HILFE!! zsys.sys TR\Zapchast ( dieser hurnsohn)

HAte-Trojans · 29.12.2004, 16:10

bekomm den dreck net weg...und jetzt öffnet sich auch alle paar sec : "C:\dokumente: konnte nicht gefunden werden, un d danach öffnet sich immer die explorer.exe fehlermeldung vom internet (problemnachricht senden)

kotzt mich schon echt an...kenn mich leider 0 aus am pc....hab mich aba vorhin durch 2 ost gelesen und mal n windows xp 1a update + highjack dled.
hier das copy paste: (plz hlp und thx im vorhinaus^^)

Logfile of HijackThis v1.99.0
Scan saved at 16:08:40, on 29.12.2004
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\AVPersonal\AVGNT.EXE
C:\WINDOWS\System32\ctfmon.exe
C:\Programme\Messenger\msmsgs.exe
C:\Programme\AVPersonal\AVGUARD.EXE
C:\Programme\AVPersonal\AVWUPSRV.EXE
C:\Programme\Internet Explorer\iexplore.exe
C:\WINDOWS\Explorer.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\Programme\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\dwwin.exe
C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\Temporäres Verzeichnis 1 für hijackthis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
F2 - REG:system.ini: Shell=Explorer.exe C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temporary Internet Files\Content.IE5\9ZR795GE\1[1].exe
O1 - Hosts: 127.0.0.3 n-glx.s-redirect.com
O1 - Hosts: 127.0.0.3 x.full-tgp.net
O1 - Hosts: 127.0.0.3 counter.sexmaniack.com
O1 - Hosts: 127.0.0.3 autoescrowpay.com
O1 - Hosts: 127.0.0.3 www.autoescrowpay.com
O1 - Hosts: 127.0.0.3 www.awmdabest.com
O1 - Hosts: 127.0.0.3 www.sexfiles.nu
O1 - Hosts: 127.0.0.3 awmdabest.com
O1 - Hosts: 127.0.0.3 sexfiles.nu
O1 - Hosts: 127.0.0.3 allforadult.com
O1 - Hosts: 127.0.0.3 www.allforadult.com
O1 - Hosts: 127.0.0.3 www.iframe.biz
O1 - Hosts: 127.0.0.3 iframe.biz
O1 - Hosts: 127.0.0.3 www.newiframe.biz
O1 - Hosts: 127.0.0.3 newiframe.biz
O1 - Hosts: 127.0.0.3 www.vesbiz.biz
O1 - Hosts: 127.0.0.3 vesbiz.biz
O1 - Hosts: 127.0.0.3 www.pizdato.biz
O1 - Hosts: 127.0.0.3 pizdato.biz
O1 - Hosts: 127.0.0.3 www.aaasexypics.com
O1 - Hosts: 127.0.0.3 aaasexypics.com
O1 - Hosts: 127.0.0.3 www.virgin-tgp.net
O1 - Hosts: 127.0.0.3 virgin-tgp.net
O1 - Hosts: 182.81.204.164 downloads-eu1.kaspersky-labs.com
O1 - Hosts: 85.197.197.8 kaspersky-labs.com
O1 - Hosts: 231.234.181.122 www.networkassociates.com
O1 - Hosts: 144.8.70.128 us.mcafee.com
O1 - Hosts: 101.91.251.55 f-secure.com
O1 - Hosts: 184.233.130.60 networkassociates.com
O1 - Hosts: 219.158.202.247 secure.nai.com
O1 - Hosts: 233.1.232.117 downloads1.kaspersky-labs.com
O1 - Hosts: 67.20.195.44 downloads2.kaspersky-labs.com
O1 - Hosts: 199.34.240.114 downloads3.kaspersky-labs.com
O1 - Hosts: 252.136.103.121 avp.com
O1 - Hosts: 162.205.202.13 www.sophos.com
O1 - Hosts: 121.136.141.110 my-etrust.com
O1 - Hosts: 38.236.31.16 www.kaspersky.com
O1 - Hosts: 123.5.234.3 www.f-secure.com
O1 - Hosts: 162.224.221.91 dispatch.mcafee.com
O1 - Hosts: 221.77.170.230 update.symantec.com
O1 - Hosts: 221.220.30.226 nai.com
O1 - Hosts: 240.79.21.169 www.nai.com
O1 - Hosts: 117.153.14.116 sophos.com
O1 - Hosts: 101.48.71.167 www.ca.com
O1 - Hosts: 213.75.241.81 ca.com
O1 - Hosts: 201.51.247.201 securityresponse.symantec.com
O1 - Hosts: 184.244.53.154 symantec.com
O1 - Hosts: 147.234.83.30 mast.mcafee.com
O1 - Hosts: 62.4.134.134 liveupdate.symantec.com
O1 - Hosts: 187.193.225.49 www.avp.com
O1 - Hosts: 139.62.11.111 www.viruslist.com
O1 - Hosts: 234.205.123.68 viruslist.com
O1 - Hosts: 2.251.153.166 www.symantec.com
O1 - Hosts: 49.247.84.79 downloads4.kaspersky-labs.com
O1 - Hosts: 254.187.16.37 downloads-us1.kaspersky-labs.com
O1 - Hosts: 89.114.17.206 customer.symantec.com
O1 - Hosts: 52.249.173.252 mcafee.com
O1 - Hosts: 186.121.239.105 viruslist.com
O1 - Hosts: 135.98.131.171 www.my-etrust.com
O1 - Hosts: 173.109.255.93 download.mcafee.com
O1 - Hosts: 134.76.247.43 updates.symantec.com
O1 - Hosts: 128.54.103.197 kaspersky.com
O1 - Hosts: 107.133.81.226 www.trendmicro.com
O1 - Hosts: 5.250.187.170 rads.mcafee.com
O1 - Hosts: 176.116.85.90 trendmicro.com
O1 - Hosts: 174.35.106.225 liveupdate.symantecliveupdate.com
O1 - Hosts: 52.131.253.201 www.mcafee.com
O1 - Hosts: 220.51.49.174 downloads-eu1.kaspersky-labs.com
O1 - Hosts: 87.55.54.76 kaspersky-labs.com
O1 - Hosts: 105.138.53.193 www.networkassociates.com
O1 - Hosts: 41.83.107.140 us.mcafee.com
O1 - Hosts: 27.186.113.146 f-secure.com
O1 - Hosts: 175.166.239.153 networkassociates.com
O1 - Hosts: 157.151.34.128 secure.nai.com
O1 - Hosts: 243.176.10.148 downloads1.kaspersky-labs.com
O1 - Hosts: 25.35.68.170 downloads2.kaspersky-labs.com
O1 - Hosts: 32.114.216.198 downloads3.kaspersky-labs.com
O1 - Hosts: 37.89.147.131 avp.com
O1 - Hosts: 148.65.172.128 www.sophos.com
O1 - Hosts: 147.139.204.125 my-etrust.com
O1 - Hosts: 227.44.186.8 www.kaspersky.com
O1 - Hosts: 12.76.65.189 www.f-secure.com
O1 - Hosts: 141.239.20.156 dispatch.mcafee.com
O1 - Hosts: 116.233.192.229 update.symantec.com
O1 - Hosts: 146.121.249.128 nai.com
O1 - Hosts: 40.123.201.233 www.nai.com
O1 - Hosts: 212.247.116.28 sophos.com
O1 - Hosts: 5.122.22.249 www.ca.com
O1 - Hosts: 75.130.72.44 ca.com
O1 - Hosts: 68.240.103.121 securityresponse.symantec.com
O1 - Hosts: 2.75.42.4 symantec.com
O1 - Hosts: 32.49.180.4 mast.mcafee.com
O1 - Hosts: 235.97.86.215 liveupdate.symantec.com
O1 - Hosts: 83.36.154.136 www.avp.com
O1 - Hosts: 131.6.100.32 www.viruslist.com
O1 - Hosts: 94.37.37.108 viruslist.com
O1 - Hosts: 60.144.127.9 www.symantec.com
O1 - Hosts: 160.107.224.200 downloads4.kaspersky-labs.com
O1 - Hosts: 198.222.217.238 downloads-us1.kaspersky-labs.com
O1 - Hosts: 69.7.67.172 customer.symantec.com
O1 - Hosts: 31.94.127.241 mcafee.com
O2 - BHO: (no name) - {F2A4407B-FFBC-4A1F-A18A-0F68C3E0FC9E} - C:\WINDOWS\System32\ianuua.dll
O2 - BHO: (no name) - {F4B15947-3C0B-9A5C-4701-9C9ED9C52858} - C:\WINDOWS\System32\iooados.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [AVGCtrl] C:\Programme\AVPersonal\AVGNT.EXE /min
O4 - HKLM\..\Run: [SvyvSrv32] C:\WINDOWS\svyvsrv.exe
O4 - HKLM\..\Run: [YnubSrv32] C:\WINDOWS\ynubsrv.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O12 - Plugin for .pdf: C:\Programme\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: *.blazefind.com
O15 - Trusted Zone: *.clickspring.net
O15 - Trusted Zone: *.flingstone.com
O15 - Trusted Zone: *.mt-download.com
O15 - Trusted Zone: *.my-internet.info
O15 - Trusted Zone: *.searchbarcash.com
O15 - Trusted Zone: *.searchmiracle.com
O15 - Trusted Zone: *.skoobidoo.com
O15 - Trusted Zone: *.slotch.com
O15 - Trusted Zone: *.slotchbar.com
O15 - Trusted Zone: *.windupdates.com
O15 - Trusted Zone: *.xxxtoolbar.com
O15 - Trusted Zone: *.ysbweb.com
O15 - Trusted Zone: *.blazefind.com (HKLM)
O15 - Trusted Zone: *.clickspring.net (HKLM)
O15 - Trusted Zone: *.flingstone.com (HKLM)
O15 - Trusted Zone: *.mt-download.com (HKLM)
O15 - Trusted Zone: *.my-internet.info (HKLM)
O15 - Trusted Zone: *.searchbarcash.com (HKLM)
O15 - Trusted Zone: *.searchmiracle.com (HKLM)
O15 - Trusted Zone: *.skoobidoo.com (HKLM)
O15 - Trusted Zone: *.slotch.com (HKLM)
O15 - Trusted Zone: *.slotchbar.com (HKLM)
O15 - Trusted Zone: *.windupdates.com (HKLM)
O15 - Trusted Zone: *.xxxtoolbar.com (HKLM)
O15 - Trusted Zone: *.ysbweb.com (HKLM)
O15 - Trusted IP range: 67.19.178.84
O15 - Trusted IP range: 67.19.178.84 (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3A38577E-9BE2-40C7-96ED-599850BFCA7B}: NameServer = 192.168.0.1,81.223.94.243
O17 - HKLM\System\CS1\Services\Tcpip\..\{3A38577E-9BE2-40C7-96ED-599850BFCA7B}: NameServer = 192.168.0.1,81.223.94.243
O17 - HKLM\System\CS2\Services\Tcpip\..\{3A38577E-9BE2-40C7-96ED-599850BFCA7B}: NameServer = 192.168.0.1,81.223.94.243
O23 - Service: AntiVir Service - H+BEDV Datentechnik GmbH - C:\Programme\AVPersonal\AVGUARD.EXE
O23 - Service: AntiVir Update - H+BEDV Datentechnik GmbH, Germany - C:\Programme\AVPersonal\AVWUPSRV.EXE
O23 - Service: rvga - Unknown - C:\WINDOWS\System32\rvga.exe

HILFE!! zsys.sys TR\Zapchast ( dieser hurnsohn)

Plagegeister aller Art und deren Bekämpfung: HILFE!! zsys.sys TR\Zapchast ( dieser hurnsohn)

HILFE!! zsys.sys TR\Zapchast ( dieser hurnsohn)

Ähnliche Themen: HILFE!! zsys.sys TR\Zapchast ( dieser hurnsohn)