|
Mülltonne: Bitte überprüft Diesen Log !!!!!!!Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne... |
15.07.2006, 21:27 | #1 |
| Bitte überprüft Diesen Log !!!!!!! Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Programme\Network\network.exe C:\Programme\Java\jre1.5.0_06\bin\jusched.exe C:\WINDOWS\System32\msnserve.exe C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC 2.EXE C:\WINDOWS\System32\wins32a.exe C:\WINDOWS\SYSCFG16.EXE C:\WINDOWS\System32\ctfmon.exe C:\Programme\Messenger\msmsgs.exe C:\Programme\MSN Messenger\MsnMsgr.Exe C:\Programme\Spybot - Search & Destroy\TeaTimer.exe c:\progra~1\intern~1\iexplore.exe C:\Programme\Internet Explorer\iexplore.exe C:\Programme\AntiVir PersonalEdition Classic\sched.exe C:\Programme\AntiVir PersonalEdition Classic\avguard.exe C:\Programme\Gemeinsame Dateien\EPSON\EBAPI\SAgent2.exe C:\WINDOWS\System32\inetsrv\inetinfo.exe C:\WINDOWS\System32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\lsass.exe C:\WINDOWS\System32\mqsvc.exe C:\WINDOWS\System32\mqtgsvc.exe C:\WINDOWS\ISW\netcol.dsl\signup\Tray.exe C:\Programme\Windows Media Player\wmplayer.exe C:\Programme\Opera\Opera.exe C:\aimmsnnew.exe C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\Temporäres Verzeichnis 2 für hijackthis.zip\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.internetcologne.de R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.internetcologne.de R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer bereitgestellt von NetCologne R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQToolbar\toolbaru.dll (file missing) R3 - URLSearchHook: (no name) - {36523856-FDCC-A61A-98AC-808ADAD0F8C8} - C:\WINDOWS\System32\qjbguvvj.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: CvgraphObj Object - {12355F3E-90C3-41AA-8705-15969AF7F210} - C:\WINDOWS\vgraph.dll O2 - BHO: (no name) - {20D57A66-F7DF-467d-907B-9B7F4A118AB7} - C:\WINDOWS\System32\pmnnl.dll O2 - BHO: (no name) - {36523856-FDCC-A61A-98AC-808ADAD0F8C8} - C:\WINDOWS\System32\qjbguvvj.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: MFCOptimizeClass Object - {C25FA7CE-23EA-4271-A66D-06C4D5C22F78} - C:\WINDOWS\System32\ssqpo.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll (file missing) O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQToolbar\toolbaru.dll (file missing) O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [WinDSL MTU-Adjust] WinDSL_MTU.exe O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll O4 - HKLM\..\Run: [BearShare] "C:\Programme\BearShare\BearShare.exe" /pause O4 - HKLM\..\Run: [Network] C:\Programme\Network\network.exe O4 - HKLM\..\Run: [NetCologne E-Mail-Checker] "C:\Programme\NetCologne\traystart.exe" O4 - HKLM\..\Run: [MSN Messenger 8.0 Beta] MSNBeta.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [VVSN] C:\Programme\VVSN\VVSN.exe O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Windows update adbpro] update32.exe O4 - HKLM\..\Run: [Win64] C:\microsofts.exe O4 - HKLM\..\Run: [AdobeReaderPro] msnserve.exe O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [AVGCtrl] "C:\Programme\AVPersonal\AVGNT.EXE" /min O4 - HKLM\..\Run: [Internet] C:\windows\system32\drivers\helpsys\internet.exe O4 - HKLM\..\Run: [intec shit drives] mslol33.exe O4 - HKLM\..\Run: [Windows Security Update] winupdat.exe O4 - HKLM\..\Run: [NI.UWFX5U_0001_N57M1412] "C:\WINDOWS\Downloaded Program Files\UWFX5U_0001_N57M1412NetInstaller.exe" -nag O4 - HKLM\..\Run: [Windows Sound Drivers] winsdv32.exe O4 - HKLM\..\Run: [WinampAgent] C:\Programme\Winamp\winampa.exe O4 - HKLM\..\Run: [Microsoft Update Wizard] winprg32.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [EPSON Stylus C62 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC 2.EXE /P23 "EPSON Stylus C62 Series" /O5 "LPT1:" /M "Stylus C62" O4 - HKLM\..\Run: [MSN messanger] msnmsgsm.exe O4 - HKLM\..\Run: [secure socket layer] wins32a.exe O4 - HKLM\..\Run: [Windows System Configuration] C:\WINDOWS\SYSCFG16.EXE O4 - HKLM\..\Run: [Windows DLL Loader] C:\WINDOWS\SYSCFG16.EXE O4 - HKLM\..\RunServices: [messenger] aim.exe O4 - HKLM\..\RunServices: [MSN Messenger 8.0 Beta] MSNBeta.exe O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe O4 - HKLM\..\RunServices: [AdobeReaderPro] msnserve.exe O4 - HKLM\..\RunServices: [intec shit drives] mslol33.exe O4 - HKLM\..\RunServices: [Windows Security Update] winupdat.exe O4 - HKLM\..\RunServices: [Windows Sound Drivers] winsdv32.exe O4 - HKLM\..\RunServices: [Microsoft Update Wizard] winprg32.exe O4 - HKLM\..\RunServices: [MSN messanger] msnmsgsm.exe O4 - HKLM\..\RunServices: [secure socket layer] wins32a.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Steam] "c:\programme\steam\steam.exe" -silent O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [services32] C:\Programme\Gemeinsame Dateien\Windows\mc-110-12-0000182.exe O4 - HKCU\..\Run: [Internet] C:\windows\system32\drivers\helpsys\internet.exe O4 - HKCU\..\Run: [Windows Security Update] winupdat.exe O4 - HKCU\..\Run: [deaf bows] C:\DOKUME~1\ADMINI~1\ANWEND~1\MfcdSafe\PLUS ITCH.exe O4 - Startup: PowerReg Scheduler.exe O4 - Startup: SpamPal.lnk = C:\Programme\SpamPal\spampal.exe O4 - Startup: Xfire.lnk = C:\Programme\Xfire\Xfire.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Programme\ICQToolbar\toolbaru.dll/SEARCH.HTML O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {33ADB364-FC5D-4D9B-A880-FBD232D7F85D} - C:\Dokumente und Einstellungen\Administrator\Desktop\xp-AntiSpy\sponsoring\sponsor.html (HKCU) O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {33ADB364-FC5D-4D9B-A880-FBD232D7F85D} - C:\Dokumente und Einstellungen\Administrator\Desktop\xp-AntiSpy\sponsoring\sponsor.html (HKCU) O14 - IERESET.INF: START_PAGE_URL=http://www.internetcologne.de O15 - Trusted Zone: http://*.billingnow.com O15 - Trusted Zone: http://*.reliablestats.com O15 - Trusted Zone: http://*.winantispyware.com O15 - Trusted Zone: http://*.winantivirus.com O15 - Trusted Zone: http://*.winantiviruspro.com O15 - Trusted Zone: http://*.winfixer.com O15 - Trusted Zone: http://*.winnanny.com O15 - Trusted Zone: http://*.winsoftware.com O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1140012973757 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1140083799872 O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c10.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://locator1.cdn.imagesrvr.com/sites/winfixer.com/www/pages/scanner_de/WinFixer2005ScannerInstallDE.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{845D60C5-C52C-4F39-AD14-8BA3EE1804CF}: NameServer = 213.168.112.60 194.8.194.60 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: MsgPlusLoader.dll O20 - Winlogon Notify: pmnnl - C:\WINDOWS\SYSTEM32\pmnnl.dll O20 - Winlogon Notify: ssqpo - C:\WINDOWS\System32\ssqpo.dll O20 - Winlogon Notify: wintug32 - wintug32.dll (file missing) O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - C:\Programme\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: commdlg (commdlg32) - Unknown owner - C:\WINDOWS\commdlg32.exe (file missing) O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Programme\Gemeinsame Dateien\EPSON\EBAPI\SAgent2.exe O23 - Service: Microsoft Windows Explorer Shell Subsystem (Shell32Extender) - Unknown owner - C:\WINDOWS\system32\shell32.exe (file missing) der prozess IEXPLORER.EXE ist im task vorhanden!denke er verursacht einiges!!!CPU auslastung beträgt manchmal 100%(kotz)bitte um dringende hilfe pleeaaassseeeeee ich dreh durch!!! |
15.07.2006, 21:28 | #2 |
Administrator > Competence Manager | Bitte überprüft Diesen Log !!!!!!! @shakal,
__________________dein Logfile ist nicht vollständig, bitte überprüfe und korrigiere. Gruß Daniel
__________________ |
15.07.2006, 21:30 | #3 |
Moderator, a.D. | Bitte überprüft Diesen Log !!!!!!! Diesen: Mülltonne!
__________________Weil: http://www.trojaner-board.de/showthread.php?t=30613 Gruß Yopie |
15.07.2006, 21:36 | #4 |
| Bitte überprüft Diesen Log !!!!!!! Logfile of HijackThis v1.99.1 Scan saved at 20:50:24, on 15.07.2006 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Programme\Network\network.exe C:\Programme\Java\jre1.5.0_06\bin\jusched.exe C:\WINDOWS\System32\msnserve.exe C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\WINDOWS\System32\wins32a.exe C:\WINDOWS\SYSCFG16.EXE C:\WINDOWS\System32\ctfmon.exe C:\Programme\Messenger\msmsgs.exe C:\Programme\MSN Messenger\MsnMsgr.Exe C:\Programme\Spybot - Search & Destroy\TeaTimer.exe c:\progra~1\intern~1\iexplore.exe C:\Programme\Internet Explorer\iexplore.exe C:\Programme\AntiVir PersonalEdition Classic\sched.exe C:\Programme\AntiVir PersonalEdition Classic\avguard.exe C:\Programme\Gemeinsame Dateien\EPSON\EBAPI\SAgent2.exe C:\WINDOWS\System32\inetsrv\inetinfo.exe C:\WINDOWS\System32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\lsass.exe C:\WINDOWS\System32\mqsvc.exe C:\WINDOWS\System32\mqtgsvc.exe C:\WINDOWS\ISW\netcol.dsl\signup\Tray.exe C:\Programme\Windows Media Player\wmplayer.exe C:\Programme\Opera\Opera.exe C:\aimmsnnew.exe C:\Dokumente und Einstellungen\Administrator\Lokale Einstellungen\Temp\Temporäres Verzeichnis 2 für hijackthis.zip\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.internetcologne.de R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.internetcologne.de R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer bereitgestellt von NetCologne R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQToolbar\toolbaru.dll (file missing) R3 - URLSearchHook: (no name) - {36523856-FDCC-A61A-98AC-808ADAD0F8C8} - C:\WINDOWS\System32\qjbguvvj.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: CvgraphObj Object - {12355F3E-90C3-41AA-8705-15969AF7F210} - C:\WINDOWS\vgraph.dll O2 - BHO: (no name) - {20D57A66-F7DF-467d-907B-9B7F4A118AB7} - C:\WINDOWS\System32\pmnnl.dll O2 - BHO: (no name) - {36523856-FDCC-A61A-98AC-808ADAD0F8C8} - C:\WINDOWS\System32\qjbguvvj.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: MFCOptimizeClass Object - {C25FA7CE-23EA-4271-A66D-06C4D5C22F78} - C:\WINDOWS\System32\ssqpo.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll (file missing) O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Programme\ICQToolbar\toolbaru.dll (file missing) O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [WinDSL MTU-Adjust] WinDSL_MTU.exe O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll O4 - HKLM\..\Run: [BearShare] "C:\Programme\BearShare\BearShare.exe" /pause O4 - HKLM\..\Run: [Network] C:\Programme\Network\network.exe O4 - HKLM\..\Run: [NetCologne E-Mail-Checker] "C:\Programme\NetCologne\traystart.exe" O4 - HKLM\..\Run: [MSN Messenger 8.0 Beta] MSNBeta.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [VVSN] C:\Programme\VVSN\VVSN.exe O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Windows update adbpro] update32.exe O4 - HKLM\..\Run: [Win64] C:\microsofts.exe O4 - HKLM\..\Run: [AdobeReaderPro] msnserve.exe O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [AVGCtrl] "C:\Programme\AVPersonal\AVGNT.EXE" /min O4 - HKLM\..\Run: [Internet] C:\windows\system32\drivers\helpsys\internet.exe O4 - HKLM\..\Run: [intec shit drives] mslol33.exe O4 - HKLM\..\Run: [Windows Security Update] winupdat.exe O4 - HKLM\..\Run: [NI.UWFX5U_0001_N57M1412] "C:\WINDOWS\Downloaded Program Files\UWFX5U_0001_N57M1412NetInstaller.exe" -nag O4 - HKLM\..\Run: [Windows Sound Drivers] winsdv32.exe O4 - HKLM\..\Run: [WinampAgent] C:\Programme\Winamp\winampa.exe O4 - HKLM\..\Run: [Microsoft Update Wizard] winprg32.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [EPSON Stylus C62 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C62 Series" /O5 "LPT1:" /M "Stylus C62" O4 - HKLM\..\Run: [MSN messanger] msnmsgsm.exe O4 - HKLM\..\Run: [secure socket layer] wins32a.exe O4 - HKLM\..\Run: [Windows System Configuration] C:\WINDOWS\SYSCFG16.EXE O4 - HKLM\..\Run: [Windows DLL Loader] C:\WINDOWS\SYSCFG16.EXE O4 - HKLM\..\RunServices: [messenger] aim.exe O4 - HKLM\..\RunServices: [MSN Messenger 8.0 Beta] MSNBeta.exe O4 - HKLM\..\RunServices: [Windows update adbpro] update32.exe O4 - HKLM\..\RunServices: [AdobeReaderPro] msnserve.exe O4 - HKLM\..\RunServices: [intec shit drives] mslol33.exe O4 - HKLM\..\RunServices: [Windows Security Update] winupdat.exe O4 - HKLM\..\RunServices: [Windows Sound Drivers] winsdv32.exe O4 - HKLM\..\RunServices: [Microsoft Update Wizard] winprg32.exe O4 - HKLM\..\RunServices: [MSN messanger] msnmsgsm.exe O4 - HKLM\..\RunServices: [secure socket layer] wins32a.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Steam] "c:\programme\steam\steam.exe" -silent O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [services32] C:\Programme\Gemeinsame Dateien\Windows\mc-110-12-0000182.exe O4 - HKCU\..\Run: [Internet] C:\windows\system32\drivers\helpsys\internet.exe O4 - HKCU\..\Run: [Windows Security Update] winupdat.exe O4 - HKCU\..\Run: [deaf bows] C:\DOKUME~1\ADMINI~1\ANWEND~1\MfcdSafe\PLUS ITCH.exe O4 - Startup: PowerReg Scheduler.exe O4 - Startup: SpamPal.lnk = C:\Programme\SpamPal\spampal.exe O4 - Startup: Xfire.lnk = C:\Programme\Xfire\Xfire.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Programme\ICQToolbar\toolbaru.dll/SEARCH.HTML O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {33ADB364-FC5D-4D9B-A880-FBD232D7F85D} - C:\Dokumente und Einstellungen\Administrator\Desktop\xp-AntiSpy\sponsoring\sponsor.html (HKCU) O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {33ADB364-FC5D-4D9B-A880-FBD232D7F85D} - C:\Dokumente und Einstellungen\Administrator\Desktop\xp-AntiSpy\sponsoring\sponsor.html (HKCU) O14 - IERESET.INF: START_PAGE_URL=http://www.internetcologne.de O15 - Trusted Zone: http://*.billingnow.com O15 - Trusted Zone: http://*.reliablestats.com O15 - Trusted Zone: http://*.winantispyware.com O15 - Trusted Zone: http://*.winantivirus.com O15 - Trusted Zone: http://*.winantiviruspro.com O15 - Trusted Zone: http://*.winfixer.com O15 - Trusted Zone: http://*.winnanny.com O15 - Trusted Zone: http://*.winsoftware.com O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1140012973757 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1140083799872 O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c10.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://locator1.cdn.imagesrvr.com/sites/winfixer.com/www/pages/scanner_de/WinFixer2005ScannerInstallDE.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{845D60C5-C52C-4F39-AD14-8BA3EE1804CF}: NameServer = 213.168.112.60 194.8.194.60 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: MsgPlusLoader.dll O20 - Winlogon Notify: pmnnl - C:\WINDOWS\SYSTEM32\pmnnl.dll O20 - Winlogon Notify: ssqpo - C:\WINDOWS\System32\ssqpo.dll O20 - Winlogon Notify: wintug32 - wintug32.dll (file missing) O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - C:\Programme\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: commdlg (commdlg32) - Unknown owner - C:\WINDOWS\commdlg32.exe (file missing) O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Programme\Gemeinsame Dateien\EPSON\EBAPI\SAgent2.exe O23 - Service: Microsoft Windows Explorer Shell Subsystem (Shell32Extender) - Unknown owner - C:\WINDOWS\system32\shell32.exe (file missing) da bitteschön |
15.07.2006, 21:40 | #5 |
Moderator, a.D. | Bitte überprüft Diesen Log !!!!!!! @Shakal: Was soll das? Ist das ein anderer Rechner als in dem anderen Thread, wo du Hilfe bereits bekommen hast? Gruß Yopie |
15.07.2006, 21:45 | #6 | |
| Bitte überprüft Diesen Log !!!!!!!Zitat:
|
15.07.2006, 21:53 | #7 | |
Moderator, a.D. | Bitte überprüft Diesen Log !!!!!!!Zitat:
Das einzige, was du damit erreichst, ist eine Forumspause für dich (Sperre!). So, und nochmal deutlich: Dieser Thread ist (so gut wie) geschlossen, bitte im anderen Thread weiterner... diskutieren! Gruß Yopie |
15.07.2006, 22:19 | #8 |
Administrator, a.D. | Bitte überprüft Diesen Log !!!!!!! @ shakal Yopie hat bereits ausreichend Stellung zu deinem Fehlverhalten bezogen, darum fasse ich mich kurz: Hier geht's weiter -> http://www.trojaner-board.de/showthread.php?t=30613 Dieses Thema wandert logischerweise in die gelbe Tonne... |
Themen zu Bitte überprüft Diesen Log !!!!!!! |
100%, administrator, adobe, antivir, appinit_dlls, auslastung, avg, avira, bho, cpu, desktop, drivers, einstellungen, heulen, hijack, icqtoolbar, iexplorer.exe, internet, internet explorer, object, opera, programme, prozess, regsvr32, security, security update, software, system, temp, urlsearchhook, win64, windows, windows security, windows system, windows\system32\drivers |