]
Mon Apr 25 18:46:15 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[10] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:16 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[4].exe infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:17 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[12] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:18 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[11] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Haui45 25.04.2005 19:13
Ich würde das System neu aufsetzen. -> http://www.trojaner-board.de/showpos...28&postcount=2

Grund u.a. Angent.en
Auch wenn es leider noch keine detaillierte Beschreibung zu diesem Schädling gibt, kann man sich doch ziemlich sicher sein, dass er über Backdoorfunktionalität verfügt.


Alle Zeitangaben in WEZ +1. Es ist jetzt 13:41 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19