Hallo.
Ich hatte vor ein paar Tagen das Problem, dass mein PC gesperrt werden sollte, wegen einem Virus ... jedenfalls wurden damals 100€ verlangt, jetzt sind es 50€ ... ein zweiter Virus, denke ich ... keine Ahnung.
Jedenfalls hier die benötigten Logs:
Zitat:
.
DDS (Ver_2011-08-26.01) - NTFSx86 NETWORK
Internet Explorer: 8.0.7600.16385
Run by Ines at 16:47:05 on 2012-02-08
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.49.1031.18.1917.1481 [GMT 1:00]
.
AV: McAfee Anti-Virus und Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus und Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
C:\Windows\system32\mfevtps.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Skype\Phone\Skype.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://rtl2.sfgame.de/
uURLSearchHooks: Bigpoint Games DE Toolbar: {0e3dbc69-a682-48da-84e1-82c63a5d678e} - c:\program files\bigpoint_games_de\tbBigp.dll
mURLSearchHooks: Bigpoint Games DE Toolbar: {0e3dbc69-a682-48da-84e1-82c63a5d678e} - c:\program files\bigpoint_games_de\tbBigp.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: Bigpoint Games DE Toolbar: {0e3dbc69-a682-48da-84e1-82c63a5d678e} - c:\program files\bigpoint_games_de\tbBigp.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20111223134020.dll
BHO: Windows Live Anmelde-Hilfsprogramm: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: Bigpoint Games DE Toolbar: {0e3dbc69-a682-48da-84e1-82c63a5d678e} - c:\program files\bigpoint_games_de\tbBigp.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [Messenger (Yahoo!)] "c:\progra~1\yahoo!\messenger\YahooMessenger.exe" -quiet
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [ffdwnd] c:\users\ines\appdata\local\mozilla\firefox\firefox.exe
mRun: [SiSTray] %ProgramFiles%\SiS VGA Utilities\SiSTray.exe
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent
mRun: [PAC7302_Monitor] c:\windows\pixart\pac7302\Monitor.exe
mRunOnce: [OTL] "c:\users\ines\desktop\24960-OTL.exe"
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
TCP: DhcpNameServer = 192.168.2.1
TCP: Interfaces\{037D5EC7-E557-489D-8D82-A738F899D836} : DhcpNameServer = 192.168.2.1
TCP: Interfaces\{7E9370AE-833E-4AE3-9F9E-EC8AC1FB389A} : DhcpNameServer = 192.168.2.1
TCP: Interfaces\{7E9370AE-833E-4AE3-9F9E-EC8AC1FB389A}\75C414E4D2731483631363 : DhcpNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{7E9370AE-833E-4AE3-9F9E-EC8AC1FB389A}\76164756771697 : DhcpNameServer = 192.168.1.1
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\McSnIePl.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
STS: {E31004D1-A431-41B8-826F-E902F9D95C81} - No File
.
============= SERVICES / DRIVERS ===============
.
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-8-24 464176]
R0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-9-18 165680]
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\drivers\mfenlfk.sys [2010-9-18 64880]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-11-29 214904]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2010-9-18 160608]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2010-9-18 150856]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-9-18 338176]
R3 netr73;RT73 USB-Drahtlos-LAN-Kartentreiber für Vista;c:\windows\system32\drivers\netr73.sys [2009-6-10 545792]
R3 SiSGbeLH;NDIS 6.0-Treiber für SiS191/SiS190-Ethernet-Gerät;c:\windows\system32\drivers\SiSGB6.sys [2009-6-10 48128]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-11-29 214904]
S2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-11-29 214904]
S2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2010-9-18 166288]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-1-31 158856]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2010\TuneUpUtilitiesService32.exe [2010-9-30 1051968]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files\vodafone\vodafone mobile connect\bin\VMCService.exe [2008-7-4 14336]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-9-18 57600]
S3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-9-18 180816]
S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2010-9-18 59456]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-9-18 87656]
S3 SiS6350;SiS6350;c:\windows\system32\drivers\SISGRKMD.sys [2010-9-5 464384]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
.
=============== File Associations ===============
.
.txt=NFOPad
.
=============== Created Last 30 ================
.
2012-02-05 19:59:03 208896 ----a-w- c:\windows\MBR.exe
2012-02-05 19:59:00 256000 ----a-w- c:\windows\PEV.exe
2012-02-05 19:58:59 98816 ----a-w- c:\windows\sed.exe
2012-02-05 19:58:59 518144 ----a-w- c:\windows\SWREG.exe
2012-02-05 19:58:39 -------- d-s---w- C:\ComboFix
2012-02-05 18:41:21 -------- d-----w- C:\_OTL
2012-02-05 14:30:22 6656 ----a-w- c:\windows\system32\CoInst_070910.dll
2012-02-05 14:30:22 457984 ----a-w- c:\windows\system32\drivers\PAC7302.SYS
2012-02-05 14:30:18 129024 ----a-w- c:\windows\system32\SP7302.ax
2012-02-05 14:30:18 -------- d-----w- c:\program files\Hama
2012-02-05 14:30:17 14336 ----a-w- c:\windows\system32\P7302USD.dll
2012-02-05 14:30:16 -------- d-----w- c:\windows\PixArt
2012-02-05 14:30:16 -------- d-----w- c:\program files\common files\PAC7302
2012-02-05 14:23:36 -------- d-----w- c:\users\ines\appdata\local\ElevatedDiagnostics
2012-02-04 23:04:07 -------- d-----w- c:\users\ines\.thumbnails
2012-02-04 22:51:17 -------- d-----w- c:\users\ines\.gimp-2.6
2012-02-04 22:01:59 -------- d-----r- c:\program files\Skype
2012-02-03 14:34:44 -------- d-----w- c:\program files\Galileo Family Quiz - Spezial I
2012-02-03 12:01:11 -------- d-----w- c:\program files\Galileo Family Quiz - Spezial III
2012-02-03 10:48:19 -------- d-----w- c:\program files\Galileo Family Quiz - Spezial II
.
==================== Find3M ====================
.
2012-01-02 06:39:05 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
============= FINISH: 16:48:10,33 ===============
|
Und Attach.txt und Gmer.txt im Anhang als Zip-File ... ^^
Würde mich sehr freuen wenn ihr mir helfen könntet. =)
08.02.2012, 17:24
Baum-Darstellung