| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Rechner wird gescannt (Chrome "zittert", keine Aktion möglich)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
29.03.2012, 11:39
| #1 |
 |  Rechner wird gescannt (Chrome "zittert", keine Aktion möglich) Hi zusammen, ich habe nun auch den Weg zu euch gefunden und hoffe, ihr könnt mir helfen. Seit einigen Tagen kommt es vor, das mein Rechner "gescannt" wird. z.B. in Chrome kann ich keine Eingaben mehr vornehmen, es sieht aus als würde man die ganze Zeit auf F5 hämmern, keine Site lädt mehr und ich kann quasi nichts machen. Das dauert dann so ca. ne Minute, dann ists wieder okay. Meine GData Internet Security 2012 meldet mir anschließend, dass mein Rechner gescannt wurde, bietet darüberhinaus aber keine weiteren Ansatzpunkte. Ich habe mal geschaut, meine Windows Firewall wird immer deaktiviert, denke aber das liegt an GData, oder? Ich habe schon einen kompletten Scan von GData machen lassen, keine Meldung. Habe in anderen Threads schon DDS etc. gelesen, hier die Logfiles davon...: Code:
ATTFilter .
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Marcus at 12:25:35 on 2012-03-29
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1031.18.8169.5791 [GMT 2:00]
.
AV: G Data InternetSecurity 2012 *Disabled/Updated* {39B780B4-63C2-05B0-3B40-8F7A21E4F496}
SP: G Data InternetSecurity 2012 *Disabled/Updated* {82D66150-45F8-0A3E-01F0-B4085A63BE2B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G Data Personal Firewall *Enabled* {018C0191-29AD-04E8-101F-264FDF37B3ED}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlX64.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe
C:\Program Files (x86)\OO Software\Shared\GatewayAgent\ooemcgats.exe
C:\Windows\system32\IProsetMonitor.exe
F:\Program Files\OO Software\Defrag\oodag.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
C:\Windows\System32\vds.exe
C:\Program Files\Common Files\WireHelpSvc.exe
F:\Program Files\OO Software\DiskImage\oodiag.exe
C:\Windows\System32\vdsldr.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
F:\Program Files\OO Software\Defrag\oodtray.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
C:\Program Files\EslWire\wire.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
F:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\EslWire\inGame32.exe
C:\Program Files\EslWire\dbus-daemon.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Common Files\G Data\AVKProxy\AvkBap64.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Users\Marcus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marcus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marcus\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
mWinlogon: Userinit=userinit.exe,
BHO: G Data WebFilter: {0124123d-61b4-456f-af86-78c53a0790c5} - C:\Program Files (x86)\G Data\InternetSecurity\WebFilter\AVKWebIE.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: G Data BankGuard: {ba3295cf-17ed-4f49-9e95-d999a0adbfdc} - C:\Program Files (x86)\Common Files\G DATA\AVKProxy\BanksafeBHO.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: G Data WebFilter: {0124123d-61b4-456f-af86-78c53a0790c5} - C:\Program Files (x86)\G Data\InternetSecurity\WebFilter\AVKWebIE.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
uRun: [ESL Wire] "C:\Program Files\EslWire\wire.exe" --tray
uRun: [Google Update] "C:\Users\Marcus\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [G Data AntiVirus Tray Application] C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
mRun: [GDFirewallTray] C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
mRun: [<NO NAME>]
mRun: [Acrobat Assistant 8.0] "F:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [NBAgent] "F:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: EnableLinkedConnections = 1 (0x1)
IE: An OneNote s&enden - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Free YouTube to MP3 Converter - C:\Users\Marcus\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xcel exportieren - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{AEB42126-F0AD-4072-B865-C5DF95C8A711} : DhcpNameServer = 192.168.0.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
IFEO: LightScribeControlPanel.exe - "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO: lslauncher.exe - "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
{0124123D-61B4-456f-AF86-78C53A0790C5}
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{AE7CD045-E861-484f-8273-0445EE161910}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
{BA3295CF-17ED-4F49-9E95-D999A0ADBFDC}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{F4971EE7-DAA0-4053-9964-665D8EE6A077}
{0124123D-61B4-456f-AF86-78C53A0790C5}
{47833539-D0C5-4125-9FA8-0819E2EAAC93}
mRun-x64: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun-x64: [BCU REG_SZ "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" ]
mRun-x64: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [G Data AntiVirus Tray Application] C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
mRun-x64: [GDFirewallTray] C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
mRun-x64: [(Standard)]
mRun-x64: [Acrobat Assistant 8.0] "F:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [NBAgent] "F:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook
IFEO-X64: LightScribeControlPanel.exe - "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO-X64: lslauncher.exe - "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
.
============= SERVICES / DRIVERS ===============
.
R0 GDBehave;GDBehave;C:\Windows\system32\drivers\GDBehave.sys --> C:\Windows\system32\drivers\GDBehave.sys [?]
R0 mv91xx;mv91xx;C:\Windows\system32\DRIVERS\mv91xx.sys --> C:\Windows\system32\DRIVERS\mv91xx.sys [?]
R0 mvs91xx;mvs91xx;C:\Windows\system32\DRIVERS\mvs91xx.sys --> C:\Windows\system32\DRIVERS\mvs91xx.sys [?]
R0 NBVol;Nero Backup Volume Filter Driver;C:\Windows\system32\DRIVERS\NBVol.sys --> C:\Windows\system32\DRIVERS\NBVol.sys [?]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver;C:\Windows\system32\DRIVERS\NBVolUp.sys --> C:\Windows\system32\DRIVERS\NBVolUp.sys [?]
R0 oodisr;O&O DiskImage Snapshot/Restore Driver;C:\Windows\system32\DRIVERS\oodisr.sys --> C:\Windows\system32\DRIVERS\oodisr.sys [?]
R0 oodisrh;oodisrh;C:\Windows\system32\DRIVERS\oodisrh.sys --> C:\Windows\system32\DRIVERS\oodisrh.sys [?]
R0 oodivd;O&O DiskImage Virtual Devices Driver;C:\Windows\system32\DRIVERS\oodivd.sys --> C:\Windows\system32\DRIVERS\oodivd.sys [?]
R0 oodivdh;oodivdh;C:\Windows\system32\DRIVERS\oodivdh.sys --> C:\Windows\system32\DRIVERS\oodivdh.sys [?]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]
R1 GDMnIcpt;GDMnIcpt;\??\C:\Windows\system32\drivers\MiniIcpt.sys --> C:\Windows\system32\drivers\MiniIcpt.sys [?]
R1 gdwfpcd;G Data WFP CD;C:\Windows\system32\drivers\gdwfpcd64.sys --> C:\Windows\system32\drivers\gdwfpcd64.sys [?]
R1 GRD;G Data Rootkit Detector Driver;\??\C:\Windows\system32\drivers\GRD.sys --> C:\Windows\system32\drivers\GRD.sys [?]
R1 HookCentre;HookCentre;\??\C:\Windows\system32\drivers\HookCentre.sys --> C:\Windows\system32\drivers\HookCentre.sys [?]
R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [2012-1-31 918144]
R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [2012-1-31 915584]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2012-1-31 586880]
R2 AVKProxy;G Data AntiVirus Proxy;C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2012-1-31 1506824]
R2 AVKService;G Data Scheduler;C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe [2011-8-17 464392]
R2 AVKWCtl;G Data Dateisystem Wächter;C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe [2012-1-31 2191808]
R2 ESLWireAC;ESLWireAC;\??\C:\Windows\system32\drivers\ESLWireACD.sys --> C:\Windows\system32\drivers\ESLWireACD.sys [?]
R2 GatewayAgentService;O&O Gateway Agent Service;C:\Program Files (x86)\OO Software\Shared\GatewayAgent\ooemcgats.exe [2011-3-11 316744]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-1-31 13592]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;C:\Windows\system32\IProsetMonitor.exe --> C:\Windows\system32\IProsetMonitor.exe [?]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-3-29 652360]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-9-23 641832]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-1-31 2348352]
R2 OO DiskImage;OO DiskImage;F:\Program Files\OO Software\DiskImage\oodiag.exe [2011-10-24 4726608]
R2 OODefragAgent;O&O Defrag;F:\Program Files\OO Software\Defrag\oodag.exe [2011-11-17 3273552]
R2 PanService;PandoraService;C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-2-2 1867480]
R2 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-2-23 2886528]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-12-13 2028864]
R2 WireHelpSvc;WireHelpSvc;C:\Program Files\Common Files\WireHelpSvc.exe [2012-3-12 168864]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C;C:\Windows\system32\DRIVERS\e1c62x64.sys --> C:\Windows\system32\DRIVERS\e1c62x64.sys [?]
R3 ESLvnic1;ESLvnic Virtual Network 64 Bit;C:\Windows\system32\DRIVERS\ESLvnic.sys --> C:\Windows\system32\DRIVERS\ESLvnic.sys [?]
R3 GDFwSvc;G Data Personal Firewall;C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe [2011-8-10 1556816]
R3 GDPkIcpt;GDPkIcpt;\??\C:\Windows\system32\drivers\PktIcpt.sys --> C:\Windows\system32\drivers\PktIcpt.sys [?]
R3 GDScan;G Data Scanner;C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [2012-1-31 457536]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\system32\DRIVERS\LEqdUsb.Sys --> C:\Windows\system32\DRIVERS\LEqdUsb.Sys [?]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\system32\DRIVERS\LHidEqd.Sys --> C:\Windows\system32\DRIVERS\LHidEqd.Sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2011-7-7 11856]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update-Dienst (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-2-8 136176]
S3 GdNetMon;G Data Network Monitor;\??\C:\Windows\system32\drivers\GdNetMon64.sys --> C:\Windows\system32\drivers\GdNetMon64.sys [?]
S3 gupdatem;Google Update-Dienst (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-2-8 136176]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 51740536]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]
S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S4 BCUService;Browser Configuration Utility Service;C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-26 223464]
.
=============== Created Last 30 ================
.
2012-03-29 09:26:34 -------- d-----w- C:\Users\Marcus\AppData\Roaming\Malwarebytes
2012-03-29 09:26:31 -------- d-----w- C:\ProgramData\Malwarebytes
2012-03-29 09:26:30 23152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-03-29 09:26:30 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-03-27 12:59:17 8669240 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2F18419E-EA9B-499C-8BC8-9C42901068F3}\mpengine.dll
2012-03-14 22:27:20 5559152 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-03-14 22:27:20 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-03-14 22:27:19 3913584 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-03-14 22:24:55 3145728 ----a-w- C:\Windows\System32\win32k.sys
2012-03-14 22:24:55 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2012-03-14 22:24:55 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll
2012-03-14 07:15:29 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2012-03-14 07:15:29 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-03-14 07:15:29 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2012-03-14 07:15:29 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-03-14 07:15:29 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2012-03-14 07:15:29 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2012-03-14 07:15:29 1112064 ----a-w- C:\Windows\System32\rdpcorets.dll
2012-03-14 07:15:29 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-03-12 23:16:39 -------- d-----w- C:\Windows\System32\oodag
2012-03-12 23:14:38 -------- d-----w- C:\Users\Marcus\AppData\Local\O&O
2012-03-12 21:06:41 -------- d-----w- C:\Users\Marcus\AppData\Local\ESL Wire Game Client
2012-03-12 21:06:19 168864 ----a-w- C:\Program Files\Common Files\WireHelpSvc.exe
2012-03-12 21:06:16 147472 ----a-w- C:\Windows\System32\drivers\ESLWireACD.sys
2012-03-12 21:06:12 25528 ----a-w- C:\Windows\System32\drivers\ESLvnic.sys
2012-03-12 21:06:12 -------- d-----w- C:\ProgramData\ESL Wire
2012-03-12 21:06:12 -------- d-----w- C:\Program Files\EslWire
2012-03-09 07:49:16 -------- d-----w- C:\Program Files\iPod
2012-03-09 07:49:15 -------- d-----w- C:\Program Files\iTunes
2012-03-09 07:49:15 -------- d-----w- C:\Program Files (x86)\iTunes
2012-03-06 16:42:33 -------- d-----w- C:\ProgramData\LightScribe
2012-03-06 15:44:51 -------- d-----w- C:\ProgramData\Nero
2012-03-05 15:44:20 -------- d-----w- C:\Users\Marcus\AppData\Local\CrashRpt
2012-03-05 13:37:08 -------- d-----w- C:\Users\Marcus\AppData\Roaming\Canneverbe Limited
2012-03-05 13:37:08 -------- d-----w- C:\ProgramData\Canneverbe Limited
2012-03-05 11:04:20 -------- d-----w- C:\Program Files (x86)\DExUS
2012-02-29 13:57:11 -------- d-----w- C:\Users\Marcus\AppData\Local\ESN Sonar
2012-02-29 07:31:49 -------- d-----w- C:\Users\Marcus\AppData\Roaming\PlayClaw3
2012-02-29 07:26:56 -------- d-----w- C:\Users\Marcus\AppData\Roaming\Sytexis Software
2012-02-29 07:26:07 -------- d-----w- C:\Program Files (x86)\Sytexis Software
.
==================== Find3M ====================
.
2012-03-29 07:38:06 595319 ----a-w- C:\Windows\SysWow64\sig.bin
2012-03-28 18:12:01 282864 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2012-03-28 18:12:01 282864 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2012-03-28 17:50:03 282864 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2012-03-24 20:06:55 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-03-13 17:38:01 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2012-02-29 21:00:22 3089728 ----a-w- C:\Windows\System32\nvsvc64.dll
2012-02-29 21:00:09 6074176 ----a-w- C:\Windows\System32\nvcpl.dll
2012-02-29 20:59:47 889664 ----a-w- C:\Windows\System32\nvvsvc.exe
2012-02-29 20:59:47 63296 ----a-w- C:\Windows\System32\nvshext.dll
2012-02-29 20:59:47 2561856 ----a-w- C:\Windows\System32\nvsvcr.dll
2012-02-29 20:59:47 118080 ----a-w- C:\Windows\System32\nvmctray.dll
2012-02-29 20:59:29 2515790 ----a-w- C:\Windows\System32\nvcoproc.bin
2012-02-23 08:18:36 279656 ------w- C:\Windows\System32\MpSigStub.exe
2012-02-15 10:01:50 52736 ----a-w- C:\Windows\System32\drivers\usbaapl64.sys
2012-02-15 10:01:50 4547944 ----a-w- C:\Windows\System32\usbaaplrc.dll
2012-02-15 07:16:46 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2012-02-04 08:53:08 2434856 ----a-w- C:\Windows\SysWow64\pbsvc_bc2.exe
2012-02-03 19:23:24 106648 ----a-w- C:\Windows\System32\drivers\GRD.sys
2012-02-01 15:50:21 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2012-02-01 09:06:01 175616 ----a-w- C:\Windows\System32\msclmd.dll
2012-02-01 09:06:01 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2012-01-31 09:51:10 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2012-01-30 23:26:16 564792 ----a-w- C:\Windows\System32\drivers\sptd.sys
2012-01-30 23:00:00 53112 ----a-w- C:\Windows\System32\drivers\HookCentre.sys
2012-01-30 22:59:58 65912 ----a-w- C:\Windows\System32\drivers\gdwfpcd64.sys
2012-01-30 22:59:58 50552 ----a-w- C:\Windows\System32\drivers\GDBehave.sys
2012-01-30 22:59:58 111992 ----a-w- C:\Windows\System32\drivers\MiniIcpt.sys
2012-01-30 22:38:39 59256 ----a-w- C:\Windows\System32\drivers\PktIcpt.sys
2012-01-30 22:38:24 31608 ----a-w- C:\Windows\System32\drivers\GdNetMon64.sys
2012-01-04 10:44:20 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2012-01-04 08:58:41 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2012-01-03 13:10:52 53656 ----a-w- C:\Windows\System32\AdobePDF.dll
2012-01-03 13:10:48 24984 ----a-w- C:\Windows\System32\AdobePDFUI.dll
.
============= FINISH: 12:25:51,53 ===============
Code:
ATTFilter . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume2 Install Date: 30.01.2012 22:50:33 System Uptime: 29.03.2012 12:22:42 (0 hours ago) . Motherboard: ASUSTeK COMPUTER INC. | | SABERTOOTH P67 Processor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz | LGA1155 | 3401/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 168 GiB total, 70,686 GiB free. D: is FIXED (NTFS) - 1863 GiB total, 1808,842 GiB free. E: is CDROM () F: is FIXED (NTFS) - 1863 GiB total, 1063,591 GiB free. H: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP54: 13.03.2012 18:37:46 - Installed Java(TM) 6 Update 31 RP55: 14.03.2012 17:35:06 - Windows Update RP56: 14.03.2012 23:26:08 - Windows Update RP57: 19.03.2012 08:01:32 - Removed Battlefield 1942 Secret Weapons of WWII Demo RP58: 20.03.2012 08:53:42 - Windows Update RP59: 23.03.2012 09:59:06 - Windows Update RP60: 27.03.2012 14:59:12 - Windows Update . ==== Installed Programs ====================== . Acrobat X Suite Adobe Acrobat X Pro - English, Français, Deutsch Adobe AIR Adobe Captivate Quiz Results Analyzer Adobe Captivate Reviewer Adobe Community Help Adobe Media Player AI Suite II Apple Application Support Apple Software Update Battlefield 3™ Battlefield: Bad Company™ 2 Battlelog Web Plugins Browser Configuration Utility Call of Duty: Modern Warfare 2 Call of Duty: Modern Warfare 2 - Multiplayer Call of Duty: Modern Warfare 3 Call of Duty: Modern Warfare 3 - Multiplayer DAEMON Tools Lite Driver Genius Professional Edition eReg ESN Sonar Free YouTube to MP3 Converter version 3.10.15.1228 FxVisor G Data InternetSecurity 2012 Google Chrome Google Earth Plug-in Google Update Helper High-Definition Video Playback Homefront Intel(R) Management Engine Components Intel(R) Rapid Storage Technology Java Auto Updater Java(TM) 6 Update 31 JDownloader 0.9 JMicron JMB36X Driver Kalender-Excel-8.8 LightScribe System Software Malwarebytes Anti-Malware Version 1.60.1.1000 marvell 91xx driver Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft_VC80_ATL_x86 Microsoft_VC80_CRT_x86 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFCLOC_x86 Microsoft_VC90_ATL_x86 Microsoft_VC90_CRT_x86 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFCLOC_x86 Nero 11 Nero 11 Cliparts Nero 11 Disc Menus 1 Nero 11 Disc Menus 2 Nero 11 Disc Menus 3 Nero 11 Disc Menus Basic Nero 11 Effects Basic Nero 11 Image Samples Nero 11 Kwik Themes 1 Nero 11 Kwik Themes 2 Nero 11 Kwik Themes 3 Nero 11 Kwik Themes 4 Nero 11 Kwik Themes Basic Nero 11 PiP Effects 1 Nero 11 PiP Effects Basic Nero 11 Video Samples Nero 11 Video Transitions 1 Nero Audio Pack 1 Nero BackItUp 11 Nero BackItUp 11 Help (CHM) Nero Burning ROM 11 Nero Burning ROM 11 Help (CHM) Nero ControlCenter 11 Nero ControlCenter 11 Help (CHM) Nero Core Components 11 Nero CoverDesigner 11 Nero CoverDesigner 11 Help (CHM) Nero Express 11 Nero Express 11 Help (CHM) Nero Kwik Media Nero Kwik Media Help (CHM) Nero Recode 11 Nero Recode 11 Help (CHM) Nero RescueAgent 11 Nero RescueAgent 11 Help (CHM) Nero SoundTrax 11 Nero SoundTrax 11 Help (CHM) Nero Update Nero Video 11 Nero Video 11 Help (CHM) Nero WaveEditor 11 Nero WaveEditor 11 Help (CHM) nero.prerequisites.msi NVIDIA PhysX Origin Pandora Service PDF Settings CS5 PunkBuster Services Realtek High Definition Audio Driver Renesas Electronics USB 3.0 Host Controller Driver Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile DEU Language Pack (KB2518870) SHIFT 2 UNLEASHED™ Steam System Requirements Lab CYRI TeamSpeak 3 Client TeamViewer 7 The KMPlayer (remove only) Total War: SHOGUN 2 TuneUp Utilities 2011 TuneUp Utilities Language Pack (de-DE) Universal AntiCheat 3 v1.063 Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Warhammer® 40,000®: Dawn of War® II – Retribution™ welcome . ==== End Of File =========================== Danke schonmal für eure Hilfe!! |
| Themen zu Rechner wird gescannt (Chrome "zittert", keine Aktion möglich) |
| adobe, antivirus, bankguard, browser, computer, converter, cpu, dateisystem, defender, document, explorer, firewall, gdata, gescannt, google, helper, hilfe!!, internet, mp3, nvidia, nvidia update, pandora.tv, plug-in, realtek, rootkit, security, software, svchost.exe, system, updates, usb, usb 3.0, virenbefall???, windows |
Baum-Darstellung