Hallo,
Malwarebytes hat nichts gefunden. (Das vorletzte abgespeicherte Log ist das bereits gepostete.) Aber bei ESET gab's einige Ergebnisse:
Code:
Alles auswählen Aufklappen ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=69aaf80d8ff61548b9aec7ed9677eaa6
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-09-01 11:15:35
# local_time=2011-09-01 01:15:35 (+0100, Westeuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=1797 16775129 100 93 304855 51407811 297623 0
# compatibility_mode=8192 67108863 100 0 808 808 0 0
# scanned=94956
# found=5
# cleaned=0
# scan_time=4747
C:\Dokumente und Einstellungen\***\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\16\40a44ad0-51068740 Java/Agent.DJ trojan (unable to clean) 00000000000000000000000000000000 I
C:\_OTL\MovedFiles.zip multiple threats (unable to clean) 00000000000000000000000000000000 I
D:\Install_\Nero-7.10.1.0_deu_update.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
D:\Install_\registrybooster.exe Win32/RegistryBooster application (unable to clean) 00000000000000000000000000000000 I
D:\Nutzerdateien\LUDKuer\nerv.zip probably a variant of Win32/Agent.FHUJTXH trojan (unable to clean) 00000000000000000000000000000000 I
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=69aaf80d8ff61548b9aec7ed9677eaa6
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-03-25 09:42:25
# local_time=2012-03-25 11:42:25 (+0100, Westeuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=1797 16775141 100 93 119834 69242345 213851 0
# compatibility_mode=8192 67108863 100 0 17835342 17835342 0 0
# scanned=221760
# found=8
# cleaned=0
# scan_time=6224
C:\Dokumente und Einstellungen\***\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\42\48b4186a-138b7f3c a variant of Java/TrojanDownloader.Agent.NDR trojan (unable to clean) 00000000000000000000000000000000 I
C:\Dokumente und Einstellungen\***\Anwendungsdaten\Sun\Java\Deployment\cache\6.0\5\654bf205-2110ffa5 a variant of Java/Exploit.Blacole.AN trojan (unable to clean) 00000000000000000000000000000000 I
C:\Dokumente und Einstellungen\***\Lokale Einstellungen\temp\jar_cache5742365651121357786.tmp Java/TrojanDownloader.Agent.NDR trojan (unable to clean) 00000000000000000000000000000000 I
C:\Dokumente und Einstellungen\***\Lokale Einstellungen\Temporary Internet Files\Content.IE5\HQ95S85D\traffcount[1].htm JS/Kryptik.KP.Gen trojan (unable to clean) 00000000000000000000000000000000 I
C:\System Volume Information\_restore{948B4474-1004-4138-8F3F-1AA1E2621247}\RP43\A0005722.exe a variant of Win32/Kryptik.ACVF trojan (unable to clean) 00000000000000000000000000000000 I
C:\_OTL\MovedFiles.zip multiple threats (unable to clean) 00000000000000000000000000000000 I
D:\Install_\Nero-7.10.1.0_deu_update.exe Win32/Toolbar.AskSBar application (unable to clean) 00000000000000000000000000000000 I
D:\Nutzerdateien\***\nerv.zip probably a variant of Win32/Agent.FHUJTXH trojan (unable to clean) 00000000000000000000000000000000 I
Gruß,
sandero
25.03.2012, 23:26
Hybrid-Darstellung
