|
Mülltonne: Bitte um Hilfe bin verzweifelt!Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne... |
19.09.2006, 00:15 | #1 |
| Bitte um Hilfe bin verzweifelt! hallo leute kann das jmd vielleicht auswerten?? bitte es ist ganz dringend konnte meinen pc gerade noch retten!! Logfile of HijackThis v1.99.1 Scan saved at 00:59:51, on 19.09.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5346.0005) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\CA\ETRUST~1\realmon.exe C:\WINDOWS\SOUNDMAN.EXE C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe C:\Programme\Java\jre1.5.0_06\bin\jusched.exe C:\Programme\QuickTime\qttask.exe C:\Programme\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\WINDOWS\vsnpstd3.exe C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe C:\Programme\T-Online\WLAN-Access Finder\ToWLaAcF.exe C:\Programme\Skype\Phone\Skype.exe C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe C:\programme\voipbuster.com\voipbuster\voipbuster.exe C:\Programme\MSN Messenger\msnmsgr.exe C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\palstart.exe C:\Programme\AntiVir PersonalEdition Classic\sched.exe C:\Programme\CA\eTrust Antivirus\InoRpc.exe C:\Programme\CA\eTrust Antivirus\InoRT.exe C:\Programme\CA\eTrust Antivirus\InoTask.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\taskmgr.exe C:\Programme\WinRAR\WinRAR.exe C:\DOKUME~1\cHaTiA\LOKALE~1\Temp\Rar$EX03.954\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.bearshare.com/intl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.bearshare.com/intl/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = O1 - Hosts: 191.0.149.234 avp.com O1 - Hosts: 39.39.121.18 ca.com O1 - Hosts: 127.71.95.31 customer.symantec.com O1 - Hosts: 185.250.129.138 dispatch.mcafee.com O1 - Hosts: 196.253.80.95 download.mcafee.com O1 - Hosts: 162.124.240.192 downloads1.kaspersky-labs.com O1 - Hosts: 231.233.136.214 downloads2.kaspersky-labs.com O1 - Hosts: 176.62.121.62 downloads3.kaspersky-labs.com O1 - Hosts: 149.246.72.235 downloads4.kaspersky-labs.com O1 - Hosts: 207.61.89.32 downloads-eu1.kaspersky-labs.com O1 - Hosts: 251.172.75.201 downloads-eu2.kaspersky-labs.com O1 - Hosts: 57.244.254.14 downloads-eu3.kaspersky-labs.com O1 - Hosts: 9.236.54.64 downloads-eu4.kaspersky-labs.com O1 - Hosts: 58.74.59.129 downloads-us1.kaspersky-labs.com O1 - Hosts: 57.6.142.235 downloads-us2.kaspersky-labs.com O1 - Hosts: 143.193.131.213 downloads-us3.kaspersky-labs.com O1 - Hosts: 247.16.70.182 downloads-us4.kaspersky-labs.com O1 - Hosts: 197.139.195.174 f-secure.com O1 - Hosts: 178.218.196.171 ftp.ca.com O1 - Hosts: 144.198.232.238 ftp.customer.symantec.com O1 - Hosts: 252.139.151.240 ftp.dispatch.mcafee.com O1 - Hosts: 20.226.145.234 ftp.download.mcafee.com O1 - Hosts: 48.158.31.243 ftp.downloads1.kaspersky-labs.com O1 - Hosts: 36.66.30.209 ftp.downloads2.kaspersky-labs.com O1 - Hosts: 227.127.31.166 ftp.downloads3.kaspersky-labs.com O1 - Hosts: 8.140.104.69 ftp.downloads4.kaspersky-labs.com O1 - Hosts: 243.158.95.106 ftp.downloads-eu1.kaspersky-labs.com O1 - Hosts: 249.139.200.44 ftp.downloads-eu2.kaspersky-labs.com O1 - Hosts: 197.216.92.208 ftp.downloads-eu3.kaspersky-labs.com O1 - Hosts: 245.55.140.227 ftp.downloads-eu4.kaspersky-labs.com O1 - Hosts: 157.177.14.55 ftp.downloads-us1.kaspersky-labs.com O1 - Hosts: 27.150.128.55 ftp.downloads-us2.kaspersky-labs.com O1 - Hosts: 134.89.182.164 ftp.downloads-us3.kaspersky-labs.com O1 - Hosts: 23.241.12.174 ftp.downloads-us4.kaspersky-labs.com O1 - Hosts: 74.5.68.128 ftp.f-secure.com O1 - Hosts: 167.79.219.172 ftp.grisoft.com O1 - Hosts: 243.156.200.25 ftp.kaspersky.com O1 - Hosts: 164.202.28.213 ftp.kaspersky-labs.com O1 - Hosts: 104.170.118.244 ftp.liveupdate.symantec.com O1 - Hosts: 34.44.195.212 ftp.liveupdate.symantecliveupdate.com O1 - Hosts: 144.173.55.121 ftp.mast.mcafee.com O1 - Hosts: 158.225.110.94 ftp.mcafee.com O1 - Hosts: 8.168.74.94 ftp.my-etrust.com O1 - Hosts: 193.60.198.151 ftp.nai.com O1 - Hosts: 106.20.250.243 ftp.networkassociates.com O1 - Hosts: 167.122.127.55 ftp.norton.com O1 - Hosts: 39.13.97.51 ftp.rads.mcafee.com O1 - Hosts: 66.54.226.139 ftp.sandbox.norman.com O1 - Hosts: 102.228.179.169 ftp.secure.nai.com O1 - Hosts: 200.134.101.195 ftp.securityresponse.symantec.com O1 - Hosts: 132.247.171.36 ftp.sophos.com O1 - Hosts: 178.12.87.136 ftp.symantec.com O1 - Hosts: 18.83.120.190 ftp.symantecliveupdate.com O1 - Hosts: 74.184.30.239 ftp.symatec.com O1 - Hosts: 240.48.59.174 ftp.trendmicro.com O1 - Hosts: 199.248.121.178 ftp.uk.trendmicro-europe.com O1 - Hosts: 242.189.35.235 ftp.update.symantec.com O1 - Hosts: 2.25.101.63 ftp.updates.symantec.com O1 - Hosts: 154.179.10.40 ftp.updates1.kaspersky-labs.com O1 - Hosts: 42.143.253.144 ftp.updates2.kaspersky-labs.com O1 - Hosts: 214.192.40.13 ftp.updates3.kaspersky-labs.com O1 - Hosts: 31.139.127.220 ftp.updates4.kaspersky-labs.com O1 - Hosts: 225.193.213.212 ftp.us.mcafee.com O1 - Hosts: 70.206.76.21 ftp.viruslist.com O1 - Hosts: 163.198.96.47 grisoft.com O1 - Hosts: 125.232.10.170 kaspersky.com O1 - Hosts: 167.240.231.115 kaspersky-labs.com O1 - Hosts: 27.172.205.179 liveupdate.symantec.com O1 - Hosts: 167.151.88.37 liveupdate.symantecliveupdate.com O1 - Hosts: 119.137.80.208 mast.mcafee.com O1 - Hosts: 156.63.231.75 mcafee.com O1 - Hosts: 143.168.62.110 my-etrust.com O1 - Hosts: 105.229.167.147 nai.com O1 - Hosts: 177.90.19.79 networkassociates.com O1 - Hosts: 16.155.171.67 norton.com O1 - Hosts: 60.218.253.104 pandasoftware.com O1 - Hosts: 119.101.184.2 rads.mcafee.com O1 - Hosts: 237.226.225.15 sandbox.norman.com O1 - Hosts: 67.125.9.233 secure.nai.com O1 - Hosts: 64.133.219.114 securityresponse.symantec.com O1 - Hosts: 185.84.30.235 sophos.com O1 - Hosts: 216.226.98.109 symantec.com O1 - Hosts: 57.111.34.10 symantecliveupdate.com O1 - Hosts: 191.14.93.208 trendmicro.com O1 - Hosts: 93.87.41.208 uk.trendmicro-europe.com O1 - Hosts: 2.36.56.57 update.symantec.com O1 - Hosts: 177.254.82.70 updates.symantec.com O1 - Hosts: 16.30.199.194 updates1.kaspersky-labs.com O1 - Hosts: 112.16.127.55 updates2.kaspersky-labs.com O1 - Hosts: 142.0.121.107 updates3.kaspersky-labs.com O1 - Hosts: 66.46.150.48 updates4.kaspersky-labs.com O1 - Hosts: 250.73.64.246 us.mcafee.com O1 - Hosts: 101.60.63.67 viruslist.com O1 - Hosts: 129.174.213.251 virusscan.jotti.org O1 - Hosts: 9.60.242.133 virustotal.com O1 - Hosts: 103.36.144.84 www.avp.com O1 - Hosts: 59.254.21.83 www.ca.com O1 - Hosts: 125.177.197.67 www.customer.symantec.com O1 - Hosts: 232.40.34.117 www.dispatch.mcafee.com O1 - Hosts: 40.32.59.7 www.download.mcafee.com O1 - Hosts: 107.250.96.136 www.downloads1.kaspersky-labs.com O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {0F4065A8-0E4C-491B-A649-93C7D646772D} - C:\WINDOWS\system32\wpemtpdr.dll O2 - BHO: PaltalkWebLogin - {502C3BA4-2C3E-4317-BC29-C0445E82B1F9} - C:\Programme\Common Files\Paltalk\PaltalkWebLogin.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - (no file) O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [Realtime Monitor] C:\PROGRA~1\CA\ETRUST~1\realmon.exe -s O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [SweetIM] C:\Programme\Macrogaming\SweetIM\SweetIM.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [WinampAgent] C:\Programme\Winamp\winampa.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [BearShare] "C:\Programme\BearShare\BearShare.exe" /pause O4 - HKLM\..\Run: [HP Software Update] C:\Programme\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe O4 - HKLM\..\Run: [Zone Labs Client] "C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Programme\Corel\Corel Snapfire\Corel Photo Downloader.exe O4 - HKCU\..\Run: [T-Online_Software_6\WLAN-Access Finder] C:\Programme\T-Online\WLAN-Access Finder\ToWLaAcF.exe /StartMinimized O4 - HKCU\..\Run: [Skype] "C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [Free Download Manager] C:\Programme\Free Download Manager\fdm.exe -autorun O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe O4 - HKCU\..\Run: [VoipBuster] "C:\programme\voipbuster.com\voipbuster\voipbuster.exe" -nosplash -minimized O4 - HKCU\..\Run: [msnmsgr] "C:\Programme\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [BitTorrent] "C:\Programme\BitTorrent\bittorrent.exe" --force_start_minimized O4 - Startup: Morpheus.lnk = C:\Dokumente und Einstellungen\cHaTiA\Shared\MY DONWNLOADS\Morpheus\Morpheus.exe O4 - Global Startup: Adobe Reader - Schnellstart.lnk = C:\Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: palstart.exe O8 - Extra context menu item: Use as &Display Picture - C:\Programme\IEDP2\IEDP.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\spacklsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\spacklsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\spacklsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\spacklsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\spacklsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\spacklsp.dll O11 - Options group: [INTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=http://www.t-com.de/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1120728824250 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1120733127593 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab O16 - DPF: {DA511858-B44C-439E-A0EA-704ED20035E7} (EphoxEditLive4.EditLive) - http://www.beepworld.de/hp/activexeditor/editlive4.cab O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F551} (Flatcast Viewer 4.15) - http://data.flatcast.com/NpFv415.dll O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab31267.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WB - C:\Programme\AlienGUIse\fastload.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AntiVir PersonalEdition Classic Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir Service (AntiVirService) - Unknown owner - C:\Programme\AVPersonal\AVGUARD.EXE (file missing) O23 - Service: AntiVir Update (AVWUpSrv) - Unknown owner - C:\Programme\AVPersonal\AVWUPSRV.EXE (file missing) O23 - Service: eTrust Antivirus RPC Server (InoRPC) - Computer Associates International, Inc. - C:\Programme\CA\eTrust Antivirus\InoRpc.exe O23 - Service: eTrust Antivirus Realtime Server (InoRT) - Computer Associates International, Inc. - C:\Programme\CA\eTrust Antivirus\InoRT.exe O23 - Service: eTrust Antivirus Job Server (InoTask) - Computer Associates International, Inc. - C:\Programme\CA\eTrust Antivirus\InoTask.exe O23 - Service: T-Online WLAN Adapter Steuerungsdienst (MZCCntrl) - T-Online International AG, Marmiko IT-Solutions GmbH - C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: StyleXPService - Unknown owner - C:\Programme\TGTSoft\StyleXP\StyleXPService.exe (file missing) O23 - Service: TSMService - T-Systems Nova, Berkom - C:\Programme\T-DSL SpeedManager\tsmsvc.exe O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - Unknown owner - C:\Programme\TuneUp WinStyler\WinStylerThemeSvc.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe |
19.09.2006, 00:38 | #2 |
| Bitte um Hilfe bin verzweifelt! Hi,
__________________bevor der Admin deinen Thread in die Mülltonne schiebt, lies die NUBs und berichte genau, wo der Schuh drückt. Gruß |
19.09.2006, 05:04 | #3 |
entlassen | Bitte um Hilfe bin verzweifelt! einfach mal hier nachlesen, dann klappts auch mit der hilfe
__________________http://www.trojaner-board.de/extra/impressum.html#NUB regel nr. 5 lege ich dir besonders ans herz GUA |
Themen zu Bitte um Hilfe bin verzweifelt! |
adobe, antivir, antivirus, auswerten, avg, avira, bho, bitte um hilfe, computer, downloader, dringend, einstellungen, free download, hijack, hijackthis, internet, internet explorer, monitor, object, rundll, server, software, sweetim, system, t-online, temp, torrent.exe, unknown file in winsock lsp, windows, windows xp |