Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Angst-Trojaner auf dem System (https://www.trojaner-board.de/17024-angst-trojaner-system.html)

Haui45 25.04.2005 17:23
Führe doch bitte mal den Scan mit eScan durch, damit wir wissen, was sich so auf dem System befindet.

Boogy01 25.04.2005 18:05
So, hier mal mein e-scan Ergebnis.

Habe nur die "infected" Zeilen einegfügt.
Sieht böse aus, was ?



Mon Apr 25 17:58:38 2005 => File C:\WINDOWS\SYSTEM\WER8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:38 2005 => File C:\WINDOWS\SYSTEM\SPM8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.


Mon Apr 25 17:58:47 2005 => System found infected with Alexa Spyware/Adware ({c95fe080-8f5d-11d2-a20b-00aa003c157a})! Action taken: No Action Taken.
Mon Apr 25 17:58:47 2005 => File System Found infected by "Alexa Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:47 2005 => System found infected with Gator Spyware/Adware ({21FFB6C0-0DA1-11D5-A9D5-00500413153C})! Action taken: No Action Taken.
Mon Apr 25 17:58:47 2005 => File System Found infected by "Gator Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:48 2005 => System found infected with gator.com Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:58:48 2005 => File System Found infected by "gator.com Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:48 2005 => Offending value found in HKCU\Software\WebSiteViewer !!!
Mon Apr 25 17:58:48 2005 => System found infected with WebSiteViewer Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:58:48 2005 => File System Found infected by "WebSiteViewer Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:58:48 2005 => Offending value found in HKCU\Software\morpheus !!!
Mon Apr 25 17:58:48 2005 => System found infected with morpheus Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:58:48 2005 => File System Found infected by "morpheus Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:38 2005 => File System Found infected by "Alexa Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:38 2005 => System found infected with Gator Spyware/Adware ({21FFB6C0-0DA1-11D5-A9D5-00500413153C})! Action taken: No Action Taken.
Mon Apr 25 17:59:38 2005 => File System Found infected by "Gator Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKLM\Software\gator.com !!!
Mon Apr 25 17:59:39 2005 => System found infected with gator.com Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "gator.com Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKLM\Software\gatortest !!!
Mon Apr 25 17:59:39 2005 => System found infected with gatortest Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "gatortest Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKCU\Software\WebSiteViewer !!!
Mon Apr 25 17:59:39 2005 => System found infected with WebSiteViewer Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "WebSiteViewer Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 17:59:39 2005 => Offending value found in HKCU\Software\morpheus !!!
Mon Apr 25 17:59:39 2005 => System found infected with morpheus Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 17:59:39 2005 => File System Found infected by "morpheus Spyware/Adware" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:38:06 2005 => File C:\WINDOWS\SYSTEM\WER8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:38:22 2005 => File C:\WINDOWS\SYSTEM\WER8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:22 2005 => {CF021F40-3E14-23A5-CBA2-7173706D8274} = C:\WINDOWS\SYSTEM\SPM8274.DLL
Mon Apr 25 18:38:22 2005 => Scanning File C:\WINDOWS\SYSTEM\SPM8274.DLL
Mon Apr 25 18:38:22 2005 => File C:\WINDOWS\SYSTEM\SPM8274.DLL infected by "Backdoor.Win32.Agent.en" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => System found infected with Alexa Spyware/Adware ({c95fe080-8f5d-11d2-a20b-00aa003c157a})! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "Alexa Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => System found infected with Gator Spyware/Adware ({21FFB6C0-0DA1-11D5-A9D5-00500413153C})! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "Gator Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => Offending value found in HKLM\Software\gator.com !!!
Mon Apr 25 18:38:30 2005 => System found infected with gator.com Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "gator.com Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:30 2005 => Offending value found in HKLM\Software\gatortest !!!
Mon Apr 25 18:38:30 2005 => System found infected with gatortest Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:30 2005 => File System Found infected by "gatortest Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:31 2005 => Offending value found in HKCU\Software\WebSiteViewer !!!
Mon Apr 25 18:38:31 2005 => System found infected with WebSiteViewer Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:31 2005 => File System Found infected by "WebSiteViewer Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:38:31 2005 => Offending value found in HKCU\Software\morpheus !!!
Mon Apr 25 18:38:31 2005 => System found infected with morpheus Spyware/Adware! Action taken: No Action Taken.
Mon Apr 25 18:38:31 2005 => File System Found infected by "morpheus Spyware/Adware" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:42:35 2005 => File C:\WINDOWS\SYSTEM\srpcsrv32.dll infected by "Trojan-Downloader.Win32.Adload.g" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:42:35 2005 => Scanning File C:\WINDOWS\SYSTEM\wldr.dll
Mon Apr 25 18:42:35 2005 => File C:\WINDOWS\SYSTEM\wldr.dll infected by "Trojan-Downloader.Win32.Agent.le" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:45:24 2005 => File c:\windows\TEMP\puf21hz4.php infected by "Trojan.Win32.Delf.bj" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:45:29 2005 => File c:\windows\TEMP\wldr.dll infected by "Trojan-Downloader.Win32.Agent.kf" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:05 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[1] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken

Mon Apr 25 18:46:06 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[2] infected by "Trojan-Dropper.Win32.Small.oy" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:06 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[3] infected by "Trojan-Dropper.Win32.Agent.ii" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:07 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\P183IEF8\$file[4] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:08 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[1] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:08 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[2]
Mon Apr 25 18:46:09 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[2] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:09 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[1].exe
Mon Apr 25 18:46:10 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[1].exe infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:10 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[3]
Mon Apr 25 18:46:11 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[3] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:11 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[5]
Mon Apr 25 18:46:11 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[5] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:11 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[4]
Mon Apr 25 18:46:12 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[4] infected by "Trojan-Dropper.Win32.Agent.ii" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:12 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[6]
Mon Apr 25 18:46:12 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[6] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:12 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[7]
Mon Apr 25 18:46:13 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[7] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:13 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[8]
Mon Apr 25 18:46:13 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[8] infected by "Trojan-Dropper.Win32.Agent.ii" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:13 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[2].exe [**]
Mon Apr 25 18:46:13 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[9]
Mon Apr 25 18:46:14 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[9] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:14 2005 => Scanning File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[10]
Mon Apr 25 18:46:15 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[10] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:16 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\diamond2[4].exe infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.
Mon Apr 25 18:46:17 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[12] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Mon Apr 25 18:46:18 2005 => File C:\WINDOWS\LOCALS~1\TEMPOR~1\CONTENT.IE5\KH2BCDER\$file[11] infected by "Trojan-Dropper.Win32.Small.vn" Virus. Action Taken: No Action Taken.

Haui45 25.04.2005 19:13
Ich würde das System neu aufsetzen. -> http://www.trojaner-board.de/showpos...28&postcount=2

Grund u.a. Angent.en
Auch wenn es leider noch keine detaillierte Beschreibung zu diesem Schädling gibt, kann man sich doch ziemlich sicher sein, dass er über Backdoorfunktionalität verfügt.


Alle Zeitangaben in WEZ +1. Es ist jetzt 00:12 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131