danke für den link....damit hat es gefunzt.
ich hab es grad 4 std. durchlaufen lassen und es wurden 46!! infizierte objekte gefunden.
hier das logfile:
alwarebytes' Anti-Malware 1.50.1.1100
Malwarebytes : Free anti-malware, anti-virus and spyware removal download
Datenbank Version: 6527
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512
07.05.2011 23:49:22
mbam-log-2011-05-07 (23-49-22).txt
Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Durchsuchte Objekte: 334901
Laufzeit: 3 Stunde(n), 58 Minute(n), 13 Sekunde(n)
Infizierte Speicherprozesse: 1
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 2
Infizierte Registrierungswerte: 1
Infizierte Dateiobjekte der Registrierung: 2
Infizierte Verzeichnisse: 1
Infizierte Dateien: 46
Infizierte Speicherprozesse:
c:\WINDOWS\system32\xp-9140a067.exe (Trojan.Autorun) -> 272 -> Unloaded process successfully.
Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\hgxxu (Worm.Conficker) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\rmgikxnu (Trojan.Agent) -> Delete on reboot.
Infizierte Registrierungswerte:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run\XP-9140A067 (Trojan.Autorun) -> Value: XP-9140A067 -> Quarantined and deleted successfully.
Infizierte Dateiobjekte der Registrierung:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Hijack.Userinit) -> Bad: (C:\WINDOWS\system32\userinit.exe,C:\Dokumente und Einstellungen\Administrator\hdhgb.exe \s) Good: (Userinit.exe) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Advanced\Folder\Hidden\SHOWALL \CheckedValue (PUM.Hijack.System.Hidden) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
Infizierte Verzeichnisse:
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\E_4 (Worm.AutoRun) -> Quarantined and deleted successfully.
Infizierte Dateien:
c:\WINDOWS\system32\xp-9140a067.exe (Trojan.Autorun) -> Quarantined and deleted successfully.
c:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\E_4\krnln.fnr (Worm.Autorun) -> Quarantined and deleted successfully.
c:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\E_4\com.run (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\E_4\dp1.fne (Worm.Autorun) -> Quarantined and deleted successfully.
c:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\E_4\shell.fne (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\E_4\eAPI.fne (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\E_4\internet.fne (Trojan.Agent) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\01.tmp (Worm.Conficker) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\drivers\rmgikxnu.sys (Trojan.Agent) -> Delete on reboot.
c:\dokumente und einstellungen\administrator\eigene dateien\eigene bilder\miicky biilder\sChuLe\burgenland 3bk.3ak. 2o1o.exe (Trojan.Autorun) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\eigene dateien\eigene musik\von timo ^^.exe (Trojan.Autorun) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\08.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\10.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\44.exe (Worm.Agent) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\80.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\20.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\15.exe (Worm.Agent) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\E_4\RegEx.fnr (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\RECYCLER\s-1-5-21-2800509490-558522827-3833581854-500\Dc778.exe (Trojan.Autorun) -> Quarantined and deleted successfully.
c:\RECYCLER\s-1-5-21-2800509490-558522827-3833581854-500\Dc890.exe (Trojan.Autorun) -> Quarantined and deleted successfully.
c:\system volume information\_restore{26c9401c-4e1e-4fd2-9275-1233be190902}\RP229\A0046608.EXE (Trojan.FlyStudi.Gen) -> Quarantined and deleted successfully.
c:\system volume information\_restore{26c9401c-4e1e-4fd2-9275-1233be190902}\RP229\A0046609.EXE (Trojan.FlyStudi.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\com.run (Trojan.Agent) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\dp1.fne (Worm.Autorun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\eAPI.fne (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\internet.fne (Trojan.Agent) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\kgyrixc.dll (Worm.Conficker) -> Delete on reboot.
c:\WINDOWS\system32\krnln.fnr (Worm.Autorun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\ntcore.dll1 (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\NU78.EXE (Trojan.FlyStudi.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\RegEx.fnr (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\shell.fne (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\SU7F3088.EXE (Trojan.FlyStudi.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\TC-Z4P.EXE (Trojan.FlyStudi.Gen) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\zz2411f76.exe (Trojan.FlyStudi.Gen) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\startmenü\programme\au tostart\¡¡¡¡¡¡.lnk (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\mycom.crt (Malware.Trace) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\og.dll (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\og.EDT (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\secupdat.dat (Backdoor.Bot) -> Delete on reboot.
c:\WINDOWS\system32\spec.fne (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\ul.dll (Worm.AutoRun) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\05.exe (Trojan.Banker) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\06.exe (Trojan.Banker) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\oashdihasidhasuidhiasd hiashdiuasdhasd (Malware.Trace) -> Quarantined and deleted successfully.
c:\dokumente und einstellungen\administrator\lokale einstellungen\Temp\E_4\spec.fne (Worm.AutoRun) -> Quarantined and deleted successfully.
DVD Laufwerk funktioniert nicht 
Linear-Darstellung
