Virtumonde / Tradedoubler?

Yamamoto

hier ist der report von avenger:
(DSS folgt gleich^^)

Logfile of The Avenger Version 2.0, (c) by Swandog46
Swandog46's Public Anti-Malware Tools

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "C:\WINDOWS\system32\AHNnTvut.ini2" deleted successfully.

Error: "C:\VundoFix Backups" is a folder, not a file!
Deletion of file "C:\VundoFix Backups" failed!
Status: 0xc00000ba (STATUS_FILE_IS_A_DIRECTORY)
--> use "Folders to delete:" instead of "Files to delete:" to delete a directory

File "C:\WINDOWS\system32\PXbcefii.ini2" deleted successfully.
File "C:\WINDOWS\system32\fLUvyGgh.ini2" deleted successfully.
File "C:\WINDOWS\wmplayer.exe" deleted successfully.

Error: registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{04E8FBE9-8894-4452-BFB3-B141FC66AB10}" not found!
Deletion of registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{04E8FBE9-8894-4452-BFB3-B141FC66AB10}" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E6C0586-8189-4427-9771-4DDF9FF92C08}" not found!
Deletion of registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E6C0586-8189-4427-9771-4DDF9FF92C08}" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{94E03D9F-F097-4FD8-B119-5B1C23655FC9}" not found!
Deletion of registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{94E03D9F-F097-4FD8-B119-5B1C23655FC9}" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B89C8268-74E0-4EDC-A269-1F6FF4155889}" not found!
Deletion of registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B89C8268-74E0-4EDC-A269-1F6FF4155889}" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EAFE29D5-F1D0-4829-872F-D456F516ED40}" not found!
Deletion of registry key "HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EAFE29D5-F1D0-4829-872F-D456F516ED40}" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: could not delete registry value "HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-|"Windows Media Player""
Deletion of registry value "HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-|"Windows Media Player"" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Completed script processing.

*******************

Finished! Terminate.