Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Plagegeister aller Art und deren Bekämpfung: Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 02.09.2008, 17:46   #1
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Hallo!
Nachdem mir schon damals so wunderbar geholfen worden ist, dachte ich mal ich wende mich wieder a euch diesmal mit einem Problem, wo ich nicht mal irgendeinen Anti Vrus Programm installieren kann, auch nicht escan usw... das einzige was ich geschafft habe ist Spyware Terminator und habe die aktuellste Log hier gleich mitgepostet!

Es wirkt sich sogar so aus das ich nicht mal gscheit Wörter tippen kann da einfach Buchstaben vergessen werden.....?
Und alles ist total lnsam!

Würde mich echt freuen wenn mir jemand weiterhelfen kann vorallem wenn ich kine Antvirus oder AntiSpywares installieren kann...

Danke schon mal und Grüsse


Logfile of Spyware Terminator v2.3.0.488 (db:2.008.029.000)
Scan Time: 30.08.2008 14:20:52 length: 11434 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: %Custom_Scan%
Scanned Objects: 106027 (Critical:6)
Filter: No System items, No Safe items, No Invalid items

Running Processes
wintems.exe : C:\WINDOWS\system32\wintems.exe
usnsvc.exe [Microsoft Corporation] : C:\Programme\Windows Live\Messenger\usnsvc.exe
WLLoginProxy.exe [Microsoft Corporation] : C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLLoginProxy.exe

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = h***://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60076
R - HKLM\Software\Microsoft\Internet Explorer\Main, SearchAssistant = h***://www.crawler.com/search/ie.aspx?tb_id=60076
R - HKLM\Software\Microsoft\Internet Explorer\Main, CustomizeSearch = h***://dnl.crawler.com/support/sa_customize.aspx?TbId=60076
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = h***://go.microsoft.com/fwlink/?LinkId=69157
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = ht***://www.crawler.com/search/ie.aspx?tb_id=60076
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = h***://dnl.crawler.com/support/sa_customize.aspx?TbId=60076
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =

BHO
02 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - [Adobe Systems Incorporated] : C:\Programme\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
02 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - [RealPlayer] : C:\Programme\Real\RealPlayer\rpbrowserrecordplugin.dll
02 - BHO: - {364F60FB-D83E-45D0-ABCB-5E512FAF8BD3} - : C:\WINDOWS\system32\rqRHWnoN.dll
02 - BHO: - {7a85814d-1d7b-44f2-9b8f-6fbccad1a174} - : C:\WINDOWS\system32\easjye.dll
02 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - [Google Inc.] : C:\Programme\Google\GoogleToolbarNotifier\4.1.509.6972\swg.dll

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, MsnMsgr : [Microsoft Corporation] : C:\Programme\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, b4e75804 : : C:\WINDOWS\system32\fdjjuusp.dll
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, BMb7d46b98 : : C:\WINDOWS\system32\rvijxoss.dll
04 - Startup: : C:\Dokumente und Einstellungen\not yet known\Startmenü\Programme\Autostart\desktop.ini
04 - Startup: : C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\desktop.ini
04 - Startup: : C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Microsoft Office.lnk
04 - Startup: %STARTUPALL%\Microsoft Office.lnk [Microsoft Corporation] : C:\Programme\Microsoft Office\Office\OSA9.EXE
04 - Startup: : C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Ulead Photo Express Calendar Checker für Meine Spezielle Edition.lnk
04 - Startup: %STARTUPALL%\Ulead Photo Express Calendar Checker für Meine Spezielle Edition.lnk [Ulead Systems, Inc.] : C:\Programme\Ulead Systems\Ulead Photo Express 4.0 Meine Spezielle Edition\CalCheck.exe

Shell Extensions
RealOne Player Context Menu Class - {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} - [RealNetworks, Inc.] : C:\Programme\Real\RealPlayer\rpshell.dll

Protocol Handler
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
- {828030A1-22C1-4009-854F-8E305202313F} - [Microsoft Corporation] : C:\Programme\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll

Services
23 - [ESS Technology Inc.] : C:\WINDOWS\system32\drivers\es1969.sys
23 - [AVIRA GmbH] : C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
23 - [Microsoft Corporation] : C:\Programme\Windows Live\Messenger\usnsvc.exe

Threat Files
<Email-Worm.Bagle.of> : C:\WINDOWS\system32\wintems.exe
<Adware.Casino-22> : C:\Dokumente und Einstellungen\not yet known\Lokale Einstellungen\Temp\Jac21.tmp
<Adware.Casino-22> : C:\Dokumente und Einstellungen\not yet known\Lokale Einstellungen\Temp\vir20.tmp
<Email-Worm.Bagle.of> : C:\Dokumente und Einstellungen\not yet known\Lokale Einstellungen\Temporary Internet Files\Content.IE5\SPLOGSRU\b64_3[1].jpg
<Email-Worm.Bagle.of> : C:\Dokumente und Einstellungen\not yet known\Lokale Einstellungen\Temporary Internet Files\Content.IE5\XVSF4X45\b64_3[1].jpg

Advanced Files Report
%PROGRAMFILES%\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [Adobe Systems Incorporated] [AcroIEHelper Library] MD5=FC7850324464E4D19A24A03D882B5CC4 SIZE=54248
%PROGRAMFILES%\Real\RealPlayer\lang\rpbrp_de.dll [RealNetworks, Inc.] [RealPlayer] MD5=7D7B95CA507C225FF826752B25679A09 SIZE=184320
%SYSDIR%\Macromed\Flash\Flash9f.ocx [Adobe Systems, Inc.] [Shockwave Flash] MD5=48FDF435B8595604E54125B321924510 SIZE=2991488
%PROGRAMFILES%\Windows Live\Messenger\usnsvc.exe [Microsoft Corporation] [Messenger] MD5=9D19B042A4FD5C02195071EA2FE0C821 SIZE=98328
%COMMONFILES%\Microsoft Shared\Windows Live\WLLoginProxy.exe [Microsoft Corporation] [Microsoft® Windows Live Login Helper] MD5=7FA0AA2F3DABA5BEB2C4AC1EEC054EFA SIZE=118336
%STARTUP%\desktop.ini MD5=D6A6856702E3F0953E7246A9B4A9FE35 SIZE=84
%STARTUPALL%\desktop.ini MD5=D6A6856702E3F0953E7246A9B4A9FE35 SIZE=84
%STARTUPALL%\Microsoft Office.lnk MD5=84B79E111DC8803B31753ACF70578995 SIZE=1705
%PROGRAMFILES%\Microsoft Office\Office\OSA9.EXE [Microsoft Corporation] [Microsoft Office 2000] MD5=C87B4D51E591D7D2F9A867D4C2C932C4 SIZE=65588
%STARTUPALL%\Ulead Photo Express Calendar Checker für Meine Spezielle Edition.lnk MD5=7C682DBE2DC5A545E2B2230E519DAEE2 SIZE=2051
%PROGRAMFILES%\Ulead Systems\Ulead Photo Express 4.0 Meine Spezielle Edition\CalCheck.exe [Ulead Systems, Inc.] [Calendar Checker Application] MD5=CDF5DE778D64B6B3C76A75AE19AEFE4E SIZE=57344
%SYSDIR%\ljJBRLCT.dll
%PROGRAMFILES%\Real\RealPlayer\rpshell.dll [RealNetworks, Inc.] [RealPlayer] MD5=D3EA9C1687A12608BF4D505EDAC585D6 SIZE=63040
ljJBRLCT.dll
%SYSDIR%\svchost.exe -k netsvcs
%SYSDIR%\svchost -k DcomLaunch
%SYSDIR%\svchost.exe -k NetworkService
%SYSDIR%\drivers\es1969.sys [ESS Technology Inc.] [ESS ES1969] MD5=B9F03760AF557348E17A5BB5FFEB73C0 SIZE=72192
%SYSDIR%\svchost.exe -k LocalService
%SYSDIR%\svchost -k rpcss
%SYSDIR%\DRIVERS\ssmdrv.sys [AVIRA GmbH] MD5=71D609C5DFF067906D930BDE031C4CFE SIZE=21248
%SYSDIR%\svchost.exe -k imgsvc
%PROGRAMFILES%\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll [Microsoft Corporation] [Messenger] MD5=56319E6B4D190A2DEB4463A9CE4D4F74 SIZE=66072
%SYSDIR%\drivers\srosa.sys MD5=306ED936D438D6B2CF5B7A9F2C741001 SIZE=119948
%PROGRAMFILES%\Java\jre1.6.0_07\bin\JdbcOdbc.dll [Sun Microsystems, Inc.] [Java(TM) Platform SE 6 U7] MD5=F708430AE09C4102933E24CD6D12780D SIZE=36352
%PROGRAMFILES%\Java\jre1.6.0_07\bin\dcpr.dll [Sun Microsystems, Inc.] [Java(TM) Platform SE 6 U7] MD5=D6E7FFCD38ECDFE4BD8DCE29D8D1A654 SIZE=143360
%PROGRAMFILES%\Java\jre1.6.0_07\bin\ioser12.dll [Sun Microsystems, Inc.] [Java(TM) Platform SE 6 U7] MD5=5CF15BC4493299F6645DB27B51278D2A SIZE=12800
%PROGRAMFILES%\Java\jre1.6.0_07\bin\javacpl.cpl [Sun Microsystems, Inc.] [Java(TM) Platform SE 6 U7] MD5=370716E3CA99E6A4346F272DA56017C1 SIZE=73728
%PROGRAMFILES%\Java\jre1.6.0_07\bin\policytool.exe [Sun Microsystems, Inc.] [Java(TM) Platform SE 6 U7] MD5=1C0C6888952D9EC22A7B5C6FAD0E8160 SIZE=25600
%SYSDIR%\mfc70.dll [Microsoft Corporation] [Microsoft® Visual Studio .NET] MD5=09AEF167EB1531E965053D0DCF6CC573 SIZE=974848

End of Report

Alt 02.09.2008, 17:54   #2
Tayk
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Also mit nem spyware terminator log kann man nicht alzu viel anfangen aber ich werds mal versuchen!

Ok da sind 2 dinge in den startups die mir nicht so sehr gefallen! Lade folgende dateien bei VirusTotal - Free Online Virus and Malware Scan hoch und poste den vollständigen bericht! Bin mir aber nicht sicher ob das funktioniert!

Zitat:
C:\WINDOWS\system32\fdjjuusp.dll
C:\WINDOWS\system32\rvijxoss.dll
C:\WINDOWS\system32\rqRHWnoN.dll
C:\WINDOWS\system32\easjye.dll
Habe aber noch andere möglichkeiten! Wenn das hochladen nicht funktioniert!
__________________
Alt 02.09.2008, 18:00   #3
nochdigger
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Hallo

Zitat:
Running Processes
wintems.exe : C:\WINDOWS\system32\wintems.exe
überprüfe dein System mit Blacklight
ftp://ftp.f-secure.com/anti-virus/tools/fsbl.exe
poste anschließend bitte das Log hierher.

MFG
__________________
__________________
Alt 02.09.2008, 18:02   #4
Tayk
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


@nochdigger war mein bisheriges vorgehen richtig? JA oder?

Alt 02.09.2008, 18:28   #5
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Danke für die schnellen Antworten hier mal die Info für Tyke und andere mach ich auch gleich



C:\WINDOWS\system32\fdjjuusp.dll

0 bytes size received / Se ha recibido un archivo vacio

_________________________________________________________________

C:\WINDOWS\system32\rvijxoss.dll

Datei rvijxoss.dll empfangen 2008.09.02 19:15:52 (CET)
Status: Laden ... Wartend Warten Überprüfung Beendet Nicht gefunden Gestoppt


Ergebnis: 15/36 (41.67%)
Laden der Serverinformationen...
Ihre Datei wartet momentan auf Position: ___.
Geschätzte Startzeit is zwischen ___ und ___ .
Dieses Fenster bis zum Abschluss des Scans nicht schließen.
Der Scanner, welcher momentan Ihre Datei bearbeitet ist momentan gestoppt. Wir warten einige Sekunden um Ihr Ergebnis zu erstellen.
Falls Sie längern als fünf Minuten warten, versenden Sie bitte die Datei erneut.
Ihre Datei wird momentan von VirusTotal überprüft,
Ergebnisse werden sofort nach der Generierung angezeigt.
Filter Drucken der Ergebnisse
Datei existiert nicht oder dessen Lebensdauer wurde überschritten
Dienst momentan gestoppt. Ihre Datei befindet sich in der Warteschlange (position: ). Diese wird abgearbeitet, wenn der Dienst wieder startet.

SIe können auf einen automatischen reload der homepage warten, oder ihre email in das untere formular eintragen. Klicken Sie auf "Anfragen", damit das System sie benachrichtigt wenn die Überprüfung abgeschlossen ist.
Email:


Antivirus Version letzte aktualisierung Ergebnis
AhnLab-V3 2008.9.3.0 2008.09.02 -
AntiVir 7.8.1.23 2008.09.02 TR/Crypt.XPACK.Gen
Authentium 5.1.0.4 2008.09.02 -
Avast 4.8.1195.0 2008.09.02 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.09.02 Generic11.OTM
BitDefender 7.2 2008.09.02 -
CAT-QuickHeal 9.50 2008.09.02 -
ClamAV 0.93.1 2008.09.02 -
DrWeb 4.44.0.09170 2008.09.02 -
eSafe 7.0.17.0 2008.09.02 Suspicious File
eTrust-Vet 31.6.6064 2008.09.02 -
Ewido 4.0 2008.09.02 -
F-Prot 4.4.4.56 2008.09.02 -
F-Secure 8.0.14332.0 2008.09.02 -
Fortinet 3.14.0.0 2008.09.02 -
GData 19 2008.09.02 Win32:Trojan-gen
Ikarus T3.1.1.34.0 2008.09.02 Win32.Rigel.6468
K7AntiVirus 7.10.437 2008.09.02 -
Kaspersky 7.0.0.125 2008.09.02 -
McAfee 5374 2008.09.01 -
Microsoft 1.3807 2008.09.02 Trojan:Win32/Vundo.gen!R
NOD32v2 3408 2008.09.02 a variant of Win32/Adware.Virtumonde.NAO
Norman 5.80.02 2008.09.02 Vundo.gen214
Panda 9.0.0.4 2008.09.02 Suspicious file
PCTools 4.4.2.0 2008.09.02 -
Prevx1 V2 2008.09.02 Fraudulent Security Program
Rising 20.60.11.00 2008.09.02 Trojan.Clicker.Win32.Agent.bhk
Sophos 4.33.0 2008.09.02 Mal/Generic-A
Sunbelt 3.1.1592.1 2008.08.30 -
Symantec 10 2008.09.02 -
TheHacker 6.3.0.8.069 2008.09.01 -
TrendMicro 8.700.0.1004 2008.09.02 PAK_Generic.001
VBA32 3.12.8.4 2008.09.02 -
ViRobot 2008.9.2.1361 2008.09.02 -
VirusBuster 4.5.11.0 2008.09.02 -
Webwasher-Gateway 6.6.2 2008.09.02 Trojan.Crypt.XPACK.Gen
weitere Informationen
File size: 103424 bytes
MD5...: 260225fe134edcb837caa5ba286f4bf6
SHA1..: b3ee0958927857eb4da62e541b5067020bb8f0fc
SHA256: 85ffc8acae217a423d048b6c26923beeb863ba1f60facbfd3f01b6a4f09f23af
SHA512: 18da9e9a29280d934b1e74b35fb4fa06a50b3e83bde831c523036e0fb9619dd1
8eddd63fc8880e7a7bac1419b0a3955514e569c4319d521fba56396066a5b57a
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x10030000
timedatestamp.....: 0xedde081 (Sat Nov 26 19:52:33 1977)
machinetype.......: 0x14c (I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.sforce3 0x1000 0x1a000 0x5a00 7.96 970d91f53e6e476e321033fa83d6d78f
.RDATA 0x1b000 0x13000 0x12600 7.99 526503c4d480397dbfa992aaf58ab3c5
.sforce3 0x2e000 0x1000 0x400 7.18 97ba7af363399a08b89482c92e5409b7
.idata 0x2f000 0x1000 0x200 2.06 c27ee6a644111e3d01b05fc2fbbafcd3
.brick 0x30000 0x1000 0x800 6.58 404265a73d5ad21e9237301c5581069b

( 1 imports )
> KERNEL32.dll: GetFileSize, UnmapViewOfFile, WriteFile, lstrcatA, lstrlenA, ExitProcess

( 0 exports )

Prevx info: h***://info.prevx.com/aboutprogramtext.asp?PX5=CA136DF7002FAB189467015FC0AC9700A3BFA007

_______________________________________________________________


C:\WINDOWS\system32\rqRHWnoN.dll
0 bytes size received / Se ha recibido un archivo vacio

_______________________________________________________________


C:\WINDOWS\system32\easjye.dll

Datei easjye.dll_ empfangen 2008.09.02 19:21:38 (CET)
Status: Laden ... Wartend Warten Überprüfung Beendet Nicht gefunden Gestoppt


Ergebnis: 19/35 (54.29%)
Laden der Serverinformationen...
Ihre Datei wartet momentan auf Position: 1.
Geschätzte Startzeit is zwischen 43 und 62 Sekunden.
Dieses Fenster bis zum Abschluss des Scans nicht schließen.
Der Scanner, welcher momentan Ihre Datei bearbeitet ist momentan gestoppt. Wir warten einige Sekunden um Ihr Ergebnis zu erstellen.
Falls Sie längern als fünf Minuten warten, versenden Sie bitte die Datei erneut.
Ihre Datei wird momentan von VirusTotal überprüft,
Ergebnisse werden sofort nach der Generierung angezeigt.
Filter Drucken der Ergebnisse
Datei existiert nicht oder dessen Lebensdauer wurde überschritten
Dienst momentan gestoppt. Ihre Datei befindet sich in der Warteschlange (position: ). Diese wird abgearbeitet, wenn der Dienst wieder startet.

SIe können auf einen automatischen reload der homepage warten, oder ihre email in das untere formular eintragen. Klicken Sie auf "Anfragen", damit das System sie benachrichtigt wenn die Überprüfung abgeschlossen ist.
Email:


Antivirus Version letzte aktualisierung Ergebnis
AhnLab-V3 2008.9.3.0 2008.09.02 -
AntiVir 7.8.1.23 2008.09.02 HEUR/Crypted
Authentium 5.1.0.4 2008.09.02 -
Avast 4.8.1195.0 2008.09.02 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.09.02 Generic11.PLJ
BitDefender 7.2 2008.09.02 -
CAT-QuickHeal 9.50 2008.09.02 -
ClamAV 0.93.1 2008.09.02 -
DrWeb 4.44.0.09170 2008.09.02 -
eSafe 7.0.17.0 2008.09.02 Suspicious File
eTrust-Vet 31.6.6064 2008.09.02 -
Ewido 4.0 2008.09.02 -
F-Prot 4.4.4.56 2008.09.02 -
F-Secure 8.0.14332.0 2008.09.02 AdWare.Win32.SuperJuan.deq
Fortinet 3.14.0.0 2008.09.02 -
GData 19 2008.09.02 Win32:Trojan-gen
Ikarus T3.1.1.34.0 2008.09.02 Win32.Rigel.6468
K7AntiVirus 7.10.437 2008.09.02 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2008.09.02 not-a-virus:AdWare.Win32.SuperJuan.deq
McAfee 5375 2008.09.02 Vundo
Microsoft 1.3807 2008.09.02 Trojan:Win32/Vundo.gen!R
NOD32v2 3408 2008.09.02 a variant of Win32/Adware.Virtumonde.NAO
Norman 5.80.02 2008.09.02 Vundo.gen214
Panda 9.0.0.4 2008.09.02 Generic Trojan
PCTools 4.4.2.0 2008.09.02 -
Prevx1 V2 2008.09.02 Cloaked Malware
Rising 20.60.11.00 2008.09.02 Trojan.Clicker.Win32.Agent.bhk
Sophos 4.33.0 2008.09.02 Sus/Virtum-B
Sunbelt 3.1.1592.1 2008.08.30 -
Symantec 10 2008.09.02 -
TheHacker 6.3.0.8.069 2008.09.01 -
TrendMicro 8.700.0.1004 2008.09.02 PAK_Generic.001
ViRobot 2008.9.2.1361 2008.09.02 -
VirusBuster 4.5.11.0 2008.09.02 -
Webwasher-Gateway 6.6.2 2008.09.02 Heuristic.Crypted
weitere Informationen
File size: 110592 bytes
MD5...: f2769cba3c26a625574750c7191266fd
SHA1..: 759d025b949979eac979202de3fa83f7dd6d1225
SHA256: 2b59b02bdec220cebf15ddb3e8f64531b575a486e4a7a7317b5d706f075b9ba4
SHA512: 5e2d627e8a9ce55d034040df069ffebc2d6b5c862d599037f89df9a85528c6a6
02a957501fca258edcc9667ae52b32a403253ee2f2307d2685115183092f237e
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1003a000
timedatestamp.....: 0x10437fc6 (Fri Aug 25 02:11:18 1978)
machinetype.......: 0x14c (I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.sforce3 0x1000 0x23000 0x6000 7.94 abf9821046db863d887a45f98139fe11
.RDATA 0x24000 0x14000 0x13c00 8.00 3e9c182d1230b4faaebac68f47bb2c49
.sforce3 0x38000 0x1000 0x400 7.23 6d8eebb85b6f0397aa345416a3ff738d
.idata 0x39000 0x1000 0x200 2.71 0bd608bb07413a8f03d089df6e393e2a
.brick 0x3a000 0x1000 0x800 6.40 5a9c81b6b6c1850583c92633b8b3c538

( 1 imports )
> KERNEL32.dll: EnumResourceTypesA, ExitProcess, GetStartupInfoA, GetTimeFormatA, GetVersion, OpenFile, SetEndOfFile, lstrcmpiA

( 0 exports )

Prevx info: h***://info.prevx.com/aboutprogramtext.asp?PX5=E874801400DAC071B0C60196BEBB860076A1E9DD


Alt 02.09.2008, 19:01   #6
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


srry das so lang dauert aber er scannt noch immer....

Alt 02.09.2008, 19:45   #7
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


So, ich hab nun mit Blacklight gscannt hat prima funktioniert allerdings 451 Items entdeckt??? Ich hab vorerst nichts gelöscht sondern mal nur dieLOG kopiert!



09/02/08 19:31:44 [Info]: BlackLight Engine 1.0.70 initialized
09/02/08 19:31:44 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/02/08 19:31:45 [Note]: 7019 4
09/02/08 19:31:45 [Note]: 7005 0
09/02/08 19:31:59 [Note]: 7006 0
09/02/08 19:31:59 [Note]: 7011 2524
09/02/08 19:32:00 [Note]: 7035 0
09/02/08 19:32:06 [Note]: 7026 0
09/02/08 19:32:11 [Note]: 7026 0
09/02/08 19:32:12 [Note]: 7024 3
09/02/08 19:32:12 [Info]: Hidden process: C:\WINDOWS\system32\drivers\hldrrr.exe
09/02/08 19:32:19 [Note]: FSRAW library version 1.7.1024
09/02/08 19:44:32 [Info]: Hidden file: c:\Programme\Movie Maker\Shared\Empty.txt
09/02/08 19:44:32 [Note]: 10002 3
09/02/08 19:44:32 [Info]: Hidden file: c:\Programme\Movie Maker\Shared\Filters.xml
09/02/08 19:44:32 [Note]: 10002 3
09/02/08 19:44:32 [Info]: Hidden file: c:\Programme\Movie Maker\Shared\news.png
09/02/08 19:44:32 [Note]: 10002 3
09/02/08 19:44:32 [Info]: Hidden file: c:\Programme\Movie Maker\Shared\paint.png
09/02/08 19:44:32 [Note]: 10002 3
09/02/08 19:44:32 [Info]: Hidden file: c:\Programme\Movie Maker\Shared\Profiles\Blank.txt
09/02/08 19:44:32 [Note]: 10002 3
09/02/08 19:44:32 [Info]: Hidden file: c:\Programme\Movie Maker\Shared\Sample1.jpg
09/02/08 19:44:32 [Note]: 10002 3
09/02/08 19:44:32 [Info]: Hidden file: c:\Programme\Movie Maker\Shared\Sample2.jpg
09/02/08 19:44:32 [Note]: 10002 3
09/02/08 19:44:32 [Note]: 10002 2
09/02/08 19:44:32 [Note]: 10002 2
09/02/08 20:15:23 [Note]: 10002 2
09/02/08 20:15:23 [Note]: 10002 2
09/02/08 20:21:04 [Info]: Hidden file: c:\WINDOWS\system32\mdelk.exe
09/02/08 20:21:04 [Note]: 10002 2
09/02/08 20:21:04 [Info]: Hidden file: c:\WINDOWS\system32\wintems.exe
09/02/08 20:21:04 [Note]: 10002 2
09/02/08 20:22:13 [Info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys
09/02/08 20:22:13 [Note]: 10002 2
09/02/08 20:22:13 [Info]: Hidden file: C:\WINDOWS\system32\drivers\hldrrr.exe
09/02/08 20:22:13 [Note]: 10002 2
09/02/08 20:22:13 [Info]: Hidden file: c:\WINDOWS\system32\drivers\mdelk.exe
09/02/08 20:22:13 [Note]: 10002 2
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\100843.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\101031.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1014250.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\101765.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\102031.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\102078.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1020937.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1029656.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1037218.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\103906.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\104687.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1055796.exe
09/02/08 20:22:34 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1068328.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1074531.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1076781.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1079421.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\108000.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\108187.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\108406.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\109046.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\109250.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1095953.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\110062.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\110312.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1112968.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\111500.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:35 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1118796.exe
09/02/08 20:22:35 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\111906.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1120000.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1120421.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\113437.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\113718.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\114875.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\255656.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\256515.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\257359.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\258000.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\260015.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\263312.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\266265.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\267890.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\270390.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\274406.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2749109.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2755125.exe
09/02/08 20:22:36 [Note]: 10002 3
09/02/08 20:22:36 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2758984.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\277343.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2793234.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\279781.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\280156.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\280750.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\281250.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1353406.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\135671.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1359718.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1364265.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1366281.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\137062.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\137640.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\137890.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:37 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1379625.exe
09/02/08 20:22:37 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1382078.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\138265.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\138359.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1384140.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\138953.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\139750.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1412140.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1415625.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\141750.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\141859.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\426328.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\428093.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\436265.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\439406.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\440937.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:38 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\456984.exe
09/02/08 20:22:38 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\478859.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\479359.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\494234.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\497703.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\500031.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\500359.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\503593.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\504859.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\519500.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\526734.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\527562.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\529046.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\538156.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\538515.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\558843.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\115359.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\115625.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:39 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1161953.exe
09/02/08 20:22:39 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\116250.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\116875.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\117406.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\117515.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\117546.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1176203.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\117875.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\118890.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\120062.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\120203.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1209250.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1218031.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\122296.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\122312.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1223140.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1224359.exe
09/02/08 20:22:40 [Note]: 10002 3
09/02/08 20:22:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\122750.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1242734.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1244140.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1247468.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\201468.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\202671.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2031250.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2032781.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\204187.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\204781.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2052156.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\205343.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:41 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2079671.exe
09/02/08 20:22:41 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2088062.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\208812.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2089828.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\210609.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2107406.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\211546.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\212218.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\212359.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\212734.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\213156.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\215375.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\216640.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2175984.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:42 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\218515.exe
09/02/08 20:22:42 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2185781.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\218828.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\218906.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\220609.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2207609.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\115078.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1255625.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\134406.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1432000.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1497656.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\163312.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\201062.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2209953.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\255484.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\281796.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3046937.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\350421.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\423828.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\561843.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\827234.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\911640.exe
09/02/08 20:22:43 [Note]: 10002 3
09/02/08 20:22:43 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\305046.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\305515.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\310531.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\313421.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\313890.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\315484.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\315593.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3164890.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\319234.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\320812.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\321734.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\322125.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\323265.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\326656.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:44 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\327187.exe
09/02/08 20:22:44 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\328531.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3291453.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\329765.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\330281.exe

Alt 02.09.2008, 19:47   #8
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Teil 2



09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\331140.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\332265.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\332843.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\335046.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\338203.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\340125.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\341468.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\342859.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\345375.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\347406.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:45 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\348609.exe
09/02/08 20:22:45 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\84359.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\84734.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\847781.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\848031.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\849609.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\850578.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\85578.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\858031.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\86140.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\863484.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:46 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\864671.exe
09/02/08 20:22:46 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\88484.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\887750.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\895656.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\898421.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\899578.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\89984.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\902671.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\906328.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1499437.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15018468.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\150187.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:47 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\150234.exe
09/02/08 20:22:47 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15025406.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15044578.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\150625.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1506406.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15071687.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\151359.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15145062.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15156609.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\151625.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15222296.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\152546.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15278687.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1528890.exe

Alt 02.09.2008, 19:49   #9
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Teil 3


09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\153015.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\15321500.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\158828.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\158953.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1591421.exe
09/02/08 20:22:48 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\160750.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\160906.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\162125.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\162359.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\162406.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\221968.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2253437.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\225781.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\227843.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\228250.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\230265.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\230421.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\232843.exe
09/02/08 20:22:49 [Note]: 10002 3
09/02/08 20:22:49 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\232984.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2331093.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\233328.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\233703.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\234484.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\235406.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\237390.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\238812.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\239906.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\240000.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\240343.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\244546.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\244937.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\244968.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:50 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\245203.exe
09/02/08 20:22:50 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2455656.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\246906.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\247718.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\249125.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\249828.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2513734.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\251937.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2524671.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2528703.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\253500.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\253703.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2540859.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2544562.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:51 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\254875.exe
09/02/08 20:22:51 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\163359.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1636921.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\164890.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\166000.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1660765.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\167093.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\168781.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\169515.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\170343.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\170546.exe
09/02/08 20:22:52 [Note]: 10002 3
09/02/08 20:22:52 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\172109.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\174265.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\174671.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\175515.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\176156.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\176375.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\178312.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\178796.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\179250.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\179281.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\184234.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1848156.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1850140.exe
09/02/08 20:22:53 [Note]: 10002 3
09/02/08 20:22:53 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\185968.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\188421.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1890421.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\189390.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1902156.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\191500.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1923984.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\193562.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\195687.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1967640.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\197453.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\197671.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\198406.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\199734.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\351968.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:54 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\354234.exe
09/02/08 20:22:54 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\355500.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\360718.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\362671.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3633062.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\364593.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\370515.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3710750.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\374203.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3749468.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\380109.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\381687.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\382906.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\385828.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\386500.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\389218.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\391296.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:55 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\398859.exe
09/02/08 20:22:55 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\400015.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\403515.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\407812.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\413093.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\415406.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\416234.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\417187.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\420656.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\562453.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\567562.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\590625.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\594343.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\595500.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\608125.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\618968.exe
09/02/08 20:22:56 [Note]: 10002 3
09/02/08 20:22:56 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\638546.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\64328.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\64390.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\665578.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\666937.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\706250.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\717156.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\718609.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\72296.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\758453.exe

Alt 02.09.2008, 19:51   #10
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Teil 4

09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\758500.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\768906.exe
09/02/08 20:22:57 [Note]: 10002 3
09/02/08 20:22:57 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\783187.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\805359.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\812921.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\816562.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\817390.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\822406.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\126859.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1271531.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1273125.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1278718.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1279031.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\128437.exe
09/02/08 20:22:58 [Note]: 10002 3
09/02/08 20:22:58 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\129953.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1303281.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\130343.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1312484.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1320531.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1323171.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1324875.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\132562.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\132593.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\133015.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:22:59 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1340531.exe
09/02/08 20:22:59 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1343765.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\91281.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\920828.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\92234.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\924609.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\926703.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\927640.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\929375.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\930671.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\931921.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\94140.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\94156.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\943187.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\94906.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\95390.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\969125.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\97281.exe
09/02/08 20:23:00 [Note]: 10002 3
09/02/08 20:23:00 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\977125.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\97765.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\97843.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\97875.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\98578.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2821343.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\283281.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\283750.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\283953.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\284375.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\284531.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\290125.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\2920406.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:01 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\292671.exe
09/02/08 20:23:01 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\293718.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\296015.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\297515.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\299359.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\299796.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\301781.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\301875.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3022765.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\303203.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\3042140.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\143531.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\144843.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\145250.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\145625.exe
09/02/08 20:23:02 [Note]: 10002 3
09/02/08 20:23:02 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1469453.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14724718.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14751312.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14753140.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14767359.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\147703.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14790734.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1480453.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1482015.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14859625.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\1488609.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\149046.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14922812.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\149250.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14935796.exe
09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\14965531.exe

Alt 02.09.2008, 19:52   #11
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Teil5

09/02/08 20:23:03 [Note]: 10002 3
09/02/08 20:23:03 [Note]: 10002 2
09/02/08 20:23:04 [Note]: 10002 2
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:04 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:05 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:06 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:07 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:08 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:09 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:10 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:11 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:12 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:13 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:14 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:15 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:16 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:17 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:18 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:19 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:20 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3

Alt 02.09.2008, 19:55   #12
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Und endlich letzter Teil 6


09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:21 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:22 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:23 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:24 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:25 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:26 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:27 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:28 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:29 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:30 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:31 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 3
09/02/08 20:24:32 [Note]: 10002 2
09/02/08 20:24:32 [Note]: 10002 2
09/02/08 20:33:58 [Note]: 2000 1012
09/02/08 20:33:58 [Note]: 2000 1012
09/02/08 20:33:58 [Note]: 2000 1012
09/02/08 20:33:58 [Note]: 2000 1012
09/02/08 20:33:58 [Note]: 2000 1012
09/02/08 20:39:57 [Note]: 7007 0




Sorry aber ist leider ser lang geworden!!!!

Alt 03.09.2008, 04:44   #13
nochdigger
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Hallo

leider ist es bestätigt
Zitat:
09/02/08 20:21:04 [Info]: Hidden file: c:\WINDOWS\system32\mdelk.exe
09/02/08 20:21:04 [Info]: Hidden file: c:\WINDOWS\system32\wintems.exe
09/02/08 20:22:13 [Info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys
09/02/08 20:22:13 [Info]: Hidden file: C:\WINDOWS\system32\drivers\hldrrr.exe
09/02/08 20:22:13 [Info]: Hidden file: c:\WINDOWS\system32\drivers\mdelk.exe
09/02/08 20:22:34 [Info]: Hidden file: c:\WINDOWS\system32\drivers\downld\100843.exe
der Beagle in seiner ganzen Pracht

Folge bitte dem Link zur Neuinstallation des Betriebssystems und anschließender Absicherung.
Ändere unbedingt alle deine Pass- und Kennwörter von einem sauberen Rechner aus oder direkt nach der Neuinstallation.
Sichere bitte keine ausführbare Dateien und Dateien aus unsicheren Quellen wie P2P.
Überprüfe deine Sicherung vor dem wiederverwenden mit einem aktuellem Antivirenprogramm.

MFG
__________________
Kein Support per PN - Bitte im Forum posten.

Alt 03.09.2008, 08:59   #14
oluwafemi
 
Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Standard

Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


Na super, na dahab ich mir ja was schönes eingefngen!
Muss ich doch zum Techniker, denn hab keine XP Cd!


Hey danke für deine Hilfe trotzdem!!!!!!!


LG Claudine

Antwort

Themen zu Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh
adobe, application, avira, content.ie5, dateien, download, drivers, einstellungen, escan, explorer, google, hijack, internet explorer, log, messenger, microsoft, problem, programm, programme, realplayer, software, spyware, spyware terminator, studio, svchost.exe, system, system32, temp, tippen, virus, visual studio, windows, windows\system32\drivers, wörter


« Hilfe!! Untedectet Backdoor trojaner!! | HILFE! TR/Dropper.gen »


Ähnliche Themen: Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh


  1. Trojan.Ransom.ED, Trojan.Agent.ED, Trojan.FakeMS.PRGen und Bublik b. durch Email erhalten?
    Plagegeister aller Art und deren Bekämpfung - 02.04.2013 (29)
  2. Bublik b.; Trojan.Ransom.ED; Trojan.Agent.ED und Trojan.FakeMS.PRGen in Email?
    Mülltonne - 28.03.2013 (0)
  3. Bundestrojaner Österreich und Win32/Bagle.gen.zip worm
    Log-Analyse und Auswertung - 18.07.2012 (3)
  4. Worm.Bagle entfernen mit Findykill
    Anleitungen, FAQs & Links - 26.12.2009 (1)
  5. C:\Windows\System 32\rtlb.exe von Trojan Remover erkannt und weitere Probleme.
    Log-Analyse und Auswertung - 06.12.2009 (12)
  6. Worm.KoobFace, Trojan.BHO auf dem System :(
    Plagegeister aller Art und deren Bekämpfung - 05.12.2009 (17)
  7. Wie gefährlich sind "I-Worm.Bagle.AAKP","Trojan.DL.Bagle.ABWF","Bagle.Gen 21"
    Plagegeister aller Art und deren Bekämpfung - 31.10.2009 (1)
  8. TR/Dldr.Bagle.aag - Wie kann ich feststellen, ob ext Festplatte auch befallen ist?
    Mülltonne - 04.09.2008 (0)
  9. Trojan-Downloader.Bagle und E-mail-Worm.Bagle
    Log-Analyse und Auswertung - 24.03.2008 (7)
  10. Worm/Bagle.srn Muß ich wirklich formatieren???
    Log-Analyse und Auswertung - 27.06.2007 (1)
  11. TR/Dldr.Bagle.GX + WORM/Bagle.GY.1 - Internet funktioniert nicht mehr richtig
    Plagegeister aller Art und deren Bekämpfung - 09.01.2007 (6)
  12. Email.Worm Bagle
    Plagegeister aller Art und deren Bekämpfung - 30.09.2006 (1)
  13. Email-Worm.Win32.Bagle.pac - alt aber noch resistent! Was kann ich tun?
    Plagegeister aller Art und deren Bekämpfung - 23.11.2005 (12)
  14. Email-Worm Win32 Bagle.pac - Logfile
    Mülltonne - 21.11.2005 (1)
  15. E-Mail-Worm.Win32.Bagle.bn!! Bitte helft mir!!!
    Plagegeister aller Art und deren Bekämpfung - 30.07.2005 (3)
  16. Remote Virenentfernung I-Worm.Bagle.Z?
    Plagegeister aller Art und deren Bekämpfung - 02.07.2004 (1)
  17. Bagle.B: Email-Wurm mit BackDoor (itw)
    Plagegeister aller Art und deren Bekämpfung - 17.02.2004 (0)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh - Hallo! Nachdem mir schon damals so wunderbar geholfen worden ist, dachte ich mal ich wende mich wieder a euch diesmal mit einem Problem, wo ich nicht mal irgendeinen Anti Vrus - Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh...
Archiv
Du betrachtest: Email-Worm.Bagle.of/Trojan.Toosrrr.SRR und weitere/System verweigert ua auch HijackTh auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129