BKA Warnung ...Trojaner verweist auf eine Pornoseite

Rosi · 18.01.2012, 07:51

07:42:45.0921 3032 TDSS rootkit removing tool 2.7.3.0 Jan 16 2012 18:53:41
07:42:46.0328 3032 ============================================================
07:42:46.0328 3032 Current date / time: 2012/01/18 07:42:46.0328
07:42:46.0328 3032 SystemInfo:
07:42:46.0328 3032
07:42:46.0328 3032 OS Version: 5.1.2600 ServicePack: 3.0
07:42:46.0328 3032 Product type: Workstation
07:42:46.0328 3032 ComputerName: PRIVAT-D96A24D9
07:42:46.0328 3032 UserName: Toro
07:42:46.0328 3032 Windows directory: C:\WINDOWS
07:42:46.0328 3032 System windows directory: C:\WINDOWS
07:42:46.0328 3032 Processor architecture: Intel x86
07:42:46.0328 3032 Number of processors: 2
07:42:46.0328 3032 Page size: 0x1000
07:42:46.0328 3032 Boot type: Normal boot
07:42:46.0328 3032 ============================================================
07:42:47.0578 3032 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
07:42:47.0609 3032 Initialize success
07:45:15.0593 3308 ============================================================
07:45:15.0593 3308 Scan started
07:45:15.0593 3308 Mode: Manual; SigCheck; TDLFS;
07:45:15.0593 3308 ============================================================
07:45:15.0703 3308 Abiosdsk - ok
07:45:15.0703 3308 abp480n5 - ok
07:45:15.0781 3308 ACPI (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
07:45:16.0625 3308 ACPI - ok
07:45:16.0718 3308 ACPIEC (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
07:45:16.0859 3308 ACPIEC - ok
07:45:16.0906 3308 adpu160m - ok
07:45:16.0968 3308 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
07:45:17.0078 3308 aec - ok
07:45:17.0171 3308 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
07:45:17.0265 3308 AFD - ok
07:45:17.0375 3308 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
07:45:17.0390 3308 AFS2K ( UnsignedFile.Multi.Generic ) - warning
07:45:17.0390 3308 AFS2K - detected UnsignedFile.Multi.Generic (1)
07:45:17.0406 3308 Aha154x - ok
07:45:17.0406 3308 aic78u2 - ok
07:45:17.0453 3308 aic78xx - ok
07:45:17.0468 3308 AliIde - ok
07:45:17.0531 3308 amsint - ok
07:45:17.0578 3308 asc - ok
07:45:17.0578 3308 asc3350p - ok
07:45:17.0593 3308 asc3550 - ok
07:45:17.0656 3308 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
07:45:17.0765 3308 AsyncMac - ok
07:45:17.0828 3308 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
07:45:17.0921 3308 atapi - ok
07:45:18.0000 3308 Atdisk - ok
07:45:18.0078 3308 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
07:45:18.0203 3308 Atmarpc - ok
07:45:18.0359 3308 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
07:45:18.0515 3308 audstub - ok
07:45:18.0640 3308 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Programme\Avira\AntiVir Desktop\avgio.sys
07:45:18.0671 3308 avgio - ok
07:45:18.0750 3308 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
07:45:18.0859 3308 avgntflt - ok
07:45:18.0890 3308 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
07:45:18.0906 3308 avipbb - ok
07:45:18.0937 3308 AVMUNET (077b3692f4376d1539755761feef659a) C:\WINDOWS\system32\DRIVERS\avmunet.sys
07:45:18.0984 3308 AVMUNET - ok
07:45:19.0031 3308 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
07:45:19.0203 3308 Beep - ok
07:45:19.0296 3308 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
07:45:19.0421 3308 cbidf2k - ok
07:45:19.0484 3308 cd20xrnt - ok
07:45:19.0515 3308 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
07:45:19.0625 3308 Cdaudio - ok
07:45:19.0734 3308 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
07:45:19.0875 3308 Cdfs - ok
07:45:19.0906 3308 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
07:45:20.0015 3308 Cdrom - ok
07:45:20.0093 3308 Changer - ok
07:45:20.0125 3308 CmdIde - ok
07:45:20.0171 3308 Cpqarray - ok
07:45:20.0203 3308 dac2w2k - ok
07:45:20.0218 3308 dac960nt - ok
07:45:20.0296 3308 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
07:45:20.0437 3308 Disk - ok
07:45:20.0500 3308 dmboot (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
07:45:20.0671 3308 dmboot - ok
07:45:20.0781 3308 dmio (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
07:45:20.0937 3308 dmio - ok
07:45:21.0046 3308 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
07:45:21.0187 3308 dmload - ok
07:45:21.0250 3308 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
07:45:21.0390 3308 DMusic - ok
07:45:21.0453 3308 dpti2o - ok
07:45:21.0578 3308 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
07:45:21.0671 3308 drmkaud - ok
07:45:21.0750 3308 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
07:45:21.0906 3308 Fastfat - ok
07:45:21.0937 3308 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
07:45:22.0046 3308 Fdc - ok
07:45:22.0109 3308 Fips (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
07:45:22.0250 3308 Fips - ok
07:45:22.0359 3308 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
07:45:22.0500 3308 Flpydisk - ok
07:45:22.0593 3308 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
07:45:22.0703 3308 FltMgr - ok
07:45:22.0750 3308 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
07:45:22.0890 3308 Fs_Rec - ok
07:45:22.0937 3308 Ftdisk (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
07:45:23.0093 3308 Ftdisk - ok
07:45:23.0093 3308 FXDrv32 - ok
07:45:23.0156 3308 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
07:45:23.0250 3308 Gpc - ok
07:45:23.0359 3308 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
07:45:23.0453 3308 HDAudBus - ok
07:45:23.0562 3308 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
07:45:23.0671 3308 hidusb - ok
07:45:23.0750 3308 hpn - ok
07:45:23.0828 3308 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
07:45:23.0875 3308 HTTP - ok
07:45:23.0921 3308 i2omgmt - ok
07:45:23.0921 3308 i2omp - ok
07:45:23.0984 3308 i8042prt (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\drivers\i8042prt.sys
07:45:24.0140 3308 i8042prt - ok
07:45:24.0406 3308 ialm (12c7f8d581c4a9f126f5f8f5683a1c29) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
07:45:24.0812 3308 ialm - ok
07:45:24.0906 3308 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
07:45:25.0046 3308 Imapi - ok
07:45:25.0093 3308 ini910u - ok
07:45:25.0328 3308 IntcAzAudAddService (8f924588c272fdaa28cf31a9bbc21a72) C:\WINDOWS\system32\drivers\RtkHDAud.sys
07:45:25.0890 3308 IntcAzAudAddService - ok
07:45:25.0953 3308 IntelIde - ok
07:45:26.0031 3308 intelppm (4c7d2750158ed6e7ad642d97bffae351) C:\WINDOWS\system32\DRIVERS\intelppm.sys
07:45:26.0140 3308 intelppm - ok
07:45:26.0187 3308 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
07:45:26.0312 3308 Ip6Fw - ok
07:45:26.0406 3308 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
07:45:26.0531 3308 IpFilterDriver - ok
07:45:26.0625 3308 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
07:45:26.0734 3308 IpInIp - ok
07:45:26.0781 3308 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
07:45:26.0875 3308 IpNat - ok
07:45:26.0906 3308 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
07:45:27.0015 3308 IPSec - ok
07:45:27.0093 3308 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
07:45:27.0218 3308 IRENUM - ok
07:45:27.0281 3308 isapnp (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
07:45:27.0375 3308 isapnp - ok
07:45:27.0453 3308 Kbdclass (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
07:45:27.0578 3308 Kbdclass - ok
07:45:27.0687 3308 kbdhid (b6d6c117d771c98130497265f26d1882) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
07:45:27.0781 3308 kbdhid - ok
07:45:27.0890 3308 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
07:45:28.0031 3308 kmixer - ok
07:45:28.0140 3308 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
07:45:28.0218 3308 KSecDD - ok
07:45:28.0234 3308 lbrtfdc - ok
07:45:28.0312 3308 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
07:45:28.0421 3308 mnmdd - ok
07:45:28.0531 3308 Modem (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
07:45:28.0640 3308 Modem - ok
07:45:28.0703 3308 Mouclass (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
07:45:28.0828 3308 Mouclass - ok
07:45:28.0859 3308 mouhid (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys
07:45:29.0015 3308 mouhid - ok
07:45:29.0062 3308 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
07:45:29.0203 3308 MountMgr - ok
07:45:29.0265 3308 mraid35x - ok
07:45:29.0312 3308 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
07:45:29.0437 3308 MRxDAV - ok
07:45:29.0515 3308 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
07:45:29.0593 3308 MRxSmb - ok
07:45:29.0687 3308 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
07:45:29.0812 3308 Msfs - ok
07:45:29.0859 3308 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
07:45:29.0968 3308 MSKSSRV - ok
07:45:30.0000 3308 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
07:45:30.0093 3308 MSPCLOCK - ok
07:45:30.0187 3308 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
07:45:30.0296 3308 MSPQM - ok
07:45:30.0406 3308 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
07:45:30.0500 3308 mssmbios - ok
07:45:30.0593 3308 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
07:45:30.0640 3308 Mup - ok
07:45:30.0718 3308 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
07:45:30.0828 3308 NDIS - ok
07:45:30.0875 3308 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
07:45:30.0921 3308 NdisTapi - ok
07:45:30.0984 3308 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
07:45:31.0125 3308 Ndisuio - ok
07:45:31.0187 3308 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
07:45:31.0296 3308 NdisWan - ok
07:45:31.0390 3308 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
07:45:31.0421 3308 NDProxy - ok
07:45:31.0500 3308 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
07:45:31.0593 3308 NetBIOS - ok
07:45:31.0718 3308 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
07:45:31.0859 3308 NetBT - ok
07:45:31.0921 3308 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
07:45:32.0062 3308 Npfs - ok
07:45:32.0171 3308 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
07:45:32.0343 3308 Ntfs - ok
07:45:32.0453 3308 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
07:45:32.0578 3308 Null - ok
07:45:32.0671 3308 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
07:45:32.0796 3308 NwlnkFlt - ok
07:45:32.0859 3308 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
07:45:32.0984 3308 NwlnkFwd - ok
07:45:33.0093 3308 Parport (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
07:45:33.0234 3308 Parport - ok
07:45:33.0343 3308 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
07:45:33.0437 3308 PartMgr - ok
07:45:33.0531 3308 ParVdm (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
07:45:33.0656 3308 ParVdm - ok
07:45:33.0750 3308 PCI (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
07:45:33.0890 3308 PCI - ok
07:45:33.0906 3308 PCIDump - ok
07:45:33.0968 3308 PCIIde (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
07:45:34.0125 3308 PCIIde - ok
07:45:34.0218 3308 Pcmcia (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
07:45:34.0359 3308 Pcmcia - ok
07:45:34.0421 3308 PDCOMP - ok
07:45:34.0453 3308 PDFRAME - ok
07:45:34.0500 3308 PDRELI - ok
07:45:34.0531 3308 PDRFRAME - ok
07:45:34.0562 3308 perc2 - ok
07:45:34.0609 3308 perc2hib - ok
07:45:34.0703 3308 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
07:45:34.0796 3308 PptpMiniport - ok
07:45:34.0812 3308 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
07:45:34.0921 3308 PSched - ok
07:45:35.0000 3308 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
07:45:35.0140 3308 Ptilink - ok
07:45:35.0187 3308 ql1080 - ok
07:45:35.0234 3308 Ql10wnt - ok
07:45:35.0250 3308 ql12160 - ok
07:45:35.0265 3308 ql1240 - ok
07:45:35.0265 3308 ql1280 - ok
07:45:35.0281 3308 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
07:45:35.0406 3308 RasAcd - ok
07:45:35.0500 3308 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
07:45:35.0640 3308 Rasl2tp - ok
07:45:35.0703 3308 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
07:45:35.0796 3308 RasPppoe - ok
07:45:35.0875 3308 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
07:45:36.0000 3308 Raspti - ok
07:45:36.0062 3308 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
07:45:36.0218 3308 Rdbss - ok
07:45:36.0328 3308 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
07:45:36.0484 3308 RDPCDD - ok
07:45:36.0593 3308 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
07:45:36.0718 3308 rdpdr - ok
07:45:36.0828 3308 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
07:45:36.0890 3308 RDPWD - ok
07:45:37.0015 3308 redbook (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
07:45:37.0109 3308 redbook - ok
07:45:37.0234 3308 RTLE8023xp (badabe0940c01619e8510b90fb314929) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
07:45:37.0281 3308 RTLE8023xp - ok
07:45:37.0343 3308 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
07:45:37.0468 3308 Secdrv - ok
07:45:37.0515 3308 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
07:45:37.0656 3308 serenum - ok
07:45:37.0750 3308 Serial (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
07:45:37.0843 3308 Serial - ok
07:45:37.0875 3308 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
07:45:37.0968 3308 Sfloppy - ok
07:45:37.0984 3308 Simbad - ok
07:45:38.0000 3308 Sparrow - ok
07:45:38.0015 3308 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
07:45:38.0156 3308 splitter - ok
07:45:38.0250 3308 sr (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
07:45:38.0390 3308 sr - ok
07:45:38.0500 3308 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
07:45:38.0546 3308 Srv - ok
07:45:38.0656 3308 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
07:45:38.0687 3308 ssmdrv - ok
07:45:38.0734 3308 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
07:45:38.0828 3308 swenum - ok
07:45:38.0859 3308 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
07:45:39.0000 3308 swmidi - ok
07:45:39.0062 3308 symc810 - ok
07:45:39.0093 3308 symc8xx - ok
07:45:39.0093 3308 sym_hi - ok
07:45:39.0109 3308 sym_u3 - ok
07:45:39.0171 3308 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
07:45:39.0312 3308 sysaudio - ok
07:45:39.0421 3308 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
07:45:39.0515 3308 Tcpip - ok
07:45:39.0546 3308 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
07:45:39.0656 3308 TDPIPE - ok
07:45:39.0718 3308 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
07:45:39.0828 3308 TDTCP - ok
07:45:39.0875 3308 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
07:45:40.0000 3308 TermDD - ok
07:45:40.0031 3308 TosIde - ok
07:45:40.0062 3308 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
07:45:40.0171 3308 Udfs - ok
07:45:40.0171 3308 ultra - ok
07:45:40.0265 3308 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
07:45:40.0406 3308 Update - ok
07:45:40.0468 3308 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
07:45:40.0578 3308 usbccgp - ok
07:45:40.0687 3308 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
07:45:40.0828 3308 usbehci - ok
07:45:40.0875 3308 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
07:45:40.0984 3308 usbhub - ok
07:45:41.0000 3308 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
07:45:41.0125 3308 usbprint - ok
07:45:41.0171 3308 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
07:45:41.0281 3308 usbscan - ok
07:45:41.0375 3308 usbsermptxp (af4b8cc5ea40c57208796920068ddcd5) C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys
07:45:41.0406 3308 usbsermptxp ( UnsignedFile.Multi.Generic ) - warning
07:45:41.0406 3308 usbsermptxp - detected UnsignedFile.Multi.Generic (1)
07:45:41.0453 3308 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
07:45:41.0546 3308 USBSTOR - ok
07:45:41.0625 3308 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
07:45:41.0765 3308 usbuhci - ok
07:45:41.0875 3308 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
07:45:41.0968 3308 VgaSave - ok
07:45:42.0046 3308 ViaIde - ok
07:45:42.0156 3308 VolSnap (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
07:45:42.0265 3308 VolSnap - ok
07:45:42.0375 3308 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
07:45:42.0515 3308 Wanarp - ok
07:45:42.0578 3308 WDICA - ok
07:45:42.0625 3308 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
07:45:42.0734 3308 wdmaud - ok
07:45:42.0890 3308 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
07:45:43.0046 3308 WS2IFSL - ok
07:45:43.0093 3308 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0
07:45:43.0109 3308 \Device\Harddisk0\DR0 ( Backdoor.Win32.Sinowal.knf ) - infected
07:45:43.0109 3308 \Device\Harddisk0\DR0 - detected Backdoor.Win32.Sinowal.knf (0)
07:45:43.0125 3308 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
07:45:43.0125 3308 \Device\Harddisk0\DR0 - detected TDSS File System (1)
07:45:43.0125 3308 Boot (0x1200) (61a6b87c588eb85b89c5cd4dddc04b6a) \Device\Harddisk0\DR0\Partition0
07:45:43.0125 3308 \Device\Harddisk0\DR0\Partition0 - ok
07:45:43.0125 3308 ============================================================
07:45:43.0125 3308 Scan finished
07:45:43.0125 3308 ============================================================
07:45:43.0234 1904 Detected object count: 4
07:45:43.0234 1904 Actual detected object count: 4
07:47:41.0656 1904 AFS2K ( UnsignedFile.Multi.Generic ) - skipped by user
07:47:41.0656 1904 AFS2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:47:41.0656 1904 usbsermptxp ( UnsignedFile.Multi.Generic ) - skipped by user
07:47:41.0656 1904 usbsermptxp ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:47:41.0656 1904 \Device\Harddisk0\DR0 ( Backdoor.Win32.Sinowal.knf ) - skipped by user
07:47:41.0656 1904 \Device\Harddisk0\DR0 ( Backdoor.Win32.Sinowal.knf ) - User select action: Skip
07:47:41.0656 1904 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
07:47:41.0656 1904 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

cosinus · 18.01.2012, 12:11

Zitat:

07:47:41.0656 1904 \Device\Harddisk0\DR0 ( Backdoor.Win32.Sinowal.knf ) - User select action: Skip
07:47:41.0656 1904 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user

Das TDSS File System und den Sinowal (und bitte nur diesen beiden!!!) mit dem TDSS-Killer löschen lassen, starte Windows danach neu und mach ein neues Log mit diesem Tool. Poste es wieder mit CODE-Tags umschlossen.

Rosi · 18.01.2012, 12:56

12:51:32.0140 3776 TDSS rootkit removing tool 2.7.5.0 Jan 18 2012 09:26:24
12:51:32.0390 3776 ============================================================
12:51:32.0390 3776 Current date / time: 2012/01/18 12:51:32.0390
12:51:32.0390 3776 SystemInfo:
12:51:32.0390 3776
12:51:32.0390 3776 OS Version: 5.1.2600 ServicePack: 3.0
12:51:32.0390 3776 Product type: Workstation
12:51:32.0390 3776 ComputerName: PRIVAT-D96A24D9
12:51:32.0390 3776 UserName: Toro
12:51:32.0390 3776 Windows directory: C:\WINDOWS
12:51:32.0390 3776 System windows directory: C:\WINDOWS
12:51:32.0390 3776 Processor architecture: Intel x86
12:51:32.0390 3776 Number of processors: 2
12:51:32.0390 3776 Page size: 0x1000
12:51:32.0390 3776 Boot type: Normal boot
12:51:32.0390 3776 ============================================================
12:51:33.0265 3776 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:51:33.0328 3776 Initialize success
12:51:40.0953 3916 ============================================================
12:51:40.0953 3916 Scan started
12:51:40.0953 3916 Mode: Manual; SigCheck; TDLFS;
12:51:40.0953 3916 ============================================================
12:51:41.0031 3916 Abiosdsk - ok
12:51:41.0046 3916 abp480n5 - ok
12:51:41.0109 3916 ACPI (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:51:41.0890 3916 ACPI - ok
12:51:42.0000 3916 ACPIEC (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
12:51:42.0125 3916 ACPIEC - ok
12:51:42.0171 3916 adpu160m - ok
12:51:42.0281 3916 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
12:51:42.0390 3916 aec - ok
12:51:42.0484 3916 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
12:51:42.0593 3916 AFD - ok
12:51:42.0671 3916 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
12:51:42.0687 3916 AFS2K ( UnsignedFile.Multi.Generic ) - warning
12:51:42.0687 3916 AFS2K - detected UnsignedFile.Multi.Generic (1)
12:51:42.0703 3916 Aha154x - ok
12:51:42.0703 3916 aic78u2 - ok
12:51:42.0734 3916 aic78xx - ok
12:51:42.0750 3916 AliIde - ok
12:51:42.0796 3916 amsint - ok
12:51:42.0875 3916 asc - ok
12:51:42.0890 3916 asc3350p - ok
12:51:42.0937 3916 asc3550 - ok
12:51:43.0046 3916 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:51:43.0140 3916 AsyncMac - ok
12:51:43.0171 3916 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
12:51:43.0265 3916 atapi - ok
12:51:43.0281 3916 Atdisk - ok
12:51:43.0328 3916 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:51:43.0437 3916 Atmarpc - ok
12:51:43.0531 3916 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
12:51:43.0640 3916 audstub - ok
12:51:43.0765 3916 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Programme\Avira\AntiVir Desktop\avgio.sys
12:51:43.0781 3916 avgio - ok
12:51:43.0843 3916 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
12:51:43.0906 3916 avgntflt - ok
12:51:43.0921 3916 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
12:51:43.0937 3916 avipbb - ok
12:51:44.0000 3916 AVMUNET (077b3692f4376d1539755761feef659a) C:\WINDOWS\system32\DRIVERS\avmunet.sys
12:51:44.0046 3916 AVMUNET - ok
12:51:44.0109 3916 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
12:51:44.0234 3916 Beep - ok
12:51:44.0265 3916 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
12:51:44.0390 3916 cbidf2k - ok
12:51:44.0453 3916 cd20xrnt - ok
12:51:44.0484 3916 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
12:51:44.0578 3916 Cdaudio - ok
12:51:44.0625 3916 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
12:51:44.0718 3916 Cdfs - ok
12:51:44.0781 3916 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:51:44.0890 3916 Cdrom - ok
12:51:44.0921 3916 Changer - ok
12:51:44.0937 3916 CmdIde - ok
12:51:44.0984 3916 Cpqarray - ok
12:51:44.0984 3916 dac2w2k - ok
12:51:45.0000 3916 dac960nt - ok
12:51:45.0078 3916 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
12:51:45.0187 3916 Disk - ok
12:51:45.0234 3916 dmboot (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
12:51:45.0375 3916 dmboot - ok
12:51:45.0500 3916 dmio (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
12:51:45.0625 3916 dmio - ok
12:51:45.0640 3916 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
12:51:45.0765 3916 dmload - ok
12:51:45.0875 3916 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
12:51:45.0984 3916 DMusic - ok
12:51:46.0046 3916 dpti2o - ok
12:51:46.0046 3916 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
12:51:46.0156 3916 drmkaud - ok
12:51:46.0218 3916 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
12:51:46.0312 3916 Fastfat - ok
12:51:46.0421 3916 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
12:51:46.0515 3916 Fdc - ok
12:51:46.0593 3916 Fips (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
12:51:46.0687 3916 Fips - ok
12:51:46.0812 3916 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
12:51:46.0906 3916 Flpydisk - ok
12:51:47.0015 3916 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
12:51:47.0109 3916 FltMgr - ok
12:51:47.0203 3916 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:51:47.0312 3916 Fs_Rec - ok
12:51:47.0375 3916 Ftdisk (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:51:47.0484 3916 Ftdisk - ok
12:51:47.0484 3916 FXDrv32 - ok
12:51:47.0593 3916 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:51:47.0687 3916 Gpc - ok
12:51:47.0765 3916 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
12:51:47.0859 3916 HDAudBus - ok
12:51:47.0984 3916 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:51:48.0078 3916 hidusb - ok
12:51:48.0093 3916 hpn - ok
12:51:48.0187 3916 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
12:51:48.0281 3916 HTTP - ok
12:51:48.0281 3916 i2omgmt - ok
12:51:48.0312 3916 i2omp - ok
12:51:48.0359 3916 i8042prt (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\drivers\i8042prt.sys
12:51:48.0468 3916 i8042prt - ok
12:51:48.0734 3916 ialm (12c7f8d581c4a9f126f5f8f5683a1c29) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
12:51:49.0078 3916 ialm - ok
12:51:49.0171 3916 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
12:51:49.0296 3916 Imapi - ok
12:51:49.0343 3916 ini910u - ok
12:51:49.0578 3916 IntcAzAudAddService (8f924588c272fdaa28cf31a9bbc21a72) C:\WINDOWS\system32\drivers\RtkHDAud.sys
12:51:49.0796 3916 IntcAzAudAddService - ok
12:51:49.0859 3916 IntelIde - ok
12:51:49.0921 3916 intelppm (4c7d2750158ed6e7ad642d97bffae351) C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:51:50.0015 3916 intelppm - ok
12:51:50.0093 3916 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
12:51:50.0187 3916 Ip6Fw - ok
12:51:50.0250 3916 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:51:50.0375 3916 IpFilterDriver - ok
12:51:50.0453 3916 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:51:50.0578 3916 IpInIp - ok
12:51:50.0609 3916 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:51:50.0703 3916 IpNat - ok
12:51:50.0765 3916 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:51:50.0859 3916 IPSec - ok
12:51:50.0937 3916 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
12:51:51.0046 3916 IRENUM - ok
12:51:51.0156 3916 isapnp (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:51:51.0250 3916 isapnp - ok
12:51:51.0328 3916 Kbdclass (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:51:51.0421 3916 Kbdclass - ok
12:51:51.0484 3916 kbdhid (b6d6c117d771c98130497265f26d1882) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
12:51:51.0578 3916 kbdhid - ok
12:51:51.0687 3916 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
12:51:51.0796 3916 kmixer - ok
12:51:51.0890 3916 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
12:51:51.0968 3916 KSecDD - ok
12:51:52.0000 3916 lbrtfdc - ok
12:51:52.0062 3916 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
12:51:52.0078 3916 MBAMSwissArmy - ok
12:51:52.0156 3916 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
12:51:52.0265 3916 mnmdd - ok
12:51:52.0328 3916 Modem (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
12:51:52.0437 3916 Modem - ok
12:51:52.0500 3916 Mouclass (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:51:52.0593 3916 Mouclass - ok
12:51:52.0687 3916 mouhid (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:51:52.0796 3916 mouhid - ok
12:51:52.0843 3916 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
12:51:52.0953 3916 MountMgr - ok
12:51:52.0953 3916 mraid35x - ok
12:51:52.0968 3916 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:51:53.0078 3916 MRxDAV - ok
12:51:53.0156 3916 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:51:53.0265 3916 MRxSmb - ok
12:51:53.0343 3916 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
12:51:53.0437 3916 Msfs - ok
12:51:53.0515 3916 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:51:53.0625 3916 MSKSSRV - ok
12:51:53.0703 3916 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:51:53.0812 3916 MSPCLOCK - ok
12:51:53.0890 3916 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
12:51:54.0000 3916 MSPQM - ok
12:51:54.0078 3916 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:51:54.0171 3916 mssmbios - ok
12:51:54.0250 3916 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
12:51:54.0296 3916 Mup - ok
12:51:54.0390 3916 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
12:51:54.0484 3916 NDIS - ok
12:51:54.0578 3916 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:51:54.0625 3916 NdisTapi - ok
12:51:54.0687 3916 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:51:54.0781 3916 Ndisuio - ok
12:51:54.0843 3916 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:51:54.0953 3916 NdisWan - ok
12:51:55.0046 3916 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
12:51:55.0093 3916 NDProxy - ok
12:51:55.0171 3916 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
12:51:55.0281 3916 NetBIOS - ok
12:51:55.0296 3916 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
12:51:55.0390 3916 NetBT - ok
12:51:55.0515 3916 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
12:51:55.0609 3916 Npfs - ok
12:51:55.0656 3916 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
12:51:55.0796 3916 Ntfs - ok
12:51:55.0890 3916 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
12:51:55.0984 3916 Null - ok
12:51:56.0078 3916 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:51:56.0203 3916 NwlnkFlt - ok
12:51:56.0203 3916 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:51:56.0328 3916 NwlnkFwd - ok
12:51:56.0437 3916 Parport (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
12:51:56.0531 3916 Parport - ok
12:51:56.0656 3916 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
12:51:56.0734 3916 PartMgr - ok
12:51:56.0843 3916 ParVdm (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
12:51:56.0953 3916 ParVdm - ok
12:51:57.0046 3916 PCI (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
12:51:57.0140 3916 PCI - ok
12:51:57.0187 3916 PCIDump - ok
12:51:57.0296 3916 PCIIde (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
12:51:57.0406 3916 PCIIde - ok
12:51:57.0453 3916 Pcmcia (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
12:51:57.0562 3916 Pcmcia - ok
12:51:57.0609 3916 PDCOMP - ok
12:51:57.0625 3916 PDFRAME - ok
12:51:57.0687 3916 PDRELI - ok
12:51:57.0734 3916 PDRFRAME - ok
12:51:57.0765 3916 perc2 - ok
12:51:57.0781 3916 perc2hib - ok
12:51:57.0859 3916 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:51:57.0953 3916 PptpMiniport - ok
12:51:58.0015 3916 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
12:51:58.0109 3916 PSched - ok
12:51:58.0187 3916 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:51:58.0312 3916 Ptilink - ok
12:51:58.0375 3916 ql1080 - ok
12:51:58.0406 3916 Ql10wnt - ok
12:51:58.0437 3916 ql12160 - ok
12:51:58.0484 3916 ql1240 - ok
12:51:58.0484 3916 ql1280 - ok
12:51:58.0546 3916 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:51:58.0656 3916 RasAcd - ok
12:51:58.0781 3916 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:51:58.0875 3916 Rasl2tp - ok
12:51:58.0937 3916 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:51:59.0031 3916 RasPppoe - ok
12:51:59.0078 3916 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
12:51:59.0187 3916 Raspti - ok
12:51:59.0234 3916 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:51:59.0328 3916 Rdbss - ok
12:51:59.0437 3916 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:51:59.0546 3916 RDPCDD - ok
12:51:59.0656 3916 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:51:59.0781 3916 rdpdr - ok
12:51:59.0890 3916 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
12:51:59.0937 3916 RDPWD - ok
12:52:00.0062 3916 redbook (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
12:52:00.0156 3916 redbook - ok
12:52:00.0234 3916 RTLE8023xp (badabe0940c01619e8510b90fb314929) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
12:52:00.0281 3916 RTLE8023xp - ok
12:52:00.0328 3916 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:52:00.0437 3916 Secdrv - ok
12:52:00.0515 3916 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
12:52:00.0609 3916 serenum - ok
12:52:00.0640 3916 Serial (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
12:52:00.0734 3916 Serial - ok
12:52:00.0796 3916 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
12:52:00.0890 3916 Sfloppy - ok
12:52:00.0968 3916 Simbad - ok
12:52:00.0968 3916 Sparrow - ok
12:52:01.0000 3916 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
12:52:01.0093 3916 splitter - ok
12:52:01.0156 3916 sr (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
12:52:01.0265 3916 sr - ok
12:52:01.0328 3916 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
12:52:01.0390 3916 Srv - ok
12:52:01.0468 3916 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
12:52:01.0484 3916 ssmdrv - ok
12:52:01.0531 3916 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
12:52:01.0640 3916 swenum - ok
12:52:01.0718 3916 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
12:52:01.0812 3916 swmidi - ok
12:52:01.0859 3916 symc810 - ok
12:52:01.0875 3916 symc8xx - ok
12:52:01.0875 3916 sym_hi - ok
12:52:01.0906 3916 sym_u3 - ok
12:52:01.0984 3916 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
12:52:02.0078 3916 sysaudio - ok
12:52:02.0171 3916 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:52:02.0296 3916 Tcpip - ok
12:52:02.0328 3916 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
12:52:02.0437 3916 TDPIPE - ok
12:52:02.0500 3916 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
12:52:02.0609 3916 TDTCP - ok
12:52:02.0656 3916 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
12:52:02.0750 3916 TermDD - ok
12:52:02.0765 3916 TosIde - ok
12:52:02.0796 3916 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
12:52:02.0906 3916 Udfs - ok
12:52:02.0906 3916 ultra - ok
12:52:02.0984 3916 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
12:52:03.0109 3916 Update - ok
12:52:03.0218 3916 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:52:03.0312 3916 usbccgp - ok
12:52:03.0421 3916 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:52:03.0515 3916 usbehci - ok
12:52:03.0593 3916 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:52:03.0687 3916 usbhub - ok
12:52:03.0750 3916 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:52:03.0828 3916 usbprint - ok
12:52:03.0921 3916 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:52:04.0031 3916 usbscan - ok
12:52:04.0125 3916 usbsermptxp (af4b8cc5ea40c57208796920068ddcd5) C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys
12:52:04.0171 3916 usbsermptxp ( UnsignedFile.Multi.Generic ) - warning
12:52:04.0171 3916 usbsermptxp - detected UnsignedFile.Multi.Generic (1)
12:52:04.0234 3916 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:52:04.0312 3916 USBSTOR - ok
12:52:04.0359 3916 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:52:04.0453 3916 usbuhci - ok
12:52:04.0500 3916 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
12:52:04.0593 3916 VgaSave - ok
12:52:04.0640 3916 ViaIde - ok
12:52:04.0687 3916 VolSnap (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
12:52:04.0781 3916 VolSnap - ok
12:52:04.0890 3916 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:52:04.0984 3916 Wanarp - ok
12:52:05.0046 3916 WDICA - ok
12:52:05.0156 3916 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
12:52:05.0265 3916 wdmaud - ok
12:52:05.0343 3916 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
12:52:05.0453 3916 WS2IFSL - ok
12:52:05.0484 3916 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0
12:52:05.0671 3916 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
12:52:05.0671 3916 \Device\Harddisk0\DR0 - detected TDSS File System (1)
12:52:05.0671 3916 Boot (0x1200) (61a6b87c588eb85b89c5cd4dddc04b6a) \Device\Harddisk0\DR0\Partition0
12:52:05.0671 3916 \Device\Harddisk0\DR0\Partition0 - ok
12:52:05.0671 3916 ============================================================
12:52:05.0671 3916 Scan finished
12:52:05.0671 3916 ============================================================
12:52:05.0781 3908 Detected object count: 3
12:52:05.0781 3908 Actual detected object count: 3
12:52:28.0609 3908 AFS2K ( UnsignedFile.Multi.Generic ) - skipped by user
12:52:28.0609 3908 AFS2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:52:28.0609 3908 usbsermptxp ( UnsignedFile.Multi.Generic ) - skipped by user
12:52:28.0609 3908 usbsermptxp ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:52:28.0625 3908 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
12:52:28.0625 3908 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

cosinus · 18.01.2012, 13:37

Zitat:

Poste es wieder mit CODE-Tags umschlossen.

Was hast dir da dran nicht verstanden?

Code:

ATTFilter

12:52:28.0625 3908 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
12:52:28.0625 3908 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

Falsches Log oder Anleitug nicht umgesetzt

Rosi · 18.01.2012, 14:46

sorry.. wurde mir zum löschen nicht mehr angeboten :-(
jetzt ging es .... hoffe mal dass es jetzt richtig ist

14:37:46.0359 3876 TDSS rootkit removing tool 2.7.5.0 Jan 18 2012 09:26:24
14:37:46.0578 3876 ============================================================
14:37:46.0578 3876 Current date / time: 2012/01/18 14:37:46.0578
14:37:46.0578 3876 SystemInfo:
14:37:46.0578 3876
14:37:46.0578 3876 OS Version: 5.1.2600 ServicePack: 3.0
14:37:46.0578 3876 Product type: Workstation
14:37:46.0578 3876 ComputerName: PRIVAT-D96A24D9
14:37:46.0578 3876 UserName: Toro
14:37:46.0578 3876 Windows directory: C:\WINDOWS
14:37:46.0578 3876 System windows directory: C:\WINDOWS
14:37:46.0578 3876 Processor architecture: Intel x86
14:37:46.0578 3876 Number of processors: 2
14:37:46.0578 3876 Page size: 0x1000
14:37:46.0578 3876 Boot type: Normal boot
14:37:46.0578 3876 ============================================================
14:37:47.0281 3876 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:37:47.0328 3876 Initialize success
14:37:58.0625 1256 ============================================================
14:37:58.0625 1256 Scan started
14:37:58.0625 1256 Mode: Manual; SigCheck; TDLFS;
14:37:58.0625 1256 ============================================================
14:37:58.0750 1256 Abiosdsk - ok
14:37:58.0781 1256 abp480n5 - ok
14:37:58.0875 1256 ACPI (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:37:59.0281 1256 ACPI - ok
14:37:59.0375 1256 ACPIEC (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:37:59.0500 1256 ACPIEC - ok
14:37:59.0515 1256 adpu160m - ok
14:37:59.0578 1256 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:37:59.0687 1256 aec - ok
14:37:59.0765 1256 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:37:59.0781 1256 AFD - ok
14:37:59.0843 1256 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
14:37:59.0843 1256 AFS2K ( UnsignedFile.Multi.Generic ) - warning
14:37:59.0843 1256 AFS2K - detected UnsignedFile.Multi.Generic (1)
14:37:59.0875 1256 Aha154x - ok
14:37:59.0890 1256 aic78u2 - ok
14:37:59.0890 1256 aic78xx - ok
14:37:59.0937 1256 AliIde - ok
14:37:59.0953 1256 amsint - ok
14:37:59.0968 1256 asc - ok
14:37:59.0968 1256 asc3350p - ok
14:37:59.0984 1256 asc3550 - ok
14:38:00.0062 1256 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:38:00.0171 1256 AsyncMac - ok
14:38:00.0250 1256 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:38:00.0359 1256 atapi - ok
14:38:00.0421 1256 Atdisk - ok
14:38:00.0453 1256 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:38:00.0562 1256 Atmarpc - ok
14:38:00.0671 1256 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:38:00.0781 1256 audstub - ok
14:38:00.0906 1256 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Programme\Avira\AntiVir Desktop\avgio.sys
14:38:00.0921 1256 avgio - ok
14:38:01.0015 1256 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
14:38:01.0109 1256 avgntflt - ok
14:38:01.0171 1256 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
14:38:01.0187 1256 avipbb - ok
14:38:01.0234 1256 AVMUNET (077b3692f4376d1539755761feef659a) C:\WINDOWS\system32\DRIVERS\avmunet.sys
14:38:01.0281 1256 AVMUNET - ok
14:38:01.0328 1256 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:38:01.0453 1256 Beep - ok
14:38:01.0500 1256 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:38:01.0640 1256 cbidf2k - ok
14:38:01.0687 1256 cd20xrnt - ok
14:38:01.0718 1256 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:38:01.0828 1256 Cdaudio - ok
14:38:01.0921 1256 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:38:02.0015 1256 Cdfs - ok
14:38:02.0046 1256 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:38:02.0140 1256 Cdrom - ok
14:38:02.0203 1256 Changer - ok
14:38:02.0250 1256 CmdIde - ok
14:38:02.0265 1256 Cpqarray - ok
14:38:02.0312 1256 dac2w2k - ok
14:38:02.0328 1256 dac960nt - ok
14:38:02.0375 1256 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:38:02.0468 1256 Disk - ok
14:38:02.0578 1256 dmboot (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
14:38:02.0703 1256 dmboot - ok
14:38:02.0734 1256 dmio (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
14:38:02.0843 1256 dmio - ok
14:38:02.0890 1256 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:38:03.0015 1256 dmload - ok
14:38:03.0125 1256 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:38:03.0218 1256 DMusic - ok
14:38:03.0281 1256 dpti2o - ok
14:38:03.0296 1256 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:38:03.0390 1256 drmkaud - ok
14:38:03.0468 1256 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:38:03.0562 1256 Fastfat - ok
14:38:03.0671 1256 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
14:38:03.0781 1256 Fdc - ok
14:38:03.0843 1256 Fips (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
14:38:03.0937 1256 Fips - ok
14:38:04.0046 1256 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:38:04.0140 1256 Flpydisk - ok
14:38:04.0250 1256 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:38:04.0343 1256 FltMgr - ok
14:38:04.0359 1256 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:38:04.0468 1256 Fs_Rec - ok
14:38:04.0531 1256 Ftdisk (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:38:04.0640 1256 Ftdisk - ok
14:38:04.0640 1256 FXDrv32 - ok
14:38:04.0750 1256 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:38:04.0843 1256 Gpc - ok
14:38:04.0953 1256 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:38:05.0046 1256 HDAudBus - ok
14:38:05.0140 1256 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:38:05.0234 1256 hidusb - ok
14:38:05.0312 1256 hpn - ok
14:38:05.0359 1256 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
14:38:05.0390 1256 HTTP - ok
14:38:05.0390 1256 i2omgmt - ok
14:38:05.0421 1256 i2omp - ok
14:38:05.0484 1256 i8042prt (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\drivers\i8042prt.sys
14:38:05.0578 1256 i8042prt - ok
14:38:05.0859 1256 ialm (12c7f8d581c4a9f126f5f8f5683a1c29) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:38:06.0031 1256 ialm - ok
14:38:06.0156 1256 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:38:06.0265 1256 Imapi - ok
14:38:06.0343 1256 ini910u - ok
14:38:06.0515 1256 IntcAzAudAddService (8f924588c272fdaa28cf31a9bbc21a72) C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:38:06.0687 1256 IntcAzAudAddService - ok
14:38:06.0765 1256 IntelIde - ok
14:38:06.0843 1256 intelppm (4c7d2750158ed6e7ad642d97bffae351) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:38:06.0937 1256 intelppm - ok
14:38:06.0968 1256 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:38:07.0046 1256 Ip6Fw - ok
14:38:07.0140 1256 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:38:07.0265 1256 IpFilterDriver - ok
14:38:07.0359 1256 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:38:07.0453 1256 IpInIp - ok
14:38:07.0531 1256 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:38:07.0625 1256 IpNat - ok
14:38:07.0734 1256 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:38:07.0843 1256 IPSec - ok
14:38:07.0921 1256 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:38:08.0031 1256 IRENUM - ok
14:38:08.0062 1256 isapnp (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:38:08.0171 1256 isapnp - ok
14:38:08.0265 1256 Kbdclass (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:38:08.0359 1256 Kbdclass - ok
14:38:08.0406 1256 kbdhid (b6d6c117d771c98130497265f26d1882) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:38:08.0515 1256 kbdhid - ok
14:38:08.0593 1256 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:38:08.0687 1256 kmixer - ok
14:38:08.0781 1256 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:38:08.0812 1256 KSecDD - ok
14:38:08.0812 1256 lbrtfdc - ok
14:38:08.0875 1256 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
14:38:08.0890 1256 MBAMSwissArmy - ok
14:38:08.0921 1256 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:38:09.0031 1256 mnmdd - ok
14:38:09.0125 1256 Modem (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
14:38:09.0234 1256 Modem - ok
14:38:09.0328 1256 Mouclass (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:38:09.0437 1256 Mouclass - ok
14:38:09.0531 1256 mouhid (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:38:09.0640 1256 mouhid - ok
14:38:09.0750 1256 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:38:09.0843 1256 MountMgr - ok
14:38:09.0906 1256 mraid35x - ok
14:38:09.0984 1256 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:38:10.0093 1256 MRxDAV - ok
14:38:10.0140 1256 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:38:10.0156 1256 MRxSmb - ok
14:38:10.0171 1256 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:38:10.0265 1256 Msfs - ok
14:38:10.0296 1256 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:38:10.0406 1256 MSKSSRV - ok
14:38:10.0500 1256 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:38:10.0593 1256 MSPCLOCK - ok
14:38:10.0671 1256 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:38:10.0781 1256 MSPQM - ok
14:38:10.0890 1256 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:38:10.0984 1256 mssmbios - ok
14:38:11.0046 1256 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:38:11.0062 1256 Mup - ok
14:38:11.0187 1256 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:38:11.0281 1256 NDIS - ok
14:38:11.0390 1256 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:38:11.0406 1256 NdisTapi - ok
14:38:11.0484 1256 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:38:11.0578 1256 Ndisuio - ok
14:38:11.0640 1256 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:38:11.0750 1256 NdisWan - ok
14:38:11.0843 1256 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:38:11.0859 1256 NDProxy - ok
14:38:11.0921 1256 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:38:12.0015 1256 NetBIOS - ok
14:38:12.0046 1256 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:38:12.0140 1256 NetBT - ok
14:38:12.0218 1256 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:38:12.0312 1256 Npfs - ok
14:38:12.0390 1256 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:38:12.0500 1256 Ntfs - ok
14:38:12.0609 1256 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:38:12.0718 1256 Null - ok
14:38:12.0796 1256 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:38:12.0937 1256 NwlnkFlt - ok
14:38:12.0968 1256 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:38:13.0093 1256 NwlnkFwd - ok
14:38:13.0203 1256 Parport (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
14:38:13.0296 1256 Parport - ok
14:38:13.0343 1256 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:38:13.0437 1256 PartMgr - ok
14:38:13.0500 1256 ParVdm (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
14:38:13.0609 1256 ParVdm - ok
14:38:13.0718 1256 PCI (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
14:38:13.0812 1256 PCI - ok
14:38:13.0859 1256 PCIDump - ok
14:38:13.0921 1256 PCIIde (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:38:14.0062 1256 PCIIde - ok
14:38:14.0156 1256 Pcmcia (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:38:14.0265 1256 Pcmcia - ok
14:38:14.0281 1256 PDCOMP - ok
14:38:14.0296 1256 PDFRAME - ok
14:38:14.0296 1256 PDRELI - ok
14:38:14.0312 1256 PDRFRAME - ok
14:38:14.0328 1256 perc2 - ok
14:38:14.0328 1256 perc2hib - ok
14:38:14.0421 1256 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:38:14.0515 1256 PptpMiniport - ok
14:38:14.0609 1256 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:38:14.0718 1256 PSched - ok
14:38:14.0765 1256 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:38:14.0890 1256 Ptilink - ok
14:38:14.0953 1256 ql1080 - ok
14:38:14.0968 1256 Ql10wnt - ok
14:38:15.0031 1256 ql12160 - ok
14:38:15.0093 1256 ql1240 - ok
14:38:15.0140 1256 ql1280 - ok
14:38:15.0171 1256 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:38:15.0281 1256 RasAcd - ok
14:38:15.0390 1256 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:38:15.0484 1256 Rasl2tp - ok
14:38:15.0578 1256 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:38:15.0687 1256 RasPppoe - ok
14:38:15.0750 1256 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:38:15.0859 1256 Raspti - ok
14:38:15.0968 1256 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:38:16.0062 1256 Rdbss - ok
14:38:16.0093 1256 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:38:16.0218 1256 RDPCDD - ok
14:38:16.0328 1256 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:38:16.0421 1256 rdpdr - ok
14:38:16.0531 1256 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
14:38:16.0546 1256 RDPWD - ok
14:38:16.0671 1256 redbook (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
14:38:16.0750 1256 redbook - ok
14:38:16.0875 1256 RTLE8023xp (badabe0940c01619e8510b90fb314929) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
14:38:16.0890 1256 RTLE8023xp - ok
14:38:16.0937 1256 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:38:17.0031 1256 Secdrv - ok
14:38:17.0062 1256 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:38:17.0171 1256 serenum - ok
14:38:17.0203 1256 Serial (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
14:38:17.0296 1256 Serial - ok
14:38:17.0312 1256 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:38:17.0406 1256 Sfloppy - ok
14:38:17.0468 1256 Simbad - ok
14:38:17.0484 1256 Sparrow - ok
14:38:17.0546 1256 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:38:17.0640 1256 splitter - ok
14:38:17.0687 1256 sr (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
14:38:17.0781 1256 sr - ok
14:38:17.0875 1256 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:38:17.0890 1256 Srv - ok
14:38:17.0953 1256 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
14:38:17.0968 1256 ssmdrv - ok
14:38:18.0031 1256 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:38:18.0125 1256 swenum - ok
14:38:18.0140 1256 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:38:18.0234 1256 swmidi - ok
14:38:18.0296 1256 symc810 - ok
14:38:18.0312 1256 symc8xx - ok
14:38:18.0359 1256 sym_hi - ok
14:38:18.0406 1256 sym_u3 - ok
14:38:18.0453 1256 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:38:18.0546 1256 sysaudio - ok
14:38:18.0656 1256 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:38:18.0687 1256 Tcpip - ok
14:38:18.0734 1256 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:38:18.0843 1256 TDPIPE - ok
14:38:18.0921 1256 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:38:19.0031 1256 TDTCP - ok
14:38:19.0078 1256 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:38:19.0171 1256 TermDD - ok
14:38:19.0234 1256 TosIde - ok
14:38:19.0312 1256 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:38:19.0421 1256 Udfs - ok
14:38:19.0421 1256 ultra - ok
14:38:19.0484 1256 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:38:19.0593 1256 Update - ok
14:38:19.0703 1256 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:38:19.0796 1256 usbccgp - ok
14:38:19.0890 1256 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:38:20.0000 1256 usbehci - ok
14:38:20.0062 1256 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:38:20.0156 1256 usbhub - ok
14:38:20.0250 1256 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:38:20.0359 1256 usbprint - ok
14:38:20.0453 1256 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:38:20.0562 1256 usbscan - ok
14:38:20.0656 1256 usbsermptxp (af4b8cc5ea40c57208796920068ddcd5) C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys
14:38:20.0671 1256 usbsermptxp ( UnsignedFile.Multi.Generic ) - warning
14:38:20.0671 1256 usbsermptxp - detected UnsignedFile.Multi.Generic (1)
14:38:20.0718 1256 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:38:20.0828 1256 USBSTOR - ok
14:38:20.0906 1256 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:38:21.0000 1256 usbuhci - ok
14:38:21.0109 1256 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:38:21.0203 1256 VgaSave - ok
14:38:21.0312 1256 ViaIde - ok
14:38:21.0390 1256 VolSnap (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
14:38:21.0515 1256 VolSnap - ok
14:38:21.0687 1256 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:38:21.0812 1256 Wanarp - ok
14:38:21.0953 1256 WDICA - ok
14:38:22.0218 1256 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:38:22.0343 1256 wdmaud - ok
14:38:22.0593 1256 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:38:22.0718 1256 WS2IFSL - ok
14:38:22.0750 1256 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0
14:38:22.0984 1256 \Device\Harddisk0\DR0 - ok
14:38:22.0984 1256 Boot (0x1200) (61a6b87c588eb85b89c5cd4dddc04b6a) \Device\Harddisk0\DR0\Partition0
14:38:22.0984 1256 \Device\Harddisk0\DR0\Partition0 - ok
14:38:22.0984 1256 ============================================================
14:38:22.0984 1256 Scan finished
14:38:22.0984 1256 ============================================================
14:38:23.0109 0652 Detected object count: 2
14:38:23.0109 0652 Actual detected object count: 2
14:38:39.0609 0652 AFS2K ( UnsignedFile.Multi.Generic ) - skipped by user
14:38:39.0609 0652 AFS2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:38:39.0609 0652 usbsermptxp ( UnsignedFile.Multi.Generic ) - skipped by user
14:38:39.0609 0652 usbsermptxp ( UnsignedFile.Multi.Generic ) - User select action: Skip

cosinus · 18.01.2012, 16:56

Du hast aber schon wieder die CODE-Tags vergessen

Rosi · 18.01.2012, 17:26

ich weiss nicht was du willst, brauchst oder haben musst

?????
ich hab dir den ganzen Report kopiert....
da steht nix von CODE-Tags im Report....
oder wo bekomme ich die her ???
hab dir immer das kopiert was angezeigt wurde.....

also .. was soll ich jetzt machen ??

cosinus · 18.01.2012, 18:53

Zitat:

da steht nix von CODE-Tags im Report....

Weil du nicht richtig liest

Das hier hab ich mehr als einmal gepostet

Bitte alles nach Möglichkeit hier in CODE-Tags posten.

Wird so gemacht:

[code] hier steht das Log [/code]

Und das ganze sieht dann so aus:

Code:

ATTFilter

 hier steht das Log

Rosi · 18.01.2012, 19:08

ich habs gelesen und gelesen und ich weiss noch immer nicht was ich machen soll.... :-(

wo bekomme ich das

Code:

ATTFilter

 her ?? 
steht wo ???? bei welcher Ausführung 


was ist Log

???
steht wo.... ??????

dann mach ich dass.. keine Ahnung was das ist und vom immer wieder lesen wirds nicht besser und ich nicht schlauer .. sorrrrrry

cosinus · 18.01.2012, 19:18

Sry aber es steht klipp und klar wie genau man das mit den CODE-Tags macht!

Füg das Log hier ein. Am Anfang vor dem Log kommt ein [code]

Zum Schluss am Ende des Logs schreibst du ein [/code] da hin

Geht auch über den #-Button bei den Formatierungen

Rosi · 18.01.2012, 19:32

du Cosinus.... tut mir leid... da ich nicht weiss was ein Log ist ...

oder Code Tags... sind... bzw. bei was die anfallen... kann ich dir nicht schreiben....bzw. posten was du brauchst um mir zu helfen

ich komme mir schon arg blöd vor :-( ... vlt. bin ich es auch.... aber so wird das nix... hab versucht rauszufinden wo das beschrieben ist... aber ....

werde dann mal meinen Rechner platt machen und neu installieren.... das weiss ich wie es geht...

Grüßle... Rosi

DANKE !

cosinus · 18.01.2012, 19:59

http://www.trojaner-board.de/misc.php?do=bbcode#code

Rosi · 18.01.2012, 20:59

Code:

ATTFilter

14:37:46.0359 3876 TDSS rootkit removing tool 2.7.5.0 Jan 18 2012 09:26:24
14:37:46.0578 3876 ============================================================
14:37:46.0578 3876 Current date / time: 2012/01/18 14:37:46.0578
14:37:46.0578 3876 SystemInfo:
14:37:46.0578 3876
14:37:46.0578 3876 OS Version: 5.1.2600 ServicePack: 3.0
14:37:46.0578 3876 Product type: Workstation
14:37:46.0578 3876 ComputerName: PRIVAT-D96A24D9
14:37:46.0578 3876 UserName: Toro
14:37:46.0578 3876 Windows directory: C:\WINDOWS
14:37:46.0578 3876 System windows directory: C:\WINDOWS
14:37:46.0578 3876 Processor architecture: Intel x86
14:37:46.0578 3876 Number of processors: 2
14:37:46.0578 3876 Page size: 0x1000
14:37:46.0578 3876 Boot type: Normal boot
14:37:46.0578 3876 ============================================================
14:37:47.0281 3876 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:37:47.0328 3876 Initialize success
14:37:58.0625 1256 ============================================================
14:37:58.0625 1256 Scan started
14:37:58.0625 1256 Mode: Manual; SigCheck; TDLFS;
14:37:58.0625 1256 ============================================================
14:37:58.0750 1256 Abiosdsk - ok
14:37:58.0781 1256 abp480n5 - ok
14:37:58.0875 1256 ACPI (ac407f1a62c3a300b4f2b5a9f1d55b2c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:37:59.0281 1256 ACPI - ok
14:37:59.0375 1256 ACPIEC (9e1ca3160dafb159ca14f83b1e317f75) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:37:59.0500 1256 ACPIEC - ok
14:37:59.0515 1256 adpu160m - ok
14:37:59.0578 1256 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:37:59.0687 1256 aec - ok
14:37:59.0765 1256 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:37:59.0781 1256 AFD - ok
14:37:59.0843 1256 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
14:37:59.0843 1256 AFS2K ( UnsignedFile.Multi.Generic ) - warning
14:37:59.0843 1256 AFS2K - detected UnsignedFile.Multi.Generic (1)
14:37:59.0875 1256 Aha154x - ok
14:37:59.0890 1256 aic78u2 - ok
14:37:59.0890 1256 aic78xx - ok
14:37:59.0937 1256 AliIde - ok
14:37:59.0953 1256 amsint - ok
14:37:59.0968 1256 asc - ok
14:37:59.0968 1256 asc3350p - ok
14:37:59.0984 1256 asc3550 - ok
14:38:00.0062 1256 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:38:00.0171 1256 AsyncMac - ok
14:38:00.0250 1256 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:38:00.0359 1256 atapi - ok
14:38:00.0421 1256 Atdisk - ok
14:38:00.0453 1256 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:38:00.0562 1256 Atmarpc - ok
14:38:00.0671 1256 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:38:00.0781 1256 audstub - ok
14:38:00.0906 1256 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Programme\Avira\AntiVir Desktop\avgio.sys
14:38:00.0921 1256 avgio - ok
14:38:01.0015 1256 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
14:38:01.0109 1256 avgntflt - ok
14:38:01.0171 1256 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
14:38:01.0187 1256 avipbb - ok
14:38:01.0234 1256 AVMUNET (077b3692f4376d1539755761feef659a) C:\WINDOWS\system32\DRIVERS\avmunet.sys
14:38:01.0281 1256 AVMUNET - ok
14:38:01.0328 1256 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:38:01.0453 1256 Beep - ok
14:38:01.0500 1256 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:38:01.0640 1256 cbidf2k - ok
14:38:01.0687 1256 cd20xrnt - ok
14:38:01.0718 1256 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:38:01.0828 1256 Cdaudio - ok
14:38:01.0921 1256 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:38:02.0015 1256 Cdfs - ok
14:38:02.0046 1256 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:38:02.0140 1256 Cdrom - ok
14:38:02.0203 1256 Changer - ok
14:38:02.0250 1256 CmdIde - ok
14:38:02.0265 1256 Cpqarray - ok
14:38:02.0312 1256 dac2w2k - ok
14:38:02.0328 1256 dac960nt - ok
14:38:02.0375 1256 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:38:02.0468 1256 Disk - ok
14:38:02.0578 1256 dmboot (0dcfc8395a99fecbb1ef771cec7fe4ea) C:\WINDOWS\system32\drivers\dmboot.sys
14:38:02.0703 1256 dmboot - ok
14:38:02.0734 1256 dmio (53720ab12b48719d00e327da470a619a) C:\WINDOWS\system32\drivers\dmio.sys
14:38:02.0843 1256 dmio - ok
14:38:02.0890 1256 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:38:03.0015 1256 dmload - ok
14:38:03.0125 1256 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:38:03.0218 1256 DMusic - ok
14:38:03.0281 1256 dpti2o - ok
14:38:03.0296 1256 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:38:03.0390 1256 drmkaud - ok
14:38:03.0468 1256 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:38:03.0562 1256 Fastfat - ok
14:38:03.0671 1256 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
14:38:03.0781 1256 Fdc - ok
14:38:03.0843 1256 Fips (b0678a548587c5f1967b0d70bacad6c1) C:\WINDOWS\system32\drivers\Fips.sys
14:38:03.0937 1256 Fips - ok
14:38:04.0046 1256 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:38:04.0140 1256 Flpydisk - ok
14:38:04.0250 1256 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:38:04.0343 1256 FltMgr - ok
14:38:04.0359 1256 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:38:04.0468 1256 Fs_Rec - ok
14:38:04.0531 1256 Ftdisk (8f1955ce42e1484714b542f341647778) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:38:04.0640 1256 Ftdisk - ok
14:38:04.0640 1256 FXDrv32 - ok
14:38:04.0750 1256 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:38:04.0843 1256 Gpc - ok
14:38:04.0953 1256 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:38:05.0046 1256 HDAudBus - ok
14:38:05.0140 1256 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:38:05.0234 1256 hidusb - ok
14:38:05.0312 1256 hpn - ok
14:38:05.0359 1256 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
14:38:05.0390 1256 HTTP - ok
14:38:05.0390 1256 i2omgmt - ok
14:38:05.0421 1256 i2omp - ok
14:38:05.0484 1256 i8042prt (e283b97cfbeb86c1d86baed5f7846a92) C:\WINDOWS\system32\drivers\i8042prt.sys
14:38:05.0578 1256 i8042prt - ok
14:38:05.0859 1256 ialm (12c7f8d581c4a9f126f5f8f5683a1c29) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:38:06.0031 1256 ialm - ok
14:38:06.0156 1256 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:38:06.0265 1256 Imapi - ok
14:38:06.0343 1256 ini910u - ok
14:38:06.0515 1256 IntcAzAudAddService (8f924588c272fdaa28cf31a9bbc21a72) C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:38:06.0687 1256 IntcAzAudAddService - ok
14:38:06.0765 1256 IntelIde - ok
14:38:06.0843 1256 intelppm (4c7d2750158ed6e7ad642d97bffae351) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:38:06.0937 1256 intelppm - ok
14:38:06.0968 1256 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:38:07.0046 1256 Ip6Fw - ok
14:38:07.0140 1256 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:38:07.0265 1256 IpFilterDriver - ok
14:38:07.0359 1256 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:38:07.0453 1256 IpInIp - ok
14:38:07.0531 1256 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:38:07.0625 1256 IpNat - ok
14:38:07.0734 1256 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:38:07.0843 1256 IPSec - ok
14:38:07.0921 1256 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:38:08.0031 1256 IRENUM - ok
14:38:08.0062 1256 isapnp (6dfb88f64135c525433e87648bda30de) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:38:08.0171 1256 isapnp - ok
14:38:08.0265 1256 Kbdclass (1704d8c4c8807b889e43c649b478a452) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:38:08.0359 1256 Kbdclass - ok
14:38:08.0406 1256 kbdhid (b6d6c117d771c98130497265f26d1882) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:38:08.0515 1256 kbdhid - ok
14:38:08.0593 1256 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:38:08.0687 1256 kmixer - ok
14:38:08.0781 1256 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:38:08.0812 1256 KSecDD - ok
14:38:08.0812 1256 lbrtfdc - ok
14:38:08.0875 1256 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
14:38:08.0890 1256 MBAMSwissArmy - ok
14:38:08.0921 1256 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:38:09.0031 1256 mnmdd - ok
14:38:09.0125 1256 Modem (6fb74ebd4ec57a6f1781de3852cc3362) C:\WINDOWS\system32\drivers\Modem.sys
14:38:09.0234 1256 Modem - ok
14:38:09.0328 1256 Mouclass (b24ce8005deab254c0251e15cb71d802) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:38:09.0437 1256 Mouclass - ok
14:38:09.0531 1256 mouhid (66a6f73c74e1791464160a7065ce711a) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:38:09.0640 1256 mouhid - ok
14:38:09.0750 1256 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:38:09.0843 1256 MountMgr - ok
14:38:09.0906 1256 mraid35x - ok
14:38:09.0984 1256 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:38:10.0093 1256 MRxDAV - ok
14:38:10.0140 1256 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:38:10.0156 1256 MRxSmb - ok
14:38:10.0171 1256 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:38:10.0265 1256 Msfs - ok
14:38:10.0296 1256 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:38:10.0406 1256 MSKSSRV - ok
14:38:10.0500 1256 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:38:10.0593 1256 MSPCLOCK - ok
14:38:10.0671 1256 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:38:10.0781 1256 MSPQM - ok
14:38:10.0890 1256 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:38:10.0984 1256 mssmbios - ok
14:38:11.0046 1256 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:38:11.0062 1256 Mup - ok
14:38:11.0187 1256 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:38:11.0281 1256 NDIS - ok
14:38:11.0390 1256 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:38:11.0406 1256 NdisTapi - ok
14:38:11.0484 1256 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:38:11.0578 1256 Ndisuio - ok
14:38:11.0640 1256 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:38:11.0750 1256 NdisWan - ok
14:38:11.0843 1256 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:38:11.0859 1256 NDProxy - ok
14:38:11.0921 1256 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:38:12.0015 1256 NetBIOS - ok
14:38:12.0046 1256 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:38:12.0140 1256 NetBT - ok
14:38:12.0218 1256 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:38:12.0312 1256 Npfs - ok
14:38:12.0390 1256 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:38:12.0500 1256 Ntfs - ok
14:38:12.0609 1256 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:38:12.0718 1256 Null - ok
14:38:12.0796 1256 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:38:12.0937 1256 NwlnkFlt - ok
14:38:12.0968 1256 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:38:13.0093 1256 NwlnkFwd - ok
14:38:13.0203 1256 Parport (f84785660305b9b903fb3bca8ba29837) C:\WINDOWS\system32\DRIVERS\parport.sys
14:38:13.0296 1256 Parport - ok
14:38:13.0343 1256 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:38:13.0437 1256 PartMgr - ok
14:38:13.0500 1256 ParVdm (c2bf987829099a3eaa2ca6a0a90ecb4f) C:\WINDOWS\system32\drivers\ParVdm.sys
14:38:13.0609 1256 ParVdm - ok
14:38:13.0718 1256 PCI (387e8dedc343aa2d1efbc30580273acd) C:\WINDOWS\system32\DRIVERS\pci.sys
14:38:13.0812 1256 PCI - ok
14:38:13.0859 1256 PCIDump - ok
14:38:13.0921 1256 PCIIde (59ba86d9a61cbcf4df8e598c331f5b82) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:38:14.0062 1256 PCIIde - ok
14:38:14.0156 1256 Pcmcia (a2a966b77d61847d61a3051df87c8c97) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:38:14.0265 1256 Pcmcia - ok
14:38:14.0281 1256 PDCOMP - ok
14:38:14.0296 1256 PDFRAME - ok
14:38:14.0296 1256 PDRELI - ok
14:38:14.0312 1256 PDRFRAME - ok
14:38:14.0328 1256 perc2 - ok
14:38:14.0328 1256 perc2hib - ok
14:38:14.0421 1256 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:38:14.0515 1256 PptpMiniport - ok
14:38:14.0609 1256 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:38:14.0718 1256 PSched - ok
14:38:14.0765 1256 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:38:14.0890 1256 Ptilink - ok
14:38:14.0953 1256 ql1080 - ok
14:38:14.0968 1256 Ql10wnt - ok
14:38:15.0031 1256 ql12160 - ok
14:38:15.0093 1256 ql1240 - ok
14:38:15.0140 1256 ql1280 - ok
14:38:15.0171 1256 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:38:15.0281 1256 RasAcd - ok
14:38:15.0390 1256 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:38:15.0484 1256 Rasl2tp - ok
14:38:15.0578 1256 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:38:15.0687 1256 RasPppoe - ok
14:38:15.0750 1256 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:38:15.0859 1256 Raspti - ok
14:38:15.0968 1256 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:38:16.0062 1256 Rdbss - ok
14:38:16.0093 1256 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:38:16.0218 1256 RDPCDD - ok
14:38:16.0328 1256 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:38:16.0421 1256 rdpdr - ok
14:38:16.0531 1256 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
14:38:16.0546 1256 RDPWD - ok
14:38:16.0671 1256 redbook (ed761d453856f795a7fe056e42c36365) C:\WINDOWS\system32\DRIVERS\redbook.sys
14:38:16.0750 1256 redbook - ok
14:38:16.0875 1256 RTLE8023xp (badabe0940c01619e8510b90fb314929) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
14:38:16.0890 1256 RTLE8023xp - ok
14:38:16.0937 1256 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:38:17.0031 1256 Secdrv - ok
14:38:17.0062 1256 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:38:17.0171 1256 serenum - ok
14:38:17.0203 1256 Serial (cf24eb4f0412c82bcd1f4f35a025e31d) C:\WINDOWS\system32\DRIVERS\serial.sys
14:38:17.0296 1256 Serial - ok
14:38:17.0312 1256 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:38:17.0406 1256 Sfloppy - ok
14:38:17.0468 1256 Simbad - ok
14:38:17.0484 1256 Sparrow - ok
14:38:17.0546 1256 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:38:17.0640 1256 splitter - ok
14:38:17.0687 1256 sr (50fa898f8c032796d3b1b9951bb5a90f) C:\WINDOWS\system32\DRIVERS\sr.sys
14:38:17.0781 1256 sr - ok
14:38:17.0875 1256 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:38:17.0890 1256 Srv - ok
14:38:17.0953 1256 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
14:38:17.0968 1256 ssmdrv - ok
14:38:18.0031 1256 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:38:18.0125 1256 swenum - ok
14:38:18.0140 1256 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:38:18.0234 1256 swmidi - ok
14:38:18.0296 1256 symc810 - ok
14:38:18.0312 1256 symc8xx - ok
14:38:18.0359 1256 sym_hi - ok
14:38:18.0406 1256 sym_u3 - ok
14:38:18.0453 1256 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:38:18.0546 1256 sysaudio - ok
14:38:18.0656 1256 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:38:18.0687 1256 Tcpip - ok
14:38:18.0734 1256 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:38:18.0843 1256 TDPIPE - ok
14:38:18.0921 1256 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:38:19.0031 1256 TDTCP - ok
14:38:19.0078 1256 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:38:19.0171 1256 TermDD - ok
14:38:19.0234 1256 TosIde - ok
14:38:19.0312 1256 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:38:19.0421 1256 Udfs - ok
14:38:19.0421 1256 ultra - ok
14:38:19.0484 1256 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:38:19.0593 1256 Update - ok
14:38:19.0703 1256 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:38:19.0796 1256 usbccgp - ok
14:38:19.0890 1256 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:38:20.0000 1256 usbehci - ok
14:38:20.0062 1256 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:38:20.0156 1256 usbhub - ok
14:38:20.0250 1256 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:38:20.0359 1256 usbprint - ok
14:38:20.0453 1256 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:38:20.0562 1256 usbscan - ok
14:38:20.0656 1256 usbsermptxp (af4b8cc5ea40c57208796920068ddcd5) C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys
14:38:20.0671 1256 usbsermptxp ( UnsignedFile.Multi.Generic ) - warning
14:38:20.0671 1256 usbsermptxp - detected UnsignedFile.Multi.Generic (1)
14:38:20.0718 1256 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:38:20.0828 1256 USBSTOR - ok
14:38:20.0906 1256 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:38:21.0000 1256 usbuhci - ok
14:38:21.0109 1256 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:38:21.0203 1256 VgaSave - ok
14:38:21.0312 1256 ViaIde - ok
14:38:21.0390 1256 VolSnap (a5a712f4e880874a477af790b5186e1d) C:\WINDOWS\system32\drivers\VolSnap.sys
14:38:21.0515 1256 VolSnap - ok
14:38:21.0687 1256 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:38:21.0812 1256 Wanarp - ok
14:38:21.0953 1256 WDICA - ok
14:38:22.0218 1256 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:38:22.0343 1256 wdmaud - ok
14:38:22.0593 1256 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:38:22.0718 1256 WS2IFSL - ok
14:38:22.0750 1256 MBR (0x1B8) (72b8ce41af0de751c946802b3ed844b4) \Device\Harddisk0\DR0
14:38:22.0984 1256 \Device\Harddisk0\DR0 - ok
14:38:22.0984 1256 Boot (0x1200) (61a6b87c588eb85b89c5cd4dddc04b6a) \Device\Harddisk0\DR0\Partition0
14:38:22.0984 1256 \Device\Harddisk0\DR0\Partition0 - ok
14:38:22.0984 1256 ============================================================
14:38:22.0984 1256 Scan finished
14:38:22.0984 1256 ============================================================
14:38:23.0109 0652 Detected object count: 2
14:38:23.0109 0652 Actual detected object count: 2
14:38:39.0609 0652 AFS2K ( UnsignedFile.Multi.Generic ) - skipped by user
14:38:39.0609 0652 AFS2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:38:39.0609 0652 usbsermptxp ( UnsignedFile.Multi.Generic ) - skipped by user
14:38:39.0609 0652 usbsermptxp ( UnsignedFile.Multi.Generic ) - User select action: Skip

cosinus · 18.01.2012, 21:42

Geht doch

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir ComboFix hier herunter auf deinen Desktop.

Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.

Starte cofi.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.

Rosi · 19.01.2012, 10:39

Combofix Logfile:

Code:

ATTFilter

ComboFix 12-01-18.04 - Toro 19.01.2012  10:23:01.1.2 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.49.1031.18.1014.712 [GMT 1:00]
ausgeführt von:: c:\dokumente und einstellungen\Toro\Desktop\ComboFix.exe
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\IsUn0407.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2011-12-19 bis 2012-01-19  ))))))))))))))))))))))))))))))
.
.
2012-01-18 10:03 . 2012-01-18 10:03	40776	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2012-01-17 20:11 . 2012-01-17 20:11	--------	d-----w-	C:\_OTL
2012-01-16 22:22 . 2012-01-16 22:22	--------	d-----w-	c:\programme\ESET
2012-01-15 11:36 . 2011-12-10 14:24	20464	----a-w-	c:\windows\system32\drivers\mbam.sys
2012-01-15 11:36 . 2012-01-15 11:36	--------	d-----w-	c:\programme\Malwarebytes' Anti-Malware
2012-01-14 17:47 . 2012-01-14 17:47	--------	d-----w-	c:\programme\Euro Truck Simulator
2012-01-14 15:39 . 2012-01-14 15:39	--------	d-----w-	c:\dokumente und einstellungen\Toro\Anwendungsdaten\Malwarebytes
2012-01-14 15:39 . 2012-01-14 15:39	--------	d-----w-	c:\dokumente und einstellungen\All Users\Anwendungsdaten\Malwarebytes
2012-01-14 13:42 . 2012-01-14 13:42	--------	d-----w-	c:\dokumente und einstellungen\Toro\Lokale Einstellungen\Anwendungsdaten\PackageAware
2012-01-05 19:41 . 2012-01-05 19:41	--------	d-----w-	c:\dokumente und einstellungen\Toro\Anwendungsdaten\Der Planer 4
2012-01-05 19:25 . 2012-01-05 19:40	--------	d-----w-	c:\programme\Der Planer 4
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-25 21:57 . 2006-02-28 12:00	293888	----a-w-	c:\windows\system32\winsrv.dll
2011-11-23 14:40 . 2006-02-28 12:00	1859712	----a-w-	c:\windows\system32\win32k.sys
2011-11-20 06:12 . 2006-02-28 12:00	61952	----a-w-	c:\windows\system32\packager.exe
2011-11-14 06:23 . 2011-06-01 05:17	414368	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-04 19:13 . 2006-02-28 12:00	916992	----a-w-	c:\windows\system32\wininet.dll
2011-11-04 19:13 . 2006-02-28 12:00	43520	----a-w-	c:\windows\system32\licmgr10.dll
2011-11-04 19:13 . 2006-02-28 12:00	1469440	------w-	c:\windows\system32\inetcpl.cpl
2011-11-04 11:23 . 2006-02-28 12:00	385024	----a-w-	c:\windows\system32\html.iec
2011-11-03 15:28 . 2006-02-28 12:00	387072	----a-w-	c:\windows\system32\qdvd.dll
2011-11-03 15:28 . 2006-02-28 12:00	1297920	----a-w-	c:\windows\system32\quartz.dll
2011-11-01 16:07 . 2006-02-28 12:00	1288704	----a-w-	c:\windows\system32\ole32.dll
2011-10-28 05:31 . 2006-02-28 12:00	33280	----a-w-	c:\windows\system32\csrsrv.dll
2011-10-26 10:49 . 2006-02-28 12:00	2151424	----a-w-	c:\windows\system32\ntoskrnl.exe
2011-10-26 10:49 . 2004-08-04 00:50	2029568	----a-w-	c:\windows\system32\ntkrnlpa.exe
2011-12-21 07:42 . 2012-01-15 14:33	121816	----a-w-	c:\programme\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\programme\Avira\AntiVir Desktop\avgnt.exe" [2010-11-04 281768]
"RTHDCPL"="RTHDCPL.EXE" [2007-08-10 16384000]
"SkyTel"="SkyTel.EXE" [2007-08-03 1826816]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-06-13 142104]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-06-13 162584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-06-13 138008]
"EPSON Stylus D68 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE" [2005-01-25 98304]
"QuickTime Task"="c:\programme\QuickTime\qttask.exe" [2010-03-17 421888]
"NeroCheck"="c:\windows\system32\\NeroCheck.exe" [2001-07-09 155648]
"CamMonitor"="c:\programme\Hewlett-Packard\Digital Imaging\\Unload\hpqcmon.exe" [2002-10-06 90112]
"Share-to-Web Namespace Daemon"="c:\programme\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe" [2002-04-17 69632]
"SunJavaUpdateSched"="c:\programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe Reader Speed Launcher"="c:\programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"Adobe ARM"="c:\programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\dokumente und einstellungen\Toro\Startmenü\Programme\Autostart\
FRITZ!DSL Startcenter.lnk - c:\programme\FRITZ!DSL\StCenter.exe [2010-5-1 679936]
OpenOffice.org 3.2.lnk - c:\programme\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
Reminder-hpc40415.lnk - c:\programme\HP PhotoSmart\C200-Kamera\Registration\Remind32.exe [2010-5-10 68608]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programme\\FRITZ!DSL\\IGDCTRL.EXE"=
"c:\\Programme\\FRITZ!DSL\\FBOXUPD.EXE"=
"c:\\Programme\\Samsung\\SAMSUNG PC Share Manager\\WiselinkPro.exe"=
"c:\\Programme\\Samsung\\SAMSUNG PC Share Manager\\http_ss_win_pro.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programme\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programme\\Windows Live\\Messenger\\msnmsgr.exe"=
.
R2 AntiVirSchedulerService;Avira AntiVir Planer;c:\programme\Avira\AntiVir Desktop\sched.exe [01.05.2010 17:33 136360]
R2 AntiVirWebService;Avira AntiVir WebGuard;c:\programme\Avira\AntiVir Desktop\avwebgrd.exe [29.06.2011 09:36 428200]
S2 gupdate;Google Update Service (gupdate);c:\programme\Google\Update\GoogleUpdate.exe [21.01.2011 14:13 135664]
S3 AVMUNET;AVM FRITZ!Box;c:\windows\system32\drivers\avmunet.sys [01.05.2010 15:52 15104]
S3 FXDrv32;FXDrv32;\??\d:\fxdrv32.sys --> d:\FXDrv32.sys [?]
S3 gupdatem;Google Update-Dienst (gupdatem);c:\programme\Google\Update\GoogleUpdate.exe [21.01.2011 14:13 135664]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [18.01.2012 11:03 40776]
S3 WiselinkPro;SAMSUNG WiselinkPro Service;c:\programme\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [08.01.2009 08:38 4136960]
.
Inhalt des "geplante Tasks" Ordners
.
2012-01-17 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programme\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
.
2012-01-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programme\Google\Update\GoogleUpdate.exe [2011-01-21 13:13]
.
2012-01-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programme\Google\Update\GoogleUpdate.exe [2011-01-21 13:13]
.
2012-01-18 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1935655697-1770027372-725345543-1003Core.job
- c:\dokumente und einstellungen\Toro\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2011-09-25 19:53]
.
2012-01-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1935655697-1770027372-725345543-1003UA.job
- c:\dokumente und einstellungen\Toro\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe [2011-09-25 19:53]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://de.yahoo.com
mStart Page = hxxp://de.yahoo.com
LSP: c:\programme\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\dokumente und einstellungen\Toro\Anwendungsdaten\Mozilla\Firefox\Profiles\xr0mrspl.default\
FF - prefs.js: browser.search.defaulturl - 
FF - prefs.js: browser.search.selectedEngine - Yahoo
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{00000000-6E41-4FD3-8538-502F5495E5FC} - (no file)
HKLM-Run-ApnUpdater - c:\programme\Ask.com\Updater\Updater.exe
AddRemove-FRITZ!DSL - c:\windows\IsUn0407.exe
AddRemove-HP PhotoSmart C200 Camera Software - c:\windows\IsUn0407.exe
AddRemove-HP PhotoSmart Photo Printing Software - c:\windows\IsUn0407.exe
AddRemove-Ulead Photo Explorer 4.2 Full - c:\windows\IsUn0407.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2012-01-19 10:25
Windows 5.1.2600 Service Pack 3 NTFS
.
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
Scanne versteckte Dateien... 
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b3,56,56,f2,28,21,ff,43,bc,dd,00,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b3,56,56,f2,28,21,ff,43,bc,dd,00,\
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'lsass.exe'(748)
c:\programme\Avira\AntiVir Desktop\avsda.dll
.
Zeit der Fertigstellung: 2012-01-19  10:27:02
ComboFix-quarantined-files.txt  2012-01-19 09:27
.
Vor Suchlauf: 7 Verzeichnis(se), 126.025.031.680 Bytes frei
Nach Suchlauf: 8 Verzeichnis(se), 125.980.598.272 Bytes frei
.
WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 31CEF20FF6642DCEEF767F4DA312DAA9

--- --- ---

18.01.2012, 16:56	#21
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	BKA Warnung ...Trojaner verweist auf eine Pornoseite Du hast aber schon wieder die CODE-Tags vergessen __________________ --> BKA Warnung ...Trojaner verweist auf eine Pornoseite

18.01.2012, 19:18	#25
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	BKA Warnung ...Trojaner verweist auf eine Pornoseite Sry aber es steht klipp und klar wie genau man das mit den CODE-Tags macht! Füg das Log hier ein. Am Anfang vor dem Log kommt ein [code] Zum Schluss am Ende des Logs schreibst du ein [/code] da hin Geht auch über den #-Button bei den Formatierungen __________________ Logfiles bitte immer in CODE-Tags posten

18.01.2012, 19:59	#27
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	BKA Warnung ...Trojaner verweist auf eine Pornoseite http://www.trojaner-board.de/misc.php?do=bbcode#code __________________ Logfiles bitte immer in CODE-Tags posten

BKA Warnung ...Trojaner verweist auf eine Pornoseite

Log-Analyse und Auswertung: BKA Warnung ...Trojaner verweist auf eine Pornoseite