Malwarebytes' Anti-Malware 1.36 Datenbank Version: 2064 Windows 5.1.2600 Service Pack 3 01.05.2009 15:56:33 mbam-log-2009-05-01 (15-56-25).txt Scan-Methode: Quick-Scan Durchsuchte Objekte: 80502 Laufzeit: 2 minute(s), 35 second(s) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 1 Infizierte Registrierungsschlüssel: 3 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 3 Infizierte Verzeichnisse: 4 Infizierte Dateien: 47 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: C:\WINDOWS\system32\__c00A159C.dat (Trojan.Vundo) -> No action taken. Infizierte Registrierungsschlüssel: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c00a159c (Trojan.Vundo) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\adware away v3.1.4.c_is1 (Rogue.AdwareAway) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Anti-Leech (Trojan.AntiLeechPlugin) -> No action taken. Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. Infizierte Verzeichnisse: C:\Documents and Settings\All Users\Start Menu\Programs\Adware Away (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away (Rogue.AdwareAway) -> No action taken. C:\Program Files\Anti-Leech (Trojan.AntiLeechPlugin) -> No action taken. C:\Program Files\Anti-Leech\ALIE_1.0.2.3 (Trojan.AntiLeechPlugin) -> No action taken. Infizierte Dateien: C:\WINDOWS\system32\__c00A159C.dat (Trojan.Vundo) -> No action taken. C:\WINDOWS\system32\ftp_non_crp.exe (Trojan.Agent) -> No action taken. C:\WINDOWS\system32\winglsetup.exe (Trojan.Vundo) -> No action taken. C:\Documents and Settings\All Users\Start Menu\Programs\Adware Away\Adware Away.lnk (Rogue.AdwareAway) -> No action taken. C:\Documents and Settings\All Users\Start Menu\Programs\Adware Away\Uninstall.lnk (Rogue.AdwareAway) -> No action taken. C:\Documents and Settings\All Users\Start Menu\Programs\Adware Away\Update.lnk (Rogue.AdwareAway) -> No action taken. C:\Documents and Settings\All Users\Start Menu\Programs\Adware Away\User Manual.lnk (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\activex.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\AdAway.dll (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\AdAway.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\AdwareAway.chm (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\autorun.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\DiagnosticScan.SYS (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\EnumAutoRun.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\EnumDlls.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\EProcess.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\explorerbar.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\fa.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\FixDesktopBackground.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\folderdll.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\global.dll (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\iebhotoolbar.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\iepage.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\ietoolbarbutton.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\ieurlprefix.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\ieurlsearchhook.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\lsp.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\nameserver.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\notifydll.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\overall.log (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\process.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\protocolfilter.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\ScanAtStartup.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\screenshot.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\securitysite.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\service.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\shellextension.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\shellextensionhook.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\SPAP.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\Start1Driver.SYS (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\svchostdll.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\sysrestriction.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\unins000.dat (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\unins000.exe (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\uninstall.tmp (Rogue.AdwareAway) -> No action taken. C:\Program Files\Adware Away\Update2.exe (Rogue.AdwareAway) -> No action taken. C:\WINDOWS\adaway.lic (Rogue.AdwareAway) -> No action taken.