Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   backdoor.WIN32.ZAccess.mbs wurde gefunden system ausfall folge windwos nur noch über abgesicherten modus startbar (https://www.trojaner-board.de/138876-backdoor-win32-zaccess-mbs-wurde-gefunden-system-ausfall-folge-windwos-nur-noch-abgesicherten-modus-startbar.html)

saufbiene 29.07.2013 15:41
nein
er crasht immer wieder die letzte crashdumb habe ich hochgeladen
aber über einen scan wurde die registry gefunden das sie malware verseucht wurde und sie modifiziert wurde

schrauber 29.07.2013 15:49
Ich würd ne Reparaturinstallation machen, dafür brauchst aber die WIn DVD.

saufbiene 29.07.2013 15:52
mache ich gleich
und ich überprüfe mal die bootsektoren mit nen tool
glaube dort sind die boot reihenfolgena uch verändert
boah der virus da geht mir echt auf die nerven
es ist einfacher wissenschaftlich nen vortrag über nuklearfusion zu halten als den da endlich los zu werden grml -.-*

schrauber 29.07.2013 19:27
hehe :)

gib auf jeden Fall Rückmeldung :)

saufbiene 29.07.2013 19:49
so habe einige logs

einmal die registry gescant haben

roguekiller heißt es

Code:
RogueKiller V8.6.3 _x64_ [Jul 17 2013] durch Tigzy
mail: tigzyRK<at>gmail<dot>com

mail : tigzyRK<at>gmail<dot>com
Kommentare : hxxp://www.adlice.com/forum/
Webseite : hxxp://www.adlice.com/softwares/roguekiller/
Blog : hxxp://tigzyrk.blogspot.com/

Betriebssystem : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Gestartet in : Abgesicherter Modus mit Netzwerkunterstützung
Benutzer : Rolf [Admin Rechte]
Funktion : Scannen -- Datum : 07/29/2013 14:39:56
| ARK || FAK || MBR |

¤¤¤ Böswillige Prozesse : 0 ¤¤¤

¤¤¤ Registry-Einträge : 18 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\RunOnce : Malwarebytes Anti-Malware (cleanup) (rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [x][7][x]) -> GEFUNDEN
[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (:0) -> GEFUNDEN
[DNS] HKLM\[...]\CCSet\[...]\{3CD1F7EC-0802-45A4-AFC1-73A4D005F5B9} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CCSet\[...]\{75BC5AA5-7F30-41CC-B2FA-80D600FCEF44} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CCSet\[...]\{83AAB742-4324-4A41-B1E3-9AC77F1D09A4} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CCSet\[...]\{B571EA15-83F6-456F-A557-A15763023944} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS001\[...]\{3CD1F7EC-0802-45A4-AFC1-73A4D005F5B9} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS001\[...]\{75BC5AA5-7F30-41CC-B2FA-80D600FCEF44} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS001\[...]\{83AAB742-4324-4A41-B1E3-9AC77F1D09A4} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS001\[...]\{B571EA15-83F6-456F-A557-A15763023944} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS002\[...]\{3CD1F7EC-0802-45A4-AFC1-73A4D005F5B9} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS002\[...]\{75BC5AA5-7F30-41CC-B2FA-80D600FCEF44} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS002\[...]\{83AAB742-4324-4A41-B1E3-9AC77F1D09A4} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[DNS] HKLM\[...]\CS002\[...]\{B571EA15-83F6-456F-A557-A15763023944} : NameServer (193.189.244.225 193.189.244.206) -> GEFUNDEN
[HJ POL] HKCU\[...]\System : DisableRegistryTools (0) -> GEFUNDEN
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> GEFUNDEN
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> GEFUNDEN
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowMyGames (0) -> GEFUNDEN

¤¤¤ Geplante Tasks : 0 ¤¤¤

¤¤¤ Autostart-Einträge : 0 ¤¤¤

¤¤¤ Web-Browsern : 0 ¤¤¤

¤¤¤ Bestimmte Dateien / Ordner: ¤¤¤

¤¤¤ Treiber : [NICHT GELADEN 0x0] ¤¤¤

¤¤¤ Externe Hives: ¤¤¤

¤¤¤ Infektion :  ¤¤¤

¤¤¤ Hosts-Datei: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1      localhost


¤¤¤ MBR überprüfen: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HM641JI +++++
--- User ---
[MBR] af57ef91453947ea092ece83ef6a719e
[BSP] 0799a62714e7d23e739cedb7d4baa173 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 559355 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1145765888 | Size: 50000 Mo
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 1248165888 | Size: 1023 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Abgeschlossen : << RKreport[0]_S_07292013_143956.txt >>
RKreport[0]_S_07292013_121649.txt;RKreport[0]_S_07292013_143824.txt
mgconfi log

Code:
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0
Cached Online Validation Code: N/A, hr = 0x8007043c
Windows Product Key: *****-*****-FTV6P-PC7CX-8TFF7
Windows Product Key Hash: QfoshR+unxXfMlX5NFo0AMlrVUo=
Windows Product ID: 00359-OEM-8992687-00093
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.003
ID: {5DDB5543-4EB9-4652-9402-76AC2DFE6F5C}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Premium
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.130318-1533
TTS Error:
Validation Diagnostic:
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 114 Blocked VLK 2
Microsoft Office Professional Edition 2003 - 114 Blocked VLK 2
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files\Internet Explorer\iexplore.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->
File Mismatch: C:\Windows\system32\wat\watadminsvc.exe[Hr = 0x80070003]
File Mismatch: C:\Windows\system32\wat\npwatweb.dll[Hr = 0x80070003]
File Mismatch: C:\Windows\system32\wat\watux.exe[Hr = 0x80070003]
File Mismatch: C:\Windows\system32\wat\watweb.dll[Hr = 0x80070003]

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{5DDB5543-4EB9-4652-9402-76AC2DFE6F5C}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.003</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-8TFF7</PKey><PID>00359-OEM-8992687-00093</PID><PIDType>2</PIDType><SID>S-1-5-21-2776744706-1769970317-747777281</SID><SYSTEM><Manufacturer>MEDION        </Manufacturer><Model>E7216          </Model></SYSTEM><BIOS><Manufacturer>American Megatrends Inc.</Manufacturer><Version>0.04</Version><SMBIOSVersion major="2" minor="6"/><Date>20101118000000.000000+000</Date></BIOS><HWID>61A83807018400FC</HWID><UserLCID>0407</UserLCID><SystemLCID>0407</SystemLCID><TimeZone>Mitteleuropäische Zeit(GMT+01:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>MEDION</OEMID><OEMTableID>MEDIONAG</OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>114</Result><Products><Product GUID="{90110407-6000-11D3-8CFE-0150048383C9}"><LegitResult>114</LegitResult><Name>Microsoft Office Professional Edition 2003</Name><Ver>11</Ver><Val>59D1605114E3500</Val><Hash>vfZmaSmFPIYrLWTcZSZErUQg+Fo=</Hash><Pid>73932-640-0000106-57618</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="11" Result="114"/><App Id="16" Version="11" Result="114"/><App Id="18" Version="11" Result="114"/><App Id="19" Version="11" Result="114"/><App Id="1A" Version="11" Result="114"/><App Id="1B" Version="11" Result="114"/><App Id="44" Version="11" Result="114"/></Applications></Office></Software></GenuineResults> 

Spsys.log Content: 0x80070002

Licensing Data-->
Führen Sie auf einem Computer unter Microsoft Windows (keine Core Edition) "slui.exe 0x2a 0x8007043C" aus, um den Fehlertext anzuzeigen.
Fehler: 0x8007043C

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: N/A
HealthStatus: 0x0000000000000000
Event Time Stamp: N/A
ActiveX: Not Registered - 0x80040154
Admin Service: Not Registered - 0x80040154
HealthStatus Bitmask Output:


HWID Data-->
HWID Hash Current: MAAAAAIAAQABAAEAAQAAAAAAAwABAAEA6GHgNBU/bBrQWk4q1JN39pIfpviuSFxd

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information:
  ACPI Table Name        OEMID Value        OEMTableID Value
  APIC                        MEDION                MEDIONAG
  FACP                        MEDION                MEDIONAG
  HPET                        MEDION                MEDIONAG
  MCFG                        MEDION                MEDIONAG
  SSDT                        AMICPU                PROC
  SLIC                        MEDION                MEDIONAG
ck scanner log

Code:
CKScanner 2.3 - Additional Security Risks - These are not necessarily bad
c:\gamigo\lastchaosger\data\effect\ska\cracker\cracker.bm
c:\gamigo\lastchaosger\data\effect\ska\cracker\cracker.bmc
c:\gamigo\lastchaosger\data\effect\ska\cracker\cracker.smc
c:\gamigo\lastchaosger\data\effect\ska\cracker\cracker.tex
c:\gamigo\lastchaosger\data\effect\texture\crack2.tex
c:\gamigo\lastchaosger\data\effect\texture\earth_crack.tex
c:\gamigo\lastchaosger\data\effect\texture\n_crack.tex
c:\gamigo\lastchaosger\data\textures\effects\particles\firecracker.tex
c:\program files\gimp 2\share\gimp\2.0\patterns\cracked.pat
c:\program files (x86)\adobe dreamweaver cs6\configuration\taglibraries\html\keygen.vtm
c:\program files (x86)\corel\coreldraw essentials 4\custom data\bumpmap\cracks.cpt
c:\program files (x86)\corel\coreldraw essentials 4\custom data\tiles\cracks2m.cpt
c:\program files (x86)\cryptool\cracklib_win32.dll
c:\program files (x86)\cryptool\words\cracklib-words
c:\program files (x86)\cryptool\words\cracklib_dict.hwm
c:\program files (x86)\cryptool\words\cracklib_dict.pwd
c:\program files (x86)\cryptool\words\cracklib_dict.pwi
c:\program files (x86)\cryptool 2\onlinedocumentation\components\cryptool.plugins.dgk.dgkkeygenerator_en.html
c:\program files (x86)\cryptool 2\onlinedocumentation\components\cryptool.plugins.paillier.paillierkeygenerator_en.html
c:\program files (x86)\cryptool 2\onlinedocumentation\components\cryptool.plugins.rsa.rsakeygenerator_de.html
c:\program files (x86)\cryptool 2\onlinedocumentation\components\cryptool.plugins.rsa.rsakeygenerator_en.html
c:\program files (x86)\cryptool 2\onlinedocumentation\templates\cryptography.modern.asymmetric.paillier_keygenerator_de.html
c:\program files (x86)\cryptool 2\onlinedocumentation\templates\cryptography.modern.asymmetric.paillier_keygenerator_en.html
c:\program files (x86)\cryptool 2\onlinedocumentation\templates\cryptography.modern.asymmetric.rsa_keygenerator_de.html
c:\program files (x86)\cryptool 2\onlinedocumentation\templates\cryptography.modern.asymmetric.rsa_keygenerator_en.html
c:\program files (x86)\cryptool 2\templates\cryptography\modern\asymmetric\paillier_keygenerator.cwm
c:\program files (x86)\cryptool 2\templates\cryptography\modern\asymmetric\paillier_keygenerator.xml
c:\program files (x86)\cryptool 2\templates\cryptography\modern\asymmetric\rsa_keygenerator.cwm
c:\program files (x86)\cryptool 2\templates\cryptography\modern\asymmetric\rsa_keygenerator.xml
c:\program files (x86)\games-masters.com\cabal online (europe)\data\fx\src\ebm\crack_ice2_01.ebm
c:\program files (x86)\games-masters.com\cabal online (europe)\data\fx\src\ebm\crack_ice_1r.ebm
c:\program files (x86)\games-masters.com\cabal online (europe)\data\fx\src\ebm\crack_ice_1rd.ebm
c:\program files (x86)\games-masters.com\cabal online (europe)\data\fx\src\ebm\crack_ice_2r.ebm
c:\program files (x86)\games-masters.com\cabal online (europe)\data\fx\src\ebm\crack_ice_2rd.ebm
c:\program files (x86)\games-masters.com\cabal online (europe)\data\fx\src\ebm\crack_ice_3rd.ebm
c:\program files (x86)\games-masters.com\cabal online (europe)\data\fx\src\efx\exploe_crack1.efx
c:\program files (x86)\tera\client\s1game\cookedpc\art_data\packages\bg\extension_01\original\ex01_blackcrack_obj.gpk
c:\program files (x86)\tera\client\s1game\cookedpc\art_data\packages\ch\npc\npc_objects\blackcrack_bigstone.gpk
c:\program files (x86)\tera\client\s1game\cookedpc\art_data\packages\ch\npc\npc_objects\blackcrack_bigstone_ani.gpk
c:\program files (x86)\tera\client\s1game\cookedpc\art_data\packages\ch\npc\npc_objects\blackcrack_npc_obj.gpk
c:\program files (x86)\tera\client\s1game\cookedpc\art_data\packages\ch\npc\npc_objects\blackcrack_npc_obj_ani.gpk
c:\program files (x86)\tera\client\s1game\cookedpc\art_data\packages\ch\npc\npc_objects\black_crack_wall.gpk
c:\programdata\magix\samplitude music studio 2013\synth\data\loopdesigner\presets\crackle.ldp
c:\users\rolf\desktop\dj musik\various artists - dark & beautiful -symphonic metal 5 [2013 album]\various artists - dark & beautiful -symphonic metal 5 [2013 album] projekt crack.arr
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrack.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_237313_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrack.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_238351_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrack.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
c:\users\rolf\documents\battlefield play4free\mods\main\cache\{d7b78e66-4306-11cf-4e7e-d330b8c2c535}_239013_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
c:\users\rolf\pictures\magix\common\soundpools\basics_19ms\drums#hiphop 90\drums\crackling a.ogg.cha
c:\windows\system32\model\mvr_female_sklcracksaimed.ani
c:\windows\system32\model\mvr_female_sklcracksbow.ani
c:\windows\system32\model\mvr_female_sklcrackscontrolincrease01.ani
c:\windows\system32\model\mvr_female_sklcracksflamea.ani
c:\windows\system32\model\mvr_female_sklcrackshwakeye01.ani
c:\windows\system32\model\mvr_female_sklcracksicearr.ani
c:\windows\system32\model\mvr_female_sklcrackspierci.ani
c:\windows\system32\model\mvr_female_sklcrackspoison.ani
c:\windows\system32\model\mvr_female_sklcrackspowerincrease01.ani
c:\windows\system32\model\mvr_female_sklcracksrain.ani
c:\windows\system32\model\mvr_female_sklcracksrangestrike01.ani
c:\windows\system32\model\mvr_female_sklcrackssilent.ani
c:\windows\system32\model\mvr_female_sklcrackssltaro.ani
c:\windows\system32\model\mvr_female_sklcrackstriple.ani
c:\windows\system32\model\mvr_male_sklcracksaimed.ani
c:\windows\system32\model\mvr_male_sklcracksbow.ani
c:\windows\system32\model\mvr_male_sklcrackscontrolincrease01.ani
c:\windows\system32\model\mvr_male_sklcracksflamea.ani
c:\windows\system32\model\mvr_male_sklcrackshwakeye01.ani
c:\windows\system32\model\mvr_male_sklcracksicearr.ani
c:\windows\system32\model\mvr_male_sklcrackspierci.ani
c:\windows\system32\model\mvr_male_sklcrackspoison.ani
c:\windows\system32\model\mvr_male_sklcrackspowerincrease01.ani
c:\windows\system32\model\mvr_male_sklcracksrain.ani
c:\windows\system32\model\mvr_male_sklcracksrangestrike01.ani
c:\windows\system32\model\mvr_male_sklcrackssilent.ani
c:\windows\system32\model\mvr_male_sklcrackssltaro.ani
c:\windows\system32\model\mvr_male_sklcrackstriple.ani
c:\windows\system32\model\part_fcracksset01cap.o3d
c:\windows\system32\model\part_fcracksset01foot.o3d
c:\windows\system32\model\part_fcracksset01hand.o3d
c:\windows\system32\model\part_fcracksset01upper.o3d
c:\windows\system32\model\part_mcracksset01cap.o3d
c:\windows\system32\model\part_mcracksset01foot.o3d
c:\windows\system32\model\part_mcracksset01hand.o3d
c:\windows\system32\model\part_mcracksset01upper.o3d
c:\windows\system32\model\texture\crack.dds
c:\windows\system32\model\texture\obj_ominous_crack.dds
c:\windows\system32\model\texture\part_fcracksset01cap.dds
c:\windows\system32\model\texture\part_fcracksset01foot.dds
c:\windows\system32\model\texture\part_fcracksset01hand.dds
c:\windows\system32\model\texture\part_fcracksset01upper.dds
c:\windows\system32\model\texture\part_mcracksset01cap.dds
c:\windows\system32\model\texture\part_mcracksset01foot.dds
c:\windows\system32\model\texture\part_mcracksset01hand.dds
c:\windows\system32\model\texture\part_mcracksset01upper.dds
c:\windows\system32\model\texturelow\crack.dds
c:\windows\system32\model\texturelow\obj_ominous_crack.dds
c:\windows\system32\model\texturelow\part_fcracksset01cap.dds
c:\windows\system32\model\texturelow\part_fcracksset01foot.dds
c:\windows\system32\model\texturelow\part_fcracksset01hand.dds
c:\windows\system32\model\texturelow\part_fcracksset01upper.dds
c:\windows\system32\model\texturelow\part_mcracksset01cap.dds
c:\windows\system32\model\texturelow\part_mcracksset01foot.dds
c:\windows\system32\model\texturelow\part_mcracksset01hand.dds
c:\windows\system32\model\texturelow\part_mcracksset01upper.dds
c:\windows\system32\model\texturemid\crack.dds
c:\windows\system32\model\texturemid\obj_ominous_crack.dds
c:\windows\system32\model\texturemid\part_fcracksset01cap.dds
c:\windows\system32\model\texturemid\part_fcracksset01foot.dds
c:\windows\system32\model\texturemid\part_fcracksset01hand.dds
c:\windows\system32\model\texturemid\part_fcracksset01upper.dds
c:\windows\system32\model\texturemid\part_mcracksset01cap.dds
c:\windows\system32\model\texturemid\part_mcracksset01foot.dds
c:\windows\system32\model\texturemid\part_mcracksset01hand.dds
c:\windows\system32\model\texturemid\part_mcracksset01upper.dds
c:\windows\syswow64\model\mvr_female_sklcracksaimed.ani
c:\windows\syswow64\model\mvr_female_sklcracksbow.ani
c:\windows\syswow64\model\mvr_female_sklcrackscontrolincrease01.ani
c:\windows\syswow64\model\mvr_female_sklcracksflamea.ani
c:\windows\syswow64\model\mvr_female_sklcrackshwakeye01.ani
c:\windows\syswow64\model\mvr_female_sklcracksicearr.ani
c:\windows\syswow64\model\mvr_female_sklcrackspierci.ani
c:\windows\syswow64\model\mvr_female_sklcrackspoison.ani
c:\windows\syswow64\model\mvr_female_sklcrackspowerincrease01.ani
c:\windows\syswow64\model\mvr_female_sklcracksrain.ani
c:\windows\syswow64\model\mvr_female_sklcracksrangestrike01.ani
c:\windows\syswow64\model\mvr_female_sklcrackssilent.ani
c:\windows\syswow64\model\mvr_female_sklcrackssltaro.ani
c:\windows\syswow64\model\mvr_female_sklcrackstriple.ani
c:\windows\syswow64\model\mvr_male_sklcracksaimed.ani
c:\windows\syswow64\model\mvr_male_sklcracksbow.ani
c:\windows\syswow64\model\mvr_male_sklcrackscontrolincrease01.ani
c:\windows\syswow64\model\mvr_male_sklcracksflamea.ani
c:\windows\syswow64\model\mvr_male_sklcrackshwakeye01.ani
c:\windows\syswow64\model\mvr_male_sklcracksicearr.ani
c:\windows\syswow64\model\mvr_male_sklcrackspierci.ani
c:\windows\syswow64\model\mvr_male_sklcrackspoison.ani
c:\windows\syswow64\model\mvr_male_sklcrackspowerincrease01.ani
c:\windows\syswow64\model\mvr_male_sklcracksrain.ani
c:\windows\syswow64\model\mvr_male_sklcracksrangestrike01.ani
c:\windows\syswow64\model\mvr_male_sklcrackssilent.ani
c:\windows\syswow64\model\mvr_male_sklcrackssltaro.ani
c:\windows\syswow64\model\mvr_male_sklcrackstriple.ani
c:\windows\syswow64\model\part_fcracksset01cap.o3d
c:\windows\syswow64\model\part_fcracksset01foot.o3d
c:\windows\syswow64\model\part_fcracksset01hand.o3d
c:\windows\syswow64\model\part_fcracksset01upper.o3d
c:\windows\syswow64\model\part_mcracksset01cap.o3d
c:\windows\syswow64\model\part_mcracksset01foot.o3d
c:\windows\syswow64\model\part_mcracksset01hand.o3d
c:\windows\syswow64\model\part_mcracksset01upper.o3d
c:\windows\syswow64\model\texture\crack.dds
c:\windows\syswow64\model\texture\obj_ominous_crack.dds
c:\windows\syswow64\model\texture\part_fcracksset01cap.dds
c:\windows\syswow64\model\texture\part_fcracksset01foot.dds
c:\windows\syswow64\model\texture\part_fcracksset01hand.dds
c:\windows\syswow64\model\texture\part_fcracksset01upper.dds
c:\windows\syswow64\model\texture\part_mcracksset01cap.dds
c:\windows\syswow64\model\texture\part_mcracksset01foot.dds
c:\windows\syswow64\model\texture\part_mcracksset01hand.dds
c:\windows\syswow64\model\texture\part_mcracksset01upper.dds
c:\windows\syswow64\model\texturelow\crack.dds
c:\windows\syswow64\model\texturelow\obj_ominous_crack.dds
c:\windows\syswow64\model\texturelow\part_fcracksset01cap.dds
c:\windows\syswow64\model\texturelow\part_fcracksset01foot.dds
c:\windows\syswow64\model\texturelow\part_fcracksset01hand.dds
c:\windows\syswow64\model\texturelow\part_fcracksset01upper.dds
c:\windows\syswow64\model\texturelow\part_mcracksset01cap.dds
c:\windows\syswow64\model\texturelow\part_mcracksset01foot.dds
c:\windows\syswow64\model\texturelow\part_mcracksset01hand.dds
c:\windows\syswow64\model\texturelow\part_mcracksset01upper.dds
c:\windows\syswow64\model\texturemid\crack.dds
c:\windows\syswow64\model\texturemid\obj_ominous_crack.dds
c:\windows\syswow64\model\texturemid\part_fcracksset01cap.dds
c:\windows\syswow64\model\texturemid\part_fcracksset01foot.dds
c:\windows\syswow64\model\texturemid\part_fcracksset01hand.dds
c:\windows\syswow64\model\texturemid\part_fcracksset01upper.dds
c:\windows\syswow64\model\texturemid\part_mcracksset01cap.dds
c:\windows\syswow64\model\texturemid\part_mcracksset01foot.dds
c:\windows\syswow64\model\texturemid\part_mcracksset01hand.dds
c:\windows\syswow64\model\texturemid\part_mcracksset01upper.dds
scanner sequence 3.ZZ.11.LEABWW
 ----- EOF -----
so hier noch ein ads log angehängt versteht sich ^^

kriege sie nicht eingefügt ist zu groß zum einsetzen als anhang oder als txt datei hier schmiert immer ab der browser

schrauber 30.07.2013 06:39
Ehm...wer hat gesagt Du sollst die Tools laufen lassen? Nicht neu aufgesetzt? :wtf:

schrauber 30.07.2013 10:43
Win7 backdoor.WIN32.ZAccess.mbs wurde gefunden system ausfall folge

wegen Crossposting ist dann hier Schluss.


Alle Zeitangaben in WEZ +1. Es ist jetzt 07:18 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131