Festplatte wäre beschädigt + Pop Up Meldungen

Mostafa7

Ein kritischer Fehler der Festplatte? Habe hier viel darüber gelesen und gemerkt das es keine allgemeine Lösung für dieses Problem gibt brauche also unbeidngt jemanden der mir hilft dies hier zu lösen.

Werde auch gleich erstmal den Log von Malspyware reinposten.

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Datenbank Version: 6936

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

22.06.2011 11:12:28
mbam-log-2011-06-22 (11-12-28).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Durchsuchte Objekte: 197301
Laufzeit: 16 Minute(n), 36 Sekunde(n)

Infizierte Speicherprozesse: 2
Infizierte Speichermodule: 2
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 2
Infizierte Dateiobjekte der Registrierung: 6
Infizierte Verzeichnisse: 0
Infizierte Dateien: 18

Infizierte Speicherprozesse:
c:\dokumente und einstellungen\all users\anwendungsdaten\dmnlwoqumryv.exe (Trojan.FakeAlert) -> 2812 -> Unloaded process successfully.
c:\dokumente und einstellungen\all users\anwendungsdaten\21421860.exe (Trojan.Agent) -> 2720 -> Unloaded process successfully.

Infizierte Speichermodule:
c:\WINDOWS\system32\cryptperf10.dll (Backdoor.FKulead) -> Delete on reboot.
c:\WINDOWS\system32\iasads32.dll (Trojan.Agent) -> Delete on reboot.

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\DmnLWOQuMRyv (Trojan.FakeAlert) -> Value: DmnLWOQuMRyv -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ForceClassicControlPanel (Hijack.ControlPanelStyle) -> Value: ForceClassicControlPanel -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Backdoor.FKulead) -> Bad: (cryptperf10.dll) Good: () -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop\NoChangingWallPaper (PUM.Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (PUM.Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDesktop (PUM.Hidden.Desktop) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
c:\WINDOWS\system32\cryptperf10.dll (Backdoor.FKulead) -> Delete on reboot.
c:\dokumente und einstellungen\all users\anwendungsdaten\dmnlwoqumryv.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\jar_cache7960006704037567536.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\localservice\lokale einstellungen\temporary internet files\Content.IE5\4WKWN4YT\x3315[1].exe (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\system volume information\_restore{1c662f96-84a1-4b17-837e-14a10e2ca079}\RP194\A0096030.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\system volume information\_restore{1c662f96-84a1-4b17-837e-14a10e2ca079}\RP194\A0096031.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\system volume information\_restore{1c662f96-84a1-4b17-837e-14a10e2ca079}\RP194\A0096032.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\system volume information\_restore{1c662f96-84a1-4b17-837e-14a10e2ca079}\RP194\A0096033.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\system volume information\_restore{1c662f96-84a1-4b17-837e-14a10e2ca079}\RP194\A0096034.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\system volume information\_restore{1c662f96-84a1-4b17-837e-14a10e2ca079}\RP194\A0096035.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\kbdpack.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\rpcclient.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\srvprov.dll (Backdoor.FKulead) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\all users\anwendungsdaten\21421860.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\gnuhashes.ini (Trojan.Tracur) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\iasads32.dll (Trojan.Agent) -> Delete on reboot.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\0.16582613202235708.exe (Exploit.Drop.2) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\0.1043378008748751.exe (Exploit.Drop.2) -> Quarantined and deleted successfully.