Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Mülltonne (https://www.trojaner-board.de/muelltonne/)
-   -   Logs ohne Problembeschreibung (https://www.trojaner-board.de/85897-logs-ohne-problembeschreibung.html)

misterrow 08.05.2010 08:42
Logs ohne Problembeschreibung
 
hier mein eintrag






Zitat:
Malwarebytes' Anti-Malware 1.46
Malwarebytes

Datenbank Version: 4076

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

08.05.2010 09:40:52
mbam-log-2010-05-08 (09-40-52).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 139200
Laufzeit: 3 Minute(n), 20 Sekunde(n)

Infizierte Speicherprozesse: 2
Infizierte Speichermodule: 1
Infizierte Registrierungsschlüssel: 5
Infizierte Registrierungswerte: 6
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 21

Infizierte Speicherprozesse:
C:\Users\Winsch\AppData\Local\Temp\khvcol.exe (Trojan.Agent) -> Unloaded process successfully.
c:\lsass.exe (Trojan.Agent) -> Unloaded process successfully.

Infizierte Speichermodule:
C:\Users\Winsch\AppData\Local\Temp\9001.tmp (Rootkit.Agent) -> Delete on reboot.

Infizierte Registrierungsschlüssel:
HKEY_CLASSES_ROOT\AppID\{38061edc-40bb-4618-a8da-e56353347e6d} (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{a9722a0d-365f-47d2-b70b-37d046316d99} (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Antimalware Doctor (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Antimalware Doctor Inc (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\QZAIB7KITK (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\12046 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\14881 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\29007 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\8381 (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\50pfo (Trojan.VBKrypt) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\18035 (Trojan.Agent) -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Users\Winsch\AppData\Local\Temp\9001.tmp (Rootkit.Agent) -> Delete on reboot.
C:\Users\Winsch\AppData\Local\Temp\khvcol.exe (Trojan.Agent) -> Delete on reboot.
C:\Users\Winsch\AppData\Local\Temp\uxq9by.exe (Trojan.VBKrypt) -> Quarantined and deleted successfully.
C:\lsass.exe (Trojan.Agent) -> Delete on reboot.
C:\Windows\System32\eytlwwlfeie.dll (Adware.BHO) -> Quarantined and deleted successfully.
C:\Windows\System32\net.net (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Local\Temp\4hlbtmpqo.exe (Rootkit.Agent) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Local\Temp\97FF.tmp (Rootkit.Agent) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Local\Temp\9e0ebfe3.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Local\Temp\acworsxemn.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Local\Temp\E276.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Local\Temp\imiyus.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Local\Temp\lznlosmz.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Antimalware Doctor.lnk (Rogue.AntiMalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Irmgard\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Irmgard\Desktop\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Winsch\Desktop\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Roaming\Microsoft\Windows\Start Menu\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Winsch\AppData\Roaming\scvhost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job (Trojan.Downloader) -> Quarantined and deleted successfully.

misterrow 08.05.2010 09:14
hab auch mal meine OTL angehängt.. bitte um rat


herzlichen dank

Da GuRu 09.05.2010 14:58
Logs ohne Problembeschreibung
 
problembeschreibung fehlt: http://www.trojaner-board.de/69886-a...-beachten.html


Alle Zeitangaben in WEZ +1. Es ist jetzt 10:55 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19