| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: E-ScanWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
10.04.2006, 13:18
| #1 |
 |  E-Scan Hola! Habe mit EScan 30 Objekte im abgesicherten Modus endteckt. Also alles so gemacht, wie in der Anleitung. Hier nun die Logfile, würde mich über eure Hilfe freuen! Wenn ihr noch Infos braucht, einfach posten, ich schau eh öfters vorbei!! THX el gato -------------------------------------------------- Mon Apr 10 13:38:46 2006 => File E:\WINDOWS\system32\dfrgsrv.exe infected by "Trojan-Downloader.Win32.Zlob.hd" Virus! Action Taken: No Action Taken. Mon Apr 10 13:38:46 2006 => File E:\WINDOWS\system32\mssearchnet.exe infected by "Trojan-Downloader.Win32.Zlob.il" Virus! Action Taken: No Action Taken. Mon Apr 10 13:39:06 2006 => System found infected with windupdates.media pass Spyware/Adware ({1e5f0d38-214b-4085-ad2a-d2290e6a2d2c})! Action taken: No Action Taken. Mon Apr 10 13:39:06 2006 => System found infected with cws.homesearch Browser Hijacker ({676575dd-4d46-911d-8037-9b10d6ee8bb5})! Action taken: No Action Taken. Mon Apr 10 13:39:06 2006 => System found infected with crackspider.net search toolbar Spyware/Adware ({a6790aa5-c6c7-4bcf-a46d-0fdac4ea90eb})! Action taken: No Action Taken. Mon Apr 10 13:39:06 2006 => System found infected with spyfalcon Trojan ({d1a2e7cd-f5c1-21a8-ca2c-13d0ac72d19d})! Action taken: No Action Taken. Mon Apr 10 13:39:06 2006 => System found infected with windupdates.media pass Spyware/Adware ({735c5a0c-f79f-47a1-8ca1-2a2e482662a8})! Action taken: No Action Taken. Mon Apr 10 13:39:59 2006 => System found infected with media pass Spyware/Adware ({15696ae2-6ea4-47f4-bea6-a3d32693efc7})! Action taken: No Action Taken. Mon Apr 10 13:39:59 2006 => System found infected with media pass Spyware/Adware ({00ada225-ea6c-4fb3-82e8-68189201ccb9})! Action taken: No Action Taken. Mon Apr 10 13:39:59 2006 => System found infected with windupdates.media pass Spyware/Adware ({735c5a0c-f79f-47a1-8ca1-2a2e482662a8})! Action taken: No Action Taken. Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\uninstall\hsa !!! Mon Apr 10 13:40:00 2006 => Object "hsa Spyware/Adware" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\uninstall\se !!! Mon Apr 10 13:40:00 2006 => Object "coolwebsearch Spyware/Adware" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\uninstall\sw !!! Mon Apr 10 13:40:00 2006 => Object "sw Spyware/Adware" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\azesearchco !!! Mon Apr 10 13:40:00 2006 => Object "azesearch Browser Hijacker" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\media gateway !!! Mon Apr 10 13:40:00 2006 => Object "media access Spyware/Adware" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\windows adstatus !!! Mon Apr 10 13:40:00 2006 => Object "windows adstatus Spyware/Adware" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending Folder found: E:\WINDOWS\system32\1024 Mon Apr 10 13:40:02 2006 => Object "smitfraud variant Browser Hijacker" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\dfrgsrv.exe Mon Apr 10 13:40:02 2006 => System found infected with spyfalcon Trojan (dfrgsrv.exe)! Action taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\dxmpp.dll Mon Apr 10 13:40:02 2006 => System found infected with spyfalcon Trojan (dxmpp.dll)! Action taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\ide21201.vxd Mon Apr 10 13:40:02 2006 => System found infected with windupdate Spyware/Adware (ide21201.vxd)! Action taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\mssearchnet.exe Mon Apr 10 13:40:02 2006 => System found infected with spywarestrike Trojan-Downloader (mssearchnet.exe)! Action taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\msvol.tlb Mon Apr 10 13:40:02 2006 => System found infected with smitfraud variant Browser Hijacker (msvol.tlb)! Action taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\ncompat.tlb Mon Apr 10 13:40:02 2006 => System found infected with smitfraud variant Browser Hijacker (ncompat.tlb)! Action taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\ot.ico Mon Apr 10 13:40:02 2006 => System found infected with smitfraud variant Browser Hijacker (ot.ico)! Action taken: No Action Taken. Mon Apr 10 13:40:02 2006 => Offending file found: E:\WINDOWS\system32\ts.ico Mon Apr 10 13:40:02 2006 => System found infected with smitfraud variant Browser Hijacker (ts.ico)! Action taken: No Action Taken. Mon Apr 10 13:40:03 2006 => Offending Folder found: E:\Dokumente und Einstellungen\Harald\Eigene Dateien\aida Mon Apr 10 13:40:03 2006 => Object "purityscan Spyware/Adware" found in File System! Action Taken: No Action Taken. Mon Apr 10 13:40:03 2006 => Offending file found: E:\Dokumente und Einstellungen\Harald\Eigene Dateien\barbara\alles180705\oxford\superlex\book.dll Mon Apr 10 13:40:03 2006 => System found infected with ezula Spyware/Adware (book.dll)! Action taken: No Action Taken. Mon Apr 10 13:40:03 2006 => Offending file found: E:\Dokumente und Einstellungen\Harald\Eigene Dateien\barbara\alles180705\superlex\book.dll Mon Apr 10 13:40:03 2006 => System found infected with ezula Spyware/Adware (book.dll)! Action taken: No Action Taken. Mon Apr 10 13:40:11 2006 => System found infected with media access Spyware/Adware (mediagateway.exe)! Action taken: No Action Taken. Mon Apr 10 13:40:11 2006 => System found infected with media access Spyware/Adware (mediagateway.exe)! Action taken: No Action Taken. Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\uninstall\hsa !!! Mon Apr 10 13:40:00 2006 => Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\uninstall\se !!! Geändert von el_gato (10.04.2006 um 13:45 Uhr) |
| Themen zu E-Scan |
| abgesicherten, abgesicherten modus, ads, browser, browser hijacker, dateien, einfach, einstellungen, escan, found, fraud, gen, hijacker, infected, install, logfile, microsoft, object, smitfraud, software, system, system32, variant, version, virus, windows |
Baum-Darstellung