AntivirusSoft nun komplett entfernt?

grafeko · 26.04.2010, 16:43

Hallo!

Ich habe mir AntivirusSoft eingefangen und nach der Anleitung die ich hier gefunden habe entfernt. Da aber das System nach Beschreibung nicht ganz sauber sein könnte hier die Logfiles von Malwarebytes und RSIT. Bei dem CCleaner weiß ich nicht wie ich die Datein posten soll.

Da ich davon keine Ahung habe bitte ich euch da mal einen Blick drauf zu werfen ob nun alles wieder ok ist oder ob ich noch etwas machen muss...

Malwarebytes:

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Datenbank Version: 4038

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18904

26.04.2010 10:56:00
mbam-log-2010-04-26 (10-56-00).txt

Art des Suchlaufs: Quick-Scan
Durchsuchte Objekte: 114302
Laufzeit: 9 Minute(n), 50 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 4
Infizierte Registrierungswerte: 1
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 2

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
HKEY_LOCAL_MACHINE\SOFTWARE\avsuite (Rogue.AntivirusSuite) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\avsuite (Rogue.AntivirusSuite) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\avsoft (Trojan.Fraudpack) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\avsoft (Trojan.Fraudpack) -> Quarantined and deleted successfully.

Infizierte Registrierungswerte:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\hybwmuct (Rogue.AntispywareSoft) -> Quarantined and deleted successfully.

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
C:\Users\MaxMustermann\AppData\Local\vemlhymft\ngqrtdftssd.exe (Rogue.AntispywareSoft) -> Quarantined and deleted successfully.
C:\Users\MaxMustermann\AppData\Local\Temp\oCgL.exe (Rogue.AntispywareSoft) -> Quarantined and deleted successfully.

RSIT:

Logfile of random's system information tool 1.06 (written by random/random)
Run by MaxMustermann at 2010-04-26 11:31:10
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 11 GB (7%) free of 153 GB
Total RAM: 2045 MB (54% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{D3CA66CF-B7AF-4F24-A749-C4D2F52DD632}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-03 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - c:\program files\real\realplayer\rpbrowserrecordplugin.dll [2009-12-11 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D187A56B-A33F-4CBE-9D77-459FC0BAE012}]
Burn4Free Toolbar Helper - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll [2009-11-25 815104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - Burn4Free Toolbar - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll [2009-11-25 815104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-20 1008184]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-02-06 90191]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-02-06 81920]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2082-02-15 4317184]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1985-01-01 815104]
"CHotkey"=C:\Windows\mHotkey.exe [2005-12-15 547840]
"FreePDF Assistant"=C:\Program Files\FreePDF_XP\fpassist.exe [2008-07-22 357376]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-11-22 107112]
"vptray"=C:\PROGRA~1\SYMANT~1\VPTray.exe [2006-11-28 134808]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-12-11 198160]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6]
C:\Program Files\AIM6\aim6.exe [2009-07-09 49968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVMWlanClient]
C:\Program Files\avmwlanstick\FRITZWLANMini.exe [2007-02-02 283136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrMfcWnd]
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2008-02-19 1089536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2005-05-19 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter3]
C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2007-12-21 86016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
C:\Program Files\DAEMON Tools\daemon.exe [2006-09-14 157592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlyAway]
C:\Users\MaxMustermann\AppData\Local\Temp\ARCA38E\FlyAway.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2010-01-22 141608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files\Logitech\Logitech Vid\Vid.exe [2009-07-16 5458704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2009-10-14 2793304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-12-03 1205760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-11-11 417792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\showwnd]
C:\Windows\showwnd.exe [2003-09-18 36864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2009-07-16 25604904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-12-11 198160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2009-04-10 37888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Status Monitor.lnk]
C:\PROGRA~1\Brother\Brmfcmon\BrMfcWnd.exe [2008-02-19 1089536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Philip^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PMB Medien-Prüfung.lnk]
C:\PROGRA~1\Sony\SONYPI~1\PMBCore\SPUVOL~1.EXE [2008-11-28 327680]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a5b0603f-cf91-11de-8dc1-001167000000}]
shell\AutoRun\command - E:\pushinst.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ed923e0f-fbbf-11dd-b7e8-00030d000001}]
shell\AutoRun\command - G:\setup.exe

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-04-26 11:31:11 ----D---- C:\Program Files\trend micro
2010-04-26 11:31:10 ----D---- C:\rsit
2010-04-26 11:11:26 ----D---- C:\Program Files\CCleaner
2010-04-26 10:42:00 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-04-26 10:09:50 ----D---- C:\Users\MaxMustermann\AppData\Roaming\Malwarebytes
2010-04-26 10:09:26 ----D---- C:\ProgramData\Malwarebytes
2010-04-22 18:32:17 ----D---- C:\Windows\Governor of Poker
2010-04-22 18:32:17 ----D---- C:\Program Files\Governor of Poker
2010-04-20 08:15:54 ----SHD---- C:\Config.Msi
2010-04-19 21:36:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-19 21:36:34 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-19 21:36:26 ----A---- C:\Windows\system32\vbscript.dll
2010-04-19 21:35:16 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-04-14 07:50:32 ----A---- C:\Windows\system32\wintrust.dll
2010-04-14 07:50:27 ----A---- C:\Windows\system32\cabview.dll
2010-04-07 00:35:19 ----D---- C:\Users\Philip\AppData\Roaming\SunODFPluginforMicrosoftOffice
2010-04-07 00:11:05 ----D---- C:\Program Files\Sun
2010-03-31 08:23:44 ----A---- C:\Windows\system32\mshtml.dll
2010-03-31 08:23:42 ----A---- C:\Windows\system32\ieframe.dll
2010-03-31 08:23:41 ----A---- C:\Windows\system32\iertutil.dll
2010-03-31 08:23:40 ----A---- C:\Windows\system32\wininet.dll
2010-03-31 08:23:40 ----A---- C:\Windows\system32\urlmon.dll
2010-03-31 08:23:40 ----A---- C:\Windows\system32\occache.dll
2010-03-31 08:23:40 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-31 08:23:40 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-31 08:23:39 ----A---- C:\Windows\system32\mstime.dll
2010-03-31 08:23:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-31 08:23:39 ----A---- C:\Windows\system32\jsproxy.dll
2010-03-31 08:23:39 ----A---- C:\Windows\system32\ieUnatt.exe
2010-03-31 08:23:39 ----A---- C:\Windows\system32\ieui.dll
2010-03-31 08:23:39 ----A---- C:\Windows\system32\iesysprep.dll
2010-03-31 08:23:39 ----A---- C:\Windows\system32\iepeers.dll
2010-03-31 08:23:38 ----A---- C:\Windows\system32\msfeedssync.exe
2010-03-31 08:23:38 ----A---- C:\Windows\system32\iesetup.dll
2010-03-31 08:23:38 ----A---- C:\Windows\system32\iernonce.dll
2010-03-31 08:23:38 ----A---- C:\Windows\system32\ie4uinit.exe

======List of files/folders modified in the last 1 months======

2085-12-23 04:42:24 ----R---- C:\Windows\RtlExUpd.dll
2082-02-15 08:30:56 ----A---- C:\Windows\system32\Uci32112.dll
2082-02-15 08:30:56 ----A---- C:\Windows\system32\SRSWOW.dll
2082-02-15 08:30:56 ----A---- C:\Windows\system32\SRSTSXT.dll
2082-02-15 08:30:56 ----A---- C:\Windows\system32\RtkPgExt.dll
2082-02-15 08:30:56 ----A---- C:\Windows\system32\RtkCoInst.dll
2082-02-15 08:30:56 ----A---- C:\Windows\system32\RtkAPO.dll
2082-02-15 08:30:56 ----A---- C:\Windows\system32\mdmxsdk.dll
2082-02-15 08:30:56 ----A---- C:\Windows\RtlUpd.exe
2082-02-15 08:30:56 ----A---- C:\Windows\RtHDVCpl.exe
2010-04-26 11:31:11 ----RD---- C:\Program Files
2010-04-26 11:31:11 ----D---- C:\Windows\Prefetch
2010-04-26 11:31:09 ----D---- C:\Windows\Temp
2010-04-26 11:24:43 ----D---- C:\Windows\Minidump
2010-04-26 11:24:43 ----D---- C:\Windows\Debug
2010-04-26 11:24:43 ----D---- C:\Windows
2010-04-26 11:08:57 ----D---- C:\Program Files\Trillian
2010-04-26 11:08:47 ----D---- C:\Users\MaxMustermann\AppData\Roaming\Skype
2010-04-26 11:06:01 ----D---- C:\Users\MaxMustermann\AppData\Roaming\skypePM
2010-04-26 11:01:32 ----D---- C:\Windows\system32\drivers
2010-04-26 11:01:32 ----D---- C:\Windows\Microsoft.NET
2010-04-26 10:38:46 ----SHD---- C:\System Volume Information
2010-04-26 10:09:26 ----HD---- C:\ProgramData
2010-04-24 23:35:46 ----D---- C:\Users\MaxMustermann\AppData\Roaming\vlc
2010-04-23 12:06:28 ----D---- C:\Program Files\ElcomSoft
2010-04-20 08:17:20 ----SHD---- C:\Windows\Installer
2010-04-20 08:15:33 ----D---- C:\Windows\System32
2010-04-20 03:35:18 ----D---- C:\Windows\winsxs
2010-04-20 03:25:09 ----D---- C:\Windows\system32\catroot
2010-04-20 03:24:19 ----D---- C:\Windows\system32\catroot2
2010-04-20 03:20:45 ----D---- C:\Program Files\Windows Mail
2010-04-20 00:27:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-20 00:27:39 ----D---- C:\Windows\inf
2010-04-07 00:12:34 ----RSD---- C:\Windows\assembly
2010-04-06 13:52:54 ----A---- C:\Windows\system32\mrt.exe
2010-04-02 10:02:30 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 06:26:34 ----D---- C:\Program Files\Internet Explorer
2010-04-01 06:26:33 ----D---- C:\Windows\system32\migration
2010-03-29 12:33:30 ----D---- C:\Users\MaxMustermann\AppData\Roaming\dvdcss

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2009-04-11 351744]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2009-08-27 371248]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2006-10-06 406672]
R1 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2006-11-22 247144]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2006-11-22 25448]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2006-10-26 185744]
R2 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys [1997-12-22 23936]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2009-12-07 56816]
R2 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2005-04-21 10624]
R2 irda;IrDA-Protokoll; C:\Windows\system32\DRIVERS\irda.sys [2008-01-20 95744]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2082-02-15 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2082-02-15 8192]
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2006-02-24 19200]
R3 BlueletAudio;Bluetooth Audio Service; C:\Windows\system32\DRIVERS\blueletaudio.sys [2006-11-22 34576]
R3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys [2006-11-22 27792]
R3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys [2006-11-22 18320]
R3 CmBatt;Treiber für Microsoft-ACPI-Kontrollmethodenkompatible Batterie; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-20 14208]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2005-05-03 27392]
R3 ElbyDelay;ElbyDelay; C:\Windows\System32\Drivers\ElbyDelay.sys [2005-04-12 4608]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-08-27 102448]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2082-02-15 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2082-02-15 206848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2082-02-15 1668456]
R3 LVPr2Mon;LVPr2Mon Driver; C:\Windows\system32\Drivers\LVPr2Mon.sys [2009-10-07 25752]
R3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2009-10-07 266008]
R3 LVUVC;Logitech Webcam 250(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2009-10-07 6756632]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100329.002\NAVENG.SYS [2010-02-16 84912]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20100329.002\NAVEX15.SYS [2010-02-16 1324720]
R3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adaptertreiber für Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2082-02-15 1786880]
R3 NSCIRDA;NSC-Infrarotgerätetreiber; C:\Windows\system32\DRIVERS\nscirda.sys [2008-01-20 30720]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-02-06 4456320]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-20 8192]
R3 RTL8169;Realtek 8169-NT-Treiber; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2009-09-01 109744]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2006-10-26 26384]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [1985-01-01 179256]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [1985-01-01 290304]
R3 usbaudio;USB-Audiotreiber (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
R3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys [2006-11-22 34448]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys [2006-11-22 44304]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2082-02-15 659968]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-20 83328]
S3 aokjlccx;aokjlccx; C:\Windows\system32\drivers\aokjlccx.sys []
S3 avmeject;AVM Eject; C:\Windows\system32\drivers\avmeject.sys [2007-01-26 4352]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [2006-12-28 33936]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys [2007-09-25 15152]
S3 drmkaud;Microsoft Kernel-DRM-Audioentschlüsselung; C:\Windows\system32\drivers\drmkaud.sys [2008-01-20 5632]
S3 EagleNT;EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys []
S3 FWLANUSB;AVM FRITZ!WLAN; C:\Windows\system32\DRIVERS\fwlanusb.sys [2007-01-26 265088]
S3 HdAudAddService;Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-20 200704]
S3 lvpopflt;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopflt.sys [2009-10-07 114712]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-20 8192]
S3 MSPCLOCK;Microsoft Proxy für Streaming Clock; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-20 5888]
S3 MSPQM;Microsoft Proxy für Streaming Quality Manager; C:\Windows\system32\drivers\MSPQM.sys [2008-01-20 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\Windows\system32\drivers\MSTEE.sys [2008-01-20 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2008-09-15 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2008-09-15 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 s116bus;Sony Ericsson Device 116 driver (WDM); C:\Windows\system32\DRIVERS\s116bus.sys [2007-04-03 83336]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2006-11-22 274328]
S3 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS [2082-02-15 6909]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2008-09-15 8064]
S3 usbscan;USB-Scannertreiber; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-20 35328]
S3 usbser;Nokia USB Serial Port; C:\Windows\system32\drivers\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2008-09-15 8064]
S3 usbvideo;USB-Videogerät (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-20 134016]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-20 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-20 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-20 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 AppMgmt;Anwendungsverwaltung; C:\Windows\system32\svchost.exe [2008-01-20 21504]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 DefWatch;Symantec AntiVirus Definition Watcher; C:\Program Files\Symantec AntiVirus\DefWatch.exe [2006-11-28 30872]
R2 Irmon;Infrarotüberwachungsdienst; C:\Windows\system32\svchost.exe [2008-01-20 21504]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 154136]
R2 SavRoam;SAVRoam; C:\Program Files\Symantec AntiVirus\SavRoam.exe [2006-11-28 122008]
R2 Symantec AntiVirus;Symantec AntiVirus; C:\Program Files\Symantec AntiVirus\Rtvscan.exe [2006-11-28 1962136]
S2 gupdate1c98e4a399e56fd;Google Update Service (gupdate1c98e4a399e56fd); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-13 133104]
S3 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
S3 aspnet_state;ASP.NET-Zustandsdienst; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 Bonjour Service;Bonjour-Dienst; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
S3 CscService;Offlinedateien; C:\Windows\System32\svchost.exe [2008-01-20 21504]
S3 Fax;Fax; C:\Windows\system32\fxssvc.exe [2008-01-20 523776]
S3 FontCache;Windows-Dienst für Schriftartencache; C:\Windows\system32\svchost.exe [2008-01-20 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 iPod Service;iPod-Dienst; C:\Program Files\iPod\bin\iPodService.exe [2010-01-22 545576]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-10-31 2541248]
S3 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 UmRdpService;Anschlussumleitung für Terminaldienst im Benutzermodus; C:\Windows\System32\svchost.exe [2008-01-20 21504]
S3 wbengine;Blockebenen-Sicherungsmodul; C:\Windows\system32\wbengine.exe [2009-04-11 918528]
S3 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2082-02-15 386560]
S4 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2009-02-16 66872]
S4 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2009-02-16 107832]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S4 vvdsvc;VJVodServices; C:\Windows\System32\svchost.exe [2008-01-20 21504]

-----------------EOF-----------------

Vielen Dank für die Hilfe die Anleitung war echt super und hat super funktioniert!

AntivirusSoft nun komplett entfernt?

Plagegeister aller Art und deren Bekämpfung: AntivirusSoft nun komplett entfernt?

AntivirusSoft nun komplett entfernt?

Ähnliche Themen: AntivirusSoft nun komplett entfernt?