| |
| |||||||
Log-Analyse und Auswertung: Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefundenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
13.07.2011, 22:10
| #16 |
 |  Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefundenCode:
ATTFilter 2011/07/13 23:07:22.0205 4144 TDSS rootkit removing tool 2.5.11.0 Jul 11 2011 16:56:56
2011/07/13 23:07:24.0233 4144 ================================================================================
2011/07/13 23:07:24.0233 4144 SystemInfo:
2011/07/13 23:07:24.0233 4144
2011/07/13 23:07:24.0233 4144 OS Version: 6.1.7601 ServicePack: 1.0
2011/07/13 23:07:24.0233 4144 Product type: Workstation
2011/07/13 23:07:24.0233 4144 ComputerName: PHILIPP-VAIO
2011/07/13 23:07:24.0233 4144 UserName: Philipp
2011/07/13 23:07:24.0233 4144 Windows directory: C:\Windows
2011/07/13 23:07:24.0233 4144 System windows directory: C:\Windows
2011/07/13 23:07:24.0233 4144 Running under WOW64
2011/07/13 23:07:24.0233 4144 Processor architecture: Intel x64
2011/07/13 23:07:24.0233 4144 Number of processors: 4
2011/07/13 23:07:24.0233 4144 Page size: 0x1000
2011/07/13 23:07:24.0233 4144 Boot type: Normal boot
2011/07/13 23:07:24.0233 4144 ================================================================================
2011/07/13 23:07:24.0857 4144 Initialize success
2011/07/13 23:07:30.0676 1628 ================================================================================
2011/07/13 23:07:30.0676 1628 Scan started
2011/07/13 23:07:30.0676 1628 Mode: Manual;
2011/07/13 23:07:30.0676 1628 ================================================================================
2011/07/13 23:07:32.0641 1628 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
2011/07/13 23:07:32.0751 1628 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
2011/07/13 23:07:32.0829 1628 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
2011/07/13 23:07:32.0953 1628 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
2011/07/13 23:07:32.0985 1628 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
2011/07/13 23:07:33.0078 1628 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
2011/07/13 23:07:33.0187 1628 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
2011/07/13 23:07:33.0265 1628 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
2011/07/13 23:07:33.0297 1628 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
2011/07/13 23:07:33.0390 1628 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
2011/07/13 23:07:33.0437 1628 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
2011/07/13 23:07:33.0468 1628 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
2011/07/13 23:07:33.0515 1628 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
2011/07/13 23:07:33.0562 1628 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
2011/07/13 23:07:33.0593 1628 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
2011/07/13 23:07:33.0718 1628 ApfiltrService (1661f9c9e4b0049fa0a5e30264375a87) C:\Windows\system32\DRIVERS\Apfiltr.sys
2011/07/13 23:07:33.0765 1628 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
2011/07/13 23:07:33.0811 1628 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
2011/07/13 23:07:33.0843 1628 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
2011/07/13 23:07:33.0905 1628 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
2011/07/13 23:07:33.0936 1628 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/07/13 23:07:33.0999 1628 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
2011/07/13 23:07:34.0123 1628 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
2011/07/13 23:07:34.0420 1628 atikmdag (f3a362b683b6158cc47d7e8e58b7ddc9) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/07/13 23:07:34.0716 1628 avgntflt (b1224e6b086cd6548315b04ab575a23e) C:\Windows\system32\DRIVERS\avgntflt.sys
2011/07/13 23:07:34.0747 1628 avipbb (ed45f12cfa62b83765c9c1496758cc87) C:\Windows\system32\DRIVERS\avipbb.sys
2011/07/13 23:07:34.0794 1628 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
2011/07/13 23:07:34.0825 1628 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/07/13 23:07:34.0872 1628 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/07/13 23:07:34.0935 1628 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
2011/07/13 23:07:34.0981 1628 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
2011/07/13 23:07:34.0997 1628 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
2011/07/13 23:07:35.0013 1628 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
2011/07/13 23:07:35.0059 1628 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/07/13 23:07:35.0075 1628 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/07/13 23:07:35.0091 1628 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/07/13 23:07:35.0106 1628 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/07/13 23:07:35.0200 1628 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
2011/07/13 23:07:35.0215 1628 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
2011/07/13 23:07:35.0278 1628 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
2011/07/13 23:07:35.0325 1628 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
2011/07/13 23:07:35.0356 1628 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
2011/07/13 23:07:35.0387 1628 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys
2011/07/13 23:07:35.0481 1628 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys
2011/07/13 23:07:35.0512 1628 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys
2011/07/13 23:07:35.0543 1628 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
2011/07/13 23:07:35.0559 1628 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys
2011/07/13 23:07:35.0590 1628 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/07/13 23:07:35.0637 1628 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
2011/07/13 23:07:35.0683 1628 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
2011/07/13 23:07:35.0746 1628 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/07/13 23:07:35.0824 1628 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
2011/07/13 23:07:35.0871 1628 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
2011/07/13 23:07:35.0949 1628 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
2011/07/13 23:07:35.0980 1628 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
2011/07/13 23:07:36.0073 1628 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
2011/07/13 23:07:36.0120 1628 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
2011/07/13 23:07:36.0229 1628 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
2011/07/13 23:07:36.0261 1628 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/07/13 23:07:36.0292 1628 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
2011/07/13 23:07:36.0370 1628 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/07/13 23:07:36.0417 1628 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
2011/07/13 23:07:36.0557 1628 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
2011/07/13 23:07:36.0697 1628 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
2011/07/13 23:07:36.0760 1628 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
2011/07/13 23:07:36.0822 1628 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/07/13 23:07:36.0869 1628 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/07/13 23:07:36.0900 1628 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
2011/07/13 23:07:36.0963 1628 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/07/13 23:07:36.0994 1628 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/07/13 23:07:37.0025 1628 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
2011/07/13 23:07:37.0072 1628 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
2011/07/13 23:07:37.0134 1628 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/07/13 23:07:37.0212 1628 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/07/13 23:07:37.0243 1628 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/07/13 23:07:37.0290 1628 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/07/13 23:07:37.0321 1628 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
2011/07/13 23:07:37.0384 1628 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/07/13 23:07:37.0446 1628 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
2011/07/13 23:07:37.0477 1628 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
2011/07/13 23:07:37.0524 1628 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
2011/07/13 23:07:37.0555 1628 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
2011/07/13 23:07:37.0587 1628 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
2011/07/13 23:07:37.0618 1628 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
2011/07/13 23:07:37.0696 1628 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
2011/07/13 23:07:37.0758 1628 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
2011/07/13 23:07:37.0821 1628 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
2011/07/13 23:07:37.0883 1628 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
2011/07/13 23:07:37.0914 1628 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
2011/07/13 23:07:38.0055 1628 iaStor (073a606333b6f7bbf20aa856df7f0997) C:\Windows\system32\drivers\iaStor.sys
2011/07/13 23:07:38.0257 1628 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
2011/07/13 23:07:38.0476 1628 igfx (31d1aff484d8a0906cf8d44251ec390f) C:\Windows\system32\DRIVERS\igdkmd64.sys
2011/07/13 23:07:38.0725 1628 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
2011/07/13 23:07:38.0803 1628 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\drivers\Impcd.sys
2011/07/13 23:07:38.0913 1628 IntcAzAudAddService (0f144e5f46cb9043004b5e84aa4bca6a) C:\Windows\system32\drivers\RTKVHD64.sys
2011/07/13 23:07:39.0069 1628 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\Windows\system32\DRIVERS\IntcDAud.sys
2011/07/13 23:07:39.0147 1628 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
2011/07/13 23:07:39.0193 1628 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
2011/07/13 23:07:39.0256 1628 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/07/13 23:07:39.0303 1628 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
2011/07/13 23:07:39.0334 1628 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/07/13 23:07:39.0381 1628 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/07/13 23:07:39.0443 1628 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
2011/07/13 23:07:39.0459 1628 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
2011/07/13 23:07:39.0490 1628 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
2011/07/13 23:07:39.0521 1628 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
2011/07/13 23:07:39.0615 1628 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
2011/07/13 23:07:39.0646 1628 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
2011/07/13 23:07:39.0708 1628 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/07/13 23:07:39.0786 1628 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/07/13 23:07:39.0833 1628 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
2011/07/13 23:07:39.0880 1628 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
2011/07/13 23:07:39.0911 1628 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
2011/07/13 23:07:39.0942 1628 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
2011/07/13 23:07:39.0973 1628 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/07/13 23:07:40.0036 1628 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
2011/07/13 23:07:40.0051 1628 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
2011/07/13 23:07:40.0098 1628 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/07/13 23:07:40.0145 1628 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/07/13 23:07:40.0207 1628 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
2011/07/13 23:07:40.0223 1628 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/07/13 23:07:40.0270 1628 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
2011/07/13 23:07:40.0332 1628 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
2011/07/13 23:07:40.0379 1628 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/07/13 23:07:40.0457 1628 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
2011/07/13 23:07:40.0519 1628 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/07/13 23:07:40.0566 1628 mrxsmb10 (2086d463bd371d8a37d153897430916d) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/07/13 23:07:40.0613 1628 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/07/13 23:07:40.0691 1628 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
2011/07/13 23:07:40.0753 1628 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
2011/07/13 23:07:40.0847 1628 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/07/13 23:07:40.0878 1628 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/07/13 23:07:40.0941 1628 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
2011/07/13 23:07:40.0987 1628 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/07/13 23:07:41.0003 1628 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/07/13 23:07:41.0034 1628 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/07/13 23:07:41.0081 1628 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
2011/07/13 23:07:41.0128 1628 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
2011/07/13 23:07:41.0143 1628 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/07/13 23:07:41.0175 1628 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
2011/07/13 23:07:41.0190 1628 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/07/13 23:07:41.0268 1628 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/07/13 23:07:41.0346 1628 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
2011/07/13 23:07:41.0409 1628 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/07/13 23:07:41.0424 1628 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/07/13 23:07:41.0518 1628 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/07/13 23:07:41.0549 1628 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/07/13 23:07:41.0658 1628 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
2011/07/13 23:07:41.0705 1628 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/07/13 23:07:41.0799 1628 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
2011/07/13 23:07:41.0861 1628 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
2011/07/13 23:07:41.0892 1628 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/07/13 23:07:41.0939 1628 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/07/13 23:07:42.0017 1628 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
2011/07/13 23:07:42.0235 1628 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/07/13 23:07:42.0282 1628 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
2011/07/13 23:07:42.0329 1628 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
2011/07/13 23:07:42.0376 1628 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
2011/07/13 23:07:42.0407 1628 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
2011/07/13 23:07:42.0516 1628 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
2011/07/13 23:07:42.0547 1628 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
2011/07/13 23:07:42.0610 1628 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
2011/07/13 23:07:42.0657 1628 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
2011/07/13 23:07:42.0688 1628 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
2011/07/13 23:07:42.0735 1628 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/07/13 23:07:42.0766 1628 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/07/13 23:07:42.0875 1628 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
2011/07/13 23:07:42.0906 1628 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
2011/07/13 23:07:42.0969 1628 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
2011/07/13 23:07:43.0015 1628 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
2011/07/13 23:07:43.0093 1628 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
2011/07/13 23:07:43.0140 1628 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
2011/07/13 23:07:43.0187 1628 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/07/13 23:07:43.0218 1628 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/07/13 23:07:43.0265 1628 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/07/13 23:07:43.0312 1628 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/07/13 23:07:43.0343 1628 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/07/13 23:07:43.0374 1628 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/07/13 23:07:43.0437 1628 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
2011/07/13 23:07:43.0515 1628 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
2011/07/13 23:07:43.0561 1628 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/07/13 23:07:43.0577 1628 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/07/13 23:07:43.0593 1628 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/07/13 23:07:43.0639 1628 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
2011/07/13 23:07:43.0671 1628 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
2011/07/13 23:07:43.0733 1628 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
2011/07/13 23:07:43.0764 1628 rimspci (5ca4abd888b602551b59baa26941c167) C:\Windows\system32\drivers\rimssne64.sys
2011/07/13 23:07:43.0780 1628 risdsnpe (bb6e138aeb351728959da5e2731d8140) C:\Windows\system32\drivers\risdsne64.sys
2011/07/13 23:07:43.0842 1628 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/07/13 23:07:43.0873 1628 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
2011/07/13 23:07:43.0983 1628 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
2011/07/13 23:07:44.0029 1628 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
2011/07/13 23:07:44.0076 1628 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
2011/07/13 23:07:44.0170 1628 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/07/13 23:07:44.0232 1628 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
2011/07/13 23:07:44.0263 1628 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
2011/07/13 23:07:44.0341 1628 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
2011/07/13 23:07:44.0419 1628 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys
2011/07/13 23:07:44.0466 1628 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
2011/07/13 23:07:44.0482 1628 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
2011/07/13 23:07:44.0497 1628 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
2011/07/13 23:07:44.0575 1628 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
2011/07/13 23:07:44.0638 1628 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
2011/07/13 23:07:44.0716 1628 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
2011/07/13 23:07:44.0747 1628 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/07/13 23:07:44.0794 1628 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/07/13 23:07:44.0872 1628 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
2011/07/13 23:07:44.0934 1628 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
2011/07/13 23:07:44.0965 1628 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
2011/07/13 23:07:45.0028 1628 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
2011/07/13 23:07:45.0075 1628 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
2011/07/13 23:07:45.0215 1628 Tcpip (92ce29d95ac9dd2d0ee9061d551ba250) C:\Windows\system32\drivers\tcpip.sys
2011/07/13 23:07:45.0277 1628 TCPIP6 (92ce29d95ac9dd2d0ee9061d551ba250) C:\Windows\system32\DRIVERS\tcpip.sys
2011/07/13 23:07:45.0340 1628 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
2011/07/13 23:07:45.0402 1628 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/07/13 23:07:45.0418 1628 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/07/13 23:07:45.0480 1628 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
2011/07/13 23:07:45.0558 1628 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
2011/07/13 23:07:45.0636 1628 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/07/13 23:07:45.0745 1628 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
2011/07/13 23:07:45.0823 1628 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
2011/07/13 23:07:45.0870 1628 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
2011/07/13 23:07:46.0011 1628 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
2011/07/13 23:07:46.0104 1628 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
2011/07/13 23:07:46.0135 1628 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
2011/07/13 23:07:46.0167 1628 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
2011/07/13 23:07:46.0260 1628 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/07/13 23:07:46.0338 1628 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
2011/07/13 23:07:46.0369 1628 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
2011/07/13 23:07:46.0401 1628 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
2011/07/13 23:07:46.0479 1628 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
2011/07/13 23:07:46.0510 1628 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
2011/07/13 23:07:46.0525 1628 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
2011/07/13 23:07:46.0557 1628 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
2011/07/13 23:07:46.0635 1628 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
2011/07/13 23:07:46.0713 1628 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
2011/07/13 23:07:46.0728 1628 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/07/13 23:07:46.0775 1628 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
2011/07/13 23:07:46.0837 1628 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
2011/07/13 23:07:46.0915 1628 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
2011/07/13 23:07:46.0931 1628 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
2011/07/13 23:07:46.0993 1628 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
2011/07/13 23:07:47.0040 1628 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
2011/07/13 23:07:47.0087 1628 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
2011/07/13 23:07:47.0149 1628 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
2011/07/13 23:07:47.0181 1628 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
2011/07/13 23:07:47.0212 1628 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
2011/07/13 23:07:47.0274 1628 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/13 23:07:47.0290 1628 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/13 23:07:47.0352 1628 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
2011/07/13 23:07:47.0399 1628 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
2011/07/13 23:07:47.0446 1628 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/07/13 23:07:47.0461 1628 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
2011/07/13 23:07:47.0617 1628 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
2011/07/13 23:07:47.0711 1628 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
2011/07/13 23:07:47.0836 1628 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
2011/07/13 23:07:47.0883 1628 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/07/13 23:07:47.0961 1628 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
2011/07/13 23:07:48.0023 1628 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
2011/07/13 23:07:48.0085 1628 Boot (0x1200) (88356d5e43c09102b5a7fca52654e9ad) \Device\Harddisk0\DR0\Partition0
2011/07/13 23:07:48.0117 1628 Boot (0x1200) (60813eaf7f97acffb05d08b3a16cf62f) \Device\Harddisk0\DR0\Partition1
2011/07/13 23:07:48.0132 1628 ================================================================================
2011/07/13 23:07:48.0132 1628 Scan finished
2011/07/13 23:07:48.0132 1628 ================================================================================
2011/07/13 23:07:48.0132 4148 Detected object count: 0
2011/07/13 23:07:48.0132 4148 Actual detected object count: 0
|
|
13.07.2011, 22:11
| #17 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Dann bitte jetzt CF ausführen:
__________________ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!
__________________ |
|
13.07.2011, 22:38
| #18 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Combofix Logfile:
__________________Code:
ATTFilter ComboFix 11-07-13.03 - Philipp 13.07.2011 23:27:16.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3950.2410 [GMT 2:00]
ausgeführt von:: c:\users\Philipp\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-06-13 bis 2011-07-13 ))))))))))))))))))))))))))))))
.
.
2011-07-13 21:31 . 2011-07-13 21:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-07-13 20:37 . 2011-07-13 20:37 -------- d-----w- C:\_OTL
2011-07-13 10:22 . 2011-07-13 10:22 -------- d-----w- c:\users\Philipp\AppData\Roaming\Malwarebytes
2011-07-13 10:22 . 2011-05-29 07:11 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-07-13 10:22 . 2011-07-13 10:22 -------- d-----w- c:\programdata\Malwarebytes
2011-07-13 10:22 . 2011-07-13 10:22 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-07-13 10:22 . 2011-05-29 07:11 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-12 21:15 . 2011-07-12 21:15 -------- d-----w- c:\users\Philipp\AppData\Roaming\Avira
2011-07-12 21:12 . 2011-07-13 11:08 123784 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-07-12 21:12 . 2011-07-13 11:08 88288 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-07-12 21:12 . 2011-07-12 21:12 -------- d-----w- c:\programdata\Avira
2011-07-12 21:12 . 2011-07-12 21:12 -------- d-----w- c:\program files (x86)\Avira
2011-07-12 19:42 . 2011-07-12 19:42 -------- d-----w- c:\windows\system32\SPReview
2011-07-12 19:41 . 2011-07-12 19:41 -------- d-----w- c:\windows\system32\EventProviders
2011-07-12 08:52 . 2011-06-07 17:10 8873296 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EC863BD9-B3F4-49E4-8A53-CBDA8F39695D}\mpengine.dll
2011-06-26 09:56 . 2011-06-16 04:32 142296 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
2011-06-26 09:53 . 2010-01-01 08:00 2106216 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_43.dll
2011-06-26 09:53 . 2010-01-01 08:00 1998168 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_43.dll
2011-06-23 19:37 . 2011-07-13 14:43 -------- d-----r- c:\users\Philipp\Dropbox
2011-06-23 19:34 . 2011-07-13 14:43 -------- d-----w- c:\users\Philipp\AppData\Roaming\Dropbox
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-12 19:55 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-07-12 19:55 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-06-03 05:57 . 2011-07-13 07:46 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2011-05-24 17:14 . 2010-08-25 10:08 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-04-22 22:15 . 2011-05-24 22:59 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-11-20 284696]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2009-08-26 320880]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-13 98304]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2009-10-24 597792]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-04-21 281768]
.
c:\users\Philipp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Philipp\AppData\Roaming\Dropbox\bin\Dropbox.exe [2011-5-25 24176560]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 1081632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2009-12-01 20:03 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-08-30 362992]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
R3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-08-30 313840]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2009-09-01 361840]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2010-02-19 115568]
R3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update 5\VUAgent.exe [2011-04-20 1021840]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira AntiVir Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]
S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys [x]
S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys [x]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2011-01-29 259192]
S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-14 2320920]
S2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2010-02-19 529776]
S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2010-01-29 822784]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [x]
S3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2009-11-30 571248]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [2011-02-14 44736]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 35125349
*NewlyCreated* - 69290432
*Deregistered* - 35125349
*Deregistered* - 69290432
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Citavi Picker... - file://c:\program files (x86)\Internet Explorer\PLUGINS\Citavi Picker\ShowContextMenu.html
FF - ProfilePath - c:\users\Philipp\AppData\Roaming\Mozilla\Firefox\Profiles\unyqh3go.default\
FF - prefs.js: browser.search.selectedEngine - Wikipedia (de)
FF - prefs.js: network.proxy.type - 0
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-mcmscsvc
SafeBoot-MCODS
HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2011-07-13 23:33:36
ComboFix-quarantined-files.txt 2011-07-13 21:33
.
Vor Suchlauf: 14 Verzeichnis(se), 141.810.085.888 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 142.018.121.728 Bytes frei
.
- - End Of File - - E2761CF5EFEE6CAD6C90215EB867FFF0
|
|
13.07.2011, 22:49
| #19 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden auch wenn noch nich durch. danke schonmal für die bisherige Hilfe - und diese sogar noch zu später Stunde. |
|
13.07.2011, 23:15
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Downloade Dir bitte MBRCheck (by a_d_13) und speichere die Datei auf dem Desktop.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
13.07.2011, 23:27
| #21 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefundenCode:
ATTFilter MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: Service Pack 1 (build 7601), 64-bit
Base Board Manufacturer: Sony Corporation
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: Sony Corporation
System Product Name: VPCEB2C5E
Logical Drives Mask: 0x00000074
Kernel Drivers (total 192):
0x04055000 \SystemRoot\system32\ntoskrnl.exe
0x0400C000 \SystemRoot\system32\hal.dll
0x00BB7000 \SystemRoot\system32\kdcom.dll
0x00CCE000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00D1D000 \SystemRoot\system32\PSHED.dll
0x00D31000 \SystemRoot\system32\CLFS.SYS
0x00C00000 \SystemRoot\system32\CI.dll
0x00ED9000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00F7D000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00F8C000 \SystemRoot\system32\drivers\ACPI.sys
0x00FE3000 \SystemRoot\system32\drivers\WMILIB.SYS
0x00FEC000 \SystemRoot\system32\drivers\msisadrv.sys
0x00E00000 \SystemRoot\system32\drivers\pci.sys
0x00E33000 \SystemRoot\system32\drivers\vdrvroot.sys
0x00E40000 \SystemRoot\System32\drivers\partmgr.sys
0x00E55000 \SystemRoot\system32\drivers\compbatt.sys
0x00E5E000 \SystemRoot\system32\drivers\BATTC.SYS
0x00E6A000 \SystemRoot\system32\drivers\volmgr.sys
0x00D8F000 \SystemRoot\System32\drivers\volmgrx.sys
0x00E7F000 \SystemRoot\System32\drivers\mountmgr.sys
0x010F9000 \SystemRoot\system32\drivers\iaStor.sys
0x01301000 \SystemRoot\system32\drivers\atapi.sys
0x0130A000 \SystemRoot\system32\drivers\ataport.SYS
0x01334000 \SystemRoot\system32\drivers\amdxata.sys
0x0133F000 \SystemRoot\system32\drivers\fltmgr.sys
0x0138B000 \SystemRoot\system32\drivers\fileinfo.sys
0x0139F000 \SystemRoot\System32\Drivers\PxHlpa64.sys
0x0145A000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01000000 \SystemRoot\System32\Drivers\msrpc.sys
0x01400000 \SystemRoot\System32\Drivers\ksecdd.sys
0x0105E000 \SystemRoot\System32\Drivers\cng.sys
0x0141B000 \SystemRoot\System32\drivers\pcw.sys
0x0142C000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01695000 \SystemRoot\system32\drivers\ndis.sys
0x01788000 \SystemRoot\system32\drivers\NETIO.SYS
0x01600000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01858000 \SystemRoot\System32\drivers\tcpip.sys
0x01A5C000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01AA6000 \SystemRoot\system32\drivers\volsnap.sys
0x01AF2000 \SystemRoot\System32\Drivers\spldr.sys
0x01AFA000 \SystemRoot\System32\drivers\rdyboost.sys
0x01B34000 \SystemRoot\System32\Drivers\mup.sys
0x01B46000 \SystemRoot\System32\drivers\hwpolicy.sys
0x01B4F000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01B89000 \SystemRoot\system32\drivers\disk.sys
0x01B9F000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x04648000 \SystemRoot\system32\drivers\cdrom.sys
0x04672000 \SystemRoot\System32\Drivers\Null.SYS
0x0467B000 \SystemRoot\System32\Drivers\Beep.SYS
0x04682000 \SystemRoot\System32\drivers\vga.sys
0x04690000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x046B5000 \SystemRoot\System32\drivers\watchdog.sys
0x046C5000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x046CE000 \SystemRoot\system32\drivers\rdpencdd.sys
0x046D7000 \SystemRoot\system32\drivers\rdprefmp.sys
0x046E0000 \SystemRoot\System32\Drivers\Msfs.SYS
0x046EB000 \SystemRoot\System32\Drivers\Npfs.SYS
0x046FC000 \SystemRoot\system32\DRIVERS\tdx.sys
0x0471E000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x0472B000 \SystemRoot\system32\drivers\afd.sys
0x047B4000 \SystemRoot\System32\DRIVERS\netbt.sys
0x04400000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x01800000 \SystemRoot\system32\DRIVERS\pacer.sys
0x04409000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x01826000 \SystemRoot\system32\DRIVERS\netbios.sys
0x01835000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x01BDD000 \SystemRoot\system32\drivers\termdd.sys
0x0162B000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x0441F000 \SystemRoot\system32\drivers\nsiproxy.sys
0x01BF1000 \SystemRoot\system32\drivers\mssmbios.sys
0x0167C000 \SystemRoot\System32\drivers\discache.sys
0x01436000 \SystemRoot\System32\Drivers\dfsc.sys
0x017E8000 \SystemRoot\system32\drivers\blbdrive.sys
0x010D0000 \SystemRoot\system32\DRIVERS\avipbb.sys
0x013AC000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x04AD2000 \SystemRoot\system32\DRIVERS\atikmdag.sys
0x050F7000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x04A00000 \SystemRoot\System32\drivers\dxgmms1.sys
0x04A46000 \SystemRoot\system32\drivers\HDAudBus.sys
0x04A6A000 \SystemRoot\system32\DRIVERS\HECIx64.sys
0x04A7B000 \SystemRoot\system32\drivers\usbehci.sys
0x03E3A000 \SystemRoot\system32\drivers\USBPORT.SYS
0x05238000 \SystemRoot\system32\DRIVERS\athrx.sys
0x053B5000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x053C2000 \SystemRoot\system32\drivers\sdbus.sys
0x05200000 \SystemRoot\system32\drivers\rimssne64.sys
0x05220000 \SystemRoot\system32\drivers\risdsne64.sys
0x03E90000 \SystemRoot\system32\DRIVERS\yk62x64.sys
0x053E2000 \SystemRoot\system32\drivers\i8042prt.sys
0x03EF5000 \SystemRoot\system32\drivers\kbdclass.sys
0x03F04000 \SystemRoot\system32\DRIVERS\Apfiltr.sys
0x03F48000 \SystemRoot\system32\drivers\mouclass.sys
0x03F57000 \SystemRoot\system32\drivers\SFEP.sys
0x03F5A000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x03F70000 \SystemRoot\system32\drivers\CmBatt.sys
0x03F75000 \SystemRoot\system32\drivers\CompositeBus.sys
0x03F85000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x03F9B000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x03FBF000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x03FCB000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x03E00000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x04A8C000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x03E1B000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x03E35000 \SystemRoot\system32\drivers\swenum.sys
0x054B3000 \SystemRoot\system32\drivers\ks.sys
0x054F6000 \SystemRoot\system32\drivers\umbus.sys
0x05508000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x05562000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x05577000 \SystemRoot\system32\drivers\RtHDMIVX.sys
0x055AA000 \SystemRoot\system32\drivers\portcls.sys
0x05400000 \SystemRoot\system32\drivers\drmk.sys
0x05422000 \SystemRoot\system32\drivers\ksthunk.sys
0x05E8E000 \SystemRoot\system32\drivers\RTKVHD64.sys
0x00040000 \SystemRoot\System32\win32k.sys
0x060A9000 \SystemRoot\System32\drivers\Dxapi.sys
0x060B5000 \SystemRoot\System32\Drivers\crashdmp.sys
0x0442B000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x060C3000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x060D6000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x060F3000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x060F5000 \SystemRoot\System32\Drivers\usbvideo.sys
0x06123000 \SystemRoot\system32\DRIVERS\ArcSoftKsUFilter.sys
0x0612D000 \SystemRoot\system32\drivers\hidusb.sys
0x0613B000 \SystemRoot\system32\drivers\HIDCLASS.SYS
0x06154000 \SystemRoot\system32\drivers\HIDPARSE.SYS
0x0615D000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x0616A000 \SystemRoot\system32\DRIVERS\monitor.sys
0x005C0000 \SystemRoot\System32\TSDDD.dll
0x00640000 \SystemRoot\System32\cdd.dll
0x06178000 \SystemRoot\system32\drivers\luafv.sys
0x0619B000 \SystemRoot\system32\DRIVERS\avgntflt.sys
0x061BA000 \SystemRoot\system32\drivers\WudfPf.sys
0x061DB000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x05E00000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x05E53000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x05E66000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x0409C000 \SystemRoot\system32\drivers\HTTP.sys
0x04165000 \SystemRoot\system32\DRIVERS\bowser.sys
0x04183000 \SystemRoot\System32\drivers\mpsdrv.sys
0x0419B000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x04000000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x0404E000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x066CF000 \SystemRoot\system32\drivers\peauth.sys
0x06775000 \SystemRoot\System32\Drivers\secdrv.SYS
0x06780000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x067B1000 \SystemRoot\System32\drivers\tcpipreg.sys
0x06600000 \SystemRoot\System32\DRIVERS\srv2.sys
0x070C6000 \SystemRoot\System32\DRIVERS\srv.sys
0x0715E000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x0701B000 \SystemRoot\System32\Drivers\fastfat.SYS
0x07071000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0x0709C000 \??\C:\Windows\system32\Drivers\PROCEXP113.SYS
0x77280000 \Windows\System32\ntdll.dll
0x47E10000 \Windows\System32\smss.exe
0xFF5A0000 \Windows\System32\apisetschema.dll
0xFFF70000 \Windows\System32\autochk.exe
0x77180000 \Windows\System32\user32.dll
0xFF410000 \Windows\System32\urlmon.dll
0xFF390000 \Windows\System32\shlwapi.dll
0xFF1B0000 \Windows\System32\setupapi.dll
0xFF080000 \Windows\System32\rpcrt4.dll
0xFEE20000 \Windows\System32\iertutil.dll
0xFED50000 \Windows\System32\usp10.dll
0xFED20000 \Windows\System32\imm32.dll
0xFECB0000 \Windows\System32\gdi32.dll
0xFEC90000 \Windows\System32\imagehlp.dll
0x77450000 \Windows\System32\normaliz.dll
0xFDF00000 \Windows\System32\shell32.dll
0x77060000 \Windows\System32\kernel32.dll
0xFDDF0000 \Windows\System32\msctf.dll
0xFDBE0000 \Windows\System32\ole32.dll
0xFDB90000 \Windows\System32\ws2_32.dll
0xFDAF0000 \Windows\System32\comdlg32.dll
0xFDA10000 \Windows\System32\oleaut32.dll
0x77440000 \Windows\System32\psapi.dll
0xFD8E0000 \Windows\System32\wininet.dll
0xFD8C0000 \Windows\System32\sechost.dll
0xFD8B0000 \Windows\System32\lpk.dll
0xFD850000 \Windows\System32\Wldap32.dll
0xFD7D0000 \Windows\System32\difxapi.dll
0xFD730000 \Windows\System32\clbcatq.dll
0xFD690000 \Windows\System32\msvcrt.dll
0xFD680000 \Windows\System32\nsi.dll
0xFD5A0000 \Windows\System32\advapi32.dll
0xFD430000 \Windows\System32\crypt32.dll
0xFD3F0000 \Windows\System32\wintrust.dll
0xFD3B0000 \Windows\System32\cfgmgr32.dll
0xFD340000 \Windows\System32\KernelBase.dll
0xFD2A0000 \Windows\System32\comctl32.dll
0xFD280000 \Windows\System32\devobj.dll
0xFD270000 \Windows\System32\msasn1.dll
0x75BB0000 \Windows\SysWOW64\normaliz.dll
Processes (total 76):
0 System Idle Process
4 System
312 C:\Windows\System32\smss.exe
480 csrss.exe
536 C:\Windows\System32\wininit.exe
560 csrss.exe
592 C:\Windows\System32\services.exe
628 C:\Windows\System32\lsass.exe
644 C:\Windows\System32\lsm.exe
652 C:\Windows\System32\winlogon.exe
772 C:\Windows\System32\svchost.exe
860 C:\Windows\System32\svchost.exe
948 C:\Windows\System32\atiesrxx.exe
992 C:\Windows\System32\svchost.exe
124 C:\Windows\System32\svchost.exe
324 C:\Windows\System32\svchost.exe
460 C:\Windows\System32\svchost.exe
1120 C:\Windows\System32\svchost.exe
1248 C:\Windows\System32\spoolsv.exe
1276 C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
1336 C:\Windows\System32\svchost.exe
1448 C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
1584 C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
1620 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
1672 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
1772 C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
1780 C:\Windows\System32\conhost.exe
1804 C:\Program Files (x86)\SONY\PMB\PMBDeviceInfoProvider.exe
1852 C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
1940 C:\Windows\System32\atieclxx.exe
1996 C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
1720 C:\Windows\System32\taskhost.exe
1836 C:\Windows\System32\taskeng.exe
2036 C:\Windows\System32\dwm.exe
1304 C:\Windows\explorer.exe
2132 C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
2148 C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
2216 C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
2380 WmiPrvSE.exe
2504 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
2772 C:\Program Files\Apoint\Apoint.exe
2832 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
2896 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
2928 C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe
2964 C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe
2972 C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
3008 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
3252 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
3508 C:\Windows\System32\SearchIndexer.exe
3740 C:\Program Files\Sony\VAIO Power Management\SPMService.exe
3520 WUDFHost.exe
2828 C:\Windows\System32\svchost.exe
2748 C:\Windows\System32\taskeng.exe
2416 C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
2156 C:\Program Files\Apoint\ApMsgFwd.exe
2360 C:\Program Files\Apoint\Apvfb.exe
4364 C:\Program Files\Sony\VAIO Care\VCPerfService.exe
4756 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
4824 C:\Program Files\Windows Media Player\wmpnetwk.exe
1064 C:\Program Files\Sony\VAIO Care\VCsystray.exe
4352 C:\Program Files\Sony\VAIO Care\VCService.exe
1500 C:\Program Files\Sony\VAIO Care\VCAgent.exe
4904 C:\Windows\System32\vds.exe
184 C:\Program Files\Sony\VAIO Care\Admload.exe
4572 C:\Program Files (x86)\Internet Explorer\ielowutil.exe
1928 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
4260 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
4600 C:\Users\Philipp\AppData\Roaming\Dropbox\bin\Dropbox.exe
4608 C:\Program Files\Sony\VAIO Care\listener.exe
1384 C:\Windows\System32\audiodg.exe
1352 C:\Windows\System32\SearchProtocolHost.exe
1648 C:\Windows\System32\SearchFilterHost.exe
3888 dllhost.exe
356 dllhost.exe
3096 C:\Users\Philipp\Desktop\MBRCheck.exe
5008 C:\Windows\System32\conhost.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`c1800000 (NTFS)
PhysicalDrive0 Model Number: SAMSUNGHM321HI, Rev: 2AJ10001
Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79
Done!
|
|
14.07.2011, 00:04
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!! Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.07.2011, 14:25
| #23 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden hier schon mal ergebnisse von Malwarebytes und superantispyware: Code:
ATTFilter Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Datenbank Version: 7136
Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514
14.07.2011 15:21:11
mbam-log-2011-07-14 (15-21-11).txt
Art des Suchlaufs: Vollständiger Suchlauf (C:\|E:\|F:\|G:\|I:\|)
Durchsuchte Objekte: 390755
Laufzeit: 52 Minute(n), 53 Sekunde(n)
Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0
Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)
Infizierte Dateien:
(Keine bösartigen Objekte gefunden)
|
|
14.07.2011, 14:29
| #24 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefundenCode:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 07/14/2011 at 02:13 PM
Application Version : 4.55.1000
Core Rules Database Version : 7404
Trace Rules Database Version: 5216
Scan type : Complete Scan
Total Scan Time : 02:32:18
Memory items scanned : 738
Memory threats detected : 0
Registry items scanned : 15956
Registry threats detected : 0
File items scanned : 202561
File threats detected : 31
Adware.Tracking Cookie
C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Cookies\philipp@adbrite[2].txt
C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Cookies\philipp@2o7[1].txt
C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Cookies\philipp@paypal.112.2o7[1].txt
C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Cookies\philipp@smartadserver[2].txt
C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Cookies\philipp@atdmt[1].txt
C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Cookies\philipp@adx.chip[1].txt
C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Cookies\philipp@stats.paypal[2].txt
2mdn.net [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
ad-emea.doubleclick.net [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
adsatt.espn.go.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
adserv.quality-channel.de [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
broadcast.piximedia.fr [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
content.yieldmanager.edgesuite.net [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
hottraffic.nl [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
ia.media-imdb.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
ictv-tf-ec.indieclicktv.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
media.mtvnservices.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
media.scanscout.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
media.theonion.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
media2.firstshowing.net [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
mediadb.kicker.de [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
s0.2mdn.net [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
secure-uk.imrworldwide.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
secure-us.imrworldwide.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
serving-sys.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
speed.pointroll.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
vht.tradedoubler.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
www.99counters.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
www.ardmediathek.de [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
www.websitetrafficmakers.com [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
yieldmanager.edgesuite.net [ C:\Users\Philipp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\S72PKTJP ]
|
|
14.07.2011, 14:45
| #25 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Bislang nur Cookies. Bleibt noch das Ergebnis von ESET
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.07.2011, 23:41
| #26 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefundenCode:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=7b2ea5ca9eea014f8b5fcfc88755c006
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-07-14 10:37:27
# local_time=2011-07-15 12:37:27 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1797 16775165 100 94 121660 47208824 115313 0
# compatibility_mode=5893 16776574 100 94 175186 62306811 0 0
# compatibility_mode=8192 67108863 100 0 136 136 0 0
# scanned=237420
# found=0
# cleaned=0
# scan_time=6086
|
|
15.07.2011, 12:38
| #27 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Keine Funde!  Rechner wieder im Lot oder gibts noch Probleme und/oder andere Funde?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
15.07.2011, 12:53
| #28 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Also erst nochmal  wenn neue zugangsdaten für online-banking da sind, dann wird gespendent. Rund-Um-Die-Uhr service ist schon ausserordentlich...Rechner läuft auch wieder flüssig, bis auf avira: hängt sich weiterhin bei vollscan auf und zwar immer bei alter powerpoint (ich glaub das war damals office 2003). Hab jetzt mal versucht verschiedene alte ppts mit office 2010 zu öffnen und alle fehlerhaft. Dauert ewig, dann kommt reparieren Anfrage, was dann allerdings nicht geht.. Vor der Trojaner Sache hatte Avira noch keine Probleme beim scannen?? |
|
15.07.2011, 13:11
| #29 |
| | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden achja.. und die ppts waren alte von mir estellte und die betreffende, bei der sich avira beim scannen verabschiedet hat, hatte ich ohne öffnen gelöscht. Danach is scanner bei der nächsten hängen geblieben... |
|
15.07.2011, 14:47
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden Überleg dir gut, ob du in Zukunft weiterhin bei AntiVir bleiben willst. Die haben eine sehr fragwürdige Entscheidung getroffen, was nicht gerade seriös wirkt => http://www.trojaner-board.de/100374-...e-und-ask.html
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Comdirect 100 tan Abfrage, Trojaner mit Avira Personal gefunden |
| 100 tan, account, angemeldet, anmelden, avira, check, chip.de, ebay, einträge, erhalte, formatieren, forum, hallo zusammen, kennwörter, länger, melden, neue, nicht mehr, paypal, personal, rechner, rojaner gefunden, seite, sperren, tan, tans, trojaner, trojaner gefunden, wörter, zusammen, ändern |
Linear-Darstellung
