google leitet mich auf 100ksearches Seite

hagenp · 20.07.2011, 19:10

Hallo zusammen,

seit ca. 1 std. werde ich bei google-suchen immer auf eine seite "100ksearches" weitergeleitet ebenso mit bing. Einzig yahoo scheint zu funktionieren. Hab hier einige Ansätze zur Lösung gefunden, allerdings scheint das sehr individuell geregelt werden zu müssen. Wär euch mega dankbar wenn ihr mir schritt für schritt helfen könnt. Hab noch keine Schritte unternommen, ANtivir sucht gerade noch aber ich werde erstmal nichts machen.
Danke,
Hagen

cosinus · 21.07.2011, 10:06

Hallo und

Bitte routinemäßig einen Vollscan mit Malwarebytes machen und Log posten.
Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss!

Falls Logs aus älteren Scans mit Malwarebytes vorhanden sind, bitte auch davon alle posten!

Danach OTL-Custom:

CustomScan mit OTL

Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop

Starte bitte die OTL.exe.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Kopiere nun den Inhalt in die Textbox.

Code:

ATTFilter

netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
wininit.exe
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
CREATERESTOREPOINT

Schliesse bitte nun alle Programme. (Wichtig)
Klicke nun bitte auf den Quick Scan Button.
Klick auf .
Kopiere nun den Inhalt aus OTL.txt hier in Deinen Thread

hagenp · 21.07.2011, 11:19

hallo cosinus,
danke schonmal für deine hilfe. habe Malwarebytes gerade gestartet.
Ich antworte dir von einem anderen rechner weil ich mich mit dem infizierten nicht bei euch einloggen konnte!!! sobald ich name und passwort eingegeben habe kam die meldung über automatische weiterleitung und AKTUALISIERUNG SOMMER-/WINTERZEIT immer abwechselnd und hört nicht auf!

hagenp · 21.07.2011, 11:26

hallo cosinus,
danke schonmal für deine hilfe! Ich muss dir von einem anderen rechner aus antworten da ich mich mit dem infizierten rechner nicht bei euch anmelden konnte!!! Nach eingabe von name und passwort kam die meldung zur automatischen weiterleitung und immer abwechselnd die meldung zur aktualisierung der Sommer-/Winterzeit. das nahm kein ende!
malwarebytes läuft gerade auf dem rechner.

cosinus · 21.07.2011, 11:28

Vom welchem Rechner du die Beiträge schreibst ist mir egal, hauptsache du machst die Scans & Logs auf immer ein und demselben infizierten Rechner.

hagenp · 21.07.2011, 11:37

logo,mach ich, muss halt die logs auf nem stick speichern und dann vom anderen rechner aus schicken, war nur geschockt das ich mich jetzt mit dem rechner nicht mehr bei euch einloggen kann..

cosinus · 21.07.2011, 11:40

Dann aus Sicherheitsgründen VORHER auf beiden Rechnern, dem infizierten und der mit dem hier postest, den Autorun (automatische Wiedergabe) von allen Laufwerken deaktivieren.

Für Windows XP: Um den zu deaktivieren hab ich mal die noautoplay.reg hochgeladen. Lad das mal auf dem Desktop herunter, führ die Datei aus und bestätige mit ja. Nach einem Neustart des Rechners ist die automatische Wiedergabe (von Datenträgern) auf allen Laufwerken deaktiviert, d.h. keine CD, kein Stick oder sonstwas startet nach dem Einstecken mehr automatisch.

Für Windows Vista und 7: => Einstellungen für automatische Wiedergabe ändern

hagenp · 21.07.2011, 12:24

hier mal die malwarebyte logdatei:

Code:

ATTFilter

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Datenbank Version: 7219

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

21.07.2011 13:08:19
mbam-log-2011-07-21 (13-08-19).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Durchsuchte Objekte: 444625
Laufzeit: 1 Stunde(n), 1 Minute(n), 10 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

hagenp · 21.07.2011, 13:00

nun als otl-zip

hagenp · 21.07.2011, 13:13

der fix-log:

Code:

ATTFilter

========== OTL ==========
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0031dc51-13a4-11df-b83d-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0031dc51-13a4-11df-b83d-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0031dc51-13a4-11df-b83d-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0031dc51-13a4-11df-b83d-90e6ba59f8f5}\ not found.
File G:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0031dc55-13a4-11df-b83d-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0031dc55-13a4-11df-b83d-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0031dc55-13a4-11df-b83d-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0031dc55-13a4-11df-b83d-90e6ba59f8f5}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01ac8d5b-bb66-11df-97b3-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01ac8d5b-bb66-11df-97b3-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01ac8d5b-bb66-11df-97b3-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01ac8d5b-bb66-11df-97b3-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01ac8d84-bb66-11df-97b3-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01ac8d84-bb66-11df-97b3-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01ac8d84-bb66-11df-97b3-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01ac8d84-bb66-11df-97b3-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01ac8d88-bb66-11df-97b3-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01ac8d88-bb66-11df-97b3-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01ac8d88-bb66-11df-97b3-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{01ac8d88-bb66-11df-97b3-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{093b2edf-0a5a-11df-9a28-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{093b2edf-0a5a-11df-9a28-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{093b2edf-0a5a-11df-9a28-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{093b2edf-0a5a-11df-9a28-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{093b2ee1-0a5a-11df-9a28-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{093b2ee1-0a5a-11df-9a28-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{093b2ee1-0a5a-11df-9a28-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{093b2ee1-0a5a-11df-9a28-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{15492f82-2295-11e0-a218-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{15492f82-2295-11e0-a218-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{15492f82-2295-11e0-a218-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{15492f82-2295-11e0-a218-90e6ba59f8f5}\ not found.
File F:\setup_vmc_lite.exe /checkApplicationPresence not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35642014-05d4-11df-b5d3-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35642014-05d4-11df-b5d3-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35642014-05d4-11df-b5d3-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35642014-05d4-11df-b5d3-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35642016-05d4-11df-b5d3-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35642016-05d4-11df-b5d3-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35642016-05d4-11df-b5d3-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35642016-05d4-11df-b5d3-90e6ba59f8f5}\ not found.
File G:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4040e621-bb68-11df-a3f1-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4040e621-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4040e621-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4040e621-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4040e746-bb68-11df-a3f1-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4040e746-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4040e746-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4040e746-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4040e74a-bb68-11df-a3f1-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4040e74a-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4040e74a-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4040e74a-bb68-11df-a3f1-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{49b4e655-bf5d-11df-8117-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{49b4e655-bf5d-11df-8117-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{49b4e655-bf5d-11df-8117-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{49b4e655-bf5d-11df-8117-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{500b5da0-19c2-11df-99f6-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{500b5da0-19c2-11df-99f6-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{500b5da0-19c2-11df-99f6-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{500b5da0-19c2-11df-99f6-90e6ba59f8f5}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{500b5da2-19c2-11df-99f6-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{500b5da2-19c2-11df-99f6-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{500b5da2-19c2-11df-99f6-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{500b5da2-19c2-11df-99f6-90e6ba59f8f5}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d6c6135-0f56-11df-b840-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5d6c6135-0f56-11df-b840-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d6c6135-0f56-11df-b840-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5d6c6135-0f56-11df-b840-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d6c6138-0f56-11df-b840-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5d6c6138-0f56-11df-b840-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d6c6138-0f56-11df-b840-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5d6c6138-0f56-11df-b840-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5e5220df-18f9-11df-91b8-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5e5220df-18f9-11df-91b8-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5e5220df-18f9-11df-91b8-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5e5220df-18f9-11df-91b8-90e6ba59f8f5}\ not found.
File F:\idstick.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{605a4d87-bd9a-11df-97f8-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{605a4d87-bd9a-11df-97f8-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{605a4d87-bd9a-11df-97f8-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{605a4d87-bd9a-11df-97f8-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{605a4d8b-bd9a-11df-97f8-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{605a4d8b-bd9a-11df-97f8-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{605a4d8b-bd9a-11df-97f8-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{605a4d8b-bd9a-11df-97f8-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f770393-c08b-11df-8ea5-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f770393-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f770393-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f770393-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f770398-c08b-11df-8ea5-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f770398-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f770398-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f770398-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f7703db-c08b-11df-8ea5-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f7703db-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f7703db-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f7703db-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f7703df-c08b-11df-8ea5-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f7703df-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f7703df-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9f7703df-c08b-11df-8ea5-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a29a79f0-1444-11df-8f68-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a29a79f0-1444-11df-8f68-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a29a79f0-1444-11df-8f68-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a29a79f0-1444-11df-8f68-90e6ba59f8f5}\ not found.
File F:\LaunchU3.exe -a not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de7bd875-0c1a-11e0-b11c-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de7bd875-0c1a-11e0-b11c-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de7bd875-0c1a-11e0-b11c-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de7bd875-0c1a-11e0-b11c-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de7bd880-0c1a-11e0-b11c-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de7bd880-0c1a-11e0-b11c-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de7bd880-0c1a-11e0-b11c-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de7bd880-0c1a-11e0-b11c-90e6ba59f8f5}\ not found.
File F:\setup.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e748b766-3ada-11df-81eb-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e748b766-3ada-11df-81eb-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e748b766-3ada-11df-81eb-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e748b766-3ada-11df-81eb-90e6ba59f8f5}\ not found.
File G:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e748b768-3ada-11df-81eb-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e748b768-3ada-11df-81eb-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e748b768-3ada-11df-81eb-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e748b768-3ada-11df-81eb-90e6ba59f8f5}\ not found.
File G:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef3f53ff-092c-11df-9e29-90e6ba59f8f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ef3f53ff-092c-11df-9e29-90e6ba59f8f5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef3f53ff-092c-11df-9e29-90e6ba59f8f5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ef3f53ff-092c-11df-9e29-90e6ba59f8f5}\ not found.
File "H:\WD SmartWare.exe" autoplay=true not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H\ not found.
File H:\setup.exe not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.26.1 log created on 07212011_141108

cosinus · 21.07.2011, 13:04

Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code:

ATTFilter

:OTL
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0031dc51-13a4-11df-b83d-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{0031dc51-13a4-11df-b83d-90e6ba59f8f5}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{0031dc55-13a4-11df-b83d-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{0031dc55-13a4-11df-b83d-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{01ac8d5b-bb66-11df-97b3-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{01ac8d5b-bb66-11df-97b3-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{01ac8d84-bb66-11df-97b3-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{01ac8d84-bb66-11df-97b3-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{01ac8d88-bb66-11df-97b3-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{01ac8d88-bb66-11df-97b3-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{093b2edf-0a5a-11df-9a28-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{093b2edf-0a5a-11df-9a28-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{093b2ee1-0a5a-11df-9a28-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{093b2ee1-0a5a-11df-9a28-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{15492f82-2295-11e0-a218-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{15492f82-2295-11e0-a218-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup_vmc_lite.exe /checkApplicationPresence
O33 - MountPoints2\{35642014-05d4-11df-b5d3-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{35642014-05d4-11df-b5d3-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{35642016-05d4-11df-b5d3-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{35642016-05d4-11df-b5d3-90e6ba59f8f5}\Shell\AutoRun\command - "" = G:\setup.exe
O33 - MountPoints2\{4040e621-bb68-11df-a3f1-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{4040e621-bb68-11df-a3f1-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{4040e746-bb68-11df-a3f1-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{4040e746-bb68-11df-a3f1-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{4040e74a-bb68-11df-a3f1-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{4040e74a-bb68-11df-a3f1-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{49b4e655-bf5d-11df-8117-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{49b4e655-bf5d-11df-8117-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{500b5da0-19c2-11df-99f6-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{500b5da0-19c2-11df-99f6-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{500b5da2-19c2-11df-99f6-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{500b5da2-19c2-11df-99f6-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{5d6c6135-0f56-11df-b840-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{5d6c6135-0f56-11df-b840-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{5d6c6138-0f56-11df-b840-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{5d6c6138-0f56-11df-b840-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{5e5220df-18f9-11df-91b8-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{5e5220df-18f9-11df-91b8-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\idstick.exe
O33 - MountPoints2\{605a4d87-bd9a-11df-97f8-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{605a4d87-bd9a-11df-97f8-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{605a4d8b-bd9a-11df-97f8-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{605a4d8b-bd9a-11df-97f8-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{9f770393-c08b-11df-8ea5-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{9f770393-c08b-11df-8ea5-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{9f770398-c08b-11df-8ea5-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{9f770398-c08b-11df-8ea5-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{9f7703db-c08b-11df-8ea5-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{9f7703db-c08b-11df-8ea5-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{9f7703df-c08b-11df-8ea5-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{9f7703df-c08b-11df-8ea5-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{a29a79f0-1444-11df-8f68-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{a29a79f0-1444-11df-8f68-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{de7bd875-0c1a-11e0-b11c-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{de7bd875-0c1a-11e0-b11c-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{de7bd880-0c1a-11e0-b11c-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{de7bd880-0c1a-11e0-b11c-90e6ba59f8f5}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{e748b766-3ada-11df-81eb-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{e748b766-3ada-11df-81eb-90e6ba59f8f5}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{e748b768-3ada-11df-81eb-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{e748b768-3ada-11df-81eb-90e6ba59f8f5}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{ef3f53ff-092c-11df-9e29-90e6ba59f8f5}\Shell - "" = AutoRun
O33 - MountPoints2\{ef3f53ff-092c-11df-9e29-90e6ba59f8f5}\Shell\AutoRun\command - "" = "H:\WD SmartWare.exe" autoplay=true
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\setup.exe
:Commands
[purity]
[resethosts]

Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

cosinus · 21.07.2011, 13:17

Bitte nun dieses Tool von Kaspersky ausführen und das Log posten => http://www.trojaner-board.de/82358-t...entfernen.html

Das Tool so einstellen wie unten im Bild angegeben - also beide Haken setzen, auf Start scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Falls du durch die Infektion auf deine Dokumente/Eigenen Dateien nicht zugreifen kannst, Verknüpfungen auf dem Desktop oder im Startmenü unter "alle Programme" fehlen, bitte unhide ausführen:
Downloade dir bitte unhide.exe und speichere diese Datei auf deinem Desktop.
Starte das Tool und es sollten alle Dateien und Ordner wieder sichtbar sein. ( Könnte eine Weile dauern )

Windows-Vista und Windows-7-User müssen das Tool per Rechtsklick als Administrator ausführen!

hagenp · 21.07.2011, 13:29

eigene dateien sind verfügbar.

der TdSSKiller-log:

Code:

ATTFilter

2011/07/21 14:25:30.0175 5396	TDSS rootkit removing tool 2.5.11.0 Jul 11 2011 16:56:56
2011/07/21 14:25:30.0799 5396	================================================================================
2011/07/21 14:25:30.0799 5396	SystemInfo:
2011/07/21 14:25:30.0799 5396	
2011/07/21 14:25:30.0799 5396	OS Version: 6.1.7601 ServicePack: 1.0
2011/07/21 14:25:30.0799 5396	Product type: Workstation
2011/07/21 14:25:30.0799 5396	ComputerName: HAGEN-ASUSUL50
2011/07/21 14:25:30.0799 5396	UserName: Hagen
2011/07/21 14:25:30.0799 5396	Windows directory: C:\Windows
2011/07/21 14:25:30.0799 5396	System windows directory: C:\Windows
2011/07/21 14:25:30.0799 5396	Running under WOW64
2011/07/21 14:25:30.0799 5396	Processor architecture: Intel x64
2011/07/21 14:25:30.0799 5396	Number of processors: 2
2011/07/21 14:25:30.0799 5396	Page size: 0x1000
2011/07/21 14:25:30.0799 5396	Boot type: Normal boot
2011/07/21 14:25:30.0799 5396	================================================================================
2011/07/21 14:25:31.0985 5396	Initialize success
2011/07/21 14:25:37.0008 3744	================================================================================
2011/07/21 14:25:37.0008 3744	Scan started
2011/07/21 14:25:37.0008 3744	Mode: Manual; 
2011/07/21 14:25:37.0008 3744	================================================================================
2011/07/21 14:25:38.0007 3744	1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
2011/07/21 14:25:38.0085 3744	ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
2011/07/21 14:25:38.0147 3744	AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
2011/07/21 14:25:38.0225 3744	adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
2011/07/21 14:25:38.0350 3744	adpahci         (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
2011/07/21 14:25:38.0412 3744	adpu320         (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
2011/07/21 14:25:38.0584 3744	AFD             (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
2011/07/21 14:25:38.0662 3744	agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
2011/07/21 14:25:38.0802 3744	AIM_USBdriver   (23515a327716aa70d93e926eea72d852) C:\Windows\system32\Drivers\AIM_USBdrv64_10_02.sys
2011/07/21 14:25:38.0943 3744	aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
2011/07/21 14:25:38.0974 3744	amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
2011/07/21 14:25:39.0036 3744	AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
2011/07/21 14:25:39.0067 3744	AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
2011/07/21 14:25:39.0130 3744	amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
2011/07/21 14:25:39.0223 3744	amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
2011/07/21 14:25:39.0270 3744	amdxata         (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
2011/07/21 14:25:39.0379 3744	AmUStor         (391887990cdaa83de5c56c3fde966da1) C:\Windows\system32\drivers\AmUStor.SYS
2011/07/21 14:25:39.0567 3744	AnyDVD          (821e7e501226ee344fdb0f40ee46109d) C:\Windows\system32\Drivers\AnyDVD.sys
2011/07/21 14:25:39.0645 3744	AppID           (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
2011/07/21 14:25:39.0785 3744	arc             (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
2011/07/21 14:25:39.0816 3744	arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
2011/07/21 14:25:39.0910 3744	ASMMAP64        (2db34edd17d3a8da7105a19c95a3dd68) C:\Program Files\ATKGFNEX\ASMMAP64.sys
2011/07/21 14:25:40.0003 3744	AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/07/21 14:25:40.0050 3744	atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
2011/07/21 14:25:40.0113 3744	athr            (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
2011/07/21 14:25:40.0300 3744	avgntflt        (b1224e6b086cd6548315b04ab575a23e) C:\Windows\system32\DRIVERS\avgntflt.sys
2011/07/21 14:25:40.0378 3744	avipbb          (ed45f12cfa62b83765c9c1496758cc87) C:\Windows\system32\DRIVERS\avipbb.sys
2011/07/21 14:25:40.0518 3744	b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
2011/07/21 14:25:40.0581 3744	b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/07/21 14:25:40.0627 3744	Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/07/21 14:25:40.0783 3744	blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
2011/07/21 14:25:40.0830 3744	bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
2011/07/21 14:25:40.0877 3744	BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/07/21 14:25:40.0893 3744	BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/07/21 14:25:40.0939 3744	Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/07/21 14:25:40.0971 3744	BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/07/21 14:25:41.0017 3744	BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/07/21 14:25:41.0049 3744	BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/07/21 14:25:41.0095 3744	BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/07/21 14:25:41.0189 3744	BTHPORT         (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
2011/07/21 14:25:41.0251 3744	BTHUSB          (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
2011/07/21 14:25:41.0376 3744	cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/07/21 14:25:41.0423 3744	cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
2011/07/21 14:25:41.0501 3744	circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
2011/07/21 14:25:41.0563 3744	CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/07/21 14:25:41.0766 3744	CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/07/21 14:25:41.0797 3744	cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
2011/07/21 14:25:41.0860 3744	CNG             (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
2011/07/21 14:25:41.0953 3744	Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
2011/07/21 14:25:42.0031 3744	CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
2011/07/21 14:25:42.0078 3744	crcdisk         (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
2011/07/21 14:25:42.0265 3744	CSC             (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
2011/07/21 14:25:42.0390 3744	CSRBC           (625c1ec250d3ce0e796d6c16e69d9160) C:\Windows\system32\Drivers\csrbcx64.sys
2011/07/21 14:25:42.0437 3744	dc3d            (db0459afd124ce5ccb649e33f95d715f) C:\Windows\system32\DRIVERS\dc3d.sys
2011/07/21 14:25:42.0531 3744	DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
2011/07/21 14:25:42.0577 3744	dgderdrv        (867fa8b9e9e3078f68c4089904bbf4b0) C:\Windows\system32\drivers\dgderdrv.sys
2011/07/21 14:25:42.0624 3744	discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/07/21 14:25:42.0687 3744	Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
2011/07/21 14:25:42.0749 3744	Dot4            (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
2011/07/21 14:25:42.0796 3744	Dot4Print       (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\drivers\Dot4Prt.sys
2011/07/21 14:25:42.0827 3744	dot4usb         (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
2011/07/21 14:25:42.0889 3744	drmkaud         (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/07/21 14:25:42.0952 3744	DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
2011/07/21 14:25:43.0108 3744	ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
2011/07/21 14:25:43.0389 3744	ElbyCDIO        (a05fc7eca0966ebb70e4d17b855a853b) C:\Windows\system32\Drivers\ElbyCDIO.sys
2011/07/21 14:25:43.0529 3744	elxstor         (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
2011/07/21 14:25:43.0591 3744	ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
2011/07/21 14:25:43.0685 3744	ETD             (1299d1ea00b7a4bf69c5869dca31e0f6) C:\Windows\system32\DRIVERS\ETD.sys
2011/07/21 14:25:43.0763 3744	ewusbnet        (9e594cd8fb23bf0be80c55b161db65c9) C:\Windows\system32\DRIVERS\ewusbnet.sys
2011/07/21 14:25:43.0794 3744	exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/07/21 14:25:43.0841 3744	fastfat         (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/07/21 14:25:43.0888 3744	fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
2011/07/21 14:25:43.0935 3744	FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/07/21 14:25:43.0966 3744	Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/07/21 14:25:43.0997 3744	flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/07/21 14:25:44.0059 3744	FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
2011/07/21 14:25:44.0122 3744	FsDepends       (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/07/21 14:25:44.0200 3744	fssfltr         (5814011b2f6e088e29d689b5fcd49b8f) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/07/21 14:25:44.0231 3744	Fs_Rec          (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/07/21 14:25:44.0278 3744	FTDIBUS         (ed07200cff78facfb66ebb0b89f503a4) C:\Windows\system32\drivers\ftdibus.sys
2011/07/21 14:25:44.0325 3744	FTSER2K         (121af3148cdda212cffbc4f6240699c2) C:\Windows\system32\drivers\ftser2k.sys
2011/07/21 14:25:44.0418 3744	fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/07/21 14:25:44.0496 3744	gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/07/21 14:25:44.0543 3744	GEARAspiWDM     (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/07/21 14:25:44.0590 3744	GenericMount    (9ba50351af95c9df28c8bcd382427d11) C:\Windows\system32\DRIVERS\GenericMount.sys
2011/07/21 14:25:44.0793 3744	hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/07/21 14:25:44.0871 3744	HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
2011/07/21 14:25:44.0964 3744	HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
2011/07/21 14:25:45.0011 3744	HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
2011/07/21 14:25:45.0058 3744	HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
2011/07/21 14:25:45.0105 3744	HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
2011/07/21 14:25:45.0167 3744	HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
2011/07/21 14:25:45.0292 3744	HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
2011/07/21 14:25:45.0370 3744	HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
2011/07/21 14:25:45.0463 3744	hwdatacard      (6e5cd3984742a922d0c183c7e82c3c94) C:\Windows\system32\DRIVERS\ewusbmdm.sys
2011/07/21 14:25:45.0526 3744	hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
2011/07/21 14:25:45.0588 3744	hwusbdev        (e2cbb821c7cae0ef8b56de28ed85c740) C:\Windows\system32\DRIVERS\ewusbdev.sys
2011/07/21 14:25:45.0651 3744	i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
2011/07/21 14:25:45.0713 3744	iaStor          (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
2011/07/21 14:25:45.0775 3744	iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
2011/07/21 14:25:46.0072 3744	igfx            (dfeaf0a1d98d397035012c8e28d1520f) C:\Windows\system32\DRIVERS\igdkmd64.sys
2011/07/21 14:25:46.0353 3744	iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
2011/07/21 14:25:46.0446 3744	IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\Windows\system32\drivers\RTKVHD64.sys
2011/07/21 14:25:46.0618 3744	intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
2011/07/21 14:25:46.0649 3744	intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
2011/07/21 14:25:46.0758 3744	IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/07/21 14:25:46.0821 3744	IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
2011/07/21 14:25:46.0867 3744	IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/07/21 14:25:46.0914 3744	IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/07/21 14:25:46.0961 3744	isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
2011/07/21 14:25:47.0008 3744	iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
2011/07/21 14:25:47.0070 3744	kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
2011/07/21 14:25:47.0164 3744	kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
2011/07/21 14:25:47.0257 3744	kbfiltr         (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
2011/07/21 14:25:47.0320 3744	KSecDD          (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
2011/07/21 14:25:47.0367 3744	KSecPkg         (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
2011/07/21 14:25:47.0476 3744	ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/07/21 14:25:47.0585 3744	L1C             (9c46a5421de9d116c47155317cabb522) C:\Windows\system32\DRIVERS\L1C62x64.sys
2011/07/21 14:25:47.0710 3744	lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/07/21 14:25:47.0788 3744	LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
2011/07/21 14:25:47.0866 3744	LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
2011/07/21 14:25:47.0991 3744	LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/07/21 14:25:48.0037 3744	LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/07/21 14:25:48.0084 3744	luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/07/21 14:25:48.0240 3744	massfilter      (b5e86524918ef32b32d1032e0c8e92a3) C:\Windows\system32\DRIVERS\massfilter.sys
2011/07/21 14:25:48.0287 3744	megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
2011/07/21 14:25:48.0334 3744	MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
2011/07/21 14:25:48.0381 3744	Modem           (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/07/21 14:25:48.0427 3744	monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/07/21 14:25:48.0490 3744	mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
2011/07/21 14:25:48.0537 3744	mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/07/21 14:25:48.0568 3744	mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
2011/07/21 14:25:48.0599 3744	mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
2011/07/21 14:25:48.0646 3744	mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/07/21 14:25:48.0708 3744	MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
2011/07/21 14:25:48.0755 3744	mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/07/21 14:25:48.0817 3744	mrxsmb10        (2086d463bd371d8a37d153897430916d) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/07/21 14:25:48.0864 3744	mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/07/21 14:25:48.0895 3744	msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
2011/07/21 14:25:48.0942 3744	msdsm           (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
2011/07/21 14:25:49.0020 3744	Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/07/21 14:25:49.0051 3744	mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/07/21 14:25:49.0083 3744	msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
2011/07/21 14:25:49.0161 3744	MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/07/21 14:25:49.0176 3744	MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/07/21 14:25:49.0239 3744	MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/07/21 14:25:49.0285 3744	MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
2011/07/21 14:25:49.0348 3744	mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
2011/07/21 14:25:49.0395 3744	MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/07/21 14:25:49.0426 3744	MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
2011/07/21 14:25:49.0473 3744	MTsensor        (032d35c996f21d19a205a7c8f0b76f3c) C:\Windows\system32\DRIVERS\ATK64AMD.sys
2011/07/21 14:25:49.0504 3744	Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/07/21 14:25:49.0582 3744	NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/07/21 14:25:49.0660 3744	NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
2011/07/21 14:25:49.0753 3744	NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/07/21 14:25:49.0785 3744	NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/07/21 14:25:49.0831 3744	Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/07/21 14:25:49.0894 3744	NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/07/21 14:25:49.0941 3744	NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
2011/07/21 14:25:50.0019 3744	NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/07/21 14:25:50.0065 3744	NetBT           (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
2011/07/21 14:25:50.0299 3744	NETw1v64        (e72f4522801ffb8f0456924fb0017bff) C:\Windows\system32\DRIVERS\NETw1v64.sys
2011/07/21 14:25:50.0721 3744	NETw5s64        (4d85a450edef10c38882182753a49aae) C:\Windows\system32\DRIVERS\NETw5s64.sys
2011/07/21 14:25:51.0017 3744	nfrd960         (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
2011/07/21 14:25:51.0126 3744	nmwcdcx64       (2c761cc067acf0fb4ea13930b09bfeea) C:\Windows\system32\drivers\ccdcmbox64.sys
2011/07/21 14:25:51.0235 3744	nmwcdx64        (63051819d5cac0fa49c425fc5e1a2b5c) C:\Windows\system32\drivers\ccdcmbx64.sys
2011/07/21 14:25:51.0345 3744	Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/07/21 14:25:51.0407 3744	nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/07/21 14:25:51.0485 3744	Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
2011/07/21 14:25:51.0672 3744	NuidFltr        (d4012918d3a3847b44b888d56bc095d6) C:\Windows\system32\DRIVERS\NuidFltr.sys
2011/07/21 14:25:51.0703 3744	Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/07/21 14:25:51.0750 3744	NVHDA           (6e41a4df26340a07a489b721f9721ec1) C:\Windows\system32\drivers\nvhda64v.sys
2011/07/21 14:25:52.0062 3744	nvlddmkm        (5a9a416f77e98686079e4d7f90a55498) C:\Windows\system32\DRIVERS\nvlddmkm.sys
2011/07/21 14:25:52.0437 3744	nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
2011/07/21 14:25:52.0468 3744	nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
2011/07/21 14:25:52.0639 3744	nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
2011/07/21 14:25:52.0686 3744	ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
2011/07/21 14:25:52.0764 3744	Parport         (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
2011/07/21 14:25:52.0827 3744	partmgr         (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
2011/07/21 14:25:52.0905 3744	pccsmcfd        (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
2011/07/21 14:25:52.0951 3744	pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
2011/07/21 14:25:52.0998 3744	pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
2011/07/21 14:25:53.0045 3744	pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/07/21 14:25:53.0076 3744	pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/07/21 14:25:53.0139 3744	PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/07/21 14:25:53.0373 3744	PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
2011/07/21 14:25:53.0404 3744	Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
2011/07/21 14:25:53.0482 3744	Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
2011/07/21 14:25:53.0575 3744	ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
2011/07/21 14:25:53.0685 3744	ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
2011/07/21 14:25:53.0731 3744	QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/07/21 14:25:53.0763 3744	RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/07/21 14:25:53.0825 3744	RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/07/21 14:25:53.0887 3744	Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/07/21 14:25:53.0950 3744	RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/07/21 14:25:54.0028 3744	RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/07/21 14:25:54.0090 3744	rdbss           (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
2011/07/21 14:25:54.0137 3744	rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
2011/07/21 14:25:54.0153 3744	RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/07/21 14:25:54.0231 3744	RDPDR           (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
2011/07/21 14:25:54.0277 3744	RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/07/21 14:25:54.0340 3744	RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/07/21 14:25:54.0511 3744	RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
2011/07/21 14:25:54.0589 3744	RDPWD           (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
2011/07/21 14:25:54.0652 3744	rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
2011/07/21 14:25:54.0792 3744	rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/07/21 14:25:54.0855 3744	sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
2011/07/21 14:25:54.0917 3744	scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
2011/07/21 14:25:55.0026 3744	secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/07/21 14:25:55.0167 3744	Sentinel64      (84ac127242dd3ccde02f9a4673214b1f) C:\Windows\System32\Drivers\Sentinel64.sys
2011/07/21 14:25:55.0229 3744	Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
2011/07/21 14:25:55.0276 3744	Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
2011/07/21 14:25:55.0323 3744	sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
2011/07/21 14:25:55.0432 3744	sffdisk         (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
2011/07/21 14:25:55.0463 3744	sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
2011/07/21 14:25:55.0494 3744	sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
2011/07/21 14:25:55.0541 3744	sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
2011/07/21 14:25:55.0588 3744	SiSGbeLH        (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
2011/07/21 14:25:55.0635 3744	SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/07/21 14:25:55.0666 3744	SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
2011/07/21 14:25:55.0728 3744	Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/07/21 14:25:55.0915 3744	SNP2UVC         (a415c67b40dfb903accc1d40fbee3269) C:\Windows\system32\DRIVERS\snp2uvc.sys
2011/07/21 14:25:56.0087 3744	SNTUSB64        (9d82300431abc9e993c36601034415c6) C:\Windows\system32\DRIVERS\SNTUSB64.SYS
2011/07/21 14:25:56.0118 3744	spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/07/21 14:25:56.0196 3744	srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
2011/07/21 14:25:56.0259 3744	srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
2011/07/21 14:25:56.0305 3744	srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
2011/07/21 14:25:56.0368 3744	sscebus         (f74634f46692c8315e7f37f698af3225) C:\Windows\system32\DRIVERS\sscebus.sys
2011/07/21 14:25:56.0415 3744	sscemdfl        (82732b391efd69b0548044be9cb37bfc) C:\Windows\system32\DRIVERS\sscemdfl.sys
2011/07/21 14:25:56.0446 3744	sscemdm         (43d56ace4469d90f9790e8352d87d9b5) C:\Windows\system32\DRIVERS\sscemdm.sys
2011/07/21 14:25:56.0571 3744	stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
2011/07/21 14:25:56.0633 3744	swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
2011/07/21 14:25:56.0758 3744	symsnap         (2d9b2746f7dea46d1572b84a06311566) C:\Windows\system32\DRIVERS\symsnap.sys
2011/07/21 14:25:56.0961 3744	Tcpip           (92ce29d95ac9dd2d0ee9061d551ba250) C:\Windows\system32\drivers\tcpip.sys
2011/07/21 14:25:57.0117 3744	TCPIP6          (92ce29d95ac9dd2d0ee9061d551ba250) C:\Windows\system32\DRIVERS\tcpip.sys
2011/07/21 14:25:57.0195 3744	tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
2011/07/21 14:25:57.0273 3744	TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/07/21 14:25:57.0304 3744	TDTCP           (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/07/21 14:25:57.0382 3744	tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
2011/07/21 14:25:57.0429 3744	TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
2011/07/21 14:25:57.0507 3744	TFsExDisk       (ce4b6956e4e12492715a53076e58761f) C:\Windows\System32\Drivers\TFsExDisk.sys
2011/07/21 14:25:57.0709 3744	tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/07/21 14:25:57.0756 3744	TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
2011/07/21 14:25:57.0928 3744	TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys
2011/07/21 14:25:58.0053 3744	tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
2011/07/21 14:25:58.0084 3744	uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
2011/07/21 14:25:58.0146 3744	udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
2011/07/21 14:25:58.0240 3744	uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
2011/07/21 14:25:58.0287 3744	umbus           (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
2011/07/21 14:25:58.0333 3744	UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
2011/07/21 14:25:58.0474 3744	upperdev        (bcd611d240604ceee7f90805361fab50) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
2011/07/21 14:25:58.0521 3744	usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/07/21 14:25:58.0583 3744	usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
2011/07/21 14:25:58.0630 3744	usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
2011/07/21 14:25:58.0692 3744	usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
2011/07/21 14:25:58.0770 3744	usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
2011/07/21 14:25:58.0817 3744	usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
2011/07/21 14:25:58.0848 3744	usbscan         (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
2011/07/21 14:25:58.0911 3744	usbser          (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
2011/07/21 14:25:58.0957 3744	UsbserFilt      (d91be2644b18b4e3c69982fe0e1e97d6) C:\Windows\system32\DRIVERS\usbser_lowerfltx64j.sys
2011/07/21 14:25:59.0004 3744	USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
2011/07/21 14:25:59.0035 3744	usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/07/21 14:25:59.0098 3744	usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
2011/07/21 14:25:59.0191 3744	vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
2011/07/21 14:25:59.0254 3744	vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/07/21 14:25:59.0301 3744	VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
2011/07/21 14:25:59.0379 3744	vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
2011/07/21 14:25:59.0425 3744	viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
2011/07/21 14:25:59.0457 3744	volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
2011/07/21 14:25:59.0519 3744	volmgrx         (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
2011/07/21 14:25:59.0581 3744	volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
2011/07/21 14:25:59.0644 3744	VProEventMonitor (8b7454930230db4bc4ba35a467be09aa) C:\Windows\system32\DRIVERS\vproeventmonitor.sys
2011/07/21 14:25:59.0706 3744	vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
2011/07/21 14:25:59.0753 3744	vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
2011/07/21 14:25:59.0784 3744	vwififlt        (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
2011/07/21 14:25:59.0831 3744	vwifimp         (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
2011/07/21 14:25:59.0878 3744	WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
2011/07/21 14:25:59.0956 3744	WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/21 14:25:59.0987 3744	Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/21 14:26:00.0143 3744	Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
2011/07/21 14:26:00.0190 3744	Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
2011/07/21 14:26:00.0377 3744	WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/07/21 14:26:00.0424 3744	WimFltr         (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
2011/07/21 14:26:00.0439 3744	WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
2011/07/21 14:26:00.0595 3744	WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\drivers\WinUSB.SYS
2011/07/21 14:26:00.0658 3744	WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
2011/07/21 14:26:00.0751 3744	ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
2011/07/21 14:26:00.0845 3744	WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
2011/07/21 14:26:00.0923 3744	WUDFRd          (cf8d590be3373029d57af80914190682) C:\Windows\system32\drivers\WUDFRd.sys
2011/07/21 14:26:01.0110 3744	ZTEusbmdm6k     (31db70a61814e4f33181d48190d46845) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
2011/07/21 14:26:01.0219 3744	ZTEusbnet       (01cbeea25aa78c0f0272654048d61f34) C:\Windows\system32\DRIVERS\ZTEusbnet.sys
2011/07/21 14:26:01.0329 3744	ZTEusbnmea      (c9ada887bf326d8413e81fe80b1be7eb) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
2011/07/21 14:26:01.0453 3744	ZTEusbser6k     (31db70a61814e4f33181d48190d46845) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
2011/07/21 14:26:01.0516 3744	ZTEusbvoice     (c9ada887bf326d8413e81fe80b1be7eb) C:\Windows\system32\DRIVERS\ZTEusbvoice.sys
2011/07/21 14:26:01.0625 3744	MBR (0x1B8)     (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
2011/07/21 14:26:01.0672 3744	Boot (0x1200)   (b8f4651341f3ec36dd701c487f30355f) \Device\Harddisk0\DR0\Partition0
2011/07/21 14:26:01.0703 3744	Boot (0x1200)   (fcebe987464b79254cf5442f34c140b1) \Device\Harddisk0\DR0\Partition1
2011/07/21 14:26:01.0719 3744	================================================================================
2011/07/21 14:26:01.0719 3744	Scan finished
2011/07/21 14:26:01.0719 3744	================================================================================
2011/07/21 14:26:01.0734 3204	Detected object count: 0
2011/07/21 14:26:01.0734 3204	Actual detected object count: 0

cosinus · 21.07.2011, 14:16

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix

Lade dir ComboFix hier herunter auf deinen Desktop.

Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.

Starte cofi.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.

Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.

Wichtiger Hinweis:

Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!
Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

hagenp · 21.07.2011, 14:46

ohoh,

combofix hab ich laufen lassen, am ende kam aber kein log sondern der rechner wurde runtergefahren und neugestartet, allerdings funktioniert der neustart nicht! normal starten oder starthilfe, normal starten ging nicht. Nun mit starthilfe, startup repair läuft

21.07.2011, 11:28	#5
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	google leitet mich auf 100ksearches Seite Vom welchem Rechner du die Beiträge schreibst ist mir egal, hauptsache du machst die Scans & Logs auf immer ein und demselben infizierten Rechner. __________________ Logfiles bitte immer in CODE-Tags posten

google leitet mich auf 100ksearches Seite

Plagegeister aller Art und deren Bekämpfung: google leitet mich auf 100ksearches Seite