Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Datenbank Version: 4266

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

02.07.2010 13:22:59
mbam-log-2010-07-02 (13-22-59).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 125031
Laufzeit: 15 Minute(n), 51 Sekunde(n)

Infizierte Speicherprozesse: 1
Infizierte Speichermodule: 1
Infizierte Registrierungsschlüssel: 3
Infizierte Registrierungswerte: 4
Infizierte Dateiobjekte der Registrierung: 1
Infizierte Verzeichnisse: 0
Infizierte Dateien: 140

Infizierte Speicherprozesse:
C:\WINDOWS\AhnRpta.exe (Trojan.Backdoor) -> Unloaded process successfully.

Infizierte Speichermodule:
C:\WINDOWS\system32\e8main0.dll (Spyware.OnlineGames) -> Delete on reboot.

Infizierte Registrierungsschlüssel:
HKEY_CLASSES_ROOT\CLSID\{bb4c402f-882a-4526-8c08-51278ea437c1} (Spyware.OnlineGames) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\MADOWN (Worm.Magania) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\NOD32KVBIT (Trojan.Frethog) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cdoosoft (Worm.Taterf) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\nod32 (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\dso32 (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{bb4c402f-882a-4526-8c08-51278ea437c1} (Spyware.OnlineGames) -> Delete on reboot.

Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\CheckedValue (Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\herss.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\nodqq.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\dsoqq.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\e8main0.dll (Spyware.OnlineGames) -> Delete on reboot.
C:\09lf.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\12gn6id2.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\1a1dndah.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2bbi1ax.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2id9.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2o1ajagt.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2u923g01.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\2ul.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\33r.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\3dcs9.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\62.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\e9naq.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\eer6ril9.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ej10fkdo.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ewqij.bat (Worm.Magania) -> Quarantined and deleted successfully.
C:\eyt.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\f9o8o.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\fbak.exe (Trojan.Onlinegames) -> Quarantined and deleted successfully.
C:\g12g.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\g8k.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\hkn6k.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\husyu8n.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\hx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\i.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\i8ikdjwt.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\pbudsara.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\pbyqfn.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ph.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\pkkwng.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\q9.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\qbr2q.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\qcod.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\qhbfqx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\r2g20.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\r3fhr.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\rhwhin.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\rpw.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\s1.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\sdfqh.exe (Spyware.OnLineGames) -> Quarantined and deleted successfully.
C:\se12ydam.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\sm.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\srgo.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\t2hjo0.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\tgt.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\twhvna.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ukfbi3aw.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\upx.bat (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\uvsqfgwd.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\vgyn6ewc.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\vk0w.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\w98.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\w9uxx92.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\wfx062.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\wkimt.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\wrsf.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\autorun.inf (Worm.Taterf) -> Quarantined and deleted successfully.
C:\wyskq6lt.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\xjb3.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\yhh.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ymxf2.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ysyjq1bs.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\yu3.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\img8hi.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\k8jc.exe (Password.Stealer) -> Quarantined and deleted successfully.
C:\krwyrv0d.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\m1eqos3.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\mbdm.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\mbvd.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\mi9al8rs.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\n0qls.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ngp8l.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\nx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\o9bxu.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\opdux.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\p.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\6rxt26.exe (Worm.Magania) -> Quarantined and deleted successfully.
C:\i9bwjpqc.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9fo3ar0j.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9g86.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9jyhdim8.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9rfpp.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\a2h2.com (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\affi8l.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\b00ijwpu.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\ba.exe (Worm.Taterf) -> Quarantined and deleted successfully.
C:\bu8.exe (Worm.Tarterf) -> Quarantined and deleted successfully.
C:\bycfht.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\c2e.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ca.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\chxnxyx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\cobn8w3.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\cqb6wo.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ctu8r.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds0.dll (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds1.dll (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nmdfgds2.dll (Trojan.PWS) -> Quarantined and deleted successfully.
C:\yqq8eqil.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\cgaqyi.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\bbjl2g.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\f662sjd.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\2.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\1hqup.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\22yj2fy1.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\86l2qw.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\8xcrbho6.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9qqigqwf.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\9xf8.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\aieh8r.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\e8kj.exe (Worm.AutoRun) -> Quarantined and deleted successfully.
C:\h0.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\hm1bfpuj.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\j60osk9.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\ji83j.exe (PWS.Frethog) -> Quarantined and deleted successfully.
C:\mje12tni.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\n68mqcra.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\p3vwxx.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\p6xebrnt.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\p9rs.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\q93fi6kf.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\sp1jensi.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\xh319r9b.bat (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\xhah66s.cmd (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\xs6kpr0.exe (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\afmain0.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\afmain1.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\afmain2.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kav320.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\olhrwef.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\optyhww0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\cvasds0.dll (Spyware.OnlineGames) -> Delete on reboot.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\cvasds1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\cvasds2.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\dsoqq0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\nodqq0.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Dokumente und Einstellungen\Beate\Lokale Einstellungen\Temp\nodqq1.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\WINDOWS\AhnRpta.exe (Trojan.Backdoor) -> Quarantined and deleted successfully.