| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: TrojWare.Win32.Trojan.Agent.Gen@1 in temp/upd.exe gefunden! Lässt sich nicht löschenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
05.12.2011, 19:15
| #6 |
 |  TrojWare.Win32.Trojan.Agent.Gen@1 in temp/upd.exe gefunden! Lässt sich nicht löschen Hey Chris, Vielen Dank für Deine Mühe!  ok, Cache gelöscht. TDSS Killer hat sechs mittelgradig verdächtige Dateien/unsignierte Trieber entdeckt, die ich nun in Quarantäne geschickt habe. Im Report taucht die C:/Dokumente und Einstellungen/***/Lokale Einstellungen/temp/upd.exe nicht auf. Die Datei ist aber immer noch auf dem System zu finden. Meinst du das ist doch kein Virus?  Hier das Logfile vom TDSS-Killer: Code:
ATTFilter 18:57:08.0000 2728 TDSS rootkit removing tool 2.6.21.0 Nov 24 2011 12:32:44
18:57:08.0031 2728 ============================================================
18:57:08.0031 2728 Current date / time: 2011/12/05 18:57:08.0031
18:57:08.0031 2728 SystemInfo:
18:57:08.0031 2728
18:57:08.0031 2728 OS Version: 5.1.2600 ServicePack: 3.0
18:57:08.0031 2728 Product type: Workstation
18:57:08.0031 2728 ComputerName: ***
18:57:08.0031 2728 UserName: ***
18:57:08.0031 2728 Windows directory: C:\WINDOWS
18:57:08.0031 2728 System windows directory: C:\WINDOWS
18:57:08.0031 2728 Processor architecture: Intel x86
18:57:08.0031 2728 Number of processors: 1
18:57:08.0031 2728 Page size: 0x1000
18:57:08.0031 2728 Boot type: Normal boot
18:57:08.0031 2728 ============================================================
18:57:09.0359 2728 Initialize success
18:58:01.0125 1056 ============================================================
18:58:01.0125 1056 Scan started
18:58:01.0125 1056 Mode: Manual; SigCheck; TDLFS;
18:58:01.0125 1056 ============================================================
18:58:01.0625 1056 3xHybrid (547776909b02b61234820f145af30b52) C:\WINDOWS\system32\DRIVERS\3xHybrid.sys
18:58:02.0218 1056 3xHybrid - ok
18:58:02.0437 1056 Abiosdsk - ok
18:58:02.0640 1056 abp480n5 - ok
18:58:02.0687 1056 ACPI (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:58:02.0859 1056 ACPI - ok
18:58:02.0921 1056 ACPIEC (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:58:03.0093 1056 ACPIEC - ok
18:58:03.0312 1056 adpu160m - ok
18:58:03.0359 1056 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:58:03.0546 1056 aec - ok
18:58:03.0671 1056 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:58:03.0734 1056 AFD - ok
18:58:03.0953 1056 Aha154x - ok
18:58:04.0140 1056 aic78u2 - ok
18:58:04.0375 1056 aic78xx - ok
18:58:04.0609 1056 akshasp (3f9f42085ab5b6a55498a539c54575ab) C:\WINDOWS\system32\DRIVERS\akshasp.sys
18:58:04.0703 1056 akshasp - ok
18:58:04.0937 1056 aksusb (d2b95315cc47f9230006fdbcba394d8d) C:\WINDOWS\system32\DRIVERS\aksusb.sys
18:58:05.0000 1056 aksusb - ok
18:58:05.0171 1056 ALCXSENS (ba88534a3ceb6161e7432438b9ea4f54) C:\WINDOWS\system32\drivers\ALCXSENS.SYS
18:58:05.0390 1056 ALCXSENS - ok
18:58:05.0562 1056 ALCXWDM (6725434f5eb0a975b7716d68566e5d86) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
18:58:05.0765 1056 ALCXWDM - ok
18:58:06.0000 1056 AliIde - ok
18:58:06.0203 1056 amsint - ok
18:58:06.0390 1056 AR5416 (144c4cfe6fc60efb786e47143d090dbe) C:\WINDOWS\system32\DRIVERS\athw.sys
18:58:06.0687 1056 AR5416 ( UnsignedFile.Multi.Generic ) - warning
18:58:06.0687 1056 AR5416 - detected UnsignedFile.Multi.Generic (1)
18:58:06.0781 1056 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:58:06.0953 1056 Arp1394 - ok
18:58:07.0125 1056 ASAPIW2k (4f9cbbf95e8f7a0d4c0edcfe3b78102e) C:\WINDOWS\system32\drivers\Asapiw2k.sys
18:58:07.0171 1056 ASAPIW2k ( UnsignedFile.Multi.Generic ) - warning
18:58:07.0171 1056 ASAPIW2k - detected UnsignedFile.Multi.Generic (1)
18:58:07.0421 1056 asc - ok
18:58:07.0625 1056 asc3350p - ok
18:58:07.0828 1056 asc3550 - ok
18:58:07.0921 1056 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:58:08.0093 1056 AsyncMac - ok
18:58:08.0171 1056 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:58:08.0359 1056 atapi - ok
18:58:08.0562 1056 Atdisk - ok
18:58:08.0718 1056 ati2mtag (245212ad258b47dcc225d070c6fd5845) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:58:08.0937 1056 ati2mtag - ok
18:58:09.0031 1056 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:58:09.0234 1056 Atmarpc - ok
18:58:09.0359 1056 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:58:09.0531 1056 audstub - ok
18:58:09.0671 1056 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Programme\Avira\AntiVir Desktop\avgio.sys
18:58:09.0703 1056 avgio - ok
18:58:09.0937 1056 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
18:58:10.0000 1056 avgntflt - ok
18:58:10.0203 1056 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:58:10.0265 1056 avipbb - ok
18:58:10.0296 1056 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:58:10.0500 1056 Beep - ok
18:58:10.0640 1056 caboagp (906fcf0d1dc5b573015bbd21ef54bd88) C:\WINDOWS\system32\DRIVERS\atisgkaf.sys
18:58:10.0718 1056 caboagp - ok
18:58:10.0890 1056 CardReaderFilter (66b71dd7794d3b8a88ccb645896d3e53) C:\WINDOWS\system32\Drivers\USBCRFT.SYS
18:58:10.0921 1056 CardReaderFilter ( UnsignedFile.Multi.Generic ) - warning
18:58:10.0921 1056 CardReaderFilter - detected UnsignedFile.Multi.Generic (1)
18:58:10.0968 1056 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:58:11.0171 1056 cbidf2k - ok
18:58:11.0250 1056 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:58:11.0421 1056 CCDECODE - ok
18:58:11.0625 1056 cd20xrnt - ok
18:58:11.0671 1056 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:58:11.0875 1056 Cdaudio - ok
18:58:11.0953 1056 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:58:12.0125 1056 Cdfs - ok
18:58:12.0218 1056 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:58:12.0406 1056 Cdrom - ok
18:58:12.0625 1056 Changer - ok
18:58:12.0812 1056 cmdGuard (be1e51b694cadc4043e428a914ee544e) C:\WINDOWS\system32\DRIVERS\cmdguard.sys
18:58:12.0968 1056 cmdGuard - ok
18:58:13.0140 1056 cmdHlp (f0a78783a95b788856eec1c36d0a1e59) C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
18:58:13.0171 1056 cmdHlp - ok
18:58:13.0375 1056 CmdIde - ok
18:58:13.0593 1056 Cpqarray - ok
18:58:13.0828 1056 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\WINDOWS\system32\DRIVERS\CVirtA.sys
18:58:13.0875 1056 CVirtA - ok
18:58:14.0093 1056 dac2w2k - ok
18:58:14.0296 1056 dac960nt - ok
18:58:14.0453 1056 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:58:14.0625 1056 Disk - ok
18:58:14.0750 1056 dmboot (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
18:58:15.0046 1056 dmboot - ok
18:58:15.0156 1056 dmio (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
18:58:15.0359 1056 dmio - ok
18:58:15.0390 1056 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:58:15.0578 1056 dmload - ok
18:58:15.0671 1056 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:58:15.0843 1056 DMusic - ok
18:58:16.0078 1056 DNE (b5aa5aa5ac327bd7c1aec0c58f0c1144) C:\WINDOWS\system32\DRIVERS\dne2000.sys
18:58:16.0125 1056 DNE - ok
18:58:16.0359 1056 dpti2o - ok
18:58:16.0453 1056 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:58:16.0609 1056 drmkaud - ok
18:58:16.0718 1056 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:58:16.0921 1056 Fastfat - ok
18:58:17.0031 1056 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:58:17.0203 1056 Fdc - ok
18:58:17.0296 1056 Fips (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
18:58:17.0484 1056 Fips - ok
18:58:17.0578 1056 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:58:17.0765 1056 Flpydisk - ok
18:58:17.0843 1056 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:58:18.0046 1056 FltMgr - ok
18:58:18.0109 1056 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:58:18.0312 1056 Fs_Rec - ok
18:58:18.0343 1056 Ftdisk (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:58:18.0546 1056 Ftdisk - ok
18:58:18.0765 1056 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
18:58:18.0796 1056 GEARAspiWDM - ok
18:58:18.0890 1056 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:58:19.0062 1056 Gpc - ok
18:58:19.0343 1056 Hardlock (d95554949082fd29a04d351b58396718) C:\WINDOWS\system32\drivers\hardlock.sys
18:58:19.0593 1056 Hardlock - ok
18:58:19.0750 1056 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:58:19.0921 1056 hidusb - ok
18:58:20.0140 1056 hpn - ok
18:58:20.0343 1056 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:58:20.0406 1056 HTTP - ok
18:58:20.0625 1056 i2omgmt - ok
18:58:20.0843 1056 i2omp - ok
18:58:20.0937 1056 i8042prt (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:58:21.0125 1056 i8042prt - ok
18:58:21.0343 1056 IIUSBISP - ok
18:58:21.0437 1056 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:58:21.0609 1056 Imapi - ok
18:58:21.0859 1056 ini910u - ok
18:58:22.0078 1056 Inspect (d22ac37cbe6cf295416ef84245b804a8) C:\WINDOWS\system32\DRIVERS\inspect.sys
18:58:22.0125 1056 Inspect - ok
18:58:22.0359 1056 IntelIde - ok
18:58:22.0453 1056 intelppm (4c7d2750158ed6e7ad642d97bffae351) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:58:22.0609 1056 intelppm - ok
18:58:22.0796 1056 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:58:22.0968 1056 Ip6Fw - ok
18:58:23.0031 1056 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:58:23.0234 1056 IpFilterDriver - ok
18:58:23.0328 1056 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:58:23.0500 1056 IpInIp - ok
18:58:23.0609 1056 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:58:23.0781 1056 IpNat - ok
18:58:23.0875 1056 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:58:24.0062 1056 IPSec - ok
18:58:24.0171 1056 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:58:24.0343 1056 IRENUM - ok
18:58:24.0453 1056 isapnp (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:58:24.0625 1056 isapnp - ok
18:58:24.0734 1056 Kbdclass (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:58:24.0906 1056 Kbdclass - ok
18:58:24.0984 1056 kbdhid (b6d6c117d771c98130497265f26d1882) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:58:25.0156 1056 kbdhid - ok
18:58:25.0265 1056 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:58:25.0453 1056 kmixer - ok
18:58:25.0687 1056 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:58:25.0765 1056 KSecDD - ok
18:58:26.0000 1056 lbrtfdc - ok
18:58:26.0218 1056 MBAMSwissArmy - ok
18:58:26.0296 1056 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:58:26.0484 1056 mnmdd - ok
18:58:26.0593 1056 Modem (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
18:58:26.0765 1056 Modem - ok
18:58:26.0875 1056 Mouclass (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:58:27.0046 1056 Mouclass - ok
18:58:27.0109 1056 mouhid (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:58:27.0312 1056 mouhid - ok
18:58:27.0406 1056 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:58:27.0578 1056 MountMgr - ok
18:58:27.0671 1056 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
18:58:27.0875 1056 MPE - ok
18:58:28.0078 1056 mraid35x - ok
18:58:28.0187 1056 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:58:28.0390 1056 MRxDAV - ok
18:58:28.0531 1056 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:58:28.0640 1056 MRxSmb - ok
18:58:28.0812 1056 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:58:28.0984 1056 Msfs - ok
18:58:29.0093 1056 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:58:29.0265 1056 MSKSSRV - ok
18:58:29.0359 1056 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:58:29.0531 1056 MSPCLOCK - ok
18:58:29.0625 1056 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:58:29.0812 1056 MSPQM - ok
18:58:30.0000 1056 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:58:30.0140 1056 mssmbios - ok
18:58:30.0296 1056 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
18:58:30.0468 1056 MSTEE - ok
18:58:30.0578 1056 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:58:30.0625 1056 Mup - ok
18:58:30.0750 1056 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:58:30.0921 1056 NABTSFEC - ok
18:58:31.0046 1056 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:58:31.0250 1056 NDIS - ok
18:58:31.0375 1056 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:58:31.0546 1056 NdisIP - ok
18:58:31.0656 1056 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:58:31.0703 1056 NdisTapi - ok
18:58:31.0812 1056 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:58:31.0984 1056 Ndisuio - ok
18:58:32.0093 1056 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:58:32.0281 1056 NdisWan - ok
18:58:32.0500 1056 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:58:32.0546 1056 NDProxy - ok
18:58:32.0640 1056 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:58:32.0859 1056 NetBIOS - ok
18:58:33.0000 1056 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:58:33.0187 1056 NetBT - ok
18:58:33.0375 1056 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:58:33.0531 1056 NIC1394 - ok
18:58:33.0640 1056 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:58:33.0828 1056 Npfs - ok
18:58:33.0953 1056 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:58:34.0218 1056 Ntfs - ok
18:58:34.0296 1056 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:58:34.0500 1056 Null - ok
18:58:34.0546 1056 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:58:34.0750 1056 NwlnkFlt - ok
18:58:34.0796 1056 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:58:35.0000 1056 NwlnkFwd - ok
18:58:35.0156 1056 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:58:35.0328 1056 ohci1394 - ok
18:58:35.0500 1056 Parport (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
18:58:35.0671 1056 Parport - ok
18:58:35.0812 1056 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:58:35.0984 1056 PartMgr - ok
18:58:36.0015 1056 ParVdm (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
18:58:36.0203 1056 ParVdm - ok
18:58:36.0328 1056 PCI (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
18:58:36.0500 1056 PCI - ok
18:58:36.0718 1056 PCIDump - ok
18:58:36.0781 1056 PCIIde (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:58:36.0968 1056 PCIIde - ok
18:58:37.0093 1056 Pcmcia (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:58:37.0312 1056 Pcmcia - ok
18:58:37.0515 1056 Pcouffin (5b68c60b01dac03d895ec1ca0a0365da) C:\WINDOWS\system32\Drivers\Pcouffin.sys
18:58:37.0546 1056 Pcouffin ( UnsignedFile.Multi.Generic ) - warning
18:58:37.0546 1056 Pcouffin - detected UnsignedFile.Multi.Generic (1)
18:58:37.0781 1056 PDCOMP - ok
18:58:37.0984 1056 PDFRAME - ok
18:58:38.0187 1056 PDRELI - ok
18:58:38.0406 1056 PDRFRAME - ok
18:58:38.0609 1056 perc2 - ok
18:58:38.0828 1056 perc2hib - ok
18:58:39.0203 1056 pfc (5903fa75200807ad739286bbf40c4904) C:\WINDOWS\system32\drivers\pfc.sys
18:58:39.0250 1056 pfc ( UnsignedFile.Multi.Generic ) - warning
18:58:39.0250 1056 pfc - detected UnsignedFile.Multi.Generic (1)
18:58:39.0390 1056 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:58:39.0562 1056 PptpMiniport - ok
18:58:39.0703 1056 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:58:39.0906 1056 PSched - ok
18:58:39.0953 1056 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:58:40.0140 1056 Ptilink - ok
18:58:40.0390 1056 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:58:40.0437 1056 PxHelp20 - ok
18:58:40.0640 1056 ql1080 - ok
18:58:40.0859 1056 Ql10wnt - ok
18:58:41.0062 1056 ql12160 - ok
18:58:41.0281 1056 ql1240 - ok
18:58:41.0484 1056 ql1280 - ok
18:58:41.0687 1056 QV2KUX (0087f01d35a65b32393cc8bba46ee4a6) C:\WINDOWS\system32\DRIVERS\qv2kux.sys
18:58:41.0890 1056 QV2KUX - ok
18:58:41.0937 1056 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:58:42.0125 1056 RasAcd - ok
18:58:42.0250 1056 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:58:42.0421 1056 Rasl2tp - ok
18:58:42.0546 1056 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:58:42.0703 1056 RasPppoe - ok
18:58:42.0765 1056 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:58:42.0953 1056 Raspti - ok
18:58:43.0093 1056 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:58:43.0296 1056 Rdbss - ok
18:58:43.0359 1056 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:58:43.0531 1056 RDPCDD - ok
18:58:43.0671 1056 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:58:43.0734 1056 RDPWD - ok
18:58:43.0890 1056 redbook (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:58:44.0062 1056 redbook - ok
18:58:44.0218 1056 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
18:58:44.0359 1056 rtl8139 - ok
18:58:44.0546 1056 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:58:44.0718 1056 Secdrv - ok
18:58:44.0875 1056 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:58:45.0046 1056 serenum - ok
18:58:45.0171 1056 Serial (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
18:58:45.0375 1056 Serial - ok
18:58:45.0546 1056 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
18:58:45.0703 1056 Sfloppy - ok
18:58:45.0937 1056 Simbad - ok
18:58:46.0078 1056 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:58:46.0281 1056 SLIP - ok
18:58:46.0500 1056 Sparrow - ok
18:58:46.0640 1056 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:58:46.0812 1056 splitter - ok
18:58:46.0984 1056 sr (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
18:58:47.0156 1056 sr - ok
18:58:47.0328 1056 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:58:47.0421 1056 Srv - ok
18:58:47.0640 1056 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:58:47.0671 1056 ssmdrv - ok
18:58:47.0843 1056 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:58:48.0015 1056 streamip - ok
18:58:48.0156 1056 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:58:48.0328 1056 swenum - ok
18:58:48.0484 1056 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:58:48.0656 1056 swmidi - ok
18:58:48.0921 1056 symc810 - ok
18:58:49.0125 1056 symc8xx - ok
18:58:49.0343 1056 sym_hi - ok
18:58:49.0546 1056 sym_u3 - ok
18:58:49.0687 1056 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:58:49.0875 1056 sysaudio - ok
18:58:50.0046 1056 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:58:50.0218 1056 Tcpip - ok
18:58:50.0406 1056 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:58:50.0578 1056 TDPIPE - ok
18:58:50.0703 1056 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:58:50.0890 1056 TDTCP - ok
18:58:51.0046 1056 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:58:51.0218 1056 TermDD - ok
18:58:51.0437 1056 TosIde - ok
18:58:51.0546 1056 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:58:51.0718 1056 Udfs - ok
18:58:51.0921 1056 UKBFLT (121b9eb8372f9309b12a2c698f655f84) C:\WINDOWS\system32\DRIVERS\UKBFLT.sys
18:58:51.0984 1056 UKBFLT - ok
18:58:52.0187 1056 ultra - ok
18:58:52.0390 1056 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:58:52.0625 1056 Update - ok
18:58:52.0828 1056 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
18:58:53.0000 1056 usbaudio - ok
18:58:53.0156 1056 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:58:53.0343 1056 usbccgp - ok
18:58:53.0500 1056 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:58:53.0671 1056 usbehci - ok
18:58:53.0828 1056 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:58:54.0000 1056 usbhub - ok
18:58:54.0140 1056 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:58:54.0328 1056 usbohci - ok
18:58:54.0468 1056 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:58:54.0640 1056 usbprint - ok
18:58:54.0859 1056 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:58:55.0046 1056 usbscan - ok
18:58:55.0234 1056 USBSNXSTOR (6ccba8c43a2f18de0507bb967c4bd968) C:\WINDOWS\system32\DRIVERS\Usbsnx2k.SYS
18:58:55.0281 1056 USBSNXSTOR ( UnsignedFile.Multi.Generic ) - warning
18:58:55.0281 1056 USBSNXSTOR - detected UnsignedFile.Multi.Generic (1)
18:58:55.0453 1056 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:58:55.0609 1056 USBSTOR - ok
18:58:55.0765 1056 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:58:55.0937 1056 VgaSave - ok
18:58:56.0156 1056 ViaIde - ok
18:58:56.0328 1056 VolSnap (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
18:58:56.0500 1056 VolSnap - ok
18:58:58.0062 1056 vsdatant - ok
18:58:58.0250 1056 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:58:58.0421 1056 Wanarp - ok
18:58:58.0625 1056 wanatw - ok
18:58:58.0843 1056 WDICA - ok
18:58:59.0000 1056 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:58:59.0171 1056 wdmaud - ok
18:58:59.0468 1056 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:58:59.0625 1056 WSTCODEC - ok
18:58:59.0703 1056 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0
18:58:59.0859 1056 \Device\Harddisk0\DR0 - ok
18:58:59.0875 1056 Boot (0x1200) (02170aba6e47dbb39a85df4ddf67e983) \Device\Harddisk0\DR0\Partition0
18:58:59.0875 1056 \Device\Harddisk0\DR0\Partition0 - ok
18:58:59.0875 1056 Boot (0x1200) (97a9492ae79bd5c10ec566ac80d3a734) \Device\Harddisk0\DR0\Partition1
18:58:59.0875 1056 \Device\Harddisk0\DR0\Partition1 - ok
18:58:59.0890 1056 ============================================================
18:58:59.0890 1056 Scan finished
18:58:59.0890 1056 ============================================================
18:59:00.0015 2788 Detected object count: 6
18:59:00.0015 2788 Actual detected object count: 6
18:59:45.0265 2788 C:\WINDOWS\system32\DRIVERS\athw.sys - copied to quarantine
18:59:45.0281 2788 AR5416 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:59:45.0468 2788 C:\WINDOWS\system32\drivers\Asapiw2k.sys - copied to quarantine
18:59:45.0468 2788 ASAPIW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:59:45.0640 2788 C:\WINDOWS\system32\Drivers\USBCRFT.SYS - copied to quarantine
18:59:45.0640 2788 CardReaderFilter ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:59:45.0921 2788 C:\WINDOWS\system32\Drivers\Pcouffin.sys - copied to quarantine
18:59:45.0921 2788 Pcouffin ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:59:46.0125 2788 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
18:59:46.0125 2788 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:59:46.0343 2788 C:\WINDOWS\system32\DRIVERS\Usbsnx2k.SYS - copied to quarantine
18:59:46.0359 2788 USBSNXSTOR ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
viele Grüße Ratlos |
| Themen zu TrojWare.Win32.Trojan.Agent.Gen@1 in temp/upd.exe gefunden! Lässt sich nicht löschen |
| anleitung, autostart, code, comodo, datei, dateien, ebenfalls, entfernen, explorer, folge, internet, log, logfiles, löschen, meldung, namen, neustart, nicht löschen, rechner, security, suche, treiber, trojaner, trojware.win32.trojan.agent.gen, viren, virus |
Baum-Darstellung